npm - @inkeep/agents-core - Versions diffs - 0.41.2 → 0.42.0 - Mend

@inkeep/agents-core 0.41.2 → 0.42.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (228) hide show

package/dist/api-client/base-client.d.ts +87 -8
package/dist/api-client/base-client.js +174 -1
package/dist/api-client/eval-api-client.d.ts +47 -0
package/dist/api-client/eval-api-client.js +65 -0
package/dist/api-client/index.d.ts +4 -0
package/dist/api-client/index.js +5 -0
package/dist/api-client/manage-api-client.d.ts +34 -0
package/dist/api-client/manage-api-client.js +104 -0
package/dist/auth/auth.d.ts +86 -20
package/dist/auth/auth.js +55 -1
package/dist/auth/authz/client.d.ts +81 -0
package/dist/auth/authz/client.js +189 -0
package/dist/auth/authz/config.d.ts +76 -0
package/dist/auth/authz/config.js +76 -0
package/dist/auth/authz/index.d.ts +5 -0
package/dist/auth/authz/index.js +6 -0
package/dist/auth/authz/permissions.d.ts +57 -0
package/dist/auth/authz/permissions.js +83 -0
package/dist/auth/authz/sync.d.ts +85 -0
package/dist/auth/authz/sync.js +237 -0
package/dist/auth/permissions.d.ts +13 -13
package/dist/auth/permissions.js +2 -181
package/dist/client-exports.d.ts +8 -3
package/dist/client-exports.js +3 -2
package/dist/constants/context-breakdown.d.ts +61 -0
package/dist/constants/context-breakdown.js +124 -0
package/dist/constants/otel-attributes.d.ts +4 -0
package/dist/constants/otel-attributes.js +4 -0
package/dist/context/ContextConfig.d.ts +2 -2
package/dist/context/ContextConfig.js +3 -3
package/dist/context/TemplateEngine.js +0 -1
package/dist/context/index.d.ts +1 -5
package/dist/context/index.js +1 -5
package/dist/credential-stuffer/CredentialStuffer.d.ts +1 -1
package/dist/data-access/index.d.ts +34 -26
package/dist/data-access/index.js +34 -26
package/dist/data-access/manage/agentFull.d.ts +36 -0
package/dist/data-access/{agentFull.js → manage/agentFull.js} +205 -7
package/dist/data-access/{agents.d.ts → manage/agents.d.ts} +23 -22
package/dist/data-access/{agents.js → manage/agents.js} +52 -7
package/dist/data-access/{artifactComponents.d.ts → manage/artifactComponents.d.ts} +21 -21
package/dist/data-access/{artifactComponents.js → manage/artifactComponents.js} +5 -5
package/dist/data-access/{contextConfigs.d.ts → manage/contextConfigs.d.ts} +14 -14
package/dist/data-access/{contextConfigs.js → manage/contextConfigs.js} +3 -3
package/dist/data-access/{credentialReferences.d.ts → manage/credentialReferences.d.ts} +17 -17
package/dist/data-access/{credentialReferences.js → manage/credentialReferences.js} +2 -2
package/dist/data-access/{dataComponents.d.ts → manage/dataComponents.d.ts} +20 -20
package/dist/data-access/{dataComponents.js → manage/dataComponents.js} +7 -7
package/dist/data-access/manage/evalConfig.d.ts +221 -0
package/dist/data-access/manage/evalConfig.js +275 -0
package/dist/data-access/{externalAgents.d.ts → manage/externalAgents.d.ts} +16 -16
package/dist/data-access/{externalAgents.js → manage/externalAgents.js} +2 -2
package/dist/data-access/{functionTools.d.ts → manage/functionTools.d.ts} +65 -15
package/dist/data-access/{functionTools.js → manage/functionTools.js} +90 -8
package/dist/data-access/{functions.d.ts → manage/functions.d.ts} +9 -9
package/dist/data-access/{functions.js → manage/functions.js} +3 -3
package/dist/data-access/manage/projectFull.d.ts +38 -0
package/dist/data-access/{projectFull.js → manage/projectFull.js} +64 -65
package/dist/data-access/manage/projectLifecycle.d.ts +119 -0
package/dist/data-access/manage/projectLifecycle.js +234 -0
package/dist/data-access/manage/projects.d.ts +75 -0
package/dist/data-access/{projects.js → manage/projects.js} +15 -16
package/dist/data-access/{subAgentExternalAgentRelations.d.ts → manage/subAgentExternalAgentRelations.d.ts} +19 -19
package/dist/data-access/{subAgentExternalAgentRelations.js → manage/subAgentExternalAgentRelations.js} +2 -2
package/dist/data-access/{subAgentRelations.d.ts → manage/subAgentRelations.d.ts} +29 -29
package/dist/data-access/{subAgentRelations.js → manage/subAgentRelations.js} +3 -3
package/dist/data-access/{subAgentTeamAgentRelations.d.ts → manage/subAgentTeamAgentRelations.d.ts} +19 -19
