npm - @primitivedotdev/sdk - Versions diffs - 0.12.0 → 0.14.0 - Mend

@primitivedotdev/sdk 0.12.0 → 0.14.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

package/dist/api/generated/index.js +1 -1
package/dist/api/generated/sdk.gen.js +91 -4
package/dist/api/index.d.ts +2 -2
package/dist/{api-CLLpjjWy.js → api-DH-YKt7a.js} +104 -5
package/dist/{index-K4KbjppU.d.ts → index-Cts9r1sL.d.ts} +625 -8
package/dist/index.d.ts +1 -1
package/dist/index.js +1 -1
package/dist/oclif/api-command.js +72 -12
package/dist/oclif/commands/emails-latest.js +118 -0
package/dist/oclif/commands/send.js +25 -4
package/dist/oclif/commands/whoami.js +2 -3
package/dist/oclif/index.js +69 -3
package/dist/openapi/openapi.generated.js +570 -7
package/dist/openapi/operations.generated.js +111 -2
package/oclif.manifest.json +243 -14
package/package.json +3 -3

package/dist/{index-K4KbjppU.d.ts → index-Cts9r1sL.d.ts} RENAMED Viewed

@@ -560,6 +560,18 @@ type EmailSummary = {
   domain_id?: string | null;
   org_id?: string | null;
   status: 'pending' | 'accepted' | 'completed' | 'rejected';
+  /**
+   * SMTP envelope sender (return-path) the inbound mail server
+   * accepted. For most legitimate mail this equals the bare
+   * address in the From header; for mailing lists, bounce
+   * handlers, and forwarders it is typically the bounce address
+   * rather than the human-visible sender.
+   *
+   * For the parsed From-header value (with display name handling
+   * and a sender-fallback when the header is unparseable), GET
+   * the email by id and use `from_email`.
+   *
+   */
   sender: string;
   recipient: string;
   subject?: string | null;
@@ -576,6 +588,20 @@ type EmailDetail = {
   message_id?: string | null;
   domain_id?: string | null;
   org_id?: string | null;
+  /**
+   * SMTP envelope sender (return-path) the inbound mail server
+   * accepted. Same value as `smtp_mail_from`; both fields exist
+   * so protocol-aware tooling can use whichever name it expects.
+   *
+   * For most legitimate mail this equals `from_email`; for
+   * mailing lists, bounce handlers, and forwarders it is
+   * typically the bounce-handling address rather than the
+   * human-visible sender.
+   *
+   * **For the canonical "who sent this email" value, use
+   * `from_email`.**
+   *
+   */
   sender: string;
   recipient: string;
   subject?: string | null;
@@ -602,13 +628,43 @@ type EmailDetail = {
   webhook_last_error?: string | null;
   webhook_fired_at?: string | null;
   smtp_helo?: string | null;
+  /**
+   * SMTP envelope MAIL FROM (return-path), as accepted by the
+   * inbound mail server. Same value as `sender`; both fields
+   * exist so protocol-aware tooling can use whichever name it
+   * expects.
+   *
+   * For the canonical "who sent this email" value (display name
+   * stripped, From-header preferred), use `from_email`.
+   *
+   */
   smtp_mail_from?: string | null;
   smtp_rcpt_to?: Array<string> | null;
+  /**
+   * Raw `From:` header from the message body, including any
+   * display name (e.g. `"Alice Example" <alice@example.com>`).
+   * Use this when you need the display name for rendering.
+   *
+   * For the bare email address (display name stripped), use
+   * `from_email`.
+   *
+   */
   from_header?: string | null;
   content_discarded_at?: string | null;
   content_discarded_by_delivery_id?: string | null;
   /**
-   * Parsed from address (from_header or sender fallback)
+   * Bare email address parsed from the `From:` header, with
+   * display name stripped (e.g. `alice@example.com`). Falls
+   * back to `sender` (the SMTP envelope MAIL FROM) when the
+   * `From:` header cannot be parsed.
+   *
+   * **This is the canonical "who sent this email" field for
+   * most use cases**, including comparing against allowlists,
+   * routing replies, or displaying the sender to a user. Use
+   * `from_header` when you specifically need the display name,
+   * or `sender`/`smtp_mail_from` when you need the SMTP
+   * envelope value (e.g. to follow a bounce).
+   *
    */
   from_email: string;
   /**
@@ -690,8 +746,220 @@ type SendMailInput = {
    */
   wait_timeout_ms?: number;
 };
-type SentEmailStatus = 'queued' | 'submitted_to_agent' | 'agent_failed' | 'unknown' | 'delivered' | 'bounced' | 'deferred' | 'wait_timeout';
+/**
+ * Lifecycle status of a sent_emails row. Possible values:
+ *
+ * - `queued`: pre-call INSERT; the outbound agent has not
+ * yet replied.
+ * - `submitted_to_agent`: agent accepted; `queue_id` is set.
+ * - `agent_failed`: agent rejected; `error_code` and
+ * `error_message` carry the reason.
+ * - `gate_denied`: a recipient-scope gate denied the send;
+ * the agent was never called. The `gates` array carries
+ * the denial detail. /send-mail returns 403 in this case
+ * so callers see the denial synchronously; /sent-emails
+ * additionally records the row for historical lookup,
+ * which is when this status appears in a listing.
+ * - `unknown`: terminal indeterminate; the on-box log
+ * poller couldn't classify the receiver's response.
