@primitivedotdev/sdk 0.18.0 → 0.20.0

package/dist/{index-CHWqMBs6.d.ts → index-C6ObsYjq.d.ts}

@@ -248,7 +248,7 @@ interface Config<T extends ClientOptions$1 = ClientOptions$1> extends Omit<Reque
    */
   throwOnError?: T['throwOnError'];
 }
-interface RequestOptions<TData = unknown, TResponseStyle extends ResponseStyle = 'fields', ThrowOnError extends boolean = boolean, Url extends string = string> extends Config<{
+interface RequestOptions$1<TData = unknown, TResponseStyle extends ResponseStyle = 'fields', ThrowOnError extends boolean = boolean, Url extends string = string> extends Config<{
   responseStyle: TResponseStyle;
   throwOnError: ThrowOnError;
 }>, Pick<ServerSentEventsOptions<TData>, 'onRequest' | 'onSseError' | 'onSseEvent' | 'sseDefaultRetryDelay' | 'sseMaxRetryAttempts' | 'sseMaxRetryDelay'> {
@@ -266,7 +266,7 @@ interface RequestOptions<TData = unknown, TResponseStyle extends ResponseStyle =
   security?: ReadonlyArray<Auth>;
   url: Url;
 }
-interface ResolvedRequestOptions<TResponseStyle extends ResponseStyle = 'fields', ThrowOnError extends boolean = boolean, Url extends string = string> extends RequestOptions<unknown, TResponseStyle, ThrowOnError, Url> {
+interface ResolvedRequestOptions<TResponseStyle extends ResponseStyle = 'fields', ThrowOnError extends boolean = boolean, Url extends string = string> extends RequestOptions$1<unknown, TResponseStyle, ThrowOnError, Url> {
   serializedBody?: string;
 }
 type RequestResult<TData = unknown, TError = unknown, ThrowOnError extends boolean = boolean, TResponseStyle extends ResponseStyle = 'fields'> = ThrowOnError extends true ? Promise<TResponseStyle extends 'data' ? TData extends Record<string, unknown> ? TData[keyof TData] : TData : {
@@ -288,9 +288,9 @@ interface ClientOptions$1 {
   responseStyle?: ResponseStyle;
   throwOnError?: boolean;
 }
-type MethodFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions<TData, TResponseStyle, ThrowOnError>, 'method'>) => RequestResult<TData, TError, ThrowOnError, TResponseStyle>;
-type SseFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions<never, TResponseStyle, ThrowOnError>, 'method'>) => Promise<ServerSentEventsResult<TData, TError>>;
-type RequestFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions<TData, TResponseStyle, ThrowOnError>, 'method'> & Pick<Required<RequestOptions<TData, TResponseStyle, ThrowOnError>>, 'method'>) => RequestResult<TData, TError, ThrowOnError, TResponseStyle>;
+type MethodFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions$1<TData, TResponseStyle, ThrowOnError>, 'method'>) => RequestResult<TData, TError, ThrowOnError, TResponseStyle>;
+type SseFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions$1<never, TResponseStyle, ThrowOnError>, 'method'>) => Promise<ServerSentEventsResult<TData, TError>>;
+type RequestFn = <TData = unknown, TError = unknown, ThrowOnError extends boolean = false, TResponseStyle extends ResponseStyle = 'fields'>(options: Omit<RequestOptions$1<TData, TResponseStyle, ThrowOnError>, 'method'> & Pick<Required<RequestOptions$1<TData, TResponseStyle, ThrowOnError>>, 'method'>) => RequestResult<TData, TError, ThrowOnError, TResponseStyle>;
 type BuildUrlFn = <TData extends {
   body?: unknown;
   path?: Record<string, unknown>;
@@ -317,7 +317,7 @@ interface TDataShape {
   url: string;
 }
 type OmitKeys<T, K> = Pick<T, Exclude<keyof T, K>>;
-type Options$1<TData extends TDataShape = TDataShape, ThrowOnError extends boolean = boolean, TResponse = unknown, TResponseStyle extends ResponseStyle = 'fields'> = OmitKeys<RequestOptions<TResponse, TResponseStyle, ThrowOnError>, 'body' | 'path' | 'query' | 'url'> & ([TData] extends [never] ? unknown : Omit<TData, 'url'>);
+type Options$1<TData extends TDataShape = TDataShape, ThrowOnError extends boolean = boolean, TResponse = unknown, TResponseStyle extends ResponseStyle = 'fields'> = OmitKeys<RequestOptions$1<TResponse, TResponseStyle, ThrowOnError>, 'body' | 'path' | 'query' | 'url'> & ([TData] extends [never] ? unknown : Omit<TData, 'url'>);
 //#endregion
 //#region src/api/generated/types.gen.d.ts
 type ClientOptions = {
@@ -347,7 +347,7 @@ type PaginationMeta = {
 type ErrorResponse = {
   success: boolean;
   error: {
-    code: 'unauthorized' | 'forbidden' | 'not_found' | 'validation_error' | 'rate_limit_exceeded' | 'internal_error' | 'conflict' | 'mx_conflict' | 'outbound_disabled' | 'cannot_send_from_domain' | 'recipient_not_allowed' | 'outbound_key_missing' | 'outbound_unreachable' | 'outbound_key_invalid' | 'outbound_capacity_exhausted' | 'outbound_response_malformed' | 'outbound_relay_failed' | 'discard_not_enabled' | 'inbound_not_repliable';
+    code: 'unauthorized' | 'forbidden' | 'not_found' | 'validation_error' | 'rate_limit_exceeded' | 'internal_error' | 'conflict' | 'mx_conflict' | 'outbound_disabled' | 'cannot_send_from_domain' | 'recipient_not_allowed' | 'outbound_key_missing' | 'outbound_unreachable' | 'outbound_key_invalid' | 'outbound_capacity_exhausted' | 'outbound_response_malformed' | 'outbound_relay_failed' | 'discard_not_enabled' | 'inbound_not_repliable' | 'authorization_pending' | 'slow_down' | 'access_denied' | 'expired_token' | 'invalid_device_code';
     message: string;
     /**
      * Optional structured data that callers can inspect to recover
@@ -430,6 +430,67 @@ type GateFix = {
    */
   subject: string;
 };
+type StartCliLoginInput = {
+  /**
+   * Human-readable device name shown during browser approval
+   */
+  device_name?: string;
+  /**
+   * Optional client metadata stored with the login session; serialized JSON must be 2048 bytes or fewer
+   */
+  metadata?: {
+    [key: string]: unknown;
+  };
+};
+type CliLoginStartResult = {
+  /**
+   * Opaque code used by the CLI to poll for approval
+   */
+  device_code: string;
+  /**
+   * Short code the user confirms in the browser
+   */
+  user_code: string;
+  /**
+   * Browser URL where the user approves the login
+   */
+  verification_uri: string;
+  /**
+   * Browser URL with the user code prefilled
+   */
+  verification_uri_complete: string;
+  /**
+   * Seconds until the login session expires
+   */
+  expires_in: number;
+  /**
+   * Minimum seconds between poll requests
+   */
+  interval: number;
+};
+type PollCliLoginInput = {
+  device_code: string;
+};
+type CliLoginPollResult = {
+  /**
+   * Newly-created API key for CLI authentication
+   */
+  api_key: string;
+  key_id: string;
+  key_prefix: string;
+  org_id: string;
+  org_name: string | null;
+};
+type CliLogoutInput = {
+  /**
+   * Optional key id guard; when provided it must match the authenticated API key
+   */
+  key_id?: string;
+};
+type CliLogoutResult = {
+  revoked: boolean;
+  key_id: string;
+};
 type Account = {
   id: string;
   email: string;
@@ -1439,6 +1500,221 @@ type DiscardContentResult = {
    */
   already_discarded: boolean;
 };
+/**
+ * Lifecycle state of the latest deploy attempt:
+ * * `pending` — deploy in flight; the runtime has not yet
+ * confirmed the new bundle is live.