package/dist/data-access/{subAgentTeamAgentRelations.js → manage/subAgentTeamAgentRelations.js} +2 -2
package/dist/data-access/{subAgents.d.ts → manage/subAgents.d.ts} +13 -13
package/dist/data-access/{subAgents.js → manage/subAgents.js} +4 -4
package/dist/data-access/{tools.d.ts → manage/tools.d.ts} +26 -19
package/dist/data-access/{tools.js → manage/tools.js} +57 -35
package/dist/data-access/manage/triggers.d.ts +80 -0
package/dist/data-access/manage/triggers.js +81 -0
package/dist/data-access/{apiKeys.d.ts → runtime/apiKeys.d.ts} +17 -17
package/dist/data-access/{apiKeys.js → runtime/apiKeys.js} +3 -3
package/dist/data-access/runtime/cascade-delete.d.ts +77 -0
package/dist/data-access/runtime/cascade-delete.js +111 -0
package/dist/data-access/{contextCache.d.ts → runtime/contextCache.d.ts} +13 -13
package/dist/data-access/{contextCache.js → runtime/contextCache.js} +5 -5
package/dist/data-access/{conversations.d.ts → runtime/conversations.d.ts} +68 -19
package/dist/data-access/{conversations.js → runtime/conversations.js} +13 -7
package/dist/data-access/runtime/evalRuns.d.ts +120 -0
package/dist/data-access/runtime/evalRuns.js +168 -0
package/dist/data-access/{ledgerArtifacts.d.ts → runtime/ledgerArtifacts.d.ts} +13 -13
package/dist/data-access/{ledgerArtifacts.js → runtime/ledgerArtifacts.js} +3 -3
package/dist/data-access/{messages.d.ts → runtime/messages.d.ts} +15 -15
package/dist/data-access/{messages.js → runtime/messages.js} +2 -2
package/dist/data-access/{organizations.d.ts → runtime/organizations.d.ts} +16 -7
package/dist/data-access/{organizations.js → runtime/organizations.js} +15 -3
package/dist/data-access/runtime/projects.d.ts +62 -0
package/dist/data-access/runtime/projects.js +90 -0
package/dist/data-access/runtime/tasks.d.ts +55 -0
package/dist/data-access/{tasks.js → runtime/tasks.js} +2 -2
package/dist/data-access/runtime/triggerInvocations.d.ts +62 -0
package/dist/data-access/runtime/triggerInvocations.js +54 -0
package/dist/data-access/runtime/users.d.ts +19 -0
package/dist/data-access/{users.js → runtime/users.js} +2 -2
package/dist/data-access/validation.d.ts +4 -4
package/dist/data-access/validation.js +1 -1
package/dist/db/clean.d.ts +8 -4
package/dist/db/clean.js +14 -105
package/dist/db/delete.d.ts +1 -1
package/dist/db/delete.js +7 -10
package/dist/db/manage/dolt-cleanup.d.ts +51 -0
package/dist/db/manage/dolt-cleanup.js +132 -0
package/dist/db/manage/manage-client.d.ts +26 -0
package/dist/db/manage/manage-client.js +68 -0
package/dist/db/{schema.d.ts → manage/manage-schema.d.ts} +1459 -1285
package/dist/db/{schema.js → manage/manage-schema.js} +433 -341
package/dist/db/manage/test-manage-client.d.ts +27 -0
package/dist/db/manage/test-manage-client.js +68 -0
package/dist/db/runtime/runtime-client.d.ts +20 -0
package/dist/db/runtime/runtime-client.js +30 -0
package/dist/db/runtime/runtime-schema.d.ts +2834 -0
package/dist/db/runtime/runtime-schema.js +483 -0
package/dist/db/runtime/test-runtime-client.d.ts +27 -0
package/dist/db/{test-client.js → runtime/test-runtime-client.js} +11 -25
package/dist/dolt/branch.d.ts +62 -0
package/dist/dolt/branch.js +82 -0
package/dist/dolt/branches-api.d.ts +108 -0
package/dist/dolt/branches-api.js +162 -0
package/dist/dolt/commit.d.ts +94 -0
package/dist/dolt/commit.js +103 -0
package/dist/dolt/diff.d.ts +27 -0
package/dist/dolt/diff.js +21 -0
package/dist/dolt/index.d.ts +10 -0
package/dist/dolt/index.js +11 -0
package/dist/dolt/merge.d.ts +63 -0
package/dist/dolt/merge.js +81 -0
package/dist/dolt/migrate-all-branches.d.ts +4 -0
package/dist/dolt/migrate-all-branches.js +78 -0
package/dist/dolt/migrate-dolt.d.ts +1 -0
package/dist/dolt/migrate-dolt.js +22 -0
package/dist/dolt/ref-helpers.d.ts +19 -0
package/dist/dolt/ref-helpers.js +65 -0
package/dist/dolt/ref-middleware.d.ts +82 -0
package/dist/dolt/ref-middleware.js +217 -0
package/dist/dolt/ref-scope.d.ts +101 -0
package/dist/dolt/ref-scope.js +231 -0
package/dist/dolt/schema-sync.d.ts +134 -0
package/dist/dolt/schema-sync.js +246 -0
package/dist/env.d.ts +6 -4
package/dist/env.js +3 -2
package/dist/index.d.ts +71 -44
package/dist/index.js +74 -47
package/dist/types/entities.d.ts +81 -2
package/dist/types/index.d.ts +3 -3
