npm - @inkeep/agents-api - Versions diffs - 0.42.0 → 0.44.0 - Mend

@inkeep/agents-api 0.42.0 → 0.44.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (138) hide show

package/dist/.well-known/workflow/v1/manifest.debug.json +6 -6
package/dist/.well-known/workflow/v1/step.cjs +220467 -203416
package/dist/_virtual/rolldown_runtime.js +7 -0
package/dist/createApp.js +47 -17
package/dist/domains/evals/api/.well-known/workflow/v1/flow.d.ts +4 -0
package/dist/domains/evals/api/.well-known/workflow/v1/flow.js +12 -0
package/dist/domains/evals/api/.well-known/workflow/v1/step.d.ts +4 -0
package/dist/domains/evals/api/.well-known/workflow/v1/step.js +12 -0
package/dist/domains/evals/routes/datasetTriggers.d.ts +2 -2
package/dist/domains/evals/routes/index.d.ts +2 -2
package/dist/domains/evals/scripts/build-workflow.js +2 -2
package/dist/domains/evals/workflow/world.js +3 -2
package/dist/domains/manage/index.js +6 -2
package/dist/domains/manage/routes/agent.js +7 -4
package/dist/domains/manage/routes/agentFull.js +9 -6
package/dist/domains/manage/routes/apiKeys.js +1 -2
package/dist/domains/manage/routes/artifactComponents.js +5 -5
package/dist/domains/manage/routes/cliAuth.js +3 -3
package/dist/domains/manage/routes/contextConfigs.js +5 -5
package/dist/domains/manage/routes/conversations.d.ts +2 -2
package/dist/domains/manage/routes/credentialStores.js +2 -2
package/dist/domains/manage/routes/credentials.js +6 -7
package/dist/domains/manage/routes/dataComponents.js +6 -7
package/dist/domains/manage/routes/externalAgents.js +1 -2
package/dist/domains/manage/routes/github.d.ts +16 -0
package/dist/domains/manage/routes/github.js +511 -0
package/dist/domains/manage/routes/index.d.ts +2 -2
package/dist/domains/manage/routes/index.js +4 -0
package/dist/domains/manage/routes/invitations.js +1 -1
package/dist/domains/manage/routes/mcp.d.ts +2 -2
package/dist/domains/manage/routes/{agentToolRelations.d.ts → mcpToolGithubAccess.d.ts} +1 -1
package/dist/domains/manage/routes/mcpToolGithubAccess.js +205 -0
package/dist/domains/manage/routes/playgroundToken.js +1 -2
package/dist/domains/manage/routes/projectFull.js +33 -11
package/dist/domains/manage/routes/projectGithubAccess.d.ts +9 -0
package/dist/domains/manage/routes/projectGithubAccess.js +167 -0
package/dist/domains/manage/routes/projectMembers.js +12 -44
package/dist/domains/manage/routes/projectPermissions.js +11 -11
package/dist/domains/manage/routes/projects.js +15 -18
package/dist/domains/manage/routes/signoz.d.ts +2 -2
package/dist/domains/manage/routes/signoz.js +7 -4
package/dist/domains/manage/routes/subAgentArtifactComponents.js +5 -5
package/dist/domains/manage/routes/subAgentDataComponents.js +5 -5
package/dist/domains/manage/routes/subAgentExternalAgentRelations.js +5 -5
package/dist/domains/manage/routes/subAgentFunctionTools.js +5 -5
package/dist/domains/manage/routes/subAgentRelations.js +6 -6
package/dist/domains/manage/routes/subAgentTeamAgentRelations.js +6 -6
package/dist/domains/manage/routes/subAgentToolRelations.js +6 -6
package/dist/domains/manage/routes/subAgents.js +5 -5
package/dist/domains/manage/routes/tools.js +28 -5
package/dist/domains/manage/routes/triggers.js +49 -24
package/dist/domains/manage/routes/userOrganizations.js +4 -4
package/dist/domains/manage/routes/userProjectMemberships.d.ts +9 -0
package/dist/domains/manage/routes/userProjectMemberships.js +44 -0
package/dist/domains/mcp/routes/mcp.d.ts +7 -0
package/dist/domains/mcp/routes/mcp.js +45 -0
package/dist/domains/run/agents/Agent.d.ts +1 -0
package/dist/domains/run/agents/Agent.js +235 -45
package/dist/domains/run/agents/relationTools.d.ts +2 -2
package/dist/domains/run/constants/execution-limits/defaults.d.ts +1 -1
package/dist/domains/run/constants/execution-limits/defaults.js +1 -1