+ * - `delivered` / `bounced` / `deferred` / `wait_timeout`:
+ * terminal delivery outcomes (see DeliveryStatus).
+ *
+ */
+type SentEmailStatus = 'queued' | 'submitted_to_agent' | 'agent_failed' | 'gate_denied' | 'unknown' | 'delivered' | 'bounced' | 'deferred' | 'wait_timeout';
 type DeliveryStatus = 'delivered' | 'bounced' | 'deferred' | 'wait_timeout';
+/**
+ * List-row projection of a sent-email record. Drops
+ * `body_text` and `body_html` to keep paginated responses
+ * small; fetch /sent-emails/{id} for the full record with
+ * bodies.
+ *
+ */
+type SentEmailSummary = {
+  id: string;
+  status: SentEmailStatus;
+  /**
+   * Timestamp of the most recent status transition.
+   * Polling clients should treat `status='queued'` AND
+   * `status_changed_at` older than 5 minutes as
+   * "stuck-queued" (the post-tx UPDATE failed and the
+   * actual delivery state is recoverable from on-box logs
+   * via `queue_id` when populated, or `request_id`).
+   *
+   */
+  status_changed_at: string;
+  created_at: string;
+  updated_at: string;
+  /**
+   * Effective idempotency key used for this send. If the
+   * caller passed the `Idempotency-Key` header, this is
+   * that value; otherwise it's a server-derived hash of
+   * the canonical request payload.
+   *
+   */
+  client_idempotency_key?: string | null;
+  /**
+   * Stable hash of the canonical send payload.
+   */
+  content_hash: string;
+  /**
+   * Raw `From:` header as sent on the wire, including any
+   * display name (e.g. `"Acme Support" <agent@acme.test>`).
+   *
+   */
+  from_header: string;
+  /**
+   * Bare email address parsed from `from_header`.
+   */
+  from_address: string;
+  /**
+   * Raw `To:` header as sent on the wire, including any
+   * display name.
+   *
+   */
+  to_header: string;
+  /**
+   * Bare email address parsed from `to_header`.
+   */
+  to_address: string;
+  subject: string;
+  /**
+   * Total UTF-8 byte length of `body_text` + `body_html`.
+   * Surfaced on the list endpoint so callers can see "this
+   * row has a 4MB body" without fetching it.
+   *
+   */
+  body_size_bytes: number;
+  /**
+   * Timestamp at which the bodies were discarded by an
+   * entitlement-driven retention policy. Null when bodies
+   * are still present. The detail endpoint returns
+   * null-valued `body_text`/`body_html` for discarded rows.
+   *
+   */
+  content_discarded_at?: string | null;
+  /**
+   * Wire-level Message-ID assigned to the outbound message
+   * (RFC 5322). Null on rows that never reached signing
+   * (queued, gate_denied, agent_failed before signing).
+   *
+   */
+  message_id?: string | null;
+  /**
+   * Wire-level In-Reply-To header value, when this send
+   * was a reply.
+   *
+   */
+  in_reply_to?: string | null;
+  /**
+   * Wire-level References header value, when this send
+   * was a reply.
+   *
+   */
+  email_references?: string | null;
+  /**
+   * Reference to the inbound `emails.id` that this send
+   * replied to, when known. Populated when the caller used
+   * /emails/{id}/reply or when /send-mail's `in_reply_to`
+   * matched a stored inbound message_id in the same org.
+   *
+   */
+  in_reply_to_email_id?: string | null;
+  /**
+   * Message identifier assigned by Primitive's outbound
+   * relay once the agent accepts the message. Null on
+   * queued, gate_denied, and agent_failed rows.
+   *
+   */
+  queue_id?: string | null;
+  /**
+   * Receiver's 3-digit SMTP code (e.g. 250, 550, 451).
+   * Populated on terminal delivery statuses; may be null
+   * on a deferred where the agent never got an SMTP-level
+   * response (TCP refused, DNS failed, TLS handshake
+   * failed). `smtp_response_text` still carries Postfix's
+   * descriptive text in those cases.
+   *
+   */
+  smtp_response_code?: number | null;
+  /**
+   * Free-form text portion of the receiver's SMTP
+   * response. The most useful debugging signal on a
+   * `bounced` or `deferred` row.
+   *
+   */
+  smtp_response_text?: string | null;
+  /**
+   * RFC 3463 enhanced status code (e.g. `5.1.1` for "Bad
+   * destination mailbox address"). Distinct from
+   * `smtp_response_code`: the basic 3-digit code is coarse
+   * (550 = "permanent failure"), the enhanced code is
+   * finer-grained.
+   *
+   */
+  smtp_enhanced_status_code?: string | null;
+  /**
+   * DKIM selector used to sign the outbound message.
+   * Public DNS data; useful for diagnosing why a downstream
+   * verifier rejected the signature.
+   *
+   */
+  dkim_selector?: string | null;
+  /**
+   * DKIM signing domain.
+   */
+  dkim_domain?: string | null;
+  /**
+   * Stable public error code on `agent_failed` rows. The
+   * agent's internal codes are remapped to a stable public
+   * taxonomy (see `publicAgentError` in the server) so this
+   * field is safe to branch on across agent versions.
+   *
+   */
+  error_code?: string | null;
+  /**
+   * Free-form error message accompanying `error_code`.