+ * * `deployed` — the running edge handler is the latest code.
+ * * `failed` — the most recent deploy attempt failed; the
+ * previously-live code (if any) is still running. The
+ * `deploy_error` field carries the error message.
+ *
+ */
+type FunctionDeployStatus = 'pending' | 'deployed' | 'failed';
+/**
+ * One row from the function listing.
+ */
+type FunctionListItem = {
+  /**
+   * Function id, also the script name in the edge runtime.
+   */
+  id: string;
+  /**
+   * Slug-style name set on creation. Stable; cannot be changed.
+   */
+  name: string;
+  deploy_status: FunctionDeployStatus;
+  /**
+   * Timestamp of the most recent successful deploy. Null until the first deploy succeeds.
+   */
+  deployed_at?: string | null;
+  /**
+   * URL the platform's webhook delivery loop posts to in order
+   * to invoke the function. Reference only; not directly
+   * callable from outside.
+   *
+   */
+  gateway_url: string;
+  created_at: string;
+  updated_at: string;
+};
+/**
+ * Full function record returned by GET / PUT.
+ */
+type FunctionDetail = {
+  id: string;
+  name: string;
+  /**
+   * The bundled handler source. UTF-8 string up to 1 MiB. The
+   * same value most recently passed as `code` to POST or PUT.
+   *
+   */
+  code: string;
+  deploy_status: FunctionDeployStatus;
+  /**
+   * Error message from the most recent failed deploy, or null
+   * after a successful deploy. Surface this to users to explain
+   * a `failed` status without polling.
+   *
+   */
+  deploy_error?: string | null;
+  deployed_at?: string | null;
+  gateway_url: string;
+  created_at: string;
+  updated_at: string;
+};
+type CreateFunctionInput = {
+  /**
+   * Slug-style name. Lowercase letters, digits, hyphens, and
+   * underscores. 1 to 64 characters. Must be unique within the
+   * org; a 409 is returned on collision.
+   *
+   */
+  name: string;
+  /**
+   * Bundled handler as a single ESM module. Up to 1 MiB UTF-8.
+   * Must export a default `{ async fetch(req, env, ctx) { ... } }`
+   * object.
+   *
+   */
+  code: string;
+  /**
+   * Optional source map for the bundle. Up to 5 MiB UTF-8.
+   * Stored only on the runtime side (not in Primitive's
+   * database) and used to symbolicate stack traces in the
+   * function's logs.
+   *
+   */
+  sourceMap?: string;
+};
+/**
+ * Returned by POST /functions on a successful deploy.
+ */
+type CreateFunctionResult = {
+  id: string;
+  name: string;
+  deploy_status: FunctionDeployStatus;
+  gateway_url: string;
+};
+type UpdateFunctionInput = {
+  /**
+   * New bundled handler. Same rules as CreateFunctionInput.code.
+   */
+  code: string;
+  sourceMap?: string;
+};
+/**
+ * Metadata returned by POST /functions/{id}/test. The send is
+ * queued; the actual invocation lands on the function's
+ * invocations list a few seconds later as the inbound mail
+ * traverses the MX path.
+ *
+ */
+type TestInvocationResult = {
+  /**
+   * Verified inbound domain the test email was sent to.
+   */
+  inbound_domain: string;
+  /**
+   * Synthetic local-part plus inbound_domain. Visible in the org's inbox.
+   */
+  to: string;
+  /**
+   * Primitive-controlled outbound sender used for the test.
+   */
+  from: string;
+  /**
+   * Outbound message id from the underlying send. NOT the
+   * inbound email's id; the inbound id is created when the
+   * email arrives via MX and lands on the function's
+   * invocations list.
+   *
+   */
+  send_id: string;
+  /**
+   * Subject placed on the test email so it can be located in the inbox.
+   */
+  subject: string;
+  /**
+   * ISO timestamp suitable as a `since` lower bound when
+   * polling /emails for the inbound's arrival. Captured
+   * slightly before the send to absorb light clock skew.
+   *
+   */
+  poll_since: string;
+  /**
+   * Function detail page where invocations show up live.
+   */
+  watch_url: string;
+};
+/**
+ * One row from GET /functions/{id}/secrets. Discriminate on the
+ * `managed` field:
+ * * `managed = true`  — system secret provisioned by Primitive.
+ * `description` is set; `created_at` / `updated_at` are
+ * null because the row is virtual (resolved at deploy time
+ * from the managed registry, not stored in the secrets
+ * table).
+ * * `managed = false` — secret the user set via the API.
+ * `created_at` / `updated_at` are set; `description` is
+ * null.
+ *
+ */
+type FunctionSecretListItem = {
+  key: string;
+  /**
+   * True for managed system secrets, false for user-set entries.
+   */
+  managed: boolean;
+  /**
+   * Set on managed entries only; null on user-set entries.
+   */
+  description?: string | null;
+  /**
+   * Set on user-set entries only; null on managed entries.
+   */
+  created_at?: string | null;
+  /**
+   * Set on user-set entries only; null on managed entries.
+   */
+  updated_at?: string | null;
+};
+/**
+ * Body for POST /functions/{id}/secrets.
+ */
+type CreateFunctionSecretInput = {
+  /**
+   * Uppercase letters, digits, and underscores. Must start with
+   * a letter or underscore. System-managed keys (e.g.
+   * PRIMITIVE_WEBHOOK_SECRET) are reserved.
+   *
+   */
+  key: string;
+  /**
+   * Secret value, up to 4096 UTF-8 bytes. Encrypted at rest.
+   * Never returned by any read endpoint.
+   *
+   */
+  value: string;
+};
+/**
+ * Body for PUT /functions/{id}/secrets/{key}. Key comes from the path.
+ */
+type SetFunctionSecretInput = {
+  value: string;
+};
+/**
+ * Returned by POST and PUT secret routes.
+ */
+type FunctionSecretWriteResult = {
+  key: string;
+  created_at: string;
+  updated_at: string;
+  /**
+   * True if this call inserted a new row, false if it updated an existing one.
+   */
+  created: boolean;
+};
 /**
  * Resource UUID
  */
@@ -1453,6 +1729,92 @@ type Cursor = string;
  * Number of results per page
  */
 type Limit = number;
+type StartCliLoginData = {
+  body?: StartCliLoginInput;
+  path?: never;
+  query?: never;
+  url: '/cli/login/start';
+};
+type StartCliLoginErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Rate limit exceeded
+   */
+  429: ErrorResponse;
+};
+type StartCliLoginError = StartCliLoginErrors[keyof StartCliLoginErrors];
+type StartCliLoginResponses = {
+  /**
+   * CLI login session created
+   */
+  201: SuccessEnvelope & {
+    data?: CliLoginStartResult;
+  };
+};
+type StartCliLoginResponse = StartCliLoginResponses[keyof StartCliLoginResponses];
+type PollCliLoginData = {
+  body: PollCliLoginInput;
+  path?: never;
+  query?: never;
+  url: '/cli/login/poll';
+};
+type PollCliLoginErrors = {
+  /**
+   * Invalid request, pending authorization, slow polling, expired token, or invalid device code
+   */
+  400: ErrorResponse;
+  /**
+   * CLI login was denied in the browser
+   */
+  403: ErrorResponse;
+};
+type PollCliLoginError = PollCliLoginErrors[keyof PollCliLoginErrors];
+type PollCliLoginResponses = {
+  /**
+   * CLI login approved and API key created
+   */
+  200: SuccessEnvelope & {
+    data?: CliLoginPollResult;
+  };
+};
+type PollCliLoginResponse = PollCliLoginResponses[keyof PollCliLoginResponses];
+type CliLogoutData = {
+  body?: CliLogoutInput;
+  path?: never;
+  query?: never;
+  url: '/cli/logout';
+};
+type CliLogoutErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Authenticated caller lacks permission for the operation
+   */
+  403: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type CliLogoutError = CliLogoutErrors[keyof CliLogoutErrors];
+type CliLogoutResponses = {
+  /**
+   * CLI API key revoked
+   */
+  200: SuccessEnvelope & {
+    data?: CliLogoutResult;
+  };
+};
+type CliLogoutResponse = CliLogoutResponses[keyof CliLogoutResponses];
 type GetAccountData = {
   body?: never;
   path?: never;
@@ -2680,72 +3042,464 @@ type GetSentEmailResponses = {
   };
 };
 type GetSentEmailResponse = GetSentEmailResponses[keyof GetSentEmailResponses];
-declare namespace sdk_gen_d_exports {
-  export { Options, addDomain, createEndpoint, createFilter, deleteDomain, deleteEmail, deleteEndpoint, deleteFilter, discardEmailContent, downloadAttachments, downloadRawEmail, getAccount, getEmail, getSendPermissions, getSentEmail, getStorageStats, getWebhookSecret, listDeliveries, listDomains, listEmails, listEndpoints, listFilters, listSentEmails, replayDelivery, replayEmailWebhooks, replyToEmail, rotateWebhookSecret, sendEmail, testEndpoint, updateAccount, updateDomain, updateEndpoint, updateFilter, verifyDomain };
-}
-type Options<TData extends TDataShape = TDataShape, ThrowOnError extends boolean = boolean, TResponse = unknown> = Options$1<TData, ThrowOnError, TResponse> & {
+type ListFunctionsData = {
+  body?: never;
+  path?: never;
+  query?: never;
+  url: '/functions';
+};
+type ListFunctionsErrors = {
   /**
-   * You can provide a client instance returned by `createClient()` instead of
-   * individual options. This might be also useful if you want to implement a
-   * custom client.
