@playcademy/sandbox 0.3.8 → 0.3.10

package/dist/cli.js

@@ -1224,7 +1224,7 @@ var package_default;
 var init_package = __esm(() => {
   package_default = {
     name: "@playcademy/sandbox",
-    version: "0.3.8",
+    version: "0.3.10",
     description: "Local development server for Playcademy game development",
     type: "module",
     exports: {
@@ -5720,7 +5720,7 @@ function isProduction2(config2) {
 var stageSchema, ltiConfigSchema, realtimeConfigSchema, apiConfigSchema;
 var init_schema = __esm(() => {
   init_esm();
-  stageSchema = exports_external.enum(["production", "staging", "local"]);
+  stageSchema = exports_external.enum(["production", "dev", "local"]);
   ltiConfigSchema = exports_external.object({
     audience: exports_external.string(),
     jwksUrl: exports_external.string().url(),
@@ -13458,7 +13458,7 @@ class DeployService {
     }
     return cf;
   }
-  async createAndPersistApiKey(user, slug2, game, keyName) {
+  async createApiKey(user, slug2, keyName) {
     const { id, key: apiKey } = await this.ctx.providers.auth.createApiKey({
       userId: user.id,
       name: keyName,
@@ -13467,16 +13467,6 @@ class DeployService {
         games: [`read:${slug2}`, `write:${slug2}`]
       }
     });
-    try {
-      const existingSecrets = await this.ctx.providers.secrets.readSecrets(game.id) || {};
-      await this.ctx.providers.secrets.writeSecrets(game.id, {
-        ...existingSecrets,
-        PLAYCADEMY_API_KEY: apiKey
-      });
-      logger8.debug("Persisted API key to secrets", { gameId: game.id });
-    } catch (error) {
-      logger8.warn("Failed to persist API key to secrets", { error });
-    }
     logger8.info("Created new game-scoped API key", {
       userId: user.id,
       slug: slug2,
@@ -13484,48 +13474,47 @@ class DeployService {
     });
     return apiKey;
   }
-  async retrieveApiKeyFromSecrets(gameId) {
-    try {
-      const secrets = await this.ctx.providers.secrets.readSecrets(gameId);
-      if (secrets?.PLAYCADEMY_API_KEY) {
-        logger8.debug("Retrieved API key from secrets");
-        return secrets.PLAYCADEMY_API_KEY;
-      }
-      return null;
-    } catch (error) {
-      logger8.warn("Failed to retrieve secrets", { error });
-      return null;
-    }
-  }
-  async regenerateAndPersistApiKey(user, slug2, game, existingKeyId, keyName) {
-    logger8.info("Regenerating API key (migration)", {
-      userId: user.id,
-      slug: slug2,
-      oldKeyId: existingKeyId
-    });
-    try {
-      await this.ctx.providers.auth.deleteApiKey(existingKeyId);
-      logger8.debug("Revoked old API key", { keyId: existingKeyId });
-    } catch (error) {
-      logger8.warn("Failed to revoke old API key", {
-        keyId: existingKeyId,
-        error
+  async regenerateApiKey(user, slug2, existingKeyId, keyName) {
+    if (existingKeyId) {
+      logger8.info("Regenerating API key", {
+        userId: user.id,
+        slug: slug2,
+        oldKeyId: existingKeyId
       });
+      try {
+        await this.ctx.providers.auth.deleteApiKey(existingKeyId);
+        logger8.debug("Revoked old API key", { keyId: existingKeyId });
+      } catch (error) {
+        logger8.warn("Failed to revoke old API key", {
+          keyId: existingKeyId,
+          error
+        });
+      }
     }
-    return this.createAndPersistApiKey(user, slug2, game, keyName);
+    return this.createApiKey(user, slug2, keyName);
   }
-  async resolveApiKeyForDeployment(user, slug2, game, headers) {
+  async ensureApiKeyOnWorker(user, slug2, deploymentId, headers) {
+    const cf = this.getCloudflare();
     const keyName = getGameWorkerApiKeyName(slug2);
     const existingKeys = await this.ctx.providers.auth.listApiKeys(headers);
     const existingKey = existingKeys.find((k) => k.name === keyName);
+    let apiKey;
     if (!existingKey) {
-      return this.createAndPersistApiKey(user, slug2, game, keyName);
-    }
-    const apiKey = await this.retrieveApiKeyFromSecrets(game.id);
-    if (apiKey) {
-      return apiKey;
+      apiKey = await this.createApiKey(user, slug2, keyName);
+    } else {
+      try {
+        const workerSecrets = await cf.listSecrets(deploymentId);
+        if (workerSecrets.includes("PLAYCADEMY_API_KEY")) {
+          logger8.debug("API key already on worker", { slug: slug2, deploymentId });
+          return;
+        }
+      } catch (error) {
+        logger8.warn("Could not check worker secrets, will regenerate key", { error });
+      }
+      apiKey = await this.regenerateApiKey(user, slug2, existingKey.id, keyName);
     }
-    return this.regenerateAndPersistApiKey(user, slug2, game, existingKey.id, keyName);
+    await cf.setSecrets(deploymentId, { PLAYCADEMY_API_KEY: apiKey });
+    logger8.info("Set API key on worker", { slug: slug2, deploymentId });
   }
   async* deploy(slug2, request, user, uploadDeps, extractZip) {
     const cf = this.getCloudflare();
@@ -13573,9 +13562,7 @@ class DeployService {
     }
     const env = {
       GAME_ID: game.id,
-      PLAYCADEMY_BASE_URL: playcademyBaseUrl,
-      ...request._gameApiKey && { PLAYCADEMY_API_KEY: request._gameApiKey },
-      ...request.secrets && { secrets: request.secrets }
+      PLAYCADEMY_BASE_URL: playcademyBaseUrl
     };
     const deployMsg = hasBackend ? "Deploying backend code" : "Deploying to platform";
     yield { type: "status", data: { message: deployMsg } };
@@ -13598,6 +13585,10 @@ class DeployService {
     }
     const codeHash = hasBackend ? await generateDeploymentHash(request.code) : null;
     await this.saveDeployment(game.id, result.deploymentId, result.url, codeHash, result.resources);
+    if (hasBackend && request._headers) {
+      yield { type: "status", data: { message: "Configuring worker secrets" } };
+      await this.ensureApiKeyOnWorker(user, slug2, result.deploymentId, request._headers);
+    }
     yield { type: "status", data: { message: "Finalizing deployment" } };
     if (hasMetadata || hasFrontend) {
       const updates = { updatedAt: new Date };
@@ -14081,12 +14072,6 @@ class GameService {
       } catch (keyError) {
         logger11.warn("Failed to cleanup API key", { gameId, error: keyError });
       }
-      try {
-        await this.ctx.providers.secrets.deleteSecrets(gameId);
-        logger11.info("Cleaned up secrets for deleted game", { gameId });
-      } catch (secretsError) {
-        logger11.warn("Failed to cleanup secrets", { gameId, error: secretsError });
-      }
     }
     return {
       slug: gameToDelete.slug,
@@ -14980,1090 +14965,68 @@ var init_level_service = __esm(() => {
   logger15 = log.scope("LevelService");
 });
 
-// ../../node_modules/aws-jwt-verify/dist/esm/error.js
-var JwtBaseError, FailedAssertionError, JwtParseError, ParameterValidationError, JwtInvalidSignatureError, JwtInvalidSignatureAlgorithmError, JwtInvalidClaimError, JwtInvalidIssuerError, JwtInvalidAudienceError, JwtInvalidScopeError, JwtExpiredError, JwtNotBeforeError, CognitoJwtInvalidGroupError, CognitoJwtInvalidTokenUseError, CognitoJwtInvalidClientIdError, JwksValidationError, JwkValidationError, JwtWithoutValidKidError, KidNotFoundInJwksError, WaitPeriodNotYetEndedJwkError, JwksNotAvailableInCacheError, JwkInvalidUseError, JwkInvalidKtyError, FetchError, NonRetryableFetchError;
-var init_error = __esm(() => {
-  JwtBaseError = class JwtBaseError extends Error {
-  };
-  FailedAssertionError = class FailedAssertionError extends JwtBaseError {
-    constructor(msg, actual, expected) {
-      super(msg);
-      this.failedAssertion = {
-        actual,
-        expected
-      };
-    }
-  };
-  JwtParseError = class JwtParseError extends JwtBaseError {
-    constructor(msg, error) {
-      const message = error != null ? `${msg}: ${error}` : msg;
-      super(message);
-    }
-  };
-  ParameterValidationError = class ParameterValidationError extends JwtBaseError {
-  };
-  JwtInvalidSignatureError = class JwtInvalidSignatureError extends JwtBaseError {
-  };
-  JwtInvalidSignatureAlgorithmError = class JwtInvalidSignatureAlgorithmError extends FailedAssertionError {
-  };
-  JwtInvalidClaimError = class JwtInvalidClaimError extends FailedAssertionError {
-    withRawJwt({ header, payload }) {
-      this.rawJwt = {
-        header,
-        payload
-      };
-      return this;
-    }
-  };
-  JwtInvalidIssuerError = class JwtInvalidIssuerError extends JwtInvalidClaimError {
-  };
-  JwtInvalidAudienceError = class JwtInvalidAudienceError extends JwtInvalidClaimError {
-  };
-  JwtInvalidScopeError = class JwtInvalidScopeError extends JwtInvalidClaimError {
-  };
-  JwtExpiredError = class JwtExpiredError extends JwtInvalidClaimError {
-  };
-  JwtNotBeforeError = class JwtNotBeforeError extends JwtInvalidClaimError {
-  };
-  CognitoJwtInvalidGroupError = class CognitoJwtInvalidGroupError extends JwtInvalidClaimError {
-  };
-  CognitoJwtInvalidTokenUseError = class CognitoJwtInvalidTokenUseError extends JwtInvalidClaimError {
-  };
-  CognitoJwtInvalidClientIdError = class CognitoJwtInvalidClientIdError extends JwtInvalidClaimError {
-  };
-  JwksValidationError = class JwksValidationError extends JwtBaseError {
-  };
-  JwkValidationError = class JwkValidationError extends JwtBaseError {
-  };
-  JwtWithoutValidKidError = class JwtWithoutValidKidError extends JwtBaseError {
-  };
-  KidNotFoundInJwksError = class KidNotFoundInJwksError extends JwtBaseError {
-  };
-  WaitPeriodNotYetEndedJwkError = class WaitPeriodNotYetEndedJwkError extends JwtBaseError {
-  };
-  JwksNotAvailableInCacheError = class JwksNotAvailableInCacheError extends JwtBaseError {
-  };
-  JwkInvalidUseError = class JwkInvalidUseError extends FailedAssertionError {
-  };
-  JwkInvalidKtyError = class JwkInvalidKtyError extends FailedAssertionError {
-  };
-  FetchError = class FetchError extends JwtBaseError {
-    constructor(uri, msg) {
-      super(`Failed to fetch ${uri}: ${msg}`);
-    }
-  };
-  NonRetryableFetchError = class NonRetryableFetchError extends FetchError {
-  };
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/https-node.js
-import { request } from "https";
-import { pipeline } from "stream";
-async function fetch2(uri, requestOptions, data) {
-  let responseTimeout;
-  return new Promise((resolve, reject) => {
-    const req = request(uri, {
-      method: "GET",
-      ...requestOptions
-    }, (response) => {
-      if (response.statusCode !== 200) {
-        done(new NonRetryableFetchError(uri, `Status code is ${response.statusCode}, expected 200`));
-        return;
-      }
-      pipeline(response, async (responseBody) => {
-        const chunks = [];
-        for await (const chunk of responseBody) {
-          chunks.push(chunk);
-        }
-        return Buffer.concat(chunks);
-      }, done);
-    });
-    if (requestOptions?.responseTimeout) {
-      responseTimeout = setTimeout(() => done(new FetchError(uri, `Response time-out (after ${requestOptions.responseTimeout} ms.)`)), requestOptions.responseTimeout);
-      responseTimeout.unref();
-    }
-    function done(err2, data2) {
-      if (responseTimeout)
-        clearTimeout(responseTimeout);
-      if (err2 == null) {
-        resolve(data2);
-        return;
-      }
-      req.socket?.emit("agentRemove");
-      if (!(err2 instanceof FetchError)) {
-        err2 = new FetchError(uri, err2.message);
-      }
-      req.destroy();
-      reject(err2);
-    }
-    req.on("error", done);
-    req.end(data);
-  });
-}
-var init_https_node = __esm(() => {
-  init_error();
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/node-web-compat-node.js
-import { createPublicKey, createVerify, verify } from "crypto";
-var JwtSignatureAlgorithmHashNames, nodeWebCompat;
-var init_node_web_compat_node = __esm(() => {
-  init_https_node();
-  (function(JwtSignatureAlgorithmHashNames2) {
-    JwtSignatureAlgorithmHashNames2["RS256"] = "RSA-SHA256";
-    JwtSignatureAlgorithmHashNames2["RS384"] = "RSA-SHA384";
-    JwtSignatureAlgorithmHashNames2["RS512"] = "RSA-SHA512";
-    JwtSignatureAlgorithmHashNames2["ES256"] = "RSA-SHA256";
-    JwtSignatureAlgorithmHashNames2["ES384"] = "RSA-SHA384";
-    JwtSignatureAlgorithmHashNames2["ES512"] = "RSA-SHA512";
-  })(JwtSignatureAlgorithmHashNames || (JwtSignatureAlgorithmHashNames = {}));
-  nodeWebCompat = {
-    fetch: fetch2,
-    transformJwkToKeyObjectSync: (jwk) => createPublicKey({
-      key: jwk,
-      format: "jwk"
-    }),
-    transformJwkToKeyObjectAsync: async (jwk) => createPublicKey({
-      key: jwk,
-      format: "jwk"
-    }),
-    parseB64UrlString: (b64) => Buffer.from(b64, "base64").toString("utf8"),
-    verifySignatureSync: ({ alg, keyObject, jwsSigningInput, signature }) => alg !== "EdDSA" ? createVerify(JwtSignatureAlgorithmHashNames[alg]).update(jwsSigningInput).verify({
-      key: keyObject,
-      dsaEncoding: "ieee-p1363"
-    }, signature, "base64") : verify(null, Buffer.from(jwsSigningInput), keyObject, Buffer.from(signature, "base64")),
-    verifySignatureAsync: async (args2) => nodeWebCompat.verifySignatureSync(args2),
-    defaultFetchTimeouts: {
-      socketIdle: 1500,
-      response: 3000
-    },
-    setTimeoutUnref: (...args2) => setTimeout(...args2).unref(),
-    transformPemToJwk: async (pem) => {
-      return createPublicKey({
-        key: Buffer.from(pem),
-        format: "pem"
-      }).export({
-        format: "jwk"
-      });
-    }
-  };
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/https.js
-class SimpleFetcher {
-  constructor(props) {
-    this.defaultRequestOptions = {
-      timeout: nodeWebCompat.defaultFetchTimeouts.socketIdle,
-      responseTimeout: nodeWebCompat.defaultFetchTimeouts.response,
-      ...props?.defaultRequestOptions
-    };
-  }
-  async fetch(uri, requestOptions, data) {
-    requestOptions = { ...this.defaultRequestOptions, ...requestOptions };
-    try {
-      return await fetch3(uri, requestOptions, data);
-    } catch (err2) {
-      if (err2 instanceof NonRetryableFetchError) {
-        throw err2;
-      }
-      return fetch3(uri, requestOptions, data);
-    }
-  }
-}
-var fetch3;
-var init_https = __esm(() => {
-  init_error();
-  init_node_web_compat_node();
-  fetch3 = nodeWebCompat.fetch.bind(undefined);
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/safe-json-parse.js
-function isJsonObject(j) {
-  return typeof j === "object" && !Array.isArray(j) && j !== null;
-}
-function safeJsonParse(s) {
-  return JSON.parse(s, (_, value) => {
-    if (typeof value === "object" && !Array.isArray(value) && value !== null) {
-      delete value.__proto__;
-      delete value.constructor;
-    }
-    return value;
-  });
-}
-
-// ../../node_modules/aws-jwt-verify/dist/esm/assert.js
-function assertStringEquals(name3, actual, expected, errorConstructor = FailedAssertionError) {
-  if (!actual) {
-    throw new errorConstructor(`Missing ${name3}. Expected: ${expected}`, actual, expected);
-  }
-  if (typeof actual !== "string") {
-    throw new errorConstructor(`${name3} is not of type string`, actual, expected);
-  }
-  if (expected !== actual) {
-    throw new errorConstructor(`${name3} not allowed: ${actual}. Expected: ${expected}`, actual, expected);
-  }
-}
-function assertStringArrayContainsString(name3, actual, expected, errorConstructor = FailedAssertionError) {
-  if (!actual) {
-    throw new errorConstructor(`Missing ${name3}. ${expectationMessage(expected)}`, actual, expected);
-  }
-  if (typeof actual !== "string") {
-    throw new errorConstructor(`${name3} is not of type string`, actual, expected);
-  }
-  return assertStringArraysOverlap(name3, actual, expected, errorConstructor);
-}
-function assertStringArraysOverlap(name3, actual, expected, errorConstructor = FailedAssertionError) {
-  if (!actual) {
-    throw new errorConstructor(`Missing ${name3}. ${expectationMessage(expected)}`, actual, expected);
-  }
-  const expectedAsSet = new Set(Array.isArray(expected) ? expected : [expected]);
-  if (typeof actual === "string") {
-    actual = [actual];
-  }
-  if (!Array.isArray(actual)) {
-    throw new errorConstructor(`${name3} is not an array`, actual, expected);
-  }
-  const overlaps = actual.some((actualItem) => {
-    if (typeof actualItem !== "string") {
-      throw new errorConstructor(`${name3} includes elements that are not of type string`, actual, expected);
-    }
-    return expectedAsSet.has(actualItem);
-  });
-  if (!overlaps) {
-    throw new errorConstructor(`${name3} not allowed: ${actual.join(", ")}. ${expectationMessage(expected)}`, actual, expected);
-  }
-}
-function expectationMessage(expected) {
-  if (Array.isArray(expected)) {
-    if (expected.length > 1) {
-      return `Expected one of: ${expected.join(", ")}`;
-    }
-    return `Expected: ${expected[0]}`;
-  }
-  return `Expected: ${expected}`;
-}
-function assertIsNotPromise(actual, errorFactory) {
-  if (actual && typeof actual.then === "function") {
-    throw errorFactory();
-  }
-}
-var init_assert = __esm(() => {
-  init_error();
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/jwk.js
-function findJwkInJwks(jwks, kid) {
-  return jwks.keys.find((jwk) => jwk.kid != null && jwk.kid === kid);
-}
-function assertIsJwks(jwks) {
-  if (!jwks) {
-    throw new JwksValidationError("JWKS empty");
-  }
-  if (!isJsonObject(jwks)) {
-    throw new JwksValidationError("JWKS should be an object");
-  }
-  if (!Object.keys(jwks).includes("keys")) {
-    throw new JwksValidationError("JWKS does not include keys");
-  }
-  if (!Array.isArray(jwks.keys)) {
-    throw new JwksValidationError("JWKS keys should be an array");
-  }
-  for (const jwk of jwks.keys) {
-    assertIsJwk(jwk);
-  }
-}
-function assertIsSignatureJwk(jwk) {
-  assertStringArrayContainsString("JWK kty", jwk.kty, ["EC", "RSA", "OKP"], JwkInvalidKtyError);
-  if (jwk.kty === "EC") {
-    assertIsEsSignatureJwk(jwk);
-  } else if (jwk.kty === "RSA") {
-    assertIsRsaSignatureJwk(jwk);
-  } else if (jwk.kty === "OKP") {
-    assertIsEdDSASignatureJwk(jwk);
-  }
-}
-function assertIsEdDSASignatureJwk(jwk) {
-  if (jwk.use) {
-    assertStringEquals("JWK use", jwk.use, "sig", JwkInvalidUseError);
-  }
-  assertStringEquals("JWK kty", jwk.kty, "OKP", JwkInvalidKtyError);
-  if (!jwk.crv)
-    throw new JwkValidationError("Missing Curve (crv)");
-  if (!jwk.x)
-    throw new JwkValidationError("Missing X Coordinate (x)");
-}
-function assertIsEsSignatureJwk(jwk) {
-  if (jwk.use) {
-    assertStringEquals("JWK use", jwk.use, "sig", JwkInvalidUseError);
-  }
-  assertStringEquals("JWK kty", jwk.kty, "EC", JwkInvalidKtyError);
-  if (!jwk.crv)
-    throw new JwkValidationError("Missing Curve (crv)");
-  if (!jwk.x)
-    throw new JwkValidationError("Missing X Coordinate (x)");
-  if (!jwk.y)
-    throw new JwkValidationError("Missing Y Coordinate (y)");
-}
-function assertIsRsaSignatureJwk(jwk) {
-  if (jwk.use) {
-    assertStringEquals("JWK use", jwk.use, "sig", JwkInvalidUseError);
-  }
-  assertStringEquals("JWK kty", jwk.kty, "RSA", JwkInvalidKtyError);
-  if (!jwk.n)
-    throw new JwkValidationError("Missing modulus (n)");
-  if (!jwk.e)
-    throw new JwkValidationError("Missing exponent (e)");
-}
-function assertIsJwk(jwk) {
-  if (!jwk) {
-    throw new JwkValidationError("JWK empty");
-  }
-  if (!isJsonObject(jwk)) {
-    throw new JwkValidationError("JWK should be an object");
-  }
-  for (const field of mandatoryJwkFieldNames) {
-    if (typeof jwk[field] !== "string") {
-      throw new JwkValidationError(`JWK ${field} should be a string`);
-    }
-  }
-  for (const field of optionalJwkFieldNames) {
-    if (field in jwk && typeof jwk[field] !== "string") {
-      throw new JwkValidationError(`JWK ${field} should be a string`);
-    }
-  }
-}
-function isJwks(jwks) {
-  try {
-    assertIsJwks(jwks);
-    return true;
-  } catch {
-    return false;
-  }
-}
-function isJwk(jwk) {
-  try {
-    assertIsJwk(jwk);
-    return true;
-  } catch {
-    return false;
-  }
-}
-
-class SimplePenaltyBox {
-  constructor(props) {
-    this.waitingUris = new Map;
-    this.waitSeconds = props?.waitSeconds ?? 10;
-  }
-  async wait(jwksUri) {
-    if (this.waitingUris.has(jwksUri)) {
-      throw new WaitPeriodNotYetEndedJwkError("Not allowed to fetch JWKS yet, still waiting for back off period to end");
-    }
-  }
-  release(jwksUri) {
-    const i2 = this.waitingUris.get(jwksUri);
-    if (i2) {
-      clearTimeout(i2);
-      this.waitingUris.delete(jwksUri);
-    }
-  }
-  registerFailedAttempt(jwksUri) {
-    const i2 = nodeWebCompat.setTimeoutUnref(() => {
-      this.waitingUris.delete(jwksUri);
-    }, this.waitSeconds * 1000);
-    this.waitingUris.set(jwksUri, i2);
-  }
-  registerSuccessfulAttempt(jwksUri) {
-    this.release(jwksUri);
-  }
-}
-
-class SimpleJwksCache {
-  constructor(props) {
-    this.jwksCache = new Map;
-    this.fetchingJwks = new Map;
-    this.penaltyBox = props?.penaltyBox ?? new SimplePenaltyBox;
-    this.fetcher = props?.fetcher ?? new SimpleFetcher;
-    this.jwksParser = props?.jwksParser ?? parseJwks;
-  }
-  addJwks(jwksUri, jwks) {
-    this.jwksCache.set(jwksUri, jwks);
-  }
-  async getJwks(jwksUri) {
-    const existingFetch = this.fetchingJwks.get(jwksUri);
-    if (existingFetch) {
-      return existingFetch;
-    }
-    const jwksPromise = this.fetcher.fetch(jwksUri).then(this.jwksParser);
-    this.fetchingJwks.set(jwksUri, jwksPromise);
-    let jwks;
-    try {
-      jwks = await jwksPromise;
-    } finally {
-      this.fetchingJwks.delete(jwksUri);
-    }
-    this.jwksCache.set(jwksUri, jwks);
-    return jwks;
-  }
-  getCachedJwk(jwksUri, decomposedJwt) {
-    if (typeof decomposedJwt.header.kid !== "string") {
-      throw new JwtWithoutValidKidError("JWT header does not have valid kid claim");
-    }
-    if (!this.jwksCache.has(jwksUri)) {
-      throw new JwksNotAvailableInCacheError(`JWKS for uri ${jwksUri} not yet available in cache`);
-    }
-    const jwk = findJwkInJwks(this.jwksCache.get(jwksUri), decomposedJwt.header.kid);
-    if (!jwk) {
-      throw new KidNotFoundInJwksError(`JWK for kid ${decomposedJwt.header.kid} not found in the JWKS`);
-    }
-    return jwk;
-  }
-  async getJwk(jwksUri, decomposedJwt) {
-    if (typeof decomposedJwt.header.kid !== "string") {
-      throw new JwtWithoutValidKidError("JWT header does not have valid kid claim");
-    }
-    const cachedJwks = this.jwksCache.get(jwksUri);
-    if (cachedJwks) {
-      const cachedJwk = findJwkInJwks(cachedJwks, decomposedJwt.header.kid);
-      if (cachedJwk) {
-        return cachedJwk;
-      }
-    }
-    await this.penaltyBox.wait(jwksUri, decomposedJwt.header.kid);
-    const jwks = await this.getJwks(jwksUri);
-    const jwk = findJwkInJwks(jwks, decomposedJwt.header.kid);
-    if (!jwk) {
-      this.penaltyBox.registerFailedAttempt(jwksUri, decomposedJwt.header.kid);
-      throw new KidNotFoundInJwksError(`JWK for kid "${decomposedJwt.header.kid}" not found in the JWKS`);
-    } else {
-      this.penaltyBox.registerSuccessfulAttempt(jwksUri, decomposedJwt.header.kid);
-    }
-    return jwk;
-  }
-}
-var optionalJwkFieldNames, mandatoryJwkFieldNames, parseJwks = function(jwksBin) {
-  let jwks;
-  try {
-    const jwksText = new TextDecoder("utf8", {
-      fatal: true,
-      ignoreBOM: true
-    }).decode(jwksBin);
-    jwks = safeJsonParse(jwksText);
-  } catch (err2) {
-    throw new JwksValidationError(`JWKS could not be parsed as JSON: ${err2}`);
-  }
-  assertIsJwks(jwks);
-  return jwks;
-};
-var init_jwk = __esm(() => {
-  init_https();
-  init_error();
-  init_node_web_compat_node();
-  init_assert();
-  optionalJwkFieldNames = [
-    "use",
-    "alg",
-    "kid",
-    "n",
-    "e",
-    "x",
-    "y",
-    "crv"
-  ];
-  mandatoryJwkFieldNames = [
-    "kty"
-  ];
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/jwt.js
-function assertJwtHeader(header) {
-  if (!isJsonObject(header)) {
-    throw new JwtParseError("JWT header is not an object");
-  }
-  if (header.alg !== undefined && typeof header.alg !== "string") {
-    throw new JwtParseError("JWT header alg claim is not a string");
-  }
-  if (header.kid !== undefined && typeof header.kid !== "string") {
-    throw new JwtParseError("JWT header kid claim is not a string");
-  }
-}
-function assertJwtPayload(payload) {
-  if (!isJsonObject(payload)) {
-    throw new JwtParseError("JWT payload is not an object");
-  }
-  if (payload.exp !== undefined && !Number.isFinite(payload.exp)) {
-    throw new JwtParseError("JWT payload exp claim is not a number");
-  }
-  if (payload.iss !== undefined && typeof payload.iss !== "string") {
-    throw new JwtParseError("JWT payload iss claim is not a string");
-  }
-  if (payload.sub !== undefined && typeof payload.sub !== "string") {
-    throw new JwtParseError("JWT payload sub claim is not a string");
-  }
-  if (payload.aud !== undefined && typeof payload.aud !== "string" && (!Array.isArray(payload.aud) || payload.aud.some((aud) => typeof aud !== "string"))) {
-    throw new JwtParseError("JWT payload aud claim is not a string or array of strings");
-  }
-  if (payload.nbf !== undefined && !Number.isFinite(payload.nbf)) {
-    throw new JwtParseError("JWT payload nbf claim is not a number");
-  }
-  if (payload.iat !== undefined && !Number.isFinite(payload.iat)) {
-    throw new JwtParseError("JWT payload iat claim is not a number");
-  }
-  if (payload.scope !== undefined && typeof payload.scope !== "string") {
-    throw new JwtParseError("JWT payload scope claim is not a string");
-  }
-  if (payload.jti !== undefined && typeof payload.jti !== "string") {
-    throw new JwtParseError("JWT payload jti claim is not a string");
-  }
-}
-function decomposeUnverifiedJwt(jwt) {
-  if (!jwt) {
-    throw new JwtParseError("Empty JWT");
-  }
-  if (typeof jwt !== "string") {
-    throw new JwtParseError("JWT is not a string");
-  }
-  if (!JWT_REGEX.test(jwt)) {
-    throw new JwtParseError("JWT string does not consist of exactly 3 parts (header, payload, signature)");
-  }
-  const [headerB64, payloadB64, signatureB64] = jwt.split(".");
-  const [headerString, payloadString] = [headerB64, payloadB64].map(nodeWebCompat.parseB64UrlString);
-  let header;
-  try {
-    header = safeJsonParse(headerString);
-  } catch (err2) {
-    throw new JwtParseError("Invalid JWT. Header is not a valid JSON object", err2);
-  }
-  assertJwtHeader(header);
-  let payload;
-  try {
-    payload = safeJsonParse(payloadString);
-  } catch (err2) {
-    throw new JwtParseError("Invalid JWT. Payload is not a valid JSON object", err2);
-  }
-  assertJwtPayload(payload);
-  return {
-    header,
-    headerB64,
-    payload,
-    payloadB64,
-    signatureB64
-  };
-}
-function validateJwtFields(payload, options) {
-  if (payload.exp !== undefined) {
-    if (payload.exp + (options.graceSeconds ?? 0) < Date.now() / 1000) {
-      throw new JwtExpiredError(`Token expired at ${new Date(payload.exp * 1000).toISOString()}`, payload.exp);
-    }
-  }
-  if (payload.nbf !== undefined) {
-    if (payload.nbf - (options.graceSeconds ?? 0) > Date.now() / 1000) {
-      throw new JwtNotBeforeError(`Token can't be used before ${new Date(payload.nbf * 1000).toISOString()}`, payload.nbf);
-    }
-  }
-  if (options.issuer !== null) {
-    if (options.issuer === undefined) {
-      throw new ParameterValidationError("issuer must be provided or set to null explicitly");
-    }
-    assertStringArrayContainsString("Issuer", payload.iss, options.issuer, JwtInvalidIssuerError);
-  }
-  if (options.audience !== null) {
-    if (options.audience === undefined) {
-      throw new ParameterValidationError("audience must be provided or set to null explicitly");
-    }
-    assertStringArraysOverlap("Audience", payload.aud, options.audience, JwtInvalidAudienceError);
-  }
-  if (options.scope != null) {
-    assertStringArraysOverlap("Scope", payload.scope?.split(" "), options.scope, JwtInvalidScopeError);
-  }
-}
-var JWT_REGEX;
-var init_jwt = __esm(() => {
-  init_assert();
-  init_error();
-  init_node_web_compat_node();
-  JWT_REGEX = /^[A-Za-z0-9_-]+={0,2}\.[A-Za-z0-9_-]+={0,2}\.[A-Za-z0-9_-]+={0,2}$/;
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/jwt-verifier.js
-function validateJwtHeaderAndJwk(header, jwk) {
-  assertIsSignatureJwk(jwk);
-  if (jwk.alg) {
-    assertStringEquals("JWT signature algorithm", header.alg, jwk.alg, JwtInvalidSignatureAlgorithmError);
-  }
-  assertStringArrayContainsString("JWT signature algorithm", header.alg, supportedSignatureAlgorithms, JwtInvalidSignatureAlgorithmError);
-}
-async function verifyDecomposedJwt(decomposedJwt, jwksUri, options, jwkFetcher, transformJwkToKeyObjectFn) {
-  const { header, headerB64, payload, payloadB64, signatureB64 } = decomposedJwt;
-  const jwk = await jwkFetcher(jwksUri, decomposedJwt);
-  validateJwtHeaderAndJwk(decomposedJwt.header, jwk);
-  const keyObject = await transformJwkToKeyObjectFn(jwk, header.alg, payload.iss);
-  const valid = await nodeWebCompat.verifySignatureAsync({
-    jwsSigningInput: `${headerB64}.${payloadB64}`,
-    signature: signatureB64,
-    alg: header.alg,
-    keyObject
-  });
-  if (!valid) {
-    throw new JwtInvalidSignatureError("Invalid signature");
-  }
-  try {
-    validateJwtFields(payload, options);
-    if (options.customJwtCheck) {
-      await options.customJwtCheck({ header, payload, jwk });
-    }
-  } catch (err2) {
-    if (options.includeRawJwtInErrors && err2 instanceof JwtInvalidClaimError) {
-      throw err2.withRawJwt(decomposedJwt);
-    }
-    throw err2;
-  }
-  return payload;
-}
-function verifyDecomposedJwtSync(decomposedJwt, jwkOrJwks, options, transformJwkToKeyObjectFn) {
-  const { header, headerB64, payload, payloadB64, signatureB64 } = decomposedJwt;
-  let jwk;
-  if (isJwk(jwkOrJwks)) {
-    jwk = jwkOrJwks;
-  } else if (isJwks(jwkOrJwks)) {
-    const locatedJwk = header.kid ? findJwkInJwks(jwkOrJwks, header.kid) : undefined;
-    if (!locatedJwk) {
-      throw new KidNotFoundInJwksError(`JWK for kid ${header.kid} not found in the JWKS`);
-    }
-    jwk = locatedJwk;
-  } else {
-    throw new ParameterValidationError([
-      `Expected a valid JWK or JWKS (parsed as JavaScript object), but received: ${jwkOrJwks}.`,
-      "If you're passing a JWKS URI, use the async verify() method instead, it will download and parse the JWKS for you"
-    ].join());
-  }
-  validateJwtHeaderAndJwk(decomposedJwt.header, jwk);
-  const keyObject = transformJwkToKeyObjectFn(jwk, header.alg, payload.iss);
-  const valid = nodeWebCompat.verifySignatureSync({
-    jwsSigningInput: `${headerB64}.${payloadB64}`,
-    signature: signatureB64,
-    alg: header.alg,
-    keyObject
-  });
-  if (!valid) {
-    throw new JwtInvalidSignatureError("Invalid signature");
-  }
-  try {
-    validateJwtFields(payload, options);
-    if (options.customJwtCheck) {
-      const res = options.customJwtCheck({ header, payload, jwk });
-      assertIsNotPromise(res, () => new ParameterValidationError("Custom JWT checks must be synchronous but a promise was returned"));
-    }
-  } catch (err2) {
-    if (options.includeRawJwtInErrors && err2 instanceof JwtInvalidClaimError) {
-      throw err2.withRawJwt(decomposedJwt);
-    }
-    throw err2;
+// ../api-core/src/services/logs.service.ts
+class LogsService {
+  ctx;
+  constructor(ctx) {
+    this.ctx = ctx;
   }
-  return payload;
-}
-
-class JwtVerifierBase {
-  constructor(verifyProperties, jwksCache = new SimpleJwksCache) {
-    this.jwksCache = jwksCache;
-    this.issuersConfig = new Map;
-    this.publicKeyCache = new KeyObjectCache;
-    if (Array.isArray(verifyProperties)) {
-      if (!verifyProperties.length) {
-        throw new ParameterValidationError("Provide at least one issuer configuration");
-      }
-      verifyProperties.forEach((prop, index2) => {
-        if (this.issuersConfig.has(prop.issuer)) {
-          throw new ParameterValidationError(`issuer ${prop.issuer} supplied multiple times`);
-        } else if (prop.issuer === null && verifyProperties.length >= 2) {
-          throw new ParameterValidationError(`issuer cannot be null when multiple issuers are supplied (at issuer: ${index2})`);
-        }
-        this.issuersConfig.set(prop.issuer, this.withJwksUri(prop));
+  async generateToken(user, slug2, environment) {
+    const db2 = this.ctx.db;
+    if (user.role === "admin") {
+      const game = await db2.query.games.findFirst({
+        where: eq(games.slug, slug2),
+        columns: { id: true }
       });
-    } else {
-      this.issuersConfig.set(verifyProperties.issuer, this.withJwksUri(verifyProperties));
-    }
-  }
-  getIssuerConfig(issuer) {
-    if (this.issuersConfig.size === 1) {
-      issuer = this.issuersConfig.keys().next().value;
-    }
-    if (issuer === undefined) {
-      throw new ParameterValidationError("issuer must be provided");
-    }
-    const config2 = this.issuersConfig.get(issuer);
-    if (!config2) {
-      throw new ParameterValidationError(`issuer not configured: ${issuer}`);
-    }
-    return config2;
-  }
-  cacheJwks(...[jwks, issuer]) {
-    const issuerConfig = this.getIssuerConfig(issuer);
-    this.jwksCache.addJwks(issuerConfig.jwksUri, jwks);
-    this.publicKeyCache.clearCache(issuerConfig.issuer);
-  }
-  async hydrate() {
-    const jwksFetches = Array.from(this.issuersConfig.values()).map(({ jwksUri }) => this.jwksCache.getJwks(jwksUri));
-    await Promise.all(jwksFetches);
-  }
-  verifySync(...[jwt, properties]) {
-    const { decomposedJwt, jwksUri, verifyProperties } = this.getVerifyParameters(jwt, properties);
-    return this.verifyDecomposedJwtSync(decomposedJwt, jwksUri, verifyProperties);
-  }
-  verifyDecomposedJwtSync(decomposedJwt, jwksUri, verifyProperties) {
-    const jwk = this.jwksCache.getCachedJwk(jwksUri, decomposedJwt);
-    return verifyDecomposedJwtSync(decomposedJwt, jwk, verifyProperties, this.publicKeyCache.transformJwkToKeyObjectSync.bind(this.publicKeyCache));
-  }
-  async verify(...[jwt, properties]) {
-    const { decomposedJwt, jwksUri, verifyProperties } = this.getVerifyParameters(jwt, properties);
-    return this.verifyDecomposedJwt(decomposedJwt, jwksUri, verifyProperties);
-  }
-  verifyDecomposedJwt(decomposedJwt, jwksUri, verifyProperties) {
-    return verifyDecomposedJwt(decomposedJwt, jwksUri, verifyProperties, this.jwksCache.getJwk.bind(this.jwksCache), this.publicKeyCache.transformJwkToKeyObjectAsync.bind(this.publicKeyCache));
-  }
-  getVerifyParameters(jwt, verifyProperties) {
-    const decomposedJwt = decomposeUnverifiedJwt(jwt);
-    const issuerConfig = this.getIssuerConfig(decomposedJwt.payload.iss);
-    return {
-      decomposedJwt,
-      jwksUri: issuerConfig.jwksUri,
-      verifyProperties: {
-        ...issuerConfig,
-        ...verifyProperties
+      if (!game) {
+        throw new NotFoundError("Game", slug2);
       }
-    };
-  }
-  withJwksUri(config2) {
-    if (config2.jwksUri) {
-      return config2;
-    }
-    const issuer = config2.issuer;
-    if (!issuer) {
-      throw new ParameterValidationError("jwksUri must be provided for issuer null");
-    }
-    const issuerUri = new URL(issuer).pathname.replace(/\/$/, "");
-    return {
-      jwksUri: new URL(`${issuerUri}/.well-known/jwks.json`, issuer).href,
-      ...config2
-    };
-  }
-}
-
-class KeyObjectCache {
-  constructor(transformJwkToKeyObjectSyncFn = nodeWebCompat.transformJwkToKeyObjectSync, transformJwkToKeyObjectAsyncFn = nodeWebCompat.transformJwkToKeyObjectAsync) {
-    this.transformJwkToKeyObjectSyncFn = transformJwkToKeyObjectSyncFn;
-    this.transformJwkToKeyObjectAsyncFn = transformJwkToKeyObjectAsyncFn;
-    this.publicKeys = new Map;
-  }
-  transformJwkToKeyObjectSync(jwk, jwtHeaderAlg, issuer) {
-    const alg = jwk.alg ?? jwtHeaderAlg;
-    if (!issuer || !jwk.kid || !alg) {
-      return this.transformJwkToKeyObjectSyncFn(jwk, alg, issuer);
-    }
-    const fromCache = this.publicKeys.get(issuer)?.get(jwk.kid)?.get(alg);
-    if (fromCache)
-      return fromCache;
-    const publicKey = this.transformJwkToKeyObjectSyncFn(jwk, alg, issuer);
-    this.putKeyObjectInCache(issuer, jwk.kid, alg, publicKey);
-    return publicKey;
-  }
-  async transformJwkToKeyObjectAsync(jwk, jwtHeaderAlg, issuer) {
-    const alg = jwk.alg ?? jwtHeaderAlg;
-    if (!issuer || !jwk.kid || !alg) {
-      return this.transformJwkToKeyObjectAsyncFn(jwk, alg, issuer);
-    }
-    const fromCache = this.publicKeys.get(issuer)?.get(jwk.kid)?.get(alg);
-    if (fromCache)
-      return fromCache;
-    const publicKey = await this.transformJwkToKeyObjectAsyncFn(jwk, alg, issuer);
-    this.putKeyObjectInCache(issuer, jwk.kid, alg, publicKey);
-    return publicKey;
-  }
-  putKeyObjectInCache(issuer, kid, alg, publicKey) {
-    const cachedIssuer = this.publicKeys.get(issuer);
-    const cachedIssuerKid = cachedIssuer?.get(kid);
-    if (cachedIssuerKid) {
-      cachedIssuerKid.set(alg, publicKey);
-    } else if (cachedIssuer) {
-      cachedIssuer.set(kid, new Map([[alg, publicKey]]));
+      logger16.info("Admin accessing game logs", { adminId: user.id, slug: slug2, environment });
     } else {
-      this.publicKeys.set(issuer, new Map([[kid, new Map([[alg, publicKey]])]]));
-    }
-  }
-  clearCache(issuer) {
-    this.publicKeys.delete(issuer);
-  }
-}
-var supportedSignatureAlgorithms, JwtVerifier;
-var init_jwt_verifier = __esm(() => {
-  init_jwk();
-  init_assert();
-  init_jwt();
-  init_error();
-  init_node_web_compat_node();
-  supportedSignatureAlgorithms = [
-    "RS256",
-    "RS384",
-    "RS512",
-    "ES256",
-    "ES384",
-    "ES512",
-    "EdDSA"
-  ];
-  JwtVerifier = class JwtVerifier extends JwtVerifierBase {
-    static create(verifyProperties, additionalProperties) {
-      return new this(verifyProperties, additionalProperties?.jwksCache);
-    }
-  };
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/cognito-verifier.js
-function validateCognitoJwtFields(payload, options) {
-  if (options.groups != null) {
-    assertStringArraysOverlap("Cognito group", payload["cognito:groups"], options.groups, CognitoJwtInvalidGroupError);
-  }
-  assertStringArrayContainsString("Token use", payload.token_use, ["id", "access"], CognitoJwtInvalidTokenUseError);
-  if (options.tokenUse !== null) {
-    if (options.tokenUse === undefined) {
-      throw new ParameterValidationError("tokenUse must be provided or set to null explicitly");
-    }
-    assertStringEquals("Token use", payload.token_use, options.tokenUse, CognitoJwtInvalidTokenUseError);
-  }
-  if (options.clientId !== null) {
-    if (options.clientId === undefined) {
-      throw new ParameterValidationError("clientId must be provided or set to null explicitly");
-    }
-    if (payload.token_use === "id") {
-      assertStringArrayContainsString('Client ID ("audience")', payload.aud, options.clientId, CognitoJwtInvalidClientIdError);
-    } else {
-      assertStringArrayContainsString("Client ID", payload.client_id, options.clientId, CognitoJwtInvalidClientIdError);
-    }
-  }
-}
-var CognitoJwtVerifier;
-var init_cognito_verifier = __esm(() => {
-  init_error();
-  init_jwt_verifier();
-  init_assert();
-  CognitoJwtVerifier = class CognitoJwtVerifier extends JwtVerifierBase {
-    constructor(props, jwksCache) {
-      const issuerConfig = Array.isArray(props) ? props.map((p) => ({
-        ...p,
-        ...CognitoJwtVerifier.parseUserPoolId(p.userPoolId),
-        audience: null
-      })) : {
-        ...props,
-        ...CognitoJwtVerifier.parseUserPoolId(props.userPoolId),
-        audience: null
-      };
-      super(issuerConfig, jwksCache);
-    }
-    static parseUserPoolId(userPoolId) {
-      const match = userPoolId.match(this.USER_POOL_ID_REGEX);
-      if (!match) {
-        throw new ParameterValidationError(`Invalid Cognito User Pool ID: ${userPoolId}`);
-      }
-      const region = match.groups.region;
-      const issuer = `https://cognito-idp.${region}.amazonaws.com/${userPoolId}`;
-      return {
-        issuer,
-        jwksUri: `${issuer}/.well-known/jwks.json`
-      };
-    }
-    static create(verifyProperties, additionalProperties) {
-      return new this(verifyProperties, additionalProperties?.jwksCache);
-    }
-    verifySync(...[jwt, properties]) {
-      const { decomposedJwt, jwksUri, verifyProperties } = this.getVerifyParameters(jwt, properties);
-      this.verifyDecomposedJwtSync(decomposedJwt, jwksUri, verifyProperties);
-      try {
-        validateCognitoJwtFields(decomposedJwt.payload, verifyProperties);
-      } catch (err2) {
-        if (verifyProperties.includeRawJwtInErrors && err2 instanceof JwtInvalidClaimError) {
-          throw err2.withRawJwt(decomposedJwt);
-        }
-        throw err2;
+      const isApprovedDev = user.developerStatus === "approved";
+      if (!isApprovedDev) {
+        logger16.warn("Unapproved developer attempted log access", { userId: user.id, slug: slug2 });
+        throw new AccessDeniedError("Must be an approved developer");
       }
-      return decomposedJwt.payload;
-    }
-    async verify(...[jwt, properties]) {
-      const { decomposedJwt, jwksUri, verifyProperties } = this.getVerifyParameters(jwt, properties);
-      await this.verifyDecomposedJwt(decomposedJwt, jwksUri, verifyProperties);
-      try {
-        validateCognitoJwtFields(decomposedJwt.payload, verifyProperties);
-      } catch (err2) {
-        if (verifyProperties.includeRawJwtInErrors && err2 instanceof JwtInvalidClaimError) {
-          throw err2.withRawJwt(decomposedJwt);
-        }
-        throw err2;
-      }
-      return decomposedJwt.payload;
-    }
-    cacheJwks(...[jwks, userPoolId]) {
-      let issuer;
-      if (userPoolId !== undefined) {
-        issuer = CognitoJwtVerifier.parseUserPoolId(userPoolId).issuer;
-      } else if (Array.from(this.issuersConfig).length > 1) {
-        throw new ParameterValidationError("userPoolId must be provided");
+      const game = await db2.query.games.findFirst({
+        where: and(eq(games.slug, slug2), eq(games.developerId, user.id)),
+        columns: { id: true }
+      });
+      if (!game) {
+        logger16.warn("Developer attempted access to unowned game logs", {
+          userId: user.id,
+          slug: slug2
+        });
+        throw new NotFoundError("Game", slug2);
       }
-      const issuerConfig = this.getIssuerConfig(issuer);
-      super.cacheJwks(jwks, issuerConfig.issuer);
     }
-  };
-  CognitoJwtVerifier.USER_POOL_ID_REGEX = /^(?<region>[a-z]{2}-(gov-)?[a-z]+-\d)_[a-zA-Z0-9]+$/;
-});
-// ../../node_modules/aws-jwt-verify/dist/esm/alb-cache.js
-var init_alb_cache = __esm(() => {
-  init_error();
-  init_https();
-  init_node_web_compat_node();
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/alb-verifier.js
-var init_alb_verifier = __esm(() => {
-  init_alb_cache();
-  init_assert();
-  init_error();
-  init_jwt_verifier();
-});
-
-// ../../node_modules/aws-jwt-verify/dist/esm/index.js
-var init_esm2 = __esm(() => {
-  init_jwt_verifier();
-  init_cognito_verifier();
-  init_alb_verifier();
-  init_jwt_verifier();
-});
-
-// ../api-core/src/utils/lti.util.ts
-function generateUsername(email) {
-  const baseUsername = (email.split("@")[0] || "user").toLowerCase();
-  const cleanUsername = baseUsername.replace(/[^a-z0-9]/g, "");
-  const randomSuffix = Math.random().toString(36).substring(2, 7);
-  return `${cleanUsername}_${randomSuffix}`;
-}
-function extractRedirectPath(targetUri, currentHost) {
-  try {
-    const targetUrl = new URL(targetUri);
-    if (targetUrl.hostname === currentHost) {
-      return targetUrl.pathname + targetUrl.search;
-    }
-  } catch {}
-  return "/";
-}
-function getLtiRoles(claims) {
-  return claims["https://purl.imsglobal.org/spec/lti/claim/roles"] || [];
-}
-function hasLtiRole(claims, role) {
-  return getLtiRoles(claims).some((r) => r.includes(role));
-}
-function validateLtiClaims(claims) {
-  const messageType = claims["https://purl.imsglobal.org/spec/lti/claim/message_type"];
-  const version2 = claims["https://purl.imsglobal.org/spec/lti/claim/version"];
-  if (messageType !== "LtiResourceLinkRequest") {
-    return `Invalid LTI message type: ${messageType}`;
-  }
-  if (version2 !== "1.3.0") {
-    return `Unsupported LTI version: ${version2}`;
+    const isProduction3 = environment === "production";
+    const workerId = getDeploymentId(slug2, isProduction3);
+    const token = await this.ctx.providers.auth.mintLogStreamToken(user.id, workerId);
+    logger16.debug("Generated log stream token", {
+      userId: user.id,
+      slug: slug2,
+      workerId
+    });
+    return { token, workerId };
   }
-  return null;
 }
-var LtiRoleChecks;
-var init_lti_util = __esm(() => {
-  LtiRoleChecks = {
-    isLearner: (claims) => hasLtiRole(claims, "Learner"),
-    isInstructor: (claims) => hasLtiRole(claims, "Instructor"),
-    isAdministrator: (claims) => hasLtiRole(claims, "Administrator"),
-    isContentDeveloper: (claims) => hasLtiRole(claims, "ContentDeveloper"),
-    isMentor: (claims) => hasLtiRole(claims, "Mentor")
-  };
+var logger16;
+var init_logs_service = __esm(() => {
+  init_drizzle_orm();
+  init_tables_index();
+  init_src2();
+  init_errors();
+  init_deployment_util();
+  logger16 = log.scope("LogsService");
 });
 
