@inkeep/agents-core 0.63.3 → 0.64.2

package/dist/data-access/manage/tools.js

@@ -23,20 +23,45 @@ import "../../utils/index.js";
 import { isGithubWorkAppTool } from "../runtime/github-work-app-installations.js";
 import { getCredentialReference, getUserScopedCredentialReference } from "./credentialReferences.js";
 import { and, count, desc, eq } from "drizzle-orm";
+import { UnauthorizedError } from "@modelcontextprotocol/sdk/client/auth.js";
+import { StreamableHTTPError } from "@modelcontextprotocol/sdk/client/streamableHttp.js";
 import { ErrorCode, McpError } from "@modelcontextprotocol/sdk/types.js";
 
 //#region src/data-access/manage/tools.ts
 /**
-* Check if an error is a timeout/connection error.
+* Check if an error is a timeout/connection error (transient, not auth-related).
 * Uses MCP SDK ErrorCode for proper type safety.
 */
 function isTimeoutOrConnectionError(error) {
-	if (error instanceof McpError) return error.code === ErrorCode.RequestTimeout || error.code === ErrorCode.ConnectionClosed;
+	if (error instanceof McpError) return error.code === ErrorCode.RequestTimeout || error.code === ErrorCode.ConnectionClosed || error.code === ErrorCode.InternalError;
+	if (error instanceof StreamableHTTPError) return error.code !== void 0 && error.code >= 500;
 	if (error instanceof Error) {
 		const message = error.message.toLowerCase();
 		const cause = error.cause;
-		if (message.includes("timed out") || message.includes("timeout")) return true;
-		if (cause?.code === "ETIMEDOUT" || cause?.code === "ECONNABORTED" || cause?.code === "ECONNRESET") return true;
+		if (message.includes("timed out") || message.includes("timeout") || message.includes("fetch failed")) return true;
+		if (cause?.code && [
+			"ETIMEDOUT",
+			"ECONNABORTED",
+			"ECONNRESET",
+			"ECONNREFUSED",
+			"ENOTFOUND",
+			"EHOSTUNREACH",
+			"ENETUNREACH",
+			"EPIPE"
+		].includes(cause.code)) return true;
+	}
+	return false;
+}
+/**
+* Check if an error indicates the credential is invalid/expired/revoked.
+* These errors mean the user genuinely needs to re-authenticate.
+*/
+function isAuthenticationError(error) {
+	if (error instanceof UnauthorizedError) return true;
+	if (error instanceof StreamableHTTPError) return error.code === 401 || error.code === 403;
+	if (error instanceof Error) {
+		const message = error.message.toLowerCase();
+		if (message.includes("unauthorized") || message.includes("forbidden") || message.includes("invalid_token") || message.includes("token expired") || message.includes("invalid_grant")) return true;
 	}
 	return false;
 }
@@ -243,6 +268,18 @@ const dbResultToMcpTool = async (dbResult, dbClient, credentialStoreRegistry, re
 		if (isTimeoutOrConnectionError(error)) {
 			status = "unavailable";
 			lastErrorComputed = `Connection failed - the MCP server may be slow or temporarily unreachable.${error instanceof McpError ? ` (MCP error ${error.code})` : ""} ${errorMessage}`;
+		} else if (isAuthenticationError(error)) {
+			status = "needs_auth";
+			lastErrorComputed = `Authentication required - OAuth login needed. ${errorMessage}`;
+		} else if (credentialReference) {
+			logger.warn({
+				toolId: dbResult.id,
+				credentialId: credentialReference.id,
+				errorCode: error instanceof McpError ? error.code : void 0,
+				errorMessage
+			}, "MCP server discovery failed with existing credential — treating as transient");
+			status = "unavailable";
+			lastErrorComputed = `Server temporarily unavailable. ${errorMessage}`;
 		} else {
 			const toolNeedsAuth = await detectAuthenticationRequired({
 				serverUrl: mcpServerUrl,