package/dist/types/utility.d.ts +45 -4
package/dist/utils/JsonTransformer.d.ts +44 -0
package/dist/utils/JsonTransformer.js +112 -0
package/dist/utils/apiKeys.d.ts +5 -1
package/dist/utils/apiKeys.js +11 -1
package/dist/utils/colors.d.ts +34 -0
package/dist/utils/colors.js +49 -0
package/dist/utils/credential-store-utils.d.ts +1 -1
package/dist/utils/format-messages.d.ts +1 -1
package/dist/utils/index.d.ts +7 -3
package/dist/utils/index.js +7 -3
package/dist/utils/internal-service-auth.d.ts +79 -0
package/dist/utils/internal-service-auth.js +140 -0
package/dist/utils/jwt-helpers.d.ts +56 -0
package/dist/utils/jwt-helpers.js +90 -0
package/dist/utils/service-token-auth.d.ts +9 -27
package/dist/utils/service-token-auth.js +48 -96
package/dist/utils/template-interpolation.d.ts +22 -0
package/dist/utils/template-interpolation.js +62 -0
package/dist/utils/third-party-mcp-servers/composio-client.js +23 -23
package/dist/utils/trigger-auth.d.ts +62 -0
package/dist/utils/trigger-auth.js +125 -0
package/dist/validation/agentFull.js +2 -4
package/dist/validation/dolt-schemas.d.ts +49 -0
package/dist/validation/dolt-schemas.js +44 -0
package/dist/validation/drizzle-schema-helpers.d.ts +4 -26
package/dist/validation/drizzle-schema-helpers.js +5 -151
package/dist/validation/index.d.ts +4 -3
package/dist/validation/index.js +3 -2
package/dist/validation/schemas.d.ts +17647 -4789
package/dist/validation/schemas.js +328 -11
package/drizzle/manage/0000_tearful_rhodey.sql +414 -0
package/drizzle/manage/0001_broken_wendell_vaughn.sql +19 -0
package/drizzle/manage/0002_bent_sunfire.sql +1 -0
package/drizzle/manage/meta/0000_snapshot.json +2987 -0
package/drizzle/manage/meta/0001_snapshot.json +3115 -0
package/drizzle/manage/meta/0002_snapshot.json +3115 -0
package/drizzle/manage/meta/_journal.json +27 -0
package/drizzle/runtime/0008_silly_preak.sql +127 -0
package/drizzle/runtime/0009_freezing_leo.sql +17 -0
package/drizzle/runtime/meta/0008_snapshot.json +2263 -0
package/drizzle/runtime/meta/0009_snapshot.json +2397 -0
package/drizzle/{meta → runtime/meta}/_journal.json +14 -0
package/package.json +48 -15
package/dist/context/ContextFetcher.d.ts +0 -73
package/dist/context/ContextFetcher.js +0 -291
package/dist/context/ContextResolver.d.ts +0 -60
package/dist/context/ContextResolver.js +0 -278
package/dist/context/context.d.ts +0 -27
package/dist/context/context.js +0 -128
package/dist/context/contextCache.d.ts +0 -58
package/dist/context/contextCache.js +0 -177
package/dist/data-access/agentFull.d.ts +0 -33
package/dist/data-access/projectFull.d.ts +0 -32
package/dist/data-access/projects.d.ts +0 -71
package/dist/data-access/tasks.d.ts +0 -45
package/dist/data-access/users.d.ts +0 -19
package/dist/db/client.d.ts +0 -20
package/dist/db/client.js +0 -28
package/dist/db/test-client.d.ts +0 -31
package/dist/middleware/contextValidation.d.ts +0 -46
package/dist/middleware/contextValidation.js +0 -280
package/dist/middleware/index.d.ts +0 -2
package/dist/middleware/index.js +0 -3
package/dist/utils/execution.d.ts +0 -22
package/dist/utils/execution.js +0 -25
/package/drizzle/{0000_exotic_mysterio.sql → runtime/0000_exotic_mysterio.sql} +0 -0
/package/drizzle/{0001_calm_sheva_callister.sql → runtime/0001_calm_sheva_callister.sql} +0 -0
/package/drizzle/{0002_puzzling_goblin_queen.sql → runtime/0002_puzzling_goblin_queen.sql} +0 -0
/package/drizzle/{0003_sweet_human_robot.sql → runtime/0003_sweet_human_robot.sql} +0 -0
/package/drizzle/{0004_cuddly_shooting_star.sql → runtime/0004_cuddly_shooting_star.sql} +0 -0
/package/drizzle/{0005_reflective_starfox.sql → runtime/0005_reflective_starfox.sql} +0 -0
/package/drizzle/{0006_stale_thaddeus_ross.sql → runtime/0006_stale_thaddeus_ross.sql} +0 -0
/package/drizzle/{0007_slim_karma.sql → runtime/0007_slim_karma.sql} +0 -0
/package/drizzle/{meta → runtime/meta}/0000_snapshot.json +0 -0
/package/drizzle/{meta → runtime/meta}/0001_snapshot.json +0 -0
/package/drizzle/{meta → runtime/meta}/0003_snapshot.json +0 -0
/package/drizzle/{meta → runtime/meta}/0005_snapshot.json +0 -0
/package/drizzle/{meta → runtime/meta}/0006_snapshot.json +0 -0
/package/drizzle/{meta → runtime/meta}/0007_snapshot.json +0 -0

