@squadbase/vite-server 0.1.8 → 0.1.9-dev.3841401

package/dist/connectors/stripe-oauth.js

@@ -61,6 +61,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
   releaseFlag;
   proxyPolicy;
   experimentalAttributes;
+  categories;
   onboarding;
   systemPrompt;
   tools;
@@ -76,6 +77,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
     this.releaseFlag = config.releaseFlag;
     this.proxyPolicy = config.proxyPolicy;
     this.experimentalAttributes = config.experimentalAttributes;
+    this.categories = config.categories ?? [];
     this.onboarding = config.onboarding;
     this.systemPrompt = config.systemPrompt;
     this.tools = config.tools;
@@ -318,6 +320,7 @@ var stripeOauthConnector = new ConnectorPlugin({
   iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/2QNK0u2doqp41uL0POS4Ks/7a92367e2388ec77c7f4ada143606f9a/stripe.jpeg",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
+  categories: ["finance"],
   onboarding: stripeOnboarding,
   proxyPolicy: {
     allowlist: [

package/dist/connectors/supabase.d.ts

@@ -0,0 +1,5 @@
+import * as _squadbase_connectors_sdk from '@squadbase/connectors/sdk';
+
+declare const connection: (connectionId: string) => _squadbase_connectors_sdk.SupabaseConnectorSdk;
+
+export { connection };

package/dist/connectors/supabase.js

@@ -0,0 +1,582 @@
+// ../connectors/src/parameter-definition.ts
+var ParameterDefinition = class {
+  slug;
+  name;
+  description;
+  envVarBaseKey;
+  type;
+  secret;
+  required;
+  constructor(config) {
+    this.slug = config.slug;
+    this.name = config.name;
+    this.description = config.description;
+    this.envVarBaseKey = config.envVarBaseKey;
+    this.type = config.type;
+    this.secret = config.secret;
+    this.required = config.required;
+  }
+  /**
+   * Get the parameter value from a ConnectorConnectionObject.
+   */
+  getValue(connection2) {
+    const param = connection2.parameters.find(
+      (p) => p.parameterSlug === this.slug
+    );
+    if (!param || param.value == null) {
+      throw new Error(
+        `Parameter "${this.slug}" not found or has no value in connection "${connection2.id}"`
+      );
+    }
+    return param.value;
+  }
+  /**
+   * Try to get the parameter value. Returns undefined if not found (for optional params).
+   */
+  tryGetValue(connection2) {
+    const param = connection2.parameters.find(
+      (p) => p.parameterSlug === this.slug
+    );
+    if (!param || param.value == null) return void 0;
+    return param.value;
+  }
+};
+
+// ../connectors/src/connectors/supabase/parameters.ts
+var parameters = {
+  connectionUrl: new ParameterDefinition({
+    slug: "connection-url",
+    name: "Supabase Connection URL",
+    description: "The Supabase Postgres connection string. Copy it from the Supabase dashboard (Project Settings \u2192 Database \u2192 Connection string). Use the Transaction pooler (port 6543) URL for serverless workloads, e.g. `postgresql://postgres.<project-ref>:<password>@aws-0-<region>.pooler.supabase.com:6543/postgres`.",
+    envVarBaseKey: "SUPABASE_DB_URL",
+    type: "text",
+    secret: true,
+    required: true
+  })
+};
+
+// ../connectors/src/connectors/supabase/sdk/index.ts
+function createClient(params) {
+  const connectionUrl = params[parameters.connectionUrl.slug];
+  if (!connectionUrl) {
+    throw new Error(
+      `supabase: missing required parameter: ${parameters.connectionUrl.slug}`
+    );
+  }
+  async function runQuery(sql, queryParams) {
+    try {
+      const { Pool } = await import("pg");
+      const pool = new Pool({
+        connectionString: connectionUrl,
+        ssl: { rejectUnauthorized: false },
+        connectionTimeoutMillis: 1e4,
+        statement_timeout: 6e4
+      });
+      try {
+        const result = await pool.query(sql, queryParams);
+        return result.rows;
+      } finally {
+        await pool.end();
+      }
+    } catch (err) {