 // ../api-core/src/services/lti.service.ts
-import * as crypto4 from "node:crypto";
-
 class LtiService {
   ctx;
-  verifier = null;
   constructor(ctx) {
     this.ctx = ctx;
   }
-  getConfig() {
-    if (!this.ctx.config.lti) {
-      logger16.error("LTI configuration not available");
-      throw new ValidationError("LTI is not configured");
-    }
-    return this.ctx.config.lti;
-  }
-  getVerifier() {
-    if (!this.verifier) {
-      const lti = this.getConfig();
-      this.verifier = JwtVerifier.create({
-        issuer: lti.issuer,
-        audience: lti.audience,
-        jwksUri: lti.jwksUrl
-      });
-    }
-    return this.verifier;
-  }
-  async verifyToken(idToken) {
-    if (this.ctx.config.ltiTestMode) {
-      if (!idToken.startsWith("mock:")) {
-        throw new ValidationError("Invalid LTI token");
-      }
-      try {
-        const jsonStr = Buffer.from(idToken.slice(5), "base64").toString();
-        return JSON.parse(jsonStr);
-      } catch {
-        throw new ValidationError("Invalid LTI token format");
-      }
-    }
-    try {
-      const verifier = this.getVerifier();
-      const claims = await verifier.verify(idToken);
-      logger16.info("Verified token", {
-        sub: claims.sub,
-        email: claims.email,
-        roles: claims["https://purl.imsglobal.org/spec/lti/claim/roles"]
-      });
-      return claims;
-    } catch (error) {
-      logger16.error("Token verification failed", {
-        error: error instanceof Error ? error.message : String(error)
-      });
-      throw new ValidationError("Invalid LTI token");
-    }
-  }
-  async processLaunch(idToken, currentHost) {
-    const claims = await this.verifyToken(idToken);
-    const validationError = validateLtiClaims(claims);
-    if (validationError) {
-      logger16.warn("LTI claims validation failed", {
-        error: validationError,
-        sub: claims.sub
-      });
-      throw new ValidationError(validationError);
-    }
-    const user = await this.provisionUser(claims);
-    logger16.info("Processed launch roles", {
-      userId: user.id,
-      isLearner: LtiRoleChecks.isLearner(claims),
-      isInstructor: LtiRoleChecks.isInstructor(claims),
-      isAdministrator: LtiRoleChecks.isAdministrator(claims),
-      allRoles: claims["https://purl.imsglobal.org/spec/lti/claim/roles"]
-    });
-    const sessionToken = await this.createSession(user.id);
-    const targetUri = claims["https://purl.imsglobal.org/spec/lti/claim/target_link_uri"];
-    const redirectPath = extractRedirectPath(targetUri, currentHost);
-    logger16.info("Launch processed", { userId: user.id, redirectPath });
-    const userInfo = {
-      sub: user.id,
-      email: user.email,
-      name: user.name,
-      email_verified: user.emailVerified,
-      timeback_id: user.timebackId ?? undefined
-    };
-    return { user: userInfo, redirectPath, sessionToken };
-  }
   async getStatus(user) {
     const db2 = this.ctx.db;
     const [ltiAccount, oauthAccount, userRecord] = await Promise.all([
@@ -16087,134 +15050,11 @@ class LtiService {
       userId: user.id
     };
   }
-  async createSession(userId) {
-    const db2 = this.ctx.db;
-    const sessionToken = crypto4.randomUUID();
-    const expiresAt = new Date(Date.now() + 30 * 24 * 60 * 60 * 1000);
-    const [session2] = await db2.insert(sessions).values({
-      id: crypto4.randomUUID(),
-      userId,
-      token: sessionToken,
-      expiresAt,
-      createdAt: new Date,
-      updatedAt: new Date
-    }).returning({ id: sessions.id });
-    if (!session2) {
-      logger16.error("Session insert returned no rows", { userId });
-      throw new InternalError("Failed to create session");
-    }
-    logger16.info("Created session", {
-      userId,
-      providerId: AUTH_PROVIDER_IDS.TIMEBACK_LTI
-    });
-    return sessionToken;
-  }
-  async provisionUser(claims) {
-    const db2 = this.ctx.db;
-    const email = claims.email;
-    const ltiTimebackId = claims.sub;
-    const providerId = AUTH_PROVIDER_IDS.TIMEBACK_LTI;
-    if (!email) {
-      throw new ValidationError("Email is required in LTI claims");
-    }
-    const existingAccount = await db2.query.accounts.findFirst({
-      where: and(eq(accounts.accountId, ltiTimebackId), eq(accounts.providerId, providerId))
-    });
-    if (existingAccount) {
-      const user = await db2.query.users.findFirst({
-        where: eq(users.id, existingAccount.userId)
-      });
-      if (user) {
-        logger16.info("Found user by account", {
-          userId: user.id,
-          ltiTimebackId
-        });
-        return user;
-      }
-    }
-    const existingUser = await db2.query.users.findFirst({
-      where: eq(users.email, email)
-    });
-    if (existingUser) {
-      await db2.transaction(async (tx) => {
-        const existingLtiAccount = await tx.query.accounts.findFirst({
-          where: and(eq(accounts.userId, existingUser.id), eq(accounts.providerId, providerId))
-        });
-        if (!existingLtiAccount) {
-          const [account] = await tx.insert(accounts).values({
-            id: crypto4.randomUUID(),
-            userId: existingUser.id,
-            accountId: ltiTimebackId,
-            providerId,
-            accessToken: null,
-            refreshToken: null,
-            accessTokenExpiresAt: null,
-            refreshTokenExpiresAt: null,
-            createdAt: new Date,
-            updatedAt: new Date
-          }).returning({ id: accounts.id });
-          if (!account) {
-            logger16.error("LTI account link insert returned no rows", {
-              userId: existingUser.id,
-              ltiTimebackId
-            });
-            throw new InternalError("Failed to link LTI account");
-          }
-          logger16.info("Linked existing user", {
-            userId: existingUser.id,
-            ltiTimebackId
-          });
-        }
-      });
-      return existingUser;
-    }
-    const newUserId = crypto4.randomUUID();
-    const createdUser = await db2.transaction(async (tx) => {
-      const [insertedUser] = await tx.insert(users).values({
-        id: newUserId,
-        email,
-        emailVerified: true,
-        timebackId: ltiTimebackId,
-        username: generateUsername(email),
-        name: claims.name || claims.given_name || email.split("@")[0] || "Timeback User",
-        createdAt: new Date,
-        updatedAt: new Date
-      }).returning();
-      if (!insertedUser) {
-        logger16.error("LTI user insert returned no rows", { email, ltiTimebackId });
-        throw new InternalError("Failed to create user");
-      }
-      await tx.insert(accounts).values({
-        id: crypto4.randomUUID(),
-        userId: newUserId,
-        accountId: ltiTimebackId,
-        providerId,
-        accessToken: null,
-        refreshToken: null,
-        accessTokenExpiresAt: null,
-        refreshTokenExpiresAt: null,
-        createdAt: new Date,
-        updatedAt: new Date
-      });
-      logger16.info("Provisioned user", {
-        userId: insertedUser.id,
-        ltiTimebackId
-      });
-      return insertedUser;
-    });
-    return createdUser;
-  }
 }
-var logger16;
 var init_lti_service = __esm(() => {
-  init_esm2();
   init_drizzle_orm();
   init_src();
   init_tables_index();
-  init_src2();
-  init_errors();
-  init_lti_util();
-  logger16 = log.scope("LtiService");
 });
 
 // ../api-core/src/services/map.service.ts
@@ -16712,56 +15552,88 @@ class SecretsService {
   constructor(ctx) {
     this.ctx = ctx;
   }
-  async listKeys(slug2, user) {
-    const game = await this.ctx.services.game.validateDeveloperAccessBySlug(user, slug2);
-    const secrets = await this.ctx.providers.secrets.readSecrets(game.id);
-    const keys = secrets ? Object.keys(secrets).filter((k) => !INTERNAL_SECRET_KEYS.includes(k)) : [];
-    logger20.debug("Listed secret keys", { gameId: game.id, slug: slug2, keyCount: keys.length });
-    return keys;
+  getCloudflare() {
+    if (!this.ctx.cloudflare) {
+      throw new ValidationError("Secrets management requires Cloudflare provider");
+    }
+    return this.ctx.cloudflare;
+  }
+  getDeploymentId(slug2) {
+    const isProd = isProduction2(this.ctx.config);
+    return getDeploymentId(slug2, isProd);
   }
-  async getValues(slug2, user) {
+  async listKeys(slug2, user) {
     const game = await this.ctx.services.game.validateDeveloperAccessBySlug(user, slug2);
-    const secrets = await this.ctx.providers.secrets.readSecrets(game.id);
-    if (!secrets) {
-      return {};
-    }
-    const filtered = {};
-    for (const [key, value] of Object.entries(secrets)) {
-      if (!INTERNAL_SECRET_KEYS.includes(key)) {
-        filtered[key] = value;
+    const cf = this.getCloudflare();
+    const deploymentId = this.getDeploymentId(slug2);
+    try {
+      const allKeys = await cf.listSecrets(deploymentId);
+      const keys = allKeys.filter((k) => k.startsWith(SECRETS_PREFIX)).map((k) => k.slice(SECRETS_PREFIX.length));
+      logger20.debug("Listed secret keys", { gameId: game.id, slug: slug2, keyCount: keys.length });
+      return keys;
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      if (message.includes("not found") || message.includes("10007")) {
+        logger20.debug("Worker not found, returning empty secrets list", {
+          gameId: game.id,
+          slug: slug2
+        });
+        return [];
       }
+      throw error;
     }
-    logger20.debug("Retrieved secret values", { gameId: game.id, slug: slug2 });
-    return filtered;
   }
   async setSecrets(slug2, newSecrets, user) {
     const game = await this.ctx.services.game.validateDeveloperAccessBySlug(user, slug2);
+    const cf = this.getCloudflare();
+    const deploymentId = this.getDeploymentId(slug2);
     const secretKeys = Object.keys(newSecrets);
     if (secretKeys.length === 0) {
+      logger20.warn("No secrets provided", { userId: user.id, slug: slug2 });
       throw new ValidationError("At least one secret must be provided");
     }
     for (const [key, value] of Object.entries(newSecrets)) {
       if (typeof value !== "string") {
+        logger20.warn("Secret value must be a string", { userId: user.id, slug: slug2, key });
         throw new ValidationError(`Secret value for "${key}" must be a string`);
       }
       if (INTERNAL_SECRET_KEYS.includes(key)) {
-        logger20.warn("Attempted to set reserved secret", {
-          userId: user.id,
+        logger20.warn("Attempted to set reserved secret", { userId: user.id, slug: slug2, key });
+        throw new ValidationError(`Cannot set reserved secret "${key}"`);
+      }
+    }
+    try {
+      const prefixedSecrets = {};
+      for (const [key, value] of Object.entries(newSecrets)) {
+        prefixedSecrets[`${SECRETS_PREFIX}${key}`] = value;
+      }
+      await cf.setSecrets(deploymentId, prefixedSecrets);
+      logger20.info("Set secrets", {
+        gameId: game.id,
+        slug: slug2,
+        deploymentId,
+        keys: secretKeys
+      });
+      const allKeys = await cf.listSecrets(deploymentId);
+      return allKeys.filter((k) => k.startsWith(SECRETS_PREFIX)).map((k) => k.slice(SECRETS_PREFIX.length));
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      if (message.includes("not found") || message.includes("10007")) {
+        logger20.warn("Cannot set secrets - game not deployed", {
           gameId: game.id,
-          key
+          slug: slug2,
+          deploymentId
         });
-        throw new ValidationError(`Cannot set reserved secret "${key}"`);
+        throw new ValidationError("Game must be deployed before setting secrets. Run `playcademy deploy` first.");
       }
+      logger20.error("Failed to set secrets", {
+        gameId: game.id,
+        slug: slug2,
+        deploymentId,
+        error: message
+      });
+      throw error;
     }
-    const existingSecrets = await this.ctx.providers.secrets.readSecrets(game.id) || {};
-    const updatedSecrets = { ...existingSecrets, ...newSecrets };
-    await this.ctx.providers.secrets.writeSecrets(game.id, updatedSecrets);
-    logger20.info("Set secrets", {
-      gameId: game.id,
-      slug: slug2,
-      addedKeys: secretKeys
-    });
-    return Object.keys(updatedSecrets).filter((k) => !INTERNAL_SECRET_KEYS.includes(k));
   }
   async deleteSecret(slug2, key, user) {
     if (INTERNAL_SECRET_KEYS.includes(key)) {
@@ -16773,25 +15645,53 @@ class SecretsService {
       throw new ValidationError(`Cannot delete reserved secret "${key}"`);
     }
     const game = await this.ctx.services.game.validateDeveloperAccessBySlug(user, slug2);
-    const secrets = await this.ctx.providers.secrets.readSecrets(game.id);
-    if (!secrets || !(key in secrets)) {
-      throw new NotFoundError("Secret", key);
-    }
-    delete secrets[key];
-    if (Object.keys(secrets).length > 0) {
-      await this.ctx.providers.secrets.writeSecrets(game.id, secrets);
-    } else {
-      await this.ctx.providers.secrets.deleteSecrets(game.id);
+    const cf = this.getCloudflare();
+    const deploymentId = this.getDeploymentId(slug2);
+    try {
+      const prefixedKey = `${SECRETS_PREFIX}${key}`;
+      const existingKeys = await cf.listSecrets(deploymentId);
+      if (!existingKeys.includes(prefixedKey)) {
+        throw new NotFoundError("Secret", key);
+      }
+      await cf.deleteSecret(deploymentId, prefixedKey);
+      logger20.info("Deleted secret", {
+        gameId: game.id,
+        slug: slug2,
+        deploymentId,
+        key
+      });
+    } catch (error) {
+      if (error instanceof NotFoundError) {
+        throw error;
+      }
+      const message = error instanceof Error ? error.message : String(error);
+      if (message.includes("not found") || message.includes("10007")) {
+        logger20.warn("Cannot delete secret - game not deployed", {
+          gameId: game.id,
+          slug: slug2,
+          deploymentId
+        });
+        throw new ValidationError("Game must be deployed before managing secrets. Run `playcademy deploy` first.");
+      }
+      logger20.error("Failed to delete secret", {
+        gameId: game.id,
+        slug: slug2,
+        deploymentId,
+        key,
+        error: message
+      });
+      throw error;
     }
-    logger20.info("Deleted secret", { gameId: game.id, slug: slug2, key });
   }
 }
-var logger20, INTERNAL_SECRET_KEYS;
+var logger20, SECRETS_PREFIX = "secrets_", INTERNAL_SECRET_KEYS;
 var init_secrets_service = __esm(() => {
   init_src2();
+  init_config2();
   init_errors();
+  init_deployment_util();
   logger20 = log.scope("SecretsService");
-  INTERNAL_SECRET_KEYS = ["PLAYCADEMY_API_KEY"];
+  INTERNAL_SECRET_KEYS = ["PLAYCADEMY_API_KEY", "GAME_ID", "PLAYCADEMY_BASE_URL"];
 });
 
