@inkeep/agents-core 0.38.0 → 0.38.2

package/dist/auth/auth.js

@@ -1,4 +1,4 @@
-import { generateId } from '../chunk-MGHGIB7U.js';
+import { generateId } from '../chunk-VXHL7CJY.js';
 import { env } from '../chunk-ZIXAWYZI.js';
 import { ssoProvider } from '../chunk-GENLXHZ4.js';
 import { ownerRole, adminRole, memberRole, ac } from '../chunk-JNBVHWXX.js';

package/dist/{auth-detection-7G0Dxt55.d.ts → auth-detection-B8jOnR88.d.ts}

@@ -55,6 +55,8 @@ declare const SPAN_KEYS: {
     readonly AI_TOOL_CALL_ARGS: "ai.toolCall.args";
     readonly AI_TOOL_CALL_ID: "ai.toolCall.id";
     readonly AI_TOOL_TYPE: "ai.toolType";
+    readonly AI_TOOL_CALL_MCP_SERVER_ID: "ai.toolCall.mcpServerId";
+    readonly AI_TOOL_CALL_MCP_SERVER_NAME: "ai.toolCall.mcpServerName";
     readonly TOOL_PURPOSE: "tool.purpose";
     readonly TOOL_NAME: "tool.name";
     readonly TOOL_CALL_ID: "tool.callId";
@@ -106,6 +108,7 @@ declare const ACTIVITY_STATUS: {
     readonly SUCCESS: "success";
     readonly ERROR: "error";
     readonly PENDING: "pending";
+    readonly WARNING: "warning";
 };
 /** Agent IDs */
 declare const AGENT_IDS: {

package/dist/{chunk-7IQFIW44.js → chunk-C7XZUN4D.js}

@@ -14,7 +14,10 @@ var ANTHROPIC_MODELS = {
   CLAUDE_3_5_HAIKU_20241022: "anthropic/claude-3-5-haiku-20241022"
 };
 var OPENAI_MODELS = {
+  GPT_5_2: "openai/gpt-5.2",
+  GPT_5_2_20251211: "openai/gpt-5.2-2025-12-11",
   GPT_5_1: "openai/gpt-5.1",
+  GPT_5_1_20251113: "openai/gpt-5.1-2025-11-13",
   GPT_5: "openai/gpt-5",
   GPT_5_20250807: "openai/gpt-5-2025-08-07",
   GPT_5_MINI: "openai/gpt-5-mini",

package/dist/{chunk-4JZT4QEE.js → chunk-KVVL5WLM.js}

@@ -10,7 +10,7 @@ function discoverScopes(resourceMetadata, metadata) {
 async function discoverMcpMetadata(mcpServerUrl, logger) {
   try {
     let resourceMetadata = null;
-    let authServerUrl = new URL(mcpServerUrl);
+    let authServerUrl = new URL("/", mcpServerUrl);
     try {
       resourceMetadata = await discoverOAuthProtectedResourceMetadata(mcpServerUrl);
       if (resourceMetadata?.authorization_servers?.length && resourceMetadata.authorization_servers[0]) {

package/dist/{chunk-MQMMFK2K.js → chunk-NLLGMFQ6.js}

@@ -57,6 +57,8 @@ var SPAN_KEYS = {
   AI_TOOL_CALL_ARGS: "ai.toolCall.args",
   AI_TOOL_CALL_ID: "ai.toolCall.id",
   AI_TOOL_TYPE: "ai.toolType",
+  AI_TOOL_CALL_MCP_SERVER_ID: "ai.toolCall.mcpServerId",
+  AI_TOOL_CALL_MCP_SERVER_NAME: "ai.toolCall.mcpServerName",
   TOOL_PURPOSE: "tool.purpose",
   TOOL_NAME: "tool.name",
   TOOL_CALL_ID: "tool.callId",
@@ -112,7 +114,8 @@ var ACTIVITY_TYPES = {
 var ACTIVITY_STATUS = {
   SUCCESS: "success",
   ERROR: "error",
-  PENDING: "pending"
+  PENDING: "pending",
+  WARNING: "warning"
 };
 var AGENT_IDS = {
   USER: "user",

package/dist/{chunk-MGHGIB7U.js → chunk-VXHL7CJY.js}

@@ -1134,6 +1134,12 @@ function deriveComposioUserId(tenantId, projectId) {
   const SEPARATOR = "||";
   return `${tenantId}${SEPARATOR}${projectId}`;
 }
+function getComposioUserId(tenantId, projectId, credentialScope, userId) {
+  if (credentialScope === "user" && userId) {
+    return userId;
+  }
+  return deriveComposioUserId(tenantId, projectId);
+}
 function extractComposioServerId(mcpUrl) {
   if (!mcpUrl.includes("composio.dev")) {
     return null;
@@ -1150,12 +1156,6 @@ function extractComposioServerId(mcpUrl) {
     return null;
   }
 }
-function addUserIdToUrl(url, userId) {
-  const urlObj = new URL(url);
-  urlObj.searchParams.set("user_id", userId);
-  urlObj.searchParams.delete("transport");
-  return urlObj.toString();
-}
 async function deleteComposioConnectedAccount(accountId) {
   const composioInstance = getComposioInstance();
   if (!composioInstance) {
@@ -1178,7 +1178,8 @@ async function fetchComposioConnectedAccounts(derivedUserId) {
   }
   try {
     const connectedAccounts = await composioInstance.connectedAccounts.list({
-      userIds: [derivedUserId]
+      userIds: [derivedUserId],
+      statuses: ["ACTIVE", "INITIATED"]
     });
     return connectedAccounts;
   } catch (error) {
@@ -1186,7 +1187,7 @@ async function fetchComposioConnectedAccounts(derivedUserId) {
     return null;
   }
 }
-async function isComposioMCPServerAuthenticated(tenantId, projectId, mcpServerUrl) {
+async function isComposioMCPServerAuthenticated(tenantId, projectId, mcpServerUrl, credentialScope = "project", userId) {
   const composioApiKey = process.env.COMPOSIO_API_KEY;
   if (!composioApiKey) {
     logger4.info({}, "Composio API key not configured, skipping auth check");
@@ -1197,7 +1198,7 @@ async function isComposioMCPServerAuthenticated(tenantId, projectId, mcpServerUr
     logger4.info({ mcpServerUrl }, "Could not extract Composio server ID from URL");
     return false;
   }
-  const derivedUserId = deriveComposioUserId(tenantId, projectId);
+  const composioUserId = getComposioUserId(tenantId, projectId, credentialScope, userId);
   const composioInstance = getComposioInstance();
   if (!composioInstance) {
     logger4.info({}, "Composio not configured, skipping auth check");
@@ -1209,7 +1210,7 @@ async function isComposioMCPServerAuthenticated(tenantId, projectId, mcpServerUr
     if (!firstAuthConfigId) {
       return false;
     }
-    const connectedAccounts = await fetchComposioConnectedAccounts(derivedUserId);
+    const connectedAccounts = await fetchComposioConnectedAccounts(composioUserId);
     if (!connectedAccounts) {
       return false;
     }
@@ -1270,15 +1271,44 @@ async function ensureComposioAccount(composioMcpServer, derivedUserId, initiated
     return null;
   }
 }
+async function getComposioOAuthRedirectUrl(tenantId, projectId, mcpServerUrl, credentialScope, userId) {
+  const composioApiKey = process.env.COMPOSIO_API_KEY;
+  if (!composioApiKey) {
+    logger4.info({}, "Composio API key not configured");
+    return null;
+  }
+  const serverId = extractComposioServerId(mcpServerUrl);
+  if (!serverId) {
+    logger4.info({ mcpServerUrl }, "Could not extract Composio server ID from URL");
+    return null;
+  }
+  const composioInstance = getComposioInstance();
+  if (!composioInstance) {
+    logger4.info({}, "Composio not configured");
+    return null;
+  }
+  const composioUserId = getComposioUserId(tenantId, projectId, credentialScope, userId);
+  try {
+    const composioMcpServer = await composioInstance.mcp.get(serverId);
+    const connectedAccounts = await fetchComposioConnectedAccounts(composioUserId);
+    const initiatedAccounts = connectedAccounts?.items.filter((account) => account.status === "INITIATED") ?? [];
+    const redirectUrl = await ensureComposioAccount(
+      composioMcpServer,
+      composioUserId,
+      initiatedAccounts
+    );
+    return redirectUrl;
+  } catch (error) {
+    logger4.error({ error, mcpServerUrl }, "Failed to get Composio OAuth redirect URL");
+    return null;
+  }
+}
 async function transformComposioServer(composioMcpServer, authenticatedAuthConfigIds, initiatedAccounts, derivedUserId) {
   const isAuthenticated = composioMcpServer.authConfigIds.some(
     (authConfigId) => authenticatedAuthConfigIds.has(authConfigId)
   );
-  let url = composioMcpServer.MCPUrl;
   let thirdPartyConnectAccountUrl;
-  if (isAuthenticated) {
-    url = addUserIdToUrl(url, derivedUserId);
-  } else {
+  if (!isAuthenticated) {
     const redirectUrl = await ensureComposioAccount(
       composioMcpServer,
       derivedUserId,
@@ -1288,22 +1318,20 @@ async function transformComposioServer(composioMcpServer, authenticatedAuthConfi
       return null;
     }
     thirdPartyConnectAccountUrl = redirectUrl;
-    url = addUserIdToUrl(url, derivedUserId);
   }
   return transformComposioServerData(
     composioMcpServer,
     isAuthenticated,
-    url,
+    composioMcpServer.MCPUrl,
     thirdPartyConnectAccountUrl
   );
 }
-async function fetchComposioServers(tenantId, projectId) {
+async function fetchComposioServers() {
   const composioApiKey = process.env.COMPOSIO_API_KEY;
   if (!composioApiKey) {
     logger4.info({}, "COMPOSIO_API_KEY not configured, skipping Composio servers");
     return [];
   }
-  const derivedUserId = deriveComposioUserId(tenantId, projectId);
   const composioInstance = getComposioInstance();
   if (!composioInstance) {
     logger4.info({}, "Composio not configured, returning empty list");
@@ -1316,44 +1344,30 @@ async function fetchComposioServers(tenantId, projectId) {
       page: 1,
       authConfigs: []
     });
-    const userConnectedAccounts = await composioInstance.connectedAccounts.list({
-      userIds: [derivedUserId]
-    });
-    const activeAccounts = userConnectedAccounts?.items.filter(
-      (account) => account.status === "ACTIVE"
-    );
-    const initiatedAccounts = userConnectedAccounts?.items.filter(
-      (account) => account.status === "INITIATED"
-    );
-    const authenticatedAuthConfigIds = new Set(
-      activeAccounts?.map((account) => account.authConfig.id) ?? []
-    );
-    const transformedServers = await Promise.all(
-      composioMcpServers?.items.map(
-        (server) => transformComposioServer(
-          server,
-          authenticatedAuthConfigIds,
-          initiatedAccounts ?? [],
-          derivedUserId
-        )
+    const transformedServers = composioMcpServers?.items.map(
+      (server) => transformComposioServerData(
+        server,
+        false,
+        // Always false for catalog - we want scope dialog to show
+        server.MCPUrl,
+        // Raw URL without user_id
+        void 0
+        // No OAuth redirect URL for catalog
       )
     );
-    const validServers = transformedServers.filter(
-      (server) => server !== null
-    );
-    return validServers;
+    return transformedServers ?? [];
   } catch (error) {
     logger4.error({ error }, "Failed to fetch Composio servers");
     return [];
   }
 }
-async function fetchSingleComposioServer(tenantId, projectId, mcpServerUrl) {
+async function fetchSingleComposioServer(tenantId, projectId, mcpServerUrl, credentialScope = "project", userId) {
   const composioApiKey = process.env.COMPOSIO_API_KEY;
   if (!composioApiKey) {
     logger4.debug({}, "COMPOSIO_API_KEY not configured");
     return null;
   }
-  const derivedUserId = deriveComposioUserId(tenantId, projectId);
+  const composioUserId = getComposioUserId(tenantId, projectId, credentialScope, userId);
   const composioInstance = getComposioInstance();
   if (!composioInstance) {
     logger4.info({}, "Composio not configured, returning null");
@@ -1367,7 +1381,8 @@ async function fetchSingleComposioServer(tenantId, projectId, mcpServerUrl) {
     }
     const composioMcpServer = await composioInstance.mcp.get(serverId);
     const userConnectedAccounts = await composioInstance.connectedAccounts.list({
-      userIds: [derivedUserId]
+      userIds: [composioUserId],
+      statuses: ["ACTIVE", "INITIATED"]
     });
     const activeAccounts = userConnectedAccounts?.items.filter(
       (account) => account.status === "ACTIVE"
@@ -1382,7 +1397,7 @@ async function fetchSingleComposioServer(tenantId, projectId, mcpServerUrl) {
       composioMcpServer,
       authenticatedAuthConfigIds,
       initiatedAccounts ?? [],
-      derivedUserId
+      composioUserId
     );
     return transformedServer;
   } catch (error) {
@@ -1393,11 +1408,17 @@ async function fetchSingleComposioServer(tenantId, projectId, mcpServerUrl) {
 
