@inkeep/agents-core 0.27.0 → 0.29.0

package/dist/{utility-ne-rF1pW.d.ts → utility-C5D70uSj.d.ts}

@@ -4293,14 +4293,14 @@ declare const DataComponentSelectSchema: drizzle_zod.BuildSchema<"select", {
     }, {}, {
         $type: Record<string, unknown>;
     }>;
-    preview: drizzle_orm_sqlite_core.SQLiteColumn<{
-        name: "preview";
+    render: drizzle_orm_sqlite_core.SQLiteColumn<{
+        name: "render";
         tableName: "data_components";
         dataType: "json";
         columnType: "SQLiteBlobJson";
         data: {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         };
         driverParam: Buffer<ArrayBufferLike>;
         notNull: false;
@@ -4314,8 +4314,8 @@ declare const DataComponentSelectSchema: drizzle_zod.BuildSchema<"select", {
         generated: undefined;
     }, {}, {
         $type: {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         };
     }>;
     name: drizzle_orm_sqlite_core.SQLiteColumn<{
@@ -4418,18 +4418,18 @@ declare const DataComponentInsertSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodString>;
     updatedAt: z.ZodOptional<z.ZodString>;
     props: z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>;
-    preview: z.ZodOptional<z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodOptional<z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>>;
     name: z.ZodString;
     description: z.ZodString;
@@ -4447,18 +4447,18 @@ declare const DataComponentBaseSchema: z.ZodObject<{
     name: z.ZodString;
     description: z.ZodString;
     props: z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>;
-    preview: z.ZodOptional<z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodOptional<z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>>;
 }, {
     out: {};
@@ -4468,18 +4468,18 @@ declare const DataComponentUpdateSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodOptional<z.ZodString>>;
     updatedAt: z.ZodOptional<z.ZodOptional<z.ZodString>>;
     props: z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>>;
-    preview: z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>>>;
     name: z.ZodOptional<z.ZodString>;
     description: z.ZodOptional<z.ZodString>;
@@ -4497,18 +4497,18 @@ declare const DataComponentApiSelectSchema: z.ZodObject<{
     createdAt: z.ZodString;
     updatedAt: z.ZodString;
     props: z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>;
-    preview: z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>;
 }, z.core.$strip>;
 declare const DataComponentApiInsertSchema: z.ZodObject<{
@@ -4518,18 +4518,18 @@ declare const DataComponentApiInsertSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodString>;
     updatedAt: z.ZodOptional<z.ZodString>;
     props: z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>;
-    preview: z.ZodOptional<z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodOptional<z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>>;
 }, z.core.$strip>;
 declare const DataComponentApiUpdateSchema: z.ZodObject<{
@@ -4539,18 +4539,18 @@ declare const DataComponentApiUpdateSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodString>>>;
     updatedAt: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodString>>>;
     props: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>>>;
-    preview: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<{
-        code: string;
-        data: Record<string, unknown>;
+    render: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodNullable<z.ZodType<{
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, z.core.$ZodTypeInternals<{
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }, {
-        code: string;