package/dist/domains/run/constants/execution-limits/index.d.ts +1 -1
package/dist/domains/run/context/ContextFetcher.js +8 -7
package/dist/domains/run/context/validation.d.ts +1 -1
package/dist/domains/run/handlers/executionHandler.js +143 -79
package/dist/domains/run/routes/agents.js +1 -1
package/dist/domains/run/routes/chat.js +47 -1
package/dist/domains/run/routes/chatDataStream.js +107 -14
package/dist/domains/run/routes/webhooks.js +40 -348
package/dist/domains/run/services/AgentSession.d.ts +3 -0
package/dist/domains/run/services/AgentSession.js +14 -1
package/dist/domains/run/services/ToolApprovalUiBus.d.ts +28 -0
package/dist/domains/run/services/ToolApprovalUiBus.js +44 -0
package/dist/domains/run/services/TriggerService.d.ts +31 -0
package/dist/domains/run/services/TriggerService.js +545 -0
package/dist/domains/run/tools/NativeSandboxExecutor.d.ts +3 -2
package/dist/domains/run/tools/NativeSandboxExecutor.js +76 -48
package/dist/domains/run/tools/SandboxExecutorFactory.d.ts +11 -1
package/dist/domains/run/tools/SandboxExecutorFactory.js +27 -3
package/dist/domains/run/tools/VercelSandboxExecutor.d.ts +3 -11
package/dist/domains/run/tools/VercelSandboxExecutor.js +137 -127
package/dist/domains/run/tools/sandbox-utils.js +1 -1
package/dist/domains/run/types/executionContext.js +3 -1
package/dist/domains/run/utils/stream-helpers.d.ts +134 -0
package/dist/domains/run/utils/stream-helpers.js +182 -0
package/dist/domains/run/utils/token-estimator.d.ts +2 -2
package/dist/env.d.ts +12 -2
package/dist/env.js +37 -32
package/dist/factory.d.ts +31 -31
package/dist/factory.js +4 -10
package/dist/index.d.ts +30 -29
package/dist/index.js +3 -5
package/dist/middleware/branchScopedDb.d.ts +1 -1
package/dist/middleware/cors.js +1 -1
package/dist/middleware/evalsAuth.d.ts +2 -2
package/dist/middleware/manageAuth.d.ts +2 -2
package/dist/middleware/projectAccess.d.ts +4 -20
package/dist/middleware/projectAccess.js +7 -49
package/dist/middleware/projectConfig.d.ts +3 -3
package/dist/middleware/ref.d.ts +1 -1
package/dist/middleware/requirePermission.d.ts +2 -2
package/dist/middleware/requirePermission.js +1 -2
package/dist/middleware/runAuth.d.ts +4 -4
package/dist/middleware/sessionAuth.d.ts +3 -3
package/dist/middleware/sessionAuth.js +1 -2
package/dist/middleware/tenantAccess.d.ts +2 -2
package/dist/middleware/tenantAccess.js +4 -4
package/dist/middleware/tracing.d.ts +3 -3
package/dist/openapi.d.ts +36 -1
package/dist/openapi.js +40 -95
package/dist/routes/healthChecks.d.ts +10 -0
package/dist/routes/healthChecks.js +75 -0
package/dist/types/app.d.ts +2 -0
package/dist/types/runExecutionContext.js +3 -1
package/dist/utils/healthChecks.d.ts +8 -0
package/dist/utils/healthChecks.js +38 -0
package/dist/utils/signozHelpers.d.ts +2 -2
package/dist/utils/signozHelpers.js +15 -3
package/package.json +8 -9
package/dist/domains/evals/services/startEvaluation.d.ts +0 -19
package/dist/domains/evals/services/startEvaluation.js +0 -18
package/dist/domains/index.d.ts +0 -4
package/dist/domains/index.js +0 -5
package/dist/domains/manage/routes/agentToolRelations.js +0 -289
package/dist/domains/run/agents/ModelFactory.d.ts +0 -63
package/dist/domains/run/agents/ModelFactory.js +0 -194
package/dist/domains/run/data/agent.d.ts +0 -7
package/dist/domains/run/data/agent.js +0 -67
package/dist/domains/run/services/evaluationRunConfigMatcher.d.ts +0 -4
package/dist/domains/run/services/evaluationRunConfigMatcher.js +0 -7
package/dist/domains/run/utils/cleanup.d.ts +0 -21
package/dist/domains/run/utils/cleanup.js +0 -59
package/dist/initialization.d.ts +0 -6
package/dist/initialization.js +0 -65
package/dist/utils/tempApiKeys.d.ts +0 -17
package/dist/utils/tempApiKeys.js +0 -26
