@snapback/cli 1.1.15 → 3.0.0

package/README.md

@@ -6,7 +6,7 @@
 [![npm downloads](https://img.shields.io/npm/dm/@snapback/cli.svg)](https://www.npmjs.com/package/@snapback/cli)
 [![License](https://img.shields.io/npm/l/@snapback/cli.svg)](https://github.com/snapback-dev/snapback-cli/blob/main/LICENSE)
 
-AI coding assistants like **Cursor**, **GitHub Copilot**, and **Claude** are incredible—until they're not. One wrong autocomplete can cascade into hours of debugging. Git doesn't help because you haven't committed yet.
+AI coding agents—Cursor, Claude Code, GitHub Copilot, Windsurf—are incredible until they're not. One hallucinated change cascades into hours of debugging. Git doesn't help because you haven't committed yet. And the faster you vibe-code, the faster mistakes compound.
 
 **SnapBack makes your codebase smarter every session.** Day 1: Detection. Day 30: Patterns. Day 90: Prediction.
 
@@ -261,14 +261,33 @@ snap tools repair
 
 ### Available MCP Tools
 
-Once configured, your AI assistant can use:
+Once configured, your AI assistant uses the **V2 4-tool surface** — a session-oriented API designed for agentic coding loops:
 
-| Tool | Description |
-|------|-------------|
-| `snapback.get_context` | Understand your codebase |
-| `snapback.analyze_risk` | Assess change risks |
-| `snapback.create_checkpoint` | Create safety snapshots (Pro) |
-| `snapback.restore_checkpoint` | Recover from mistakes (Pro) |
+| Tool | When to call | What it returns |
+|------|-------------|----------------|
+| `snap_begin` | Start of every task | Intelligence briefing: past learnings, active warnings, session lineage |
+| `snap_pulse` | Mid-session check | Read-only vitals: pulse level, risk pressure, trajectory |
+| `snap_learn` | Any discovery | Captures a pattern, gotcha, or decision for future sessions |
+| `snap_end` | Task complete | Ceremony: outcome recorded, carry-forward context for next session |
+
+**The agentic workflow** (runs automatically in your AI assistant):
+
+```
+snap_begin({ task: "refactor auth module" })
+  → briefing with learnings, warnings, risk context
+
+  [... agent works ...]
+
+snap_pulse()  // optional mid-session check
+  → pulse: elevated, pressure: 42%, trajectory: stable
+
+snap_learn({ insight: "always snapshot before token refresh logic" })
+
+snap_end({ outcome: "completed", summary: "..." })
+  → ceremony: files changed, patterns captured, context for next session
+```
+
+The full surface (check, advise, safe_to_write, refactoring intelligence, learning intelligence) is also available for advanced workflows — see [MCP documentation →](https://docs.snapback.dev/mcp).
 
 ---
 
@@ -331,10 +350,13 @@ Once configured, your AI assistant can use:
 
 | Command | Description |
 |---------|-------------|
-| `snap context [task]` | Get relevant patterns before starting work |
+| `snap context [task]` | Pre-task briefing: relevant patterns, warnings, risk context (CLI equivalent of `snap_begin`) |
 | `snap validate <file>` | Run 7-layer validation pipeline |
 | `snap validate --all` | Validate all staged files |
 | `snap stats` | Show learning statistics |
+| `snap metrics [file]` | File momentum scores — which files are highest-churn / highest-risk |
+| `snap sync` | Collect signals and fit momentum scoring normalizers |
+| `snap refresh [--since]` | Incremental signal update |
 
 ### Learning Commands
 
@@ -374,14 +396,30 @@ Once configured, your AI assistant can use:
 | `snap tools validate` | Validate MCP configurations |
 | `snap tools repair` | Repair broken MCP configurations |
 
-### Daemon Commands
+### Daemon & Service Commands
 
 | Command | Description |
 |---------|-------------|
-| `snap daemon start` | Start SnapBack daemon |
+| `snap daemon start [--detach]` | Start SnapBack daemon (CLI↔Extension coordination) |
 | `snap daemon stop` | Stop SnapBack daemon |
 | `snap daemon status` | Check daemon status |
 | `snap daemon restart` | Restart daemon |
+| `snap daemon ping` | Verify daemon is responsive |
+| `snap service start [--daemon]` | Start local service (shared state for multi-client) |
+| `snap service stop` | Stop local service |
+| `snap service status` | Check service status |
+| `snap service logs [--follow]` | Stream service logs |
+| `snap service install` | Register as system service |
+| `snap service uninstall` | Unregister system service |
+
+### Workspace Baseline Commands
+
+| Command | Description |
+|---------|-------------|
+| `snap baseline scan` | Scan workspace and build intelligence baseline |
+| `snap baseline status` | Show baseline freshness and coverage |
+| `snap baseline show` | Display current baseline data |
+| `snap baseline invalidate` | Force baseline rebuild on next scan |
 