 // src/utils/third-party-mcp-servers/third-party-check.ts
 var logger5 = getLogger("third-party-check");
-async function isThirdPartyMCPServerAuthenticated(tenantId, projectId, mcpServerUrl) {
+async function isThirdPartyMCPServerAuthenticated(tenantId, projectId, mcpServerUrl, credentialScope = "project", userId) {
   const composioServerId = extractComposioServerId(mcpServerUrl);
   if (composioServerId) {
     logger5.debug({ mcpServerUrl }, "Detected Composio MCP server, checking auth status");
-    return isComposioMCPServerAuthenticated(tenantId, projectId, mcpServerUrl);
+    return isComposioMCPServerAuthenticated(
+      tenantId,
+      projectId,
+      mcpServerUrl,
+      credentialScope,
+      userId
+    );
   }
   logger5.info({ mcpServerUrl }, "Unknown third-party MCP server provider");
   return false;
@@ -1450,4 +1471,4 @@ function getTracer(serviceName, serviceVersion) {
   }
 }
 
-export { CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, ERROR_DOCS_BASE_URL, ErrorCode, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, ModelFactory, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, createApiError, createExecutionContext, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, extractComposioServerId, extractPublicId, fetchComposioServers, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateApiKey, generateId, generateServiceToken, getConversationId, getCredentialStoreLookupKeyFromRetrievalParams, getRequestExecutionContext, getTracer, handleApiError, hashApiKey, isApiKeyExpired, isComposioMCPServerAuthenticated, isThirdPartyMCPServerAuthenticated, maskApiKey, normalizeDateString, problemDetailsSchema, setSpanWithError, signTempToken, toISODateString, validateApiKey, validateTargetAgent, validateTenantId, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken };
+export { CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, ERROR_DOCS_BASE_URL, ErrorCode, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, ModelFactory, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, createApiError, createExecutionContext, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, extractComposioServerId, extractPublicId, fetchComposioServers, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateApiKey, generateId, generateServiceToken, getComposioOAuthRedirectUrl, getComposioUserId, getConversationId, getCredentialStoreLookupKeyFromRetrievalParams, getRequestExecutionContext, getTracer, handleApiError, hashApiKey, isApiKeyExpired, isComposioMCPServerAuthenticated, isThirdPartyMCPServerAuthenticated, maskApiKey, normalizeDateString, problemDetailsSchema, setSpanWithError, signTempToken, toISODateString, validateApiKey, validateTargetAgent, validateTenantId, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken };

package/dist/client-exports.d.ts

@@ -1,4 +1,4 @@
-export { i as ACTIVITY_NAMES, g as ACTIVITY_STATUS, f as ACTIVITY_TYPES, h as AGENT_IDS, p as AGGREGATE_OPERATORS, A as AI_OPERATIONS, j as AI_TOOL_TYPES, o as DATA_SOURCES, k as DATA_TYPES, D as DELEGATION_FROM_SUB_AGENT_ID, b as DELEGATION_ID, a as DELEGATION_TO_SUB_AGENT_ID, F as FIELD_TYPES, O as OPERATORS, m as ORDER_DIRECTIONS, P as PANEL_TYPES, q as QUERY_DEFAULTS, l as QUERY_EXPRESSIONS, Q as QUERY_FIELD_CONFIGS, n as QUERY_TYPES, R as REDUCE_OPERATIONS, e as SPAN_KEYS, S as SPAN_NAMES, T as TRANSFER_FROM_SUB_AGENT_ID, c as TRANSFER_TO_SUB_AGENT_ID, U as UNKNOWN_VALUE, d as detectAuthenticationRequired } from './auth-detection-7G0Dxt55.js';
+export { i as ACTIVITY_NAMES, g as ACTIVITY_STATUS, f as ACTIVITY_TYPES, h as AGENT_IDS, p as AGGREGATE_OPERATORS, A as AI_OPERATIONS, j as AI_TOOL_TYPES, o as DATA_SOURCES, k as DATA_TYPES, D as DELEGATION_FROM_SUB_AGENT_ID, b as DELEGATION_ID, a as DELEGATION_TO_SUB_AGENT_ID, F as FIELD_TYPES, O as OPERATORS, m as ORDER_DIRECTIONS, P as PANEL_TYPES, q as QUERY_DEFAULTS, l as QUERY_EXPRESSIONS, Q as QUERY_FIELD_CONFIGS, n as QUERY_TYPES, R as REDUCE_OPERATIONS, e as SPAN_KEYS, S as SPAN_NAMES, T as TRANSFER_FROM_SUB_AGENT_ID, c as TRANSFER_TO_SUB_AGENT_ID, U as UNKNOWN_VALUE, d as detectAuthenticationRequired } from './auth-detection-B8jOnR88.js';
 import { z } from '@hono/zod-openapi';
 import { a as ConversationHistoryConfig, F as FunctionApiInsertSchema, A as ApiKeyApiUpdateSchema, g as FullAgentAgentInsertSchema } from './utility-dsfXkYTu.js';
 export { k as AgentStopWhen, h as AgentStopWhenSchema, f as CredentialStoreType, p as FunctionApiSelectSchema, q as FunctionApiUpdateSchema, o as MCPTransportType, n as ModelSettings, m as ModelSettingsSchema, j as StopWhen, S as StopWhenSchema, l as SubAgentStopWhen, i as SubAgentStopWhenSchema } from './utility-dsfXkYTu.js';