package/dist/utils/workflowApiHelpers.d.ts +0 -1
package/dist/utils/workflowApiHelpers.js +0 -1

package/dist/domains/manage/routes/github.js ADDED Viewed

@@ -0,0 +1,511 @@
+import { getLogger as getLogger$1 } from "../../../logger.js";
+import runDbClient_default from "../../../data/db/runDbClient.js";
+import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { TenantParamsSchema, WorkAppGitHubRepositorySelectSchema, WorkAppGithubInstallationApiSelectSchema, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, createApiError, deleteInstallation, disconnectInstallation, getInstallationById, getInstallationsByTenantId, getRepositoriesByInstallationId, getRepositoryCountsByTenantId, syncRepositories, updateInstallationStatus } from "@inkeep/agents-core";
+import { createAppJwt, fetchInstallationRepositories, getGitHubAppName, getStateSigningSecret, isGitHubAppNameConfigured, isStateSigningConfigured } from "@inkeep/agents-work-apps/github";
+import { HTTPException } from "hono/http-exception";
+import { SignJWT } from "jose";
+//#region src/domains/manage/routes/github.ts
+const logger = getLogger$1("github-manage");
+const app = new OpenAPIHono();
+const InstallUrlResponseSchema = z.object({ url: z.url().describe("GitHub App installation URL with signed state parameter") });
+const STATE_JWT_ISSUER = "inkeep-agents-api";
+const STATE_JWT_AUDIENCE = "github-app-install";
+/**
+* Signs a JWT state token for the GitHub App installation flow.
+* The state contains the tenantId and expires after 10 minutes.
+*/
+async function signStateToken(tenantId) {
+	const secret = getStateSigningSecret();
+	const secretKey = new TextEncoder().encode(secret);
+	return await new SignJWT({ tenantId }).setProtectedHeader({
+		alg: "HS256",
+		typ: "JWT"
+	}).setIssuer(STATE_JWT_ISSUER).setAudience(STATE_JWT_AUDIENCE).setIssuedAt().setExpirationTime("10m").sign(secretKey);
+}
+app.openapi(createRoute({
+	method: "get",
+	path: "/install-url",
+	summary: "Get GitHub App installation URL",
+	operationId: "get-github-install-url",
+	tags: ["GitHub"],
+	description: "Generates a URL to install the GitHub App on an organization or user account. The URL includes a signed state parameter that encodes the tenant ID and expires after 10 minutes. After installation, GitHub will redirect back to our callback endpoint with this state.",
+	request: { params: TenantParamsSchema },
+	responses: {
+		200: {
+			description: "GitHub App installation URL generated successfully",
+			content: { "application/json": { schema: InstallUrlResponseSchema } }
+		},
+		...commonGetErrorResponses
+	}
+}), async (c) => {
+	const { tenantId } = c.req.valid("param");
+	if (!isStateSigningConfigured()) {
+		logger.error({}, "GITHUB_STATE_SIGNING_SECRET is not configured");
+		throw createApiError({
+			code: "internal_server_error",
+			message: "GitHub App installation is not configured"
+		});
+	}
+	if (!isGitHubAppNameConfigured()) {
+		logger.error({}, "GITHUB_APP_NAME is not configured");
+		throw createApiError({
+			code: "internal_server_error",
+			message: "GitHub App installation is not configured"
+		});
+	}
+	const appName = getGitHubAppName();
+	logger.info({ tenantId }, "Generating GitHub App installation URL");
+	const state = await signStateToken(tenantId);
+	const installUrl = `https://github.com/apps/${appName}/installations/new?state=${encodeURIComponent(state)}`;
+	logger.info({ tenantId }, "GitHub App installation URL generated");
+	return c.json({ url: installUrl }, 200);
+});
+const InstallationWithRepoCountSchema = WorkAppGithubInstallationApiSelectSchema.extend({ repositoryCount: z.number().describe("Number of repositories accessible to this installation") });