-        data: Record<string, unknown>;
+        component: string;
+        mockData: Record<string, unknown>;
     }>>>>>>;
 }, z.core.$strip>;
 declare const SubAgentDataComponentSelectSchema: drizzle_zod.BuildSchema<"select", {
@@ -5703,6 +5703,7 @@ declare const CredentialReferenceSelectSchema: z.ZodObject<{
     id: z.ZodString;
     tenantId: z.ZodString;
     projectId: z.ZodString;
+    name: z.ZodString;
     type: z.ZodString;
     credentialStoreId: z.ZodString;
     retrievalParams: z.ZodOptional<z.ZodNullable<z.ZodRecord<z.ZodString, z.ZodUnknown>>>;
@@ -5712,6 +5713,7 @@ declare const CredentialReferenceSelectSchema: z.ZodObject<{
 declare const CredentialReferenceInsertSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodString>;
     updatedAt: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
     projectId: z.ZodString;
     tenantId: z.ZodString;
     id: z.ZodString;
@@ -5725,6 +5727,7 @@ declare const CredentialReferenceInsertSchema: z.ZodObject<{
 declare const CredentialReferenceUpdateSchema: z.ZodObject<{
     createdAt: z.ZodOptional<z.ZodOptional<z.ZodString>>;
     updatedAt: z.ZodOptional<z.ZodOptional<z.ZodString>>;
+    name: z.ZodOptional<z.ZodString>;
     projectId: z.ZodOptional<z.ZodString>;
     tenantId: z.ZodOptional<z.ZodString>;
     id: z.ZodOptional<z.ZodString>;
@@ -5737,6 +5740,7 @@ declare const CredentialReferenceUpdateSchema: z.ZodObject<{
 }>;
 declare const CredentialReferenceApiSelectSchema: z.ZodObject<{
     id: z.ZodString;
+    name: z.ZodString;
     createdAt: z.ZodString;
     updatedAt: z.ZodString;
     credentialStoreId: z.ZodString;
@@ -6018,6 +6022,7 @@ declare const CredentialReferenceApiSelectSchema: z.ZodObject<{
 }, z.core.$strip>;
 declare const CredentialReferenceApiInsertSchema: z.ZodObject<{
     id: z.ZodString;
+    name: z.ZodString;
     createdAt: z.ZodOptional<z.ZodString>;
     updatedAt: z.ZodOptional<z.ZodString>;
     credentialStoreId: z.ZodString;
@@ -6030,6 +6035,7 @@ declare const CredentialReferenceApiInsertSchema: z.ZodObject<{
 }, z.core.$strip>;
 declare const CredentialReferenceApiUpdateSchema: z.ZodObject<{
     id: z.ZodOptional<z.ZodOptional<z.ZodString>>;
+    name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
     createdAt: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodString>>>;
     updatedAt: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodString>>>;
     credentialStoreId: z.ZodOptional<z.ZodOptional<z.ZodString>>;
@@ -6123,6 +6129,7 @@ declare const MCPToolConfigSchema: z.ZodObject<{
     }, z.core.$strip>>;
     credential: z.ZodOptional<z.ZodObject<{
         id: z.ZodString;
+        name: z.ZodString;
         createdAt: z.ZodOptional<z.ZodString>;
         updatedAt: z.ZodOptional<z.ZodString>;
         credentialStoreId: z.ZodString;
@@ -6730,6 +6737,7 @@ declare const FetchDefinitionSchema: z.ZodObject<{
     defaultValue: z.ZodOptional<z.ZodAny>;
     credential: z.ZodOptional<z.ZodObject<{
         id: z.ZodString;
+        name: z.ZodString;
         createdAt: z.ZodOptional<z.ZodString>;
         updatedAt: z.ZodOptional<z.ZodString>;
         credentialStoreId: z.ZodString;
@@ -9133,18 +9141,18 @@ declare const FullProjectDefinitionSchema: z.ZodObject<{
         createdAt: z.ZodOptional<z.ZodString>;
         updatedAt: z.ZodOptional<z.ZodString>;
         props: z.ZodOptional<z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>>;
-        preview: z.ZodOptional<z.ZodNullable<z.ZodType<{
-            code: string;
-            data: Record<string, unknown>;
+        render: z.ZodOptional<z.ZodNullable<z.ZodType<{
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, z.core.$ZodTypeInternals<{