 // ../api-core/src/services/seed.service.ts
@@ -18175,11 +17075,11 @@ class TimebackService {
       return [];
     }
   }
-  async setupIntegration(gameId, request2, user) {
+  async setupIntegration(gameId, request, user) {
     const client = this.requireClient();
     const db2 = this.ctx.db;
     await this.ctx.services.game.validateDeveloperAccess(user, gameId);
-    const { courses, baseConfig, verbose } = request2;
+    const { courses, baseConfig, verbose } = request;
     const existing = await db2.query.gameTimebackIntegrations.findMany({
       where: eq(gameTimebackIntegrations.gameId, gameId)
     });
@@ -18424,8 +17324,8 @@ class UploadService {
   constructor(ctx) {
     this.ctx = ctx;
   }
-  async initiate(request2, user) {
-    const { fileName, gameId } = request2;
+  async initiate(request, user) {
+    const { fileName, gameId } = request;
     const bucketName = this.ctx.config.uploadBucket;
     if (!bucketName) {
       logger27.error("Upload bucket not configured in environment");
@@ -18675,6 +17575,7 @@ function createServices(ctx) {
     item: new ItemService(ctx),
     leaderboard: new LeaderboardService(ctx),
     level: new LevelService(ctx),
+    logs: new LogsService(ctx),
     lti: new LtiService(ctx),
     map: new MapService(ctx),
     notification: new NotificationService(ctx),
@@ -18706,6 +17607,7 @@ var init_services = __esm(() => {
   init_item_service();
   init_leaderboard_service();
   init_level_service();
+  init_logs_service();
   init_lti_service();
   init_map_service();
   init_notification_service();
@@ -18802,6 +17704,38 @@ function createSandboxAuthProvider() {
       const header = btoa(JSON.stringify({ alg: "none", typ: "sandbox" }));
       const payloadStr = btoa(JSON.stringify(payload));
       return `${header}.${payloadStr}.sandbox`;
+    },
+    async mintLogStreamToken(userId, workerId) {
+      const jti = crypto.randomUUID();
+      const payload = {
+        sub: userId,
+        game: workerId,
+        jti,
+        exp: Date.now() + 60 * 1000
+      };
+      const header = btoa(JSON.stringify({ alg: "none", typ: "sandbox" }));
+      const payloadStr = btoa(JSON.stringify(payload));
+      return `${header}.${payloadStr}.sandbox`;
+    },
+    async validateLogStreamToken(token) {
+      try {
+        const parts2 = token.split(".");
+        if (parts2.length !== 3)
+          return null;
+        if (parts2[2] === "sandbox") {
+          const payload = JSON.parse(atob(parts2[1]));
+          if (payload.jti && payload.sub && payload.game) {
+            if (payload.exp && payload.exp < Date.now()) {
+              log.debug("[SandboxAuthProvider] Log stream token expired");
+              return null;
+            }
+            return { jti: payload.jti, sub: payload.sub, game: payload.game };
+          }
+        }
+        return null;
+      } catch {
+        return null;
+      }
     }
   };
 }
@@ -18857,35 +17791,6 @@ var init_cache_provider = __esm(() => {
   gameOrigins = [];
 });
 
-// src/infrastructure/api/providers/secrets.provider.ts
-function createSandboxSecretsProvider() {
-  return {
-    async readSecrets(gameId) {
-      const secrets = secretsStorage.get(gameId);
-      return secrets ?? null;
-    },
-    async writeSecrets(gameId, secrets) {
-      secretsStorage.set(gameId, { ...secrets });
-      log.debug("[SandboxSecretsProvider] Stored secrets", {
-        gameId,
-        keyCount: Object.keys(secrets).length
-      });
-    },
-    async deleteSecrets(gameId) {
-      secretsStorage.delete(gameId);
-      log.debug("[SandboxSecretsProvider] Deleted secrets", { gameId });
-    }
-  };
-}
-function clearSandboxSecrets() {
-  secretsStorage.clear();
-}
-var secretsStorage;
-var init_secrets_provider = __esm(() => {
-  init_src2();
-  secretsStorage = new Map;
-});
-
 // src/infrastructure/api/providers/storage.provider.ts
 function getBucket(bucketName) {
   let bucket = storage.get(bucketName);
@@ -18960,7 +17865,6 @@ var init_storage_provider = __esm(() => {
 var init_providers = __esm(() => {
   init_auth_provider();
   init_cache_provider();
-  init_secrets_provider();
   init_storage_provider();
 });
 
@@ -18979,7 +17883,6 @@ function buildProviders() {
   return {
     auth: createSandboxAuthProvider(),
     storage: createSandboxStorageProvider(),
-    secrets: createSandboxSecretsProvider(),
     cache: createSandboxCacheProvider()
   };
 }
@@ -19120,8 +18023,8 @@ var init_constants3 = __esm(() => {
 });
 