package/dist/dolt/merge.d.ts ADDED Viewed

@@ -0,0 +1,63 @@
+import { AgentsManageDatabaseClient } from "../db/manage/manage-client.js";
+//#region src/dolt/merge.d.ts
+/**
+ * Merge another branch into the current branch
+ * Returns merge status and handles conflicts by allowing commit with conflicts
+ */
+declare const doltMerge: (db: AgentsManageDatabaseClient) => (params: {
+  fromBranch: string;
+  toBranch: string;
+  message?: string;
+  noFastForward?: boolean;
+  author?: {
+    name: string;
+    email: string;
+  };
+}) => Promise<{
+  status: "success" | "conflicts";
+  from: string;
+  to: string;
+  toHead?: string;
+  hasConflicts: boolean;
+}>;
+/**
+ * Abort a merge
+ */
+declare const doltAbortMerge: (db: AgentsManageDatabaseClient) => () => Promise<void>;
+/**
+ * Get merge status
+ */
+declare const doltMergeStatus: (db: AgentsManageDatabaseClient) => () => Promise<{
+  isMerging: boolean;
+  source?: string;
+  target?: string;
+  unmergedTables?: string[];
+}>;
+/**
+ * Get list of tables with conflicts
+ */
+declare const doltConflicts: (db: AgentsManageDatabaseClient) => () => Promise<{
+  table: string;
+  numConflicts: number;
+}[]>;
+/**
+ * Get detailed conflicts for a specific table
+ */
+declare const doltTableConflicts: (db: AgentsManageDatabaseClient) => (params: {
+  tableName: string;
+}) => Promise<any[]>;
+/**
+ * Get schema conflicts
+ */
+declare const doltSchemaConflicts: (db: AgentsManageDatabaseClient) => () => Promise<any[]>;
+/**
+ * Resolve conflicts for a table using a strategy
+ */
+declare const doltResolveConflicts: (db: AgentsManageDatabaseClient) => (params: {
+  tableName: string;
+  strategy: "ours" | "theirs";
+}) => Promise<void>;
+//#endregion
+export { doltAbortMerge, doltConflicts, doltMerge, doltMergeStatus, doltResolveConflicts, doltSchemaConflicts, doltTableConflicts };

package/dist/dolt/merge.js ADDED Viewed

@@ -0,0 +1,81 @@
+import { doltCheckout } from "./branch.js";
+import { sql } from "drizzle-orm";
+//#region src/dolt/merge.ts
+/**
+* Merge another branch into the current branch
+* Returns merge status and handles conflicts by allowing commit with conflicts
+*/
+const doltMerge = (db) => async (params) => {
+	console.log("merging branch", params.fromBranch, "into", params.toBranch);
+	await doltCheckout(db)({ branch: params.toBranch });
+	const toHead = (await db.execute(sql`SELECT HASHOF('HEAD') as hash`)).rows[0]?.hash;
+	const args = [`'${params.fromBranch}'`];
+	if (params.noFastForward) args.push("'--no-ff'");
+	if (params.message) args.push("'-m'", `'${params.message.replace(/'/g, "''")}'`);
+	if (params.author) args.push("'--author'", `'${params.author.name} <${params.author.email}>'`);
+	const firstRow = (await db.execute(sql.raw(`SELECT DOLT_MERGE(${args.join(", ")})`))).rows[0] ?? {};
+	const mergeResult = typeof firstRow.conflicts === "number" || typeof firstRow.conflicts === "string" || firstRow.conflicts == null ? firstRow : Object.values(firstRow)[0] ?? {};
+	const conflicts = Number(mergeResult.conflicts ?? 0);
+	if (Number.isFinite(conflicts) && conflicts > 0) return {
+		status: "conflicts",
+		from: params.fromBranch,
+		to: params.toBranch,
+		toHead,
+		hasConflicts: true
+	};
+	return {
+		status: "success",
+		from: params.fromBranch,
+		to: params.toBranch,
+		toHead,
+		hasConflicts: false
+	};
+};
+/**
+* Abort a merge
+*/
+const doltAbortMerge = (db) => async () => {
+	await db.execute(sql.raw(`SELECT DOLT_MERGE('--abort')`));
+};
+/**
+* Get merge status
+*/
+const doltMergeStatus = (db) => async () => {
+	const status = (await db.execute(sql`SELECT * FROM DOLT_MERGE_STATUS`)).rows[0];
+	if (!status || !status.is_merging) return { isMerging: false };
+	return {
+		isMerging: status.is_merging,
+		source: status.source,
+		target: status.target,
+		unmergedTables: status.unmerged_tables ? status.unmerged_tables.split(",") : []
+	};
+};
+/**
+* Get list of tables with conflicts
+*/
+const doltConflicts = (db) => async () => {
+	return (await db.execute(sql`SELECT * FROM dolt_conflicts`)).rows;
+};
+/**
+* Get detailed conflicts for a specific table
+*/
+const doltTableConflicts = (db) => async (params) => {
+	return (await db.execute(sql.raw(`SELECT * FROM dolt_conflicts_${params.tableName}`))).rows;
+};
+/**
+* Get schema conflicts
+*/
+const doltSchemaConflicts = (db) => async () => {
+	return (await db.execute(sql`SELECT * FROM dolt_schema_conflicts`)).rows;
+};
+/**
+* Resolve conflicts for a table using a strategy
+*/
+const doltResolveConflicts = (db) => async (params) => {
+	await db.execute(sql`SET dolt_allow_commit_conflicts = 1`);
+	await db.execute(sql.raw(`SELECT DOLT_CONFLICTS_RESOLVE('--${params.strategy}', '${params.tableName}')`));
+};
+//#endregion
+export { doltAbortMerge, doltConflicts, doltMerge, doltMergeStatus, doltResolveConflicts, doltSchemaConflicts, doltTableConflicts };

package/dist/dolt/migrate-all-branches.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+//#region src/dolt/migrate-all-branches.d.ts
+declare const main: () => Promise<void>;
+//#endregion
+export { main };