package/dist/client-exports.js

@@ -1,8 +1,8 @@
-export { ACTIVITY_NAMES, ACTIVITY_STATUS, ACTIVITY_TYPES, AGENT_IDS, AGGREGATE_OPERATORS, AI_OPERATIONS, AI_TOOL_TYPES, DATA_SOURCES, DATA_TYPES, DELEGATION_FROM_SUB_AGENT_ID, DELEGATION_ID, DELEGATION_TO_SUB_AGENT_ID, FIELD_TYPES, OPERATORS, ORDER_DIRECTIONS, PANEL_TYPES, QUERY_DEFAULTS, QUERY_EXPRESSIONS, QUERY_FIELD_CONFIGS, QUERY_TYPES, REDUCE_OPERATIONS, SPAN_KEYS, SPAN_NAMES, TRANSFER_FROM_SUB_AGENT_ID, TRANSFER_TO_SUB_AGENT_ID, UNKNOWN_VALUE } from './chunk-MQMMFK2K.js';
+export { ACTIVITY_NAMES, ACTIVITY_STATUS, ACTIVITY_TYPES, AGENT_IDS, AGGREGATE_OPERATORS, AI_OPERATIONS, AI_TOOL_TYPES, DATA_SOURCES, DATA_TYPES, DELEGATION_FROM_SUB_AGENT_ID, DELEGATION_ID, DELEGATION_TO_SUB_AGENT_ID, FIELD_TYPES, OPERATORS, ORDER_DIRECTIONS, PANEL_TYPES, QUERY_DEFAULTS, QUERY_EXPRESSIONS, QUERY_FIELD_CONFIGS, QUERY_TYPES, REDUCE_OPERATIONS, SPAN_KEYS, SPAN_NAMES, TRANSFER_FROM_SUB_AGENT_ID, TRANSFER_TO_SUB_AGENT_ID, UNKNOWN_VALUE } from './chunk-NLLGMFQ6.js';
 import { ModelSettingsSchema, FullAgentAgentInsertSchema, ArtifactComponentApiInsertSchema } from './chunk-UK63CULA.js';
 export { AgentStopWhenSchema, FunctionApiInsertSchema, FunctionApiSelectSchema, FunctionApiUpdateSchema, ModelSettingsSchema, StopWhenSchema, SubAgentStopWhenSchema, validatePropsAsJsonSchema } from './chunk-UK63CULA.js';
 import { schemaValidationDefaults } from './chunk-Z64UK4CA.js';
-export { detectAuthenticationRequired } from './chunk-4JZT4QEE.js';
+export { detectAuthenticationRequired } from './chunk-KVVL5WLM.js';
 export { DEFAULT_NANGO_STORE_ID } from './chunk-3OPS2LN5.js';
 import { CredentialStoreType } from './chunk-YFHT5M2R.js';
 export { CredentialStoreType, MCPTransportType } from './chunk-YFHT5M2R.js';

package/dist/constants/models.d.ts

@@ -16,7 +16,10 @@ declare const ANTHROPIC_MODELS: {
     readonly CLAUDE_3_5_HAIKU_20241022: "anthropic/claude-3-5-haiku-20241022";
 };
 declare const OPENAI_MODELS: {
+    readonly GPT_5_2: "openai/gpt-5.2";
+    readonly GPT_5_2_20251211: "openai/gpt-5.2-2025-12-11";
     readonly GPT_5_1: "openai/gpt-5.1";
+    readonly GPT_5_1_20251113: "openai/gpt-5.1-2025-11-13";
     readonly GPT_5: "openai/gpt-5";
     readonly GPT_5_20250807: "openai/gpt-5-2025-08-07";
     readonly GPT_5_MINI: "openai/gpt-5-mini";

package/dist/constants/models.js

@@ -1 +1 @@
-export { ANTHROPIC_MODELS, GOOGLE_MODELS, OPENAI_MODELS } from '../chunk-7IQFIW44.js';
+export { ANTHROPIC_MODELS, GOOGLE_MODELS, OPENAI_MODELS } from '../chunk-C7XZUN4D.js';

package/dist/index.d.ts

@@ -1,6 +1,6 @@
 export { ANTHROPIC_MODELS, AnthropicModel, GOOGLE_MODELS, GoogleModel, ModelName, OPENAI_MODELS, OpenAIModel } from './constants/models.js';
-import { r as PinoLogger, s as getLogger } from './auth-detection-7G0Dxt55.js';
-export { i as ACTIVITY_NAMES, g as ACTIVITY_STATUS, f as ACTIVITY_TYPES, h as AGENT_IDS, p as AGGREGATE_OPERATORS, A as AI_OPERATIONS, j as AI_TOOL_TYPES, o as DATA_SOURCES, k as DATA_TYPES, D as DELEGATION_FROM_SUB_AGENT_ID, b as DELEGATION_ID, a as DELEGATION_TO_SUB_AGENT_ID, F as FIELD_TYPES, L as LoggerFactoryConfig, M as McpOAuthFlowResult, u as McpTokenExchangeResult, t as OAuthConfig, O as OPERATORS, m as ORDER_DIRECTIONS, P as PANEL_TYPES, x as PinoLoggerConfig, q as QUERY_DEFAULTS, l as QUERY_EXPRESSIONS, Q as QUERY_FIELD_CONFIGS, n as QUERY_TYPES, R as REDUCE_OPERATIONS, e as SPAN_KEYS, S as SPAN_NAMES, T as TRANSFER_FROM_SUB_AGENT_ID, c as TRANSFER_TO_SUB_AGENT_ID, U as UNKNOWN_VALUE, d as detectAuthenticationRequired, w as exchangeMcpAuthorizationCode, v as initiateMcpOAuthFlow, y as loggerFactory } from './auth-detection-7G0Dxt55.js';
+import { r as PinoLogger, s as getLogger } from './auth-detection-B8jOnR88.js';
+export { i as ACTIVITY_NAMES, g as ACTIVITY_STATUS, f as ACTIVITY_TYPES, h as AGENT_IDS, p as AGGREGATE_OPERATORS, A as AI_OPERATIONS, j as AI_TOOL_TYPES, o as DATA_SOURCES, k as DATA_TYPES, D as DELEGATION_FROM_SUB_AGENT_ID, b as DELEGATION_ID, a as DELEGATION_TO_SUB_AGENT_ID, F as FIELD_TYPES, L as LoggerFactoryConfig, M as McpOAuthFlowResult, u as McpTokenExchangeResult, t as OAuthConfig, O as OPERATORS, m as ORDER_DIRECTIONS, P as PANEL_TYPES, x as PinoLoggerConfig, q as QUERY_DEFAULTS, l as QUERY_EXPRESSIONS, Q as QUERY_FIELD_CONFIGS, n as QUERY_TYPES, R as REDUCE_OPERATIONS, e as SPAN_KEYS, S as SPAN_NAMES, T as TRANSFER_FROM_SUB_AGENT_ID, c as TRANSFER_TO_SUB_AGENT_ID, U as UNKNOWN_VALUE, d as detectAuthenticationRequired, w as exchangeMcpAuthorizationCode, v as initiateMcpOAuthFlow, y as loggerFactory } from './auth-detection-B8jOnR88.js';
 export { AGENT_EXECUTION_TRANSFER_COUNT_DEFAULT, AGENT_EXECUTION_TRANSFER_COUNT_MAX, AGENT_EXECUTION_TRANSFER_COUNT_MIN, CONTEXT_FETCHER_HTTP_TIMEOUT_MS_DEFAULT, STATUS_UPDATE_MAX_INTERVAL_SECONDS, STATUS_UPDATE_MAX_NUM_EVENTS, SUB_AGENT_TURN_GENERATION_STEPS_DEFAULT, SUB_AGENT_TURN_GENERATION_STEPS_MAX, SUB_AGENT_TURN_GENERATION_STEPS_MIN, VALIDATION_AGENT_PROMPT_MAX_CHARS, VALIDATION_SUB_AGENT_PROMPT_MAX_CHARS, schemaValidationDefaults } from './constants/schema-validation/index.js';
 import { z } from '@hono/zod-openapi';
 import { r as CredentialReferenceApiInsert, s as ContextConfigSelect, C as ContextFetchDefinition, o as MCPTransportType, t as MCPToolConfig, u as ProjectScopeConfig, v as FullAgentDefinition, w as AgentScopeConfig, a as ConversationHistoryConfig, x as PaginationConfig, y as AgentInsert, z as AgentUpdate, B as AgentSelect, D as ApiKeySelect, E as ApiKeyInsert, G as ApiKeyUpdate, H as CreateApiKeyParams, I as ApiKeyCreateResult, J as ArtifactComponentSelect, K as ArtifactComponentInsert, L as ArtifactComponentUpdate, N as SubAgentScopeConfig, O as ContextCacheSelect, Q as ContextCacheInsert, R as ContextConfigInsert, U as ContextConfigUpdate, V as ConversationSelect, W as ConversationInsert, d as ConversationMetadata, X as ConversationUpdate, Y as CredentialReferenceSelect, Z as ToolSelect, _ as ExternalAgentSelect, $ as CredentialReferenceInsert, a0 as CredentialReferenceUpdate, a1 as DataComponentSelect, a2 as DataComponentInsert, a3 as DataComponentUpdate, a4 as ExternalAgentInsert, a5 as ExternalAgentUpdate, a6 as FunctionApiInsert, a7 as FunctionToolApiInsert, a8 as FunctionToolApiUpdate, a9 as Artifact, aa as LedgerArtifactSelect, e as MessageMetadata, M as MessageContent, ab as MessageVisibility, ac as MessageInsert, ad as MessageUpdate, ae as FullProjectDefinition, af as ProjectInfo, ag as ProjectSelect, ah as PaginationResult, ai as ProjectResourceCounts, aj as ProjectInsert, ak as ProjectUpdate, al as SubAgentExternalAgentRelationInsert, am as SubAgentRelationInsert, an as SubAgentRelationUpdate, ao as SubAgentToolRelationUpdate, b as ToolMcpConfig, c as ToolServerCapabilities, ap as SubAgentInsert, aq as SubAgentUpdate, ar as SubAgentSelect, as as SubAgentTeamAgentRelationInsert, at as TaskInsert, T as TaskMetadataConfig, au as TaskSelect, av as McpTool, aw as ToolInsert, ax as ToolUpdate, f as CredentialStoreType, ay as ExecutionContext, az as MessageSelect, n as ModelSettings, aA as PrebuiltMCPServerSchema } from './utility-dsfXkYTu.js';
@@ -4577,35 +4577,59 @@ declare function verifyTempToken(publicKeyPem: string, token: string): Promise<T
  */
 