+const ListInstallationsResponseSchema = z.object({ installations: z.array(InstallationWithRepoCountSchema).describe("List of GitHub App installations") });
+const ListInstallationsQuerySchema = z.object({ includeDisconnected: z.string().optional().transform((val) => val === "true").describe("Include disconnected installations in the response") });
+app.openapi(createRoute({
+	method: "get",
+	path: "/installations",
+	summary: "List GitHub App installations",
+	operationId: "list-github-installations",
+	tags: ["GitHub"],
+	description: "Returns a list of GitHub App installations connected to this tenant. By default, deleted installations are filtered out. Use the includeDisconnected query parameter to include them.",
+	request: {
+		params: TenantParamsSchema,
+		query: ListInstallationsQuerySchema
+	},
+	responses: {
+		200: {
+			description: "List of GitHub App installations",
+			content: { "application/json": { schema: ListInstallationsResponseSchema } }
+		},
+		...commonGetErrorResponses
+	}
+}), async (c) => {
+	const { tenantId } = c.req.valid("param");
+	const { includeDisconnected } = c.req.valid("query");
+	logger.info({
+		tenantId,
+		includeDisconnected
+	}, "Listing GitHub App installations");
+	const [installations, repositoryCounts] = await Promise.all([getInstallationsByTenantId(runDbClient_default)({
+		tenantId,
+		includeDisconnected
+	}), getRepositoryCountsByTenantId(runDbClient_default)({
+		tenantId,
+		includeDisconnected
+	})]);
+	const installationsWithCounts = installations.map((installation) => ({
+		id: installation.id,
+		installationId: installation.installationId,
+		accountLogin: installation.accountLogin,
+		accountId: installation.accountId,
+		accountType: installation.accountType,
+		status: installation.status,
+		repositoryCount: repositoryCounts.get(installation.id) ?? 0,
+		createdAt: installation.createdAt,
+		updatedAt: installation.updatedAt
+	}));
+	logger.info({
+		tenantId,
+		count: installationsWithCounts.length
+	}, "Listed GitHub App installations");
+	return c.json({ installations: installationsWithCounts }, 200);
+});
+const InstallationIdParamSchema = z.object({ installationId: z.string().describe("The internal installation ID") });
+const InstallationDetailResponseSchema = z.object({
+	installation: WorkAppGithubInstallationApiSelectSchema.describe("Installation details"),
+	repositories: z.array(WorkAppGitHubRepositorySelectSchema).describe("List of repositories")
+});
+app.openapi(createRoute({
+	method: "get",
+	path: "/installations/:installationId",
+	summary: "Get GitHub App installation details",
+	operationId: "get-github-installation-details",
+	tags: ["GitHub"],
+	description: "Returns detailed information about a specific GitHub App installation, including the full list of repositories.",
+	request: { params: TenantParamsSchema.merge(InstallationIdParamSchema) },
+	responses: {
+		200: {
+			description: "Installation details retrieved successfully",
+			content: { "application/json": { schema: InstallationDetailResponseSchema } }
+		},
+		...commonGetErrorResponses
+	}
+}), async (c) => {
+	const { tenantId, installationId } = c.req.valid("param");
+	logger.info({
+		tenantId,
+		installationId
+	}, "Getting GitHub App installation details");
+	const [installation, repositories] = await Promise.all([getInstallationById(runDbClient_default)({
+		tenantId,
+		id: installationId
+	}), getRepositoriesByInstallationId(runDbClient_default)(installationId)]);
+	if (!installation) {
+		logger.warn({
+			tenantId,
+			installationId
+		}, "Installation not found");
+		throw createApiError({
+			code: "not_found",
+			message: "Installation not found"
+		});
+	}
+	logger.info({
+		tenantId,
+		installationId,
+		repositoryCount: repositories.length
+	}, "Got GitHub App installation details");
+	return c.json({