+      const msg = err instanceof Error ? err.message : String(err);
+      throw new Error(msg.replaceAll(connectionUrl, "***"));
+    }
+  }
+  return {
+    query: runQuery
+  };
+}
+
+// ../connectors/src/connector-onboarding.ts
+var ConnectorOnboarding = class {
+  /** Phase 1: Connection setup instructions (optional — some connectors don't need this) */
+  connectionSetupInstructions;
+  /** Phase 2: Data overview instructions */
+  dataOverviewInstructions;
+  constructor(config) {
+    this.connectionSetupInstructions = config.connectionSetupInstructions;
+    this.dataOverviewInstructions = config.dataOverviewInstructions;
+  }
+  getConnectionSetupPrompt(language) {
+    return this.connectionSetupInstructions?.[language] ?? null;
+  }
+  getDataOverviewInstructions(language) {
+    return this.dataOverviewInstructions[language];
+  }
+};
+
+// ../connectors/src/connector-tool.ts
+var ConnectorTool = class {
+  name;
+  description;
+  inputSchema;
+  outputSchema;
+  _execute;
+  constructor(config) {
+    this.name = config.name;
+    this.description = config.description;
+    this.inputSchema = config.inputSchema;
+    this.outputSchema = config.outputSchema;
+    this._execute = config.execute;
+  }
+  createTool(connections, config) {
+    return {
+      description: this.description,
+      inputSchema: this.inputSchema,
+      outputSchema: this.outputSchema,
+      execute: (input) => this._execute(input, connections, config)
+    };
+  }
+};
+
+// ../connectors/src/connector-plugin.ts
+var ConnectorPlugin = class _ConnectorPlugin {
+  slug;
+  authType;
+  name;
+  description;
+  iconUrl;
+  parameters;
+  releaseFlag;
+  proxyPolicy;
+  experimentalAttributes;
+  categories;
+  onboarding;
+  systemPrompt;
+  tools;
+  query;
+  checkConnection;
+  constructor(config) {
+    this.slug = config.slug;
+    this.authType = config.authType;
+    this.name = config.name;
+    this.description = config.description;
+    this.iconUrl = config.iconUrl;
+    this.parameters = config.parameters;
+    this.releaseFlag = config.releaseFlag;
+    this.proxyPolicy = config.proxyPolicy;
+    this.experimentalAttributes = config.experimentalAttributes;
+    this.categories = config.categories ?? [];
+    this.onboarding = config.onboarding;
+    this.systemPrompt = config.systemPrompt;
+    this.tools = config.tools;
+    this.query = config.query;
+    this.checkConnection = config.checkConnection;
+  }
+  get connectorKey() {
+    return _ConnectorPlugin.deriveKey(this.slug, this.authType);
+  }
+  /**
+   * Create tools for connections that belong to this connector.
+   * Filters connections by connectorKey internally.
+   * Returns tools keyed as `${connectorKey}_${toolName}`.
+   */
+  createTools(connections, config, opts) {
+    const myConnections = connections.filter(
+      (c) => _ConnectorPlugin.deriveKey(c.connector.slug, c.connector.authType) === this.connectorKey
+    );
+    const result = {};
+    for (const t of Object.values(this.tools)) {
+      const tool = t.createTool(myConnections, config);
+      const originalToModelOutput = tool.toModelOutput;
+      result[`${this.connectorKey}_${t.name}`] = {
+        ...tool,
+        toModelOutput: async (options) => {
+          if (!originalToModelOutput) {
+            return opts.truncateOutput(options.output);
+          }
+          const modelOutput = await originalToModelOutput(options);
+          if (modelOutput.type === "text" || modelOutput.type === "json") {
+            return opts.truncateOutput(modelOutput.value);
+          }
+          return modelOutput;
+        }
+      };
+    }
+    return result;
+  }
+  static deriveKey(slug, authType) {
+    if (authType) return `${slug}-${authType}`;
+    const LEGACY_NULL_AUTH_TYPE_MAP = {
+      // user-password
+      "postgresql": "user-password",
+      "mysql": "user-password",
+      "clickhouse": "user-password",
+      "kintone": "user-password",