 ### Utility Commands
 
@@ -390,7 +428,7 @@ Once configured, your AI assistant can use:
 | `snap wizard` | Interactive first-run setup |
 | `snap doctor` | Diagnostics and health check |
 | `snap doctor --fix` | Auto-fix detected issues |
-| `snap upgrade` | Check for CLI updates |
+| `snap upgrade [--check|--canary]` | Update CLI or check for new version |
 | `snap config list` | List configuration values |
 | `snap config get <key>` | Get a specific config value |
 | `snap config set <key> <value>` | Set a configuration value |

package/dist/{auth-HFJRXXG2.js → auth-TDIHGKKL.js}

@@ -1,9 +1,9 @@
 #!/usr/bin/env node --no-warnings=ExperimentalWarning
-import { config, EntitlementsServiceImpl, getBaseUrl, ENABLE_ENHANCED_2FA, ENABLE_SSO, ENABLE_CAPTCHA, ENABLE_MULTI_SESSION, getOrganizationWithPurchasesAndMembersCount, getPendingInvitationByEmail } from './chunk-23G5VYA3.js';
+import { config, EntitlementsServiceImpl, getBaseUrl, ENABLE_ENHANCED_2FA, ENABLE_SSO, ENABLE_CAPTCHA, ENABLE_MULTI_SESSION, getOrganizationWithPurchasesAndMembersCount, getPendingInvitationByEmail } from './chunk-CPZWXRP2.js';
 import './chunk-GQ73B37K.js';
-import { combinedSchema, db } from './chunk-HR34NJP7.js';
-import { trackEvent } from './chunk-XYU5FFE3.js';
-import './chunk-ICKSHS3A.js';
+import { combinedSchema, db } from './chunk-LIBBDBW5.js';
+import { trackEvent } from './chunk-FMWCFAY7.js';
+import './chunk-Q4VC7GND.js';
 import { logger } from './chunk-PL4HF4M2.js';
 import { createLogger, LogLevel } from './chunk-WS36HDEU.js';
 import './chunk-5EOPYJ4Y.js';
@@ -1043,7 +1043,7 @@ var _auth = betterAuth({
             timestamp: (/* @__PURE__ */ new Date()).toISOString()
           });
           try {
-            const { db: db2 } = await import('./dist-YZBJAYEJ.js');
+            const { db: db2 } = await import('./dist-OO5LJHL6.js');
             const { sql } = await import('drizzle-orm');
             if (db2) {
               const result = await db2.execute(sql`
@@ -1073,7 +1073,7 @@ var _auth = betterAuth({
           }
           try {
             if (!session.activeOrganizationId) {
-              const { db: db2, combinedSchema: combinedSchema2 } = await import('./dist-YZBJAYEJ.js');
+              const { db: db2, combinedSchema: combinedSchema2 } = await import('./dist-OO5LJHL6.js');
               const { sql } = await import('drizzle-orm');
               if (db2) {
                 const { member: member2, session: sessionTable } = combinedSchema2;
@@ -1130,7 +1130,7 @@ var _auth = betterAuth({
             });
           }
           try {
-            const { autoProvisionOrganization } = await import('./auto-provision-organization-SF6XM7X4.js');
+            const { autoProvisionOrganization } = await import('./auto-provision-organization-CXHL46P3.js');
             const result = await autoProvisionOrganization(user2);
             if (!result.success) {
               logger.warn("Auto-org provisioning failed", {
@@ -1424,7 +1424,7 @@ This invitation expires in ${expiresInDays} days.`,
         timestamp: (/* @__PURE__ */ new Date()).toISOString()
       }).catch(() => {
       });
-      import('./dist-E7E2T3DQ.js').then(({ captureError }) => {
+      import('./dist-NFU5UJEW.js').then(({ captureError }) => {
         if (captureError && error instanceof Error) {
           captureError(error, {
             tags: {

package/dist/{auto-provision-organization-SF6XM7X4.js → auto-provision-organization-CXHL46P3.js}