+   * Invalid or missing API key
    */
-  client?: Client;
+  401: ErrorResponse;
+};
+type ListFunctionsError = ListFunctionsErrors[keyof ListFunctionsErrors];
+type ListFunctionsResponses = {
   /**
-   * You can pass arbitrary values through the `meta` object. This can be
-   * used to access values that aren't defined as part of the SDK function.
+   * List of functions
    */
-  meta?: Record<string, unknown>;
+  200: SuccessEnvelope & {
+    data?: Array<FunctionListItem>;
+  };
 };
-/**
- * Get account info
- */
-declare const getAccount: <ThrowOnError extends boolean = false>(options?: Options<GetAccountData, ThrowOnError>) => RequestResult<GetAccountResponses, GetAccountErrors, ThrowOnError, "fields">;
-/**
- * Update account settings
- */
-declare const updateAccount: <ThrowOnError extends boolean = false>(options: Options<UpdateAccountData, ThrowOnError>) => RequestResult<UpdateAccountResponses, UpdateAccountErrors, ThrowOnError, "fields">;
-/**
- * Get storage usage
- */
-declare const getStorageStats: <ThrowOnError extends boolean = false>(options?: Options<GetStorageStatsData, ThrowOnError>) => RequestResult<GetStorageStatsResponses, GetStorageStatsErrors, ThrowOnError, "fields">;
-/**
- * Get webhook signing secret
- *
- * Returns the webhook signing secret for your account. If no
- * secret exists yet, one is generated automatically on first
- * access.
- *
- * Signing is account-scoped, not per-endpoint. Every webhook
- * delivery from any of your registered endpoints is signed
- * with this single secret. Rotate via
- * `POST /account/webhook-secret/rotate`.
- *
- * **Secret format**: the returned string looks base64-shaped
- * (e.g. `XNHBBW8VqoBjRfNs1tkZj11jTk...`) but is NOT base64.
- * Use it AS-IS as a UTF-8 string when computing HMAC over a
- * delivery body. Base64-decoding before HMAC will silently
- * produce mismatched signatures.
- *
- * See the API-level "Webhook signing" section for the full
- * wire format (header name, signed string shape, hash algo,
- * tolerance) including a language-agnostic verification
- * recipe.
- *
- */
-declare const getWebhookSecret: <ThrowOnError extends boolean = false>(options?: Options<GetWebhookSecretData, ThrowOnError>) => RequestResult<GetWebhookSecretResponses, GetWebhookSecretErrors, ThrowOnError, "fields">;
-/**
- * Rotate webhook signing secret
- *
- * Generates a new webhook signing secret, replacing the current one.
- * Rate limited to once per 60 minutes.
- *
- */
-declare const rotateWebhookSecret: <ThrowOnError extends boolean = false>(options?: Options<RotateWebhookSecretData, ThrowOnError>) => RequestResult<RotateWebhookSecretResponses, RotateWebhookSecretErrors, ThrowOnError, "fields">;
-/**
- * List all domains
- *
- * Returns all verified and unverified domains for your organization,
- * sorted by creation date (newest first). Each domain includes a
+type ListFunctionsResponse = ListFunctionsResponses[keyof ListFunctionsResponses];
+type CreateFunctionData = {
+  body: CreateFunctionInput;
+  path?: never;
+  query?: never;
+  url: '/functions';
+};
+type CreateFunctionErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * A function with this name already exists in the org
+   */
+  409: ErrorResponse;
+  /**
+   * Primitive could not complete the downstream SMTP request
+   */
+  502: ErrorResponse;
+};
+type CreateFunctionError = CreateFunctionErrors[keyof CreateFunctionErrors];
+type CreateFunctionResponses = {
+  /**
+   * Function created and deployed
+   */
+  201: SuccessEnvelope & {
+    data?: CreateFunctionResult;
+  };
+};
+type CreateFunctionResponse = CreateFunctionResponses[keyof CreateFunctionResponses];
+type DeleteFunctionData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}';
+};
+type DeleteFunctionErrors = {
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+  /**
+   * Primitive could not complete the downstream SMTP request
+   */
+  502: ErrorResponse;
+};
+type DeleteFunctionError = DeleteFunctionErrors[keyof DeleteFunctionErrors];
+type DeleteFunctionResponses = {
+  /**
+   * Resource deleted
+   */
+  200: SuccessEnvelope & {
+    data?: {
+      deleted: boolean;
+    };
+  };
+};
+type DeleteFunctionResponse = DeleteFunctionResponses[keyof DeleteFunctionResponses];
+type GetFunctionData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}';
+};
+type GetFunctionErrors = {
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type GetFunctionError = GetFunctionErrors[keyof GetFunctionErrors];
+type GetFunctionResponses = {
+  /**
+   * Function record
+   */
+  200: SuccessEnvelope & {
+    data?: FunctionDetail;
+  };
+};
+type GetFunctionResponse = GetFunctionResponses[keyof GetFunctionResponses];
+type UpdateFunctionData = {
+  body: UpdateFunctionInput;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}';
+};
+type UpdateFunctionErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+  /**
+   * Primitive could not complete the downstream SMTP request
+   */
+  502: ErrorResponse;
+};
+type UpdateFunctionError = UpdateFunctionErrors[keyof UpdateFunctionErrors];
+type UpdateFunctionResponses = {
+  /**
+   * Updated function
+   */
+  200: SuccessEnvelope & {
+    data?: FunctionDetail;
+  };
+};
+type UpdateFunctionResponse = UpdateFunctionResponses[keyof UpdateFunctionResponses];
+type TestFunctionData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}/test';
+};
+type TestFunctionErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+  /**
+   * Function not in a state that can be invoked, or no inbound domain configured
+   */
+  422: ErrorResponse;
+  /**
+   * Primitive could not complete the downstream SMTP request
+   */
+  502: ErrorResponse;
+  /**
+   * Sending agent misconfigured
+   */
+  503: ErrorResponse;
+};
+type TestFunctionError = TestFunctionErrors[keyof TestFunctionErrors];
+type TestFunctionResponses = {
+  /**
+   * Test send queued
+   */
+  200: SuccessEnvelope & {
+    data?: TestInvocationResult;
+  };
+};
+type TestFunctionResponse = TestFunctionResponses[keyof TestFunctionResponses];
+type ListFunctionSecretsData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}/secrets';
+};
+type ListFunctionSecretsErrors = {
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type ListFunctionSecretsError = ListFunctionSecretsErrors[keyof ListFunctionSecretsErrors];
+type ListFunctionSecretsResponses = {
+  /**
+   * List of secrets (metadata only, no values)
+   */
+  200: SuccessEnvelope & {
+    data?: {
+      items: Array<FunctionSecretListItem>;
+    };
+  };
+};
+type ListFunctionSecretsResponse = ListFunctionSecretsResponses[keyof ListFunctionSecretsResponses];
+type CreateFunctionSecretData = {
+  body: CreateFunctionSecretInput;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+  };
+  query?: never;
+  url: '/functions/{id}/secrets';
+};
+type CreateFunctionSecretErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type CreateFunctionSecretError = CreateFunctionSecretErrors[keyof CreateFunctionSecretErrors];
+type CreateFunctionSecretResponses = {
+  /**
+   * Secret updated
+   */
+  200: SuccessEnvelope & {
+    data?: FunctionSecretWriteResult;
+  };
+  /**
+   * Secret created
+   */
+  201: SuccessEnvelope & {
+    data?: FunctionSecretWriteResult;
+  };
+};
+type CreateFunctionSecretResponse = CreateFunctionSecretResponses[keyof CreateFunctionSecretResponses];
+type DeleteFunctionSecretData = {
+  body?: never;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+    /**
+     * Secret key. Must match `^[A-Z_][A-Z0-9_]*$`.