 type PrebuiltMCPServer = z.infer<typeof PrebuiltMCPServerSchema>;
+/**
+ * Credential scope type for MCP servers
+ */
+type CredentialScope = 'project' | 'user';
+/**
+ * Get the Composio user ID based on credential scope
+ * - For project-scoped: uses derived tenant||project ID (shared team credentials)
+ * - For user-scoped: uses the actual user ID (per-user credentials)
+ */
+declare function getComposioUserId(tenantId: string, projectId: string, credentialScope: CredentialScope, userId?: string): string;
 /**
  * Extract server ID from a Composio MCP URL
  * Example: https://backend.composio.dev/v3/mcp/1234-1234-1234?user_id=... -> 1234-1234-1234
  */
 declare function extractComposioServerId(mcpUrl: string): string | null;
 /**
- * Check if a Composio MCP server is authenticated for the given tenant/project
+ * Check if a Composio MCP server is authenticated for the given tenant/project/user
  * Returns true if authenticated, false otherwise
+ * @param credentialScope - 'project' for shared team credentials, 'user' for per-user credentials
+ * @param userId - The actual user ID (required if credentialScope is 'user')
  */
-declare function isComposioMCPServerAuthenticated(tenantId: string, projectId: string, mcpServerUrl: string): Promise<boolean>;
+declare function isComposioMCPServerAuthenticated(tenantId: string, projectId: string, mcpServerUrl: string, credentialScope?: CredentialScope, userId?: string): Promise<boolean>;
 /**
- * Fetch and transform Composio MCP servers for a tenant/project
+ * Get the OAuth redirect URL for a Composio MCP server based on credential scope
+ * This should be called AFTER scope selection to get the correct URL
+ * @param credentialScope - 'project' for shared team credentials, 'user' for per-user credentials
+ * @param userId - The actual user ID (required if credentialScope is 'user')
  */
-declare function fetchComposioServers(tenantId: string, projectId: string): Promise<PrebuiltMCPServer[]>;
+declare function getComposioOAuthRedirectUrl(tenantId: string, projectId: string, mcpServerUrl: string, credentialScope: CredentialScope, userId?: string): Promise<string | null>;
+/**
+ * Fetch Composio MCP servers for the catalog
+ */
+declare function fetchComposioServers(): Promise<PrebuiltMCPServer[]>;
 /**
  * Fetch a single Composio MCP server by URL and return its details with auth status
+ * @param credentialScope - 'project' uses tenant||project, 'user' uses actual userId
+ * @param userId - The actual user ID (required if credentialScope is 'user')
  */
-declare function fetchSingleComposioServer(tenantId: string, projectId: string, mcpServerUrl: string): Promise<PrebuiltMCPServer | null>;
+declare function fetchSingleComposioServer(tenantId: string, projectId: string, mcpServerUrl: string, credentialScope?: CredentialScope, userId?: string): Promise<PrebuiltMCPServer | null>;
 
 /**
  * Third-Party MCP Server Authentication Check
  * Generic interface for checking authentication status of third-party MCP servers
  */
+
 /**
- * Check if a third-party MCP server is authenticated for the given tenant/project
+ * Check if a third-party MCP server is authenticated for the given tenant/project/user
  * This is a generic function that routes to the appropriate provider-specific check
  * Returns true if authenticated, false otherwise
+ * @param credentialScope - 'project' for shared team credentials, 'user' for per-user credentials
+ * @param userId - The actual user ID (required if credentialScope is 'user')
  */
-declare function isThirdPartyMCPServerAuthenticated(tenantId: string, projectId: string, mcpServerUrl: string): Promise<boolean>;
+declare function isThirdPartyMCPServerAuthenticated(tenantId: string, projectId: string, mcpServerUrl: string, credentialScope?: CredentialScope, userId?: string): Promise<boolean>;
 
 /**
  * Helper function to handle span errors consistently
@@ -4620,4 +4644,4 @@ declare function setSpanWithError(span: Span, error: Error, logger?: {
  */
 declare function getTracer(serviceName: string, serviceVersion?: string): Tracer;
 