+   */
+  error_message?: string | null;
+  /**
+   * Gate-denial detail on `gate_denied` rows. Mirrors the
+   * synchronous /send-mail 403 contract so a caller's
+   * GateDenial handler is the same across live denies and
+   * historical lookups. Null on every other status.
+   *
+   */
+  gates?: Array<GateDenial> | null;
+  /**
+   * Server-issued request identifier from the original
+   * /send-mail call. Surfaced as the `X-Request-Id`
+   * response header on the live send and recorded here
+   * for support escalation.
+   *
+   */
+  request_id?: string | null;
+};
+/**
+ * Full sent-email record, including `body_text` and
+ * `body_html`. Returned by /sent-emails/{id}.
+ *
+ */
+type SentEmailDetail = SentEmailSummary & {
+  /**
+   * Plain-text body sent on the wire. Null when the
+   * send carried only an HTML body, or when bodies have
+   * been discarded post-send (`content_discarded_at`
+   * set).
+   *
+   */
+  body_text?: string | null;
+  /**
+   * HTML body sent on the wire. Null when the send
+   * carried only a plain-text body, or when bodies
+   * have been discarded post-send.
+   *
+   */
+  body_html?: string | null;
+};
 /**
  * Body shape for `/emails/{id}/reply`. Intentionally narrow:
  * recipients (`to`), subject, and threading headers
@@ -736,6 +1004,21 @@ type SendMailResult = {
    */
   id: string;
   status: SentEmailStatus;
+  /**
+   * Bare from-address actually written on the wire. Echoed
+   * on every success branch so callers can confirm what
+   * went out, particularly useful for the /emails/{id}/reply
+   * path where `from` is server-derived from the inbound's
+   * recipient when the caller doesn't override.
+   *
+   * For sends where the caller passed a from-header that
+   * included a display name (e.g. `"Acme Support" <support@acme.test>`),
+   * this field is the parsed bare address (`support@acme.test`).
+   * The display name was sent on the wire intact; this field
+   * just makes the address easy to compare against allowlists.
+   *
+   */
+  from: string;
   /**
    * Message identifier assigned by Primitive's outbound relay, when available.
    */
@@ -779,6 +1062,135 @@ type SendMailResult = {
    */
   idempotent_replay: boolean;
 };
+/**
+ * One recipient-scope rule describing a destination the caller
+ * may send to. Discriminated on `type`. Each rule carries a
+ * human-prose `description` field intended for display.
+ *
+ * Rule kinds are stable within an SDK release. A response
+ * containing a `type` value not enumerated in this schema
+ * means the server is running a newer version than the SDK;
+ * upgrade the SDK to the release that matches the server's
+ * schema. Strict-parsing SDKs (Go, Python) will raise a
+ * decode error in that case rather than silently dropping
+ * the unknown rule, since silent drops would let an outbound
+ * agent reason from an incomplete view of its own permissions.
+ *
+ */
+type SendPermissionRule = ({
+  type: 'any_recipient';
+} & SendPermissionAnyRecipient) | ({
+  type: 'managed_zone';
+} & SendPermissionManagedZone) | ({
+  type: 'your_domain';
+} & SendPermissionYourDomain) | ({
+  type: 'address';
+} & SendPermissionAddress);
+/**
+ * The caller can send to any recipient. When this rule is
+ * present, every other rule in the response is redundant.
+ *
+ */
+type SendPermissionAnyRecipient = {
+  type: 'any_recipient';
+  /**
+   * Human-prose summary of the rule.
+   */
+  description: string;
+};
+/**
+ * The caller can send to any address at the named
+ * Primitive-managed zone. Always emitted (no entitlement
+ * required) because Primitive owns the zone and every mailbox
+ * belongs to a Primitive customer by construction.
+ *
+ */
+type SendPermissionManagedZone = {
+  type: 'managed_zone';
+  /**
+   * The managed apex domain. Sends are accepted to any
+   * address at the apex itself or any subdomain (e.g.
+   * `alice@primitive.email` and `alice@acme.primitive.email`
+   * both match the `primitive.email` zone rule).
+   *
+   */
+  zone: string;
+  /**
+   * Human-prose summary of the rule.
+   */
+  description: string;
+};
+/**
+ * The caller can send to any address at one of their own
+ * verified outbound domains. Emitted once per active row in
+ * the org's `domains` table.
+ *
+ */
+type SendPermissionYourDomain = {
+  type: 'your_domain';
+  /**
+   * A verified outbound domain owned by the caller's org.
+   */
+  domain: string;
+  /**
+   * Human-prose summary of the rule.
+   */
+  description: string;
+};
+/**
+ * The caller can send to a specific address that has
+ * authenticated inbound mail to the org. Emitted once per row
+ * in the org's `known_send_addresses` table, capped at
+ * `meta.address_cap`.
+ *
+ */
+type SendPermissionAddress = {
+  type: 'address';
+  /**
+   * The bare email address this rule grants sends to.
+   */
+  address: string;
+  /**
+   * Most recent inbound email from this address that
+   * authenticated successfully (DMARC pass + DKIM/SPF
+   * alignment). Updated on each new authenticated receipt.
+   *
+   */
+  last_received_at: string;
+  /**
+   * Total number of authenticated inbound emails from this
+   * address. Increments only when `last_received_at` advances.
+   *
+   */
+  received_count: number;
+  /**
+   * Human-prose summary of the rule.