package/dist/data-access/manage/triggers.d.ts

@@ -40,13 +40,13 @@ declare const listTriggersPaginated: (db: AgentsManageDatabaseClient) => (params
       algorithm: "sha256" | "sha512" | "sha384" | "sha1" | "md5";
       encoding: "hex" | "base64";
       signature: {
-        source: "query" | "header" | "body";
+        source: "query" | "body" | "header";
         key: string;
         prefix?: string | undefined;
         regex?: string | undefined;
       };
       signedComponents: {
-        source: "literal" | "header" | "body";
+        source: "literal" | "body" | "header";
         required: boolean;
         key?: string | undefined;
         value?: string | undefined;

package/dist/data-access/runtime/apiKeys.d.ts

@@ -12,9 +12,9 @@ declare const getApiKeyById: (db: AgentsRunDatabaseClient) => (params: {
   name: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
   expiresAt: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string;
   publicId: string;
   keyHash: string;
@@ -26,9 +26,9 @@ declare const getApiKeyByPublicId: (db: AgentsRunDatabaseClient) => (publicId: s
   name: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
   expiresAt: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string;
   publicId: string;
   keyHash: string;
@@ -43,9 +43,9 @@ declare const listApiKeys: (db: AgentsRunDatabaseClient) => (params: {
   name: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
   expiresAt: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string;
   publicId: string;
   keyHash: string;
@@ -70,9 +70,9 @@ declare const createApiKey: (db: AgentsRunDatabaseClient) => (params: ApiKeyInse
   name: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
   expiresAt: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string;
   publicId: string;
   keyHash: string;

package/dist/data-access/runtime/apps.d.ts

@@ -5,39 +5,36 @@ import { AppInsert, AppSelect, AppUpdate } from "../../types/entities.js";
 
 //#region src/data-access/runtime/apps.d.ts
 declare const getAppById: (db: AgentsRunDatabaseClient) => (id: string) => Promise<{
+  type: AppType;
   id: string;
   name: string;
-  description: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string | null;
+  description: string | null;
+  enabled: boolean;
   tenantId: string | null;
-  type: AppType;
-  lastUsedAt: string | null;
-  defaultProjectId: string | null;
-  defaultAgentId: string | null;
+  projectId: string | null;
   prompt: string | null;
-  enabled: boolean;
   config: {
     type: "web_client";
     webClient: {
       allowedDomains: string[];
-      auth?: {
-        publicKeys: {
-          kid: string;
-          publicKey: string;
-          algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
-          addedAt: string;
-        }[];
-        audience?: string | undefined;
-        validateScopeClaims?: boolean | undefined;
-        allowAnonymous?: boolean | undefined;
-      } | undefined;
+      publicKeys: {
+        kid: string;
+        publicKey: string;
+        algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
+        addedAt: string;
+      }[];
+      allowAnonymous: boolean;
+      audience?: string | undefined;
     };
   } | {
     type: "api";
     api: Record<string, never>;
   };
+  lastUsedAt: string | null;
+  defaultProjectId: string | null;
+  defaultAgentId: string | null;
 } | undefined>;
 declare const updateAppLastUsed: (db: AgentsRunDatabaseClient) => (id: string) => Promise<void>;
 declare const getAppByIdForTenant: (db: AgentsRunDatabaseClient) => (params: {
@@ -64,39 +61,36 @@ declare const listAppsPaginated: (db: AgentsRunDatabaseClient) => (params: {
   };
 }>;
 declare const createApp: (db: AgentsRunDatabaseClient) => (params: AppInsert) => Promise<{
+  type: AppType;
   id: string;
   name: string;
-  description: string | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string | null;
+  description: string | null;
+  enabled: boolean;
   tenantId: string | null;
-  type: AppType;
-  lastUsedAt: string | null;
-  defaultProjectId: string | null;
-  defaultAgentId: string | null;
+  projectId: string | null;
   prompt: string | null;
-  enabled: boolean;
   config: {
     type: "web_client";
     webClient: {
       allowedDomains: string[];
-      auth?: {
-        publicKeys: {
-          kid: string;
-          publicKey: string;
-          algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
-          addedAt: string;
-        }[];
-        audience?: string | undefined;
-        validateScopeClaims?: boolean | undefined;
-        allowAnonymous?: boolean | undefined;
-      } | undefined;
+      publicKeys: {
+        kid: string;
+        publicKey: string;
+        algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
+        addedAt: string;
+      }[];
+      allowAnonymous: boolean;
+      audience?: string | undefined;
     };
   } | {
     type: "api";
     api: Record<string, never>;
   };
+  lastUsedAt: string | null;
+  defaultProjectId: string | null;
+  defaultAgentId: string | null;
 }>;
 declare const updateAppForTenant: (db: AgentsRunDatabaseClient) => (params: {
   scopes: TenantScopeConfig;
@@ -151,17 +145,14 @@ declare const updateApp: (db: AgentsRunDatabaseClient) => (params: {
     type: "web_client";
     webClient: {
       allowedDomains: string[];
-      auth?: {
-        publicKeys: {
-          kid: string;
-          publicKey: string;
-          algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
-          addedAt: string;
-        }[];
-        audience?: string | undefined;
-        validateScopeClaims?: boolean | undefined;
-        allowAnonymous?: boolean | undefined;
-      } | undefined;
+      publicKeys: {
+        kid: string;
+        publicKey: string;
+        algorithm: "RS256" | "RS384" | "RS512" | "ES256" | "ES384" | "ES512" | "EdDSA";
+        addedAt: string;
+      }[];
+      allowAnonymous: boolean;
+      audience?: string | undefined;
     };
   } | {
     type: "api";