@@ -1,6 +1,6 @@
 #!/usr/bin/env node --no-warnings=ExperimentalWarning
-import { trackEvent } from './chunk-XYU5FFE3.js';
-import './chunk-ICKSHS3A.js';
+import { trackEvent } from './chunk-FMWCFAY7.js';
+import './chunk-Q4VC7GND.js';
 import { logger } from './chunk-PL4HF4M2.js';
 import './chunk-WS36HDEU.js';
 import './chunk-5EOPYJ4Y.js';
@@ -56,7 +56,7 @@ __name(getDisplayName, "getDisplayName");
 async function autoProvisionOrganization(user) {
   const startTime = Date.now();
   try {
-    const { db, combinedSchema } = await import('./dist-YZBJAYEJ.js');
+    const { db, combinedSchema } = await import('./dist-OO5LJHL6.js');
     const { sql } = await import('drizzle-orm');
     if (!db) {
       logger.error("Database not available for auto-provisioning", {
@@ -138,7 +138,7 @@ async function autoProvisionOrganization(user) {
 __name(autoProvisionOrganization, "autoProvisionOrganization");
 async function userHasOrganization(userId) {
   try {
-    const { db, combinedSchema } = await import('./dist-YZBJAYEJ.js');
+    const { db, combinedSchema } = await import('./dist-OO5LJHL6.js');
     const { sql } = await import('drizzle-orm');
     if (!db) {
       return false;

package/dist/{chunk-23G5VYA3.js → chunk-CPZWXRP2.js}

@@ -1,6 +1,6 @@
 #!/usr/bin/env node --no-warnings=ExperimentalWarning
 import { isRedisAvailable, getCache, setCache, deleteCache } from './chunk-GQ73B37K.js';
-import { snapshots, snapshotFiles, agentSuggestions, quarantineEvents, postAcceptOutcomes, policyEvaluations, loops, feedback, combinedSchema, user, aiChat, organization, member, invitation, purchase, session, account, verification, passkey, db, userAttributions, subscriptions, trials, pioneers, usageLimits, creditsLedger, mcpObservations, mcpToolInvocations, extensionSyncState, pioneerActions, sagas, apiKeys, TIER_STALENESS_THRESHOLD_MS, WORKSPACE_LINK_TTL_MS, patterns, closeDatabaseConnection, checkDatabaseConnection } from './chunk-HR34NJP7.js';
+import { snapshots, snapshotFiles, agentSuggestions, quarantineEvents, postAcceptOutcomes, policyEvaluations, loops, feedback, telemetryEvents, telemetryIdempotencyKeys, combinedSchema, user, aiChat, organization, member, invitation, purchase, session, account, verification, passkey, db, userAttributions, subscriptions, trials, pioneers, usageLimits, creditsLedger, mcpObservations, mcpToolInvocations, extensionSyncState, pioneerActions, sagas, apiKeys, TIER_STALENESS_THRESHOLD_MS, WORKSPACE_LINK_TTL_MS, patterns, closeDatabaseConnection, checkDatabaseConnection } from './chunk-LIBBDBW5.js';
 import { logger } from './chunk-PL4HF4M2.js';
 import { shouldMergeAttribution, createLogger, LogLevel, isFeatureAvailableAtTier, getTierFeatures, getTierLimit, EventBus, generateIdempotencyKey, getActionPoints, calculatePioneerTier, PIONEER_TIER_THRESHOLDS, isFirstTimeAction, TIER_UPGRADE_SAGA } from './chunk-WS36HDEU.js';
 import { __name } from './chunk-7ADPL4Q3.js';
@@ -521,6 +521,179 @@ var TelemetrySinkDb = class {
     }
   }
 };
+var TelemetrySinkDbAdapter = class {
+  static {
+    __name(this, "TelemetrySinkDbAdapter");
+  }
+  db;
+  constructor(db2) {
+    this.db = db2;
+  }
+  /**
+   * Store telemetry events with idempotency check
+   */
+  async storeEvents(events) {
+    if (events.length === 0) {
+      return;
+    }
+    try {
+      const values = events.map((event) => ({
+        id: event.id,
+        userId: this.extractUserId(event),
+        apiKeyId: this.extractApiKeyId(event),
+        eventType: event.eventType,
+        eventCategory: this.categorizeEvent(event),
+        properties: this.redactProperties(event.payload),
+        sessionId: event.context?.sessionId,
+        platform: event.context?.client,
+        timestamp: new Date(event.timestamp),
+        createdAt: /* @__PURE__ */ new Date()
+      }));
+      await this.db.insert(telemetryEvents).values(values);
+    } catch (error) {
+      console.error("Failed to store telemetry events", {
+        count: events.length,
+        error: error instanceof Error ? error.message : String(error)
+      });
+      throw error;
+    }
+  }
+  /**
+   * Retrieve telemetry events with optional filtering