+		installation: {
+			id: installation.id,
+			installationId: installation.installationId,
+			accountLogin: installation.accountLogin,
+			accountId: installation.accountId,
+			accountType: installation.accountType,
+			status: installation.status,
+			createdAt: installation.createdAt,
+			updatedAt: installation.updatedAt
+		},
+		repositories
+	}, 200);
+});
+const DisconnectInstallationResponseSchema = z.object({ success: z.literal(true).describe("Whether the disconnection was successful") });
+app.openapi(createRoute({
+	method: "post",
+	path: "/installations/:installationId/disconnect",
+	summary: "Disconnect a GitHub App installation",
+	operationId: "disconnect-github-installation",
+	tags: ["GitHub"],
+	description: "Disconnects a GitHub App installation from the tenant. This soft deletes the installation (sets status to \"disconnected\") and removes all project repository access entries. The installation record is preserved for audit purposes. Note: This does NOT uninstall the GitHub App from GitHub - the user can do that separately from GitHub settings.",
+	request: { params: TenantParamsSchema.merge(InstallationIdParamSchema) },
+	responses: {
+		200: {
+			description: "Installation disconnected successfully",
+			content: { "application/json": { schema: DisconnectInstallationResponseSchema } }
+		},
+		...commonCreateErrorResponses
+	}
+}), async (c) => {
+	const { tenantId, installationId } = c.req.valid("param");
+	logger.info({
+		tenantId,
+		installationId
+	}, "Disconnecting GitHub App installation");
+	const installation = await getInstallationById(runDbClient_default)({
+		tenantId,
+		id: installationId
+	});
+	if (!installation) {
+		logger.warn({
+			tenantId,
+			installationId
+		}, "Installation not found");
+		throw createApiError({
+			code: "not_found",
+			message: "Installation not found"
+		});
+	}
+	if (installation.status === "disconnected") {
+		logger.warn({
+			tenantId,
+			installationId
+		}, "Installation already disconnected");
+		throw createApiError({
+			code: "bad_request",
+			message: "Installation is already disconnected"
+		});
+	}
+	if (!await disconnectInstallation(runDbClient_default)({
+		tenantId,
+		id: installationId
+	})) {
+		logger.error({
+			tenantId,
+			installationId
+		}, "Failed to disconnect installation");
+		throw createApiError({
+			code: "internal_server_error",
+			message: "Failed to disconnect installation"
+		});
+	}
+	logger.info({
+		tenantId,
+		installationId
+	}, "GitHub App installation disconnected");
+	return c.json({ success: true }, 200);
+});
+const ReconnectInstallationResponseSchema = z.object({
+	success: z.literal(true).describe("Whether the reconnection was successful"),
+	syncResult: z.object({
+		added: z.number().describe("Number of repositories added"),
+		removed: z.number().describe("Number of repositories removed"),
+		updated: z.number().describe("Number of repositories updated")
+	}).optional().describe("Repository sync results (if sync was performed)")
+});
+function createServiceUnavailableError(message) {
+	const responseBody = {
+		title: "Service Unavailable",
+		status: 503,
+		detail: message,
+		code: "service_unavailable",
+		error: {
+			code: "service_unavailable",
+			message: message.length > 100 ? `${message.substring(0, 97)}...` : message
+		}
+	};
+	return new HTTPException(503, {
+		message,
+		res: new Response(JSON.stringify(responseBody), {
+			status: 503,
+			headers: {
+				"Content-Type": "application/problem+json",
+				"X-Content-Type-Options": "nosniff"
+			}
+		})
+	});
+}
+const serviceUnavailableSchema = {
+	description: "Service Unavailable - GitHub API is not accessible",
+	content: { "application/problem+json": { schema: z.object({