 // ../../node_modules/hono/dist/utils/body.js
-async function parseFormData(request2, options) {
-  const formData = await request2.formData();
+async function parseFormData(request, options) {
+  const formData = await request.formData();
   if (formData) {
     return convertFormDataToBodyData(formData, options);
   }
@@ -19148,12 +18051,12 @@ function convertFormDataToBodyData(formData, options) {
   }
   return form;
 }
-var parseBody = async (request2, options = /* @__PURE__ */ Object.create(null)) => {
+var parseBody = async (request, options = /* @__PURE__ */ Object.create(null)) => {
   const { all = false, dot = false } = options;
-  const headers = request2 instanceof HonoRequest ? request2.raw.headers : request2.headers;
+  const headers = request instanceof HonoRequest ? request.raw.headers : request.headers;
   const contentType = headers.get("Content-Type");
   if (contentType?.startsWith("multipart/form-data") || contentType?.startsWith("application/x-www-form-urlencoded")) {
-    return parseFormData(request2, { all, dot });
+    return parseFormData(request, { all, dot });
   }
   return {};
 }, handleParsingAllValues = (form, key, value) => {
@@ -19247,8 +18150,8 @@ var splitPath = (path) => {
       }
     });
   }
-}, tryDecodeURI = (str) => tryDecode(str, decodeURI), getPath = (request2) => {
-  const url = request2.url;
+}, tryDecodeURI = (str) => tryDecode(str, decodeURI), getPath = (request) => {
+  const url = request.url;
   const start2 = url.indexOf("/", url.indexOf(":") + 4);
   let i2 = start2;
   for (;i2 < url.length; i2++) {
@@ -19262,8 +18165,8 @@ var splitPath = (path) => {
     }
   }
   return url.slice(start2, i2);
-}, getPathNoStrict = (request2) => {
-  const result = getPath(request2);
+}, getPathNoStrict = (request) => {
+  const result = getPath(request);
   return result.length > 1 && result.at(-1) === "/" ? result.slice(0, -1) : result;
 }, mergePath = (base, sub, ...rest) => {
   if (rest.length) {
@@ -19389,8 +18292,8 @@ var init_request = __esm(() => {
     routeIndex = 0;
     path;
     bodyCache = {};
-    constructor(request2, path = "/", matchResult = [[]]) {
-      this.raw = request2;
+    constructor(request, path = "/", matchResult = [[]]) {
+      this.raw = request;
       this.path = path;
       this.#matchResult = matchResult;
       this.#validatedData = {};
@@ -19826,7 +18729,7 @@ var notFoundHandler = (c) => {
       } else {
         optionHandler = options.optionHandler;
         if (options.replaceRequest === false) {
-          replaceRequest = (request2) => request2;
+          replaceRequest = (request) => request;
         } else {
           replaceRequest = options.replaceRequest;
         }
@@ -19845,10 +18748,10 @@ var notFoundHandler = (c) => {
     replaceRequest ||= (() => {
       const mergedPath = mergePath(this._basePath, path);
       const pathPrefixLength = mergedPath === "/" ? 0 : mergedPath.length;
-      return (request2) => {
-        const url = new URL(request2.url);
+      return (request) => {
+        const url = new URL(request.url);
         url.pathname = url.pathname.slice(pathPrefixLength) || "/";
-        return new Request(url, request2);
+        return new Request(url, request);
       };
     })();
     const handler = async (c, next) => {
@@ -19874,13 +18777,13 @@ var notFoundHandler = (c) => {
     }
     throw err2;
   }
-  #dispatch(request2, executionCtx, env, method) {
+  #dispatch(request, executionCtx, env, method) {
     if (method === "HEAD") {
-      return (async () => new Response(null, await this.#dispatch(request2, executionCtx, env, "GET")))();
+      return (async () => new Response(null, await this.#dispatch(request, executionCtx, env, "GET")))();
     }
-    const path = this.getPath(request2, { env });
+    const path = this.getPath(request, { env });
     const matchResult = this.router.match(method, path);
-    const c = new Context(request2, {
+    const c = new Context(request, {
       path,
       matchResult,
       env,
@@ -19911,8 +18814,8 @@ var notFoundHandler = (c) => {
       }
     })();
   }
-  fetch = (request2, ...rest) => {
-    return this.#dispatch(request2, rest[1], rest[0], request2.method);
+  fetch = (request, ...rest) => {
+    return this.#dispatch(request, rest[1], rest[0], request.method);
   };
   request = (input, requestInit, Env, executionCtx) => {
     if (input instanceof Request) {
@@ -28355,24 +27258,24 @@ is not a problem with esbuild. You need to fix your environment instead.
         throw new Error("The service is no longer running" + closeData.reason);
       streamIn.writeToStdin(encodePacket({ id, isRequest: false, value }));
     };
-    let handleRequest = async (id, request2) => {
+    let handleRequest = async (id, request) => {
       try {
-        if (request2.command === "ping") {
+        if (request.command === "ping") {
           sendResponse(id, {});
           return;
         }
-        if (typeof request2.key === "number") {
-          const requestCallbacks = requestCallbacksByKey[request2.key];
+        if (typeof request.key === "number") {
+          const requestCallbacks = requestCallbacksByKey[request.key];
           if (!requestCallbacks) {
             return;
           }
-          const callback = requestCallbacks[request2.command];
+          const callback = requestCallbacks[request.command];
           if (callback) {
-            await callback(id, request2);
+            await callback(id, request);
             return;
           }
         }
-        throw new Error(`Invalid command: ` + request2.command);
+        throw new Error(`Invalid command: ` + request.command);
       } catch (e) {
         const errors3 = [extractErrorMessageV8(e, streamIn, null, undefined, "")];
         try {
@@ -28441,15 +27344,15 @@ is not a problem with esbuild. You need to fix your environment instead.
             flags: flags2,
             mangleCache
           } = flagsForTransformOptions(callName, options, isTTY2, transformLogLevelDefault);
-          let request2 = {
+          let request = {
             command: "transform",
             flags: flags2,
             inputFS: inputPath !== null,
             input: inputPath !== null ? encodeUTF8(inputPath) : typeof input === "string" ? encodeUTF8(input) : input
           };
           if (mangleCache)
-            request2.mangleCache = mangleCache;
-          sendRequest(refs, request2, (error, response) => {
+            request.mangleCache = mangleCache;
+          sendRequest(refs, request, (error, response) => {
             if (error)
               return callback(new Error(error), null);
             let errors3 = replaceDetailsInMessages(response.errors, details);
@@ -28527,16 +27430,16 @@ is not a problem with esbuild. You need to fix your environment instead.
         throw new Error(`Missing "kind" in ${callName}() call`);
       if (kind !== "error" && kind !== "warning")
         throw new Error(`Expected "kind" to be "error" or "warning" in ${callName}() call`);
-      let request2 = {
+      let request = {
         command: "format-msgs",
         messages: sanitizeMessages(messages, "messages", null, "", terminalWidth),
         isWarning: kind === "warning"
       };
       if (color !== undefined)
-        request2.color = color;
+        request.color = color;
       if (terminalWidth !== undefined)
-        request2.terminalWidth = terminalWidth;
-      sendRequest(refs, request2, (error, response) => {
+        request.terminalWidth = terminalWidth;
+      sendRequest(refs, request, (error, response) => {
         if (error)
           return callback(new Error(error), null);
         callback(null, response.messages);
@@ -28549,15 +27452,15 @@ is not a problem with esbuild. You need to fix your environment instead.
       let color = getFlag(options, keys, "color", mustBeBoolean);
       let verbose = getFlag(options, keys, "verbose", mustBeBoolean);
       checkForInvalidFlags(options, keys, `in ${callName}() call`);
-      let request2 = {
+      let request = {
         command: "analyze-metafile",
         metafile
       };
       if (color !== undefined)
-        request2.color = color;
+        request.color = color;
       if (verbose !== undefined)
-        request2.verbose = verbose;
-      sendRequest(refs, request2, (error, response) => {
+        request.verbose = verbose;
+      sendRequest(refs, request, (error, response) => {
         if (error)
           return callback(new Error(error), null);
         callback(null, response.result);
@@ -28630,7 +27533,7 @@ is not a problem with esbuild. You need to fix your environment instead.
       } = flagsForBuildOptions(callName, options, isTTY2, buildLogLevelDefault, writeDefault);
       if (write && !streamIn.hasFS)
         throw new Error(`The "write" option is unavailable in this environment`);
-      const request2 = {
+      const request = {
         command: "build",
         key: buildKey,
         entries,
@@ -28643,9 +27546,9 @@ is not a problem with esbuild. You need to fix your environment instead.
         context: isContext
       };
       if (requestPlugins)
-        request2.plugins = requestPlugins;
+        request.plugins = requestPlugins;
       if (mangleCache)
-        request2.mangleCache = mangleCache;
+        request.mangleCache = mangleCache;
       const buildResponseToResult = (response, callback2) => {
         const result = {
           errors: replaceDetailsInMessages(response.errors, details),
@@ -28675,8 +27578,8 @@ is not a problem with esbuild. You need to fix your environment instead.
       let latestResultPromise;
       let provideLatestResult;
       if (isContext)
-        requestCallbacks["on-end"] = (id, request22) => new Promise((resolve2) => {
-          buildResponseToResult(request22, (err2, result, onEndErrors, onEndWarnings) => {
+        requestCallbacks["on-end"] = (id, request2) => new Promise((resolve2) => {
+          buildResponseToResult(request2, (err2, result, onEndErrors, onEndWarnings) => {
             const response = {
               errors: onEndErrors,
               warnings: onEndWarnings
@@ -28689,7 +27592,7 @@ is not a problem with esbuild. You need to fix your environment instead.
             resolve2();
           });
         });
-      sendRequest(refs, request2, (error, response) => {
+      sendRequest(refs, request, (error, response) => {
         if (error)
           return callback(new Error(error), null);
         if (!isContext) {
@@ -28712,11 +27615,11 @@ is not a problem with esbuild. You need to fix your environment instead.
                     settlePromise = () => err2 ? reject(err2) : resolve2(result2);
                 };
                 const triggerAnotherBuild = () => {
-                  const request22 = {
+                  const request2 = {
                     command: "rebuild",
                     key: buildKey
                   };
-                  sendRequest(refs, request22, (error2, response2) => {
+                  sendRequest(refs, request2, (error2, response2) => {
                     if (error2) {
                       reject(new Error(error2));
                     } else if (settlePromise) {
@@ -28736,13 +27639,13 @@ is not a problem with esbuild. You need to fix your environment instead.
             const keys = {};
             const delay = getFlag(options2, keys, "delay", mustBeInteger);
             checkForInvalidFlags(options2, keys, `in watch() call`);
-            const request22 = {
+            const request2 = {
               command: "watch",
               key: buildKey
             };
             if (delay)
-              request22.delay = delay;
-            sendRequest(refs, request22, (error2) => {
+              request2.delay = delay;
+            sendRequest(refs, request2, (error2) => {
               if (error2)
                 reject(new Error(error2));
               else
@@ -28762,33 +27665,33 @@ is not a problem with esbuild. You need to fix your environment instead.
             const cors2 = getFlag(options2, keys, "cors", mustBeObject);
             const onRequest = getFlag(options2, keys, "onRequest", mustBeFunction);
             checkForInvalidFlags(options2, keys, `in serve() call`);
-            const request22 = {
+            const request2 = {
               command: "serve",
               key: buildKey,
               onRequest: !!onRequest
             };
             if (port !== undefined)
-              request22.port = port;
+              request2.port = port;
             if (host !== undefined)
-              request22.host = host;
+              request2.host = host;
             if (servedir !== undefined)
-              request22.servedir = servedir;
+              request2.servedir = servedir;
             if (keyfile !== undefined)
-              request22.keyfile = keyfile;
+              request2.keyfile = keyfile;
             if (certfile !== undefined)
-              request22.certfile = certfile;
+              request2.certfile = certfile;
             if (fallback !== undefined)
-              request22.fallback = fallback;
+              request2.fallback = fallback;
             if (cors2) {
               const corsKeys = {};
               const origin = getFlag(cors2, corsKeys, "origin", mustBeStringOrArrayOfStrings);
               checkForInvalidFlags(cors2, corsKeys, `on "cors" object`);
               if (Array.isArray(origin))
-                request22.corsOrigin = origin;
+                request2.corsOrigin = origin;
               else if (origin !== undefined)
-                request22.corsOrigin = [origin];
+                request2.corsOrigin = [origin];
             }
-            sendRequest(refs, request22, (error2, response2) => {
+            sendRequest(refs, request2, (error2, response2) => {
               if (error2)
                 return reject(new Error(error2));
               if (onRequest) {
@@ -28803,11 +27706,11 @@ is not a problem with esbuild. You need to fix your environment instead.
           cancel: () => new Promise((resolve2) => {
             if (didDispose)
               return resolve2();
-            const request22 = {
+            const request2 = {
               command: "cancel",
               key: buildKey
             };
-            sendRequest(refs, request22, () => {
+            sendRequest(refs, request2, () => {
               resolve2();
             });
           }),
@@ -28815,11 +27718,11 @@ is not a problem with esbuild. You need to fix your environment instead.
             if (didDispose)
               return resolve2();
             didDispose = true;
-            const request22 = {
+            const request2 = {
               command: "dispose",
               key: buildKey
             };
-            sendRequest(refs, request22, () => {
+            sendRequest(refs, request2, () => {
               resolve2();
               scheduleOnDisposeCallbacks();
               refs.unref();
@@ -28877,29 +27780,29 @@ is not a problem with esbuild. You need to fix your environment instead.
           let importAttributes = getFlag(options, keys2, "with", mustBeObject);
           checkForInvalidFlags(options, keys2, "in resolve() call");
           return new Promise((resolve22, reject) => {
-            const request2 = {
+            const request = {
               command: "resolve",
               path: path3,
               key: buildKey,
               pluginName: name3
             };
             if (pluginName != null)
-              request2.pluginName = pluginName;
+              request.pluginName = pluginName;
             if (importer != null)
-              request2.importer = importer;
+              request.importer = importer;
             if (namespace != null)
-              request2.namespace = namespace;
+              request.namespace = namespace;
             if (resolveDir != null)
-              request2.resolveDir = resolveDir;
+              request.resolveDir = resolveDir;
             if (kind != null)
-              request2.kind = kind;
+              request.kind = kind;
             else
               throw new Error(`Must specify "kind" when calling "resolve"`);
             if (pluginData != null)
-              request2.pluginData = details.store(pluginData);
+              request.pluginData = details.store(pluginData);
             if (importAttributes != null)
-              request2.with = sanitizeStringMap(importAttributes, "with");
-            sendRequest(refs, request2, (error, response) => {
+              request.with = sanitizeStringMap(importAttributes, "with");
+            sendRequest(refs, request, (error, response) => {
               if (error !== null)
                 reject(new Error(error));
               else
@@ -28969,7 +27872,7 @@ is not a problem with esbuild. You need to fix your environment instead.
         return { ok: false, error: e, pluginName: name3 };
       }
     }
-    requestCallbacks["on-start"] = async (id, request2) => {
+    requestCallbacks["on-start"] = async (id, request) => {
       details.clear();
       let response = { errors: [], warnings: [] };
       await Promise.all(onStartCallbacks.map(async ({ name: name3, callback, note }) => {
@@ -28993,19 +27896,19 @@ is not a problem with esbuild. You need to fix your environment instead.
       }));
       sendResponse(id, response);
     };
-    requestCallbacks["on-resolve"] = async (id, request2) => {
+    requestCallbacks["on-resolve"] = async (id, request) => {
       let response = {}, name3 = "", callback, note;
-      for (let id2 of request2.ids) {
+      for (let id2 of request.ids) {
         try {
           ({ name: name3, callback, note } = onResolveCallbacks[id2]);
           let result = await callback({
-            path: request2.path,
-            importer: request2.importer,
-            namespace: request2.namespace,
-            resolveDir: request2.resolveDir,
-            kind: request2.kind,
-            pluginData: details.load(request2.pluginData),
-            with: request2.with
+            path: request.path,
+            importer: request.importer,
+            namespace: request.namespace,
+            resolveDir: request.resolveDir,
+            kind: request.kind,
+            pluginData: details.load(request.pluginData),
+            with: request.with
           });
           if (result != null) {
             if (typeof result !== "object")
@@ -29055,17 +27958,17 @@ is not a problem with esbuild. You need to fix your environment instead.
       }
       sendResponse(id, response);
     };
-    requestCallbacks["on-load"] = async (id, request2) => {
+    requestCallbacks["on-load"] = async (id, request) => {
       let response = {}, name3 = "", callback, note;
-      for (let id2 of request2.ids) {
+      for (let id2 of request.ids) {
         try {
           ({ name: name3, callback, note } = onLoadCallbacks[id2]);
           let result = await callback({
-            path: request2.path,
-            namespace: request2.namespace,
-            suffix: request2.suffix,
-            pluginData: details.load(request2.pluginData),
-            with: request2.with
+            path: request.path,
+            namespace: request.namespace,
+            suffix: request.suffix,
+            pluginData: details.load(request.pluginData),
+            with: request.with
           });
           if (result != null) {
             if (typeof result !== "object")
@@ -29590,7 +28493,7 @@ for your current platform.`);
     return { binPath, isWASM };
   }
   var child_process = __require("child_process");
-  var crypto5 = __require("crypto");
+  var crypto4 = __require("crypto");
   var path2 = __require("path");
   var fs22 = __require("fs");
   var os2 = __require("os");
@@ -29904,7 +28807,7 @@ More information: The file containing the code for esbuild's JavaScript API (${_
     afterClose(null);
   };
   var randomFileName = () => {
-    return path2.join(os2.tmpdir(), `esbuild-${crypto5.randomBytes(32).toString("hex")}`);
+    return path2.join(os2.tmpdir(), `esbuild-${crypto4.randomBytes(32).toString("hex")}`);
   };
   var workerThreadService = null;
   var startWorkerThreadService = (worker_threads2) => {
@@ -32507,8 +31410,8 @@ var require_node2 = __commonJS((exports) => {
       }
     } catch (err2) {}
     var bufferFrom = require_buffer_from();
-    function dynamicRequire(mod, request2) {
-      return mod.require(request2);
+    function dynamicRequire(mod, request) {
+      return mod.require(request);
     }
     var errorFormatterInstalled = false;
     var uncaughtShimInstalled = false;
@@ -35312,10 +34215,10 @@ If you have no idea what this means or what Pirates is, let me explain: Pirates
       var Module2 = __require("module");
       var originalResolveFilename = Module2._resolveFilename;
       var coreModules = getCoreModules(Module2.builtinModules);
-      Module2._resolveFilename = function(request2, _parent) {
-        var isCoreModule = coreModules.hasOwnProperty(request2);
+      Module2._resolveFilename = function(request, _parent) {
+        var isCoreModule = coreModules.hasOwnProperty(request);
         if (!isCoreModule) {
-          var found = matchPath(request2);
+          var found = matchPath(request);
           if (found) {
             var modifiedArguments = __spreadArray([found], [].slice.call(arguments, 1), true);
             return originalResolveFilename.apply(this, modifiedArguments);
@@ -35482,10 +34385,10 @@ If you have no idea what this means or what Pirates is, let me explain: Pirates
     const matchPath = (0, import_tsconfig_paths.createMatchPath)(configLoaderResult.absoluteBaseUrl, configLoaderResult.paths, configLoaderResult.mainFields, configLoaderResult.addMatchAll);
     const Module2 = __require("module");
     const originalResolveFilename = Module2._resolveFilename;
-    Module2._resolveFilename = function(request2, _parent) {
-      const isCoreModule = _module2.builtinModules.includes(request2);
+    Module2._resolveFilename = function(request, _parent) {
+      const isCoreModule = _module2.builtinModules.includes(request);
       if (!isCoreModule) {
-        const found = matchPath(request2);
+        const found = matchPath(request);
         if (found) {
           const modifiedArguments = [found, ...[].slice.call(arguments, 1)];
           return originalResolveFilename.apply(this, modifiedArguments);
@@ -35633,7 +34536,7 @@ __export(exports_api, {
 import process2 from "process";
 import os from "os";
 import tty from "tty";
-import { randomUUID as randomUUID2 } from "crypto";
+import { randomUUID } from "crypto";
 function assembleStyles() {
   const codes = /* @__PURE__ */ new Map;
   for (const [groupName, group] of Object.entries(styles2)) {
@@ -38308,7 +37211,7 @@ var __create2, __defProp2, __getOwnPropDesc, __getOwnPropNames2, __getProtoOf2,
         __defProp2(to, key, { get: () => from[key], enumerable: !(desc2 = __getOwnPropDesc(from, key)) || desc2.enumerable });
   }
   return to;
-}, __toESM2 = (mod, isNodeMode, target) => (target = mod != null ? __create2(__getProtoOf2(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp2(target, "default", { value: mod, enumerable: true }) : target, mod)), __publicField = (obj, key, value) => __defNormalProp(obj, typeof key !== "symbol" ? key + "" : key, value), ANSI_BACKGROUND_OFFSET, wrapAnsi16, wrapAnsi256, wrapAnsi16m, styles2, modifierNames, foregroundColorNames, backgroundColorNames, colorNames, ansiStyles, ansi_styles_default, init_ansi_styles, env, flagForceColor, supportsColor, supports_color_default, init_supports_color, init_utilities, stdoutColor, stderrColor, GENERATOR, STYLER, IS_EMPTY, levelMapping, styles22, applyOptions, chalkFactory, getModelAnsi, usedModels, proto, createStyler, createBuilder, applyStyle, chalk, chalkStderr, source_default, init_source, require_old, require_fs, require_path, require_balanced_match, require_brace_expansion, require_minimatch, require_inherits_browser, require_inherits, require_common2, require_sync, require_wrappy, require_once, require_inflight, require_glob, require_readline, require_src2, require_utils, require_lodash, require_hanji, originUUID, snapshotVersion, mapValues, mapKeys, mapEntries, customMapEntries, init_global2, util3, objectUtil2, ZodParsedType2, getParsedType2, init_util2, ZodIssueCode2, ZodError3, init_ZodError2, errorMap2, en_default2, init_en2, overrideErrorMap2, init_errors4, makeIssue2, ParseStatus2, INVALID2, DIRTY2, OK2, isAborted2, isDirty2, isValid2, isAsync2, init_parseUtil2, init_typeAliases2, errorUtil2, init_errorUtil2, ParseInputLazyPath2, handleResult2, ZodType2, cuidRegex2, cuid2Regex2, ulidRegex2, uuidRegex2, nanoidRegex2, jwtRegex2, durationRegex2, emailRegex2, _emojiRegex2, emojiRegex2, ipv4Regex2, ipv4CidrRegex2, ipv6Regex2, ipv6CidrRegex2, base64Regex2, base64urlRegex2, dateRegexSource2, dateRegex2, ZodString2, ZodNumber2, ZodBigInt2, ZodBoolean2, ZodDate2, ZodSymbol2, ZodUndefined2, ZodNull2, ZodAny2, ZodUnknown2, ZodNever2, ZodVoid2, ZodArray2, ZodObject2, ZodUnion2, getDiscriminator2, ZodDiscriminatedUnion2, ZodIntersection2, ZodTuple2, ZodRecord2, ZodMap2, ZodSet2, ZodFunction2, ZodLazy2, ZodLiteral2, ZodEnum2, ZodNativeEnum2, ZodPromise2, ZodEffects2, ZodOptional2, ZodNullable2, ZodDefault2, ZodCatch2, ZodNaN2, BRAND2, ZodBranded2, ZodPipeline2, ZodReadonly2, late2, ZodFirstPartyTypeKind2, stringType2, numberType2, nanType2, bigIntType2, booleanType2, dateType2, symbolType2, undefinedType2, nullType2, anyType2, unknownType2, neverType2, voidType2, arrayType2, objectType2, strictObjectType2, unionType2, discriminatedUnionType2, intersectionType2, tupleType2, recordType2, mapType2, setType2, functionType2, lazyType2, literalType2, enumType2, nativeEnumType2, promiseType2, effectsType2, optionalType2, nullableType2, preprocessType2, pipelineType2, coerce2, init_types8, init_external2, init_v32, init_esm3, enumSchema, enumSchemaV1, indexColumn, index2, fk, sequenceSchema, roleSchema, sequenceSquashed, column2, checkConstraint, columnSquashed, compositePK, uniqueConstraint, policy, policySquashed, viewWithOption, matViewWithOption, mergedViewWithOption, view2, table15, schemaHash, kitInternals, gelSchemaExternal, gelSchemaInternal, tableSquashed, gelSchemaSquashed, gelSchema, dryGel, init_gelSchema, index22, fk2, column22, tableV3, compositePK2, uniqueConstraint2, checkConstraint2, tableV4, table22, viewMeta, view22, kitInternals2, dialect2, schemaHash2, schemaInternalV3, schemaInternalV4, schemaInternalV5, schemaInternal, schemaV3, schemaV4, schemaV5, schema2, tableSquashedV4, tableSquashed2, viewSquashed, schemaSquashed, schemaSquashedV4, MySqlSquasher, squashMysqlScheme, mysqlSchema, mysqlSchemaV5, mysqlSchemaSquashed, backwardCompatibleMysqlSchema, dryMySql, init_mysqlSchema, indexV2, columnV2, tableV2, enumSchemaV12, enumSchema2, pgSchemaV2, references, columnV1, tableV1, pgSchemaV1, indexColumn2, index3, indexV4, indexV5, indexV6, fk3, sequenceSchema2, roleSchema2, sequenceSquashed2, columnV7, column3, checkConstraint3, columnSquashed2, tableV32, compositePK3, uniqueConstraint3, policy2, policySquashed2, viewWithOption2, matViewWithOption2, mergedViewWithOption2, view3, tableV42, tableV5, tableV6, tableV7, table32, schemaHash3, kitInternals3, pgSchemaInternalV3, pgSchemaInternalV4, pgSchemaInternalV5, pgSchemaInternalV6, pgSchemaExternal, pgSchemaInternalV7, pgSchemaInternal, tableSquashed3, tableSquashedV42, pgSchemaSquashedV4, pgSchemaSquashedV6, pgSchemaSquashed, pgSchemaV3, pgSchemaV4, pgSchemaV5, pgSchemaV6, pgSchemaV7, pgSchema, backwardCompatiblePgSchema, PgSquasher, squashPgScheme, dryPg, init_pgSchema, index4, column4, compositePK4, uniqueConstraint4, table42, viewMeta2, kitInternals4, dialect22, schemaHash4, schemaInternal2, schema22, tableSquashed4, schemaSquashed2, SingleStoreSquasher, squashSingleStoreScheme, singlestoreSchema, singlestoreSchemaSquashed, backwardCompatibleSingleStoreSchema, drySingleStore, init_singlestoreSchema, index5, fk4, compositePK5, column5, tableV33, uniqueConstraint5, checkConstraint4, table52, view4, dialect3, schemaHash5, schemaInternalV32, schemaInternalV42, schemaInternalV52, kitInternals5, latestVersion, schemaInternal3, schemaV32, schemaV42, schemaV52, schema3, tableSquashed5, schemaSquashed3, SQLiteSquasher, squashSqliteScheme, drySQLite, sqliteSchemaV5, sqliteSchema, SQLiteSchemaSquashed, backwardCompatibleSqliteSchema, init_sqliteSchema, copy, prepareMigrationMeta, schemaRenameKey, tableRenameKey, columnRenameKey, init_utils5, import_hanji, warning, error, isRenamePromptItem, ResolveColumnSelect, tableKey, ResolveSelectNamed, ResolveSelect, ResolveSchemasSelect, Spinner2, ProgressView, init_views, glob, init_serializer, fillPgSnapshot, init_migrationPreparator, require_heap, require_heap2, require_difflib, require_difflib2, require_util, require_styles, require_has_flag2, require_supports_colors, require_trap, require_zalgo, require_america, require_zebra, require_rainbow, require_random, require_colors, require_safe, require_colorize, require_lib, import_json_diff, mapArraysDiff, findAlternationsInTable, alternationsInColumn, init_jsonDiffer, parseType, Convertor, PgCreateRoleConvertor, PgDropRoleConvertor, PgRenameRoleConvertor, PgAlterRoleConvertor, PgCreatePolicyConvertor, PgDropPolicyConvertor, PgRenamePolicyConvertor, PgAlterPolicyConvertor, PgCreateIndPolicyConvertor, PgDropIndPolicyConvertor, PgRenameIndPolicyConvertor, PgAlterIndPolicyConvertor, PgEnableRlsConvertor, PgDisableRlsConvertor, PgCreateTableConvertor, MySqlCreateTableConvertor, SingleStoreCreateTableConvertor, SQLiteCreateTableConvertor, PgCreateViewConvertor, MySqlCreateViewConvertor, SqliteCreateViewConvertor, PgDropViewConvertor, MySqlDropViewConvertor, SqliteDropViewConvertor, MySqlAlterViewConvertor, PgRenameViewConvertor, MySqlRenameViewConvertor, PgAlterViewSchemaConvertor, PgAlterViewAddWithOptionConvertor, PgAlterViewDropWithOptionConvertor, PgAlterViewAlterTablespaceConvertor, PgAlterViewAlterUsingConvertor, PgAlterTableAlterColumnSetGenerated, PgAlterTableAlterColumnDropGenerated, PgAlterTableAlterColumnAlterGenerated, PgAlterTableAddUniqueConstraintConvertor, PgAlterTableDropUniqueConstraintConvertor, PgAlterTableAddCheckConstraintConvertor, PgAlterTableDeleteCheckConstraintConvertor, MySQLAlterTableAddUniqueConstraintConvertor, MySQLAlterTableDropUniqueConstraintConvertor, MySqlAlterTableAddCheckConstraintConvertor, SingleStoreAlterTableAddUniqueConstraintConvertor, SingleStoreAlterTableDropUniqueConstraintConvertor, MySqlAlterTableDeleteCheckConstraintConvertor, CreatePgSequenceConvertor, DropPgSequenceConvertor, RenamePgSequenceConvertor, MovePgSequenceConvertor, AlterPgSequenceConvertor, CreateTypeEnumConvertor, DropTypeEnumConvertor, AlterTypeAddValueConvertor, AlterTypeSetSchemaConvertor, AlterRenameTypeConvertor, AlterTypeDropValueConvertor, PgDropTableConvertor, MySQLDropTableConvertor, SingleStoreDropTableConvertor, SQLiteDropTableConvertor, PgRenameTableConvertor, SqliteRenameTableConvertor, MySqlRenameTableConvertor, SingleStoreRenameTableConvertor, PgAlterTableRenameColumnConvertor, MySqlAlterTableRenameColumnConvertor, SingleStoreAlterTableRenameColumnConvertor, SQLiteAlterTableRenameColumnConvertor, PgAlterTableDropColumnConvertor, MySqlAlterTableDropColumnConvertor, SingleStoreAlterTableDropColumnConvertor, SQLiteAlterTableDropColumnConvertor, PgAlterTableAddColumnConvertor, MySqlAlterTableAddColumnConvertor, SingleStoreAlterTableAddColumnConvertor, SQLiteAlterTableAddColumnConvertor, PgAlterTableAlterColumnSetTypeConvertor, PgAlterTableAlterColumnSetDefaultConvertor, PgAlterTableAlterColumnDropDefaultConvertor, PgAlterTableAlterColumnDropGeneratedConvertor, PgAlterTableAlterColumnSetExpressionConvertor, PgAlterTableAlterColumnAlterrGeneratedConvertor, SqliteAlterTableAlterColumnDropGeneratedConvertor, SqliteAlterTableAlterColumnSetExpressionConvertor, SqliteAlterTableAlterColumnAlterGeneratedConvertor, MySqlAlterTableAlterColumnAlterrGeneratedConvertor, MySqlAlterTableAddPk, MySqlAlterTableDropPk, LibSQLModifyColumn, MySqlModifyColumn, SingleStoreAlterTableAlterColumnAlterrGeneratedConvertor, SingleStoreAlterTableAddPk, SingleStoreAlterTableDropPk, SingleStoreModifyColumn, PgAlterTableCreateCompositePrimaryKeyConvertor, PgAlterTableDeleteCompositePrimaryKeyConvertor, PgAlterTableAlterCompositePrimaryKeyConvertor, MySqlAlterTableCreateCompositePrimaryKeyConvertor, MySqlAlterTableDeleteCompositePrimaryKeyConvertor, MySqlAlterTableAlterCompositePrimaryKeyConvertor, PgAlterTableAlterColumnSetPrimaryKeyConvertor, PgAlterTableAlterColumnDropPrimaryKeyConvertor, PgAlterTableAlterColumnSetNotNullConvertor, PgAlterTableAlterColumnDropNotNullConvertor, PgCreateForeignKeyConvertor, LibSQLCreateForeignKeyConvertor, MySqlCreateForeignKeyConvertor, PgAlterForeignKeyConvertor, PgDeleteForeignKeyConvertor, MySqlDeleteForeignKeyConvertor, CreatePgIndexConvertor, CreateMySqlIndexConvertor, CreateSingleStoreIndexConvertor, CreateSqliteIndexConvertor, PgDropIndexConvertor, PgCreateSchemaConvertor, PgRenameSchemaConvertor, PgDropSchemaConvertor, PgAlterTableSetSchemaConvertor, PgAlterTableSetNewSchemaConvertor, PgAlterTableRemoveFromSchemaConvertor, SqliteDropIndexConvertor, MySqlDropIndexConvertor, SingleStoreDropIndexConvertor, SQLiteRecreateTableConvertor, LibSQLRecreateTableConvertor, SingleStoreRecreateTableConvertor, convertors, init_sqlgenerator, _moveDataStatements, getOldTableName, getNewTableName, logSuggestionsAndReturn, init_sqlitePushUtils, preparePgCreateTableJson, prepareMySqlCreateTableJson, prepareSingleStoreCreateTableJson, prepareSQLiteCreateTable, prepareDropTableJson, prepareRenameTableJson, prepareCreateEnumJson, prepareAddValuesToEnumJson, prepareDropEnumValues, prepareDropEnumJson, prepareMoveEnumJson, prepareRenameEnumJson, prepareCreateSequenceJson, prepareAlterSequenceJson, prepareDropSequenceJson, prepareMoveSequenceJson, prepareRenameSequenceJson, prepareCreateRoleJson, prepareAlterRoleJson, prepareDropRoleJson, prepareRenameRoleJson, prepareCreateSchemasJson, prepareRenameSchemasJson, prepareDeleteSchemasJson, prepareRenameColumns, _prepareDropColumns, _prepareAddColumns, _prepareSqliteAddColumns, prepareAlterColumnsMysql, preparePgAlterColumns, prepareSqliteAlterColumns, prepareRenamePolicyJsons, prepareRenameIndPolicyJsons, prepareCreatePolicyJsons, prepareCreateIndPolicyJsons, prepareDropPolicyJsons, prepareDropIndPolicyJsons, prepareAlterPolicyJson, prepareAlterIndPolicyJson, preparePgCreateIndexesJson, prepareCreateIndexesJson, prepareCreateReferencesJson, prepareLibSQLCreateReferencesJson, prepareDropReferencesJson, prepareLibSQLDropReferencesJson, prepareAlterReferencesJson, prepareDropIndexesJson, prepareAddCompositePrimaryKeySqlite, prepareDeleteCompositePrimaryKeySqlite, prepareAlterCompositePrimaryKeySqlite, prepareAddCompositePrimaryKeyPg, prepareDeleteCompositePrimaryKeyPg, prepareAlterCompositePrimaryKeyPg, prepareAddUniqueConstraintPg, prepareDeleteUniqueConstraintPg, prepareAddCheckConstraint, prepareDeleteCheckConstraint, prepareAddCompositePrimaryKeyMySql, prepareDeleteCompositePrimaryKeyMySql, prepareAlterCompositePrimaryKeyMySql, preparePgCreateViewJson, prepareMySqlCreateViewJson, prepareSqliteCreateViewJson, prepareDropViewJson, prepareRenameViewJson, preparePgAlterViewAlterSchemaJson, preparePgAlterViewAddWithOptionJson, preparePgAlterViewDropWithOptionJson, preparePgAlterViewAlterTablespaceJson, preparePgAlterViewAlterUsingJson, prepareMySqlAlterView, init_jsonStatements, prepareLibSQLRecreateTable, prepareSQLiteRecreateTable, libSQLCombineStatements, sqliteCombineStatements, prepareSingleStoreRecreateTable, singleStoreCombineStatements, init_statementCombiner, snapshotsDiffer_exports, makeChanged, makeSelfOrChanged, makePatched, makeSelfOrPatched, columnSchema, alteredColumnSchema, enumSchema3, changedEnumSchema, tableScheme, alteredTableScheme, alteredViewCommon, alteredPgViewSchema, alteredMySqlViewSchema, diffResultScheme, diffResultSchemeMysql, diffResultSchemeSingleStore, diffResultSchemeSQLite, schemaChangeFor, nameChangeFor, nameSchemaChangeFor, columnChangeFor, applyPgSnapshotsDiff, applyMysqlSnapshotsDiff, applySingleStoreSnapshotsDiff, applySqliteSnapshotsDiff, applyLibSQLSnapshotsDiff, init_snapshotsDiffer, init_words, dialects, dialect4, commonSquashedSchema, commonSchema, init_schemaValidator, sqliteDriversLiterals, postgresqlDriversLiterals, prefixes, prefix, casingTypes, casingType, sqliteDriver, postgresDriver, driver2, configMigrations, configCommonSchema, casing, introspectParams, configIntrospectCliSchema, configGenerateSchema, configPushSchema, init_common2, withStyle, init_outputs, import_hanji2, schemasResolver, tablesResolver, viewsResolver, mySqlViewsResolver, sqliteViewsResolver, sequencesResolver, roleResolver, policyResolver, indPolicyResolver, enumsResolver, columnsResolver, promptColumnsConflicts, promptNamedConflict, promptNamedWithSchemasConflict, promptSchemasConflict, BREAKPOINT, init_migrate, posixClasses, braceEscape, regexpEscape, rangesToString, parseClass, init_brace_expressions, escape, init_escape, unescape, init_unescape, import_brace_expansion, minimatch, starDotExtRE, starDotExtTest, starDotExtTestDot, starDotExtTestNocase, starDotExtTestNocaseDot, starDotStarRE, starDotStarTest, starDotStarTestDot, dotStarRE, dotStarTest, starRE, starTest, starTestDot, qmarksRE, qmarksTestNocase, qmarksTestNocaseDot, qmarksTestDot, qmarksTest, qmarksTestNoExt, qmarksTestNoExtDot, defaultPlatform, path, sep, GLOBSTAR, plTypes, qmark, star, twoStarDot, twoStarNoDot, charSet, reSpecials, addPatternStartSet, filter, ext, defaults, braceExpand, MAX_PATTERN_LENGTH, assertValidPattern, makeRe, match2, globUnescape, globMagic, regExpEscape, Minimatch, init_mjs, entityKind2, hasOwnEntityKind2, init_entity2, _a, Column2, init_column2, _a2, ColumnBuilder2, init_column_builder2, TableName2, init_table_utils2, _a3, ForeignKeyBuilder2, _a4, ForeignKey2, init_foreign_keys2, init_tracing_utils2, _a5, UniqueConstraintBuilder, _a6, UniqueOnConstraintBuilder, _a7, UniqueConstraint, init_unique_constraint2, init_array2, _a8, _b, PgColumnBuilder2, _a9, _b2, PgColumn2, _a10, _b3, ExtraConfigColumn2, _a11, IndexedColumn2, _a12, _b4, PgArrayBuilder2, _a13, _b5, _PgArray, PgArray2, init_common22, _a14, _b6, PgEnumObjectColumnBuilder2, _a15, _b7, PgEnumObjectColumn2, isPgEnumSym2, _a16, _b8, PgEnumColumnBuilder2, _a17, _b9, PgEnumColumn2, init_enum2, _a18, Subquery2, _a19, _b10, WithSubquery2, init_subquery2, version2, init_version2, otel2, rawTracer2, tracer2, init_tracing2, ViewBaseConfig2, init_view_common3, Schema2, Columns2, ExtraConfigColumns2, OriginalName2, BaseName2, IsAlias2, ExtraConfigBuilder2, IsDrizzleTable2, _a20, _b11, _c, _d, _e2, _f, _g, _h, _i, _j, Table2, init_table15, _a21, FakePrimitiveParam, _a22, StringChunk2, _a23, _SQL, SQL2, _a24, Name2, noopDecoder2, noopEncoder2, noopMapper2, _a25, Param2, _a26, Placeholder2, IsDrizzleView2, _a27, _b12, _c2, View3, init_sql3, _a28, ColumnAliasProxyHandler2, _a29, TableAliasProxyHandler2, _a30, RelationTableAliasProxyHandler, init_alias3, _a31, _b13, DrizzleError2, DrizzleQueryError, _a32, _b14, TransactionRollbackError2, init_errors22, _a33, ConsoleLogWriter2, _a34, DefaultLogger2, _a35, NoopLogger2, init_logger3, init_operations, _a36, _b15, QueryPromise2, init_query_promise2, textDecoder, init_utils22, _a37, _b16, PgIntColumnBaseBuilder2, init_int_common2, _a38, _b17, PgBigInt53Builder2, _a39, _b18, PgBigInt532, _a40, _b19, PgBigInt64Builder2, _a41, _b20, PgBigInt642, init_bigint2, _a42, _b21, PgBigSerial53Builder2, _a43, _b22, PgBigSerial532, _a44, _b23, PgBigSerial64Builder2, _a45, _b24, PgBigSerial642, init_bigserial2, _a46, _b25, PgBooleanBuilder2, _a47, _b26, PgBoolean2, init_boolean2, _a48, _b27, PgCharBuilder2, _a49, _b28, PgChar2, init_char2, _a50, _b29, PgCidrBuilder2, _a51, _b30, PgCidr2, init_cidr2, _a52, _b31, PgCustomColumnBuilder2, _a53, _b32, PgCustomColumn2, init_custom2, _a54, _b33, PgDateColumnBaseBuilder2, init_date_common2, _a55, _b34, PgDateBuilder2, _a56, _b35, PgDate2, _a57, _b36, PgDateStringBuilder2, _a58, _b37, PgDateString2, init_date2, _a59, _b38, PgDoublePrecisionBuilder2, _a60, _b39, PgDoublePrecision2, init_double_precision2, _a61, _b40, PgInetBuilder2, _a62, _b41, PgInet2, init_inet2, _a63, _b42, PgIntegerBuilder2, _a64, _b43, PgInteger2, init_integer2, _a65, _b44, PgIntervalBuilder2, _a66, _b45, PgInterval2, init_interval2, _a67, _b46, PgJsonBuilder2, _a68, _b47, PgJson2, init_json2, _a69, _b48, PgJsonbBuilder2, _a70, _b49, PgJsonb2, init_jsonb2, _a71, _b50, PgLineBuilder2, _a72, _b51, PgLineTuple2, _a73, _b52, PgLineABCBuilder2, _a74, _b53, PgLineABC2, init_line2, _a75, _b54, PgMacaddrBuilder2, _a76, _b55, PgMacaddr2, init_macaddr2, _a77, _b56, PgMacaddr8Builder2, _a78, _b57, PgMacaddr82, init_macaddr82, _a79, _b58, PgNumericBuilder2, _a80, _b59, PgNumeric2, _a81, _b60, PgNumericNumberBuilder2, _a82, _b61, PgNumericNumber2, _a83, _b62, PgNumericBigIntBuilder2, _a84, _b63, PgNumericBigInt2, init_numeric2, _a85, _b64, PgPointTupleBuilder2, _a86, _b65, PgPointTuple2, _a87, _b66, PgPointObjectBuilder2, _a88, _b67, PgPointObject2, init_point2, init_utils32, _a89, _b68, PgGeometryBuilder2, _a90, _b69, PgGeometry2, _a91, _b70, PgGeometryObjectBuilder2, _a92, _b71, PgGeometryObject2, init_geometry2, _a93, _b72, PgRealBuilder2, _a94, _b73, PgReal2, init_real2, _a95, _b74, PgSerialBuilder2, _a96, _b75, PgSerial2, init_serial2, _a97, _b76, PgSmallIntBuilder2, _a98, _b77, PgSmallInt2, init_smallint2, _a99, _b78, PgSmallSerialBuilder2, _a100, _b79, PgSmallSerial2, init_smallserial2, _a101, _b80, PgTextBuilder2, _a102, _b81, PgText2, init_text2, _a103, _b82, PgTimeBuilder2, _a104, _b83, PgTime2, init_time2, _a105, _b84, PgTimestampBuilder2, _a106, _b85, PgTimestamp2, _a107, _b86, PgTimestampStringBuilder2, _a108, _b87, PgTimestampString2, init_timestamp2, _a109, _b88, PgUUIDBuilder2, _a110, _b89, PgUUID2, init_uuid3, _a111, _b90, PgVarcharBuilder2, _a112, _b91, PgVarchar2, init_varchar2, _a113, _b92, PgBinaryVectorBuilder2, _a114, _b93, PgBinaryVector2, init_bit2, _a115, _b94, PgHalfVectorBuilder2, _a116, _b95, PgHalfVector2, init_halfvec2, _a117, _b96, PgSparseVectorBuilder2, _a118, _b97, PgSparseVector2, init_sparsevec2, _a119, _b98, PgVectorBuilder2, _a120, _b99, PgVector2, init_vector3, init_all2, InlineForeignKeys2, EnableRLS2, _a121, _b100, _c3, _d2, _e22, _f2, PgTable2, pgTable2, init_table22, _a122, PrimaryKeyBuilder2, _a123, PrimaryKey2, init_primary_keys2, eq2, ne3, gt3, gte2, lt3, lte2, init_conditions2, init_select3, init_expressions2, _a124, Relation2, _a125, Relations2, _a126, _b101, _One, One2, _a127, _b102, _Many, Many2, init_relations2, init_aggregate2, init_vector22, init_functions2, init_sql22, dist_exports, init_dist5, init_alias22, _a128, CheckBuilder, _a129, Check, init_checks2, init_columns2, _a130, _SelectionProxyHandler, SelectionProxyHandler2, init_selection_proxy2, _a131, IndexBuilderOn2, _a132, IndexBuilder2, _a133, Index2, init_indexes2, _a134, PgPolicy, init_policies2, PgViewConfig2, init_view_common22, _a135, CasingCache2, init_casing2, _a136, _b103, PgViewBase2, init_view_base2, _a137, PgDialect2, init_dialect2, _a138, TypedQueryBuilder2, init_query_builder3, _a139, PgSelectBuilder2, _a140, _b104, PgSelectQueryBuilderBase2, _a141, _b105, PgSelectBase2, getPgSetOperators2, union2, unionAll2, intersect2, intersectAll2, except2, exceptAll2, init_select22, _a142, QueryBuilder2, init_query_builder22, _a143, DefaultViewBuilderCore, _a144, _b106, ViewBuilder, _a145, _b107, ManualViewBuilder, _a146, MaterializedViewBuilderCore, _a147, _b108, MaterializedViewBuilder, _a148, _b109, ManualMaterializedViewBuilder, _a149, _b110, _c4, PgView2, PgMaterializedViewConfig2, _a150, _b111, _c5, PgMaterializedView, init_view2, init_utils42, _a151, _b112, PgDeleteBase2, init_delete2, _a152, PgInsertBuilder2, _a153, _b113, PgInsertBase2, init_insert2, _a154, _b114, PgRefreshMaterializedView2, init_refresh_materialized_view2, init_select_types, _a155, PgUpdateBuilder2, _a156, _b115, PgUpdateBase2, init_update2, init_query_builders2, _a157, _b116, _c6, _PgCountBuilder, PgCountBuilder2, init_count2, _a158, RelationalQueryBuilder2, _a159, _b117, PgRelationalQuery2, init_query2, _a160, _b118, PgRaw2, init_raw2, _a161, PgDatabase2, init_db2, _a162, PgRole, init_roles2, _a163, PgSequence, init_sequence2, _a164, PgSchema5, init_schema3, _a165, Cache, _a166, _b119, NoopCache, init_cache, _a167, PgPreparedQuery2, _a168, PgSession2, _a169, _b120, PgTransaction2, init_session3, init_subquery22, init_utils52, init_pg_core2, vectorOps, init_vector32, sqlToStr, init_utils6, indexName, generatePgSnapshot, trimChar, fromDatabase, defaultForColumn, getColumnsInfoQuery, init_pgSerializer, import_hanji4, Select, init_selector_ui, init_alias32, _a170, CheckBuilder2, _a171, Check2, init_checks22, _a172, ForeignKeyBuilder22, _a173, ForeignKey22, init_foreign_keys22, _a174, UniqueConstraintBuilder2, _a175, UniqueOnConstraintBuilder2, _a176, UniqueConstraint2, init_unique_constraint22, _a177, _b121, SQLiteColumnBuilder, _a178, _b122, SQLiteColumn, init_common3, _a179, _b123, SQLiteBigIntBuilder, _a180, _b124, SQLiteBigInt, _a181, _b125, SQLiteBlobJsonBuilder, _a182, _b126, SQLiteBlobJson, _a183, _b127, SQLiteBlobBufferBuilder, _a184, _b128, SQLiteBlobBuffer, init_blob, _a185, _b129, SQLiteCustomColumnBuilder, _a186, _b130, SQLiteCustomColumn, init_custom22, _a187, _b131, SQLiteBaseIntegerBuilder, _a188, _b132, SQLiteBaseInteger, _a189, _b133, SQLiteIntegerBuilder, _a190, _b134, SQLiteInteger, _a191, _b135, SQLiteTimestampBuilder, _a192, _b136, SQLiteTimestamp, _a193, _b137, SQLiteBooleanBuilder, _a194, _b138, SQLiteBoolean, init_integer22, _a195, _b139, SQLiteNumericBuilder, _a196, _b140, SQLiteNumeric, _a197, _b141, SQLiteNumericNumberBuilder, _a198, _b142, SQLiteNumericNumber, _a199, _b143, SQLiteNumericBigIntBuilder, _a200, _b144, SQLiteNumericBigInt, init_numeric22, _a201, _b145, SQLiteRealBuilder, _a202, _b146, SQLiteReal, init_real22, _a203, _b147, SQLiteTextBuilder, _a204, _b148, SQLiteText, _a205, _b149, SQLiteTextJsonBuilder, _a206, _b150, SQLiteTextJson, init_text22, init_columns22, init_all22, InlineForeignKeys22, _a207, _b151, _c7, _d3, _e3, SQLiteTable, sqliteTable, init_table32, _a208, IndexBuilderOn22, _a209, IndexBuilder22, _a210, Index4, init_indexes22, _a211, PrimaryKeyBuilder22, _a212, PrimaryKey22, init_primary_keys22, init_utils7, _a213, _b152, SQLiteDeleteBase, init_delete22, _a214, _b153, SQLiteViewBase, init_view_base22, _a215, SQLiteDialect, _a216, _b154, SQLiteSyncDialect, _a217, _b155, SQLiteAsyncDialect, init_dialect22, _a218, SQLiteSelectBuilder, _a219, _b156, SQLiteSelectQueryBuilderBase, _a220, _b157, SQLiteSelectBase, getSQLiteSetOperators, union3, unionAll22, intersect22, except22, init_select32, _a221, QueryBuilder22, init_query_builder32, _a222, SQLiteInsertBuilder, _a223, _b158, SQLiteInsertBase, init_insert22, init_select_types2, _a224, SQLiteUpdateBuilder, _a225, _b159, SQLiteUpdateBase, init_update22, init_query_builders22, _a226, _b160, _c8, _SQLiteCountBuilder, SQLiteCountBuilder, init_count22, _a227, RelationalQueryBuilder22, _a228, _b161, SQLiteRelationalQuery, _a229, _b162, SQLiteSyncRelationalQuery, init_query22, _a230, _b163, SQLiteRaw, init_raw22, _a231, BaseSQLiteDatabase, init_db22, _a232, _b164, ExecuteResultSync, _a233, SQLitePreparedQuery, _a234, SQLiteSession, _a235, _b165, SQLiteTransaction, init_session22, init_subquery3, _a236, ViewBuilderCore, _a237, _b166, ViewBuilder2, _a238, _b167, ManualViewBuilder2, _a239, _b168, SQLiteView2, init_view22, init_sqlite_core, generateSqliteSnapshot, fromDatabase2, init_sqliteSerializer, getTablesFilterByExtensions, init_getTablesFilterByExtensions, init_alias4, _a240, CheckBuilder3, _a241, Check3, init_checks3, _a242, ForeignKeyBuilder3, _a243, ForeignKey3, init_foreign_keys3, _a244, UniqueConstraintBuilder3, _a245, UniqueOnConstraintBuilder3, _a246, UniqueConstraint3, init_unique_constraint3, _a247, _b169, MySqlColumnBuilder, _a248, _b170, MySqlColumn, _a249, _b171, MySqlColumnBuilderWithAutoIncrement, _a250, _b172, MySqlColumnWithAutoIncrement, init_common4, _a251, _b173, MySqlBigInt53Builder, _a252, _b174, MySqlBigInt53, _a253, _b175, MySqlBigInt64Builder, _a254, _b176, MySqlBigInt64, init_bigint22, _a255, _b177, MySqlBinaryBuilder, _a256, _b178, MySqlBinary, init_binary, _a257, _b179, MySqlBooleanBuilder, _a258, _b180, MySqlBoolean, init_boolean22, _a259, _b181, MySqlCharBuilder, _a260, _b182, MySqlChar, init_char22, _a261, _b183, MySqlCustomColumnBuilder, _a262, _b184, MySqlCustomColumn, init_custom3, _a263, _b185, MySqlDateBuilder, _a264, _b186, MySqlDate, _a265, _b187, MySqlDateStringBuilder, _a266, _b188, MySqlDateString, init_date22, _a267, _b189, MySqlDateTimeBuilder, _a268, _b190, MySqlDateTime, _a269, _b191, MySqlDateTimeStringBuilder, _a270, _b192, MySqlDateTimeString, init_datetime, _a271, _b193, MySqlDecimalBuilder, _a272, _b194, MySqlDecimal, _a273, _b195, MySqlDecimalNumberBuilder, _a274, _b196, MySqlDecimalNumber, _a275, _b197, MySqlDecimalBigIntBuilder, _a276, _b198, MySqlDecimalBigInt, init_decimal, _a277, _b199, MySqlDoubleBuilder, _a278, _b200, MySqlDouble, init_double, _a279, _b201, MySqlEnumColumnBuilder, _a280, _b202, MySqlEnumColumn, _a281, _b203, MySqlEnumObjectColumnBuilder, _a282, _b204, MySqlEnumObjectColumn, init_enum22, _a283, _b205, MySqlFloatBuilder, _a284, _b206, MySqlFloat, init_float, _a285, _b207, MySqlIntBuilder, _a286, _b208, MySqlInt, init_int, _a287, _b209, MySqlJsonBuilder, _a288, _b210, MySqlJson, init_json22, _a289, _b211, MySqlMediumIntBuilder, _a290, _b212, MySqlMediumInt, init_mediumint, _a291, _b213, MySqlRealBuilder, _a292, _b214, MySqlReal, init_real3, _a293, _b215, MySqlSerialBuilder, _a294, _b216, MySqlSerial, init_serial22, _a295, _b217, MySqlSmallIntBuilder, _a296, _b218, MySqlSmallInt, init_smallint22, _a297, _b219, MySqlTextBuilder, _a298, _b220, MySqlText, init_text3, _a299, _b221, MySqlTimeBuilder, _a300, _b222, MySqlTime, init_time22, _a301, _b223, MySqlDateColumnBaseBuilder, _a302, _b224, MySqlDateBaseColumn, init_date_common22, _a303, _b225, MySqlTimestampBuilder, _a304, _b226, MySqlTimestamp, _a305, _b227, MySqlTimestampStringBuilder, _a306, _b228, MySqlTimestampString, init_timestamp22, _a307, _b229, MySqlTinyIntBuilder, _a308, _b230, MySqlTinyInt, init_tinyint, _a309, _b231, MySqlVarBinaryBuilder, _a310, _b232, MySqlVarBinary, init_varbinary, _a311, _b233, MySqlVarCharBuilder, _a312, _b234, MySqlVarChar, init_varchar22, _a313, _b235, MySqlYearBuilder, _a314, _b236, MySqlYear, init_year, init_columns3, _a315, _b237, _c9, _MySqlCountBuilder, MySqlCountBuilder, init_count3, _a316, IndexBuilderOn3, _a317, IndexBuilder3, _a318, Index5, init_indexes3, init_all3, InlineForeignKeys3, _a319, _b238, _c10, _d4, _e4, MySqlTable, mysqlTable, init_table42, _a320, PrimaryKeyBuilder3, _a321, PrimaryKey3, init_primary_keys3, MySqlViewConfig, init_view_common32, init_utils8, _a322, _b239, MySqlDeleteBase, init_delete3, _a323, _b240, MySqlViewBase, init_view_base3, _a324, MySqlDialect, init_dialect3, _a325, MySqlSelectBuilder, _a326, _b241, MySqlSelectQueryBuilderBase, _a327, _b242, MySqlSelectBase, getMySqlSetOperators, union4, unionAll3, intersect3, intersectAll22, except3, exceptAll22, init_select4, _a328, QueryBuilder3, init_query_builder4, _a329, MySqlInsertBuilder, _a330, _b243, MySqlInsertBase, init_insert3, init_select_types3, _a331, MySqlUpdateBuilder, _a332, _b244, MySqlUpdateBase, init_update3, init_query_builders3, _a333, RelationalQueryBuilder3, _a334, _b245, MySqlRelationalQuery, init_query3, _a335, MySqlDatabase, init_db3, _a336, ViewBuilderCore2, _a337, _b246, ViewBuilder3, _a338, _b247, ManualViewBuilder3, _a339, _b248, _c11, MySqlView2, init_view3, _a340, MySqlSchema5, init_schema22, _a341, MySqlPreparedQuery, _a342, MySqlSession, _a343, _b249, MySqlTransaction, init_session32, init_subquery4, init_mysql_core, handleEnumType, generateMySqlSnapshot, fromDatabase3, init_mysqlSerializer, cliConfigGenerate, pushParams, pullParams, configCheck, cliConfigCheck, init_cli, gelCredentials, init_gel, libSQLCredentials, init_libsql, mysqlCredentials, init_mysql, postgresCredentials, init_postgres, singlestoreCredentials, init_singlestore, sqliteCredentials, init_sqlite, credentials, studioCliParams, studioConfig, init_studio, es5_exports, _3, es5_default, init_es5, import_hanji7, assertES5, safeRegister, migrateConfig, init_utils9, prepareFromExports, init_pgImports, init_alias5, _a344, UniqueConstraintBuilder4, _a345, UniqueOnConstraintBuilder4, _a346, UniqueConstraint4, init_unique_constraint4, _a347, _b250, SingleStoreColumnBuilder, _a348, _b251, SingleStoreColumn, _a349, _b252, SingleStoreColumnBuilderWithAutoIncrement, _a350, _b253, SingleStoreColumnWithAutoIncrement, init_common5, _a351, _b254, SingleStoreBigInt53Builder, _a352, _b255, SingleStoreBigInt53, _a353, _b256, SingleStoreBigInt64Builder, _a354, _b257, SingleStoreBigInt64, init_bigint3, _a355, _b258, SingleStoreBinaryBuilder, _a356, _b259, SingleStoreBinary, init_binary2, _a357, _b260, SingleStoreBooleanBuilder, _a358, _b261, SingleStoreBoolean, init_boolean3, _a359, _b262, SingleStoreCharBuilder, _a360, _b263, SingleStoreChar, init_char3, _a361, _b264, SingleStoreCustomColumnBuilder, _a362, _b265, SingleStoreCustomColumn, init_custom4, _a363, _b266, SingleStoreDateBuilder, _a364, _b267, SingleStoreDate, _a365, _b268, SingleStoreDateStringBuilder, _a366, _b269, SingleStoreDateString, init_date3, _a367, _b270, SingleStoreDateTimeBuilder, _a368, _b271, SingleStoreDateTime, _a369, _b272, SingleStoreDateTimeStringBuilder, _a370, _b273, SingleStoreDateTimeString, init_datetime2, _a371, _b274, SingleStoreDecimalBuilder, _a372, _b275, SingleStoreDecimal, _a373, _b276, SingleStoreDecimalNumberBuilder, _a374, _b277, SingleStoreDecimalNumber, _a375, _b278, SingleStoreDecimalBigIntBuilder, _a376, _b279, SingleStoreDecimalBigInt, init_decimal2, _a377, _b280, SingleStoreDoubleBuilder, _a378, _b281, SingleStoreDouble, init_double2, _a379, _b282, SingleStoreEnumColumnBuilder, _a380, _b283, SingleStoreEnumColumn, init_enum3, _a381, _b284, SingleStoreFloatBuilder, _a382, _b285, SingleStoreFloat, init_float2, _a383, _b286, SingleStoreIntBuilder, _a384, _b287, SingleStoreInt, init_int2, _a385, _b288, SingleStoreJsonBuilder, _a386, _b289, SingleStoreJson, init_json3, _a387, _b290, SingleStoreMediumIntBuilder, _a388, _b291, SingleStoreMediumInt, init_mediumint2, _a389, _b292, SingleStoreRealBuilder, _a390, _b293, SingleStoreReal, init_real4, _a391, _b294, SingleStoreSerialBuilder, _a392, _b295, SingleStoreSerial, init_serial3, _a393, _b296, SingleStoreSmallIntBuilder, _a394, _b297, SingleStoreSmallInt, init_smallint3, _a395, _b298, SingleStoreTextBuilder, _a396, _b299, SingleStoreText, init_text4, _a397, _b300, SingleStoreTimeBuilder, _a398, _b301, SingleStoreTime, init_time3, _a399, _b302, SingleStoreDateColumnBaseBuilder, _a400, _b303, SingleStoreDateBaseColumn, init_date_common3, _a401, _b304, SingleStoreTimestampBuilder, _a402, _b305, SingleStoreTimestamp, _a403, _b306, SingleStoreTimestampStringBuilder, _a404, _b307, SingleStoreTimestampString, init_timestamp3, _a405, _b308, SingleStoreTinyIntBuilder, _a406, _b309, SingleStoreTinyInt, init_tinyint2, _a407, _b310, SingleStoreVarBinaryBuilder, _a408, _b311, SingleStoreVarBinary, init_varbinary2, _a409, _b312, SingleStoreVarCharBuilder, _a410, _b313, SingleStoreVarChar, init_varchar3, _a411, _b314, SingleStoreVectorBuilder, _a412, _b315, SingleStoreVector, init_vector4, _a413, _b316, SingleStoreYearBuilder, _a414, _b317, SingleStoreYear, init_year2, init_columns4, _a415, _b318, _c12, _SingleStoreCountBuilder, SingleStoreCountBuilder, init_count4, _a416, IndexBuilderOn4, _a417, IndexBuilder4, _a418, Index6, init_indexes4, init_all4, _a419, _b319, _c13, _d5, SingleStoreTable, init_table52, _a420, PrimaryKeyBuilder4, _a421, PrimaryKey4, init_primary_keys4, init_utils10, _a422, _b320, SingleStoreDeleteBase, init_delete4, _a423, SingleStoreInsertBuilder, _a424, _b321, SingleStoreInsertBase, init_insert4, _a425, SingleStoreDialect, init_dialect4, _a426, SingleStoreSelectBuilder, _a427, _b322, SingleStoreSelectQueryBuilderBase, _a428, _b323, SingleStoreSelectBase, getSingleStoreSetOperators, union5, unionAll4, intersect4, except4, minus, init_select5, _a429, QueryBuilder4, init_query_builder5, init_select_types4, _a430, SingleStoreUpdateBuilder, _a431, _b324, SingleStoreUpdateBase, init_update4, init_query_builders4, _a432, SingleStoreDatabase, init_db4, _a433, SingleStoreSchema5, init_schema32, _a434, SingleStorePreparedQuery, _a435, SingleStoreSession, _a436, _b325, SingleStoreTransaction, init_session4, init_subquery5, init_singlestore_core, dialect5, generateSingleStoreSnapshot, fromDatabase4, init_singlestoreSerializer, sqliteImports_exports, prepareFromExports2, prepareFromSqliteImports, init_sqliteImports, mysqlImports_exports, prepareFromExports3, prepareFromMySqlImports, init_mysqlImports, mysqlPushUtils_exports, import_hanji8, filterStatements, logSuggestionsAndReturn2, init_mysqlPushUtils, mysqlIntrospect_exports, import_hanji9, mysqlPushIntrospect, init_mysqlIntrospect, singlestoreImports_exports, prepareFromExports4, prepareFromSingleStoreImports, init_singlestoreImports, singlestorePushUtils_exports, import_hanji10, filterStatements2, logSuggestionsAndReturn3, init_singlestorePushUtils, singlestoreIntrospect_exports, import_hanji11, singlestorePushIntrospect, init_singlestoreIntrospect, import_hanji3, pgPushIntrospect = async (db2, filters, schemaFilters, entities, tsSchema) => {
+}, __toESM2 = (mod, isNodeMode, target) => (target = mod != null ? __create2(__getProtoOf2(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp2(target, "default", { value: mod, enumerable: true }) : target, mod)), __publicField = (obj, key, value) => __defNormalProp(obj, typeof key !== "symbol" ? key + "" : key, value), ANSI_BACKGROUND_OFFSET, wrapAnsi16, wrapAnsi256, wrapAnsi16m, styles2, modifierNames, foregroundColorNames, backgroundColorNames, colorNames, ansiStyles, ansi_styles_default, init_ansi_styles, env, flagForceColor, supportsColor, supports_color_default, init_supports_color, init_utilities, stdoutColor, stderrColor, GENERATOR, STYLER, IS_EMPTY, levelMapping, styles22, applyOptions, chalkFactory, getModelAnsi, usedModels, proto, createStyler, createBuilder, applyStyle, chalk, chalkStderr, source_default, init_source, require_old, require_fs, require_path, require_balanced_match, require_brace_expansion, require_minimatch, require_inherits_browser, require_inherits, require_common2, require_sync, require_wrappy, require_once, require_inflight, require_glob, require_readline, require_src2, require_utils, require_lodash, require_hanji, originUUID, snapshotVersion, mapValues, mapKeys, mapEntries, customMapEntries, init_global2, util3, objectUtil2, ZodParsedType2, getParsedType2, init_util2, ZodIssueCode2, ZodError3, init_ZodError2, errorMap2, en_default2, init_en2, overrideErrorMap2, init_errors4, makeIssue2, ParseStatus2, INVALID2, DIRTY2, OK2, isAborted2, isDirty2, isValid2, isAsync2, init_parseUtil2, init_typeAliases2, errorUtil2, init_errorUtil2, ParseInputLazyPath2, handleResult2, ZodType2, cuidRegex2, cuid2Regex2, ulidRegex2, uuidRegex2, nanoidRegex2, jwtRegex2, durationRegex2, emailRegex2, _emojiRegex2, emojiRegex2, ipv4Regex2, ipv4CidrRegex2, ipv6Regex2, ipv6CidrRegex2, base64Regex2, base64urlRegex2, dateRegexSource2, dateRegex2, ZodString2, ZodNumber2, ZodBigInt2, ZodBoolean2, ZodDate2, ZodSymbol2, ZodUndefined2, ZodNull2, ZodAny2, ZodUnknown2, ZodNever2, ZodVoid2, ZodArray2, ZodObject2, ZodUnion2, getDiscriminator2, ZodDiscriminatedUnion2, ZodIntersection2, ZodTuple2, ZodRecord2, ZodMap2, ZodSet2, ZodFunction2, ZodLazy2, ZodLiteral2, ZodEnum2, ZodNativeEnum2, ZodPromise2, ZodEffects2, ZodOptional2, ZodNullable2, ZodDefault2, ZodCatch2, ZodNaN2, BRAND2, ZodBranded2, ZodPipeline2, ZodReadonly2, late2, ZodFirstPartyTypeKind2, stringType2, numberType2, nanType2, bigIntType2, booleanType2, dateType2, symbolType2, undefinedType2, nullType2, anyType2, unknownType2, neverType2, voidType2, arrayType2, objectType2, strictObjectType2, unionType2, discriminatedUnionType2, intersectionType2, tupleType2, recordType2, mapType2, setType2, functionType2, lazyType2, literalType2, enumType2, nativeEnumType2, promiseType2, effectsType2, optionalType2, nullableType2, preprocessType2, pipelineType2, coerce2, init_types8, init_external2, init_v32, init_esm2, enumSchema, enumSchemaV1, indexColumn, index2, fk, sequenceSchema, roleSchema, sequenceSquashed, column2, checkConstraint, columnSquashed, compositePK, uniqueConstraint, policy, policySquashed, viewWithOption, matViewWithOption, mergedViewWithOption, view2, table15, schemaHash, kitInternals, gelSchemaExternal, gelSchemaInternal, tableSquashed, gelSchemaSquashed, gelSchema, dryGel, init_gelSchema, index22, fk2, column22, tableV3, compositePK2, uniqueConstraint2, checkConstraint2, tableV4, table22, viewMeta, view22, kitInternals2, dialect2, schemaHash2, schemaInternalV3, schemaInternalV4, schemaInternalV5, schemaInternal, schemaV3, schemaV4, schemaV5, schema2, tableSquashedV4, tableSquashed2, viewSquashed, schemaSquashed, schemaSquashedV4, MySqlSquasher, squashMysqlScheme, mysqlSchema, mysqlSchemaV5, mysqlSchemaSquashed, backwardCompatibleMysqlSchema, dryMySql, init_mysqlSchema, indexV2, columnV2, tableV2, enumSchemaV12, enumSchema2, pgSchemaV2, references, columnV1, tableV1, pgSchemaV1, indexColumn2, index3, indexV4, indexV5, indexV6, fk3, sequenceSchema2, roleSchema2, sequenceSquashed2, columnV7, column3, checkConstraint3, columnSquashed2, tableV32, compositePK3, uniqueConstraint3, policy2, policySquashed2, viewWithOption2, matViewWithOption2, mergedViewWithOption2, view3, tableV42, tableV5, tableV6, tableV7, table32, schemaHash3, kitInternals3, pgSchemaInternalV3, pgSchemaInternalV4, pgSchemaInternalV5, pgSchemaInternalV6, pgSchemaExternal, pgSchemaInternalV7, pgSchemaInternal, tableSquashed3, tableSquashedV42, pgSchemaSquashedV4, pgSchemaSquashedV6, pgSchemaSquashed, pgSchemaV3, pgSchemaV4, pgSchemaV5, pgSchemaV6, pgSchemaV7, pgSchema, backwardCompatiblePgSchema, PgSquasher, squashPgScheme, dryPg, init_pgSchema, index4, column4, compositePK4, uniqueConstraint4, table42, viewMeta2, kitInternals4, dialect22, schemaHash4, schemaInternal2, schema22, tableSquashed4, schemaSquashed2, SingleStoreSquasher, squashSingleStoreScheme, singlestoreSchema, singlestoreSchemaSquashed, backwardCompatibleSingleStoreSchema, drySingleStore, init_singlestoreSchema, index5, fk4, compositePK5, column5, tableV33, uniqueConstraint5, checkConstraint4, table52, view4, dialect3, schemaHash5, schemaInternalV32, schemaInternalV42, schemaInternalV52, kitInternals5, latestVersion, schemaInternal3, schemaV32, schemaV42, schemaV52, schema3, tableSquashed5, schemaSquashed3, SQLiteSquasher, squashSqliteScheme, drySQLite, sqliteSchemaV5, sqliteSchema, SQLiteSchemaSquashed, backwardCompatibleSqliteSchema, init_sqliteSchema, copy, prepareMigrationMeta, schemaRenameKey, tableRenameKey, columnRenameKey, init_utils5, import_hanji, warning, error, isRenamePromptItem, ResolveColumnSelect, tableKey, ResolveSelectNamed, ResolveSelect, ResolveSchemasSelect, Spinner2, ProgressView, init_views, glob, init_serializer, fillPgSnapshot, init_migrationPreparator, require_heap, require_heap2, require_difflib, require_difflib2, require_util, require_styles, require_has_flag2, require_supports_colors, require_trap, require_zalgo, require_america, require_zebra, require_rainbow, require_random, require_colors, require_safe, require_colorize, require_lib, import_json_diff, mapArraysDiff, findAlternationsInTable, alternationsInColumn, init_jsonDiffer, parseType, Convertor, PgCreateRoleConvertor, PgDropRoleConvertor, PgRenameRoleConvertor, PgAlterRoleConvertor, PgCreatePolicyConvertor, PgDropPolicyConvertor, PgRenamePolicyConvertor, PgAlterPolicyConvertor, PgCreateIndPolicyConvertor, PgDropIndPolicyConvertor, PgRenameIndPolicyConvertor, PgAlterIndPolicyConvertor, PgEnableRlsConvertor, PgDisableRlsConvertor, PgCreateTableConvertor, MySqlCreateTableConvertor, SingleStoreCreateTableConvertor, SQLiteCreateTableConvertor, PgCreateViewConvertor, MySqlCreateViewConvertor, SqliteCreateViewConvertor, PgDropViewConvertor, MySqlDropViewConvertor, SqliteDropViewConvertor, MySqlAlterViewConvertor, PgRenameViewConvertor, MySqlRenameViewConvertor, PgAlterViewSchemaConvertor, PgAlterViewAddWithOptionConvertor, PgAlterViewDropWithOptionConvertor, PgAlterViewAlterTablespaceConvertor, PgAlterViewAlterUsingConvertor, PgAlterTableAlterColumnSetGenerated, PgAlterTableAlterColumnDropGenerated, PgAlterTableAlterColumnAlterGenerated, PgAlterTableAddUniqueConstraintConvertor, PgAlterTableDropUniqueConstraintConvertor, PgAlterTableAddCheckConstraintConvertor, PgAlterTableDeleteCheckConstraintConvertor, MySQLAlterTableAddUniqueConstraintConvertor, MySQLAlterTableDropUniqueConstraintConvertor, MySqlAlterTableAddCheckConstraintConvertor, SingleStoreAlterTableAddUniqueConstraintConvertor, SingleStoreAlterTableDropUniqueConstraintConvertor, MySqlAlterTableDeleteCheckConstraintConvertor, CreatePgSequenceConvertor, DropPgSequenceConvertor, RenamePgSequenceConvertor, MovePgSequenceConvertor, AlterPgSequenceConvertor, CreateTypeEnumConvertor, DropTypeEnumConvertor, AlterTypeAddValueConvertor, AlterTypeSetSchemaConvertor, AlterRenameTypeConvertor, AlterTypeDropValueConvertor, PgDropTableConvertor, MySQLDropTableConvertor, SingleStoreDropTableConvertor, SQLiteDropTableConvertor, PgRenameTableConvertor, SqliteRenameTableConvertor, MySqlRenameTableConvertor, SingleStoreRenameTableConvertor, PgAlterTableRenameColumnConvertor, MySqlAlterTableRenameColumnConvertor, SingleStoreAlterTableRenameColumnConvertor, SQLiteAlterTableRenameColumnConvertor, PgAlterTableDropColumnConvertor, MySqlAlterTableDropColumnConvertor, SingleStoreAlterTableDropColumnConvertor, SQLiteAlterTableDropColumnConvertor, PgAlterTableAddColumnConvertor, MySqlAlterTableAddColumnConvertor, SingleStoreAlterTableAddColumnConvertor, SQLiteAlterTableAddColumnConvertor, PgAlterTableAlterColumnSetTypeConvertor, PgAlterTableAlterColumnSetDefaultConvertor, PgAlterTableAlterColumnDropDefaultConvertor, PgAlterTableAlterColumnDropGeneratedConvertor, PgAlterTableAlterColumnSetExpressionConvertor, PgAlterTableAlterColumnAlterrGeneratedConvertor, SqliteAlterTableAlterColumnDropGeneratedConvertor, SqliteAlterTableAlterColumnSetExpressionConvertor, SqliteAlterTableAlterColumnAlterGeneratedConvertor, MySqlAlterTableAlterColumnAlterrGeneratedConvertor, MySqlAlterTableAddPk, MySqlAlterTableDropPk, LibSQLModifyColumn, MySqlModifyColumn, SingleStoreAlterTableAlterColumnAlterrGeneratedConvertor, SingleStoreAlterTableAddPk, SingleStoreAlterTableDropPk, SingleStoreModifyColumn, PgAlterTableCreateCompositePrimaryKeyConvertor, PgAlterTableDeleteCompositePrimaryKeyConvertor, PgAlterTableAlterCompositePrimaryKeyConvertor, MySqlAlterTableCreateCompositePrimaryKeyConvertor, MySqlAlterTableDeleteCompositePrimaryKeyConvertor, MySqlAlterTableAlterCompositePrimaryKeyConvertor, PgAlterTableAlterColumnSetPrimaryKeyConvertor, PgAlterTableAlterColumnDropPrimaryKeyConvertor, PgAlterTableAlterColumnSetNotNullConvertor, PgAlterTableAlterColumnDropNotNullConvertor, PgCreateForeignKeyConvertor, LibSQLCreateForeignKeyConvertor, MySqlCreateForeignKeyConvertor, PgAlterForeignKeyConvertor, PgDeleteForeignKeyConvertor, MySqlDeleteForeignKeyConvertor, CreatePgIndexConvertor, CreateMySqlIndexConvertor, CreateSingleStoreIndexConvertor, CreateSqliteIndexConvertor, PgDropIndexConvertor, PgCreateSchemaConvertor, PgRenameSchemaConvertor, PgDropSchemaConvertor, PgAlterTableSetSchemaConvertor, PgAlterTableSetNewSchemaConvertor, PgAlterTableRemoveFromSchemaConvertor, SqliteDropIndexConvertor, MySqlDropIndexConvertor, SingleStoreDropIndexConvertor, SQLiteRecreateTableConvertor, LibSQLRecreateTableConvertor, SingleStoreRecreateTableConvertor, convertors, init_sqlgenerator, _moveDataStatements, getOldTableName, getNewTableName, logSuggestionsAndReturn, init_sqlitePushUtils, preparePgCreateTableJson, prepareMySqlCreateTableJson, prepareSingleStoreCreateTableJson, prepareSQLiteCreateTable, prepareDropTableJson, prepareRenameTableJson, prepareCreateEnumJson, prepareAddValuesToEnumJson, prepareDropEnumValues, prepareDropEnumJson, prepareMoveEnumJson, prepareRenameEnumJson, prepareCreateSequenceJson, prepareAlterSequenceJson, prepareDropSequenceJson, prepareMoveSequenceJson, prepareRenameSequenceJson, prepareCreateRoleJson, prepareAlterRoleJson, prepareDropRoleJson, prepareRenameRoleJson, prepareCreateSchemasJson, prepareRenameSchemasJson, prepareDeleteSchemasJson, prepareRenameColumns, _prepareDropColumns, _prepareAddColumns, _prepareSqliteAddColumns, prepareAlterColumnsMysql, preparePgAlterColumns, prepareSqliteAlterColumns, prepareRenamePolicyJsons, prepareRenameIndPolicyJsons, prepareCreatePolicyJsons, prepareCreateIndPolicyJsons, prepareDropPolicyJsons, prepareDropIndPolicyJsons, prepareAlterPolicyJson, prepareAlterIndPolicyJson, preparePgCreateIndexesJson, prepareCreateIndexesJson, prepareCreateReferencesJson, prepareLibSQLCreateReferencesJson, prepareDropReferencesJson, prepareLibSQLDropReferencesJson, prepareAlterReferencesJson, prepareDropIndexesJson, prepareAddCompositePrimaryKeySqlite, prepareDeleteCompositePrimaryKeySqlite, prepareAlterCompositePrimaryKeySqlite, prepareAddCompositePrimaryKeyPg, prepareDeleteCompositePrimaryKeyPg, prepareAlterCompositePrimaryKeyPg, prepareAddUniqueConstraintPg, prepareDeleteUniqueConstraintPg, prepareAddCheckConstraint, prepareDeleteCheckConstraint, prepareAddCompositePrimaryKeyMySql, prepareDeleteCompositePrimaryKeyMySql, prepareAlterCompositePrimaryKeyMySql, preparePgCreateViewJson, prepareMySqlCreateViewJson, prepareSqliteCreateViewJson, prepareDropViewJson, prepareRenameViewJson, preparePgAlterViewAlterSchemaJson, preparePgAlterViewAddWithOptionJson, preparePgAlterViewDropWithOptionJson, preparePgAlterViewAlterTablespaceJson, preparePgAlterViewAlterUsingJson, prepareMySqlAlterView, init_jsonStatements, prepareLibSQLRecreateTable, prepareSQLiteRecreateTable, libSQLCombineStatements, sqliteCombineStatements, prepareSingleStoreRecreateTable, singleStoreCombineStatements, init_statementCombiner, snapshotsDiffer_exports, makeChanged, makeSelfOrChanged, makePatched, makeSelfOrPatched, columnSchema, alteredColumnSchema, enumSchema3, changedEnumSchema, tableScheme, alteredTableScheme, alteredViewCommon, alteredPgViewSchema, alteredMySqlViewSchema, diffResultScheme, diffResultSchemeMysql, diffResultSchemeSingleStore, diffResultSchemeSQLite, schemaChangeFor, nameChangeFor, nameSchemaChangeFor, columnChangeFor, applyPgSnapshotsDiff, applyMysqlSnapshotsDiff, applySingleStoreSnapshotsDiff, applySqliteSnapshotsDiff, applyLibSQLSnapshotsDiff, init_snapshotsDiffer, init_words, dialects, dialect4, commonSquashedSchema, commonSchema, init_schemaValidator, sqliteDriversLiterals, postgresqlDriversLiterals, prefixes, prefix, casingTypes, casingType, sqliteDriver, postgresDriver, driver2, configMigrations, configCommonSchema, casing, introspectParams, configIntrospectCliSchema, configGenerateSchema, configPushSchema, init_common2, withStyle, init_outputs, import_hanji2, schemasResolver, tablesResolver, viewsResolver, mySqlViewsResolver, sqliteViewsResolver, sequencesResolver, roleResolver, policyResolver, indPolicyResolver, enumsResolver, columnsResolver, promptColumnsConflicts, promptNamedConflict, promptNamedWithSchemasConflict, promptSchemasConflict, BREAKPOINT, init_migrate, posixClasses, braceEscape, regexpEscape, rangesToString, parseClass, init_brace_expressions, escape, init_escape, unescape, init_unescape, import_brace_expansion, minimatch, starDotExtRE, starDotExtTest, starDotExtTestDot, starDotExtTestNocase, starDotExtTestNocaseDot, starDotStarRE, starDotStarTest, starDotStarTestDot, dotStarRE, dotStarTest, starRE, starTest, starTestDot, qmarksRE, qmarksTestNocase, qmarksTestNocaseDot, qmarksTestDot, qmarksTest, qmarksTestNoExt, qmarksTestNoExtDot, defaultPlatform, path, sep, GLOBSTAR, plTypes, qmark, star, twoStarDot, twoStarNoDot, charSet, reSpecials, addPatternStartSet, filter, ext, defaults, braceExpand, MAX_PATTERN_LENGTH, assertValidPattern, makeRe, match2, globUnescape, globMagic, regExpEscape, Minimatch, init_mjs, entityKind2, hasOwnEntityKind2, init_entity2, _a, Column2, init_column2, _a2, ColumnBuilder2, init_column_builder2, TableName2, init_table_utils2, _a3, ForeignKeyBuilder2, _a4, ForeignKey2, init_foreign_keys2, init_tracing_utils2, _a5, UniqueConstraintBuilder, _a6, UniqueOnConstraintBuilder, _a7, UniqueConstraint, init_unique_constraint2, init_array2, _a8, _b, PgColumnBuilder2, _a9, _b2, PgColumn2, _a10, _b3, ExtraConfigColumn2, _a11, IndexedColumn2, _a12, _b4, PgArrayBuilder2, _a13, _b5, _PgArray, PgArray2, init_common22, _a14, _b6, PgEnumObjectColumnBuilder2, _a15, _b7, PgEnumObjectColumn2, isPgEnumSym2, _a16, _b8, PgEnumColumnBuilder2, _a17, _b9, PgEnumColumn2, init_enum2, _a18, Subquery2, _a19, _b10, WithSubquery2, init_subquery2, version2, init_version2, otel2, rawTracer2, tracer2, init_tracing2, ViewBaseConfig2, init_view_common3, Schema2, Columns2, ExtraConfigColumns2, OriginalName2, BaseName2, IsAlias2, ExtraConfigBuilder2, IsDrizzleTable2, _a20, _b11, _c, _d, _e2, _f, _g, _h, _i, _j, Table2, init_table15, _a21, FakePrimitiveParam, _a22, StringChunk2, _a23, _SQL, SQL2, _a24, Name2, noopDecoder2, noopEncoder2, noopMapper2, _a25, Param2, _a26, Placeholder2, IsDrizzleView2, _a27, _b12, _c2, View3, init_sql3, _a28, ColumnAliasProxyHandler2, _a29, TableAliasProxyHandler2, _a30, RelationTableAliasProxyHandler, init_alias3, _a31, _b13, DrizzleError2, DrizzleQueryError, _a32, _b14, TransactionRollbackError2, init_errors22, _a33, ConsoleLogWriter2, _a34, DefaultLogger2, _a35, NoopLogger2, init_logger3, init_operations, _a36, _b15, QueryPromise2, init_query_promise2, textDecoder, init_utils22, _a37, _b16, PgIntColumnBaseBuilder2, init_int_common2, _a38, _b17, PgBigInt53Builder2, _a39, _b18, PgBigInt532, _a40, _b19, PgBigInt64Builder2, _a41, _b20, PgBigInt642, init_bigint2, _a42, _b21, PgBigSerial53Builder2, _a43, _b22, PgBigSerial532, _a44, _b23, PgBigSerial64Builder2, _a45, _b24, PgBigSerial642, init_bigserial2, _a46, _b25, PgBooleanBuilder2, _a47, _b26, PgBoolean2, init_boolean2, _a48, _b27, PgCharBuilder2, _a49, _b28, PgChar2, init_char2, _a50, _b29, PgCidrBuilder2, _a51, _b30, PgCidr2, init_cidr2, _a52, _b31, PgCustomColumnBuilder2, _a53, _b32, PgCustomColumn2, init_custom2, _a54, _b33, PgDateColumnBaseBuilder2, init_date_common2, _a55, _b34, PgDateBuilder2, _a56, _b35, PgDate2, _a57, _b36, PgDateStringBuilder2, _a58, _b37, PgDateString2, init_date2, _a59, _b38, PgDoublePrecisionBuilder2, _a60, _b39, PgDoublePrecision2, init_double_precision2, _a61, _b40, PgInetBuilder2, _a62, _b41, PgInet2, init_inet2, _a63, _b42, PgIntegerBuilder2, _a64, _b43, PgInteger2, init_integer2, _a65, _b44, PgIntervalBuilder2, _a66, _b45, PgInterval2, init_interval2, _a67, _b46, PgJsonBuilder2, _a68, _b47, PgJson2, init_json2, _a69, _b48, PgJsonbBuilder2, _a70, _b49, PgJsonb2, init_jsonb2, _a71, _b50, PgLineBuilder2, _a72, _b51, PgLineTuple2, _a73, _b52, PgLineABCBuilder2, _a74, _b53, PgLineABC2, init_line2, _a75, _b54, PgMacaddrBuilder2, _a76, _b55, PgMacaddr2, init_macaddr2, _a77, _b56, PgMacaddr8Builder2, _a78, _b57, PgMacaddr82, init_macaddr82, _a79, _b58, PgNumericBuilder2, _a80, _b59, PgNumeric2, _a81, _b60, PgNumericNumberBuilder2, _a82, _b61, PgNumericNumber2, _a83, _b62, PgNumericBigIntBuilder2, _a84, _b63, PgNumericBigInt2, init_numeric2, _a85, _b64, PgPointTupleBuilder2, _a86, _b65, PgPointTuple2, _a87, _b66, PgPointObjectBuilder2, _a88, _b67, PgPointObject2, init_point2, init_utils32, _a89, _b68, PgGeometryBuilder2, _a90, _b69, PgGeometry2, _a91, _b70, PgGeometryObjectBuilder2, _a92, _b71, PgGeometryObject2, init_geometry2, _a93, _b72, PgRealBuilder2, _a94, _b73, PgReal2, init_real2, _a95, _b74, PgSerialBuilder2, _a96, _b75, PgSerial2, init_serial2, _a97, _b76, PgSmallIntBuilder2, _a98, _b77, PgSmallInt2, init_smallint2, _a99, _b78, PgSmallSerialBuilder2, _a100, _b79, PgSmallSerial2, init_smallserial2, _a101, _b80, PgTextBuilder2, _a102, _b81, PgText2, init_text2, _a103, _b82, PgTimeBuilder2, _a104, _b83, PgTime2, init_time2, _a105, _b84, PgTimestampBuilder2, _a106, _b85, PgTimestamp2, _a107, _b86, PgTimestampStringBuilder2, _a108, _b87, PgTimestampString2, init_timestamp2, _a109, _b88, PgUUIDBuilder2, _a110, _b89, PgUUID2, init_uuid3, _a111, _b90, PgVarcharBuilder2, _a112, _b91, PgVarchar2, init_varchar2, _a113, _b92, PgBinaryVectorBuilder2, _a114, _b93, PgBinaryVector2, init_bit2, _a115, _b94, PgHalfVectorBuilder2, _a116, _b95, PgHalfVector2, init_halfvec2, _a117, _b96, PgSparseVectorBuilder2, _a118, _b97, PgSparseVector2, init_sparsevec2, _a119, _b98, PgVectorBuilder2, _a120, _b99, PgVector2, init_vector3, init_all2, InlineForeignKeys2, EnableRLS2, _a121, _b100, _c3, _d2, _e22, _f2, PgTable2, pgTable2, init_table22, _a122, PrimaryKeyBuilder2, _a123, PrimaryKey2, init_primary_keys2, eq2, ne3, gt3, gte2, lt3, lte2, init_conditions2, init_select3, init_expressions2, _a124, Relation2, _a125, Relations2, _a126, _b101, _One, One2, _a127, _b102, _Many, Many2, init_relations2, init_aggregate2, init_vector22, init_functions2, init_sql22, dist_exports, init_dist5, init_alias22, _a128, CheckBuilder, _a129, Check, init_checks2, init_columns2, _a130, _SelectionProxyHandler, SelectionProxyHandler2, init_selection_proxy2, _a131, IndexBuilderOn2, _a132, IndexBuilder2, _a133, Index2, init_indexes2, _a134, PgPolicy, init_policies2, PgViewConfig2, init_view_common22, _a135, CasingCache2, init_casing2, _a136, _b103, PgViewBase2, init_view_base2, _a137, PgDialect2, init_dialect2, _a138, TypedQueryBuilder2, init_query_builder3, _a139, PgSelectBuilder2, _a140, _b104, PgSelectQueryBuilderBase2, _a141, _b105, PgSelectBase2, getPgSetOperators2, union2, unionAll2, intersect2, intersectAll2, except2, exceptAll2, init_select22, _a142, QueryBuilder2, init_query_builder22, _a143, DefaultViewBuilderCore, _a144, _b106, ViewBuilder, _a145, _b107, ManualViewBuilder, _a146, MaterializedViewBuilderCore, _a147, _b108, MaterializedViewBuilder, _a148, _b109, ManualMaterializedViewBuilder, _a149, _b110, _c4, PgView2, PgMaterializedViewConfig2, _a150, _b111, _c5, PgMaterializedView, init_view2, init_utils42, _a151, _b112, PgDeleteBase2, init_delete2, _a152, PgInsertBuilder2, _a153, _b113, PgInsertBase2, init_insert2, _a154, _b114, PgRefreshMaterializedView2, init_refresh_materialized_view2, init_select_types, _a155, PgUpdateBuilder2, _a156, _b115, PgUpdateBase2, init_update2, init_query_builders2, _a157, _b116, _c6, _PgCountBuilder, PgCountBuilder2, init_count2, _a158, RelationalQueryBuilder2, _a159, _b117, PgRelationalQuery2, init_query2, _a160, _b118, PgRaw2, init_raw2, _a161, PgDatabase2, init_db2, _a162, PgRole, init_roles2, _a163, PgSequence, init_sequence2, _a164, PgSchema5, init_schema3, _a165, Cache, _a166, _b119, NoopCache, init_cache, _a167, PgPreparedQuery2, _a168, PgSession2, _a169, _b120, PgTransaction2, init_session3, init_subquery22, init_utils52, init_pg_core2, vectorOps, init_vector32, sqlToStr, init_utils6, indexName, generatePgSnapshot, trimChar, fromDatabase, defaultForColumn, getColumnsInfoQuery, init_pgSerializer, import_hanji4, Select, init_selector_ui, init_alias32, _a170, CheckBuilder2, _a171, Check2, init_checks22, _a172, ForeignKeyBuilder22, _a173, ForeignKey22, init_foreign_keys22, _a174, UniqueConstraintBuilder2, _a175, UniqueOnConstraintBuilder2, _a176, UniqueConstraint2, init_unique_constraint22, _a177, _b121, SQLiteColumnBuilder, _a178, _b122, SQLiteColumn, init_common3, _a179, _b123, SQLiteBigIntBuilder, _a180, _b124, SQLiteBigInt, _a181, _b125, SQLiteBlobJsonBuilder, _a182, _b126, SQLiteBlobJson, _a183, _b127, SQLiteBlobBufferBuilder, _a184, _b128, SQLiteBlobBuffer, init_blob, _a185, _b129, SQLiteCustomColumnBuilder, _a186, _b130, SQLiteCustomColumn, init_custom22, _a187, _b131, SQLiteBaseIntegerBuilder, _a188, _b132, SQLiteBaseInteger, _a189, _b133, SQLiteIntegerBuilder, _a190, _b134, SQLiteInteger, _a191, _b135, SQLiteTimestampBuilder, _a192, _b136, SQLiteTimestamp, _a193, _b137, SQLiteBooleanBuilder, _a194, _b138, SQLiteBoolean, init_integer22, _a195, _b139, SQLiteNumericBuilder, _a196, _b140, SQLiteNumeric, _a197, _b141, SQLiteNumericNumberBuilder, _a198, _b142, SQLiteNumericNumber, _a199, _b143, SQLiteNumericBigIntBuilder, _a200, _b144, SQLiteNumericBigInt, init_numeric22, _a201, _b145, SQLiteRealBuilder, _a202, _b146, SQLiteReal, init_real22, _a203, _b147, SQLiteTextBuilder, _a204, _b148, SQLiteText, _a205, _b149, SQLiteTextJsonBuilder, _a206, _b150, SQLiteTextJson, init_text22, init_columns22, init_all22, InlineForeignKeys22, _a207, _b151, _c7, _d3, _e3, SQLiteTable, sqliteTable, init_table32, _a208, IndexBuilderOn22, _a209, IndexBuilder22, _a210, Index4, init_indexes22, _a211, PrimaryKeyBuilder22, _a212, PrimaryKey22, init_primary_keys22, init_utils7, _a213, _b152, SQLiteDeleteBase, init_delete22, _a214, _b153, SQLiteViewBase, init_view_base22, _a215, SQLiteDialect, _a216, _b154, SQLiteSyncDialect, _a217, _b155, SQLiteAsyncDialect, init_dialect22, _a218, SQLiteSelectBuilder, _a219, _b156, SQLiteSelectQueryBuilderBase, _a220, _b157, SQLiteSelectBase, getSQLiteSetOperators, union3, unionAll22, intersect22, except22, init_select32, _a221, QueryBuilder22, init_query_builder32, _a222, SQLiteInsertBuilder, _a223, _b158, SQLiteInsertBase, init_insert22, init_select_types2, _a224, SQLiteUpdateBuilder, _a225, _b159, SQLiteUpdateBase, init_update22, init_query_builders22, _a226, _b160, _c8, _SQLiteCountBuilder, SQLiteCountBuilder, init_count22, _a227, RelationalQueryBuilder22, _a228, _b161, SQLiteRelationalQuery, _a229, _b162, SQLiteSyncRelationalQuery, init_query22, _a230, _b163, SQLiteRaw, init_raw22, _a231, BaseSQLiteDatabase, init_db22, _a232, _b164, ExecuteResultSync, _a233, SQLitePreparedQuery, _a234, SQLiteSession, _a235, _b165, SQLiteTransaction, init_session22, init_subquery3, _a236, ViewBuilderCore, _a237, _b166, ViewBuilder2, _a238, _b167, ManualViewBuilder2, _a239, _b168, SQLiteView2, init_view22, init_sqlite_core, generateSqliteSnapshot, fromDatabase2, init_sqliteSerializer, getTablesFilterByExtensions, init_getTablesFilterByExtensions, init_alias4, _a240, CheckBuilder3, _a241, Check3, init_checks3, _a242, ForeignKeyBuilder3, _a243, ForeignKey3, init_foreign_keys3, _a244, UniqueConstraintBuilder3, _a245, UniqueOnConstraintBuilder3, _a246, UniqueConstraint3, init_unique_constraint3, _a247, _b169, MySqlColumnBuilder, _a248, _b170, MySqlColumn, _a249, _b171, MySqlColumnBuilderWithAutoIncrement, _a250, _b172, MySqlColumnWithAutoIncrement, init_common4, _a251, _b173, MySqlBigInt53Builder, _a252, _b174, MySqlBigInt53, _a253, _b175, MySqlBigInt64Builder, _a254, _b176, MySqlBigInt64, init_bigint22, _a255, _b177, MySqlBinaryBuilder, _a256, _b178, MySqlBinary, init_binary, _a257, _b179, MySqlBooleanBuilder, _a258, _b180, MySqlBoolean, init_boolean22, _a259, _b181, MySqlCharBuilder, _a260, _b182, MySqlChar, init_char22, _a261, _b183, MySqlCustomColumnBuilder, _a262, _b184, MySqlCustomColumn, init_custom3, _a263, _b185, MySqlDateBuilder, _a264, _b186, MySqlDate, _a265, _b187, MySqlDateStringBuilder, _a266, _b188, MySqlDateString, init_date22, _a267, _b189, MySqlDateTimeBuilder, _a268, _b190, MySqlDateTime, _a269, _b191, MySqlDateTimeStringBuilder, _a270, _b192, MySqlDateTimeString, init_datetime, _a271, _b193, MySqlDecimalBuilder, _a272, _b194, MySqlDecimal, _a273, _b195, MySqlDecimalNumberBuilder, _a274, _b196, MySqlDecimalNumber, _a275, _b197, MySqlDecimalBigIntBuilder, _a276, _b198, MySqlDecimalBigInt, init_decimal, _a277, _b199, MySqlDoubleBuilder, _a278, _b200, MySqlDouble, init_double, _a279, _b201, MySqlEnumColumnBuilder, _a280, _b202, MySqlEnumColumn, _a281, _b203, MySqlEnumObjectColumnBuilder, _a282, _b204, MySqlEnumObjectColumn, init_enum22, _a283, _b205, MySqlFloatBuilder, _a284, _b206, MySqlFloat, init_float, _a285, _b207, MySqlIntBuilder, _a286, _b208, MySqlInt, init_int, _a287, _b209, MySqlJsonBuilder, _a288, _b210, MySqlJson, init_json22, _a289, _b211, MySqlMediumIntBuilder, _a290, _b212, MySqlMediumInt, init_mediumint, _a291, _b213, MySqlRealBuilder, _a292, _b214, MySqlReal, init_real3, _a293, _b215, MySqlSerialBuilder, _a294, _b216, MySqlSerial, init_serial22, _a295, _b217, MySqlSmallIntBuilder, _a296, _b218, MySqlSmallInt, init_smallint22, _a297, _b219, MySqlTextBuilder, _a298, _b220, MySqlText, init_text3, _a299, _b221, MySqlTimeBuilder, _a300, _b222, MySqlTime, init_time22, _a301, _b223, MySqlDateColumnBaseBuilder, _a302, _b224, MySqlDateBaseColumn, init_date_common22, _a303, _b225, MySqlTimestampBuilder, _a304, _b226, MySqlTimestamp, _a305, _b227, MySqlTimestampStringBuilder, _a306, _b228, MySqlTimestampString, init_timestamp22, _a307, _b229, MySqlTinyIntBuilder, _a308, _b230, MySqlTinyInt, init_tinyint, _a309, _b231, MySqlVarBinaryBuilder, _a310, _b232, MySqlVarBinary, init_varbinary, _a311, _b233, MySqlVarCharBuilder, _a312, _b234, MySqlVarChar, init_varchar22, _a313, _b235, MySqlYearBuilder, _a314, _b236, MySqlYear, init_year, init_columns3, _a315, _b237, _c9, _MySqlCountBuilder, MySqlCountBuilder, init_count3, _a316, IndexBuilderOn3, _a317, IndexBuilder3, _a318, Index5, init_indexes3, init_all3, InlineForeignKeys3, _a319, _b238, _c10, _d4, _e4, MySqlTable, mysqlTable, init_table42, _a320, PrimaryKeyBuilder3, _a321, PrimaryKey3, init_primary_keys3, MySqlViewConfig, init_view_common32, init_utils8, _a322, _b239, MySqlDeleteBase, init_delete3, _a323, _b240, MySqlViewBase, init_view_base3, _a324, MySqlDialect, init_dialect3, _a325, MySqlSelectBuilder, _a326, _b241, MySqlSelectQueryBuilderBase, _a327, _b242, MySqlSelectBase, getMySqlSetOperators, union4, unionAll3, intersect3, intersectAll22, except3, exceptAll22, init_select4, _a328, QueryBuilder3, init_query_builder4, _a329, MySqlInsertBuilder, _a330, _b243, MySqlInsertBase, init_insert3, init_select_types3, _a331, MySqlUpdateBuilder, _a332, _b244, MySqlUpdateBase, init_update3, init_query_builders3, _a333, RelationalQueryBuilder3, _a334, _b245, MySqlRelationalQuery, init_query3, _a335, MySqlDatabase, init_db3, _a336, ViewBuilderCore2, _a337, _b246, ViewBuilder3, _a338, _b247, ManualViewBuilder3, _a339, _b248, _c11, MySqlView2, init_view3, _a340, MySqlSchema5, init_schema22, _a341, MySqlPreparedQuery, _a342, MySqlSession, _a343, _b249, MySqlTransaction, init_session32, init_subquery4, init_mysql_core, handleEnumType, generateMySqlSnapshot, fromDatabase3, init_mysqlSerializer, cliConfigGenerate, pushParams, pullParams, configCheck, cliConfigCheck, init_cli, gelCredentials, init_gel, libSQLCredentials, init_libsql, mysqlCredentials, init_mysql, postgresCredentials, init_postgres, singlestoreCredentials, init_singlestore, sqliteCredentials, init_sqlite, credentials, studioCliParams, studioConfig, init_studio, es5_exports, _3, es5_default, init_es5, import_hanji7, assertES5, safeRegister, migrateConfig, init_utils9, prepareFromExports, init_pgImports, init_alias5, _a344, UniqueConstraintBuilder4, _a345, UniqueOnConstraintBuilder4, _a346, UniqueConstraint4, init_unique_constraint4, _a347, _b250, SingleStoreColumnBuilder, _a348, _b251, SingleStoreColumn, _a349, _b252, SingleStoreColumnBuilderWithAutoIncrement, _a350, _b253, SingleStoreColumnWithAutoIncrement, init_common5, _a351, _b254, SingleStoreBigInt53Builder, _a352, _b255, SingleStoreBigInt53, _a353, _b256, SingleStoreBigInt64Builder, _a354, _b257, SingleStoreBigInt64, init_bigint3, _a355, _b258, SingleStoreBinaryBuilder, _a356, _b259, SingleStoreBinary, init_binary2, _a357, _b260, SingleStoreBooleanBuilder, _a358, _b261, SingleStoreBoolean, init_boolean3, _a359, _b262, SingleStoreCharBuilder, _a360, _b263, SingleStoreChar, init_char3, _a361, _b264, SingleStoreCustomColumnBuilder, _a362, _b265, SingleStoreCustomColumn, init_custom4, _a363, _b266, SingleStoreDateBuilder, _a364, _b267, SingleStoreDate, _a365, _b268, SingleStoreDateStringBuilder, _a366, _b269, SingleStoreDateString, init_date3, _a367, _b270, SingleStoreDateTimeBuilder, _a368, _b271, SingleStoreDateTime, _a369, _b272, SingleStoreDateTimeStringBuilder, _a370, _b273, SingleStoreDateTimeString, init_datetime2, _a371, _b274, SingleStoreDecimalBuilder, _a372, _b275, SingleStoreDecimal, _a373, _b276, SingleStoreDecimalNumberBuilder, _a374, _b277, SingleStoreDecimalNumber, _a375, _b278, SingleStoreDecimalBigIntBuilder, _a376, _b279, SingleStoreDecimalBigInt, init_decimal2, _a377, _b280, SingleStoreDoubleBuilder, _a378, _b281, SingleStoreDouble, init_double2, _a379, _b282, SingleStoreEnumColumnBuilder, _a380, _b283, SingleStoreEnumColumn, init_enum3, _a381, _b284, SingleStoreFloatBuilder, _a382, _b285, SingleStoreFloat, init_float2, _a383, _b286, SingleStoreIntBuilder, _a384, _b287, SingleStoreInt, init_int2, _a385, _b288, SingleStoreJsonBuilder, _a386, _b289, SingleStoreJson, init_json3, _a387, _b290, SingleStoreMediumIntBuilder, _a388, _b291, SingleStoreMediumInt, init_mediumint2, _a389, _b292, SingleStoreRealBuilder, _a390, _b293, SingleStoreReal, init_real4, _a391, _b294, SingleStoreSerialBuilder, _a392, _b295, SingleStoreSerial, init_serial3, _a393, _b296, SingleStoreSmallIntBuilder, _a394, _b297, SingleStoreSmallInt, init_smallint3, _a395, _b298, SingleStoreTextBuilder, _a396, _b299, SingleStoreText, init_text4, _a397, _b300, SingleStoreTimeBuilder, _a398, _b301, SingleStoreTime, init_time3, _a399, _b302, SingleStoreDateColumnBaseBuilder, _a400, _b303, SingleStoreDateBaseColumn, init_date_common3, _a401, _b304, SingleStoreTimestampBuilder, _a402, _b305, SingleStoreTimestamp, _a403, _b306, SingleStoreTimestampStringBuilder, _a404, _b307, SingleStoreTimestampString, init_timestamp3, _a405, _b308, SingleStoreTinyIntBuilder, _a406, _b309, SingleStoreTinyInt, init_tinyint2, _a407, _b310, SingleStoreVarBinaryBuilder, _a408, _b311, SingleStoreVarBinary, init_varbinary2, _a409, _b312, SingleStoreVarCharBuilder, _a410, _b313, SingleStoreVarChar, init_varchar3, _a411, _b314, SingleStoreVectorBuilder, _a412, _b315, SingleStoreVector, init_vector4, _a413, _b316, SingleStoreYearBuilder, _a414, _b317, SingleStoreYear, init_year2, init_columns4, _a415, _b318, _c12, _SingleStoreCountBuilder, SingleStoreCountBuilder, init_count4, _a416, IndexBuilderOn4, _a417, IndexBuilder4, _a418, Index6, init_indexes4, init_all4, _a419, _b319, _c13, _d5, SingleStoreTable, init_table52, _a420, PrimaryKeyBuilder4, _a421, PrimaryKey4, init_primary_keys4, init_utils10, _a422, _b320, SingleStoreDeleteBase, init_delete4, _a423, SingleStoreInsertBuilder, _a424, _b321, SingleStoreInsertBase, init_insert4, _a425, SingleStoreDialect, init_dialect4, _a426, SingleStoreSelectBuilder, _a427, _b322, SingleStoreSelectQueryBuilderBase, _a428, _b323, SingleStoreSelectBase, getSingleStoreSetOperators, union5, unionAll4, intersect4, except4, minus, init_select5, _a429, QueryBuilder4, init_query_builder5, init_select_types4, _a430, SingleStoreUpdateBuilder, _a431, _b324, SingleStoreUpdateBase, init_update4, init_query_builders4, _a432, SingleStoreDatabase, init_db4, _a433, SingleStoreSchema5, init_schema32, _a434, SingleStorePreparedQuery, _a435, SingleStoreSession, _a436, _b325, SingleStoreTransaction, init_session4, init_subquery5, init_singlestore_core, dialect5, generateSingleStoreSnapshot, fromDatabase4, init_singlestoreSerializer, sqliteImports_exports, prepareFromExports2, prepareFromSqliteImports, init_sqliteImports, mysqlImports_exports, prepareFromExports3, prepareFromMySqlImports, init_mysqlImports, mysqlPushUtils_exports, import_hanji8, filterStatements, logSuggestionsAndReturn2, init_mysqlPushUtils, mysqlIntrospect_exports, import_hanji9, mysqlPushIntrospect, init_mysqlIntrospect, singlestoreImports_exports, prepareFromExports4, prepareFromSingleStoreImports, init_singlestoreImports, singlestorePushUtils_exports, import_hanji10, filterStatements2, logSuggestionsAndReturn3, init_singlestorePushUtils, singlestoreIntrospect_exports, import_hanji11, singlestorePushIntrospect, init_singlestoreIntrospect, import_hanji3, pgPushIntrospect = async (db2, filters, schemaFilters, entities, tsSchema) => {
   const matchers = filters.map((it2) => {
     return new Minimatch(it2);
   });
@@ -38565,7 +37468,7 @@ var __create2, __defProp2, __getOwnPropDesc, __getOwnPropNames2, __getProtoOf2,
   return { schema: schema5 };
 }, generateDrizzleJson = (imports, prevId, schemaFilters, casing2) => {
   const prepared = prepareFromExports(imports);
-  const id = randomUUID2();
+  const id = randomUUID();
   const snapshot = generatePgSnapshot(prepared.tables, prepared.enums, prepared.schemas, prepared.sequences, prepared.roles, prepared.policies, prepared.views, prepared.matViews, casing2, schemaFilters);
   return fillPgSnapshot({
     serialized: snapshot,
@@ -38611,7 +37514,7 @@ var __create2, __defProp2, __getOwnPropDesc, __getOwnPropNames2, __getProtoOf2,
 }, generateSQLiteDrizzleJson = async (imports, prevId, casing2) => {
   const { prepareFromExports: prepareFromExports5 } = await Promise.resolve().then(() => (init_sqliteImports(), sqliteImports_exports));
   const prepared = prepareFromExports5(imports);
-  const id = randomUUID2();
+  const id = randomUUID();
   const snapshot = generateSqliteSnapshot(prepared.tables, prepared.views, casing2);
   return {
     ...snapshot,
@@ -38659,7 +37562,7 @@ var __create2, __defProp2, __getOwnPropDesc, __getOwnPropNames2, __getProtoOf2,
 }, generateMySQLDrizzleJson = async (imports, prevId, casing2) => {
   const { prepareFromExports: prepareFromExports5 } = await Promise.resolve().then(() => (init_mysqlImports(), mysqlImports_exports));
   const prepared = prepareFromExports5(imports);
-  const id = randomUUID2();
+  const id = randomUUID();
   const snapshot = generateMySqlSnapshot(prepared.tables, prepared.views, casing2);
   return {
     ...snapshot,
@@ -38706,7 +37609,7 @@ var __create2, __defProp2, __getOwnPropDesc, __getOwnPropNames2, __getProtoOf2,
 }, generateSingleStoreDrizzleJson = async (imports, prevId, casing2) => {
   const { prepareFromExports: prepareFromExports5 } = await Promise.resolve().then(() => (init_singlestoreImports(), singlestoreImports_exports));
   const prepared = prepareFromExports5(imports);
-  const id = randomUUID2();
+  const id = randomUUID();
   const snapshot = generateSingleStoreSnapshot(prepared.tables, casing2);
   return {
     ...snapshot,
@@ -45493,7 +44396,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
       init_external2();
     }
   });
-  init_esm3 = __esm3({
+  init_esm2 = __esm3({
     "../node_modules/.pnpm/zod@3.25.42/node_modules/zod/dist/esm/index.js"() {
       init_v32();
       init_v32();
@@ -45502,7 +44405,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
   init_gelSchema = __esm3({
     "src/serializer/gelSchema.ts"() {
       init_global2();
-      init_esm3();
+      init_esm2();
       enumSchema = objectType2({
         name: stringType2(),
         schema: stringType2(),
@@ -45756,7 +44659,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
   });
   init_mysqlSchema = __esm3({
     "src/serializer/mysqlSchema.ts"() {
-      init_esm3();
+      init_esm2();
       init_global2();
       index22 = objectType2({
         name: stringType2(),
@@ -46062,7 +44965,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
   init_pgSchema = __esm3({
     "src/serializer/pgSchema.ts"() {
       init_global2();
-      init_esm3();
+      init_esm2();
       indexV2 = objectType2({
         name: stringType2(),
         columns: recordType2(stringType2(), objectType2({
@@ -46783,7 +45686,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
   });
   init_singlestoreSchema = __esm3({
     "src/serializer/singlestoreSchema.ts"() {
-      init_esm3();
+      init_esm2();
       init_global2();
       index4 = objectType2({
         name: stringType2(),
@@ -46942,7 +45845,7 @@ See: https://github.com/isaacs/node-glob/issues/167`);
   });
   init_sqliteSchema = __esm3({
     "src/serializer/sqliteSchema.ts"() {
-      init_esm3();
+      init_esm2();
       init_global2();
       index5 = objectType2({
         name: stringType2(),
@@ -54620,7 +53523,7 @@ ${BREAKPOINT}ALTER TABLE ${tableNameWithSchema} ADD CONSTRAINT "${statement.newC
   });
   init_snapshotsDiffer = __esm3({
     "src/snapshotsDiffer.ts"() {
-      init_esm3();
+      init_esm2();
       init_jsonDiffer();
       init_sqlgenerator();
       init_jsonStatements();
@@ -56731,7 +55634,7 @@ ${BREAKPOINT}ALTER TABLE ${tableNameWithSchema} ADD CONSTRAINT "${statement.newC
   });
   init_schemaValidator = __esm3({
     "src/schemaValidator.ts"() {
-      init_esm3();
+      init_esm2();
       init_mysqlSchema();
       init_pgSchema();
       init_singlestoreSchema();
@@ -56749,7 +55652,7 @@ ${BREAKPOINT}ALTER TABLE ${tableNameWithSchema} ADD CONSTRAINT "${statement.newC
   });
   init_common2 = __esm3({
     "src/cli/validations/common.ts"() {
-      init_esm3();
+      init_esm2();
       init_schemaValidator();
       init_outputs();
       sqliteDriversLiterals = [
@@ -71951,7 +70854,7 @@ AND
   });
   init_cli = __esm3({
     "src/cli/validations/cli.ts"() {
-      init_esm3();
+      init_esm2();
       init_schemaValidator();
       init_common2();
       cliConfigGenerate = objectType2({
@@ -72012,7 +70915,7 @@ AND
   });
   init_gel = __esm3({
     "src/cli/validations/gel.ts"() {
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       gelCredentials = unionType2([
@@ -72056,7 +70959,7 @@ AND
   });
   init_libsql = __esm3({
     "src/cli/validations/libsql.ts"() {
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       libSQLCredentials = objectType2({
@@ -72067,7 +70970,7 @@ AND
   });
   init_mysql = __esm3({
     "src/cli/validations/mysql.ts"() {
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       init_outputs();
@@ -72100,7 +71003,7 @@ AND
   });
   init_postgres = __esm3({
     "src/cli/validations/postgres.ts"() {
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       postgresCredentials = unionType2([
@@ -72145,7 +71048,7 @@ AND
   });
   init_singlestore = __esm3({
     "src/cli/validations/singlestore.ts"() {
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       init_outputs();
@@ -72179,7 +71082,7 @@ AND
   init_sqlite = __esm3({
     "src/cli/validations/sqlite.ts"() {
       init_global2();
-      init_esm3();
+      init_esm2();
       init_views();
       init_common2();
       sqliteCredentials = unionType2([
@@ -72206,7 +71109,7 @@ AND
   });
   init_studio = __esm3({
     "src/cli/validations/studio.ts"() {
-      init_esm3();
+      init_esm2();
       init_schemaValidator();
       init_common2();
       init_mysql();
@@ -72238,7 +71141,7 @@ AND
   init_utils9 = __esm3({
     "src/cli/commands/utils.ts"() {
       import_hanji7 = __toESM2(require_hanji());
-      init_esm3();
+      init_esm2();
       init_getTablesFilterByExtensions();
       init_global2();
       init_schemaValidator();
@@ -77693,6 +76596,142 @@ var init_auth_util = __esm(() => {
   init_types9();
 });
 