+     */
+    key: string;
+  };
+  query?: never;
+  url: '/functions/{id}/secrets/{key}';
+};
+type DeleteFunctionSecretErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type DeleteFunctionSecretError = DeleteFunctionSecretErrors[keyof DeleteFunctionSecretErrors];
+type DeleteFunctionSecretResponses = {
+  /**
+   * Secret deleted
+   */
+  204: void;
+};
+type DeleteFunctionSecretResponse = DeleteFunctionSecretResponses[keyof DeleteFunctionSecretResponses];
+type SetFunctionSecretData = {
+  body: SetFunctionSecretInput;
+  path: {
+    /**
+     * Resource UUID
+     */
+    id: string;
+    /**
+     * Secret key. Must match `^[A-Z_][A-Z0-9_]*$`.
+     */
+    key: string;
+  };
+  query?: never;
+  url: '/functions/{id}/secrets/{key}';
+};
+type SetFunctionSecretErrors = {
+  /**
+   * Invalid request parameters
+   */
+  400: ErrorResponse;
+  /**
+   * Invalid or missing API key
+   */
+  401: ErrorResponse;
+  /**
+   * Resource not found
+   */
+  404: ErrorResponse;
+};
+type SetFunctionSecretError = SetFunctionSecretErrors[keyof SetFunctionSecretErrors];
+type SetFunctionSecretResponses = {
+  /**
+   * Secret updated
+   */
+  200: SuccessEnvelope & {
+    data?: FunctionSecretWriteResult;
+  };
+  /**
+   * Secret created
+   */
+  201: SuccessEnvelope & {
+    data?: FunctionSecretWriteResult;
+  };
+};
+type SetFunctionSecretResponse = SetFunctionSecretResponses[keyof SetFunctionSecretResponses];
+declare namespace sdk_gen_d_exports {
+  export { Options, addDomain, cliLogout, createEndpoint, createFilter, createFunction, createFunctionSecret, deleteDomain, deleteEmail, deleteEndpoint, deleteFilter, deleteFunction, deleteFunctionSecret, discardEmailContent, downloadAttachments, downloadRawEmail, getAccount, getEmail, getFunction, getSendPermissions, getSentEmail, getStorageStats, getWebhookSecret, listDeliveries, listDomains, listEmails, listEndpoints, listFilters, listFunctionSecrets, listFunctions, listSentEmails, pollCliLogin, replayDelivery, replayEmailWebhooks, replyToEmail, rotateWebhookSecret, sendEmail, setFunctionSecret, startCliLogin, testEndpoint, testFunction, updateAccount, updateDomain, updateEndpoint, updateFilter, updateFunction, verifyDomain };
+}
+type Options<TData extends TDataShape = TDataShape, ThrowOnError extends boolean = boolean, TResponse = unknown> = Options$1<TData, ThrowOnError, TResponse> & {
+  /**
+   * You can provide a client instance returned by `createClient()` instead of
+   * individual options. This might be also useful if you want to implement a
+   * custom client.
+   */
+  client?: Client;
+  /**
+   * You can pass arbitrary values through the `meta` object. This can be
+   * used to access values that aren't defined as part of the SDK function.
+   */
+  meta?: Record<string, unknown>;
+};
+/**
+ * Start CLI browser login
+ *
+ * Starts a browser-assisted CLI login session. The response includes a
+ * device code for polling and a user code that the user approves in the
+ * browser. This endpoint does not require an API key.
+ *
+ */
+declare const startCliLogin: <ThrowOnError extends boolean = false>(options?: Options<StartCliLoginData, ThrowOnError>) => RequestResult<StartCliLoginResponses, StartCliLoginErrors, ThrowOnError, "fields">;
+/**
+ * Poll CLI browser login
+ *
+ * Polls a CLI login session until the browser approval either succeeds,
+ * is denied, expires, or is polled too quickly. The API key is generated
+ * only after approval and is returned exactly once.
+ *
+ */
+declare const pollCliLogin: <ThrowOnError extends boolean = false>(options: Options<PollCliLoginData, ThrowOnError>) => RequestResult<PollCliLoginResponses, PollCliLoginErrors, ThrowOnError, "fields">;
+/**
+ * Revoke the current CLI API key
+ *
+ * Revokes the API key used to authenticate the request. CLI clients use
+ * this endpoint during `primitive logout` before removing local credentials.
+ *
+ */
+declare const cliLogout: <ThrowOnError extends boolean = false>(options?: Options<CliLogoutData, ThrowOnError>) => RequestResult<CliLogoutResponses, CliLogoutErrors, ThrowOnError, "fields">;
+/**
+ * Get account info
+ */
+declare const getAccount: <ThrowOnError extends boolean = false>(options?: Options<GetAccountData, ThrowOnError>) => RequestResult<GetAccountResponses, GetAccountErrors, ThrowOnError, "fields">;
+/**
+ * Update account settings
+ */
+declare const updateAccount: <ThrowOnError extends boolean = false>(options: Options<UpdateAccountData, ThrowOnError>) => RequestResult<UpdateAccountResponses, UpdateAccountErrors, ThrowOnError, "fields">;
+/**
+ * Get storage usage
+ */
+declare const getStorageStats: <ThrowOnError extends boolean = false>(options?: Options<GetStorageStatsData, ThrowOnError>) => RequestResult<GetStorageStatsResponses, GetStorageStatsErrors, ThrowOnError, "fields">;
+/**
+ * Get webhook signing secret
+ *
+ * Returns the webhook signing secret for your account. If no
+ * secret exists yet, one is generated automatically on first
+ * access.
+ *
+ * Signing is account-scoped, not per-endpoint. Every webhook
+ * delivery from any of your registered endpoints is signed
+ * with this single secret. Rotate via
+ * `POST /account/webhook-secret/rotate`.
+ *
+ * **Secret format**: the returned string looks base64-shaped
+ * (e.g. `XNHBBW8VqoBjRfNs1tkZj11jTk...`) but is NOT base64.
+ * Use it AS-IS as a UTF-8 string when computing HMAC over a
+ * delivery body. Base64-decoding before HMAC will silently
+ * produce mismatched signatures.
+ *
+ * See the API-level "Webhook signing" section for the full
+ * wire format (header name, signed string shape, hash algo,
+ * tolerance) including a language-agnostic verification
+ * recipe.