-export { AgentInsert, type AgentLogger, AgentScopeConfig, AgentSelect, AgentUpdate, ApiKeyCreateResult, type ApiKeyGenerationResult, ApiKeyInsert, ApiKeySelect, ApiKeyUpdate, Artifact, ArtifactComponentInsert, ArtifactComponentSelect, ArtifactComponentUpdate, CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, type CommonCreateErrorResponses, type CommonDeleteErrorResponses, type CommonGetErrorResponses, type CommonUpdateErrorResponses, ContextCache, ContextCacheInsert, ContextCacheSelect, ContextConfigBuilder, type ContextConfigBuilderOptions, ContextConfigInsert, ContextConfigSelect, ContextConfigUpdate, ContextFetchDefinition, ContextFetcher, type ContextResolutionOptions, type ContextResolutionResult, ContextResolver, type ContextResolverInterface, type ContextValidationError, type ContextValidationResult, ConversationHistoryConfig, ConversationInsert, ConversationMetadata, ConversationSelect, ConversationUpdate, CreateApiKeyParams, type CredentialContext, type CredentialData, CredentialReferenceApiInsert, CredentialReferenceInsert, CredentialReferenceSelect, CredentialReferenceUpdate, type CredentialReferenceWithResources, type CredentialResolverInput, type CredentialStoreReference, CredentialStoreRegistry, CredentialStoreType, CredentialStuffer, DataComponentInsert, DataComponentSelect, DataComponentUpdate, DatabaseClient, type DotPaths, ERROR_DOCS_BASE_URL, ErrorCode, type ErrorCodes, type ErrorResponse, ExecutionContext, ExternalAgentInsert, ExternalAgentSelect, ExternalAgentUpdate, type FetchResult, FullAgentDefinition, FullProjectDefinition, FunctionApiInsert, FunctionToolApiInsert, FunctionToolApiUpdate, type GenerateServiceTokenParams, HTTP_REQUEST_PARTS, type HttpRequestPart, type LLMMessage, LedgerArtifactSelect, MCPToolConfig, MCPTransportType, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, type McpClientOptions, type McpSSEConfig, type McpServerConfig, type McpStreamableHttpConfig, McpTool, MessageContent, MessageInsert, MessageMetadata, MessageSelect, MessageUpdate, MessageVisibility, ModelFactory, ModelSettings, PaginationConfig, PaginationResult, type ParsedHttpRequest, PinoLogger, PrebuiltMCPServerSchema, type ProblemDetails, ProjectInfo, ProjectInsert, type ProjectLogger, ProjectResourceCounts, ProjectScopeConfig, ProjectSelect, ProjectUpdate, type ResolvedContext, type ServiceTokenPayload, type SignedTempToken, SubAgentExternalAgentRelationInsert, SubAgentInsert, SubAgentIsDefaultError, SubAgentRelationInsert, SubAgentRelationUpdate, SubAgentScopeConfig, SubAgentSelect, SubAgentTeamAgentRelationInsert, SubAgentToolRelationUpdate, SubAgentUpdate, TaskInsert, TaskMetadataConfig, TaskSelect, type TempTokenPayload, type TemplateContext, TemplateEngine, type TemplateRenderOptions, ToolInsert, ToolMcpConfig, ToolSelect, ToolServerCapabilities, ToolUpdate, type VerifyServiceTokenResult, addFunctionToolToSubAgent, addLedgerArtifacts, addToolToAgent, addUserToOrganization, agentHasArtifactComponents, apiFetch, associateArtifactComponentWithAgent, associateDataComponentWithAgent, cleanupTenantCache, clearContextConfigCache, clearConversationCache, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, contextConfig, contextValidationMiddleware, countApiKeys, countArtifactComponents, countArtifactComponentsForAgent, countContextConfigs, countCredentialReferences, countDataComponents, countExternalAgents, countLedgerArtifactsByTask, countMessagesByConversation, countProjects, createAgent, createAgentToolRelation, createApiError, createApiKey, createArtifactComponent, createContextConfig, createConversation, createCredentialReference, createDataComponent, createExecutionContext, createExternalAgent, createFullAgentServerSide, createFullProjectServerSide, createFunctionTool, createMessage, createOrGetConversation, createProject, createSubAgent, createSubAgentExternalAgentRelation, createSubAgentRelation, createSubAgentTeamAgentRelation, createTask, createTool, createValidatedDataAccess, dbResultToMcpTool, deleteAgent, deleteAgentArtifactComponentRelationByAgent, deleteAgentDataComponentRelationByAgent, deleteAgentRelationsByAgent, deleteAgentToolRelation, deleteAgentToolRelationByAgent, deleteApiKey, deleteArtifactComponent, deleteContextConfig, deleteConversation, deleteCredentialReference, deleteDataComponent, deleteExternalAgent, deleteFullAgent, deleteFullProject, deleteFunction, deleteFunctionTool, deleteLedgerArtifactsByContext, deleteLedgerArtifactsByTask, deleteMessage, deleteProject, deleteSubAgent, deleteSubAgentExternalAgentRelation, deleteSubAgentExternalAgentRelationsByAgent, deleteSubAgentExternalAgentRelationsBySubAgent, deleteSubAgentRelation, deleteSubAgentTeamAgentRelation, deleteSubAgentTeamAgentRelationsByAgent, deleteSubAgentTeamAgentRelationsBySubAgent, deleteTool, determineContextTrigger, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, externalAgentExists, externalAgentUrlExists, extractComposioServerId, extractPublicId, fetchComponentRelationships, fetchComposioServers, fetchDefinition, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateAndCreateApiKey, generateApiKey, generateId, generateServiceToken, getActiveAgentForConversation, getAgentById, getAgentRelationById, getAgentRelationByParams, getAgentRelations, getAgentRelationsByAgent, getAgentRelationsBySource, getAgentSubAgentInfos, getAgentToolRelationByAgent, getAgentToolRelationById, getAgentToolRelationByTool, getAgentWithDefaultSubAgent, getAgentsForTool, getAgentsUsingArtifactComponent, getAgentsUsingDataComponent, getApiKeyById, getApiKeyByPublicId, getArtifactComponentById, getArtifactComponentsForAgent, getCacheEntry, getCachedValidator, getContextConfigById, getContextConfigCacheEntries, getConversation, getConversationCacheEntries, getConversationHistory, getConversationId, getCredentialReference, getCredentialReferenceById, getCredentialReferenceWithResources, getCredentialStoreLookupKeyFromRetrievalParams, getDataComponent, getDataComponentsForAgent, getExternalAgent, getExternalAgentByUrl, getExternalAgentsForSubAgent, getFullAgent, getFullAgentDefinition, getFullProject, getFunction, getFunctionToolById, getFunctionToolsForSubAgent, getLedgerArtifacts, getLedgerArtifactsByContext, getLogger, getMessageById, getMessagesByConversation, getMessagesByTask, getPendingInvitationsByEmail, getProject, getProjectResourceCounts, getRelatedAgentsForAgent, getRequestExecutionContext, getSubAgentById, getSubAgentExternalAgentRelationById, getSubAgentExternalAgentRelationByParams, getSubAgentExternalAgentRelations, getSubAgentExternalAgentRelationsByAgent, getSubAgentExternalAgentRelationsByExternalAgent, getSubAgentRelationsByTarget, getSubAgentTeamAgentRelationById, getSubAgentTeamAgentRelationByParams, getSubAgentTeamAgentRelations, getSubAgentTeamAgentRelationsByAgent, getSubAgentTeamAgentRelationsByTeamAgent, getSubAgentsByIds, getSubAgentsForExternalAgent, getSubAgentsForTeamAgent, getTask, getTeamAgentsForSubAgent, getToolById, getToolsForAgent, getTracer, getUserByEmail, getUserById, getUserOrganizations, getUserScopedCredentialReference, getVisibleMessages, handleApiError, handleContextConfigChange, handleContextResolution, hasApiKey, hasContextConfig, hasCredentialReference, hashApiKey, headers, invalidateHeadersCache, invalidateInvocationDefinitionsCache, isApiKeyExpired, isArtifactComponentAssociatedWithAgent, isComposioMCPServerAuthenticated, isDataComponentAssociatedWithAgent, isThirdPartyMCPServerAuthenticated, isValidHttpRequest, listAgentRelations, listAgentToolRelations, listAgents, listAgentsPaginated, listApiKeys, listApiKeysPaginated, listArtifactComponents, listArtifactComponentsPaginated, listContextConfigs, listContextConfigsPaginated, listConversations, listCredentialReferences, listCredentialReferencesPaginated, listDataComponents, listDataComponentsPaginated, listExternalAgents, listExternalAgentsPaginated, listFunctionTools, listFunctions, listMessages, listProjects, listProjectsPaginated, listSubAgentExternalAgentRelations, listSubAgentTeamAgentRelations, listSubAgents, listSubAgentsPaginated, listTaskIdsByContextId, listTools, loadEnvironmentFiles, maskApiKey, normalizeDateString, problemDetailsSchema, projectExists, projectExistsInTable, projectHasResources, removeArtifactComponentFromAgent, removeDataComponentFromAgent, removeToolFromAgent, setActiveAgentForConversation, setActiveAgentForThread, setCacheEntry, setSpanWithError, signTempToken, toISODateString, updateAgent, updateAgentRelation, updateAgentToolRelation, updateApiKey, updateApiKeyLastUsed, updateArtifactComponent, updateContextConfig, updateConversation, updateConversationActiveAgent, updateCredentialReference, updateDataComponent, updateExternalAgent, updateFullAgentServerSide, updateFullProjectServerSide, updateFunctionTool, updateMessage, updateProject, updateSubAgent, updateSubAgentExternalAgentRelation, updateSubAgentFunctionToolRelation, updateSubAgentTeamAgentRelation, updateTask, updateTool, upsertAgent, upsertAgentArtifactComponentRelation, upsertAgentDataComponentRelation, upsertArtifactComponent, upsertContextConfig, upsertCredentialReference, upsertDataComponent, upsertExternalAgent, upsertFunction, upsertFunctionTool, upsertLedgerArtifact, upsertSubAgent, upsertSubAgentExternalAgentRelation, upsertSubAgentFunctionToolRelation, upsertSubAgentRelation, upsertSubAgentTeamAgentRelation, upsertSubAgentToolRelation, upsertTool, validateAgainstJsonSchema, validateAndGetApiKey, validateApiKey, validateHeaders, validateHttpRequestHeaders, validateProjectExists, validateSubAgent, validateTargetAgent, validateTenantId, validationHelper, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken, withProjectValidation };