+   */
+  async getEvents(filter) {
+    try {
+      const results = await this.db.select().from(telemetryEvents);
+      let events = results.map((row) => this.toTelemetryEvent(row));
+      if (filter?.eventType) {
+        events = events.filter((e) => e.eventType === filter.eventType);
+      }
+      if (filter?.sessionId) {
+        events = events.filter((e) => e.context?.sessionId === filter.sessionId);
+      }
+      if (filter?.startTime !== void 0) {
+        events = events.filter((e) => e.timestamp >= filter.startTime);
+      }
+      if (filter?.endTime !== void 0) {
+        events = events.filter((e) => e.timestamp <= filter.endTime);
+      }
+      return events;
+    } catch (error) {
+      console.error("Failed to retrieve telemetry events", {
+        error: error instanceof Error ? error.message : String(error)
+      });
+      throw error;
+    }
+  }
+  /**
+   * Check if a request ID has been processed (idempotency)
+   */
+  async hasRequestId(requestId) {
+    try {
+      const result = await this.db.select().from(telemetryIdempotencyKeys).where(eq(telemetryIdempotencyKeys.idempotencyKey, requestId)).limit(1);
+      return result.length > 0;
+    } catch (error) {
+      console.error("Failed to check idempotency key", {
+        requestId,
+        error: error instanceof Error ? error.message : String(error)
+      });
+      throw error;
+    }
+  }
+  /**
+   * Record a request ID as processed (idempotency)
+   * Caches response data for duplicate request handling (2026 best practice)
+   */
+  async recordRequestId(requestId, responseData = {}) {
+    try {
+      const expiresAt = new Date(Date.now() + 24 * 60 * 60 * 1e3);
+      await this.db.insert(telemetryIdempotencyKeys).values({
+        idempotencyKey: requestId,
+        responseData,
+        createdAt: /* @__PURE__ */ new Date(),
+        expiresAt
+      });
+    } catch (error) {
+      console.error("Failed to record idempotency key", {
+        requestId,
+        error: error instanceof Error ? error.message : String(error)
+      });
+      throw error;
+    }
+  }
+  /**
+   * Extract user ID from event context or payload
+   */
+  extractUserId(event) {
+    return event.payload.userId || event.payload.user_id || null;
+  }
+  /**
+   * Extract API key ID from event context or payload
+   */
+  extractApiKeyId(event) {
+    return event.payload.apiKeyId || event.payload.api_key_id || null;
+  }
+  /**
+   * Categorize event based on eventType
+   * Maps to eventCategory enum in schema
+   */
+  categorizeEvent(event) {
+    const type = event.eventType.toLowerCase();
+    if (type.includes("error")) return "error";
+    if (type.includes("feature") || type.includes("usage")) return "feature_usage";
+    if (type.includes("lifecycle") || type.includes("session")) return "lifecycle";
+    if (type.includes("engagement") || type.includes("interaction")) return "engagement";
+    return "system";
+  }
+  /**
+   * Redact sensitive properties before storage (GDPR compliance 2026)
+   * Prevents PII leakage through telemetry data
+   */
+  redactProperties(properties) {
+    const sensitiveFields = [
+      "email",
+      "password",
+      "token",
+      "apiKey",
+      "api_key",
+      "secret",
+      "accessToken",
+      "access_token",
+      "refreshToken",
+      "refresh_token",
+      "creditCard",
+      "credit_card",
+      "ssn",
+      "socialSecurity"
+    ];
+    const redacted = {
+      ...properties
+    };
+    for (const field of sensitiveFields) {
+      if (field in redacted) {
+        redacted[field] = "[REDACTED]";
+      }
+    }
+    return redacted;
+  }
+  /**
+   * Transform database row to TelemetryEvent contract type
+   */
+  toTelemetryEvent(row) {
+    return {
+      id: row.id,
+      eventType: row.eventType,
+      payload: row.properties || {},
+      timestamp: row.timestamp.getTime(),
+      context: {
+        sessionId: row.sessionId || void 0,
+        requestId: row.requestId || `synthetic-${row.id}`,
+        workspaceId: row.workspaceId || void 0,
+        client: row.platform || "unknown"
+      }
+    };
+  }
+};
 