+ *
+ */
+declare const getWebhookSecret: <ThrowOnError extends boolean = false>(options?: Options<GetWebhookSecretData, ThrowOnError>) => RequestResult<GetWebhookSecretResponses, GetWebhookSecretErrors, ThrowOnError, "fields">;
+/**
+ * Rotate webhook signing secret
+ *
+ * Generates a new webhook signing secret, replacing the current one.
+ * Rate limited to once per 60 minutes.
+ *
+ */
+declare const rotateWebhookSecret: <ThrowOnError extends boolean = false>(options?: Options<RotateWebhookSecretData, ThrowOnError>) => RequestResult<RotateWebhookSecretResponses, RotateWebhookSecretErrors, ThrowOnError, "fields">;
+/**
+ * List all domains
+ *
+ * Returns all verified and unverified domains for your organization,
+ * sorted by creation date (newest first). Each domain includes a
  * `verified` boolean to distinguish between the two states.
  *
  */
@@ -2894,7 +3648,7 @@ declare const replayEmailWebhooks: <ThrowOnError extends boolean = false>(option
  * dashboard at Settings > Webhooks). When the toggle is off, this
  * endpoint returns `403` with code `discard_not_enabled` and a
  * message pointing the human at the dashboard. There is intentionally
- * no API to flip this toggle — opting in to a destructive,
+ * no API to flip this toggle. Opting in to a destructive,
  * non-reversible operation must be a deliberate human click in the
  * UI.
  *
@@ -3079,6 +3833,155 @@ declare const listSentEmails: <ThrowOnError extends boolean = false>(options?: O
  *
  */
 declare const getSentEmail: <ThrowOnError extends boolean = false>(options: Options<GetSentEmailData, ThrowOnError>) => RequestResult<GetSentEmailResponses, GetSentEmailErrors, ThrowOnError, "fields">;
+/**
+ * List functions
+ *
+ * Returns every active (non-deleted) function in the org, newest
+ * first. Each entry carries the deploy status and the gateway URL
+ * that the platform's webhook delivery loop posts to. To inspect
+ * the source code or deploy errors, use `GET /functions/{id}`.
+ *
+ */
+declare const listFunctions: <ThrowOnError extends boolean = false>(options?: Options<ListFunctionsData, ThrowOnError>) => RequestResult<ListFunctionsResponses, ListFunctionsErrors, ThrowOnError, "fields">;
+/**
+ * Deploy a function
+ *
+ * Creates and deploys a new function. The handler must be a single
+ * ESM module that exports a default async function receiving the
+ * `email.received` event (see the Webhook payload section for the
+ * full schema). Code is bundled before being uploaded; ship a
+ * single self-contained file rather than relying on external
+ * imports.
+ *
+ * **Code limits.** `code` is capped at 1 MiB UTF-8. `sourceMap`
+ * (optional) is capped at 5 MiB UTF-8 and is stored only on the
+ * edge runtime side; it is not persisted in Primitive's database.
+ *
+ * **Auto-wiring.** On successful deploy, Primitive automatically
+ * creates a webhook endpoint that delivers inbound mail to the
+ * function. There is nothing to configure on the Endpoints API
+ * for this to work; the gateway URL returned here is for
+ * reference only and is not directly callable from outside.
+ *
+ * **Secrets.** New functions ship with the managed secrets
+ * (`PRIMITIVE_WEBHOOK_SECRET`, `PRIMITIVE_API_KEY`) already
+ * bound. Add user-set secrets via
+ * `POST /functions/{id}/secrets`; secret writes only land in the
+ * running handler on the next redeploy.
+ *
+ */
+declare const createFunction: <ThrowOnError extends boolean = false>(options: Options<CreateFunctionData, ThrowOnError>) => RequestResult<CreateFunctionResponses, CreateFunctionErrors, ThrowOnError, "fields">;
+/**
+ * Delete a function
+ *
+ * Soft-deletes the function row, removes the script from the edge
+ * runtime, and deactivates the auto-wired webhook endpoint so no
+ * further inbound mail is delivered. Past deploy history,
+ * invocations, and logs are retained.
+ *
+ * Returns 502 if the runtime delete fails partway; the function
+ * row stays in place and the call is safe to retry until it
+ * succeeds.
+ *
+ */
+declare const deleteFunction: <ThrowOnError extends boolean = false>(options: Options<DeleteFunctionData, ThrowOnError>) => RequestResult<DeleteFunctionResponses, DeleteFunctionErrors, ThrowOnError, "fields">;
+/**
+ * Get a function
+ *
+ * Returns the full record for a function, including its current
+ * source code and the deploy status / error from the most recent
+ * deploy attempt.
+ *
+ */
+declare const getFunction: <ThrowOnError extends boolean = false>(options: Options<GetFunctionData, ThrowOnError>) => RequestResult<GetFunctionResponses, GetFunctionErrors, ThrowOnError, "fields">;
+/**
+ * Update and redeploy a function
+ *
+ * Replaces the function's source code with the body's `code` and
+ * triggers a redeploy. Same size limits as `POST /functions`.
+ * Use this verb to push secret writes into the running handler:
+ * passing the same `code` re-runs the deploy and refreshes the
+ * binding set with the latest values from the secrets table.
+ *
+ * On a 502 deploy failure, the previously-deployed code stays
+ * live; the runtime never serves a half-built bundle. The
+ * `deploy_error` field on the returned record carries the error
+ * that came back from the runtime so you can surface it to users
+ * without polling.
+ *
+ */
+declare const updateFunction: <ThrowOnError extends boolean = false>(options: Options<UpdateFunctionData, ThrowOnError>) => RequestResult<UpdateFunctionResponses, UpdateFunctionErrors, ThrowOnError, "fields">;
+/**
+ * Send a test invocation
+ *
+ * Sends a real test email from a Primitive-controlled sender to a
+ * synthetic local-part on one of the org's verified inbound
+ * domains. The function fires through the normal MX delivery
+ * path, so reply / send-mail calls from inside the handler
+ * against the inbound's `email.id` work the same as in
+ * production. Returns immediately after the send is queued; the
+ * invocation appears on the function's invocations list within a
+ * few seconds.
+ *
+ * Requires that the function is currently `deployed`. Returns 422
+ * if the function is in `pending` or `failed` state, or if the
+ * org has no verified inbound domain to receive the test mail.
+ *
+ */
+declare const testFunction: <ThrowOnError extends boolean = false>(options: Options<TestFunctionData, ThrowOnError>) => RequestResult<TestFunctionResponses, TestFunctionErrors, ThrowOnError, "fields">;
+/**
+ * List a function's secrets
+ *
+ * Returns metadata for every secret bound to the function, with
+ * managed entries (provisioned by Primitive) listed first and
+ * user-set entries listed alphabetically after. **Values are
+ * never returned.** Secret writes are write-only.
+ *
+ * Managed entries (e.g. `PRIMITIVE_WEBHOOK_SECRET`,
+ * `PRIMITIVE_API_KEY`) carry a `description` instead of
+ * `created_at` / `updated_at`. They cannot be created, updated,
+ * or deleted via this API.
+ *
+ */
+declare const listFunctionSecrets: <ThrowOnError extends boolean = false>(options: Options<ListFunctionSecretsData, ThrowOnError>) => RequestResult<ListFunctionSecretsResponses, ListFunctionSecretsErrors, ThrowOnError, "fields">;
+/**
+ * Create or update a secret
+ *
+ * Idempotent insert-or-update keyed on `(function_id, key)`.
+ * Returns 201 the first time the key is set, 200 on subsequent
+ * updates. Values are encrypted at rest and only become visible
+ * to the running handler on the next deploy (`PUT /functions/{id}`
+ * with the existing code is sufficient to refresh bindings).
+ *
+ * Keys must match `^[A-Z_][A-Z0-9_]*$` (uppercase letters,
+ * digits, underscores; first character is a letter or
+ * underscore). Values are at most 4096 UTF-8 bytes. System-
+ * managed keys are reserved and rejected.