package/dist/data-access/runtime/cascade-delete.d.ts

@@ -1,6 +1,6 @@
 import { AgentScopeConfig, ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 
 //#region src/data-access/runtime/cascade-delete.d.ts
 /**

package/dist/data-access/runtime/conversations.d.ts

@@ -1,8 +1,8 @@
 import { ResolvedRef } from "../../validation/dolt-schemas.js";
 import { ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
 import { ConversationHistoryConfig, ConversationMetadata, PaginationConfig } from "../../types/utility.js";
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 import { ConversationInsert, ConversationSelect, ConversationUpdate, MessageSelect } from "../../types/entities.js";
 
 //#region src/data-access/runtime/conversations.d.ts
@@ -16,18 +16,18 @@ declare const listConversations: (db: AgentsRunDatabaseClient) => (params: {
 }>;
 declare const createConversation: (db: AgentsRunDatabaseClient) => (params: ConversationInsert) => Promise<{
   id: string;
-  metadata: ConversationMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
-  title: string | null;
   ref: {
     type: "commit" | "tag" | "branch";
     name: string;
     hash: string;
   } | null;
   userId: string | null;
+  metadata: ConversationMetadata | null;
+  title: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string | null;
   activeSubAgentId: string;
   lastContextResolution: string | null;
@@ -85,18 +85,18 @@ declare const getConversation: (db: AgentsRunDatabaseClient) => (params: {
   conversationId: string;
 }) => Promise<{
   id: string;
-  metadata: ConversationMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
-  title: string | null;
   ref: {
     type: "commit" | "tag" | "branch";
     name: string;
     hash: string;
   } | null;
   userId: string | null;
+  metadata: ConversationMetadata | null;
+  title: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string | null;
   activeSubAgentId: string;
   lastContextResolution: string | null;
@@ -121,18 +121,18 @@ declare const createOrGetConversation: (db: AgentsRunDatabaseClient) => (input:
   contextConfigId?: string | undefined;
 } | {
   id: string;
-  metadata: ConversationMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
-  title: string | null;
   ref: {
     type: "commit" | "tag" | "branch";
     name: string;
     hash: string;
   } | null;
   userId: string | null;
+  metadata: ConversationMetadata | null;
+  title: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string | null;
   activeSubAgentId: string;
   lastContextResolution: string | null;
@@ -153,18 +153,18 @@ declare const getActiveAgentForConversation: (db: AgentsRunDatabaseClient) => (p
   conversationId: string;
 }) => Promise<{
   id: string;
-  metadata: ConversationMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
-  title: string | null;
   ref: {
     type: "commit" | "tag" | "branch";
     name: string;
     hash: string;
   } | null;
   userId: string | null;
+  metadata: ConversationMetadata | null;
+  title: string | null;
+  tenantId: string;
+  projectId: string;
   agentId: string | null;
   activeSubAgentId: string;
   lastContextResolution: string | null;