 // ../../packages/platform/dist/db/database-service.js
 var databaseService = {
@@ -607,7 +780,7 @@ async function getCapabilities(userId, options = {}) {
     throw new Error("Database not available");
   }
   let capabilities = await db.query.userDetectionCapabilities.findFirst({
-    where: /* @__PURE__ */ __name((cap, { eq: eq15 }) => eq15(cap.userId, validatedUserId), "where")
+    where: /* @__PURE__ */ __name((cap, { eq: eq16 }) => eq16(cap.userId, validatedUserId), "where")
   });
   if (!capabilities) {
     const [created] = await db.insert(userDetectionCapabilities).values({
@@ -830,7 +1003,7 @@ async function getCapabilityAuditHistory(userId, limit = 50) {
     return [];
   }
   return await db.query.capabilityAudit.findMany({
-    where: /* @__PURE__ */ __name((audit, { eq: eq15 }) => eq15(audit.userId, userId), "where"),
+    where: /* @__PURE__ */ __name((audit, { eq: eq16 }) => eq16(audit.userId, userId), "where"),
     orderBy: /* @__PURE__ */ __name((audit, { desc: desc4 }) => desc4(audit.createdAt), "orderBy"),
     limit
   });
@@ -997,7 +1170,7 @@ async function getOrganizationById(id) {
     throw new Error("Database not available");
   }
   return await db.query.organization.findFirst({
-    where: /* @__PURE__ */ __name((org, { eq: eq15 }) => eq15(org.id, id), "where"),
+    where: /* @__PURE__ */ __name((org, { eq: eq16 }) => eq16(org.id, id), "where"),
     with: {
       members: true,
       invitations: true
@@ -1012,7 +1185,7 @@ async function getOrganizationsWithMembers(userId) {
   return await db.query.organization.findMany({
     with: {
       members: {
-        where: /* @__PURE__ */ __name((member3, { eq: eq15 }) => eq15(member3.userId, userId), "where"),
+        where: /* @__PURE__ */ __name((member3, { eq: eq16 }) => eq16(member3.userId, userId), "where"),
         with: {
           user: true
         }
@@ -1026,7 +1199,7 @@ async function getInvitationById(id) {
     throw new Error("Database not available");
   }
   return await db.query.invitation.findFirst({
-    where: /* @__PURE__ */ __name((invitation2, { eq: eq15 }) => eq15(invitation2.id, id), "where"),
+    where: /* @__PURE__ */ __name((invitation2, { eq: eq16 }) => eq16(invitation2.id, id), "where"),
     with: {
       organization: true
     }
@@ -1038,7 +1211,7 @@ async function getOrganizationBySlug(slug) {
     throw new Error("Database not available");
   }
   return await db.query.organization.findFirst({
-    where: /* @__PURE__ */ __name((org, { eq: eq15 }) => eq15(org.slug, slug), "where")
+    where: /* @__PURE__ */ __name((org, { eq: eq16 }) => eq16(org.slug, slug), "where")
   });
 }
 __name(getOrganizationBySlug, "getOrganizationBySlug");
@@ -1047,7 +1220,7 @@ async function getOrganizationMembership(organizationId, userId) {
     throw new Error("Database not available");
   }
   return await db.query.member.findFirst({
-    where: /* @__PURE__ */ __name((member3, { and: and6, eq: eq15 }) => and6(eq15(member3.organizationId, organizationId), eq15(member3.userId, userId)), "where"),
+    where: /* @__PURE__ */ __name((member3, { and: and6, eq: eq16 }) => and6(eq16(member3.organizationId, organizationId), eq16(member3.userId, userId)), "where"),
     with: {
       organization: true
     }
@@ -1059,7 +1232,7 @@ async function getOrganizationWithPurchasesAndMembersCount(organizationId) {
     throw new Error("Database not available");
   }
   return await db.query.organization.findFirst({
-    where: /* @__PURE__ */ __name((org, { eq: eq15 }) => eq15(org.id, organizationId), "where"),
+    where: /* @__PURE__ */ __name((org, { eq: eq16 }) => eq16(org.id, organizationId), "where"),
     with: {
       purchases: true
     },
@@ -1074,7 +1247,7 @@ async function getPendingInvitationByEmail(email) {
     throw new Error("Database not available");
   }
   return await db.query.invitation.findFirst({
-    where: /* @__PURE__ */ __name((invitation2, { and: and6, eq: eq15 }) => and6(eq15(invitation2.email, email), eq15(invitation2.status, "pending")), "where")
+    where: /* @__PURE__ */ __name((invitation2, { and: and6, eq: eq16 }) => and6(eq16(invitation2.email, email), eq16(invitation2.status, "pending")), "where")
   });
 }
 __name(getPendingInvitationByEmail, "getPendingInvitationByEmail");
@@ -1335,7 +1508,7 @@ async function getPurchasesByOrganizationId(organizationId) {
     throw new Error("Database not available");
   }
   return db.query.purchase.findMany({
-    where: /* @__PURE__ */ __name((purchase3, { eq: eq15 }) => eq15(purchase3.organizationId, organizationId), "where")
+    where: /* @__PURE__ */ __name((purchase3, { eq: eq16 }) => eq16(purchase3.organizationId, organizationId), "where")
   });
 }
 __name(getPurchasesByOrganizationId, "getPurchasesByOrganizationId");
@@ -1344,7 +1517,7 @@ async function getPurchasesByUserId(userId) {