package/dist/dolt/migrate-all-branches.js ADDED Viewed

@@ -0,0 +1,78 @@
+import { createAgentsManageDatabaseClient } from "../db/manage/manage-client.js";
+import { syncSchemaFromMain } from "./schema-sync.js";
+import { doltCheckout, doltListBranches } from "./branch.js";
+//#region src/dolt/migrate-all-branches.ts
+const ansi = {
+	reset: "\x1B[0m",
+	dim: "\x1B[2m",
+	bold: "\x1B[1m",
+	green: "\x1B[32m",
+	red: "\x1B[31m",
+	yellow: "\x1B[33m",
+	cyan: "\x1B[36m"
+};
+const format = {
+	header: (text) => `${ansi.bold}${ansi.cyan}${text}${ansi.reset}`,
+	ok: (text) => `${ansi.green}${text}${ansi.reset}`,
+	warn: (text) => `${ansi.yellow}${text}${ansi.reset}`,
+	err: (text) => `${ansi.red}${text}${ansi.reset}`,
+	dim: (text) => `${ansi.dim}${text}${ansi.reset}`,
+	bold: (text) => `${ansi.bold}${text}${ansi.reset}`
+};
+const ms = (start, end) => `${Math.max(0, end - start)}ms`;
+const main = async () => {
+	const startedAt = Date.now();
+	const db = createAgentsManageDatabaseClient({});
+	const branches = await doltListBranches(db)();
+	const targetBranches = branches.filter((b) => b.name !== "main");
+	const nameWidth = Math.max(12, ...targetBranches.map((b) => b.name.length));
+	console.log(format.header(`Sync schema from main → ${targetBranches.length} branches`));
+	console.log(format.dim(`Started: ${(/* @__PURE__ */ new Date()).toISOString()}`));
+	console.log("");
+	let syncedCount = 0;
+	let upToDateCount = 0;
+	let errorCount = 0;
+	for (const branch of branches) {
+		if (branch.name === "main") continue;
+		const branchStartedAt = Date.now();
+		const paddedName = branch.name.padEnd(nameWidth, " ");
+		console.log(`${format.bold("─".repeat(Math.min(80, nameWidth + 34)))}`);
+		console.log(`${format.bold("Branch")}  ${format.header(paddedName)}`);
+		try {
+			process.stdout.write(`${format.dim("Action ")}  checkout… `);
+			await doltCheckout(db)({ branch: branch.name });
+			console.log(format.ok("[OK]"));
+			process.stdout.write(`${format.dim("Action ")}  sync schema… `);
+			const result = await syncSchemaFromMain(db)();
+			if (result.synced) {
+				syncedCount += 1;
+				console.log(format.ok("[SYNCED]"));
+				console.log(`${format.dim("Result ")}  ${format.ok("Schema updated")} ${format.dim(`(${ms(branchStartedAt, Date.now())})`)}`);
+			} else if (result.error) {
+				errorCount += 1;
+				console.log(format.err("[FAILED]"));
+				console.log(`${format.dim("Result ")}  ${format.err("Error")} ${format.dim(`(${ms(branchStartedAt, Date.now())})`)}`);
+				console.log(`${format.dim("Details")}  ${result.error}`);
+			} else {
+				upToDateCount += 1;
+				console.log(format.warn("[NOOP]"));
+				console.log(`${format.dim("Result ")}  ${format.warn("Already up to date")} ${format.dim(`(${ms(branchStartedAt, Date.now())})`)}`);
+			}
+		} catch (error) {
+			errorCount += 1;
+			console.log(format.err("[FAILED]"));
+			const message = error instanceof Error ? error.message : String(error);
+			console.log(`${format.dim("Result ")}  ${format.err("Error")} ${format.dim(`(${ms(branchStartedAt, Date.now())})`)}`);
+			console.log(`${format.dim("Details")}  ${message}`);
+		}
+		console.log("");
+	}
+	console.log(format.bold("─".repeat(80)));
+	console.log(`${format.bold("Summary")}  ${format.ok(`${syncedCount} synced`)}, ${format.warn(`${upToDateCount} up to date`)}, ${errorCount > 0 ? format.err(`${errorCount} failed`) : format.ok("0 failed")}`);
+	console.log(format.dim(`Total: ${ms(startedAt, Date.now())}`));
+};
+main();
+//#endregion
+export { main };

package/dist/dolt/migrate-dolt.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { };

package/dist/dolt/migrate-dolt.js ADDED Viewed

@@ -0,0 +1,22 @@
+import { loadEnvironmentFiles } from "../env.js";
+import { createAgentsManageDatabaseClient } from "../db/manage/manage-client.js";
+import { doltAddAndCommit, doltStatus } from "./commit.js";
+import { execSync } from "node:child_process";
+//#region src/dolt/migrate-dolt.ts
+const commitMigrations = async () => {
+	loadEnvironmentFiles();
+	try {
+		execSync("drizzle-kit migrate --config=drizzle.manage.config.ts", { stdio: "inherit" });
+	} catch (error) {
+		console.error("❌ Error running migrations:", error);
+		process.exit(1);
+	}
+	const db = createAgentsManageDatabaseClient({ connectionString: process.env.INKEEP_AGENTS_MANAGE_DATABASE_URL });
+	if ((await doltStatus(db)()).length > 0) await doltAddAndCommit(db)({ message: "Applied database migrations" });
+	else console.log("ℹ️  No changes to commit - database is up to date\n");
+};
+commitMigrations();
+//#endregion
+export {  };