package/dist/data-access/runtime/entitlements.d.ts

@@ -0,0 +1,13 @@
+import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+
+//#region src/data-access/runtime/entitlements.d.ts
+declare const listOrgEntitlements: (db: AgentsRunDatabaseClient) => (orgId: string) => Promise<Array<{
+  resourceType: string;
+  maxValue: number;
+}>>;
+declare function dalResolveEntitlement(db: AgentsRunDatabaseClient, orgId: string, resourceType: string): Promise<number | null>;
+declare function dalGetServiceAccountUserId(db: AgentsRunDatabaseClient, orgId: string): Promise<string | null>;
+declare function dalCountMembersByRoleBucket(db: AgentsRunDatabaseClient, orgId: string, isAdminBucket: boolean, serviceAccountUserId: string | null): Promise<number>;
+declare function dalSumSeatEntitlements(db: AgentsRunDatabaseClient, orgId: string): Promise<number | null>;
+//#endregion
+export { dalCountMembersByRoleBucket, dalGetServiceAccountUserId, dalResolveEntitlement, dalSumSeatEntitlements, listOrgEntitlements };

package/dist/data-access/runtime/entitlements.js

@@ -0,0 +1,33 @@
+import { member, organization } from "../../auth/auth-schema.js";
+import { orgEntitlement } from "../../db/runtime/runtime-schema.js";
+import { and, eq, like, or, sql } from "drizzle-orm";
+
+//#region src/data-access/runtime/entitlements.ts
+const listOrgEntitlements = (db) => async (orgId) => {
+	return await db.select({
+		resourceType: orgEntitlement.resourceType,
+		maxValue: orgEntitlement.maxValue
+	}).from(orgEntitlement).where(eq(orgEntitlement.organizationId, orgId));
+};
+async function dalResolveEntitlement(db, orgId, resourceType) {
+	const rows = await db.select({ maxValue: orgEntitlement.maxValue }).from(orgEntitlement).where(and(eq(orgEntitlement.organizationId, orgId), eq(orgEntitlement.resourceType, resourceType)));
+	if (rows.length === 0) return null;
+	return rows[0].maxValue;
+}
+async function dalGetServiceAccountUserId(db, orgId) {
+	return (await db.select({ serviceAccountUserId: organization.serviceAccountUserId }).from(organization).where(eq(organization.id, orgId)))[0]?.serviceAccountUserId ?? null;
+}
+async function dalCountMembersByRoleBucket(db, orgId, isAdminBucket, serviceAccountUserId) {
+	const memberCondition = isAdminBucket ? or(eq(member.role, "owner"), eq(member.role, "admin")) : eq(member.role, "member");
+	const memberWhere = serviceAccountUserId ? and(eq(member.organizationId, orgId), memberCondition, sql`${member.userId} != ${serviceAccountUserId}`) : and(eq(member.organizationId, orgId), memberCondition);
+	const [result] = await db.select({ count: sql`count(*)::int` }).from(member).where(memberWhere);
+	return result?.count ?? 0;
+}
+async function dalSumSeatEntitlements(db, orgId) {
+	const rows = await db.select({ maxValue: orgEntitlement.maxValue }).from(orgEntitlement).where(and(eq(orgEntitlement.organizationId, orgId), like(orgEntitlement.resourceType, "seat:%")));
+	if (rows.length === 0) return null;
+	return rows.reduce((sum, r) => sum + r.maxValue, 0);
+}
+
+//#endregion
+export { dalCountMembersByRoleBucket, dalGetServiceAccountUserId, dalResolveEntitlement, dalSumSeatEntitlements, listOrgEntitlements };

package/dist/data-access/runtime/ledgerArtifacts.d.ts

@@ -1,7 +1,7 @@
 import { Artifact, Part } from "../../types/a2a.js";
 import { ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 import { LedgerArtifactSelect } from "../../types/entities.js";
 