+   */
+  description: string;
+};
+/**
+ * Response metadata for /send-permissions. The `address_cap`
+ * bounds the size of the `address` rule subset; orgs with more
+ * than `address_cap` known addresses almost always also hold a
+ * broader rule type (`any_recipient` or `your_domain`), so the
+ * cap is a response-size bound rather than a meaningful
+ * product limit.
+ *
+ */
+type SendPermissionsMeta = {
+  /**
+   * Maximum number of `address` rules included in `data`.
+   */
+  address_cap: number;
+  /**
+   * True when the org has more than `address_cap` known
+   * addresses and the list was truncated. False when every
+   * known address is represented or when the org holds no
+   * address rules at all.
+   *
+   */
+  truncated: boolean;
+};
 type Endpoint = {
   id: string;
   org_id: string;
@@ -1926,6 +2338,29 @@ type ReplayDeliveryResponses = {
   };
 };
 type ReplayDeliveryResponse = ReplayDeliveryResponses[keyof ReplayDeliveryResponses];
+type GetSendPermissionsData = {
+  body?: never;
+  path?: never;
+  query?: never;
+  url: '/send-permissions';
+};
+type GetSendPermissionsErrors = {
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+};
+type GetSendPermissionsError = GetSendPermissionsErrors[keyof GetSendPermissionsErrors];
+type GetSendPermissionsResponses = {
+  /**
+   * Send-permission rules for the caller's org
+   */
+  200: SuccessEnvelope & {
+    data: Array<SendPermissionRule>;
+    meta: SendPermissionsMeta;
+  };
+};
+type GetSendPermissionsResponse = GetSendPermissionsResponses[keyof GetSendPermissionsResponses];
 type SendEmailData = {
   body: SendMailInput;
   headers?: {
@@ -1981,8 +2416,115 @@ type SendEmailResponses = {
   };
 };
 type SendEmailResponse = SendEmailResponses[keyof SendEmailResponses];
+type ListSentEmailsData = {
+  body?: never;
+  path?: never;
+  query?: {
+    /**
+     * Pagination cursor from a previous response's `meta.cursor` field.
+     * Format: `{ISO-datetime}|{id}`
+     *
+     */
+    cursor?: string;
+    /**
+     * Number of results per page
+     */
+    limit?: number;
+    /**
+     * Filter to rows in this status. Useful for polling
+     * queued rows that haven't transitioned, auditing
+     * gate-denied attempts, or listing only successful
+     * deliveries.
+     *
+     */
+    status?: SentEmailStatus;
+    /**
+     * Filter to the row matching a specific server-issued
+     * `request_id`. The /send-mail response surfaces
+     * `request_id` on every send; this lookup lets the
+     * caller find the historical row for a given live call
+     * without remembering its `id`.
+     *
+     */
+    request_id?: string;
+    /**
+     * Filter to rows with the given `client_idempotency_key`.
+     * Multiple rows can share a key (a retry that hit the
+     * idempotent-replay path returns the same row, but a
+     * retry with a DIFFERENT canonical payload under the
+     * same key is rejected by /send-mail before the row is
+     * written, so duplicates are bounded).
+     *
+     */
+    idempotency_key?: string;
+    /**
+     * Inclusive lower bound on `created_at`.
+     */
+    date_from?: string;
+    /**
+     * Inclusive upper bound on `created_at`.
+     */
+    date_to?: string;
+  };
+  url: '/sent-emails';
+};
+type ListSentEmailsErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+};
+type ListSentEmailsError = ListSentEmailsErrors[keyof ListSentEmailsErrors];
+type ListSentEmailsResponses = {
+  /**
+   * Page of sent-email summaries
+   */
+  200: ListEnvelope & {
+    data?: Array<SentEmailSummary>;
+  };
+};
+type ListSentEmailsResponse = ListSentEmailsResponses[keyof ListSentEmailsResponses];
+type GetSentEmailData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/sent-emails/{id}';
+};
+type GetSentEmailErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type GetSentEmailError = GetSentEmailErrors[keyof GetSentEmailErrors];
+type GetSentEmailResponses = {
+  /**
+   * Sent-email detail
+   */
+  200: SuccessEnvelope & {
+    data?: SentEmailDetail;
+  };
+};
+type GetSentEmailResponse = GetSentEmailResponses[keyof GetSentEmailResponses];
 declare namespace sdk_gen_d_exports {
-  export { Options, addDomain, createEndpoint, createFilter, deleteDomain, deleteEmail, deleteEndpoint, deleteFilter, downloadAttachments, downloadRawEmail, getAccount, getEmail, getStorageStats, getWebhookSecret, listDeliveries, listDomains, listEmails, listEndpoints, listFilters, replayDelivery, replayEmailWebhooks, replyToEmail, rotateWebhookSecret, sendEmail, testEndpoint, updateAccount, updateDomain, updateEndpoint, updateFilter, verifyDomain };
+  export { Options, addDomain, createEndpoint, createFilter, deleteDomain, deleteEmail, deleteEndpoint, deleteFilter, downloadAttachments, downloadRawEmail, getAccount, getEmail, getSendPermissions, getSentEmail, getStorageStats, getWebhookSecret, listDeliveries, listDomains, listEmails, listEndpoints, listFilters, listSentEmails, replayDelivery, replayEmailWebhooks, replyToEmail, rotateWebhookSecret, sendEmail, testEndpoint, updateAccount, updateDomain, updateEndpoint, updateFilter, verifyDomain };
 }
 type Options<TData extends TDataShape = TDataShape, ThrowOnError extends boolean = boolean, TResponse = unknown> = Options$1<TData, ThrowOnError, TResponse> & {
   /**
@@ -2067,11 +2609,15 @@ declare const updateDomain: <ThrowOnError extends boolean = false>(options: Opti
  */
 declare const verifyDomain: <ThrowOnError extends boolean = false>(options: Options<VerifyDomainData, ThrowOnError>) => RequestResult<VerifyDomainResponses, VerifyDomainErrors, ThrowOnError, "fields">;
 /**
- * List emails
+ * List inbound emails
  *
- * Returns a paginated list of received emails. Supports filtering by
- * domain, status, date range, and free-text search across subject,
- * sender, and recipient fields.
