@superblocksteam/shared 0.9590.8 → 0.9591.0

package/dist-esm/types/reviewPolicy/index.d.ts

@@ -54,6 +54,7 @@ export interface ReviewPolicyDto {
         type: ReviewPolicyScopeType;
     };
     lastRun: ReviewPolicyLastRunDto | null;
+    freshPendingApprovalRunCount: number;
     createdBy: string | null;
     created: string;
 }
@@ -71,6 +72,7 @@ export interface ReviewPolicyRunDto {
     status: ReviewRunStatus;
     decision: ReviewRunDecision | null;
     decisionReason: string | null;
+    hasFreshPendingApproval: boolean;
     startedAt: string | null;
     completedAt: string | null;
     created: string;
@@ -108,11 +110,15 @@ export interface ReviewPolicyRunsDto {
     policy: ReviewPolicyDto;
     runs: ReviewPolicyRunDto[];
 }
+export declare const REVIEW_POLICY_SUMMARY_WINDOWS: readonly ["24h", "7d", "30d"];
+export type ReviewPolicySummaryWindow = (typeof REVIEW_POLICY_SUMMARY_WINDOWS)[number];
+export declare const DEFAULT_REVIEW_POLICY_SUMMARY_WINDOW: ReviewPolicySummaryWindow;
 export interface ReviewPolicySummaryDto {
     activeAgents: number;
-    agentRuns24h: number;
-    securityScans24h: number;
-    findings24h: number;
+    agentRuns: number;
+    securityScans: number;
+    findings: number;
+    window: ReviewPolicySummaryWindow;
 }
 export type CreateReviewPolicyBody = {
     policyType: 'built_in_security_scan';