+      "squadbase-db": "user-password",
+      // service-account
+      "snowflake": "service-account",
+      "bigquery": "service-account",
+      "google-analytics": "service-account",
+      "google-calendar": "service-account",
+      "aws-athena": "service-account",
+      "redshift": "service-account",
+      // api-key
+      "databricks": "api-key",
+      "dbt": "api-key",
+      "airtable": "api-key",
+      "openai": "api-key",
+      "gemini": "api-key",
+      "anthropic": "api-key",
+      "wix-store": "api-key"
+    };
+    const fallbackAuthType = LEGACY_NULL_AUTH_TYPE_MAP[slug];
+    if (fallbackAuthType) return `${slug}-${fallbackAuthType}`;
+    return slug;
+  }
+};
+
+// ../connectors/src/auth-types.ts
+var AUTH_TYPES = {
+  OAUTH: "oauth",
+  API_KEY: "api-key",
+  JWT: "jwt",
+  SERVICE_ACCOUNT: "service-account",
+  PAT: "pat",
+  USER_PASSWORD: "user-password"
+};
+
+// ../connectors/src/lib/query-utils.ts
+function buildPositionalParams(sql, namedParams) {
+  if (!namedParams) return { text: sql, values: [] };
+  const values = [];
+  const nameToIndex = /* @__PURE__ */ new Map();
+  const text = sql.replace(/\{\{(\w+)\}\}/g, (_match, name) => {
+    if (!nameToIndex.has(name)) {
+      values.push(namedParams[name] ?? null);
+      nameToIndex.set(name, values.length);
+    }
+    return `$${nameToIndex.get(name)}`;
+  });
+  return { text, values };
+}
+
+// ../connectors/src/connectors/supabase/setup.ts
+var supabaseOnboarding = new ConnectorOnboarding({
+  dataOverviewInstructions: {
+    en: `1. Use executeQuery to list tables in the \`public\` schema: \`SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'\`
+2. Most Supabase projects also expose Auth/Storage tables in dedicated schemas (\`auth\`, \`storage\`). Inspect them with \`SELECT table_schema, table_name FROM information_schema.tables WHERE table_schema IN ('auth', 'storage')\` only when the user explicitly needs them
+3. For key tables, fetch column info: \`SELECT column_name, data_type FROM information_schema.columns WHERE table_schema = 'public' AND table_name = 'xxx'\`
+4. Sample up to 3 tables with \`SELECT * FROM <table_name> LIMIT 5\` if column info alone is insufficient`,
+    ja: `1. executeQuery \u3067 \`public\` \u30B9\u30AD\u30FC\u30DE\u306E\u30C6\u30FC\u30D6\u30EB\u4E00\u89A7\u3092\u53D6\u5F97: \`SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'\`
+2. Supabase\u306F Auth / Storage \u7528\u306E\u30C6\u30FC\u30D6\u30EB\u3092 \`auth\` / \`storage\` \u30B9\u30AD\u30FC\u30DE\u306B\u6301\u3061\u307E\u3059\u3002\u30E6\u30FC\u30B6\u30FC\u304C\u660E\u793A\u7684\u306B\u5FC5\u8981\u3068\u3057\u3066\u3044\u308B\u5834\u5408\u306E\u307F \`SELECT table_schema, table_name FROM information_schema.tables WHERE table_schema IN ('auth', 'storage')\` \u3067\u78BA\u8A8D\u3057\u3066\u304F\u3060\u3055\u3044
+3. \u4E3B\u8981\u30C6\u30FC\u30D6\u30EB\u306E\u30AB\u30E9\u30E0\u60C5\u5831\u3092\u53D6\u5F97: \`SELECT column_name, data_type FROM information_schema.columns WHERE table_schema = 'public' AND table_name = 'xxx'\`
+4. \u30AB\u30E9\u30E0\u60C5\u5831\u3060\u3051\u3067\u306F\u4E0D\u5341\u5206\u306A\u5834\u5408\u3001\u6700\u59273\u30C6\u30FC\u30D6\u30EB\u3092 \`SELECT * FROM <table_name> LIMIT 5\` \u3067\u30B5\u30F3\u30D7\u30EA\u30F3\u30B0`
+  }
+});
+
+// ../connectors/src/connectors/supabase/tools/execute-query.ts
+import { z } from "zod";
+var MAX_ROWS = 500;
+var CONNECT_TIMEOUT_MS = 1e4;
+var STATEMENT_TIMEOUT_MS = 6e4;
+var inputSchema = z.object({
+  toolUseIntent: z.string().optional().describe(
+    "Brief description of what you intend to accomplish with this tool call"
+  ),
+  connectionId: z.string().describe("ID of the Supabase connection to use"),
+  sql: z.string().describe(
+    "PostgreSQL SQL query targeting the Supabase project. Use the `public` schema unless the user explicitly references Supabase Auth (`auth.*`) or Storage (`storage.*`). Always include LIMIT."