+ *
+ */
+declare const createFunctionSecret: <ThrowOnError extends boolean = false>(options: Options<CreateFunctionSecretData, ThrowOnError>) => RequestResult<CreateFunctionSecretResponses, CreateFunctionSecretErrors, ThrowOnError, "fields">;
+/**
+ * Delete a secret
+ *
+ * Removes the secret. The binding stays live in the running
+ * handler until the next deploy refreshes the binding set
+ * (`PUT /functions/{id}` with the existing code is sufficient).
+ * Returns 404 if the key did not exist. Managed system keys
+ * cannot be deleted.
+ *
+ */
+declare const deleteFunctionSecret: <ThrowOnError extends boolean = false>(options: Options<DeleteFunctionSecretData, ThrowOnError>) => RequestResult<DeleteFunctionSecretResponses, DeleteFunctionSecretErrors, ThrowOnError, "fields">;
+/**
+ * Set a secret by key
+ *
+ * Path-keyed companion to `POST /functions/{id}/secrets`.
+ * Idempotent: returns 201 the first time the key is set, 200 on
+ * subsequent updates. Same validation rules and same write-only
+ * guarantees as the POST verb; the new value lands in the running
+ * handler on the next deploy.
+ *
+ */
+declare const setFunctionSecret: <ThrowOnError extends boolean = false>(options: Options<SetFunctionSecretData, ThrowOnError>) => RequestResult<SetFunctionSecretResponses, SetFunctionSecretErrors, ThrowOnError, "fields">;
 //#endregion
 //#region src/api/index.d.ts
 declare const DEFAULT_BASE_URL = "https://www.primitive.dev/api/v1";
@@ -3100,6 +4003,15 @@ interface SendInput {
   thread?: SendThreadInput;
   wait?: boolean;
   waitTimeoutMs?: number;
+}
+interface RequestOptions {
+  /** Cancel the in-flight request when this signal fires. Surfaces as AbortError. */
+  signal?: AbortSignal;
+  /** Per-call timeout in milliseconds. Composed with `signal` via AbortSignal.any so either fires AbortError. */
+  timeout?: number;
+  /** Per-call headers merged on top of client-level headers. Last write wins. */
+  headers?: Record<string, string>;
+  /** Idempotency key for safe retries. Sent as the Idempotency-Key request header. */
   idempotencyKey?: string;
 }
 /**
@@ -3183,7 +4095,7 @@ declare class PrimitiveApiClient {
 }
 type PrimitiveClientOptions = PrimitiveApiClientOptions;
 declare class PrimitiveClient extends PrimitiveApiClient {
-  send(input: SendInput): Promise<SendResult>;
+  send(input: SendInput, options?: RequestOptions): Promise<SendResult>;
   /**
    * Reply to an inbound email.
    *
@@ -3198,12 +4110,12 @@ declare class PrimitiveClient extends PrimitiveApiClient {
    * subject match to thread, so a custom subject silently breaks the
    * thread for half the recipient population.
    */
-  reply(email: ReceivedEmail, input: ReplyInput): Promise<SendResult>;
-  forward(email: ReceivedEmail, input: ForwardInput): Promise<SendResult>;
+  reply(email: ReceivedEmail, input: ReplyInput, options?: RequestOptions): Promise<SendResult>;
+  forward(email: ReceivedEmail, input: ForwardInput, options?: RequestOptions): Promise<SendResult>;
 }
 declare function createPrimitiveApiClient(options?: PrimitiveApiClientOptions): PrimitiveApiClient;
 declare function createPrimitiveClient(options?: PrimitiveClientOptions): PrimitiveClient;
 declare function client(options?: PrimitiveClientOptions): PrimitiveClient;
 declare const operations: typeof sdk_gen_d_exports;
 //#endregion
-export { AddDomainData as $, RequestOptions as $i, ListDomainsErrors as $n, SendPermissionAddress as $r, DownloadAttachmentsResponses as $t, getSendPermissions as A, UpdateEndpointError as Ai, GetSentEmailData as An, ReplayEmailWebhooksError as Ar, DeleteEndpointError as At, replayDelivery as B, UpdateFilterResponses as Bi, GetWebhookSecretData as Bn, ResourceId as Br, DeliverySummary as Bt, deleteEndpoint as C, UpdateDomainData as Ci, GetEmailResponse as Cn, PaginationMeta as Cr, DeleteDomainResponses as Ct, downloadRawEmail as D, UpdateDomainResponse as Di, GetSendPermissionsErrors as Dn, ReplayDeliveryResponse as Dr, DeleteEmailResponse as Dt, downloadAttachments as E, UpdateDomainInput as Ei, GetSendPermissionsError as En, ReplayDeliveryErrors as Er, DeleteEmailErrors as Et, listDomains as F, UpdateFilterData as Fi, GetStorageStatsData as Fn, ReplyToEmailData as Fr, DeleteFilterError as Ft, testEndpoint as G, VerifyDomainResponse as Gi, Limit as Gn, RotateWebhookSecretResponses as Gr, DiscardEmailContentResponse as Gt, replyToEmail as H, VerifyDomainData as Hi, GetWebhookSecretErrors as Hn, RotateWebhookSecretError as Hr, DiscardEmailContentData as Ht, listEmails as I, UpdateFilterError as Ii, GetStorageStatsError as In, ReplyToEmailError as Ir, DeleteFilterErrors as It, updateEndpoint as J, Client as Ji, ListDeliveriesErrors as Jn, SendEmailErrors as Jr, DomainVerifyResult as Jt, updateAccount as K, VerifyDomainResponses as Ki, ListDeliveriesData as Kn, SendEmailData as Kr, DiscardEmailContentResponses as Kt, listEndpoints as L, UpdateFilterErrors as Li, GetStorageStatsErrors as Ln, ReplyToEmailErrors as Lr, DeleteFilterResponse as Lt, getStorageStats as M, UpdateEndpointInput as Mi, GetSentEmailErrors as Mn, ReplayEmailWebhooksResponse as Mr, DeleteEndpointResponse as Mt, getWebhookSecret as N, UpdateEndpointResponse as Ni, GetSentEmailResponse as Nn, ReplayEmailWebhooksResponses as Nr, DeleteEndpointResponses as Nt, getAccount as O, UpdateDomainResponses as Oi, GetSendPermissionsResponse as On, ReplayDeliveryResponses as Or, DeleteEmailResponses as Ot, listDeliveries as P, UpdateEndpointResponses as Pi, GetSentEmailResponses as Pn, ReplayResult as Pr, DeleteFilterData as Pt, AccountUpdated as Q, Options$1 as Qi, ListDomainsError as Qn, SendMailResult as Qr, DownloadAttachmentsResponse as Qt, listFilters as R, UpdateFilterInput as Ri, GetStorageStatsResponse as Rn, ReplyToEmailResponse as Rr, DeleteFilterResponses as Rt, deleteEmail as S, UpdateAccountResponses as Si, GetEmailErrors as Sn, ListSentEmailsResponses as Sr, DeleteDomainResponse as St, discardEmailContent as T, UpdateDomainErrors as Ti, GetSendPermissionsData as Tn, ReplayDeliveryError as Tr, DeleteEmailError as Tt, rotateWebhookSecret as U, VerifyDomainError as Ui, GetWebhookSecretResponse as Un, RotateWebhookSecretErrors as Ur, DiscardEmailContentError as Ut, replayEmailWebhooks as V, VerifiedDomain as Vi, GetWebhookSecretError as Vn, RotateWebhookSecretData as Vr, DiscardContentResult as Vt, sendEmail as W, VerifyDomainErrors as Wi, GetWebhookSecretResponses as Wn, RotateWebhookSecretResponse as Wr, DiscardEmailContentErrors as Wt, verifyDomain as X, Config as Xi, ListDeliveriesResponses as