     throw new Error("Database not available");
   }
   return db.query.purchase.findMany({
-    where: /* @__PURE__ */ __name((purchase3, { eq: eq15 }) => eq15(purchase3.userId, userId), "where")
+    where: /* @__PURE__ */ __name((purchase3, { eq: eq16 }) => eq16(purchase3.userId, userId), "where")
   });
 }
 __name(getPurchasesByUserId, "getPurchasesByUserId");
@@ -1353,7 +1526,7 @@ async function getPurchaseById(id) {
     throw new Error("Database not available");
   }
   return db.query.purchase.findFirst({
-    where: /* @__PURE__ */ __name((purchase3, { eq: eq15 }) => eq15(purchase3.id, id), "where")
+    where: /* @__PURE__ */ __name((purchase3, { eq: eq16 }) => eq16(purchase3.id, id), "where")
   });
 }
 __name(getPurchaseById, "getPurchaseById");
@@ -1362,7 +1535,7 @@ async function getPurchaseBySubscriptionId(subscriptionId) {
     throw new Error("Database not available");
   }
   return db.query.purchase.findFirst({
-    where: /* @__PURE__ */ __name((purchase3, { eq: eq15 }) => eq15(purchase3.subscriptionId, subscriptionId), "where")
+    where: /* @__PURE__ */ __name((purchase3, { eq: eq16 }) => eq16(purchase3.subscriptionId, subscriptionId), "where")
   });
 }
 __name(getPurchaseBySubscriptionId, "getPurchaseBySubscriptionId");
@@ -1438,7 +1611,7 @@ async function getUserById(id) {
     throw new Error("Database not available");
   }
   return await db.query.user.findFirst({
-    where: /* @__PURE__ */ __name((user3, { eq: eq15 }) => eq15(user3.id, id), "where")
+    where: /* @__PURE__ */ __name((user3, { eq: eq16 }) => eq16(user3.id, id), "where")
   });
 }
 __name(getUserById, "getUserById");
@@ -1447,7 +1620,7 @@ async function getUserByEmail(email) {
     throw new Error("Database not available");
   }
   return await db.query.user.findFirst({
-    where: /* @__PURE__ */ __name((user3, { eq: eq15 }) => eq15(user3.email, email), "where")
+    where: /* @__PURE__ */ __name((user3, { eq: eq16 }) => eq16(user3.email, email), "where")
   });
 }
 __name(getUserByEmail, "getUserByEmail");
@@ -1480,7 +1653,7 @@ async function getAccountById(id) {
     throw new Error("Database not available");
   }
   return await db.query.account.findFirst({
-    where: /* @__PURE__ */ __name((account3, { eq: eq15 }) => eq15(account3.id, id), "where")
+    where: /* @__PURE__ */ __name((account3, { eq: eq16 }) => eq16(account3.id, id), "where")
   });
 }
 __name(getAccountById, "getAccountById");
@@ -1541,7 +1714,7 @@ async function getWorkspaceLinkById(workspaceId) {
   }
   const validatedId = workspaceIdSchema.parse(workspaceId);
   return await db.query.workspaceLinks.findFirst({
-    where: /* @__PURE__ */ __name((link, { eq: eq15 }) => eq15(link.workspaceId, validatedId), "where")
+    where: /* @__PURE__ */ __name((link, { eq: eq16 }) => eq16(link.workspaceId, validatedId), "where")
   });
 }
 __name(getWorkspaceLinkById, "getWorkspaceLinkById");
@@ -1555,7 +1728,7 @@ async function resolveTierByWorkspaceId(workspaceId) {
   try {
     const validatedId = workspaceIdSchema.parse(workspaceId);
     const link = await db.query.workspaceLinks.findFirst({
-      where: /* @__PURE__ */ __name((link2, { eq: eq15 }) => eq15(link2.workspaceId, validatedId), "where")
+      where: /* @__PURE__ */ __name((link2, { eq: eq16 }) => eq16(link2.workspaceId, validatedId), "where")
     });
     if (!link) {
       return {
@@ -1681,7 +1854,7 @@ async function getWorkspaceLinksByUserId(userId) {
     throw new Error("Database not available");
   }
   return await db.query.workspaceLinks.findMany({
-    where: /* @__PURE__ */ __name((link, { eq: eq15 }) => eq15(link.userId, userId), "where"),
+    where: /* @__PURE__ */ __name((link, { eq: eq16 }) => eq16(link.userId, userId), "where"),
     orderBy: /* @__PURE__ */ __name((link, { desc: desc4 }) => desc4(link.lastSeenAt), "orderBy")
   });
 }
@@ -1874,7 +2047,7 @@ var extensionSessions = pgTable("extension_sessions", {
 // ../../packages/platform/dist/db/test-utils.js
 var testInTransaction = /* @__PURE__ */ __name((testName, testFn) => {
   return async () => {
-    const module = await import('./client-WIO6W447.js');
+    const module = await import('./client-62E3L6DW.js');
     const db2 = module.db;
     try {
       await testFn(db2);
@@ -1898,7 +2071,7 @@ var truncateAllTables = /* @__PURE__ */ __name(async () => {
   console.warn("truncateAllTables is not implemented - tests may have side effects");
 }, "truncateAllTables");
 var getTestDb = /* @__PURE__ */ __name(async () => {
-  const module = await import('./client-WIO6W447.js');
+  const module = await import('./client-62E3L6DW.js');
   return module.db;
 }, "getTestDb");
 var closeTestDb = /* @__PURE__ */ __name(async () => {
@@ -4256,4 +4429,4 @@ function createTierUpgradeSagaWithDeps(deps) {
 }
 __name(createTierUpgradeSagaWithDeps, "createTierUpgradeSagaWithDeps");
 