+  )
+});
+var outputSchema = z.discriminatedUnion("success", [
+  z.object({
+    success: z.literal(true),
+    rowCount: z.number(),
+    truncated: z.boolean(),
+    rows: z.array(z.record(z.string(), z.unknown()))
+  }),
+  z.object({
+    success: z.literal(false),
+    error: z.string()
+  })
+]);
+var executeQueryTool = new ConnectorTool({
+  name: "executeQuery",
+  description: `Execute SQL against a Supabase Postgres database. Returns up to ${MAX_ROWS} rows.
+Use for: schema exploration (information_schema), data sampling, and analytical queries against Supabase tables.
+User tables live in the \`public\` schema by default; Supabase-managed metadata lives in \`auth\` and \`storage\`.
+Avoid loading large amounts of data; always include LIMIT in queries.`,
+  inputSchema,
+  outputSchema,
+  async execute({ connectionId, sql }, connections) {
+    const connection2 = connections.find((c) => c.id === connectionId);
+    if (!connection2) {
+      return {
+        success: false,
+        error: `Connection ${connectionId} not found`
+      };
+    }
+    console.log(
+      `[connector-query] supabase/${connection2.name}: ${sql}`
+    );
+    let connectionUrl;
+    try {
+      const { Pool } = await import("pg");
+      connectionUrl = parameters.connectionUrl.getValue(connection2);
+      const pool = new Pool({
+        connectionString: connectionUrl,
+        ssl: { rejectUnauthorized: false },
+        connectionTimeoutMillis: CONNECT_TIMEOUT_MS,
+        statement_timeout: STATEMENT_TIMEOUT_MS
+      });
+      try {
+        const result = await pool.query(sql);
+        const rows = result.rows;
+        const truncated = rows.length > MAX_ROWS;
+        return {
+          success: true,
+          rowCount: Math.min(rows.length, MAX_ROWS),
+          truncated,
+          rows: rows.slice(0, MAX_ROWS)
+        };
+      } finally {
+        await pool.end();
+      }
+    } catch (err) {
+      let msg = err instanceof Error ? err.message : String(err);
+      if (connectionUrl) {
+        msg = msg.replaceAll(connectionUrl, "***");
+      }
+      return { success: false, error: msg };
+    }
+  }
+});
+
+// ../connectors/src/connectors/supabase/index.ts
+var tools = { executeQuery: executeQueryTool };
+var supabaseConnector = new ConnectorPlugin({
+  slug: "supabase",
+  authType: AUTH_TYPES.USER_PASSWORD,
+  name: "Supabase",
+  description: "Connect to a Supabase project's Postgres database to query application tables and Supabase-managed schemas (auth, storage).",
+  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/14k0U6F9PVovVjYjWyNzKb/2c4ff53adbe9334a63fee0a13d9f050a/supabase-icon.webp",
+  parameters,
+  releaseFlag: { dev1: true, dev2: true, prod: true },
+  categories: ["database"],
+  onboarding: supabaseOnboarding,
+  systemPrompt: {
+    en: `### Tools
+
+- \`supabase_executeQuery\`: Executes a PostgreSQL query against the Supabase project's database and returns rows. Use this for schema exploration via \`information_schema.tables\`/\`columns\` and for sampling data. See the SQL Reference below for syntax notes and Supabase-specific schemas.
+
+### Business Logic
+
+The business logic type for this connector is "sql".
+
+### SQL Reference
+- Schema layout:
+  - User tables live in the \`public\` schema by default.
+  - Supabase Auth tables live in the \`auth\` schema (e.g. \`auth.users\`).
+  - Supabase Storage tables live in the \`storage\` schema (e.g. \`storage.objects\`, \`storage.buckets\`).