+		title: z.string().openapi({ example: "Service Unavailable" }),
+		status: z.number().openapi({ example: 503 }),
+		detail: z.string().openapi({ example: "Failed to connect to GitHub API" }),
+		code: z.literal("service_unavailable").openapi({ example: "service_unavailable" }),
+		error: z.object({
+			code: z.literal("service_unavailable"),
+			message: z.string()
+		})
+	}) } }
+};
+app.openapi(createRoute({
+	method: "post",
+	path: "/installations/:installationId/reconnect",
+	summary: "Reconnect a disconnected GitHub App installation",
+	operationId: "reconnect-github-installation",
+	tags: ["GitHub"],
+	description: "Reconnects a previously disconnected GitHub App installation by setting its status back to \"active\" and syncing the available repositories from GitHub. This can only be used on installations with \"disconnected\" status.",
+	request: { params: TenantParamsSchema.merge(InstallationIdParamSchema) },
+	responses: {
+		200: {
+			description: "Installation reconnected successfully",
+			content: { "application/json": { schema: ReconnectInstallationResponseSchema } }
+		},
+		...commonCreateErrorResponses,
+		503: serviceUnavailableSchema
+	}
+}), async (c) => {
+	const { tenantId, installationId } = c.req.valid("param");
+	logger.info({
+		tenantId,
+		installationId
+	}, "Reconnecting GitHub App installation");
+	const installation = await getInstallationById(runDbClient_default)({
+		tenantId,
+		id: installationId
+	});
+	if (!installation) {
+		logger.warn({
+			tenantId,
+			installationId
+		}, "Installation not found");
+		throw createApiError({
+			code: "not_found",
+			message: "Installation not found"
+		});
+	}
+	if (installation.status !== "disconnected") {
+		logger.warn({
+			tenantId,
+			installationId,
+			status: installation.status
+		}, "Installation is not disconnected");
+		throw createApiError({
+			code: "bad_request",
+			message: "Installation is not disconnected"
+		});
+	}
+	if (!await updateInstallationStatus(runDbClient_default)({
+		tenantId,
+		id: installationId,
+		status: "active"
+	})) {
+		logger.error({
+			tenantId,
+			installationId
+		}, "Failed to reconnect installation");
+		throw createApiError({
+			code: "internal_server_error",
+			message: "Failed to reconnect installation"
+		});
+	}
+	logger.info({
+		tenantId,
+		installationId
+	}, "GitHub App installation reconnected, syncing repositories");
+	let appJwt;
+	try {
+		appJwt = await createAppJwt();
+	} catch (error) {
+		logger.error({ error }, "Failed to create GitHub App JWT");
+		throw createServiceUnavailableError("GitHub App not configured properly");
+	}
+	const reposResult = await fetchInstallationRepositories(installation.installationId, appJwt);
+	if (!reposResult.success) {
+		logger.error({
+			error: reposResult.error,
+			installationId
+		}, "Failed to fetch repositories from GitHub");
+		throw createServiceUnavailableError("Failed to fetch repositories from GitHub API");
+	}
+	const syncResult = await syncRepositories(runDbClient_default)({
+		installationId: installation.id,
+		repositories: reposResult.repositories.map((repo) => ({
+			repositoryId: String(repo.id),
+			repositoryName: repo.name,
+			repositoryFullName: repo.full_name,
+			private: repo.private
+		}))
+	});
+	logger.info({
+		tenantId,
+		installationId,
+		added: syncResult.added,
+		removed: syncResult.removed,
+		updated: syncResult.updated
+	}, "GitHub App installation reconnected and repositories synced");
+	return c.json({
+		success: true,
+		syncResult: {
+			added: syncResult.added,
+			removed: syncResult.removed,
+			updated: syncResult.updated
+		}
+	}, 200);
+});
+app.openapi(createRoute({
+	method: "delete",
+	path: "/installations/:installationId",
+	summary: "Delete a GitHub App installation permanently",