 //#region src/data-access/runtime/ledgerArtifacts.d.ts

package/dist/data-access/runtime/messages.d.ts

@@ -1,7 +1,7 @@
 import { ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
 import { MessageContent, MessageMetadata, MessageVisibility, PaginationConfig } from "../../types/utility.js";
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 import "../../index.js";
 import { MessageInsert, MessageUpdate } from "../../types/entities.js";
 
@@ -11,13 +11,13 @@ declare const getMessageById: (db: AgentsRunDatabaseClient) => (params: {
   messageId: string;
 }) => Promise<{
   id: string;
-  content: MessageContent;
-  metadata: MessageMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
+  metadata: MessageMetadata | null;
   role: string;
+  tenantId: string;
+  content: MessageContent;
+  projectId: string;
   conversationId: string;
   fromSubAgentId: string | null;
   toSubAgentId: string | null;
@@ -145,13 +145,13 @@ declare const createMessage: (db: AgentsRunDatabaseClient) => (params: {
   data: Omit<MessageInsert, "tenantId" | "projectId">;
 }) => Promise<{
   id: string;
-  content: MessageContent;
-  metadata: MessageMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
+  metadata: MessageMetadata | null;
   role: string;
+  tenantId: string;
+  content: MessageContent;
+  projectId: string;
   conversationId: string;
   fromSubAgentId: string | null;
   toSubAgentId: string | null;
@@ -198,13 +198,13 @@ declare const deleteMessage: (db: AgentsRunDatabaseClient) => (params: {
   messageId: string;
 }) => Promise<{
   id: string;
-  content: MessageContent;
-  metadata: MessageMetadata | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
+  metadata: MessageMetadata | null;
   role: string;
+  tenantId: string;
+  content: MessageContent;
+  projectId: string;
   conversationId: string;
   fromSubAgentId: string | null;
   toSubAgentId: string | null;

package/dist/data-access/runtime/scheduledTriggerInvocations.d.ts

@@ -1,4 +1,4 @@
-import { AgentScopeConfig } from "../../db/manage/scope-definitions.js";
+import { AgentScopeConfig, ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
 import { PaginationConfig } from "../../types/utility.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
 import { ScheduledTriggerInvocationStatus } from "../../validation/schemas.js";
@@ -254,5 +254,50 @@ declare const listProjectScheduledTriggerInvocationsPaginated: (db: AgentsRunDat
     pages: number;
   };
 }>;
+/**
+ * Get status summary for all invocations with a given scheduledTriggerId.
+ * Used for dataset run status aggregation where scheduledTriggerId = datasetRunId.
+ */
+declare const getScheduledTriggerInvocationStatusSummary: (db: AgentsRunDatabaseClient) => (params: {
+  scopes: ProjectScopeConfig;
+  scheduledTriggerId: string;
+}) => Promise<{
+  pending: number;
+  running: number;
+  completed: number;
+  failed: number;
+  cancelled: number;
+}>;
+/**
+ * List invocations by scheduledTriggerId without agentId filter (project-scoped).
+ * Used for dataset run items listing where scheduledTriggerId = datasetRunId.
+ */
+declare const listScheduledTriggerInvocationsByTriggerId: (db: AgentsRunDatabaseClient) => (params: {
+  scopes: ProjectScopeConfig;
+  scheduledTriggerId: string;
+  filters?: {
+    status?: string;
+  };
+}) => Promise<{
+  scheduledTriggerId: string;
+  ref: {
+    type: "commit" | "tag" | "branch";
+    name: string;
+    hash: string;
+  } | null;
+  status: "pending" | "running" | "completed" | "failed" | "cancelled";
+  scheduledFor: string;
+  startedAt: string | null;
+  completedAt: string | null;
+  resolvedPayload: Record<string, unknown> | null;
+  conversationIds: string[] | null;
+  attemptNumber: number;
+  idempotencyKey: string;
+  createdAt: string;
+  agentId: string;
+  projectId: string;
+  tenantId: string;
+  id: string;
+}[]>;
 //#endregion
-export { addConversationIdToInvocation, cancelPastPendingInvocationsForTrigger, cancelPendingInvocationsForTrigger, createScheduledTriggerInvocation, deletePendingInvocationsForTrigger, getScheduledTriggerInvocationById, getScheduledTriggerInvocationByIdempotencyKey, getScheduledTriggerRunInfoBatch, listPendingScheduledTriggerInvocations, listProjectScheduledTriggerInvocationsPaginated, listScheduledTriggerInvocationsPaginated, listUpcomingInvocationsForAgentPaginated, markScheduledTriggerInvocationCancelled, markScheduledTriggerInvocationCompleted, markScheduledTriggerInvocationFailed, markScheduledTriggerInvocationRunning, resetCancelledInvocationToPending, updateScheduledTriggerInvocationStatus };
+export { addConversationIdToInvocation, cancelPastPendingInvocationsForTrigger, cancelPendingInvocationsForTrigger, createScheduledTriggerInvocation, deletePendingInvocationsForTrigger, getScheduledTriggerInvocationById, getScheduledTriggerInvocationByIdempotencyKey, getScheduledTriggerInvocationStatusSummary, getScheduledTriggerRunInfoBatch, listPendingScheduledTriggerInvocations, listProjectScheduledTriggerInvocationsPaginated, listScheduledTriggerInvocationsByTriggerId, listScheduledTriggerInvocationsPaginated, listUpcomingInvocationsForAgentPaginated, markScheduledTriggerInvocationCancelled, markScheduledTriggerInvocationCompleted, markScheduledTriggerInvocationFailed, markScheduledTriggerInvocationRunning, resetCancelledInvocationToPending, updateScheduledTriggerInvocationStatus };