+- Schema exploration:
+  - List user tables: \`SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'\`
+  - List columns: \`SELECT column_name, data_type FROM information_schema.columns WHERE table_schema = 'public' AND table_name = 'xxx'\`
+- Always include LIMIT in queries`,
+    ja: `### \u30C4\u30FC\u30EB
+
+- \`supabase_executeQuery\`: Supabase\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u306E Postgres \u30C7\u30FC\u30BF\u30D9\u30FC\u30B9\u306B\u5BFE\u3057\u3066\u30AF\u30A8\u30EA\u3092\u5B9F\u884C\u3057\u3001\u884C\u30C7\u30FC\u30BF\u3092\u8FD4\u3057\u307E\u3059\u3002\`information_schema.tables\`/\`columns\` \u3092\u4F7F\u3063\u305F\u30B9\u30AD\u30FC\u30DE\u63A2\u7D22\u3084\u30C7\u30FC\u30BF\u306E\u30B5\u30F3\u30D7\u30EA\u30F3\u30B0\u306B\u4F7F\u3044\u307E\u3059\u3002\u69CB\u6587\u306E\u6CE8\u610F\u70B9\u3068 Supabase \u56FA\u6709\u306E\u30B9\u30AD\u30FC\u30DE\u306F\u4E0B\u90E8\u306E\u300CSQL \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9\u300D\u3092\u53C2\u7167\u3057\u3066\u304F\u3060\u3055\u3044\u3002
+
+### Business Logic
+
+\u3053\u306E\u30B3\u30CD\u30AF\u30BF\u306E\u30D3\u30B8\u30CD\u30B9\u30ED\u30B8\u30C3\u30AF\u30BF\u30A4\u30D7\u306F "sql" \u3067\u3059\u3002
+
+### SQL \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9
+- \u30B9\u30AD\u30FC\u30DE\u69CB\u6210:
+  - \u30E6\u30FC\u30B6\u30FC\u306E\u30C6\u30FC\u30D6\u30EB\u306F\u30C7\u30D5\u30A9\u30EB\u30C8\u3067 \`public\` \u30B9\u30AD\u30FC\u30DE\u306B\u5B58\u5728\u3057\u307E\u3059\u3002
+  - Supabase Auth \u306E\u30C6\u30FC\u30D6\u30EB\u306F \`auth\` \u30B9\u30AD\u30FC\u30DE\u306B\u5B58\u5728\u3057\u307E\u3059\uFF08\u4F8B: \`auth.users\`\uFF09\u3002
+  - Supabase Storage \u306E\u30C6\u30FC\u30D6\u30EB\u306F \`storage\` \u30B9\u30AD\u30FC\u30DE\u306B\u5B58\u5728\u3057\u307E\u3059\uFF08\u4F8B: \`storage.objects\`, \`storage.buckets\`\uFF09\u3002
+- \u30B9\u30AD\u30FC\u30DE\u63A2\u7D22:
+  - \u30E6\u30FC\u30B6\u30FC\u30C6\u30FC\u30D6\u30EB\u4E00\u89A7: \`SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'\`
+  - \u30AB\u30E9\u30E0\u4E00\u89A7: \`SELECT column_name, data_type FROM information_schema.columns WHERE table_schema = 'public' AND table_name = 'xxx'\`
+- \u30AF\u30A8\u30EA\u306B\u306F\u5FC5\u305A LIMIT \u3092\u542B\u3081\u3066\u304F\u3060\u3055\u3044`
+  },
+  tools,
+  async checkConnection(params, _config) {
+    const { Pool } = await import("pg");
+    const connectionUrl = params[parameters.connectionUrl.slug];
+    const pool = new Pool({
+      connectionString: connectionUrl,
+      ssl: { rejectUnauthorized: false },
+      connectionTimeoutMillis: 1e4
+    });
+    try {
+      await pool.query("SELECT 1");
+      return { success: true };
+    } catch (error) {
+      return {
+        success: false,
+        error: error instanceof Error ? error.message : String(error)
+      };
+    } finally {
+      await pool.end();
+    }
+  },
+  async query(params, sql, namedParams) {
+    const { Pool } = await import("pg");
+    const cleanSql = sql.replace(/;\s*$/, "");
+    const { text, values } = buildPositionalParams(cleanSql, namedParams);
+    const connectionUrl = params[parameters.connectionUrl.slug];
+    const pool = new Pool({
+      connectionString: connectionUrl,
+      ssl: { rejectUnauthorized: false },
+      connectionTimeoutMillis: 1e4,
+      statement_timeout: 6e4
+    });
+    try {
+      const result = await pool.query(text, values);
+      return { rows: result.rows };
+    } finally {
+      await pool.end();
+    }
+  }
+});
+
+// src/connectors/create-connector-sdk.ts
+import { readFileSync } from "fs";
+import path from "path";
+
+// src/connector-client/env.ts
+function resolveEnvVar(entry, key, connectionId) {
+  const envVarName = entry.envVars[key];
+  if (!envVarName) {
+    throw new Error(`Connection "${connectionId}" is missing envVars mapping for key "${key}"`);
+  }
+  const value = process.env[envVarName];