+	operationId: "delete-github-installation",
+	tags: ["GitHub"],
+	description: "Permanently deletes a GitHub App installation from the tenant. This hard deletes the installation record, all associated repositories, and project repository access entries. This action cannot be undone. Use POST /disconnect for soft delete instead. Note: This does NOT uninstall the GitHub App from GitHub - the user can do that separately from GitHub settings.",
+	request: { params: TenantParamsSchema.merge(InstallationIdParamSchema) },
+	responses: {
+		200: {
+			description: "Installation deleted successfully",
+			content: { "application/json": { schema: z.object({ success: z.literal(true).describe("Whether the deletion was successful") }) } }
+		},
+		...commonDeleteErrorResponses
+	}
+}), async (c) => {
+	const { tenantId, installationId } = c.req.valid("param");
+	logger.info({
+		tenantId,
+		installationId
+	}, "Deleting GitHub App installation permanently");
+	if (!await deleteInstallation(runDbClient_default)({
+		tenantId,
+		id: installationId
+	})) throw createApiError({
+		code: "not_found",
+		message: "Installation not found"
+	});
+	logger.info({
+		tenantId,
+		installationId
+	}, "GitHub App installation deleted permanently");
+	return c.json({ success: true }, 200);
+});
+const SyncRepositoriesResponseSchema = z.object({
+	repositories: z.array(WorkAppGitHubRepositorySelectSchema).describe("Updated list of repositories"),
+	syncResult: z.object({
+		added: z.number().describe("Number of repositories added"),
+		removed: z.number().describe("Number of repositories removed"),
+		updated: z.number().describe("Number of repositories updated")
+	})
+});
+app.openapi(createRoute({
+	method: "post",
+	path: "/installations/:installationId/sync",
+	summary: "Sync repositories for a GitHub App installation",
+	operationId: "sync-github-installation-repositories",
+	tags: ["GitHub"],
+	description: "Manually refreshes the repository list for a GitHub App installation by fetching the current list from GitHub API. This is useful if webhooks were missed or to ensure the local data is in sync with GitHub.",
+	request: { params: TenantParamsSchema.merge(InstallationIdParamSchema) },
+	responses: {
+		200: {
+			description: "Repositories synced successfully",
+			content: { "application/json": { schema: SyncRepositoriesResponseSchema } }
+		},
+		...commonGetErrorResponses,
+		503: serviceUnavailableSchema
+	}
+}), async (c) => {
+	const { tenantId, installationId } = c.req.valid("param");
+	logger.info({
+		tenantId,
+		installationId
+	}, "Syncing repositories for GitHub App installation");
+	const installation = await getInstallationById(runDbClient_default)({
+		tenantId,
+		id: installationId
+	});
+	if (!installation) {
+		logger.warn({
+			tenantId,
+			installationId
+		}, "Installation not found");
+		throw createApiError({
+			code: "not_found",
+			message: "Installation not found"
+		});
+	}
+	let appJwt;
+	try {
+		appJwt = await createAppJwt();
+	} catch (error) {
+		logger.error({ error }, "Failed to create GitHub App JWT");
+		throw createServiceUnavailableError("GitHub App not configured properly");
+	}
+	const reposResult = await fetchInstallationRepositories(installation.installationId, appJwt);
+	if (!reposResult.success) {
+		logger.error({
+			error: reposResult.error,
+			installationId
+		}, "Failed to fetch repositories from GitHub");
+		throw createServiceUnavailableError("Failed to fetch repositories from GitHub API");
+	}
+	const syncResult = await syncRepositories(runDbClient_default)({
+		installationId: installation.id,
+		repositories: reposResult.repositories.map((repo) => ({
+			repositoryId: String(repo.id),
+			repositoryName: repo.name,
+			repositoryFullName: repo.full_name,