Xn, SendEmailResponses as Xr, DownloadAttachmentsError as Xt, updateFilter as Y, ClientOptions$1 as Yi, ListDeliveriesResponse as Yn, SendEmailResponse as Yr, DownloadAttachmentsData as Yt, Account as Z, CreateClientConfig as Zi, ListDomainsData as Zn, SendMailInput as Zr, DownloadAttachmentsErrors as Zt, Options as _, UpdateAccountData as _i, GetAccountErrors as _n, ListFiltersResponses as _r, CreateFilterResponses as _t, PrimitiveApiError as a, SentEmailDetail as ai, EmailDetail as an, ListEmailsResponse as ar, ClientOptions as at, createFilter as b, UpdateAccountInput as bi, GetEmailData as bn, ListSentEmailsErrors as br, DeleteDomainError as bt, PrimitiveClientOptions as c, StorageStats as ci, EmailSummary as cn, ListEndpointsError as cr, CreateEndpointErrors as ct, SendResult as d, TestEndpointError as di, ErrorResponse as dn, ListEndpointsResponses as dr, CreateEndpointResponses as dt, RequestResult as ea, SendPermissionAnyRecipient as ei, DownloadRawEmailData as en, ListDomainsResponse as er, AddDomainError as et, SendThreadInput as f, TestEndpointErrors as fi, Filter as fn, ListEnvelope as fr, CreateFilterData as ft, operations as g, UnverifiedDomain as gi, GetAccountError as gn, ListFiltersResponse as gr, CreateFilterResponse as gt, createPrimitiveClient as h, TestResult as hi, GetAccountData as hn, ListFiltersErrors as hr, CreateFilterInput as ht, PrimitiveApiClientOptions as i, SendPermissionsMeta as ii, DownloadRawEmailResponses as in, ListEmailsErrors as ir, AddDomainResponses as it, getSentEmail as j, UpdateEndpointErrors as ji, GetSentEmailError as jn, ReplayEmailWebhooksErrors as jr, DeleteEndpointErrors as jt, getEmail as k, UpdateEndpointData as ki, GetSendPermissionsResponses as kn, ReplayEmailWebhooksData as kr, DeleteEndpointData as kt, ReplyInput as l, SuccessEnvelope as li, EmailWebhookStatus as ln, ListEndpointsErrors as lr, CreateEndpointInput as lt, createPrimitiveApiClient as m, TestEndpointResponses as mi, GateFix as mn, ListFiltersError as mr, CreateFilterErrors as mt, ForwardInput as n, Auth as na, SendPermissionRule as ni, DownloadRawEmailErrors as nn, ListEmailsData as nr, AddDomainInput as nt, PrimitiveApiErrorDetails as o, SentEmailStatus as oi, EmailDetailReply as on, ListEmailsResponses as or, CreateEndpointData as ot, client as p, TestEndpointResponse as pi, GateDenial as pn, ListFiltersData as pr, CreateFilterError as pt, updateDomain as q, WebhookSecret as qi, ListDeliveriesError as qn, SendEmailError as qr, Domain as qt, PrimitiveApiClient as r, SendPermissionYourDomain as ri, DownloadRawEmailResponse as rn, ListEmailsError as rr, AddDomainResponse as rt, PrimitiveClient as s, SentEmailSummary as si, EmailStatus as sn, ListEndpointsData as sr, CreateEndpointError as st, DEFAULT_BASE_URL as t, ResponseStyle as ta, SendPermissionManagedZone as ti, DownloadRawEmailError as tn, ListDomainsResponses as tr, AddDomainErrors as tt, SendInput as u, TestEndpointData as ui, Endpoint as un, ListEndpointsResponse as ur, CreateEndpointResponse as ut, addDomain as v, UpdateAccountError as vi, GetAccountResponse as vn, ListSentEmailsData as vr, Cursor as vt, deleteFilter as w, UpdateDomainError as wi, GetEmailResponses as wn, ReplayDeliveryData as wr, DeleteEmailData as wt, deleteDomain as x, UpdateAccountResponse as xi, GetEmailError as xn, ListSentEmailsResponse as xr, DeleteDomainErrors as xt, createEndpoint as y, UpdateAccountErrors as yi, GetAccountResponses as yn, ListSentEmailsError as yr, DeleteDomainData as yt, listSentEmails as z, UpdateFilterResponse as zi, GetStorageStatsResponses as zn, ReplyToEmailResponses as zr, DeliveryStatus as zt };
+export { rotateWebhookSecret as $, UpdateAccountData as $a, ReplyToEmailData as $i, EmailStatus as $n, ListDomainsData as $r, CreateFunctionSecretResponses as $t, deleteFunctionSecret as A, SetFunctionSecretResponse as Aa, ListSentEmailsData as Ai, DeleteFunctionSecretResponses as An, VerifyDomainData as Ao, GetSendPermissionsResponse as Ar, CreateEndpointError as At, getWebhookSecret as B, TestEndpointData as Ba, PollCliLoginResponse as Bi, DomainVerifyResult as Bn, Options$1 as Bo, GetStorageStatsResponse as Br, CreateFilterResponses as Bt, createFunction as C, SentEmailDetail as Ca, ListFunctionSecretsResponse as Ci, DeleteFunctionErrors as Cn, UpdateFunctionData as Co, GetFunctionError as Cr, CliLogoutErrors as Ct, deleteEndpoint as D, SetFunctionSecretError as Da, ListFunctionsErrors as Di, DeleteFunctionSecretError as Dn, UpdateFunctionResponse as Do, GetSendPermissionsData as Dr, CliLogoutResult as Dt, deleteEmail as E, SetFunctionSecretData as Ea, ListFunctionsError as Ei, DeleteFunctionSecretData as En, UpdateFunctionInput as Eo, GetFunctionResponses as Er, CliLogoutResponses as Et, getEmail as F, StartCliLoginInput as Fa, PaginationMeta as Fi, DiscardEmailContentError as Fn, WebhookSecret as Fo, GetSentEmailResponse as Fr, CreateFilterData as Ft, listFilters as G, TestFunctionData as Ga, ReplayDeliveryResponse as Gi, DownloadAttachmentsResponses as Gn, GetWebhookSecretResponse as Gr, CreateFunctionResponse as Gt, listDomains as H, TestEndpointErrors as Ha, ReplayDeliveryData as Hi, DownloadAttachmentsError as Hn, RequestResult as Ho, GetWebhookSecretData as Hr, CreateFunctionError as Ht, getFunction as I, StartCliLoginResponse as Ia, PollCliLoginData as Ii, DiscardEmailContentErrors as In, Client as Io, GetSentEmailResponses as Ir, CreateFilterError as It, listSentEmails as J, TestFunctionResponse as Ja, ReplayEmailWebhooksError as Ji, DownloadRawEmailErrors as Jn, ListDeliveriesData as Jr, CreateFunctionSecretData as Jt, listFunctionSecrets as K, TestFunctionError as Ka, ReplayDeliveryResponses as Ki, DownloadRawEmailData as Kn, GetWebhookSecretResponses as Kr, CreateFunctionResponses as Kt, getSendPermissions as L, StartCliLoginResponses as La, PollCliLoginError as Li, DiscardEmailContentResponse as Ln, ClientOptions$1 as Lo, GetStorageStatsData as Lr, CreateFilterErrors as Lt, downloadAttachments as M, StartCliLoginData as Ma, ListSentEmailsErrors as Mi, DeliverySummary as Mn, VerifyDomainErrors as Mo, GetSentEmailData as Mr, CreateEndpointInput as Mt, downloadRawEmail as N, StartCliLoginError as Na, ListSentEmailsResponse as Ni, DiscardContentResult as Nn, VerifyDomainResponse as No, GetSentEmailError as Nr, CreateEndpointResponse as Nt, deleteFilter as O, SetFunctionSecretErrors as Oa, ListFunctionsResponse as Oi, DeleteFunctionSecretErrors as On, UpdateFunctionResponses as Oo, GetSendPermissionsError as Or, ClientOptions as Ot, getAccount as P, StartCliLoginErrors as