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }>>>>;
     }, z.core.$strip>>>;
     artifactComponents: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodObject<{
@@ -9182,6 +9190,7 @@ declare const FullProjectDefinitionSchema: z.ZodObject<{
     }, z.core.$strip>>;
     credentialReferences: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodObject<{
         id: z.ZodString;
+        name: z.ZodString;
         createdAt: z.ZodOptional<z.ZodString>;
         updatedAt: z.ZodOptional<z.ZodString>;
         credentialStoreId: z.ZodString;
@@ -9546,6 +9555,7 @@ declare const ApiKeyResponse: z.ZodObject<{
 declare const CredentialReferenceResponse: z.ZodObject<{
     data: z.ZodObject<{
         id: z.ZodString;
+        name: z.ZodString;
         createdAt: z.ZodString;
         updatedAt: z.ZodString;
         credentialStoreId: z.ZodString;
@@ -9855,18 +9865,18 @@ declare const DataComponentResponse: z.ZodObject<{
         createdAt: z.ZodString;
         updatedAt: z.ZodString;
         props: z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>;
-        preview: z.ZodNullable<z.ZodType<{
-            code: string;
-            data: Record<string, unknown>;
+        render: z.ZodNullable<z.ZodType<{
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, z.core.$ZodTypeInternals<{
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }>>>;
     }, z.core.$strip>;
 }, z.core.$strip>;
@@ -10326,6 +10336,7 @@ declare const ApiKeyListResponse: z.ZodObject<{
 declare const CredentialReferenceListResponse: z.ZodObject<{
     data: z.ZodArray<z.ZodObject<{
         id: z.ZodString;
+        name: z.ZodString;
         createdAt: z.ZodString;
         updatedAt: z.ZodString;
         credentialStoreId: z.ZodString;
@@ -10653,18 +10664,18 @@ declare const DataComponentListResponse: z.ZodObject<{
         createdAt: z.ZodString;
         updatedAt: z.ZodString;
         props: z.ZodNullable<z.ZodType<Record<string, unknown>, Record<string, unknown>, z.core.$ZodTypeInternals<Record<string, unknown>, Record<string, unknown>>>>;
-        preview: z.ZodNullable<z.ZodType<{
-            code: string;
-            data: Record<string, unknown>;
+        render: z.ZodNullable<z.ZodType<{
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, z.core.$ZodTypeInternals<{
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }, {
-            code: string;
-            data: Record<string, unknown>;
+            component: string;
+            mockData: Record<string, unknown>;
         }>>>;
     }, z.core.$strip>>;
     pagination: z.ZodObject<{

package/dist/validation/index.cjs

@@ -224,7 +224,7 @@ var dataComponents = sqliteCore.sqliteTable(
     ...projectScoped,
     ...uiProperties,
     props: sqliteCore.blob("props", { mode: "json" }).$type(),
-    preview: sqliteCore.blob("preview", { mode: "json" }).$type(),
+    render: sqliteCore.blob("render", { mode: "json" }).$type(),
     ...timestamps
   },
   (table) => [
@@ -577,6 +577,7 @@ var credentialReferences = sqliteCore.sqliteTable(
   "credential_references",
   {
     ...projectScoped,
+    name: sqliteCore.text("name").notNull(),
     type: sqliteCore.text("type").notNull(),
     credentialStoreId: sqliteCore.text("credential_store_id").notNull(),
     retrievalParams: sqliteCore.blob("retrieval_params", { mode: "json" }).$type(),
@@ -1317,6 +1318,7 @@ var CredentialReferenceSelectSchema = zodOpenapi.z.object({
   id: zodOpenapi.z.string(),
   tenantId: zodOpenapi.z.string(),
   projectId: zodOpenapi.z.string(),
+  name: zodOpenapi.z.string(),
   type: zodOpenapi.z.string(),
   credentialStoreId: zodOpenapi.z.string(),
   retrievalParams: zodOpenapi.z.record(zodOpenapi.z.string(), zodOpenapi.z.unknown()).nullish(),