package/dist/dolt/ref-helpers.d.ts ADDED Viewed

@@ -0,0 +1,19 @@
+import { ResolvedRef } from "../validation/dolt-schemas.js";
+import { AgentsManageDatabaseClient } from "../db/manage/manage-client.js";
+//#region src/dolt/ref-helpers.d.ts
+type RefType = 'commit' | 'tag' | 'branch';
+declare const isValidCommitHash: (ref: string) => boolean;
+declare const getProjectScopedRef: (tenantId: string, projectId: string, ref: string) => string;
+declare const getTenantScopedRef: (tenantId: string, ref: string) => string;
+declare const resolveRef: (db: AgentsManageDatabaseClient) => (ref: string) => Promise<ResolvedRef | null>;
+declare const isRefWritable: (resolvedRef: ResolvedRef) => boolean;
+declare const checkoutRef: (db: AgentsManageDatabaseClient) => (resolvedRef: ResolvedRef) => Promise<void>;
+declare const getCurrentBranchOrCommit: (db: AgentsManageDatabaseClient) => () => Promise<{
+  ref: string;
+  hash: string;
+  type: RefType;
+}>;
+declare const getProjectMainResolvedRef: (db: AgentsManageDatabaseClient) => (tenantId: string, projectId: string) => Promise<ResolvedRef>;
+//#endregion
+export { RefType, checkoutRef, getCurrentBranchOrCommit, getProjectMainResolvedRef, getProjectScopedRef, getTenantScopedRef, isRefWritable, isValidCommitHash, resolveRef };

package/dist/dolt/ref-helpers.js ADDED Viewed

@@ -0,0 +1,65 @@
+import { doltHashOf, doltListTags } from "./commit.js";
+import { checkoutBranch } from "./branches-api.js";
+import { doltListBranches } from "./branch.js";
+import { sql } from "drizzle-orm";
+//#region src/dolt/ref-helpers.ts
+const isValidCommitHash = (ref) => {
+	return /^[0-9a-v]{32}$/.test(ref);
+};
+const getProjectScopedRef = (tenantId, projectId, ref) => {
+	return `${tenantId}_${projectId}_${ref}`;
+};
+const getTenantScopedRef = (tenantId, ref) => {
+	return `${tenantId}_${ref}`;
+};
+const resolveRef = (db) => async (ref) => {
+	if (isValidCommitHash(ref)) return {
+		type: "commit",
+		name: ref,
+		hash: ref
+	};
+	const tag = (await doltListTags(db)()).find((t) => t.tag_name === ref);
+	if (tag) return {
+		type: "tag",
+		name: ref,
+		hash: tag.tag_hash
+	};
+	const branch = (await doltListBranches(db)()).find((b) => b.name === ref);
+	if (branch) return {
+		type: "branch",
+		name: ref,
+		hash: branch.hash
+	};
+	return null;
+};
+const isRefWritable = (resolvedRef) => {
+	return resolvedRef.type === "branch";
+};
+const checkoutRef = (db) => async (resolvedRef) => {
+	if (resolvedRef.type === "branch") await checkoutBranch(db)({ branchName: resolvedRef.name });
+	else await db.execute(sql.raw(`SELECT DOLT_CHECKOUT('${resolvedRef.hash}')`));
+};
+const getCurrentBranchOrCommit = (db) => async () => {
+	const branch = (await db.execute(sql`SELECT ACTIVE_BRANCH() as branch`)).rows[0]?.branch;
+	if (branch) return {
+		ref: branch,
+		hash: await doltHashOf(db)({ revision: branch }),
+		type: "branch"
+	};
+	const hash = (await db.execute(sql`SELECT DOLT_HASHOF('HEAD') as hash`)).rows[0]?.hash;
+	return {
+		ref: hash,
+		hash,
+		type: "commit"
+	};
+};
+const getProjectMainResolvedRef = (db) => async (tenantId, projectId) => {
+	const projectMain = `${tenantId}_${projectId}_main`;
+	const resolvedRef = await resolveRef(db)(projectMain);
+	if (!resolvedRef) throw new Error(`Project main branch not found: ${projectMain}`);
+	return resolvedRef;
+};
+//#endregion
+export { checkoutRef, getCurrentBranchOrCommit, getProjectMainResolvedRef, getProjectScopedRef, getTenantScopedRef, isRefWritable, isValidCommitHash, resolveRef };