+ * Returns a paginated list of INBOUND emails received at your
+ * verified domains. Outbound messages sent via /send-mail are not
+ * included; this endpoint is the inbox view, not a unified
+ * send/receive history.
+ *
+ * Supports filtering by domain, status, date range, and free-text
+ * search across subject, sender, and recipient fields.
  *
  */
 declare const listEmails: <ThrowOnError extends boolean = false>(options?: Options<ListEmailsData, ThrowOnError>) => RequestResult<ListEmailsResponses, ListEmailsErrors, ThrowOnError, "fields">;
@@ -2216,6 +2762,42 @@ declare const listDeliveries: <ThrowOnError extends boolean = false>(options?: O
  *
  */
 declare const replayDelivery: <ThrowOnError extends boolean = false>(options: Options<ReplayDeliveryData, ThrowOnError>) => RequestResult<ReplayDeliveryResponses, ReplayDeliveryErrors, ThrowOnError, "fields">;
+/**
+ * List send-permission rules
+ *
+ * Returns a flat list of rules describing every recipient the
+ * caller may send to. Each rule has a `type`, a kind-specific
+ * payload, and a human-readable `description`. If any rule
+ * matches the recipient, /send-mail will accept the send under
+ * the recipient-scope check.
+ *
+ * The endpoint is the answer to "where can I send" without
+ * exposing internal entitlement names. Agents that don't
+ * recognize a `type` can still read the `description` prose
+ * and act on it.
+ *
+ * Rule kinds, ordered broadest-first so an agent can stop
+ * scanning at the first match:
+ *
+ * 1. `any_recipient` (one entry, only when the org can send
+ * anywhere): every other rule below it is redundant.
+ * 2. `managed_zone` (always emitted, one per Primitive-managed
+ * zone): sends to any address at *.primitive.email or
+ * *.email.works always succeed; no entitlement required.
+ * 3. `your_domain` (one per active verified outbound domain
+ * owned by the org): sends to that domain are approved.
+ * 4. `address` (one per address that has authenticated
+ * inbound mail to the org, capped at `meta.address_cap`):
+ * sends to that exact address are approved.
+ *
+ * The list is informational, not an authorization check.
+ * /send-mail remains the source of truth on whether an
+ * individual send will succeed (it also enforces the
+ * from-address and the `send_mail` entitlement, which are
+ * not recipient-scope concerns and are not represented here).
+ *
+ */
+declare const getSendPermissions: <ThrowOnError extends boolean = false>(options?: Options<GetSendPermissionsData, ThrowOnError>) => RequestResult<GetSendPermissionsResponses, GetSendPermissionsErrors, ThrowOnError, "fields">;
 /**
  * Send outbound email
  *
@@ -2225,6 +2807,41 @@ declare const replayDelivery: <ThrowOnError extends boolean = false>(options: Op
  *
  */
 declare const sendEmail: <ThrowOnError extends boolean = false>(options: Options<SendEmailData, ThrowOnError>) => RequestResult<SendEmailResponses, SendEmailErrors, ThrowOnError, "fields">;
+/**
+ * List outbound sent emails
+ *
+ * Returns a paginated list of OUTBOUND emails the caller's
+ * org has sent via /send-mail (and /emails/{id}/reply, which
+ * forwards through /send-mail). Includes every recorded
+ * attempt, including gate-denied attempts that the agent
+ * never called and rows still in `queued` state.
+ *
+ * For inbound mail received at your verified domains, see
+ * /emails. There is no unified send/receive history endpoint;
+ * the two surfaces are intentionally separate because the
+ * underlying tables, statuses, and lifecycle differ.
+ *
+ * Email bodies (`body_text`, `body_html`) are NOT included on
+ * list rows so a 50-row page can't balloon into a multi-MB
+ * response when sends are near the 5MB body cap. Use
+ * /sent-emails/{id} to fetch a single row with bodies, or
+ * cross-reference by `client_idempotency_key` if the caller
+ * already has the body locally.
+ *
+ */
+declare const listSentEmails: <ThrowOnError extends boolean = false>(options?: Options<ListSentEmailsData, ThrowOnError>) => RequestResult<ListSentEmailsResponses, ListSentEmailsErrors, ThrowOnError, "fields">;
+/**
+ * Get a sent email by id
+ *
+ * Returns the full sent-email record by id, including
+ * `body_text` and `body_html` (omitted from the listing
+ * endpoint to keep paginated responses small). Use this when
+ * diagnosing a specific send, e.g. inspecting the receiver's
+ * SMTP response on a `bounced` row or pulling the gate
+ * denial detail on a `gate_denied` row.