+// ../api-core/src/utils/lti.util.ts
+function generateUsername(email) {
+  const baseUsername = (email.split("@")[0] || "user").toLowerCase();
+  const cleanUsername = baseUsername.replace(/[^a-z0-9]/g, "");
+  const randomSuffix = Math.random().toString(36).substring(2, 7);
+  return `${cleanUsername}_${randomSuffix}`;
+}
+function extractRedirectPath(targetUri, currentHost) {
+  try {
+    const targetUrl = new URL(targetUri);
+    if (targetUrl.hostname === currentHost) {
+      return targetUrl.pathname + targetUrl.search;
+    }
+  } catch {}
+  return "/";
+}
+function validateLtiClaims(claims) {
+  const messageType = claims["https://purl.imsglobal.org/spec/lti/claim/message_type"];
+  const version4 = claims["https://purl.imsglobal.org/spec/lti/claim/version"];
+  if (messageType !== "LtiResourceLinkRequest") {
+    return `Invalid LTI message type: ${messageType}`;
+  }
+  if (version4 !== "1.3.0") {
+    return `Unsupported LTI version: ${version4}`;
+  }
+  return null;
+}
+var init_lti_util = () => {};
+
+// ../api-core/src/utils/lti-provisioning.ts
+import * as crypto4 from "node:crypto";
+async function provisionLtiUser(db2, claims) {
+  const database2 = db2;
+  const email = claims.email;
+  const ltiTimebackId = claims.sub;
+  const providerId = AUTH_PROVIDER_IDS.TIMEBACK_LTI;
+  if (!email) {
+    throw new ValidationError("Email is required in LTI claims");
+  }
+  const existingAccount = await database2.query.accounts.findFirst({
+    where: and(eq(accounts.accountId, ltiTimebackId), eq(accounts.providerId, providerId))
+  });
+  if (existingAccount) {
+    const user = await database2.query.users.findFirst({
+      where: eq(users.id, existingAccount.userId)
+    });
+    if (user) {
+      logger32.info("Found user by LTI account", {
+        userId: user.id,
+        ltiTimebackId
+      });
+      return user;
+    }
+  }
+  const existingUser = await database2.query.users.findFirst({
+    where: eq(users.email, email)
+  });
+  if (existingUser) {
+    await database2.transaction(async (tx) => {
+      const existingLtiAccount = await tx.query.accounts.findFirst({
+        where: and(eq(accounts.userId, existingUser.id), eq(accounts.providerId, providerId))
+      });
+      if (!existingLtiAccount) {
+        const [account] = await tx.insert(accounts).values({
+          id: crypto4.randomUUID(),
+          userId: existingUser.id,
+          accountId: ltiTimebackId,
+          providerId,
+          accessToken: null,
+          refreshToken: null,
+          accessTokenExpiresAt: null,
+          refreshTokenExpiresAt: null,
+          createdAt: new Date,
+          updatedAt: new Date
+        }).returning({ id: accounts.id });
+        if (!account) {
+          logger32.error("LTI account link insert returned no rows", {
+            userId: existingUser.id,
+            ltiTimebackId
+          });
+          throw new InternalError("Failed to link LTI account");
+        }
+        logger32.info("Linked LTI account to existing user", {
+          userId: existingUser.id,
+          ltiTimebackId
+        });
+      }
+    });
+    return existingUser;
+  }
+  const newUserId = crypto4.randomUUID();
+  const createdUser = await database2.transaction(async (tx) => {
+    const [insertedUser] = await tx.insert(users).values({
+      id: newUserId,
+      email,
+      emailVerified: true,
+      username: generateUsername(email),
+      name: claims.name || claims.given_name || email.split("@")[0] || "Timeback User",
+      createdAt: new Date,
+      updatedAt: new Date
+    }).returning();
+    if (!insertedUser) {
+      logger32.error("LTI user insert returned no rows", { email, ltiTimebackId });
+      throw new InternalError("Failed to create user");
+    }
+    await tx.insert(accounts).values({
+      id: crypto4.randomUUID(),
+      userId: newUserId,
+      accountId: ltiTimebackId,
+      providerId,
+      accessToken: null,
+      refreshToken: null,
+      accessTokenExpiresAt: null,
+      refreshTokenExpiresAt: null,
+      createdAt: new Date,
+      updatedAt: new Date
+    });
+    logger32.info("Provisioned new user from LTI", {
+      userId: insertedUser.id,
+      ltiTimebackId
+    });
+    return insertedUser;
+  });
+  return createdUser;
+}
+var logger32;
+var init_lti_provisioning = __esm(() => {
+  init_drizzle_orm();
+  init_src();
+  init_tables_index();
+  init_src2();
+  init_errors();
+  init_lti_util();
+  logger32 = log.scope("LtiProvisioning");
+});
+
 // ../api-core/src/utils/validation.util.ts
 function formatZodError(error2) {
   const flat = error2.flatten();
@@ -77717,26 +76756,27 @@ var init_utils11 = __esm(() => {
   init_deployment_util();
   init_leaderboard_util();
   init_lti_util();
+  init_lti_provisioning();
   init_scope_util();
   init_timeback_util();
 });
 