-export { AccountSchema, AiChatSchema, AttributionServiceImpl, ENABLE_CAPTCHA, ENABLE_ENHANCED_2FA, ENABLE_MULTI_SESSION, ENABLE_SSO, EntitlementsServiceImpl, InvitationSchema, MCPService, MemberSchema, OrganizationSchema, OrganizationUpdateSchema, PasskeySchema, PioneerServiceImpl, PurchaseInsertSchema, PurchaseSchema, PurchaseUpdateSchema, SagaOrchestratorImpl, SessionSchema, SnapshotStoreDb, TelemetrySinkDb, UserSchema, UserUpdateSchema, VerificationSchema, anonymizeEmail, anonymizeUserData, anonymizeUserId, appendFalsePositivePatterns, calculateDecayedWeight, cleanupExpiredData, clearCapabilityCache, closeTestDb, config, countAllOrganizations, countAllUsers, createPurchase, createTestUser, createTierUpgradeSagaWithDeps, createUser, createUserAccount, databaseService, deletePurchaseBySubscriptionId, deleteUserApiKeys, deleteUserData, exportUserData, extensionLinkTokens, extensionSessions, findSimilarPatterns, generateOrganizationSlug, getAccountById, getBaseUrl, getCacheMetrics, getCapabilities, getCapabilityAuditHistory, getInvitationById, getMCPService, getOrganizationById, getOrganizationBySlug, getOrganizationMembership, getOrganizationWithPurchasesAndMembersCount, getOrganizations, getOrganizationsWithMembers, getPendingInvitationByEmail, getPurchaseById, getPurchaseBySubscriptionId, getPurchasesByOrganizationId, getPurchasesByUserId, getTestDb, getUserByEmail, getUserById, getUserPrivacyPreferences, getUsers, getVectorStats, getWorkspaceLinkById, getWorkspaceLinksByUserId, handleTierDowngrade, handleTierUpgrade, healthCheck, incrementDetectionsAnalyzed, insertPatternWithEmbedding, invalidateCapabilityCache, isPgvectorEnabled, linkWorkspace, logAnonymizedEvent, logCapabilityAudit, mergeSignalIntoPattern, recordFalsePositiveSignal, resetCacheMetrics, resetCapabilities, resolveTierByWorkspaceId, sagaPersistence, sanitizeForLogging, searchSimilarPatterns, shouldRetainData, signalToPattern, testInTransaction, truncateAllTables, unlinkAllWorkspacesForUser, unlinkWorkspace, updateCapabilities, updateOrganization, updatePatternEmbedding, updatePurchase, updateUser, updateWorkspaceTier };
+export { AccountSchema, AiChatSchema, AttributionServiceImpl, ENABLE_CAPTCHA, ENABLE_ENHANCED_2FA, ENABLE_MULTI_SESSION, ENABLE_SSO, EntitlementsServiceImpl, InvitationSchema, MCPService, MemberSchema, OrganizationSchema, OrganizationUpdateSchema, PasskeySchema, PioneerServiceImpl, PurchaseInsertSchema, PurchaseSchema, PurchaseUpdateSchema, SagaOrchestratorImpl, SessionSchema, SnapshotStoreDb, TelemetrySinkDb, TelemetrySinkDbAdapter, UserSchema, UserUpdateSchema, VerificationSchema, anonymizeEmail, anonymizeUserData, anonymizeUserId, appendFalsePositivePatterns, calculateDecayedWeight, cleanupExpiredData, clearCapabilityCache, closeTestDb, config, countAllOrganizations, countAllUsers, createPurchase, createTestUser, createTierUpgradeSagaWithDeps, createUser, createUserAccount, databaseService, deletePurchaseBySubscriptionId, deleteUserApiKeys, deleteUserData, exportUserData, extensionLinkTokens, extensionSessions, findSimilarPatterns, generateOrganizationSlug, getAccountById, getBaseUrl, getCacheMetrics, getCapabilities, getCapabilityAuditHistory, getInvitationById, getMCPService, getOrganizationById, getOrganizationBySlug, getOrganizationMembership, getOrganizationWithPurchasesAndMembersCount, getOrganizations, getOrganizationsWithMembers, getPendingInvitationByEmail, getPurchaseById, getPurchaseBySubscriptionId, getPurchasesByOrganizationId, getPurchasesByUserId, getTestDb, getUserByEmail, getUserById, getUserPrivacyPreferences, getUsers, getVectorStats, getWorkspaceLinkById, getWorkspaceLinksByUserId, handleTierDowngrade, handleTierUpgrade, healthCheck, incrementDetectionsAnalyzed, insertPatternWithEmbedding, invalidateCapabilityCache, isPgvectorEnabled, linkWorkspace, logAnonymizedEvent, logCapabilityAudit, mergeSignalIntoPattern, recordFalsePositiveSignal, resetCacheMetrics, resetCapabilities, resolveTierByWorkspaceId, sagaPersistence, sanitizeForLogging, searchSimilarPatterns, shouldRetainData, signalToPattern, testInTransaction, truncateAllTables, unlinkAllWorkspacesForUser, unlinkWorkspace, updateCapabilities, updateOrganization, updatePatternEmbedding, updatePurchase, updateUser, updateWorkspaceTier };