+ *
+ */
+declare const getSentEmail: <ThrowOnError extends boolean = false>(options: Options<GetSentEmailData, ThrowOnError>) => RequestResult<GetSentEmailResponses, GetSentEmailErrors, ThrowOnError, "fields">;
 //#endregion
 //#region src/api/index.d.ts
 declare const DEFAULT_BASE_URL = "https://www.primitive.dev/api/v1";
@@ -2352,4 +2969,4 @@ declare function createPrimitiveClient(options?: PrimitiveClientOptions): Primit
 declare function client(options?: PrimitiveClientOptions): PrimitiveClient;
 declare const operations: typeof sdk_gen_d_exports;
 //#endregion
-export { AddDomainResponse as $, ReplayDeliveryErrors as $n, UpdateEndpointResponses as $r, ErrorResponse as $t, getWebhookSecret as A, ListDomainsError as An, TestEndpointError as Ar, DeleteFilterData as At, sendEmail as B, ListEndpointsError as Bn, UpdateAccountResponse as Br, DownloadAttachmentsError as Bt, deleteEndpoint as C, Limit as Cn, SendEmailResponses as Cr, DeleteEmailResponse as Ct, getAccount as D, ListDeliveriesResponse as Dn, StorageStats as Dr, DeleteEndpointErrors as Dt, downloadRawEmail as E, ListDeliveriesErrors as En, SentEmailStatus as Er, DeleteEndpointError as Et, listFilters as F, ListEmailsError as Fn, UnverifiedDomain as Fr, DeliveryStatus as Ft, updateFilter as G, ListFiltersData as Gn, UpdateDomainInput as Gr, DownloadRawEmailError as Gt, updateAccount as H, ListEndpointsResponse as Hn, UpdateDomainData as Hr, DownloadAttachmentsResponse as Ht, replayDelivery as I, ListEmailsErrors as In, UpdateAccountData as Ir, DeliverySummary as It, AccountUpdated as J, ListFiltersResponse as Jn, UpdateEndpointData as Jr, DownloadRawEmailResponses as Jt, verifyDomain as K, ListFiltersError as Kn, UpdateDomainResponse as Kr, DownloadRawEmailErrors as Kt, replayEmailWebhooks as L, ListEmailsResponse as Ln, UpdateAccountError as Lr, Domain as Lt, listDomains as M, ListDomainsResponse as Mn, TestEndpointResponse as Mr, DeleteFilterErrors as Mt, listEmails as N, ListDomainsResponses as Nn, TestEndpointResponses as Nr, DeleteFilterResponse as Nt, getEmail as O, ListDeliveriesResponses as On, SuccessEnvelope as Or, DeleteEndpointResponse as Ot, listEndpoints as P, ListEmailsData as Pn, TestResult as Pr, DeleteFilterResponses as Pt, AddDomainInput as Q, ReplayDeliveryError as Qn, UpdateEndpointResponse as Qr, Endpoint as Qt, replyToEmail as R, ListEmailsResponses as Rn, UpdateAccountErrors as Rr, DomainVerifyResult as Rt, deleteEmail as S, GetWebhookSecretResponses as Sn, SendEmailResponse as Sr, DeleteEmailErrors as St, downloadAttachments as T, ListDeliveriesError as Tn, SendMailResult as Tr, DeleteEndpointData as Tt, updateDomain as U, ListEndpointsResponses as Un, UpdateDomainError as Ur, DownloadAttachmentsResponses as Ut, testEndpoint as V, ListEndpointsErrors as Vn, UpdateAccountResponses as Vr, DownloadAttachmentsErrors as Vt, updateEndpoint as W, ListEnvelope as Wn, UpdateDomainErrors as Wr, DownloadRawEmailData as Wt, AddDomainError as X, PaginationMeta as Xn, UpdateEndpointErrors as Xr, EmailDetailReply as Xt, AddDomainData as Y, ListFiltersResponses as Yn, UpdateEndpointError as Yr, EmailDetail as Yt, AddDomainErrors as Z, ReplayDeliveryData as Zn, UpdateEndpointInput as Zr, EmailSummary as Zt, Options as _, Options$1 as _i, GetStorageStatsResponses as _n, RotateWebhookSecretResponse as _r, DeleteDomainErrors as _t, PrimitiveApiError as a, UpdateFilterResponses as ai, GetAccountErrors as an, ReplayEmailWebhooksResponse as ar, CreateEndpointInput as at, createFilter as b, ResponseStyle as bi, GetWebhookSecretErrors as bn, SendEmailError as br, DeleteEmailData as bt, PrimitiveClientOptions as c, VerifyDomainError as ci, GetEmailData as cn, ReplyToEmailData as cr, CreateFilterData as ct, SendResult as d, VerifyDomainResponses as di, GetEmailResponse as dn, ReplyToEmailResponse as dr, CreateFilterInput as dt, UpdateFilterData as ei, Filter as en, ReplayDeliveryResponse as er, AddDomainResponses as et, SendThreadInput as f, WebhookSecret as fi, GetEmailResponses as fn, ReplyToEmailResponses as fr, CreateFilterResponse as ft, operations as g, CreateClientConfig as gi, GetStorageStatsResponse as gn, RotateWebhookSecretErrors as gr, DeleteDomainError as gt, createPrimitiveClient as h, Config as hi, GetStorageStatsErrors as hn, RotateWebhookSecretError as hr, DeleteDomainData as