+export { AgentInsert, type AgentLogger, AgentScopeConfig, AgentSelect, AgentUpdate, ApiKeyCreateResult, type ApiKeyGenerationResult, ApiKeyInsert, ApiKeySelect, ApiKeyUpdate, Artifact, ArtifactComponentInsert, ArtifactComponentSelect, ArtifactComponentUpdate, CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, type CommonCreateErrorResponses, type CommonDeleteErrorResponses, type CommonGetErrorResponses, type CommonUpdateErrorResponses, ContextCache, ContextCacheInsert, ContextCacheSelect, ContextConfigBuilder, type ContextConfigBuilderOptions, ContextConfigInsert, ContextConfigSelect, ContextConfigUpdate, ContextFetchDefinition, ContextFetcher, type ContextResolutionOptions, type ContextResolutionResult, ContextResolver, type ContextResolverInterface, type ContextValidationError, type ContextValidationResult, ConversationHistoryConfig, ConversationInsert, ConversationMetadata, ConversationSelect, ConversationUpdate, CreateApiKeyParams, type CredentialContext, type CredentialData, CredentialReferenceApiInsert, CredentialReferenceInsert, CredentialReferenceSelect, CredentialReferenceUpdate, type CredentialReferenceWithResources, type CredentialResolverInput, type CredentialScope, type CredentialStoreReference, CredentialStoreRegistry, CredentialStoreType, CredentialStuffer, DataComponentInsert, DataComponentSelect, DataComponentUpdate, DatabaseClient, type DotPaths, ERROR_DOCS_BASE_URL, ErrorCode, type ErrorCodes, type ErrorResponse, ExecutionContext, ExternalAgentInsert, ExternalAgentSelect, ExternalAgentUpdate, type FetchResult, FullAgentDefinition, FullProjectDefinition, FunctionApiInsert, FunctionToolApiInsert, FunctionToolApiUpdate, type GenerateServiceTokenParams, HTTP_REQUEST_PARTS, type HttpRequestPart, type LLMMessage, LedgerArtifactSelect, MCPToolConfig, MCPTransportType, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, type McpClientOptions, type McpSSEConfig, type McpServerConfig, type McpStreamableHttpConfig, McpTool, MessageContent, MessageInsert, MessageMetadata, MessageSelect, MessageUpdate, MessageVisibility, ModelFactory, ModelSettings, PaginationConfig, PaginationResult, type ParsedHttpRequest, PinoLogger, PrebuiltMCPServerSchema, type ProblemDetails, ProjectInfo, ProjectInsert, type ProjectLogger, ProjectResourceCounts, ProjectScopeConfig, ProjectSelect, ProjectUpdate, type ResolvedContext, type ServiceTokenPayload, type SignedTempToken, SubAgentExternalAgentRelationInsert, SubAgentInsert, SubAgentIsDefaultError, SubAgentRelationInsert, SubAgentRelationUpdate, SubAgentScopeConfig, SubAgentSelect, SubAgentTeamAgentRelationInsert, SubAgentToolRelationUpdate, SubAgentUpdate, TaskInsert, TaskMetadataConfig, TaskSelect, type TempTokenPayload, type TemplateContext, TemplateEngine, type TemplateRenderOptions, ToolInsert, ToolMcpConfig, ToolSelect, ToolServerCapabilities, ToolUpdate, type VerifyServiceTokenResult, addFunctionToolToSubAgent, addLedgerArtifacts, addToolToAgent, addUserToOrganization, agentHasArtifactComponents, apiFetch, associateArtifactComponentWithAgent, associateDataComponentWithAgent, cleanupTenantCache, clearContextConfigCache, clearConversationCache, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, contextConfig, contextValidationMiddleware, countApiKeys, countArtifactComponents, countArtifactComponentsForAgent, countContextConfigs, countCredentialReferences, countDataComponents, countExternalAgents, countLedgerArtifactsByTask, countMessagesByConversation, countProjects, createAgent, createAgentToolRelation, createApiError, createApiKey, createArtifactComponent, createContextConfig, createConversation, createCredentialReference, createDataComponent, createExecutionContext, createExternalAgent, createFullAgentServerSide, createFullProjectServerSide, createFunctionTool, createMessage, createOrGetConversation, createProject, createSubAgent, createSubAgentExternalAgentRelation, createSubAgentRelation, createSubAgentTeamAgentRelation, createTask, createTool, createValidatedDataAccess, dbResultToMcpTool, deleteAgent, deleteAgentArtifactComponentRelationByAgent, deleteAgentDataComponentRelationByAgent, deleteAgentRelationsByAgent, deleteAgentToolRelation, deleteAgentToolRelationByAgent, deleteApiKey, deleteArtifactComponent, deleteContextConfig, deleteConversation, deleteCredentialReference, deleteDataComponent, deleteExternalAgent, deleteFullAgent, deleteFullProject, deleteFunction, deleteFunctionTool, deleteLedgerArtifactsByContext, deleteLedgerArtifactsByTask, deleteMessage, deleteProject, deleteSubAgent, deleteSubAgentExternalAgentRelation, deleteSubAgentExternalAgentRelationsByAgent, deleteSubAgentExternalAgentRelationsBySubAgent, deleteSubAgentRelation, deleteSubAgentTeamAgentRelation, deleteSubAgentTeamAgentRelationsByAgent, deleteSubAgentTeamAgentRelationsBySubAgent, deleteTool, determineContextTrigger, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, externalAgentExists, externalAgentUrlExists, extractComposioServerId, extractPublicId, fetchComponentRelationships, fetchComposioServers, fetchDefinition, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateAndCreateApiKey, generateApiKey, generateId, generateServiceToken, getActiveAgentForConversation, getAgentById, getAgentRelationById, getAgentRelationByParams, getAgentRelations, getAgentRelationsByAgent, getAgentRelationsBySource, getAgentSubAgentInfos, getAgentToolRelationByAgent, getAgentToolRelationById, getAgentToolRelationByTool, getAgentWithDefaultSubAgent, getAgentsForTool, getAgentsUsingArtifactComponent, getAgentsUsingDataComponent, getApiKeyById, getApiKeyByPublicId, getArtifactComponentById, getArtifactComponentsForAgent, getCacheEntry, getCachedValidator, getComposioOAuthRedirectUrl, getComposioUserId, getContextConfigById, getContextConfigCacheEntries, getConversation, getConversationCacheEntries, getConversationHistory, getConversationId, getCredentialReference, getCredentialReferenceById, getCredentialReferenceWithResources, getCredentialStoreLookupKeyFromRetrievalParams, getDataComponent, getDataComponentsForAgent, getExternalAgent, getExternalAgentByUrl, getExternalAgentsForSubAgent, getFullAgent, getFullAgentDefinition, getFullProject, getFunction, getFunctionToolById, getFunctionToolsForSubAgent, getLedgerArtifacts, getLedgerArtifactsByContext, getLogger, getMessageById, getMessagesByConversation, getMessagesByTask, getPendingInvitationsByEmail, getProject, getProjectResourceCounts, getRelatedAgentsForAgent, getRequestExecutionContext, getSubAgentById, getSubAgentExternalAgentRelationById, getSubAgentExternalAgentRelationByParams, getSubAgentExternalAgentRelations, getSubAgentExternalAgentRelationsByAgent, getSubAgentExternalAgentRelationsByExternalAgent, getSubAgentRelationsByTarget, getSubAgentTeamAgentRelationById, getSubAgentTeamAgentRelationByParams, getSubAgentTeamAgentRelations, getSubAgentTeamAgentRelationsByAgent, getSubAgentTeamAgentRelationsByTeamAgent, getSubAgentsByIds, getSubAgentsForExternalAgent, getSubAgentsForTeamAgent, getTask, getTeamAgentsForSubAgent, getToolById, getToolsForAgent, getTracer, getUserByEmail, getUserById, getUserOrganizations, getUserScopedCredentialReference, getVisibleMessages, handleApiError, handleContextConfigChange, handleContextResolution, hasApiKey, hasContextConfig, hasCredentialReference, hashApiKey, headers, invalidateHeadersCache, invalidateInvocationDefinitionsCache, isApiKeyExpired, isArtifactComponentAssociatedWithAgent, isComposioMCPServerAuthenticated, isDataComponentAssociatedWithAgent, isThirdPartyMCPServerAuthenticated, isValidHttpRequest, listAgentRelations, listAgentToolRelations, listAgents, listAgentsPaginated, listApiKeys, listApiKeysPaginated, listArtifactComponents, listArtifactComponentsPaginated, listContextConfigs, listContextConfigsPaginated, listConversations, listCredentialReferences, listCredentialReferencesPaginated, listDataComponents, listDataComponentsPaginated, listExternalAgents, listExternalAgentsPaginated, listFunctionTools, listFunctions, listMessages, listProjects, listProjectsPaginated, listSubAgentExternalAgentRelations, listSubAgentTeamAgentRelations, listSubAgents, listSubAgentsPaginated, listTaskIdsByContextId, listTools, loadEnvironmentFiles, maskApiKey, normalizeDateString, problemDetailsSchema, projectExists, projectExistsInTable, projectHasResources, removeArtifactComponentFromAgent, removeDataComponentFromAgent, removeToolFromAgent, setActiveAgentForConversation, setActiveAgentForThread, setCacheEntry, setSpanWithError, signTempToken, toISODateString, updateAgent, updateAgentRelation, updateAgentToolRelation, updateApiKey, updateApiKeyLastUsed, updateArtifactComponent, updateContextConfig, updateConversation, updateConversationActiveAgent, updateCredentialReference, updateDataComponent, updateExternalAgent, updateFullAgentServerSide, updateFullProjectServerSide, updateFunctionTool, updateMessage, updateProject, updateSubAgent, updateSubAgentExternalAgentRelation, updateSubAgentFunctionToolRelation, updateSubAgentTeamAgentRelation, updateTask, updateTool, upsertAgent, upsertAgentArtifactComponentRelation, upsertAgentDataComponentRelation, upsertArtifactComponent, upsertContextConfig, upsertCredentialReference, upsertDataComponent, upsertExternalAgent, upsertFunction, upsertFunctionTool, upsertLedgerArtifact, upsertSubAgent, upsertSubAgentExternalAgentRelation, upsertSubAgentFunctionToolRelation, upsertSubAgentRelation, upsertSubAgentTeamAgentRelation, upsertSubAgentToolRelation, upsertTool, validateAgainstJsonSchema, validateAndGetApiKey, validateApiKey, validateHeaders, validateHttpRequestHeaders, validateProjectExists, validateSubAgent, validateTargetAgent, validateTenantId, validationHelper, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken, withProjectValidation };