package/dist-esm/types/reviewPolicy/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/types/reviewPolicy/index.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,iBAAiB,iCAAkC,CAAC;AAEjE,eAAO,MAAM,6BAA6B,MAAM,CAAC;AACjD,eAAO,MAAM,+BAA+B,QAAQ,CAAC;AAErD,eAAO,MAAM,mBAAmB,uDAAwD,CAAC;AACzF,eAAO,MAAM,qBAAqB,sDAAuD,CAAC;AAC1F,eAAO,MAAM,sBAAsB,0DAA2D,CAAC;AAC/F,eAAO,MAAM,gCAAgC,yIAKnC,CAAC;AACX,eAAO,MAAM,sBAAsB,+DAAgE,CAAC;AACpG,eAAO,MAAM,mBAAmB,mCAAoC,CAAC;AACrE,eAAO,MAAM,0BAA0B,2DAA4D,CAAC;AACpG,eAAO,MAAM,4BAA4B,mFAAoF,CAAC;AAC9H,eAAO,MAAM,yBAAyB,iHAO5B,CAAC;AAGX,eAAO,MAAM,yBAAyB,wDAAyD,CAAC;AAChG,eAAO,MAAM,0BAA0B,oCAAqC,CAAC;AAC7E,eAAO,MAAM,mCAAmC,2CAA4C,CAAC;AAG7F,eAAO,MAAM,mBAAmB,8GAUtB,CAAC;AAGX,eAAO,MAAM,oBAAoB,wFAAyF,CAAC;AAC3H,eAAO,MAAM,wBAAwB,6BAA8B,CAAC;AAEpE,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,iBAAiB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/D,MAAM,MAAM,kBAAkB,GAAG,aAAa,CAAC;AAC/C,MAAM,MAAM,gBAAgB,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACpE,MAAM,MAAM,kBAAkB,GAAG,CAAC,OAAO,qBAAqB,CAAC,CAAC,MAAM,CAAC,CAAC;AACxE,MAAM,MAAM,mBAAmB,GAAG,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC1E,MAAM,MAAM,4BAA4B,GAAG,CAAC,OAAO,gCAAgC,CAAC,CAAC,MAAM,CAAC,CAAC;AAC7F,MAAM,MAAM,mBAAmB,GAAG,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC1E,MAAM,MAAM,gBAAgB,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACpE,MAAM,MAAM,sBAAsB,GAAG,CAAC,OAAO,0BAA0B,CAAC,CAAC,MAAM,CAAC,CAAC;AACjF,MAAM,MAAM,wBAAwB,GAAG,CAAC,OAAO,4BAA4B,CAAC,CAAC,MAAM,CAAC,CAAC;AACrF,MAAM,MAAM,qBAAqB,GAAG,CAAC,OAAO,yBAAyB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/E,MAAM,MAAM,qBAAqB,GAAG,CAAC,OAAO,yBAAyB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/E,MAAM,MAAM,uBAAuB,GAAG,CAAC,OAAO,0BAA0B,CAAC,CAAC,MAAM,CAAC,CAAC;AAClF,MAAM,MAAM,8BAA8B,GAAG,CAAC,OAAO,mCAAmC,CAAC,CAAC,MAAM,CAAC,CAAC;AAClG,MAAM,MAAM,eAAe,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACnE,MAAM,MAAM,iBAAiB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,CAAC,CAAC;AACtE,MAAM,MAAM,oBAAoB,GAAG,CAAC,OAAO,wBAAwB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE7E,MAAM,MAAM,qBAAqB,GAAG,UAAU,GAAG,SAAS,CAAC;AAE3D,MAAM,WAAW,sBAAsB;IACrC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,eAAe,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,gBAAgB,CAAC;IAC7B,MAAM,EAAE,kBAAkB,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,aAAa,CAAC;IACtB,IAAI,EAAE,gBAAgB,CAAC;IACvB,KAAK,EAAE;QAAE,IAAI,EAAE,qBAAqB,CAAA;KAAE,CAAC;IACvC,OAAO,EAAE,sBAAsB,GAAG,IAAI,CAAC;IACvC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,qBAAsB,SAAQ,eAAe;IAC5D,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,eAAe,CAAC;IACxB,QAAQ,EAAE,iBAAiB,GAAG,IAAI,CAAC;IACnC,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;CAC7B;AAED,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,WAAW,EAAE,wBAAwB,GAAG,IAAI,CAAC;IAC7C,QAAQ,EAAE,qBAAqB,CAAC;IAChC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,EAAE,qBAAqB,CAAC;IAChC,UAAU,EAAE,uBAAuB,GAAG,IAAI,CAAC;IAC3C,QAAQ,EAAE,OAAO,CAAC;IAClB,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,gBAAgB,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,SAAS,EAAE,OAAO,EAAE,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACzC,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,wBAAwB;IACvC,MAAM,EAAE,eAAe,CAAC;IACxB,GAAG,EAAE,kBAAkB,CAAC;IACxB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;CAC9B;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,eAAe,CAAC;IACxB,IAAI,EAAE,kBAAkB,EAAE,CAAC;CAC5B;AAED,MAAM,WAAW,sBAAsB;IACrC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,MAAM,sBAAsB,GAC9B;IAAE,UAAU,EAAE,wBAAwB,CAAC;IAAC,IAAI,CAAC,EAAE,gBAAgB,CAAA;CAAE,GACjE;IAAE,UAAU,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAE3F,MAAM,MAAM,sBAAsB,GAAG;IAAE,MAAM,EAAE,aAAa,CAAA;CAAE,CAAC;AAC/D,MAAM,MAAM,4BAA4B,GACpC;IAAE,eAAe,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,wBAAwB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAA;CAAE,GACzF;IAAE,eAAe,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/types/reviewPolicy/index.