 // ../api-core/src/controllers/achievement.controller.ts
-var logger32, listCurrent, listHistory, postProgress, achievements3;
+var logger33, listCurrent, listHistory, postProgress, achievements3;
 var init_achievement_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger32 = log.scope("AchievementController");
+  logger33 = log.scope("AchievementController");
   listCurrent = requireAuth(async (ctx) => {
-    logger32.debug("Listing current achievements", { userId: ctx.user.id, gameId: ctx.gameId });
+    logger33.debug("Listing current achievements", { userId: ctx.user.id, gameId: ctx.gameId });
     return ctx.services.achievement.listCurrent(ctx.user, ctx.gameId);
   });
   listHistory = requireAuth(async (ctx) => {
     const limit = Math.max(1, Math.min(100, Number(ctx.url.searchParams.get("limit")) || 20));
-    logger32.debug("Listing achievement history", { userId: ctx.user.id, limit });
+    logger33.debug("Listing achievement history", { userId: ctx.user.id, limit });
     return ctx.services.achievement.listHistory(ctx.user, limit);
   });
   postProgress = requireAuth(async (ctx) => {
@@ -77747,12 +76787,12 @@ var init_achievement_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger32.warn("Submit achievement progress validation failed", { details });
+        logger33.warn("Submit achievement progress validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger32.debug("Submitting progress", {
+    logger33.debug("Submitting progress", {
       userId: ctx.user.id,
       achievementId: body2.achievementId
     });
@@ -77766,14 +76806,14 @@ var init_achievement_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/admin.controller.ts
-var logger33, getAllowedOrigins;
+var logger34, getAllowedOrigins;
 var init_admin_controller = __esm(() => {
   init_src2();
   init_utils11();
-  logger33 = log.scope("AdminController");
+  logger34 = log.scope("AdminController");
   getAllowedOrigins = requireAdmin(async (ctx) => {
     const shouldRefresh = ctx.url.searchParams.get("refresh") === "true";
-    logger33.debug("Getting allowed origins", { userId: ctx.user.id, refresh: shouldRefresh });
+    logger34.debug("Getting allowed origins", { userId: ctx.user.id, refresh: shouldRefresh });
     if (shouldRefresh) {
       await ctx.providers.cache.refreshGameOrigins();
     }
@@ -77788,14 +76828,14 @@ var init_admin_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/bucket.controller.ts
-var logger34, listFiles, getFile, putFile, deleteFile, initiateUpload;
+var logger35, listFiles, getFile, putFile, deleteFile, initiateUpload;
 var init_bucket_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger34 = log.scope("BucketController");
+  logger35 = log.scope("BucketController");
   listFiles = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
@@ -77803,7 +76843,7 @@ var init_bucket_controller = __esm(() => {
     }
     const url = ctx.url;
     const prefix2 = url.searchParams.get("prefix") || undefined;
-    logger34.debug("Listing files", { userId: ctx.user.id, slug: slug2, prefix: prefix2 });
+    logger35.debug("Listing files", { userId: ctx.user.id, slug: slug2, prefix: prefix2 });
     const files = await ctx.services.bucket.listFiles(slug2, ctx.user, prefix2);
     return { files };
   });
@@ -77813,7 +76853,7 @@ var init_bucket_controller = __esm(() => {
     if (!slug2 || !key) {
       throw ApiError.badRequest("Missing game slug or file key");
     }
-    logger34.debug("Getting file", { userId: ctx.user.id, slug: slug2, key });
+    logger35.debug("Getting file", { userId: ctx.user.id, slug: slug2, key });
     const object = await ctx.services.bucket.getFile(slug2, key, ctx.user);
     return new Response(Buffer.from(object.body), {
       status: 200,
@@ -77832,7 +76872,7 @@ var init_bucket_controller = __esm(() => {
     const arrayBuffer = await ctx.request.arrayBuffer();
     const body2 = new Uint8Array(arrayBuffer);
     const contentType = ctx.request.headers.get("content-type") || undefined;
-    logger34.debug("Uploading file", {
+    logger35.debug("Uploading file", {
       userId: ctx.user.id,
       slug: slug2,
       key,
@@ -77848,7 +76888,7 @@ var init_bucket_controller = __esm(() => {
     if (!slug2 || !key) {
       throw ApiError.badRequest("Missing game slug or file key");
     }
-    logger34.debug("Deleting file", { userId: ctx.user.id, slug: slug2, key });
+    logger35.debug("Deleting file", { userId: ctx.user.id, slug: slug2, key });
     await ctx.services.bucket.deleteFile(slug2, key, ctx.user);
     return { success: true, key };
   });
@@ -77860,12 +76900,12 @@ var init_bucket_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger34.warn("Initiate upload validation failed", { details });
+        logger35.warn("Initiate upload validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger34.debug("Initiating multipart upload", {
+    logger35.debug("Initiating multipart upload", {
       userId: ctx.user.id,
       gameId: body2.gameId,
       fileName: body2.fileName
@@ -77882,19 +76922,19 @@ async function listComponents(ctx) {
   if (!isNaN(parsed) && isFinite(parsed)) {
     level = Math.floor(Math.max(0, parsed));
   }
-  logger35.debug("Listing components", { level });
+  logger36.debug("Listing components", { level });
   return ctx.services.character.listAvailableComponents(level);
 }
-var logger35, get, getByUserId, create, update2, equipAccessory, removeAccessory, character2;
+var logger36, get, getByUserId, create, update2, equipAccessory, removeAccessory, character2;
 var init_character_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger35 = log.scope("CharacterController");
+  logger36 = log.scope("CharacterController");
   get = requireAuth(async (ctx) => {
-    logger35.debug("Getting character", { userId: ctx.user.id });
+    logger36.debug("Getting character", { userId: ctx.user.id });
     return ctx.services.character.getByUser(ctx.user);
   });
   getByUserId = requireAuth(async (ctx) => {
@@ -77902,7 +76942,7 @@ var init_character_controller = __esm(() => {
     if (!userId) {
       throw ApiError.badRequest("User ID is required in the URL path");
     }
-    logger35.debug("Getting character by user ID", { requestedUserId: userId });
+    logger36.debug("Getting character by user ID", { requestedUserId: userId });
     return ctx.services.character.getByUserId(userId);
   });
   create = requireAuth(async (ctx) => {
@@ -77913,12 +76953,12 @@ var init_character_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger35.warn("Create character validation failed", { details });
+        logger36.warn("Create character validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger35.debug("Creating character", {
+    logger36.debug("Creating character", {
       userId: ctx.user.id,
       bodyComponentId: body2.bodyComponentId,
       hairstyleComponentId: body2.hairstyleComponentId
@@ -77933,12 +76973,12 @@ var init_character_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger35.warn("Update character validation failed", { details });
+        logger36.warn("Update character validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger35.debug("Updating character", {
+    logger36.debug("Updating character", {
       userId: ctx.user.id,
       bodyComponentId: body2.bodyComponentId,
       hairstyleComponentId: body2.hairstyleComponentId,
@@ -77954,12 +76994,12 @@ var init_character_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger35.warn("Equip accessory validation failed", { details });
+        logger36.warn("Equip accessory validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger35.debug("Equipping accessory", {
+    logger36.debug("Equipping accessory", {
       userId: ctx.user.id,
       slot: body2.slot,
       accessoryComponentId: body2.accessoryComponentId
@@ -77971,7 +77011,7 @@ var init_character_controller = __esm(() => {
     if (!slot) {
       throw ApiError.badRequest("Slot is required in the URL path");
     }
-    logger35.debug("Removing accessory", { userId: ctx.user.id, slot });
+    logger36.debug("Removing accessory", { userId: ctx.user.id, slot });
     await ctx.services.character.removeAccessory(slot, ctx.user);
     return { success: true };
   });
@@ -77987,7 +77027,7 @@ var init_character_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/currency.controller.ts
-var logger36, list, getById, create2, update3, remove, currencyController;
+var logger37, list, getById, create2, update3, remove, currencyController;
 var init_currency_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -77995,9 +77035,9 @@ var init_currency_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger36 = log.scope("CurrencyController");
+  logger37 = log.scope("CurrencyController");
   list = requireAuth(async (ctx) => {
-    logger36.debug("Listing currencies", { userId: ctx.user.id });
+    logger37.debug("Listing currencies", { userId: ctx.user.id });
     return ctx.services.currency.list();
   });
   getById = requireAuth(async (ctx) => {
@@ -78008,7 +77048,7 @@ var init_currency_controller = __esm(() => {
     if (!isValidUUID(currencyId)) {
       throw ApiError.unprocessableEntity("currencyId must be a valid UUID format");
     }
-    logger36.debug("Getting currency", { userId: ctx.user.id, currencyId });
+    logger37.debug("Getting currency", { userId: ctx.user.id, currencyId });
     return ctx.services.currency.getById(currencyId);
   });
   create2 = requireAdmin(async (ctx) => {
@@ -78019,12 +77059,12 @@ var init_currency_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger36.warn("Create currency validation failed", { details });
+        logger37.warn("Create currency validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger36.debug("Creating currency", {
+    logger37.debug("Creating currency", {
       userId: ctx.user.id,
       symbol: body2.symbol,
       itemId: body2.itemId,
@@ -78047,12 +77087,12 @@ var init_currency_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger36.warn("Update currency validation failed", { details });
+        logger37.warn("Update currency validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger36.debug("Updating currency", {
+    logger37.debug("Updating currency", {
       userId: ctx.user.id,
       currencyId,
       symbol: body2.symbol,
@@ -78069,7 +77109,7 @@ var init_currency_controller = __esm(() => {
     if (!isValidUUID(currencyId)) {
       throw ApiError.unprocessableEntity("currencyId must be a valid UUID format");
     }
-    logger36.debug("Deleting currency", { userId: ctx.user.id, currencyId });
+    logger37.debug("Deleting currency", { userId: ctx.user.id, currencyId });
     await ctx.services.currency.delete(currencyId);
   });
   currencyController = {
@@ -78082,14 +77122,14 @@ var init_currency_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/database.controller.ts
-var logger37, reset;
+var logger38, reset;
 var init_database_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger37 = log.scope("DatabaseController");
+  logger38 = log.scope("DatabaseController");
   reset = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
@@ -78102,11 +77142,11 @@ var init_database_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger37.warn("Database reset validation failed", { details });
+        logger38.warn("Database reset validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
     }
-    logger37.debug("Resetting database", {
+    logger38.debug("Resetting database", {
       userId: ctx.user.id,
       slug: slug2,
       hasSchema: !!body2.schema
@@ -87202,28 +86242,28 @@ var init_zip = __esm(() => {
 });
 