package/dist/index.js

@@ -2,23 +2,23 @@ export { cleanupTestDatabase, closeTestDatabase, createTestDatabaseClient, creat
 import { validateRender, validateAndTypeAgentData, validateAgentStructure } from './chunk-CWAFZVRI.js';
 export { A2AMessageMetadataSchema, DataComponentStreamEventSchema, DataOperationDetailsSchema, DataOperationEventSchema, DataOperationStreamEventSchema, DataSummaryStreamEventSchema, DelegationReturnedDataSchema, DelegationSentDataSchema, StreamErrorEventSchema, StreamEventSchema, StreamFinishEventSchema, TextDeltaEventSchema, TextEndEventSchema, TextStartEventSchema, TransferDataSchema, generateIdFromName, isValidResourceId, validateAgentRelationships, validateAgentStructure, validateAndTypeAgentData, validateArtifactComponentReferences, validateDataComponentReferences, validateRender, validateSubAgentExternalAgentRelations, validateToolReferences } from './chunk-CWAFZVRI.js';
 export { AGENT_EXECUTION_TRANSFER_COUNT_DEFAULT, AGENT_EXECUTION_TRANSFER_COUNT_MAX, AGENT_EXECUTION_TRANSFER_COUNT_MIN, CONTEXT_FETCHER_HTTP_TIMEOUT_MS_DEFAULT, STATUS_UPDATE_MAX_INTERVAL_SECONDS, STATUS_UPDATE_MAX_NUM_EVENTS, SUB_AGENT_TURN_GENERATION_STEPS_DEFAULT, SUB_AGENT_TURN_GENERATION_STEPS_MAX, SUB_AGENT_TURN_GENERATION_STEPS_MIN, VALIDATION_AGENT_PROMPT_MAX_CHARS, VALIDATION_SUB_AGENT_PROMPT_MAX_CHARS } from './chunk-AJCP2QYU.js';
-export { ACTIVITY_NAMES, ACTIVITY_STATUS, ACTIVITY_TYPES, AGENT_IDS, AGGREGATE_OPERATORS, AI_OPERATIONS, AI_TOOL_TYPES, DATA_SOURCES, DATA_TYPES, DELEGATION_FROM_SUB_AGENT_ID, DELEGATION_ID, DELEGATION_TO_SUB_AGENT_ID, FIELD_TYPES, OPERATORS, ORDER_DIRECTIONS, PANEL_TYPES, QUERY_DEFAULTS, QUERY_EXPRESSIONS, QUERY_FIELD_CONFIGS, QUERY_TYPES, REDUCE_OPERATIONS, SPAN_KEYS, SPAN_NAMES, TRANSFER_FROM_SUB_AGENT_ID, TRANSFER_TO_SUB_AGENT_ID, UNKNOWN_VALUE } from './chunk-MQMMFK2K.js';
+export { ACTIVITY_NAMES, ACTIVITY_STATUS, ACTIVITY_TYPES, AGENT_IDS, AGGREGATE_OPERATORS, AI_OPERATIONS, AI_TOOL_TYPES, DATA_SOURCES, DATA_TYPES, DELEGATION_FROM_SUB_AGENT_ID, DELEGATION_ID, DELEGATION_TO_SUB_AGENT_ID, FIELD_TYPES, OPERATORS, ORDER_DIRECTIONS, PANEL_TYPES, QUERY_DEFAULTS, QUERY_EXPRESSIONS, QUERY_FIELD_CONFIGS, QUERY_TYPES, REDUCE_OPERATIONS, SPAN_KEYS, SPAN_NAMES, TRANSFER_FROM_SUB_AGENT_ID, TRANSFER_TO_SUB_AGENT_ID, UNKNOWN_VALUE } from './chunk-NLLGMFQ6.js';
 import { ContextConfigApiUpdateSchema, validatePropsAsJsonSchema } from './chunk-UK63CULA.js';
 export { AgentApiInsertSchema, AgentApiSelectSchema, AgentApiUpdateSchema, AgentInsertSchema, AgentListResponse, AgentResponse, AgentSelectSchema, AgentStopWhenSchema, AgentUpdateSchema, AgentWithinContextOfProjectResponse, AgentWithinContextOfProjectSchema, AllAgentSchema, ApiKeyApiCreationResponseSchema, ApiKeyApiInsertSchema, ApiKeyApiSelectSchema, ApiKeyApiUpdateSchema, ApiKeyInsertSchema, ApiKeyListResponse, ApiKeyResponse, ApiKeySelectSchema, ApiKeyUpdateSchema, ArtifactComponentApiInsertSchema, ArtifactComponentApiSelectSchema, ArtifactComponentApiUpdateSchema, ArtifactComponentArrayResponse, ArtifactComponentInsertSchema, ArtifactComponentListResponse, ArtifactComponentResponse, ArtifactComponentSelectSchema, ArtifactComponentUpdateSchema, CanUseItemSchema, ComponentAssociationListResponse, ComponentAssociationSchema, ContextCacheApiInsertSchema, ContextCacheApiSelectSchema, ContextCacheApiUpdateSchema, ContextCacheInsertSchema, ContextCacheSelectSchema, ContextCacheUpdateSchema, ContextConfigApiInsertSchema, ContextConfigApiSelectSchema, ContextConfigApiUpdateSchema, ContextConfigInsertSchema, ContextConfigListResponse, ContextConfigResponse, ContextConfigSelectSchema, ContextConfigUpdateSchema, ConversationApiInsertSchema, ConversationApiSelectSchema, ConversationApiUpdateSchema, ConversationInsertSchema, ConversationListResponse, ConversationResponse, ConversationSelectSchema, ConversationUpdateSchema, CreateCredentialInStoreRequestSchema, CreateCredentialInStoreResponseSchema, CredentialReferenceApiInsertSchema, CredentialReferenceApiSelectSchema, CredentialReferenceApiUpdateSchema, CredentialReferenceInsertSchema, CredentialReferenceListResponse, CredentialReferenceResponse, CredentialReferenceSelectSchema, CredentialReferenceUpdateSchema, CredentialStoreListResponseSchema, CredentialStoreSchema, DataComponentApiInsertSchema, DataComponentApiSelectSchema, DataComponentApiUpdateSchema, DataComponentArrayResponse, DataComponentBaseSchema, DataComponentInsertSchema, DataComponentListResponse, DataComponentResponse, DataComponentSelectSchema, DataComponentUpdateSchema, ErrorResponseSchema, ExistsResponseSchema, ExternalAgentApiInsertSchema, ExternalAgentApiSelectSchema, ExternalAgentApiUpdateSchema, ExternalAgentInsertSchema, ExternalAgentListResponse, ExternalAgentResponse, ExternalAgentSelectSchema, ExternalAgentUpdateSchema, ExternalSubAgentRelationApiInsertSchema, ExternalSubAgentRelationInsertSchema, FetchConfigSchema, FetchDefinitionSchema, FullAgentAgentInsertSchema, FullProjectDefinitionResponse, FullProjectDefinitionSchema, FunctionApiInsertSchema, FunctionApiSelectSchema, FunctionApiUpdateSchema, FunctionInsertSchema, FunctionListResponse, FunctionResponse, FunctionSelectSchema, FunctionToolApiInsertSchema, FunctionToolApiSelectSchema, FunctionToolApiUpdateSchema, FunctionToolConfigSchema, FunctionToolInsertSchema, FunctionToolListResponse, FunctionToolResponse, FunctionToolSelectSchema, FunctionToolUpdateSchema, FunctionUpdateSchema, HeadersScopeSchema, LedgerArtifactApiInsertSchema, LedgerArtifactApiSelectSchema, LedgerArtifactApiUpdateSchema, LedgerArtifactInsertSchema, LedgerArtifactSelectSchema, LedgerArtifactUpdateSchema, ListResponseSchema, MAX_ID_LENGTH, MCPCatalogListResponse, MCPToolConfigSchema, MIN_ID_LENGTH, McpToolDefinitionSchema, McpToolListResponse, McpToolResponse, McpToolSchema, McpTransportConfigSchema, MessageApiInsertSchema, MessageApiSelectSchema, MessageApiUpdateSchema, MessageInsertSchema, MessageListResponse, MessageResponse, MessageSelectSchema, MessageUpdateSchema, ModelSchema, ModelSettingsSchema, OAuthCallbackQuerySchema, OAuthLoginQuerySchema, PaginationQueryParamsSchema, PaginationSchema, PrebuiltMCPServerSchema, ProjectApiInsertSchema, ProjectApiSelectSchema, ProjectApiUpdateSchema, ProjectInsertSchema, ProjectListResponse, ProjectModelSchema, ProjectResponse, ProjectSelectSchema, ProjectUpdateSchema, RelatedAgentInfoListResponse, RelatedAgentInfoSchema, RemovedResponseSchema, SingleResponseSchema, StatusComponentSchema, StatusUpdateSchema, StopWhenSchema, SubAgentApiInsertSchema, SubAgentApiSelectSchema, SubAgentApiUpdateSchema, SubAgentArtifactComponentApiInsertSchema, SubAgentArtifactComponentApiSelectSchema, SubAgentArtifactComponentApiUpdateSchema, SubAgentArtifactComponentInsertSchema, SubAgentArtifactComponentListResponse, SubAgentArtifactComponentResponse, SubAgentArtifactComponentSelectSchema, SubAgentArtifactComponentUpdateSchema, SubAgentDataComponentApiInsertSchema, SubAgentDataComponentApiSelectSchema, SubAgentDataComponentApiUpdateSchema, SubAgentDataComponentInsertSchema, SubAgentDataComponentListResponse, SubAgentDataComponentResponse, SubAgentDataComponentSelectSchema, SubAgentDataComponentUpdateSchema, SubAgentExternalAgentRelationApiInsertSchema, SubAgentExternalAgentRelationApiSelectSchema, SubAgentExternalAgentRelationApiUpdateSchema, SubAgentExternalAgentRelationInsertSchema, SubAgentExternalAgentRelationListResponse, SubAgentExternalAgentRelationResponse, SubAgentExternalAgentRelationSelectSchema, SubAgentExternalAgentRelationUpdateSchema, SubAgentInsertSchema, SubAgentListResponse, SubAgentRelationApiInsertSchema, SubAgentRelationApiSelectSchema, SubAgentRelationApiUpdateSchema, SubAgentRelationInsertSchema, SubAgentRelationListResponse, SubAgentRelationQuerySchema, SubAgentRelationResponse, SubAgentRelationSelectSchema, SubAgentRelationUpdateSchema, SubAgentResponse, SubAgentSelectSchema, SubAgentStopWhenSchema, SubAgentTeamAgentRelationApiInsertSchema, SubAgentTeamAgentRelationApiSelectSchema, SubAgentTeamAgentRelationApiUpdateSchema, SubAgentTeamAgentRelationInsertSchema, SubAgentTeamAgentRelationListResponse, SubAgentTeamAgentRelationResponse, SubAgentTeamAgentRelationSelectSchema, SubAgentTeamAgentRelationUpdateSchema, SubAgentToolRelationApiInsertSchema, SubAgentToolRelationApiSelectSchema, SubAgentToolRelationApiUpdateSchema, SubAgentToolRelationInsertSchema, SubAgentToolRelationListResponse, SubAgentToolRelationResponse, SubAgentToolRelationSelectSchema, SubAgentToolRelationUpdateSchema, SubAgentUpdateSchema, TaskApiInsertSchema, TaskApiSelectSchema, TaskApiUpdateSchema, TaskInsertSchema, TaskRelationApiInsertSchema, TaskRelationApiSelectSchema, TaskRelationApiUpdateSchema, TaskRelationInsertSchema, TaskRelationSelectSchema, TaskRelationUpdateSchema, TaskSelectSchema, TaskUpdateSchema, TeamAgentSchema, TenantIdParamsSchema, TenantParamsSchema, TenantProjectAgentIdParamsSchema, TenantProjectAgentParamsSchema, TenantProjectAgentSubAgentIdParamsSchema, TenantProjectAgentSubAgentParamsSchema, TenantProjectIdParamsSchema, TenantProjectParamsSchema, ThirdPartyMCPServerResponse, ToolApiInsertSchema, ToolApiSelectSchema, ToolApiUpdateSchema, ToolInsertSchema, ToolListResponse, ToolResponse, ToolSelectSchema, ToolStatusSchema, ToolUpdateSchema, URL_SAFE_ID_PATTERN, canDelegateToExternalAgentSchema, canDelegateToTeamAgentSchema, resourceIdSchema, validatePropsAsJsonSchema } from './chunk-UK63CULA.js';
 import { schema_exports, contextConfigs, externalAgents, functions, functionTools, subAgentFunctionToolRelations, subAgentExternalAgentRelations, subAgents, subAgentRelations, subAgentToolRelations, tools, agents, subAgentTeamAgentRelations, credentialReferences, subAgentDataComponents, subAgentArtifactComponents, dataComponents, artifactComponents, projects, apiKeys, contextCache, conversations, messages, ledgerArtifacts, tasks, taskRelations } from './chunk-LH6OJIIM.js';