package/dist/dolt/ref-middleware.d.ts ADDED Viewed

@@ -0,0 +1,82 @@
+import { ResolvedRef } from "../validation/dolt-schemas.js";
+import { AgentsManageDatabaseClient } from "../db/manage/manage-client.js";
+import { Context, Next } from "hono";
+//#region src/dolt/ref-middleware.d.ts
+type RefContext = {
+  resolvedRef?: ResolvedRef;
+};
+interface RefMiddlewareOptions {
+  /**
+   * Extract tenantId from the request context.
+   * Default implementation extracts from path using /tenants/{tenantId} pattern.
+   */
+  extractTenantId?: (c: Context) => string | undefined;
+  /**
+   * Extract projectId from the request context.
+   * Default implementation extracts from path using /tenants/{tenantId}/projects/{projectId} pattern.
+   */
+  extractProjectId?: (c: Context) => string | undefined;
+  /**
+   * Whether to allow extracting projectId from request body for POST/PUT/PATCH.
+   * Default: true
+   */
+  allowProjectIdFromBody?: boolean;
+  /**
+   * Custom path patterns that should skip ref validation.
+   * Default: []
+   */
+  skipRefValidationPaths?: RegExp[];
+}
+/**
+ * Creates a ref resolution middleware factory.
+ *
+ * This middleware:
+ * 1. Extracts tenantId and projectId from the request
+ * 2. Resolves the `ref` query parameter to a ResolvedRef
+ * 3. Creates branches if needed (tenant_main, project_main)
+ * 4. Sets `resolvedRef` in the Hono context for downstream handlers
+ *
+ * @param db - The Doltgres database client to use for ref resolution
+ * @param options - Optional configuration for extraction and validation
+ * @returns Hono middleware function
+ *
+ * @example
+ * ```typescript
+ * import { createRefMiddleware } from '@inkeep/agents-core';
+ * import { manageDbClient } from './db';
+ *
+ * const refMiddleware = createRefMiddleware(manageDbClient);
+ * app.use('/tenants/*', refMiddleware);
+ * ```
+ */
+declare const createRefMiddleware: (db: AgentsManageDatabaseClient, options?: RefMiddlewareOptions) => (c: Context, next: Next) => Promise<void>;
+/**
+ * Creates a write protection middleware that prevents write operations on immutable refs.
+ *
+ * This middleware checks if the resolved ref is writable (branches are writable,
+ * tags and commits are not) and rejects write operations on immutable refs.
+ *
+ * @returns Hono middleware function
+ *
+ * @example
+ * ```typescript
+ * import { createRefMiddleware, createWriteProtectionMiddleware } from '@inkeep/agents-core';
+ *
+ * const refMiddleware = createRefMiddleware(db);
+ * const writeProtection = createWriteProtectionMiddleware();
+ *
+ * app.use('/tenants/*', refMiddleware, writeProtection);
+ * ```
+ */
+declare const createWriteProtectionMiddleware: () => (c: Context, next: Next) => Promise<void>;
+/**
+ * @deprecated Use createRefMiddleware instead. This is kept for backwards compatibility.
+ */
+declare const refMiddlewareFactory: (db: AgentsManageDatabaseClient, options?: RefMiddlewareOptions) => (c: Context, next: Next) => Promise<void>;
+/**
+ * @deprecated Use createWriteProtectionMiddleware instead. This is kept for backwards compatibility.
+ */
+declare const writeProtectionMiddlewareFactory: () => (c: Context, next: Next) => Promise<void>;
+//#endregion
+export { RefContext, RefMiddlewareOptions, createRefMiddleware, createWriteProtectionMiddleware, refMiddlewareFactory, writeProtectionMiddlewareFactory };