+  if (!value) {
+    throw new Error(`Environment variable "${envVarName}" (for connection "${connectionId}", key "${key}") is not set`);
+  }
+  return value;
+}
+function resolveEnvVarOptional(entry, key) {
+  const envVarName = entry.envVars[key];
+  if (!envVarName) return void 0;
+  return process.env[envVarName] || void 0;
+}
+
+// src/connector-client/proxy-fetch.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+function normalizeHeaders(input) {
+  const out = {};
+  if (!input) return out;
+  new Headers(input).forEach((value, key) => {
+    out[key] = value;
+  });
+  return out;
+}
+function createSandboxProxyFetch(connectionId) {
+  return async (input, init) => {
+    const token = process.env.INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL;
+    const sandboxId = process.env.INTERNAL_SQUADBASE_SANDBOX_ID;
+    if (!token || !sandboxId) {
+      throw new Error(
+        "Connection proxy is not configured. Please check your deployment settings."
+      );
+    }
+    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
+    const originalMethod = init?.method ?? "GET";
+    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
+    const baseDomain = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? "preview.app.squadbase.dev";
+    const proxyUrl = `https://${sandboxId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+    return fetch(proxyUrl, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${token}`
+      },
+      body: JSON.stringify({
+        url: originalUrl,
+        method: originalMethod,
+        headers: normalizeHeaders(init?.headers),
+        body: originalBody
+      })
+    });
+  };
+}
+function createDeployedAppProxyFetch(connectionId) {
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Connection proxy is not configured. Please check your deployment settings."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? "squadbase.app";
+  const proxyUrl = `https://${projectId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+  return async (input, init) => {
+    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
+    const originalMethod = init?.method ?? "GET";
+    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
+    const c = getContext();
+    const appSession = getCookie(c, APP_SESSION_COOKIE_NAME);
+    if (!appSession) {
+      throw new Error(
+        "No authentication method available for connection proxy."
+      );
+    }
+    return fetch(proxyUrl, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${appSession}`
+      },
+      body: JSON.stringify({
+        url: originalUrl,
+        method: originalMethod,
+        headers: normalizeHeaders(init?.headers),
+        body: originalBody
+      })
+    });
+  };
+}
+function createProxyFetch(connectionId) {
+  if (process.env.INTERNAL_SQUADBASE_SANDBOX_ID) {
+    return createSandboxProxyFetch(connectionId);
+  }
+  return createDeployedAppProxyFetch(connectionId);
+}
+
+// src/connectors/create-connector-sdk.ts
+function loadConnectionsSync() {
+  const filePath = process.env.CONNECTIONS_PATH ?? path.join(process.cwd(), ".squadbase/connections.json");
+  try {
+    const raw = readFileSync(filePath, "utf-8");
+    return JSON.parse(raw);
+  } catch {
+    return {};
+  }
+}
+function createConnectorSdk(plugin, createClient2) {
+  return (connectionId) => {
+    const connections = loadConnectionsSync();
+    const entry = connections[connectionId];
+    if (!entry) {
+      throw new Error(
+        `Connection "${connectionId}" not found in .squadbase/connections.json`
+      );
+    }
+    if (entry.connector.slug !== plugin.slug) {
+      throw new Error(
+        `Connection "${connectionId}" is not a ${plugin.slug} connection (got "${entry.connector.slug}")`
+      );
+    }
+    const params = {};
+    for (const param of Object.values(plugin.parameters)) {
+      if (param.required) {