@@ -1974,115 +1976,6 @@ function generateIdFromName(name) {
   }
   return truncatedId;
 }
-
-// src/validation/preview-validation.ts
-var MAX_CODE_SIZE = 5e4;
-var MAX_DATA_SIZE = 1e4;
-var DANGEROUS_PATTERNS = [
-  {
-    pattern: /\beval\s*\(/i,
-    message: "eval() is not allowed"
-  },
-  {
-    pattern: /\bFunction\s*\(/i,
-    message: "Function constructor is not allowed"
-  },
-  {
-    pattern: /dangerouslySetInnerHTML/i,
-    message: "dangerouslySetInnerHTML is not allowed"
-  },
-  {
-    pattern: /<script\b/i,
-    message: "Script tags are not allowed"
-  },
-  {
-    pattern: /\bon\w+\s*=/i,
-    message: "Inline event handlers (onClick=, onLoad=, etc.) are not allowed"
-  },
-  {
-    pattern: /document\.write/i,
-    message: "document.write is not allowed"
-  },
-  {
-    pattern: /window\.location/i,
-    message: "window.location is not allowed"
-  },
-  {
-    pattern: /\.innerHTML\s*=/i,
-    message: "innerHTML manipulation is not allowed"
-  }
-];
-var ALLOWED_IMPORTS = ["lucide-react"];
-function validatePreview(preview) {
-  const errors = [];
-  if (!preview.code || typeof preview.code !== "string") {
-    return {
-      isValid: false,
-      errors: [{ field: "preview.code", message: "Code must be a non-empty string" }]
-    };
-  }
-  if (!preview.data || typeof preview.data !== "object") {
-    return {
-      isValid: false,
-      errors: [{ field: "preview.data", message: "Data must be an object" }]
-    };
-  }
-  if (preview.code.length > MAX_CODE_SIZE) {
-    errors.push({
-      field: "preview.code",
-      message: `Code size exceeds maximum allowed (${MAX_CODE_SIZE} characters)`
-    });
-  }
-  const dataString = JSON.stringify(preview.data);
-  if (dataString.length > MAX_DATA_SIZE) {
-    errors.push({
-      field: "preview.data",
-      message: `Data size exceeds maximum allowed (${MAX_DATA_SIZE} characters)`
-    });
-  }
-  for (const { pattern, message } of DANGEROUS_PATTERNS) {
-    if (pattern.test(preview.code)) {
-      errors.push({
-        field: "preview.code",
-        message: `Code contains potentially dangerous pattern: ${message}`
-      });
-    }
-  }
-  const importMatches = preview.code.matchAll(/import\s+.*?\s+from\s+['"]([^'"]+)['"]/g);
-  for (const match of importMatches) {
-    const importPath = match[1];
-    if (!ALLOWED_IMPORTS.includes(importPath)) {
-      errors.push({
-        field: "preview.code",
-        message: `Import from "${importPath}" is not allowed. Only imports from ${ALLOWED_IMPORTS.join(", ")} are permitted`
-      });
-    }
-  }
-  const hasFunctionDeclaration = /function\s+\w+\s*\(/.test(preview.code);
-  if (!hasFunctionDeclaration) {
-    errors.push({
-      field: "preview.code",
-      message: "Code must contain a function declaration"
-    });
-  }
-  const hasReturn = /return\s*\(?\s*</.test(preview.code);
-  if (!hasReturn) {
-    errors.push({
-      field: "preview.code",
-      message: "Component function must have a return statement with JSX"
-    });
-  }
-  if (/\bexport\s+(default\s+)?/i.test(preview.code)) {
-    errors.push({
-      field: "preview.code",
-      message: "Code should not contain export statements"
-    });
-  }
-  return {
-    isValid: errors.length === 0,
-    errors
-  };
-}
 function validatePropsAsJsonSchema(props) {
   if (!props || typeof props === "object" && Object.keys(props).length === 0) {
     return {
@@ -2186,6 +2079,109 @@ function validatePropsAsJsonSchema(props) {
   }
 }
 
+// src/validation/render-validation.ts
+var MAX_CODE_SIZE = 5e4;
+var MAX_DATA_SIZE = 1e4;
+var DANGEROUS_PATTERNS = [
+  {
+    pattern: /\beval\s*\(/i,
+    message: "eval() is not allowed"