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,iBAAiB,iCAAkC,CAAC;AAEjE,eAAO,MAAM,6BAA6B,MAAM,CAAC;AACjD,eAAO,MAAM,+BAA+B,QAAQ,CAAC;AAErD,eAAO,MAAM,mBAAmB,uDAAwD,CAAC;AACzF,eAAO,MAAM,qBAAqB,sDAAuD,CAAC;AAC1F,eAAO,MAAM,sBAAsB,0DAA2D,CAAC;AAC/F,eAAO,MAAM,gCAAgC,yIAKnC,CAAC;AACX,eAAO,MAAM,sBAAsB,+DAAgE,CAAC;AACpG,eAAO,MAAM,mBAAmB,mCAAoC,CAAC;AACrE,eAAO,MAAM,0BAA0B,2DAA4D,CAAC;AACpG,eAAO,MAAM,4BAA4B,mFAAoF,CAAC;AAC9H,eAAO,MAAM,yBAAyB,iHAO5B,CAAC;AAGX,eAAO,MAAM,yBAAyB,wDAAyD,CAAC;AAChG,eAAO,MAAM,0BAA0B,oCAAqC,CAAC;AAC7E,eAAO,MAAM,mCAAmC,2CAA4C,CAAC;AAG7F,eAAO,MAAM,mBAAmB,8GAUtB,CAAC;AAGX,eAAO,MAAM,oBAAoB,wFAAyF,CAAC;AAC3H,eAAO,MAAM,wBAAwB,6BAA8B,CAAC;AAEpE,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,iBAAiB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/D,MAAM,MAAM,kBAAkB,GAAG,aAAa,CAAC;AAC/C,MAAM,MAAM,gBAAgB,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACpE,MAAM,MAAM,kBAAkB,GAAG,CAAC,OAAO,qBAAqB,CAAC,CAAC,MAAM,CAAC,CAAC;AACxE,MAAM,MAAM,mBAAmB,GAAG,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC1E,MAAM,MAAM,4BAA4B,GAAG,CAAC,OAAO,gCAAgC,CAAC,CAAC,MAAM,CAAC,CAAC;AAC7F,MAAM,MAAM,mBAAmB,GAAG,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC1E,MAAM,MAAM,gBAAgB,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACpE,MAAM,MAAM,sBAAsB,GAAG,CAAC,OAAO,0BAA0B,CAAC,CAAC,MAAM,CAAC,CAAC;AACjF,MAAM,MAAM,wBAAwB,GAAG,CAAC,OAAO,4BAA4B,CAAC,CAAC,MAAM,CAAC,CAAC;AACrF,MAAM,MAAM,qBAAqB,GAAG,CAAC,OAAO,yBAAyB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/E,MAAM,MAAM,qBAAqB,GAAG,CAAC,OAAO,yBAAyB,CAAC,CAAC,MAAM,CAAC,CAAC;AAC/E,MAAM,MAAM,uBAAuB,GAAG,CAAC,OAAO,0BAA0B,CAAC,CAAC,MAAM,CAAC,CAAC;AAClF,MAAM,MAAM,8BAA8B,GAAG,CAAC,OAAO,mCAAmC,CAAC,CAAC,MAAM,CAAC,CAAC;AAClG,MAAM,MAAM,eAAe,GAAG,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,CAAC,CAAC;AACnE,MAAM,MAAM,iBAAiB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,CAAC,CAAC;AACtE,MAAM,MAAM,oBAAoB,GAAG,CAAC,OAAO,wBAAwB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE7E,MAAM,MAAM,qBAAqB,GAAG,UAAU,GAAG,SAAS,CAAC;AAE3D,MAAM,WAAW,sBAAsB;IACrC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,eAAe,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,gBAAgB,CAAC;IAC7B,MAAM,EAAE,kBAAkB,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,aAAa,CAAC;IACtB,IAAI,EAAE,gBAAgB,CAAC;IACvB,KAAK,EAAE;QAAE,IAAI,EAAE,qBAAqB,CAAA;KAAE,CAAC;IACvC,OAAO,EAAE,sBAAsB,GAAG,IAAI,CAAC;IACvC,4BAA4B,EAAE,MAAM,CAAC;IACrC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,qBAAsB,SAAQ,eAAe;IAC5D,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,eAAe,CAAC;IACxB,QAAQ,EAAE,iBAAiB,GAAG,IAAI,CAAC;IACnC,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,uBAAuB,EAAE,OAAO,CAAC;IACjC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;CAC7B;AAED,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,WAAW,EAAE,wBAAwB,GAAG,IAAI,CAAC;IAC7C,QAAQ,EAAE,qBAAqB,CAAC;IAChC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,EAAE,qBAAqB,CAAC;IAChC,UAAU,EAAE,uBAAuB,GAAG,IAAI,CAAC;IAC3C,QAAQ,EAAE,OAAO,CAAC;IAClB,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,gBAAgB,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,SAAS,EAAE,OAAO,EAAE,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACzC,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,wBAAwB;IACvC,MAAM,EAAE,eAAe,CAAC;IACxB,GAAG,EAAE,kBAAkB,CAAC;IACxB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;CAC9B;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,eAAe,CAAC;IACxB,IAAI,EAAE,kBAAkB,EAAE,CAAC;CAC5B;AAID,eAAO,MAAM,6BAA6B,+BAAgC,CAAC;AAC3E,MAAM,MAAM,yBAAyB,GAAG,CAAC,OAAO,6BAA6B,CAAC,CAAC,MAAM,CAAC,CAAC;AACvF,eAAO,MAAM,oCAAoC,EAAE,yBAAiC,CAAC;AAErF,MAAM,WAAW,sBAAsB;IAErC,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,yBAAyB,CAAC;CACnC;AAED,MAAM,MAAM,sBAAsB,GAC9B;IAAE,UAAU,EAAE,wBAAwB,CAAC;IAAC,IAAI,CAAC,EAAE,gBAAgB,CAAA;CAAE,GACjE;IAAE,UAAU,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAE3F,MAAM,MAAM,sBAAsB,GAAG;IAAE,MAAM,EAAE,aAAa,CAAA;CAAE,CAAC;AAC/D,MAAM,MAAM,4BAA4B,GACpC;IAAE,eAAe,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,wBAAwB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAA;CAAE,GACzF;IAAE,eAAe,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC"}