+        params[param.slug] = resolveEnvVar(entry, param.slug, connectionId);
+      } else {
+        const val = resolveEnvVarOptional(entry, param.slug);
+        if (val !== void 0) params[param.slug] = val;
+      }
+    }
+    return createClient2(params, createProxyFetch(connectionId));
+  };
+}
+
+// src/connectors/entries/supabase.ts
+var connection = createConnectorSdk(supabaseConnector, createClient);
+export {
+  connection
+};

package/dist/connectors/tiktok-ads.js

@@ -105,6 +105,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
   releaseFlag;
   proxyPolicy;
   experimentalAttributes;
+  categories;
   onboarding;
   systemPrompt;
   tools;
@@ -120,6 +121,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
     this.releaseFlag = config.releaseFlag;
     this.proxyPolicy = config.proxyPolicy;
     this.experimentalAttributes = config.experimentalAttributes;
+    this.categories = config.categories ?? [];
     this.onboarding = config.onboarding;
     this.systemPrompt = config.systemPrompt;
     this.tools = config.tools;
@@ -199,6 +201,16 @@ var AUTH_TYPES = {
   USER_PASSWORD: "user-password"
 };
 
+// ../connectors/src/lib/normalize-path.ts
+function normalizeRequestPath(path2, basePathSegment) {
+  let p = path2.trim();
+  if (!p.startsWith("/")) p = "/" + p;
+  if (p === basePathSegment || p.startsWith(basePathSegment + "/")) {
+    p = p.slice(basePathSegment.length) || "/";
+  }
+  return p;
+}
+
 // ../connectors/src/connectors/tiktok-ads/tools/list-advertisers.ts
 import { z } from "zod";
 var BASE_URL2 = "https://business-api.tiktok.com/open_api/v1.3/";
@@ -373,7 +385,9 @@ var parameters = {
 
 // ../connectors/src/connectors/tiktok-ads/tools/request.ts
 import { z as z2 } from "zod";
-var BASE_URL3 = "https://business-api.tiktok.com/open_api/v1.3/";
+var BASE_HOST = "https://business-api.tiktok.com";
+var BASE_PATH_SEGMENT = "/open_api/v1.3";
+var BASE_URL3 = `${BASE_HOST}${BASE_PATH_SEGMENT}`;
 var REQUEST_TIMEOUT_MS2 = 6e4;
 var cachedToken2 = null;
 async function getProxyToken2(config) {
@@ -449,7 +463,8 @@ The advertiser_id is automatically injected if configured.`,
     );
     try {
       const advertiserId = parameters.advertiserId.tryGetValue(connection2) ?? "";
-      let url = `${BASE_URL3}${path2}`;
+      const normalizedPath = normalizeRequestPath(path2, BASE_PATH_SEGMENT);
+      let url = `${BASE_URL3}${normalizedPath}`;
       if (method === "GET") {
         const params = new URLSearchParams(queryParams ?? {});
         if (advertiserId && !params.has("advertiser_id")) {
@@ -519,6 +534,7 @@ var tiktokAdsConnector = new ConnectorPlugin({
   iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/01jHuwvmhe4ts0wj23Hxpm/afac9fa50ac5b353927900a122e898ab/tiktok.webp",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
+  categories: ["marketing"],
   onboarding: tiktokAdsOnboarding,
   proxyPolicy: {
     allowlist: [

package/dist/connectors/wix-store.js

@@ -252,6 +252,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
   releaseFlag;
   proxyPolicy;
   experimentalAttributes;
+  categories;
   onboarding;
   systemPrompt;
   tools;
@@ -267,6 +268,7 @@ var ConnectorPlugin = class _ConnectorPlugin {
     this.releaseFlag = config.releaseFlag;
     this.proxyPolicy = config.proxyPolicy;
     this.experimentalAttributes = config.experimentalAttributes;
+    this.categories = config.categories ?? [];
     this.onboarding = config.onboarding;
     this.systemPrompt = config.systemPrompt;
     this.tools = config.tools;
@@ -438,6 +440,7 @@ var wixStoreConnector = new ConnectorPlugin({
   iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/YyFxclQFzROIYpFam6vRK/e7e75d3feac49a1cc5e433c147216d23/Wix_logo_black.svg",
   parameters,
   releaseFlag: { dev1: true, dev2: true, prod: true },
+  categories: ["ecommerce"],
   onboarding: wixStoreOnboarding,
   systemPrompt: {
     en: `### Tools