 // ../api-core/src/controllers/deploy.controller.ts
-var logger38;
+var logger39;
 var init_deploy_controller = __esm(() => {
   init_schemas_index();
   init_src2();
   init_zip();
   init_errors();
   init_utils11();
-  logger38 = log.scope("DeployController");
+  logger39 = log.scope("DeployController");
 });
 
 // ../api-core/src/controllers/developer.controller.ts
-var logger39, apply, getStatus, developer;
+var logger40, apply, getStatus, developer;
 var init_developer_controller = __esm(() => {
   init_src2();
   init_utils11();
-  logger39 = log.scope("DeveloperController");
+  logger40 = log.scope("DeveloperController");
   apply = requireAuth(async (ctx) => {
-    logger39.debug("Applying for developer status", { userId: ctx.user.id });
+    logger40.debug("Applying for developer status", { userId: ctx.user.id });
     await ctx.services.developer.apply(ctx.user);
   });
   getStatus = requireAuth(async (ctx) => {
-    logger39.debug("Getting developer status", { userId: ctx.user.id });
+    logger40.debug("Getting developer status", { userId: ctx.user.id });
     const status = await ctx.services.developer.getStatus(ctx.user.id);
     return { status };
   });
@@ -87234,7 +86274,7 @@ var init_developer_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/domain.controller.ts
-var logger40, add, list2, getStatus2, remove2, domains2;
+var logger41, add, list2, getStatus2, remove2, domains2;
 var init_domain_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -87242,7 +86282,7 @@ var init_domain_controller = __esm(() => {
   init_config2();
   init_errors();
   init_utils11();
-  logger40 = log.scope("DomainController");
+  logger41 = log.scope("DomainController");
   add = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
@@ -87255,12 +86295,12 @@ var init_domain_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger40.warn("Add domain validation failed", { details });
+        logger41.warn("Add domain validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger40.debug("Adding domain", { userId: ctx.user.id, slug: slug2, hostname: body2.hostname });
+    logger41.debug("Adding domain", { userId: ctx.user.id, slug: slug2, hostname: body2.hostname });
     return ctx.services.domain.add(slug2, body2.hostname, body2.environment, ctx.user);
   });
   list2 = requireDeveloper(async (ctx) => {
@@ -87269,7 +86309,7 @@ var init_domain_controller = __esm(() => {
       throw ApiError.badRequest("Missing game slug");
     }
     const environment = getPlatformEnvironment(ctx.config);
-    logger40.debug("Listing domains", { userId: ctx.user.id, slug: slug2, environment });
+    logger41.debug("Listing domains", { userId: ctx.user.id, slug: slug2, environment });
     const domains2 = await ctx.services.domain.list(slug2, environment, ctx.user);
     return { domains: domains2 };
   });
@@ -87284,7 +86324,7 @@ var init_domain_controller = __esm(() => {
     }
     const refresh = ctx.url.searchParams.get("refresh") === "true";
     const environment = getPlatformEnvironment(ctx.config);
-    logger40.debug("Getting domain status", { userId: ctx.user.id, slug: slug2, hostname, refresh });
+    logger41.debug("Getting domain status", { userId: ctx.user.id, slug: slug2, hostname, refresh });
     return ctx.services.domain.getStatus(slug2, hostname, environment, ctx.user, refresh);
   });
   remove2 = requireDeveloper(async (ctx) => {
@@ -87297,7 +86337,7 @@ var init_domain_controller = __esm(() => {
       throw ApiError.badRequest("Missing hostname");
     }
     const environment = ctx.config.stage === "production" ? "production" : "staging";
-    logger40.debug("Removing domain", { userId: ctx.user.id, slug: slug2, hostname, environment });
+    logger41.debug("Removing domain", { userId: ctx.user.id, slug: slug2, hostname, environment });
     await ctx.services.domain.delete(slug2, hostname, environment, ctx.user);
   });
   domains2 = {
@@ -87309,7 +86349,7 @@ var init_domain_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/game.controller.ts
-var logger41, list3, getById2, getBySlug, upsertBySlug, remove3, games2;
+var logger42, list3, getById2, getBySlug, upsertBySlug, remove3, games2;
 var init_game_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -87317,9 +86357,9 @@ var init_game_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger41 = log.scope("GameController");
+  logger42 = log.scope("GameController");
   list3 = requireAuth(async (ctx) => {
-    logger41.debug("Listing games", { userId: ctx.user.id });
+    logger42.debug("Listing games", { userId: ctx.user.id });
     return ctx.services.game.list();
   });
   getById2 = requireAuth(async (ctx) => {
@@ -87330,7 +86370,7 @@ var init_game_controller = __esm(() => {
     if (!isValidUUID(gameId)) {
       throw ApiError.unprocessableEntity("gameId must be a valid UUID format");
     }
-    logger41.debug("Getting game by ID", { userId: ctx.user.id, gameId });
+    logger42.debug("Getting game by ID", { userId: ctx.user.id, gameId });
     return ctx.services.game.getById(gameId);
   });
   getBySlug = requireAuth(async (ctx) => {
@@ -87338,7 +86378,7 @@ var init_game_controller = __esm(() => {
     if (!slug2) {
       throw ApiError.badRequest("Missing game slug");
     }
-    logger41.debug("Getting game by slug", { userId: ctx.user.id, slug: slug2 });
+    logger42.debug("Getting game by slug", { userId: ctx.user.id, slug: slug2 });
     return ctx.services.game.getBySlug(slug2);
   });
   upsertBySlug = requireAuth(async (ctx) => {
@@ -87353,12 +86393,12 @@ var init_game_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger41.warn("Upsert game validation failed", { details });
+        logger42.warn("Upsert game validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger41.debug("Upserting game", { userId: ctx.user.id, slug: slug2, displayName: body2.displayName });
+    logger42.debug("Upserting game", { userId: ctx.user.id, slug: slug2, displayName: body2.displayName });
     return ctx.services.game.upsertBySlug(slug2, body2, ctx.user);
   });
   remove3 = requireAuth(async (ctx) => {
@@ -87369,7 +86409,7 @@ var init_game_controller = __esm(() => {
     if (!isValidUUID(gameId)) {
       throw ApiError.unprocessableEntity("gameId must be a valid UUID format");
     }
-    logger41.debug("Deleting game", { userId: ctx.user.id, gameId });
+    logger42.debug("Deleting game", { userId: ctx.user.id, gameId });
     await ctx.services.game.delete(gameId, ctx.user);
   });
   games2 = {
@@ -87382,16 +86422,16 @@ var init_game_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/inventory.controller.ts
-var logger42, list4, addItem, removeItem, inventory;
+var logger43, list4, addItem, removeItem, inventory;
 var init_inventory_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger42 = log.scope("InventoryController");
+  logger43 = log.scope("InventoryController");
   list4 = requireAuth(async (ctx) => {
-    logger42.debug("Listing inventory", { userId: ctx.user.id });
+    logger43.debug("Listing inventory", { userId: ctx.user.id });
     return ctx.services.inventory.list(ctx.user);
   });
   addItem = requireAuth(async (ctx) => {
@@ -87402,12 +86442,12 @@ var init_inventory_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger42.warn("Add inventory item validation failed", { details });
+        logger43.warn("Add inventory item validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger42.debug("Adding item", {
+    logger43.debug("Adding item", {
       userId: ctx.user.id,
       itemId: body2.itemId,
       qty: body2.qty
@@ -87422,12 +86462,12 @@ var init_inventory_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger42.warn("Remove inventory item validation failed", { details });
+        logger43.warn("Remove inventory item validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger42.debug("Removing item", {
+    logger43.debug("Removing item", {
       userId: ctx.user.id,
       itemId: body2.itemId,
       qty: body2.qty
@@ -87442,7 +86482,7 @@ var init_inventory_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/item.controller.ts
-var logger43, list5, getById3, resolve2, create3, update4, remove4, listByGame, createForGame, updateForGame, deleteForGame, items2;
+var logger44, list5, getById3, resolve2, create3, update4, remove4, listByGame, createForGame, updateForGame, deleteForGame, items2;
 var init_item_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -87450,10 +86490,10 @@ var init_item_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger43 = log.scope("ItemController");
+  logger44 = log.scope("ItemController");
   list5 = requireAuth(async (ctx) => {
     const gameId = ctx.url.searchParams.get("gameId") || undefined;
-    logger43.debug("Listing items", { userId: ctx.user.id, gameId });
+    logger44.debug("Listing items", { userId: ctx.user.id, gameId });
     return ctx.services.item.list(gameId);
   });
   getById3 = requireAuth(async (ctx) => {
@@ -87464,7 +86504,7 @@ var init_item_controller = __esm(() => {
     if (!isValidUUID(itemId)) {
       throw ApiError.unprocessableEntity("itemId must be a valid UUID format");
     }
-    logger43.debug("Getting item", { userId: ctx.user.id, itemId });
+    logger44.debug("Getting item", { userId: ctx.user.id, itemId });
     return ctx.services.item.getById(itemId);
   });
   resolve2 = requireAuth(async (ctx) => {
@@ -87476,7 +86516,7 @@ var init_item_controller = __esm(() => {
     if (gameId && !isValidUUID(gameId)) {
       throw ApiError.unprocessableEntity("gameId must be a valid UUID format");
     }
-    logger43.debug("Resolving item", { userId: ctx.user.id, slug: slug2, gameId });
+    logger44.debug("Resolving item", { userId: ctx.user.id, slug: slug2, gameId });
     return ctx.services.item.resolveBySlug(slug2, gameId);
   });
   create3 = requireRole(["admin"], async (ctx) => {
@@ -87487,12 +86527,12 @@ var init_item_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger43.warn("Create item validation failed", { details });
+        logger44.warn("Create item validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger43.debug("Creating item", {
+    logger44.debug("Creating item", {
       userId: ctx.user.id,
       slug: body2.slug,
       displayName: body2.displayName
@@ -87514,7 +86554,7 @@ var init_item_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger43.warn("Update item validation failed", { details });
+        logger44.warn("Update item validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
@@ -87522,7 +86562,7 @@ var init_item_controller = __esm(() => {
     if (Object.keys(body2).length === 0) {
       throw ApiError.badRequest("No update data provided");
     }
-    logger43.debug("Updating item", {
+    logger44.debug("Updating item", {
       userId: ctx.user.id,
       itemId,
       slug: body2.slug,
@@ -87539,7 +86579,7 @@ var init_item_controller = __esm(() => {
     if (!isValidUUID(itemId)) {
       throw ApiError.unprocessableEntity("itemId must be a valid UUID format");
     }
-    logger43.debug("Deleting item", { userId: ctx.user.id, itemId });
+    logger44.debug("Deleting item", { userId: ctx.user.id, itemId });
     await ctx.services.item.delete(itemId);
   });
   listByGame = requireAuth(async (ctx) => {
@@ -87550,7 +86590,7 @@ var init_item_controller = __esm(() => {
     if (!isValidUUID(gameId)) {
       throw ApiError.unprocessableEntity("gameId must be a valid UUID format");
     }
-    logger43.debug("Listing game items", { userId: ctx.user.id, gameId });
+    logger44.debug("Listing game items", { userId: ctx.user.id, gameId });
     return ctx.services.item.listByGame(gameId);
   });
   createForGame = requireAuth(async (ctx) => {
@@ -87568,12 +86608,12 @@ var init_item_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger43.warn("Create game item validation failed", { details });
+        logger44.warn("Create game item validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger43.debug("Creating game item", {
+    logger44.debug("Creating game item", {
       userId: ctx.user.id,
       gameId,
       slug: body2.slug,
@@ -87600,7 +86640,7 @@ var init_item_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger43.warn("Update game item validation failed", { details });
+        logger44.warn("Update game item validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
@@ -87608,7 +86648,7 @@ var init_item_controller = __esm(() => {
     if (Object.keys(body2).length === 0) {
       throw ApiError.badRequest("No update data provided");
     }
-    logger43.debug("Updating game item", {
+    logger44.debug("Updating game item", {
       userId: ctx.user.id,
       gameId,
       itemId,
@@ -87630,7 +86670,7 @@ var init_item_controller = __esm(() => {
     if (!isValidUUID(itemId)) {
       throw ApiError.unprocessableEntity("itemId must be a valid UUID format");
     }
-    logger43.debug("Deleting game item", { userId: ctx.user.id, gameId, itemId });
+    logger44.debug("Deleting game item", { userId: ctx.user.id, gameId, itemId });
     await ctx.services.item.deleteForGame(gameId, itemId, ctx.user);
   });
   items2 = {
@@ -87648,7 +86688,7 @@ var init_item_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/leaderboard.controller.ts
-var logger44, submitScore, getGlobalLeaderboard, getLeaderboard, getUserRank, getUserAllScores, getUserScores, leaderboard;
+var logger45, submitScore, getGlobalLeaderboard, getLeaderboard, getUserRank, getUserAllScores, getUserScores, leaderboard;
 var init_leaderboard_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -87656,7 +86696,7 @@ var init_leaderboard_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger44 = log.scope("LeaderboardController");
+  logger45 = log.scope("LeaderboardController");
   submitScore = requireAuth(async (ctx) => {
     const gameId = ctx.params.gameId;
     if (!gameId) {
@@ -87669,12 +86709,12 @@ var init_leaderboard_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger44.warn("Submit score validation failed", { details });
+        logger45.warn("Submit score validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger44.debug("Submitting score", {
+    logger45.debug("Submitting score", {
       userId: ctx.user.id,
       gameId,
       score: body2.score
@@ -87697,12 +86737,12 @@ var init_leaderboard_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger44.warn("Get global leaderboard query validation failed", { details });
+        logger45.warn("Get global leaderboard query validation failed", { details });
         throw ApiError.badRequest("Invalid query parameters", details);
       }
       throw ApiError.badRequest("Invalid query parameters");
     }
-    logger44.debug("Getting global leaderboard", {
+    logger45.debug("Getting global leaderboard", {
       userId: ctx.user.id,
       gameId,
       ...query
@@ -87725,12 +86765,12 @@ var init_leaderboard_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger44.warn("Get leaderboard query validation failed", { details });
+        logger45.warn("Get leaderboard query validation failed", { details });
         throw ApiError.badRequest("Invalid query parameters", details);
       }
       throw ApiError.badRequest("Invalid query parameters");
     }
-    logger44.debug("Getting leaderboard", {
+    logger45.debug("Getting leaderboard", {
       userId: ctx.user.id,
       gameId,
       ...query
@@ -87745,7 +86785,7 @@ var init_leaderboard_controller = __esm(() => {
     if (!isValidUUID(userId)) {
       throw ApiError.unprocessableEntity("userId must be a valid UUID format");
     }
-    logger44.debug("Getting user rank", {
+    logger45.debug("Getting user rank", {
       requesterId: ctx.user.id,
       gameId,
       targetUserId: userId
@@ -87763,7 +86803,7 @@ var init_leaderboard_controller = __esm(() => {
     const url = ctx.url;
     const limit = Math.min(Number(url.searchParams.get("limit") || "50"), 100);
     const gameId = url.searchParams.get("gameId") || undefined;
-    logger44.debug("Getting user all scores", {
+    logger45.debug("Getting user all scores", {
       requesterId: ctx.user.id,
       targetUserId: userId,
       gameId,
@@ -87781,7 +86821,7 @@ var init_leaderboard_controller = __esm(() => {
     }
     const url = ctx.url;
     const limit = Math.min(Number(url.searchParams.get("limit") || "10"), 100);
-    logger44.debug("Getting user scores", {
+    logger45.debug("Getting user scores", {
       requesterId: ctx.user.id,
       gameId,
       targetUserId: userId,
@@ -87801,7 +86841,7 @@ var init_leaderboard_controller = __esm(() => {
 
 // ../api-core/src/controllers/level.controller.ts
 async function listConfigs(ctx) {
-  logger45.debug("Listing level configs");
+  logger46.debug("Listing level configs");
   return ctx.services.level.listConfigs();
 }
 async function getConfig(ctx) {
@@ -87813,21 +86853,21 @@ async function getConfig(ctx) {
   if (isNaN(level) || level < 1) {
     throw ApiError.badRequest("Level must be a positive integer");
   }
-  logger45.debug("Getting level config", { level });
+  logger46.debug("Getting level config", { level });
   return ctx.services.level.getConfig(level);
 }
-var logger45, getByUser, getProgress, levels;
+var logger46, getByUser, getProgress, levels;
 var init_level_controller = __esm(() => {
   init_src2();
   init_errors();
   init_utils11();
-  logger45 = log.scope("LevelController");
+  logger46 = log.scope("LevelController");
   getByUser = requireAuth(async (ctx) => {
-    logger45.debug("Getting user level", { userId: ctx.user.id });
+    logger46.debug("Getting user level", { userId: ctx.user.id });
     return ctx.services.level.getByUser(ctx.user);
   });
   getProgress = requireAuth(async (ctx) => {
-    logger45.debug("Getting level progress", { userId: ctx.user.id });
+    logger46.debug("Getting level progress", { userId: ctx.user.id });
     return ctx.services.level.getProgress(ctx.user);
   });
   levels = {
@@ -87838,35 +86878,59 @@ var init_level_controller = __esm(() => {
   };
 });
 
+// ../api-core/src/controllers/logs.controller.ts
+var logger47, generateToken, logs;
+var init_logs_controller = __esm(() => {
+  init_src2();
+  init_errors();
+  init_utils11();
+  logger47 = log.scope("LogsController");
+  generateToken = requireDeveloper(async (ctx) => {
+    const slug2 = ctx.params.slug;
+    if (!slug2) {
+      throw ApiError.badRequest("Missing game slug");
+    }
+    let body2;
+    try {
+      const json4 = await ctx.request.json();
+      if (json4.environment !== "staging" && json4.environment !== "production") {
+        throw ApiError.badRequest('Invalid environment. Must be "staging" or "production".');
+      }
+      body2 = json4;
+    } catch (error2) {
+      if (error2 instanceof ApiError)
+        throw error2;
+      throw ApiError.badRequest("Invalid JSON body");
+    }
+    logger47.debug("Generating log stream token", {
+      userId: ctx.user.id,
+      slug: slug2,
+      environment: body2.environment
+    });
+    return ctx.services.logs.generateToken(ctx.user, slug2, body2.environment);
+  });
+  logs = {
+    generateToken
+  };
+});
+
 // ../api-core/src/controllers/lti.controller.ts
-async function launch(ctx) {
-  const formData = await ctx.request.formData();
-  const idToken = formData.get("id_token");
-  if (!idToken || typeof idToken !== "string") {
-    throw ApiError.badRequest("Missing or invalid id_token");
-  }
-  const currentHost = ctx.url.hostname;
-  logger46.debug("Processing launch", { host: currentHost });
-  return ctx.services.lti.processLaunch(idToken, currentHost);
-}
-var logger46, getStatus3, lti;
+var logger48, getStatus3, lti;
 var init_lti_controller = __esm(() => {
   init_src2();
-  init_errors();
   init_utils11();
-  logger46 = log.scope("LtiController");
+  logger48 = log.scope("LtiController");
   getStatus3 = requireAuth(async (ctx) => {
-    logger46.debug("Getting status", { userId: ctx.user.id });
+    logger48.debug("Getting status", { userId: ctx.user.id });
     return ctx.services.lti.getStatus(ctx.user);
   });
   lti = {
-    launch,
     getStatus: getStatus3
   };
 });
 