ht, PrimitiveApiClientOptions as i, UpdateFilterResponse as ii, GetAccountError as in, ReplayEmailWebhooksErrors as ir, CreateEndpointErrors as it, listDeliveries as j, ListDomainsErrors as jn, TestEndpointErrors as jr, DeleteFilterError as jt, getStorageStats as k, ListDomainsData as kn, TestEndpointData as kr, DeleteEndpointResponses as kt, ReplyInput as l, VerifyDomainErrors as li, GetEmailError as ln, ReplyToEmailError as lr, CreateFilterError as lt, createPrimitiveApiClient as m, ClientOptions$1 as mi, GetStorageStatsError as mn, RotateWebhookSecretData as mr, Cursor as mt, ForwardInput as n, UpdateFilterErrors as ni, GateFix as nn, ReplayEmailWebhooksData as nr, CreateEndpointData as nt, PrimitiveApiErrorDetails as o, VerifiedDomain as oi, GetAccountResponse as on, ReplayEmailWebhooksResponses as or, CreateEndpointResponse as ot, client as p, Client as pi, GetStorageStatsData as pn, ResourceId as pr, CreateFilterResponses as pt, Account as q, ListFiltersErrors as qn, UpdateDomainResponses as qr, DownloadRawEmailResponse as qt, PrimitiveApiClient as r, UpdateFilterInput as ri, GetAccountData as rn, ReplayEmailWebhooksError as rr, CreateEndpointError as rt, PrimitiveClient as s, VerifyDomainData as si, GetAccountResponses as sn, ReplayResult as sr, CreateEndpointResponses as st, DEFAULT_BASE_URL as t, UpdateFilterError as ti, GateDenial as tn, ReplayDeliveryResponses as tr, ClientOptions as tt, SendInput as u, VerifyDomainResponse as ui, GetEmailErrors as un, ReplyToEmailErrors as ur, CreateFilterErrors as ut, addDomain as v, RequestOptions as vi, GetWebhookSecretData as vn, RotateWebhookSecretResponses as vr, DeleteDomainResponse as vt, deleteFilter as w, ListDeliveriesData as wn, SendMailInput as wr, DeleteEmailResponses as wt, deleteDomain as x, Auth as xi, GetWebhookSecretResponse as xn, SendEmailErrors as xr, DeleteEmailError as xt, createEndpoint as y, RequestResult as yi, GetWebhookSecretError as yn, SendEmailData as yr, DeleteDomainResponses as yt, rotateWebhookSecret as z, ListEndpointsData as zn, UpdateAccountInput as zr, DownloadAttachmentsData as zt };
+export { AddDomainError as $, ListEndpointsError as $n, StorageStats as $r, EmailDetailReply as $t, getSentEmail as A, UpdateFilterResponse as Ai, GetStorageStatsResponses as An, ReplyToEmailResponses as Ar, DeleteEndpointErrors as At, replayEmailWebhooks as B, ClientOptions$1 as Bi, ListDeliveriesResponse as Bn, SendEmailResponse as Br, Domain as Bt, deleteEndpoint as C, UpdateEndpointInput as Ci, GetSentEmailErrors as Cn, ReplayEmailWebhooksResponse as Cr, DeleteEmailData as Ct, getAccount as D, UpdateFilterError as Di, GetStorageStatsError as Dn, ReplyToEmailError as Dr, DeleteEmailResponses as Dt, downloadRawEmail as E, UpdateFilterData as Ei, GetStorageStatsData as En, ReplyToEmailData as Er, DeleteEmailResponse as Et, listEmails as F, VerifyDomainErrors as Fi, GetWebhookSecretResponses as Fn, RotateWebhookSecretResponse as Fr, DeleteFilterErrors as Ft, updateAccount as G, RequestResult as Gi, ListDomainsResponse as Gn, SendPermissionAnyRecipient as Gr, DownloadAttachmentsResponse as Gt, rotateWebhookSecret as H, CreateClientConfig as Hi, ListDomainsData as Hn, SendMailInput as Hr, DownloadAttachmentsData as Ht, listEndpoints as I, VerifyDomainResponse as Ii, Limit as In, RotateWebhookSecretResponses as Ir, DeleteFilterResponse as It, updateFilter as J, ListEmailsError as Jn, SendPermissionYourDomain as Jr, DownloadRawEmailError as Jt, updateDomain as K, ResponseStyle as Ki, ListDomainsResponses as Kn, SendPermissionManagedZone as Kr, DownloadAttachmentsResponses as Kt, listFilters as L, VerifyDomainResponses as Li, ListDeliveriesData as Ln, SendEmailData as Lr, DeleteFilterResponses as Lt, getWebhookSecret as M, VerifiedDomain as Mi, GetWebhookSecretError as Mn, RotateWebhookSecretData as Mr, DeleteEndpointResponses as Mt, listDeliveries as N, VerifyDomainData as Ni, GetWebhookSecretErrors as Nn, RotateWebhookSecretError as Nr, DeleteFilterData as Nt, getEmail as O, UpdateFilterErrors as Oi, GetStorageStatsErrors as On, ReplyToEmailErrors as Or, DeleteEndpointData as Ot, listDomains as P, VerifyDomainError as Pi, GetWebhookSecretResponse as Pn, RotateWebhookSecretErrors as Pr, DeleteFilterError as Pt, AddDomainData as Q, ListEndpointsData as Qn, SentEmailSummary as Qr, EmailDetail as Qt, listSentEmails as