Pa, ListSentEmailsResponses as Pi, DiscardEmailContentData as Pn, VerifyDomainResponses as Po, GetSentEmailErrors as Pr, CreateEndpointResponses as Pt, replyToEmail as Q, UnverifiedDomain as Qa, ReplayResult as Qi, EmailDetailReply as Qn, ListDeliveriesResponses as Qr, CreateFunctionSecretResponse as Qt, getSentEmail as R, StorageStats as Ra, PollCliLoginErrors as Ri, DiscardEmailContentResponses as Rn, Config as Ro, GetStorageStatsError as Rr, CreateFilterInput as Rt, createFilter as S, SendPermissionsMeta as Sa, ListFunctionSecretsErrors as Si, DeleteFunctionError as Sn, UpdateFilterResponses as So, GetFunctionData as Sr, CliLogoutError as St, deleteDomain as T, SentEmailSummary as Ta, ListFunctionsData as Ti, DeleteFunctionResponses as Tn, UpdateFunctionErrors as To, GetFunctionResponse as Tr, CliLogoutResponse as Tt, listEmails as U, TestEndpointResponse as Ua, ReplayDeliveryError as Ui, DownloadAttachmentsErrors as Un, ResponseStyle as Uo, GetWebhookSecretError as Ur, CreateFunctionErrors as Ut, listDeliveries as V, TestEndpointError as Va, PollCliLoginResponses as Vi, DownloadAttachmentsData as Vn, RequestOptions$1 as Vo, GetStorageStatsResponses as Vr, CreateFunctionData as Vt, listEndpoints as W, TestEndpointResponses as Wa, ReplayDeliveryErrors as Wi, DownloadAttachmentsResponse as Wn, Auth as Wo, GetWebhookSecretErrors as Wr, CreateFunctionInput as Wt, replayDelivery as X, TestInvocationResult as Xa, ReplayEmailWebhooksResponse as Xi, DownloadRawEmailResponses as Xn, ListDeliveriesErrors as Xr, CreateFunctionSecretErrors as Xt, pollCliLogin as Y, TestFunctionResponses as Ya, ReplayEmailWebhooksErrors as Yi, DownloadRawEmailResponse as Yn, ListDeliveriesError as Yr, CreateFunctionSecretError as Yt, replayEmailWebhooks as Z, TestResult as Za, ReplayEmailWebhooksResponses as Zi, EmailDetail as Zn, ListDeliveriesResponse as Zr, CreateFunctionSecretInput as Zt, operations as _, SendPermissionAddress as _a, ListFiltersErrors as _i, DeleteFilterError as _n, UpdateFilterData as _o, GetEmailData as _r, AddDomainResponse as _t, PrimitiveApiError as a, RotateWebhookSecretData as aa, ListEmailsError as ai, DeleteDomainResponses as an, UpdateDomainData as ao, FunctionDeployStatus as ar, updateAccount as at, cliLogout as b, SendPermissionRule as ba, ListFunctionSecretsData as bi, DeleteFilterResponses as bn, UpdateFilterInput as bo, GetEmailResponse as br, CliLoginStartResult as bt, PrimitiveClientOptions as c, RotateWebhookSecretResponse as ca, ListEmailsResponses as ci, DeleteEmailErrors as cn, UpdateDomainInput as co, FunctionSecretListItem as cr, updateFilter as ct, SendInput as d, SendEmailError as da, ListEndpointsErrors as di, DeleteEndpointData as dn, UpdateEndpointData as do, GateFix as dr, Account as dt, ReplyToEmailError as ea, ListDomainsError as ei, Cursor as en, UpdateAccountError as eo, EmailSummary as er, sendEmail as et, SendResult as f, SendEmailErrors as fa, ListEndpointsResponse as fi, DeleteEndpointError as fn, UpdateEndpointError as fo, GetAccountData as fr, AccountUpdated as ft, createPrimitiveClient as g, SendMailResult as ga, ListFiltersError as gi, DeleteFilterData as gn, UpdateEndpointResponses as go, GetAccountResponses as gr, AddDomainInput as gt, createPrimitiveApiClient as h, SendMailInput as ha, ListFiltersData as hi, DeleteEndpointResponses as hn, UpdateEndpointResponse as ho, GetAccountResponse as hr, AddDomainErrors as ht, PrimitiveApiClientOptions as i, ResourceId as ia, ListEmailsData as ii, DeleteDomainResponse as in, UpdateAccountResponses as io, Filter as ir, testFunction as it, discardEmailContent as j, SetFunctionSecretResponses as ja, ListSentEmailsError as ji, DeliveryStatus as jn, VerifyDomainError as jo, GetSendPermissionsResponses as jr, CreateEndpointErrors as jt, deleteFunction as k, SetFunctionSecretInput as ka, ListFunctionsResponses as ki, DeleteFunctionSecretResponse as kn, VerifiedDomain as ko, GetSendPermissionsErrors as kr, CreateEndpointData as kt, ReplyInput as l, RotateWebhookSecretResponses as la, ListEndpointsData as li, DeleteEmailResponse as ln, UpdateDomainResponse as lo, FunctionSecretWriteResult as lr, updateFunction as lt, client as m, SendEmailResponses as ma, ListEnvelope as mi, DeleteEndpointResponse as mn, UpdateEndpointInput as mo, GetAccountErrors as mr, AddDomainError as mt, ForwardInput as n, ReplyToEmailResponse as na, ListDomainsResponse as ni, DeleteDomainError as nn, UpdateAccountInput as no, Endpoint as nr, startCliLogin as nt, PrimitiveApiErrorDetails as o, RotateWebhookSecretError as oa, ListEmailsErrors as oi, DeleteEmailData as on, UpdateDomainError as oo, FunctionDetail as or, updateDomain as ot, SendThreadInput as p, SendEmailResponse as pa, ListEndpointsResponses as pi, DeleteEndpointErrors as pn, UpdateEndpointErrors as po, GetAccountError as pr, AddDomainData as pt, listFunctions as q, TestFunctionErrors as qa, ReplayEmailWebhooksData as qi, DownloadRawEmailError as qn, Limit as qr, CreateFunctionResult as qt, PrimitiveApiClient as r, ReplyToEmailResponses as ra, ListDomainsResponses as ri, DeleteDomainErrors as rn, UpdateAccountResponse as ro, ErrorResponse as rr, testEndpoint as rt, PrimitiveClient as s, RotateWebhookSecretErrors as sa, ListEmailsResponse as si, DeleteEmailError as sn, UpdateDomainErrors as so, FunctionListItem as sr, updateEndpoint as st, DEFAULT_BASE_URL as t, ReplyToEmailErrors as ta, ListDomainsErrors as ti, DeleteDomainData as tn, UpdateAccountErrors as to, EmailWebhookStatus as tr, setFunctionSecret as tt, RequestOptions as u, SendEmailData as ua, ListEndpointsError as ui, DeleteEmailResponses as un, UpdateDomainResponses as uo, GateDenial as ur, verifyDomain as ut, Options as v, SendPermissionAnyRecipient as va, ListFiltersResponse as vi, DeleteFilterErrors as vn, UpdateFilterError as vo, GetEmailError as vr, AddDomainResponses as vt, createFunctionSecret as w, SentEmailStatus as wa, ListFunctionSecretsResponses as wi, DeleteFunctionResponse as wn, UpdateFunctionError as wo, GetFunctionErrors as wr, CliLogoutInput as wt, createEndpoint as x, SendPermissionYourDomain as xa, ListFunctionSecretsError as xi, DeleteFunctionData as xn, UpdateFilterResponse as xo, GetEmailResponses as xr, CliLogoutData as xt, addDomain as y, SendPermissionManagedZone as ya, ListFiltersResponses as yi, DeleteFilterResponse as yn, UpdateFilterErrors as yo, GetEmailErrors as yr, CliLoginPollResult as yt, getStorageStats as z, SuccessEnvelope as za, PollCliLoginInput as zi, Domain as zn, CreateClientConfig as zo, GetStorageStatsErrors as zr, CreateFilterResponse as zt };