package/dist/data-access/runtime/scheduledTriggerInvocations.js

@@ -223,6 +223,39 @@ const listProjectScheduledTriggerInvocationsPaginated = (db) => async (params) =
 		}
 	};
 };
+/**
+* Get status summary for all invocations with a given scheduledTriggerId.
+* Used for dataset run status aggregation where scheduledTriggerId = datasetRunId.
+*/
+const getScheduledTriggerInvocationStatusSummary = (db) => async (params) => {
+	return (await db.select({
+		status: scheduledTriggerInvocations.status,
+		cnt: count()
+	}).from(scheduledTriggerInvocations).where(and(eq(scheduledTriggerInvocations.tenantId, params.scopes.tenantId), eq(scheduledTriggerInvocations.projectId, params.scopes.projectId), eq(scheduledTriggerInvocations.scheduledTriggerId, params.scheduledTriggerId))).groupBy(scheduledTriggerInvocations.status)).reduce((acc, { status, cnt }) => {
+		const key = status;
+		if (key in acc) acc[key] += Number(cnt);
+		return acc;
+	}, {
+		pending: 0,
+		running: 0,
+		completed: 0,
+		failed: 0,
+		cancelled: 0
+	});
+};
+/**
+* List invocations by scheduledTriggerId without agentId filter (project-scoped).
+* Used for dataset run items listing where scheduledTriggerId = datasetRunId.
+*/
+const listScheduledTriggerInvocationsByTriggerId = (db) => async (params) => {
+	const conditions = [
+		eq(scheduledTriggerInvocations.tenantId, params.scopes.tenantId),
+		eq(scheduledTriggerInvocations.projectId, params.scopes.projectId),
+		eq(scheduledTriggerInvocations.scheduledTriggerId, params.scheduledTriggerId)
+	];
+	if (params.filters?.status) conditions.push(eq(scheduledTriggerInvocations.status, params.filters.status));
+	return await db.select().from(scheduledTriggerInvocations).where(and(...conditions)).orderBy(asc(scheduledTriggerInvocations.createdAt));
+};
 