package/dist-esm/types/reviewPolicy/index.js

@@ -41,4 +41,8 @@ export const REVIEW_RUN_STATUSES = [
 // Lifecycle ordering is semantically meaningful.
 export const REVIEW_RUN_DECISIONS = ['allowed', 'advisory_allowed', 'blocked', 'error_blocked', 'not_applicable'];
 export const REVIEW_RUN_TRIGGERED_BYS = ['system', 'user'];
+// Trailing-time windows the summary can be scoped to. Order is semantically
+// meaningful (shortest to longest) for rendering the selector.
+export const REVIEW_POLICY_SUMMARY_WINDOWS = ['24h', '7d', '30d'];
+export const DEFAULT_REVIEW_POLICY_SUMMARY_WINDOW = '24h';
 //# sourceMappingURL=index.js.map

package/dist-esm/types/reviewPolicy/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/types/reviewPolicy/index.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,QAAQ,EAAE,UAAU,CAAU,CAAC;AAEjE,MAAM,CAAC,MAAM,6BAA6B,GAAG,GAAG,CAAC;AACjD,MAAM,CAAC,MAAM,+BAA+B,GAAG,KAAK,CAAC;AAErD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,wBAAwB,EAAE,gBAAgB,CAAU,CAAC;AACzF,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,kBAAkB,EAAE,qBAAqB,CAAU,CAAC;AAC1F,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,eAAe,EAAE,kBAAkB,EAAE,QAAQ,CAAU,CAAC;AAC/F,MAAM,CAAC,MAAM,gCAAgC,GAAG;IAC9C,eAAe;IACf,+BAA+B;IAC/B,sCAAsC;IACtC,kCAAkC;CAC1B,CAAC;AACX,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,8BAA8B,EAAE,kBAAkB,CAAU,CAAC;AACpG,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,UAAU,EAAE,UAAU,CAAU,CAAC;AACrE,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,wBAAwB,EAAE,oBAAoB,CAAU,CAAC;AACpG,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC,aAAa,EAAE,YAAY,EAAE,eAAe,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAU,CAAC;AAC9H,MAAM,CAAC,MAAM,yBAAyB,GAAG;IACvC,iBAAiB;IACjB,kBAAkB;IAClB,gBAAgB;IAChB,QAAQ;IACR,gBAAgB;IAChB,eAAe;CACP,CAAC;AAEX,sFAAsF;AACtF,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAU,CAAC;AAChG,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAU,CAAC;AAC7E,MAAM,CAAC,MAAM,mCAAmC,GAAG,CAAC,QAAQ,EAAE,SAAS,EAAE,SAAS,CAAU,CAAC;AAE7F,iHAAiH;AACjH,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ;IACR,SAAS;IACT,QAAQ;IACR,UAAU;IACV,SAAS;IACT,SAAS;IACT,WAAW;IACX,UAAU;IACV,OAAO;CACC,CAAC;AAEX,iDAAiD;AACjD,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,SAAS,EAAE,kBAAkB,EAAE,SAAS,EAAE,eAAe,EAAE,gBAAgB,CAAU,CAAC;AAC3H,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAU,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/types/reviewPolicy/index.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,QAAQ,EAAE,UAAU,CAAU,CAAC;AAEjE,MAAM,CAAC,MAAM,6BAA6B,GAAG,GAAG,CAAC;AACjD,MAAM,CAAC,MAAM,+BAA+B,GAAG,KAAK,CAAC;AAErD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,wBAAwB,EAAE,gBAAgB,CAAU,CAAC;AACzF,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,kBAAkB,EAAE,qBAAqB,CAAU,CAAC;AAC1F,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,eAAe,EAAE,kBAAkB,EAAE,QAAQ,CAAU,CAAC;AAC/F,MAAM,CAAC,MAAM,gCAAgC,GAAG;IAC9C,eAAe;IACf,+BAA+B;IAC/B,sCAAsC;IACtC,kCAAkC;CAC1B,CAAC;AACX,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,8BAA8B,EAAE,kBAAkB,CAAU,CAAC;AACpG,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,UAAU,EAAE,UAAU,CAAU,CAAC;AACrE,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,wBAAwB,EAAE,oBAAoB,CAAU,CAAC;AACpG,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC,aAAa,EAAE,YAAY,EAAE,eAAe,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAU,CAAC;AAC9H,MAAM,CAAC,MAAM,yBAAyB,GAAG;IACvC,iBAAiB;IACjB,kBAAkB;IAClB,gBAAgB;IAChB,QAAQ;IACR,gBAAgB;IAChB,eAAe;CACP,CAAC;AAEX,sFAAsF;AACtF,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAU,CAAC;AAChG,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAU,CAAC;AAC7E,MAAM,CAAC,MAAM,mCAAmC,GAAG,CAAC,QAAQ,EAAE,SAAS,EAAE,SAAS,CAAU,CAAC;AAE7F,iHAAiH;AACjH,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ;IACR,SAAS;IACT,QAAQ;IACR,UAAU;IACV,SAAS;IACT,SAAS;IACT,WAAW;IACX,UAAU;IACV,OAAO;CACC,CAAC;AAEX,iDAAiD;AACjD,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,SAAS,EAAE,kBAAkB,EAAE,SAAS,EAAE,eAAe,EAAE,gBAAgB,CAAU,CAAC;AAC3H,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAU,CAAC;AAuGpE,4EAA4E;AAC5E,+DAA+D;AAC/D,MAAM,CAAC,MAAM,6BAA6B,GAAG,CAAC,KAAK,EAAE,IAAI,EAAE,KAAK,CAAU,CAAC;AAE3E,MAAM,CAAC,MAAM,oCAAoC,GAA8B,KAAK,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@superblocksteam/shared",
-  "version": "0.9590.8",
+  "version": "0.9591.0",
   "description": "Superblocks Shared Resources",
   "license": "Superblocks Community Software License",
   "repository": "https://github.com/superblocksteam/shared.git",
@@ -50,7 +50,7 @@
     "chokidar-cli": "3.0.0",
     "eslint": "^9.39.2",
     "eslint-config-prettier": "^10.1.8",
-    "eslint-config-turbo": "^2.8.3",
+    "eslint-config-turbo": "^2.9.16",
     "eslint-import-resolver-typescript": "^4.4.4",
     "eslint-plugin-import": "^2.32.0",
     "esprima": "^4.0.1",