 export { agentRelations, agentToolRelationsRelations, agents, apiKeys, apiKeysRelations, artifactComponents, artifactComponentsRelations, contextCache, contextCacheRelations, contextConfigs, contextConfigsRelations, conversations, conversationsRelations, credentialReferences, credentialReferencesRelations, dataComponents, dataComponentsRelations, externalAgents, externalAgentsRelations, functionTools, functionToolsRelations, functions, functionsRelations, ledgerArtifacts, ledgerArtifactsRelations, messages, messagesRelations, projects, projectsRelations, subAgentArtifactComponents, subAgentArtifactComponentsRelations, subAgentDataComponents, subAgentDataComponentsRelations, subAgentExternalAgentRelations, subAgentExternalAgentRelationsRelations, subAgentFunctionToolRelations, subAgentFunctionToolRelationsRelations, subAgentRelations, subAgentRelationsRelations, subAgentTeamAgentRelations, subAgentTeamAgentRelationsRelations, subAgentToolRelations, subAgents, subAgentsRelations, taskRelations, taskRelationsRelations, tasks, tasksRelations, tools, toolsRelations } from './chunk-LH6OJIIM.js';
 export { schemaValidationDefaults } from './chunk-Z64UK4CA.js';
-import { getTracer, getCredentialStoreLookupKeyFromRetrievalParams, generateId, toISODateString, isThirdPartyMCPServerAuthenticated, createApiError, generateApiKey, extractPublicId, validateApiKey, isApiKeyExpired, getConversationId, setSpanWithError, getRequestExecutionContext, McpClient } from './chunk-MGHGIB7U.js';
-export { CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, ERROR_DOCS_BASE_URL, ErrorCode, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, ModelFactory, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, createApiError, createExecutionContext, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, extractComposioServerId, extractPublicId, fetchComposioServers, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateApiKey, generateId, generateServiceToken, getConversationId, getCredentialStoreLookupKeyFromRetrievalParams, getRequestExecutionContext, getTracer, handleApiError, hashApiKey, isApiKeyExpired, isComposioMCPServerAuthenticated, isThirdPartyMCPServerAuthenticated, maskApiKey, normalizeDateString, problemDetailsSchema, setSpanWithError, signTempToken, toISODateString, validateApiKey, validateTargetAgent, validateTenantId, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken } from './chunk-MGHGIB7U.js';
+import { getTracer, getCredentialStoreLookupKeyFromRetrievalParams, generateId, toISODateString, isThirdPartyMCPServerAuthenticated, createApiError, generateApiKey, extractPublicId, validateApiKey, isApiKeyExpired, getConversationId, setSpanWithError, getRequestExecutionContext, McpClient } from './chunk-VXHL7CJY.js';
+export { CONVERSATION_HISTORY_DEFAULT_LIMIT, CONVERSATION_HISTORY_MAX_OUTPUT_TOKENS_DEFAULT, ERROR_DOCS_BASE_URL, ErrorCode, MCP_TOOL_CONNECTION_TIMEOUT_MS, MCP_TOOL_INITIAL_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RECONNECTION_DELAY_MS, MCP_TOOL_MAX_RETRIES, MCP_TOOL_RECONNECTION_DELAY_GROWTH_FACTOR, McpClient, ModelFactory, commonCreateErrorResponses, commonDeleteErrorResponses, commonGetErrorResponses, commonUpdateErrorResponses, createApiError, createExecutionContext, errorResponseSchema, errorSchemaFactory, executionLimitsSharedDefaults, extractComposioServerId, extractPublicId, fetchComposioServers, fetchSingleComposioServer, formatMessagesForLLM, formatMessagesForLLMContext, generateApiKey, generateId, generateServiceToken, getComposioOAuthRedirectUrl, getComposioUserId, getConversationId, getCredentialStoreLookupKeyFromRetrievalParams, getRequestExecutionContext, getTracer, handleApiError, hashApiKey, isApiKeyExpired, isComposioMCPServerAuthenticated, isThirdPartyMCPServerAuthenticated, maskApiKey, normalizeDateString, problemDetailsSchema, setSpanWithError, signTempToken, toISODateString, validateApiKey, validateTargetAgent, validateTenantId, verifyAuthorizationHeader, verifyServiceToken, verifyTempToken } from './chunk-VXHL7CJY.js';
 import { convertZodToJsonSchema } from './chunk-AUGHKZEB.js';
 export { convertZodToJsonSchema, convertZodToJsonSchemaWithPreview, extractPreviewFields, isZodSchema, jsonSchemaToZod, preview } from './chunk-AUGHKZEB.js';
 import { loadEnvironmentFiles, env } from './chunk-ZIXAWYZI.js';
 export { loadEnvironmentFiles } from './chunk-ZIXAWYZI.js';
-import { detectAuthenticationRequired } from './chunk-4JZT4QEE.js';
-export { detectAuthenticationRequired, exchangeMcpAuthorizationCode, initiateMcpOAuthFlow } from './chunk-4JZT4QEE.js';
+import { detectAuthenticationRequired } from './chunk-KVVL5WLM.js';
+export { detectAuthenticationRequired, exchangeMcpAuthorizationCode, initiateMcpOAuthFlow } from './chunk-KVVL5WLM.js';
 import { organization, member, invitation, user } from './chunk-GENLXHZ4.js';
 export { account, invitation, member, organization, session, ssoProvider, user, verification } from './chunk-GENLXHZ4.js';
-export { ANTHROPIC_MODELS, GOOGLE_MODELS, OPENAI_MODELS } from './chunk-7IQFIW44.js';
+export { ANTHROPIC_MODELS, GOOGLE_MODELS, OPENAI_MODELS } from './chunk-C7XZUN4D.js';
 export { CredentialStoreRegistry, InMemoryCredentialStore, KeyChainStore, NangoCredentialStore, createDefaultCredentialStores, createKeyChainStore, createNangoCredentialStore } from './chunk-S4XQEAAF.js';
 import { getLogger } from './chunk-DN4B564Y.js';
 export { PinoLogger, getLogger, loggerFactory } from './chunk-DN4B564Y.js';
@@ -215689,6 +215689,16 @@ var discoverToolsFromServer = async (tool, dbClient, credentialStoreRegistry, us
         };
       }
     }
+    if (serverConfig.url?.toString().includes("composio.dev")) {
+      const urlObj = new URL(serverConfig.url.toString());
+      if (tool.credentialScope === "user" && userId) {
+        urlObj.searchParams.set("user_id", userId);
+      } else {
+        const SEPARATOR = "||";
+        urlObj.searchParams.set("user_id", `${tool.tenantId}${SEPARATOR}${tool.projectId}`);
+      }
+      serverConfig.url = urlObj.toString();
+    }
     const client = new McpClient({
       name: tool.name,
       server: serverConfig
@@ -215745,7 +215755,12 @@ var dbResultToMcpTool = async (dbResult, dbClient, credentialStoreRegistry, rela
   }
   const mcpServerUrl = dbResult.config.mcp.server.url;
   try {
-    availableTools = await discoverToolsFromServer(dbResult, dbClient, credentialStoreRegistry, userId);
+    availableTools = await discoverToolsFromServer(
+      dbResult,
+      dbClient,
+      credentialStoreRegistry,
+      userId
+    );
     status = "healthy";
     lastErrorComputed = null;
   } catch (error) {
@@ -215760,10 +215775,13 @@ var dbResultToMcpTool = async (dbResult, dbClient, credentialStoreRegistry, rela
   }
   const isThirdPartyMCPServer = dbResult.config.mcp.server.url.includes("composio.dev");
   if (isThirdPartyMCPServer) {
+    const credentialScope = dbResult.credentialScope || "project";
     const isAuthenticated = await isThirdPartyMCPServerAuthenticated(
       dbResult.tenantId,
       dbResult.projectId,
-      mcpServerUrl
+      mcpServerUrl,
+      credentialScope,
+      userId
     );
     if (!isAuthenticated) {
       status = "needs_auth";
@@ -219053,7 +219071,22 @@ var upsertLedgerArtifact = (db) => async (params) => {
         return { created: false, existing: existing[0] };
       }
     }
-    throw error;
+    const sanitizedError = new Error(
+      `Failed to insert artifact ${artifactRow.id}: ${error.message?.split("\nparams:")[0] || error.message}`
+    );
+    sanitizedError.name = error.name;
+    sanitizedError.cause = error.code || error.errno;
+    if (artifactRow.id?.includes("compress_")) {
+      console.error("COMPRESSION ARTIFACT FULL ERROR:", {
+        artifactId: artifactRow.id,
+        errorMessage: error.message,
+        errorCode: error.code,
+        errorName: error.name,
+        errorStack: error.stack,
+        fullError: error
+      });
+    }
+    throw sanitizedError;
   }
 };
 var addLedgerArtifacts = (db) => async (params) => {
@@ -219106,7 +219139,24 @@ var addLedgerArtifacts = (db) => async (params) => {
       await new Promise((resolve) => setTimeout(resolve, backoffMs));
     }
   }
-  throw lastError;
+  const sanitizedError = new Error(
+    `Failed to insert ${rows.length} artifacts after ${maxRetries} attempts: ${lastError?.message?.split("\nparams:")[0] || lastError?.message}`
+  );
+  sanitizedError.name = lastError?.name;
+  sanitizedError.cause = lastError?.code || lastError?.errno;
+  const hasCompressionArtifacts = rows.some((row) => row.id?.includes("compress_"));
+  if (hasCompressionArtifacts) {
+    console.error("COMPRESSION ARTIFACTS BULK INSERT FULL ERROR:", {
+      artifactCount: rows.length,
+      compressionArtifacts: rows.filter((row) => row.id?.includes("compress_")).map((row) => row.id),
+      errorMessage: lastError?.message,
+      errorCode: lastError?.code,
+      errorName: lastError?.name,
+      errorStack: lastError?.stack,
+      fullError: lastError
+    });
+  }
+  throw sanitizedError;
 };
 var getLedgerArtifacts = (db) => async (params) => {
   const { scopes, taskId, toolCallId, artifactId } = params;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@inkeep/agents-core",
-  "version": "0.38.0",
+  "version": "0.38.2",
   "description": "Agents Core contains the database schema, types, and validation schemas for Inkeep Agent Framework, along with core components.",
   "type": "module",
   "license": "SEE LICENSE IN LICENSE.md",
@@ -132,7 +132,7 @@
     "vitest": "^3.2.4"
   },
   "engines": {
-    "node": ">=22.0.0"
+    "node": ">=22.18.0"
   },
   "publishConfig": {
     "access": "public",