@inkeep/agents-core 0.45.0 → 0.45.2

package/dist/validation/schemas.js

@@ -19,7 +19,7 @@ const SubAgentStopWhenSchema = StopWhenSchema.pick({ stepCountIs: true }).openap
 const MIN_ID_LENGTH = 1;
 const MAX_ID_LENGTH = 255;
 const URL_SAFE_ID_PATTERN = /^[a-zA-Z0-9\-_.]+$/;
-const ResourceIdSchema = z.string().min(MIN_ID_LENGTH).max(MAX_ID_LENGTH).regex(URL_SAFE_ID_PATTERN, { message: "ID must contain only letters, numbers, hyphens, underscores, and dots" }).openapi({
+const ResourceIdSchema = z.string().min(MIN_ID_LENGTH).max(MAX_ID_LENGTH).regex(URL_SAFE_ID_PATTERN, { message: "ID must contain only letters, numbers, hyphens, underscores, and dots" }).refine((value) => value !== "new", "Must not use a reserved name \"new\"").openapi({
 	description: "Resource identifier",
 	example: "resource_789"
 });
@@ -354,7 +354,7 @@ const TriggerSelectSchema = registerFieldSchemas(createSelectSchema(triggers).ex
 	signingSecretCredentialReferenceId: z.string().nullable().optional(),
 	signatureVerification: SignatureVerificationConfigSchema.nullable().optional()
 }));
-const TriggerInsertSchemaBase = createInsertSchema(triggers, {
+const TriggerInsertSchema = createInsertSchema(triggers, {
 	id: () => ResourceIdSchema,
 	name: () => z.string().trim().nonempty().describe("Trigger name"),
 	description: () => z.string().optional().describe("Trigger description"),
@@ -364,80 +364,78 @@ const TriggerInsertSchemaBase = createInsertSchema(triggers, {
 	messageTemplate: () => z.string().trim().nonempty().describe("Message template with {{placeholder}} syntax").optional(),
 	authentication: () => TriggerAuthenticationInputSchema.optional(),
 	signingSecretCredentialReferenceId: () => z.string().optional().describe("Reference to credential containing signing secret"),
-	signatureVerification: () => SignatureVerificationConfigSchema.nullable().optional().describe("Configuration for webhook signature verification")
-});
-const TriggerInsertSchema = TriggerInsertSchemaBase.superRefine((data, ctx) => {
-	const config = data.signatureVerification;
-	if (!config) return;
-	if (config.signature.regex) {
-		const regexResult = validateRegex(config.signature.regex);
-		if (!regexResult.valid) ctx.addIssue({
-			code: z.ZodIssueCode.custom,
-			message: `Invalid regex pattern in signature.regex: ${regexResult.error}`,
-			path: [
-				"signatureVerification",
-				"signature",
-				"regex"
-			]
-		});
-	}
-	if (config.signature.source === "body" && config.signature.key) {
-		const jmespathResult = validateJMESPathSecure(config.signature.key);
-		if (!jmespathResult.valid) ctx.addIssue({
-			code: z.ZodIssueCode.custom,
-			message: `Invalid JMESPath expression in signature.key: ${jmespathResult.error}`,
-			path: [
-				"signatureVerification",
-				"signature",
-				"key"
-			]
-		});
-	}
-	config.signedComponents.forEach((component, index) => {
-		if (component.regex) {
-			const regexResult = validateRegex(component.regex);
+	signatureVerification: () => SignatureVerificationConfigSchema.nullish().superRefine((config, ctx) => {
+		if (!config) return;
+		if (config.signature.regex) {
+			const regexResult = validateRegex(config.signature.regex);
 			if (!regexResult.valid) ctx.addIssue({
-				code: z.ZodIssueCode.custom,
-				message: `Invalid regex pattern in signedComponents[${index}].regex: ${regexResult.error}`,
+				code: "custom",
+				message: `Invalid regex pattern in signature.regex: ${regexResult.error}`,
 				path: [
 					"signatureVerification",
-					"signedComponents",
-					index,
+					"signature",
 					"regex"
 				]
 			});
 		}
-		if (component.source === "body" && component.key) {