package/dist/{chunk-OI2HNNT6.js → chunk-E6V6QKS7.js}

@@ -874,6 +874,32 @@ function resolveNodePath() {
 }
 __name(resolveNodePath, "resolveNodePath");
 __name2(resolveNodePath, "resolveNodePath");
+function resolveSnapbackBinaryPath() {
+  try {
+    const isWindows = process.platform === "win32";
+    const command = isWindows ? "where snapback" : "which snapback";
+    const result = execSync(command, {
+      encoding: "utf-8",
+      timeout: 5e3
+    }).trim();
+    const binaryPath = result.split(/\r?\n/)[0].trim();
+    if (binaryPath && existsSync(binaryPath)) {
+      return binaryPath;
+    }
+  } catch {
+  }
+  const commonPaths = [
+    "/opt/homebrew/bin/snapback",
+    "/usr/local/bin/snapback",
+    "/usr/bin/snapback"
+  ];
+  for (const p of commonPaths) {
+    if (existsSync(p)) return p;
+  }
+  return "snapback";
+}
+__name(resolveSnapbackBinaryPath, "resolveSnapbackBinaryPath");
+__name2(resolveSnapbackBinaryPath, "resolveSnapbackBinaryPath");
 function isCommandExecutable2(command) {
   if (command.startsWith("/") || command.match(/^[A-Z]:\\/i)) {
     return existsSync(command);
@@ -1038,7 +1064,7 @@ function getSnapbackMCPConfig(options = {}) {
       args.push("--workspace", workspaceRoot);
     }
     return {
-      command: "snapback",
+      command: resolveSnapbackBinaryPath(),
       args,
       ...Object.keys(env).length > 0 && {
         env
@@ -1205,7 +1231,13 @@ function mergeConfig(existing, snapbackConfig, format) {
         }
       };
     case "qoder": {
-      const qoderType = snapbackConfig.url ? "sse" : "stdio";
+      let qoderType;
+      if (snapbackConfig.url) {
+        const isLocal = snapbackConfig.url.startsWith("http://localhost") || snapbackConfig.url.startsWith("http://127.0.0.1");
+        qoderType = isLocal ? "sse" : "http";
+      } else {
+        qoderType = "stdio";
+      }
       return {
         ...existing,
         mcpServers: {

package/dist/{chunk-XYU5FFE3.js → chunk-FMWCFAY7.js}

@@ -50,7 +50,7 @@ async function emitPostHogEvent(eventType, metadata) {
 __name(emitPostHogEvent, "emitPostHogEvent");
 async function writeAuditLog(eventType, metadata) {
   try {
-    const { db, snapbackSchema } = await import('./dist-YZBJAYEJ.js');
+    const { db, snapbackSchema } = await import('./dist-OO5LJHL6.js');
     if (!db) {
       logger.warn("Database not available for audit logging", {
         eventType

package/dist/{chunk-HR34NJP7.js → chunk-LIBBDBW5.js}

@@ -4202,7 +4202,10 @@ var quarantineEvents = pgTable("quarantine_events", {
   errorReason: text("error_reason").notNull(),
   errorStack: text("error_stack"),
   attemptedAt: timestamp("attempted_at").defaultNow().notNull(),
-  createdAt: timestamp("created_at").defaultNow().notNull()
+  createdAt: timestamp("created_at").defaultNow().notNull(),
+  // Retry logic columns (for replayQuarantined implementation)
+  retryCount: integer("retry_count").default(0).notNull(),
+  lastAttemptedAt: timestamp("last_attempted_at")
 }, (table) => {
   return {
     attemptedAtIndex: index("quarantine_events_attempted_at_idx").on(table.attemptedAt),