+			private: repo.private
+		}))
+	});
+	logger.info({
+		tenantId,
+		installationId,
+		added: syncResult.added,
+		removed: syncResult.removed,
+		updated: syncResult.updated
+	}, "Repositories synced successfully");
+	const updatedRepositories = await getRepositoriesByInstallationId(runDbClient_default)(installation.id);
+	return c.json({
+		repositories: updatedRepositories,
+		syncResult: {
+			added: syncResult.added,
+			removed: syncResult.removed,
+			updated: syncResult.updated
+		}
+	}, 200);
+});
+var github_default = app;
+//#endregion
+export { STATE_JWT_AUDIENCE, STATE_JWT_ISSUER, github_default as default, signStateToken };

package/dist/domains/manage/routes/index.d.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono16 from "hono";
+import * as hono1 from "hono";
 //#region src/domains/manage/routes/index.d.ts
-declare const app: OpenAPIHono<hono16.Env, {}, "/">;
+declare const app: OpenAPIHono<hono1.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/index.js CHANGED Viewed

@@ -9,6 +9,7 @@ import conversations_default from "./conversations.js";
 import credentialStores_default from "./credentialStores.js";
 import credentials_default from "./credentials.js";
 import dataComponents_default from "./dataComponents.js";
+import evals_default from "./evals/index.js";
 import externalAgents_default from "./externalAgents.js";
 import functions_default from "./functions.js";
 import functionTools_default from "./functionTools.js";
@@ -28,6 +29,7 @@ import subAgentToolRelations_default from "./subAgentToolRelations.js";
 import thirdPartyMCPServers_default from "./thirdPartyMCPServers.js";
 import tools_default from "./tools.js";
 import triggers_default from "./triggers.js";
+import userProjectMemberships_default from "./userProjectMemberships.js";
 import { OpenAPIHono } from "@hono/zod-openapi";
 //#region src/domains/manage/routes/index.ts
@@ -62,6 +64,8 @@ app.route("/projects/:projectId/agent", agentFull_default);
 app.route("/projects/:projectId/mcp-catalog", mcpCatalog_default);
 app.route("/projects/:projectId/third-party-mcp-servers", thirdPartyMCPServers_default);
 app.route("/projects/:projectId/agents/:agentId/triggers", triggers_default);
+app.route("/projects/:projectId/evals", evals_default);
+app.route("/users/:userId/project-memberships", userProjectMemberships_default);
 var routes_default = app;
 //#endregion

package/dist/domains/manage/routes/invitations.js CHANGED Viewed

@@ -19,7 +19,7 @@ const PendingInvitationsResponseSchema = z.array(PendingInvitationSchema);
 invitationsRoutes.openapi(createRoute({
 	method: "get",
 	path: "/pending",
-	tags: ["invitations"],
+	tags: ["Invitations"],
 	summary: "Get pending invitations",
 	description: "Get all pending (non-expired) invitations for a given email address",
 	request: { query: z.object({ email: z.email().describe("Email address to check for invitations") }) },

package/dist/domains/manage/routes/mcp.d.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { Hono } from "hono";
-import * as hono_types7 from "hono/types";
+import * as hono_types10 from "hono/types";
 //#region src/domains/manage/routes/mcp.d.ts
-declare const app: Hono<hono_types7.BlankEnv, hono_types7.BlankSchema, "/">;
+declare const app: Hono<hono_types10.BlankEnv, hono_types10.BlankSchema, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/{agentToolRelations.d.ts → mcpToolGithubAccess.d.ts} RENAMED Viewed

@@ -1,7 +1,7 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { OpenAPIHono } from "@hono/zod-openapi";
-//#region src/domains/manage/routes/agentToolRelations.d.ts
+//#region src/domains/manage/routes/mcpToolGithubAccess.d.ts
 declare const app: OpenAPIHono<{
   Variables: ManageAppVariables;
 }, {}, "/">;