-			const jmespathResult = validateJMESPathSecure(component.key);
+		if (config.signature.source === "body" && config.signature.key) {
+			const jmespathResult = validateJMESPathSecure(config.signature.key);
 			if (!jmespathResult.valid) ctx.addIssue({
-				code: z.ZodIssueCode.custom,
-				message: `Invalid JMESPath expression in signedComponents[${index}].key: ${jmespathResult.error}`,
+				code: "custom",
+				message: `Invalid JMESPath expression in signature.key: ${jmespathResult.error}`,
 				path: [
 					"signatureVerification",
-					"signedComponents",
-					index,
+					"signature",
 					"key"
 				]
 			});
 		}
-		if (component.value && component.source !== "literal") {
-			if (component.value.includes(".") || component.value.includes("[")) {
-				const jmespathResult = validateJMESPathSecure(component.value);
+		config.signedComponents.forEach((component, index) => {
+			if (component.regex) {
+				const regexResult = validateRegex(component.regex);
+				if (!regexResult.valid) ctx.addIssue({
+					code: "custom",
+					message: `Invalid regex pattern in signedComponents[${index}].regex: ${regexResult.error}`,
+					path: [
+						"signatureVerification",
+						"signedComponents",
+						index,
+						"regex"
+					]
+				});
+			}
+			if (component.source === "body" && component.key) {
+				const jmespathResult = validateJMESPathSecure(component.key);
 				if (!jmespathResult.valid) ctx.addIssue({
-					code: z.ZodIssueCode.custom,
-					message: `Invalid JMESPath expression in signedComponents[${index}].value: ${jmespathResult.error}`,
+					code: "custom",
+					message: `Invalid JMESPath expression in signedComponents[${index}].key: ${jmespathResult.error}`,
 					path: [
 						"signatureVerification",
 						"signedComponents",
 						index,
-						"value"
+						"key"
 					]
 				});
 			}
-		}
-	});
+			if (component.value && component.source !== "literal") {
+				if (component.value.includes(".") || component.value.includes("[")) {
+					const jmespathResult = validateJMESPathSecure(component.value);
+					if (!jmespathResult.valid) ctx.addIssue({
+						code: "custom",
+						message: `Invalid JMESPath expression in signedComponents[${index}].value: ${jmespathResult.error}`,
+						path: [
+							"signatureVerification",
+							"signedComponents",
+							index,
+							"value"
+						]
+					});
+				}
+			}
+		});
+	}).describe("Configuration for webhook signature verification")
 });
-const TriggerUpdateSchema = TriggerInsertSchemaBase.extend({ enabled: z.boolean().optional().describe("Whether the trigger is enabled") }).partial();
+const TriggerUpdateSchema = TriggerInsertSchema.extend({ enabled: z.boolean().optional().describe("Whether the trigger is enabled") }).partial();
 const TriggerApiSelectSchema = createAgentScopedApiSchema(TriggerSelectSchema).openapi("Trigger");
 const TriggerApiInsertSchema = createAgentScopedApiInsertSchema(TriggerInsertSchema).extend({ id: ResourceIdSchema.optional() }).openapi("TriggerCreate");
 const TriggerApiUpdateSchema = TriggerUpdateSchema.openapi("TriggerUpdate");

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@inkeep/agents-core",
-  "version": "0.45.0",
+  "version": "0.45.2",
   "description": "Agents Core contains the database schema, types, and validation schemas for Inkeep Agent Framework, along with core components.",
   "type": "module",
   "license": "SEE LICENSE IN LICENSE.md",
@@ -135,7 +135,7 @@
   },
   "peerDependencies": {
     "@hono/zod-openapi": "^1.1.5",
-    "zod": "^4.1.11"
+    "zod": "^4.3.6"
   },
   "optionalDependencies": {
     "@opentelemetry/auto-instrumentations-node": "^0.62.0",