package/dist/dolt/ref-middleware.js ADDED Viewed

@@ -0,0 +1,217 @@
+import { getLogger } from "../utils/logger.js";
+import { createApiError } from "../utils/error.js";
+import { isRefWritable, resolveRef } from "./ref-helpers.js";
+import { ensureBranchExists } from "./branch.js";
+//#region src/dolt/ref-middleware.ts
+const logger = getLogger("ref-middleware");
+/**
+* Default tenant ID extractor - extracts from /tenants/{tenantId} path pattern
+*/
+const defaultExtractTenantId = (c) => {
+	return c.req.path.match(/^\/tenants\/([^/]+)/)?.[1];
+};
+/**
+* Default project ID extractor - extracts from /tenants/{tenantId}/projects/{projectId} or
+* /tenants/{tenantId}/project-full/{projectId} path patterns
+*/
+const defaultExtractProjectId = (c) => {
+	return c.req.path.match(/^\/tenants\/[^/]+\/(?:projects|project-full)(?:\/([^/]+))?/)?.[1];
+};
+/**
+* Creates a ref resolution middleware factory.
+*
+* This middleware:
+* 1. Extracts tenantId and projectId from the request
+* 2. Resolves the `ref` query parameter to a ResolvedRef
+* 3. Creates branches if needed (tenant_main, project_main)
+* 4. Sets `resolvedRef` in the Hono context for downstream handlers
+*
+* @param db - The Doltgres database client to use for ref resolution
+* @param options - Optional configuration for extraction and validation
+* @returns Hono middleware function
+*
+* @example
+* ```typescript
+* import { createRefMiddleware } from '@inkeep/agents-core';
+* import { manageDbClient } from './db';
+*
+* const refMiddleware = createRefMiddleware(manageDbClient);
+* app.use('/tenants/*', refMiddleware);
+* ```
+*/
+const createRefMiddleware = (db, options = {}) => {
+	const { extractTenantId = defaultExtractTenantId, extractProjectId = defaultExtractProjectId, allowProjectIdFromBody = true } = options;
+	return async (c, next) => {
+		const ref = c.req.query("ref");
+		const pathSplit = c.req.path.split("/");
+		const tenantId = extractTenantId(c);
+		let projectId = extractProjectId(c);
+		if (!projectId && allowProjectIdFromBody && [
+			"POST",
+			"PUT",
+			"PATCH"
+		].includes(c.req.method)) try {
+			const body = await c.req.json();
+			if (body && typeof body.projectId === "string") {
+				projectId = body.projectId;
+				logger.debug({ projectId }, "Extracted projectId from request body");
+			}
+		} catch {
+			logger.debug({}, "Could not extract projectId from body");
+		}
+		if (!tenantId) throw createApiError({
+			code: "bad_request",
+			message: "Missing tenantId"
+		});
+		if (process.env.ENVIRONMENT === "test") {
+			const defaultRef = {
+				type: "branch",
+				name: projectId ? `${tenantId}_${projectId}_main` : `${tenantId}_main`,
+				hash: "test-hash"
+			};
+			c.set("resolvedRef", defaultRef);
+			await next();
+			return;
+		}
+		if (pathSplit.length < 4 && ref !== "main" && ref !== void 0) throw createApiError({
+			code: "bad_request",
+			message: "Ref is not supported for this path"
+		});
+		let resolvedRef;
+		if (projectId) resolvedRef = await resolveProjectRef(db, c, tenantId, projectId, ref);
+		else resolvedRef = await resolveTenantRef(db, tenantId, ref);
+		logger.info({
+			resolvedRef,
+			projectId,
+			tenantId
+		}, "Resolved ref");
+		c.set("resolvedRef", resolvedRef);
+		await next();
+	};
+};
+/**
+* Resolve ref for project-scoped requests
+*/
+async function resolveProjectRef(db, c, tenantId, projectId, ref) {
+	const projectMain = `${tenantId}_${projectId}_main`;
+	const projectScopedRef = `${tenantId}_${projectId}_${ref}`;
+	if (ref && ref !== "main") {
+		let refResult$1 = await resolveRef(db)(projectScopedRef);
+		if (!refResult$1) refResult$1 = await resolveRef(db)(ref);
+		if (!refResult$1) throw createApiError({
+			code: "not_found",
+			message: `Unknown ref: ${ref}`
+		});
+		return refResult$1;
+	}
+	let refResult = null;
+	try {
+		refResult = await resolveRef(db)(projectMain);
+	} catch (error) {
+		logger.warn({
+			error,
+			projectMain
+		}, "Failed to resolve project main branch");
+		refResult = null;
+	}
+	if (!refResult) {
+		if (c.req.method === "PUT") {
+			const tenantMain = `${tenantId}_main`;
+			let tenantRefResult = await resolveRef(db)(tenantMain);
+			if (!tenantRefResult) {
+				await ensureBranchExists(db, tenantMain);
+				tenantRefResult = await resolveRef(db)(tenantMain);
+			}
+			if (tenantRefResult) return tenantRefResult;
+			throw createApiError({
+				code: "internal_server_error",
+				message: `Failed to create tenant main branch for upsert`
+			});
+		}
+		throw createApiError({
+			code: "not_found",
+			message: `Project not found: ${projectId}`
+		});
+	}
+	return refResult;
+}
+/**
+* Resolve ref for tenant-level requests
+*/
+async function resolveTenantRef(db, tenantId, ref) {
+	const tenantMain = `${tenantId}_main`;
+	if (ref && ref !== "main") {
+		const tenantScopedRef = `${tenantId}_${ref}`;
+		let refResult$1 = await resolveRef(db)(tenantScopedRef);
+		if (!refResult$1) refResult$1 = await resolveRef(db)(ref);
+		if (!refResult$1) throw createApiError({
+			code: "not_found",
+			message: `Unknown ref: ${ref}`
+		});
+		return refResult$1;
+	}
+	let refResult = await resolveRef(db)(tenantMain);
+	if (!refResult) {
+		await ensureBranchExists(db, tenantMain);
+		refResult = await resolveRef(db)(tenantMain);
+		if (!refResult) throw createApiError({
+			code: "internal_server_error",
+			message: `Failed to create tenant main branch: ${tenantMain}`
+		});
+	}
+	return refResult;
+}
+/**
+* Creates a write protection middleware that prevents write operations on immutable refs.
+*
+* This middleware checks if the resolved ref is writable (branches are writable,
+* tags and commits are not) and rejects write operations on immutable refs.
+*
+* @returns Hono middleware function
+*
+* @example
+* ```typescript
+* import { createRefMiddleware, createWriteProtectionMiddleware } from '@inkeep/agents-core';
+*
+* const refMiddleware = createRefMiddleware(db);
+* const writeProtection = createWriteProtectionMiddleware();
+*
+* app.use('/tenants/*', refMiddleware, writeProtection);
+* ```
+*/
+const createWriteProtectionMiddleware = () => {
+	return async (c, next) => {
+		if (process.env.ENVIRONMENT === "test") {
+			await next();
+			return;
+		}
+		const resolvedRef = c.get("resolvedRef");
+		if (!resolvedRef) {
+			await next();
+			return;
+		}
+		const method = c.req.method;
+		if ([
+			"POST",
+			"PUT",
+			"PATCH",
+			"DELETE"
+		].includes(method) && !isRefWritable(resolvedRef)) throw createApiError({
+			code: "bad_request",
+			message: `Cannot perform write operation on ${resolvedRef.type}. Tags and commits are immutable. Write to a branch instead.`
+		});
+		await next();
+	};
+};
+/**
+* @deprecated Use createRefMiddleware instead. This is kept for backwards compatibility.
+*/
+const refMiddlewareFactory = createRefMiddleware;
+/**
+* @deprecated Use createWriteProtectionMiddleware instead. This is kept for backwards compatibility.
+*/
+const writeProtectionMiddlewareFactory = createWriteProtectionMiddleware;
+//#endregion
+export { createRefMiddleware, createWriteProtectionMiddleware, refMiddlewareFactory, writeProtectionMiddlewareFactory };