R, WebhookSecret as Ri, ListDeliveriesError as Rn, SendEmailError as Rr, DeliveryStatus as Rt, deleteEmail as S, UpdateEndpointErrors as Si, GetSentEmailError as Sn, ReplayEmailWebhooksErrors as Sr, DeleteDomainResponses as St, downloadAttachments as T, UpdateEndpointResponses as Ti, GetSentEmailResponses as Tn, ReplayResult as Tr, DeleteEmailErrors as Tt, sendEmail as U, Options$1 as Ui, ListDomainsError as Un, SendMailResult as Ur, DownloadAttachmentsError as Ut, replyToEmail as V, Config as Vi, ListDeliveriesResponses as Vn, SendEmailResponses as Vr, DomainVerifyResult as Vt, testEndpoint as W, RequestOptions as Wi, ListDomainsErrors as Wn, SendPermissionAddress as Wr, DownloadAttachmentsErrors as Wt, Account as X, ListEmailsResponse as Xn, SentEmailDetail as Xr, DownloadRawEmailResponse as Xt, verifyDomain as Y, ListEmailsErrors as Yn, SendPermissionsMeta as Yr, DownloadRawEmailErrors as Yt, AccountUpdated as Z, ListEmailsResponses as Zn, SentEmailStatus as Zr, DownloadRawEmailResponses as Zt, Options as _, UpdateDomainInput as _i, GetSendPermissionsError as _n, ReplayDeliveryErrors as _r, Cursor as _t, PrimitiveApiError as a, TestEndpointResponses as ai, GateFix as an, ListFiltersError as ar, CreateEndpointData as at, createFilter as b, UpdateEndpointData as bi, GetSendPermissionsResponses as bn, ReplayEmailWebhooksData as br, DeleteDomainErrors as bt, PrimitiveClientOptions as c, UpdateAccountData as ci, GetAccountErrors as cn, ListFiltersResponses as cr, CreateEndpointInput as ct, SendResult as d, UpdateAccountInput as di, GetEmailData as dn, ListSentEmailsErrors as dr, CreateFilterData as dt, SuccessEnvelope as ei, EmailSummary as en, ListEndpointsErrors as er, AddDomainErrors as et, SendThreadInput as f, UpdateAccountResponse as fi, GetEmailError as fn, ListSentEmailsResponse as fr, CreateFilterError as ft, operations as g, UpdateDomainErrors as gi, GetSendPermissionsData as gn, ReplayDeliveryError as gr, CreateFilterResponses as gt, createPrimitiveClient as h, UpdateDomainError as hi, GetEmailResponses as hn, ReplayDeliveryData as hr, CreateFilterResponse as ht, PrimitiveApiClientOptions as i, TestEndpointResponse as ii, GateDenial as in, ListFiltersData as ir, ClientOptions as it, getStorageStats as j, UpdateFilterResponses as ji, GetWebhookSecretData as jn, ResourceId as jr, DeleteEndpointResponse as jt, getSendPermissions as k, UpdateFilterInput as ki, GetStorageStatsResponse as kn, ReplyToEmailResponse as kr, DeleteEndpointError as kt, ReplyInput as l, UpdateAccountError as li, GetAccountResponse as ln, ListSentEmailsData as lr, CreateEndpointResponse as lt, createPrimitiveApiClient as m, UpdateDomainData as mi, GetEmailResponse as mn, PaginationMeta as mr, CreateFilterInput as mt, ForwardInput as n, TestEndpointError as ni, ErrorResponse as nn, ListEndpointsResponses as nr, AddDomainResponse as nt, PrimitiveApiErrorDetails as o, TestResult as oi, GetAccountData as on, ListFiltersErrors as or, CreateEndpointError as ot, client as p, UpdateAccountResponses as pi, GetEmailErrors as pn, ListSentEmailsResponses as pr, CreateFilterErrors as pt, updateEndpoint as q, Auth as qi, ListEmailsData as qn, SendPermissionRule as qr, DownloadRawEmailData as qt, PrimitiveApiClient as r, TestEndpointErrors as ri, Filter as rn, ListEnvelope as rr, AddDomainResponses as rt, PrimitiveClient as s, UnverifiedDomain as si, GetAccountError as sn, ListFiltersResponse as sr, CreateEndpointErrors as st, DEFAULT_BASE_URL as t, TestEndpointData as ti, Endpoint as tn, ListEndpointsResponse as tr, AddDomainInput as tt, SendInput as u, UpdateAccountErrors as ui, GetAccountResponses as un, ListSentEmailsError as ur, CreateEndpointResponses as ut, addDomain as v, UpdateDomainResponse as vi, GetSendPermissionsErrors as vn, ReplayDeliveryResponse as vr, DeleteDomainData as vt, deleteFilter as w, UpdateEndpointResponse as wi, GetSentEmailResponse as wn, ReplayEmailWebhooksResponses as wr, DeleteEmailError as wt, deleteDomain as x, UpdateEndpointError as xi, GetSentEmailData as xn, ReplayEmailWebhooksError as xr, DeleteDomainResponse as xt, createEndpoint as y, UpdateDomainResponses as yi, GetSendPermissionsResponse as yn, ReplayDeliveryResponses as yr, DeleteDomainError as yt, replayDelivery as z, Client as zi, ListDeliveriesErrors as zn, SendEmailErrors as zr, DeliverySummary as zt };