 // ../api-core/src/controllers/map.controller.ts
-var logger47, getByIdentifier, getElements, getObjects, createObject, deleteObject, maps2;
+var logger49, getByIdentifier, getElements, getObjects, createObject, deleteObject, maps2;
 var init_map_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -87874,13 +86938,13 @@ var init_map_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger47 = log.scope("MapController");
+  logger49 = log.scope("MapController");
   getByIdentifier = requireAuth(async (ctx) => {
     const identifier = ctx.params.identifier;
     if (!identifier) {
       throw ApiError.badRequest("Missing map identifier");
     }
-    logger47.debug("Getting map", { userId: ctx.user.id, identifier });
+    logger49.debug("Getting map", { userId: ctx.user.id, identifier });
     return ctx.services.map.getByIdentifier(identifier);
   });
   getElements = requireAuth(async (ctx) => {
@@ -87891,7 +86955,7 @@ var init_map_controller = __esm(() => {
     if (!isValidUUID(mapId)) {
       throw ApiError.unprocessableEntity("mapId must be a valid UUID format");
     }
-    logger47.debug("Getting map elements", { userId: ctx.user.id, mapId });
+    logger49.debug("Getting map elements", { userId: ctx.user.id, mapId });
     return ctx.services.map.getElements(mapId);
   });
   getObjects = requireAuth(async (ctx) => {
@@ -87902,7 +86966,7 @@ var init_map_controller = __esm(() => {
     if (!isValidUUID(mapId)) {
       throw ApiError.unprocessableEntity("mapId must be a valid UUID format");
     }
-    logger47.debug("Getting map objects", { userId: ctx.user.id, mapId });
+    logger49.debug("Getting map objects", { userId: ctx.user.id, mapId });
     return ctx.services.map.getObjects(mapId, ctx.user.id);
   });
   createObject = requireAuth(async (ctx) => {
@@ -87924,12 +86988,12 @@ var init_map_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger47.warn("Create map object validation failed", { details });
+        logger49.warn("Create map object validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger47.debug("Creating map object", {
+    logger49.debug("Creating map object", {
       userId: ctx.user.id,
       mapId,
       itemId: body2.itemId,
@@ -87953,7 +87017,7 @@ var init_map_controller = __esm(() => {
     if (!isValidUUID(objectId)) {
       throw ApiError.unprocessableEntity("objectId must be a valid UUID format");
     }
-    logger47.debug("Deleting map object", { userId: ctx.user.id, mapId, objectId });
+    logger49.debug("Deleting map object", { userId: ctx.user.id, mapId, objectId });
     await ctx.services.map.deleteObject(mapId, objectId, ctx.user);
   });
   maps2 = {
@@ -87966,14 +87030,14 @@ var init_map_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/notification.controller.ts
-var logger48, list6, updateStatus, getStats, create4, deliver, notifications2;
+var logger50, list6, updateStatus, getStats, create4, deliver, notifications2;
 var init_notification_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger48 = log.scope("NotificationController");
+  logger50 = log.scope("NotificationController");
   list6 = requireAuth(async (ctx) => {
     const query = {
       status: ctx.url.searchParams.get("status") || undefined,
@@ -87984,10 +87048,10 @@ var init_notification_controller = __esm(() => {
     const result = NotificationListQuerySchema.omit({ userId: true }).safeParse(query);
     if (!result.success) {
       const details = formatZodError(result.error);
-      logger48.warn("List notifications query validation failed", { details });
+      logger50.warn("List notifications query validation failed", { details });
       throw ApiError.badRequest("Invalid query parameters", details);
     }
-    logger48.debug("Listing notifications", { userId: ctx.user.id, ...result.data });
+    logger50.debug("Listing notifications", { userId: ctx.user.id, ...result.data });
     return ctx.services.notification.list(ctx.user, result.data);
   });
   updateStatus = requireAuth(async (ctx) => {
@@ -88002,12 +87066,12 @@ var init_notification_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger48.warn("Update notification status validation failed", { details });
+        logger50.warn("Update notification status validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger48.debug("Updating status", {
+    logger50.debug("Updating status", {
       userId: ctx.user.id,
       notificationId,
       status: body2.status
@@ -88017,7 +87081,7 @@ var init_notification_controller = __esm(() => {
   getStats = requireAuth(async (ctx) => {
     const startDate = ctx.url.searchParams.get("startDate");
     const endDate = ctx.url.searchParams.get("endDate");
-    logger48.debug("Getting stats", { userId: ctx.user.id, startDate, endDate });
+    logger50.debug("Getting stats", { userId: ctx.user.id, startDate, endDate });
     return ctx.services.notification.getStats(ctx.user, {
       startDate: startDate ? new Date(startDate) : undefined,
       endDate: endDate ? new Date(endDate) : undefined
@@ -88031,12 +87095,12 @@ var init_notification_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger48.warn("Create notification validation failed", { details });
+        logger50.warn("Create notification validation failed", { details });
         throw ApiError.unprocessableEntity("Invalid request body", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger48.debug("Creating notification", {
+    logger50.debug("Creating notification", {
       userId: ctx.user.id,
       targetUserId: body2.userId,
       type: body2.type
@@ -88054,12 +87118,12 @@ var init_notification_controller = __esm(() => {
     });
   });
   deliver = requireAuth(async (ctx) => {
-    logger48.debug("Delivering notifications", { userId: ctx.user.id });
+    logger50.debug("Delivering notifications", { userId: ctx.user.id });
     try {
       await ctx.services.notification.deliverPending(ctx.user.id);
       return { success: true };
     } catch (error2) {
-      logger48.error("Failed to deliver notifications", { error: error2 });
+      logger50.error("Failed to deliver notifications", { error: error2 });
       throw ApiError.internal("Failed to deliver notifications");
     }
   });
@@ -88073,51 +87137,42 @@ var init_notification_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/realtime.controller.ts
-var logger49, generateToken, realtime;
+var logger51, generateToken2, realtime;
 var init_realtime_controller = __esm(() => {
   init_src2();
   init_utils11();
-  logger49 = log.scope("RealtimeController");
-  generateToken = requireAuth(async (ctx) => {
+  logger51 = log.scope("RealtimeController");
+  generateToken2 = requireAuth(async (ctx) => {
     const gameIdOrSlug = ctx.params.gameId;
-    logger49.debug("Generating token", {
+    logger51.debug("Generating token", {
       userId: ctx.user.id,
       gameId: gameIdOrSlug || "global"
     });
     return ctx.services.realtime.generateToken(ctx.user, gameIdOrSlug);
   });
   realtime = {
-    generateToken
+    generateToken: generateToken2
   };
 });
 
 // ../api-core/src/controllers/secrets.controller.ts
-var logger50, listKeys, getValues, setSecrets, deleteSecret, secrets;
+var logger52, listKeys, setSecrets, deleteSecret, secrets;
 var init_secrets_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger50 = log.scope("SecretsController");
+  logger52 = log.scope("SecretsController");
   listKeys = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
       throw ApiError.badRequest("Missing game slug");
     }
-    logger50.debug("Listing secret keys", { userId: ctx.user.id, slug: slug2 });
+    logger52.debug("Listing secret keys", { userId: ctx.user.id, slug: slug2 });
     const keys = await ctx.services.secrets.listKeys(slug2, ctx.user);
     return { keys };
   });
-  getValues = requireDeveloper(async (ctx) => {
-    const slug2 = ctx.params.slug;
-    if (!slug2) {
-      throw ApiError.badRequest("Missing game slug");
-    }
-    logger50.debug("Getting secret values", { userId: ctx.user.id, slug: slug2 });
-    const secrets = await ctx.services.secrets.getValues(slug2, ctx.user);
-    return { secrets };
-  });
   setSecrets = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
@@ -88130,12 +87185,12 @@ var init_secrets_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger50.warn("Set secrets validation failed", { details });
+        logger52.warn("Set secrets validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger50.debug("Setting secrets", {
+    logger52.debug("Setting secrets", {
       userId: ctx.user.id,
       slug: slug2,
       keyCount: Object.keys(body2).length
@@ -88152,27 +87207,26 @@ var init_secrets_controller = __esm(() => {
     if (!key) {
       throw ApiError.badRequest("Missing secret key");
     }
-    logger50.debug("Deleting secret", { userId: ctx.user.id, slug: slug2, key });
+    logger52.debug("Deleting secret", { userId: ctx.user.id, slug: slug2, key });
     await ctx.services.secrets.deleteSecret(slug2, key, ctx.user);
     return { success: true };
   });
   secrets = {
     listKeys,
-    getValues,
     setSecrets,
     deleteSecret
   };
 });
 
 // ../api-core/src/controllers/seed.controller.ts
-var logger51, seed;
+var logger53, seed;
 var init_seed_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger51 = log.scope("SeedController");
+  logger53 = log.scope("SeedController");
   seed = requireDeveloper(async (ctx) => {
     const slug2 = ctx.params.slug;
     if (!slug2) {
@@ -88185,29 +87239,29 @@ var init_seed_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger51.warn("Seed database validation failed", { details });
+        logger53.warn("Seed database validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger51.debug("Seeding database", { userId: ctx.user.id, slug: slug2, codeLength: body2.code.length });
+    logger53.debug("Seeding database", { userId: ctx.user.id, slug: slug2, codeLength: body2.code.length });
     return ctx.services.seed.seed(slug2, body2.code, ctx.user);
   });
 });
 
 // ../api-core/src/controllers/session.controller.ts
-var logger52, start2, end, mintToken, sessions2;
+var logger54, start2, end, mintToken, sessions2;
 var init_session_controller = __esm(() => {
   init_src2();
   init_errors();
   init_utils11();
-  logger52 = log.scope("SessionController");
+  logger54 = log.scope("SessionController");
   start2 = requireAuth(async (ctx) => {
     const gameIdOrSlug = ctx.params.gameId;
     if (!gameIdOrSlug) {
       throw ApiError.badRequest("Missing game ID or slug");
     }
-    logger52.debug("Starting session", { userId: ctx.user.id, gameIdOrSlug });
+    logger54.debug("Starting session", { userId: ctx.user.id, gameIdOrSlug });
     return ctx.services.session.start(gameIdOrSlug, ctx.user.id);
   });
   end = requireAuth(async (ctx) => {
@@ -88219,7 +87273,7 @@ var init_session_controller = __esm(() => {
     if (!sessionId) {
       throw ApiError.badRequest("Missing session ID");
     }
-    logger52.debug("Ending session", { userId: ctx.user.id, gameIdOrSlug, sessionId });
+    logger54.debug("Ending session", { userId: ctx.user.id, gameIdOrSlug, sessionId });
     return ctx.services.session.end(gameIdOrSlug, sessionId, ctx.user.id);
   });
   mintToken = requireAuth(async (ctx) => {
@@ -88227,7 +87281,7 @@ var init_session_controller = __esm(() => {
     if (!gameIdOrSlug) {
       throw ApiError.badRequest("Missing game ID or slug");
     }
-    logger52.debug("Minting token", { userId: ctx.user.id, gameIdOrSlug });
+    logger54.debug("Minting token", { userId: ctx.user.id, gameIdOrSlug });
     return ctx.services.session.mintToken(gameIdOrSlug, ctx.user.id);
   });
   sessions2 = {
@@ -88238,13 +87292,13 @@ var init_session_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/shop.controller.ts
-var logger53, getShopView, shop;
+var logger55, getShopView, shop;
 var init_shop_controller = __esm(() => {
   init_src2();
   init_utils11();
-  logger53 = log.scope("ShopController");
+  logger55 = log.scope("ShopController");
   getShopView = requireAuth(async (ctx) => {
-    logger53.debug("Getting shop view", { userId: ctx.user.id });
+    logger55.debug("Getting shop view", { userId: ctx.user.id });
     return ctx.services.shop.getShopView(ctx.user);
   });
   shop = {
@@ -88253,7 +87307,7 @@ var init_shop_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/shop-listing.controller.ts
-var logger54, list7, getById4, create5, update5, remove5, listByGame2, getByGameItem, createForGameItem, updateForGameItem, deleteForGameItem, shopListings2;
+var logger56, list7, getById4, create5, update5, remove5, listByGame2, getByGameItem, createForGameItem, updateForGameItem, deleteForGameItem, shopListings2;
 var init_shop_listing_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -88261,9 +87315,9 @@ var init_shop_listing_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger54 = log.scope("ShopListingController");
+  logger56 = log.scope("ShopListingController");
   list7 = requireAdmin(async (ctx) => {
-    logger54.debug("Listing shop listings", { userId: ctx.user.id });
+    logger56.debug("Listing shop listings", { userId: ctx.user.id });
     return ctx.services.shopListing.list();
   });
   getById4 = requireAdmin(async (ctx) => {
@@ -88274,7 +87328,7 @@ var init_shop_listing_controller = __esm(() => {
     if (!isValidUUID(listingId)) {
       throw ApiError.unprocessableEntity("listingId must be a valid UUID format");
     }
-    logger54.debug("Getting listing", { userId: ctx.user.id, listingId });
+    logger56.debug("Getting listing", { userId: ctx.user.id, listingId });
     return ctx.services.shopListing.getById(listingId);
   });
   create5 = requireAdmin(async (ctx) => {
@@ -88285,12 +87339,12 @@ var init_shop_listing_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger54.warn("Create shop listing validation failed", { details });
+        logger56.warn("Create shop listing validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger54.debug("Creating listing", {
+    logger56.debug("Creating listing", {
       userId: ctx.user.id,
       itemId: body2.itemId,
       currencyId: body2.currencyId,
@@ -88313,12 +87367,12 @@ var init_shop_listing_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger54.warn("Update shop listing validation failed", { details });
+        logger56.warn("Update shop listing validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger54.debug("Updating listing", {
+    logger56.debug("Updating listing", {
       userId: ctx.user.id,
       listingId,
       price: body2.price,
@@ -88335,7 +87389,7 @@ var init_shop_listing_controller = __esm(() => {
     if (!isValidUUID(listingId)) {
       throw ApiError.unprocessableEntity("listingId must be a valid UUID format");
     }
-    logger54.debug("Deleting listing", { userId: ctx.user.id, listingId });
+    logger56.debug("Deleting listing", { userId: ctx.user.id, listingId });
     await ctx.services.shopListing.delete(listingId);
   });
   listByGame2 = requireAuth(async (ctx) => {
@@ -88346,7 +87400,7 @@ var init_shop_listing_controller = __esm(() => {
     if (!isValidUUID(gameId)) {
       throw ApiError.unprocessableEntity("gameId must be a valid UUID format");
     }
-    logger54.debug("Listing game listings", { userId: ctx.user.id, gameId });
+    logger56.debug("Listing game listings", { userId: ctx.user.id, gameId });
     return ctx.services.shopListing.listByGame(gameId, ctx.user);
   });
   getByGameItem = requireAuth(async (ctx) => {
@@ -88361,7 +87415,7 @@ var init_shop_listing_controller = __esm(() => {
     if (!isValidUUID(itemId)) {
       throw ApiError.unprocessableEntity("itemId must be a valid UUID format");
     }
-    logger54.debug("Getting game item listing", { userId: ctx.user.id, gameId, itemId });
+    logger56.debug("Getting game item listing", { userId: ctx.user.id, gameId, itemId });
     return ctx.services.shopListing.getByGameItem(gameId, itemId, ctx.user);
   });
   createForGameItem = requireAuth(async (ctx) => {
@@ -88383,12 +87437,12 @@ var init_shop_listing_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger54.warn("Create game item listing validation failed", { details });
+        logger56.warn("Create game item listing validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger54.debug("Creating game item listing", {
+    logger56.debug("Creating game item listing", {
       userId: ctx.user.id,
       gameId,
       itemId,
@@ -88416,12 +87470,12 @@ var init_shop_listing_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger54.warn("Update game item listing validation failed", { details });
+        logger56.warn("Update game item listing validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger54.debug("Updating game item listing", {
+    logger56.debug("Updating game item listing", {
       userId: ctx.user.id,
       gameId,
       itemId,
@@ -88443,7 +87497,7 @@ var init_shop_listing_controller = __esm(() => {
     if (!isValidUUID(itemId)) {
       throw ApiError.unprocessableEntity("itemId must be a valid UUID format");
     }
-    logger54.debug("Deleting game item listing", {
+    logger56.debug("Deleting game item listing", {
       userId: ctx.user.id,
       gameId,
       itemId
@@ -88470,21 +87524,21 @@ async function getBySlug2(ctx) {
   if (!slug2) {
     throw ApiError.badRequest("Template slug is required");
   }
-  logger55.debug("Getting sprite by slug", { slug: slug2 });
+  logger57.debug("Getting sprite by slug", { slug: slug2 });
   return ctx.services.sprite.getBySlug(slug2);
 }
-var logger55, sprites;
+var logger57, sprites;
 var init_sprite_controller = __esm(() => {
   init_src2();
   init_errors();
-  logger55 = log.scope("SpriteController");
+  logger57 = log.scope("SpriteController");
   sprites = {
     getBySlug: getBySlug2
   };
 });
 
 // ../api-core/src/controllers/timeback.controller.ts
-var logger56, getTodayXp, getTotalXp, updateTodayXp, getXpHistory, populateStudent, getUser, getUserById, setupIntegration, getIntegrations, verifyIntegration, getConfig2, deleteIntegrations, endActivity, timeback2;
+var logger58, getTodayXp, getTotalXp, updateTodayXp, getXpHistory, populateStudent, getUser, getUserById, setupIntegration, getIntegrations, verifyIntegration, getConfig2, deleteIntegrations, endActivity, timeback2;
 var init_timeback_controller = __esm(() => {
   init_esm();
   init_schemas_index();
@@ -88492,15 +87546,15 @@ var init_timeback_controller = __esm(() => {
   init_src4();
   init_errors();
   init_utils11();
-  logger56 = log.scope("TimebackController");
+  logger58 = log.scope("TimebackController");
   getTodayXp = requireAuth(async (ctx) => {
     const date4 = ctx.url.searchParams.get("date") || undefined;
     const tz = ctx.url.searchParams.get("tz") || undefined;
-    logger56.debug("Getting today XP", { userId: ctx.user.id, date: date4, tz });
+    logger58.debug("Getting today XP", { userId: ctx.user.id, date: date4, tz });
     return ctx.services.timeback.getTodayXp(ctx.user.id, date4, tz);
   });
   getTotalXp = requireAuth(async (ctx) => {
-    logger56.debug("Getting total XP", { userId: ctx.user.id });
+    logger58.debug("Getting total XP", { userId: ctx.user.id });
     return ctx.services.timeback.getTotalXp(ctx.user.id);
   });
   updateTodayXp = requireAuth(async (ctx) => {
@@ -88511,18 +87565,18 @@ var init_timeback_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger56.warn("Update today XP validation failed", { details });
+        logger58.warn("Update today XP validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger56.debug("Updating today XP", { userId: ctx.user.id, xp: body2.xp });
+    logger58.debug("Updating today XP", { userId: ctx.user.id, xp: body2.xp });
     return ctx.services.timeback.updateTodayXp(ctx.user.id, body2);
   });
   getXpHistory = requireAuth(async (ctx) => {
     const startDate = ctx.url.searchParams.get("startDate") || undefined;
     const endDate = ctx.url.searchParams.get("endDate") || undefined;
-    logger56.debug("Getting XP history", { userId: ctx.user.id, startDate, endDate });
+    logger58.debug("Getting XP history", { userId: ctx.user.id, startDate, endDate });
     return ctx.services.timeback.getXpHistory(ctx.user.id, startDate, endDate);
   });
   populateStudent = requireAuth(async (ctx) => {
@@ -88533,18 +87587,18 @@ var init_timeback_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger56.warn("Populate student validation failed", { details });
+        logger58.warn("Populate student validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
     }
-    logger56.debug("Populating student", {
+    logger58.debug("Populating student", {
       userId: ctx.user.id,
       hasProvidedNames: !!providedNames
     });
     return ctx.services.timeback.populateStudent(ctx.user, providedNames);
   });
   getUser = requireAuth(async (ctx) => {
-    logger56.debug("Getting user", { userId: ctx.user.id, gameId: ctx.gameId });
+    logger58.debug("Getting user", { userId: ctx.user.id, gameId: ctx.gameId });
     return ctx.services.timeback.getUserData(ctx.user.id, ctx.gameId);
   });
   getUserById = requireAuth(async (ctx) => {
@@ -88552,7 +87606,7 @@ var init_timeback_controller = __esm(() => {
     if (!timebackId) {
       throw ApiError.badRequest("Missing timebackId parameter");
     }
-    logger56.debug("Getting user by ID", { requesterId: ctx.user.id, timebackId });
+    logger58.debug("Getting user by ID", { requesterId: ctx.user.id, timebackId });
     return ctx.services.timeback.getUserDataByTimebackId(timebackId);
   });
   setupIntegration = requireDeveloper(async (ctx) => {
@@ -88563,12 +87617,12 @@ var init_timeback_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger56.warn("Setup integration validation failed", { details });
+        logger58.warn("Setup integration validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger56.debug("Setting up integration", {
+    logger58.debug("Setting up integration", {
       userId: ctx.user.id,
       gameId: body2.gameId
     });
@@ -88580,7 +87634,7 @@ var init_timeback_controller = __esm(() => {
       throw ApiError.badRequest("Missing gameId");
     if (!isValidUUID(gameId))
       throw ApiError.unprocessableEntity("Invalid gameId format");
-    logger56.debug("Getting integrations", { userId: ctx.user.id, gameId });
+    logger58.debug("Getting integrations", { userId: ctx.user.id, gameId });
     return ctx.services.timeback.getIntegrations(gameId, ctx.user);
   });
   verifyIntegration = requireDeveloper(async (ctx) => {
@@ -88589,7 +87643,7 @@ var init_timeback_controller = __esm(() => {
       throw ApiError.badRequest("Missing gameId");
     if (!isValidUUID(gameId))
       throw ApiError.unprocessableEntity("Invalid gameId format");
-    logger56.debug("Verifying integration", { userId: ctx.user.id, gameId });
+    logger58.debug("Verifying integration", { userId: ctx.user.id, gameId });
     return ctx.services.timeback.verifyIntegration(gameId, ctx.user);
   });
   getConfig2 = requireDeveloper(async (ctx) => {
@@ -88598,7 +87652,7 @@ var init_timeback_controller = __esm(() => {
       throw ApiError.badRequest("Missing gameId");
     if (!isValidUUID(gameId))
       throw ApiError.unprocessableEntity("Invalid gameId format");
-    logger56.debug("Getting config", { userId: ctx.user.id, gameId });
+    logger58.debug("Getting config", { userId: ctx.user.id, gameId });
     return ctx.services.timeback.getConfig(gameId, ctx.user);
   });
   deleteIntegrations = requireDeveloper(async (ctx) => {
@@ -88607,7 +87661,7 @@ var init_timeback_controller = __esm(() => {
       throw ApiError.badRequest("Missing gameId");
     if (!isValidUUID(gameId))
       throw ApiError.unprocessableEntity("Invalid gameId format");
-    logger56.debug("Deleting integrations", { userId: ctx.user.id, gameId });
+    logger58.debug("Deleting integrations", { userId: ctx.user.id, gameId });
     await ctx.services.timeback.deleteIntegrations(gameId, ctx.user);
   });
   endActivity = requireDeveloper(async (ctx) => {
@@ -88618,13 +87672,13 @@ var init_timeback_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger56.warn("End activity validation failed", { details });
+        logger58.warn("End activity validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
     const { gameId, studentId, activityData, scoreData, timingData, xpEarned, masteredUnits } = body2;
-    logger56.debug("Ending activity", { userId: ctx.user.id, gameId });
+    logger58.debug("Ending activity", { userId: ctx.user.id, gameId });
     return ctx.services.timeback.endActivity(gameId, studentId, activityData, scoreData, timingData, xpEarned, masteredUnits, ctx.user);
   });
   timeback2 = {
@@ -88645,14 +87699,14 @@ var init_timeback_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/upload.controller.ts
-var logger57, initiate;
+var logger59, initiate;
 var init_upload_controller = __esm(() => {
   init_esm();
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger57 = log.scope("UploadController");
+  logger59 = log.scope("UploadController");
   initiate = requireDeveloper(async (ctx) => {
     let body2;
     try {
@@ -88661,24 +87715,24 @@ var init_upload_controller = __esm(() => {
     } catch (error2) {
       if (error2 instanceof exports_external.ZodError) {
         const details = formatZodError(error2);
-        logger57.warn("Initiate upload validation failed", { details });
+        logger59.warn("Initiate upload validation failed", { details });
         throw ApiError.unprocessableEntity("Validation failed", details);
       }
       throw ApiError.badRequest("Invalid JSON body");
     }
-    logger57.debug("Initiating upload", { userId: ctx.user.id, gameId: body2.gameId });
+    logger59.debug("Initiating upload", { userId: ctx.user.id, gameId: body2.gameId });
     return ctx.services.upload.initiate(body2, ctx.user);
   });
 });
 
 // ../api-core/src/controllers/user.controller.ts
-var logger58, getMe, users2;
+var logger60, getMe, users2;
 var init_user_controller = __esm(() => {
   init_src2();
   init_utils11();
-  logger58 = log.scope("UserController");
+  logger60 = log.scope("UserController");
   getMe = requireAuth(async (ctx) => {
-    logger58.debug("Getting current user", { userId: ctx.user.id, gameId: ctx.gameId });
+    logger60.debug("Getting current user", { userId: ctx.user.id, gameId: ctx.gameId });
     return ctx.services.user.getMe(ctx.user, ctx.gameId);
   });
   users2 = {
@@ -88687,13 +87741,13 @@ var init_user_controller = __esm(() => {
 });
 
 // ../api-core/src/controllers/verify.controller.ts
-var logger59;
+var logger61;
 var init_verify_controller = __esm(() => {
   init_schemas_index();
   init_src2();
   init_errors();
   init_utils11();
-  logger59 = log.scope("VerifyController");
+  logger61 = log.scope("VerifyController");
 });
 
 // ../api-core/src/controllers/index.ts
@@ -88712,6 +87766,7 @@ var init_controllers = __esm(() => {
   init_item_controller();
   init_leaderboard_controller();
   init_level_controller();
+  init_logs_controller();
   init_lti_controller();
   init_map_controller();
   init_notification_controller();
@@ -89228,6 +88283,16 @@ var init_items = __esm(() => {
   gameItemsRouter.delete("/:gameId/items/:itemId", handle2(items2.deleteForGame, { status: 204 }));
 });
 
+// src/routes/platform/games/logs.ts
+var gameLogsRouter;
+var init_logs = __esm(() => {
+  init_dist3();
+  init_controllers();
+  init_api();
+  gameLogsRouter = new Hono2;
+  gameLogsRouter.post("/:slug/logs/token", handle2(logs.generateToken));
+});
+
 // src/routes/platform/games/scores.ts
 var gameScoresRouter;
 var init_scores = __esm(() => {
@@ -89247,7 +88312,6 @@ var init_secrets = __esm(() => {
   init_api();
   gameSecretsRouter = new Hono2;
   gameSecretsRouter.get("/:slug/secrets", handle2(secrets.listKeys));
-  gameSecretsRouter.get("/:slug/secrets/values", handle2(secrets.getValues));
   gameSecretsRouter.post("/:slug/secrets", handle2(secrets.setSecrets));
   gameSecretsRouter.delete("/:slug/secrets/:key", handle2(secrets.deleteSecret));
 });
@@ -89543,6 +88607,7 @@ var init_games2 = __esm(() => {
   init_deploy();
   init_domains3();
   init_items();
+  init_logs();
   init_scores();
   init_secrets();
   init_seed2();
@@ -89558,6 +88623,7 @@ var init_games2 = __esm(() => {
   gamesRouter.route("/", gameDeployRouter);
   gamesRouter.route("/", gameDomainsRouter);
   gamesRouter.route("/", gameItemsRouter);
+  gamesRouter.route("/", gameLogsRouter);
   gamesRouter.route("/", gameShopRouter);
   gamesRouter.route("/", gameScoresRouter);
   gamesRouter.route("/", gameSecretsRouter);
@@ -89782,51 +88848,85 @@ var init_timeback6 = __esm(() => {
 });
 
 // src/routes/integrations/lti.ts
-var ltiRouter;
+function verifyMockToken(idToken) {
+  if (!idToken.startsWith("mock:")) {
+    throw new Error("Invalid LTI token - must be mock token in sandbox");
+  }
+  try {
+    const jsonStr = Buffer.from(idToken.slice(5), "base64").toString();
+    return JSON.parse(jsonStr);
+  } catch {
+    throw new Error("Invalid LTI token format");
+  }
+}
+var logger62, ltiRouter;
 var init_lti = __esm(() => {
   init_drizzle_orm();
   init_dist3();
   init_controllers();
-  init_errors();
+  init_utils11();
   init_tables_index();
+  init_src2();
   init_constants();
   init_api();
-  init_context();
+  logger62 = log.scope("SandboxLti");
   ltiRouter = new Hono2;
-  ltiRouter.all("/launch", async (c2) => {
-    if (c2.req.method !== "POST") {
-      return c2.json({
-        error: "method_not_allowed",
-        message: "LTI launches must use POST method"
-      }, 405);
-    }
-    const sandboxCtx = getSandboxContext();
-    const ctx = {
-      db: sandboxCtx.db,
-      config: sandboxCtx.config,
-      providers: sandboxCtx.providers,
-      services: sandboxCtx.services,
-      user: undefined,
-      params: {},
-      url: new URL(c2.req.url),
-      request: c2.req.raw
-    };
+  ltiRouter.post("/launch", async (c2) => {
+    const db2 = c2.get("db");
     try {
-      const result = await lti.launch(ctx);
-      c2.header("Set-Cookie", `better-auth.session=${result.sessionToken}; Path=/; HttpOnly; SameSite=Lax; Max-Age=${30 * 24 * 60 * 60}`);
-      return c2.redirect(result.redirectPath);
-    } catch (error2) {
-      if (error2 instanceof ApiError) {
+      const formData = await c2.req.formData();
+      const idToken = formData.get("id_token");
+      if (!idToken || typeof idToken !== "string") {
         return c2.json({
-          error: "lti_launch_failed",
-          message: error2.message,
-          code: error2.code,
-          details: error2.details
-        }, error2.status);
+          error: "missing_token",
+          message: "Missing or invalid id_token in request"
+        }, 400);
       }
+      let claims;
+      try {
+        claims = verifyMockToken(idToken);
+      } catch (error2) {
+        const errorMessage = error2 instanceof Error ? error2.message : String(error2);
+        logger62.error("LTI token verification failed", { error: errorMessage });
+        return c2.json({
+          error: "invalid_token",
+          message: errorMessage
+        }, 401);
+      }
+      const validationError = validateLtiClaims(claims);
+      if (validationError) {
+        logger62.warn("LTI claims validation failed", {
+          error: validationError,
+          sub: claims.sub
+        });
+        return c2.json({
+          error: "invalid_claims",
+          message: validationError
+        }, 400);
+      }
+      const user = await provisionLtiUser(db2, claims);
+      const sessionToken = crypto.randomUUID();
+      const expiresAt = new Date(Date.now() + 30 * 24 * 60 * 60 * 1000);
+      await db2.insert(sessions).values({
+        id: crypto.randomUUID(),
+        userId: user.id,
+        token: sessionToken,
+        expiresAt,
+        createdAt: new Date,
+        updatedAt: new Date
+      });
+      logger62.info("LTI launch successful", { userId: user.id });
+      const targetUri = claims["https://purl.imsglobal.org/spec/lti/claim/target_link_uri"];
+      const currentHost = new URL(c2.req.url).hostname;
+      const redirectPath = extractRedirectPath(targetUri, currentHost);
+      c2.header("Set-Cookie", `sandbox-session=${sessionToken}; Path=/; HttpOnly; SameSite=Lax; Max-Age=${30 * 24 * 60 * 60}`);
+      return c2.redirect(redirectPath);
+    } catch (error2) {
+      const errorMessage = error2 instanceof Error ? error2.message : String(error2);
+      logger62.error("Unexpected error during LTI launch", { error: errorMessage });
       return c2.json({
         error: "unexpected_error",
-        message: "An unexpected error occurred during LTI launch. Please try again or contact support."
+        message: "An unexpected error occurred during LTI launch"
       }, 500);
     }
   });
@@ -89956,7 +89056,6 @@ async function startServer(port, project, options = {}) {
   resetSandboxContext();
   resetHandlers();
   clearSandboxCache();
-  clearSandboxSecrets();
   clearSandboxStorage();
   const db2 = await setupServerDatabase(processedOptions, project);
   createSandboxContext({ db: db2, port });
@@ -89983,7 +89082,6 @@ async function startServer(port, project, options = {}) {
       resetSandboxContext();
       resetHandlers();
       clearSandboxCache();
-      clearSandboxSecrets();
       clearSandboxStorage();
     }
   };