 //#endregion
-export { addConversationIdToInvocation, cancelPastPendingInvocationsForTrigger, cancelPendingInvocationsForTrigger, createScheduledTriggerInvocation, deletePendingInvocationsForTrigger, getScheduledTriggerInvocationById, getScheduledTriggerInvocationByIdempotencyKey, getScheduledTriggerRunInfoBatch, listPendingScheduledTriggerInvocations, listProjectScheduledTriggerInvocationsPaginated, listScheduledTriggerInvocationsPaginated, listUpcomingInvocationsForAgentPaginated, markScheduledTriggerInvocationCancelled, markScheduledTriggerInvocationCompleted, markScheduledTriggerInvocationFailed, markScheduledTriggerInvocationRunning, resetCancelledInvocationToPending, updateScheduledTriggerInvocationStatus };
+export { addConversationIdToInvocation, cancelPastPendingInvocationsForTrigger, cancelPendingInvocationsForTrigger, createScheduledTriggerInvocation, deletePendingInvocationsForTrigger, getScheduledTriggerInvocationById, getScheduledTriggerInvocationByIdempotencyKey, getScheduledTriggerInvocationStatusSummary, getScheduledTriggerRunInfoBatch, listPendingScheduledTriggerInvocations, listProjectScheduledTriggerInvocationsPaginated, listScheduledTriggerInvocationsByTriggerId, listScheduledTriggerInvocationsPaginated, listUpcomingInvocationsForAgentPaginated, markScheduledTriggerInvocationCancelled, markScheduledTriggerInvocationCompleted, markScheduledTriggerInvocationFailed, markScheduledTriggerInvocationRunning, resetCancelledInvocationToPending, updateScheduledTriggerInvocationStatus };

package/dist/data-access/runtime/tasks.d.ts

@@ -1,27 +1,27 @@
 import { ProjectScopeConfig } from "../../db/manage/scope-definitions.js";
 import { TaskMetadataConfig } from "../../types/utility.js";
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 import "../../index.js";
 import { TaskInsert, TaskSelect } from "../../types/entities.js";
 
 //#region src/data-access/runtime/tasks.d.ts
 declare const createTask: (db: AgentsRunDatabaseClient) => (params: TaskInsert) => Promise<{
   id: string;
-  metadata: TaskMetadataConfig | null;
   createdAt: string;
   updatedAt: string;
-  projectId: string;
-  tenantId: string;
-  status: string;
   ref: {
     type: "commit" | "tag" | "branch";
     name: string;
     hash: string;
   } | null;
+  metadata: TaskMetadataConfig | null;
+  status: string;
+  tenantId: string;
+  projectId: string;
   agentId: string;
-  contextId: string;
   subAgentId: string;
+  contextId: string;
 }>;
 declare const getTask: (db: AgentsRunDatabaseClient) => (params: {
   id: string;

package/dist/data-access/runtime/workflowExecutions.d.ts

@@ -1,5 +1,5 @@
-import "../../types/index.js";
 import { AgentsRunDatabaseClient } from "../../db/runtime/runtime-client.js";
+import "../../types/index.js";
 import { WorkflowExecutionInsert, WorkflowExecutionSelect } from "../../types/entities.js";
 
 //#region src/data-access/runtime/workflowExecutions.d.ts

package/dist/data-reconciliation/types.d.ts

@@ -1,6 +1,6 @@
+import { AgentsRunDatabaseClient } from "../db/runtime/runtime-client.js";
 import { PinoLogger } from "../utils/logger.js";
 import { AgentsManageDatabaseClient } from "../db/manage/manage-client.js";
-import { AgentsRunDatabaseClient } from "../db/runtime/runtime-client.js";
 import { AgentSelect, ContextConfigSelect, SubAgentSelect, ToolSelect } from "../types/entities.js";
 
 //#region src/data-reconciliation/types.d.ts

package/dist/db/clean.d.ts

@@ -1,5 +1,5 @@
-import { AgentsManageDatabaseClient } from "./manage/manage-client.js";
 import { AgentsRunDatabaseClient } from "./runtime/runtime-client.js";
+import { AgentsManageDatabaseClient } from "./manage/manage-client.js";
 
 //#region src/db/clean.d.ts