+  },
+  {
+    pattern: /\bFunction\s*\(/i,
+    message: "Function constructor is not allowed"
+  },
+  {
+    pattern: /dangerouslySetInnerHTML/i,
+    message: "dangerouslySetInnerHTML is not allowed"
+  },
+  {
+    pattern: /<script\b/i,
+    message: "Script tags are not allowed"
+  },
+  {
+    pattern: /\bon\w+\s*=/i,
+    message: "Inline event handlers (onClick=, onLoad=, etc.) are not allowed"
+  },
+  {
+    pattern: /document\.write/i,
+    message: "document.write is not allowed"
+  },
+  {
+    pattern: /window\.location/i,
+    message: "window.location is not allowed"
+  },
+  {
+    pattern: /\.innerHTML\s*=/i,
+    message: "innerHTML manipulation is not allowed"
+  }
+];
+var ALLOWED_IMPORTS = ["lucide-react"];
+function validateRender(render) {
+  const errors = [];
+  if (!render.component || typeof render.component !== "string") {
+    return {
+      isValid: false,
+      errors: [{ field: "render.component", message: "Component must be a non-empty string" }]
+    };
+  }
+  if (!render.mockData || typeof render.mockData !== "object") {
+    return {
+      isValid: false,
+      errors: [{ field: "render.mockData", message: "MockData must be an object" }]
+    };
+  }
+  if (render.component.length > MAX_CODE_SIZE) {
+    errors.push({
+      field: "render.component",
+      message: `Component size exceeds maximum allowed (${MAX_CODE_SIZE} characters)`
+    });
+  }
+  const dataString = JSON.stringify(render.mockData);
+  if (dataString.length > MAX_DATA_SIZE) {
+    errors.push({
+      field: "render.mockData",
+      message: `MockData size exceeds maximum allowed (${MAX_DATA_SIZE} characters)`
+    });
+  }
+  for (const { pattern, message } of DANGEROUS_PATTERNS) {
+    if (pattern.test(render.component)) {
+      errors.push({
+        field: "render.component",
+        message: `Component contains potentially dangerous pattern: ${message}`
+      });
+    }
+  }
+  const importMatches = render.component.matchAll(/import\s+.*?\s+from\s+['"]([^'"]+)['"]/g);
+  for (const match of importMatches) {
+    const importPath = match[1];
+    if (!ALLOWED_IMPORTS.includes(importPath) && !importPath.startsWith(".")) {
+      errors.push({
+        field: "render.component",
+        message: `Import from "${importPath}" is not allowed. Only imports from ${ALLOWED_IMPORTS.join(", ")} are permitted`
+      });
+    }
+  }
+  const hasFunctionDeclaration = /function\s+\w+\s*\(/.test(render.component);
+  if (!hasFunctionDeclaration) {
+    errors.push({
+      field: "render.component",
+      message: "Component must contain a function declaration"
+    });
+  }
+  const hasReturn = /return\s*\(?\s*</.test(render.component);
+  if (!hasReturn) {
+    errors.push({
+      field: "render.component",
+      message: "Component function must have a return statement with JSX"
+    });
+  }
+  return {
+    isValid: errors.length === 0,
+    errors
+  };
+}
+
 exports.A2AMessageMetadataSchema = A2AMessageMetadataSchema;
 exports.AgentApiInsertSchema = AgentApiInsertSchema;
 exports.AgentApiSelectSchema = AgentApiSelectSchema;
@@ -2428,7 +2424,7 @@ exports.validateAgentStructure = validateAgentStructure;
 exports.validateAndTypeAgentData = validateAndTypeAgentData;
 exports.validateArtifactComponentReferences = validateArtifactComponentReferences;
 exports.validateDataComponentReferences = validateDataComponentReferences;
-exports.validatePreview = validatePreview;
 exports.validatePropsAsJsonSchema = validatePropsAsJsonSchema;
+exports.validateRender = validateRender;
 exports.validateSubAgentExternalAgentRelations = validateSubAgentExternalAgentRelations;
 exports.validateToolReferences = validateToolReferences;