package/src/database-lifecycle/index.test.ts

@@ -30,20 +30,20 @@ describe('database lifecycle contracts', () => {
       computeBindingKey({
         organizationId: 'org-1',
         applicationId: 'app-1',
-        environmentClass: 'dev',
-        environmentName: 'branch/alice',
+        environment: 'edit',
+        profile: 'Staging EU',
         requirementKey: 'orders-db~Orders%20DB:postgres'
       })
-    ).toBe('org-1:app-1:dev:branch-alice~branch%2Falice:orders-db~Orders%20DB:postgres');
+    ).toBe('org-1:app-1:edit:staging-eu~Staging%20EU:orders-db~Orders%20DB:postgres');
     expect(
       computeBindingKey({
         organizationId: 'org-1',
         applicationId: 'app-1',
-        environmentClass: 'dev',
-        environmentName: 'branch-alice',
+        environment: 'edit',
+        profile: 'staging',
         requirementKey: 'orders-db~Orders%20DB:postgres'
       })
-    ).toBe('org-1:app-1:dev:branch-alice~branch-alice:orders-db~Orders%20DB:postgres');
+    ).toBe('org-1:app-1:edit:staging~staging:orders-db~Orders%20DB:postgres');
 
     await expect(computeDesiredSpecHash(requirement)).resolves.toBe(
       await computeDesiredSpecHash({ ...requirement, extensions: ['uuid-ossp', 'pgcrypto'] })

package/src/database-lifecycle/index.ts

@@ -4,12 +4,32 @@ export const LIFECYCLE_TERMINAL_STATES = ['ready', 'failed', 'cancelled'] as con
 export const LIFECYCLE_NON_TERMINAL_STATES = ['pending', 'provisioning', 'migrating', 'retiring'] as const;
 export const LIFECYCLE_STATES = [...LIFECYCLE_NON_TERMINAL_STATES, ...LIFECYCLE_TERMINAL_STATES] as const;
 export const LIFECYCLE_MIGRATION_STATES = ['pending', 'migrated', 'failed'] as const;
-export const LIFECYCLE_OPERATIONS = ['ensure_dev_database', 'ensure_prod_database', 'migrate_schema', 'retire_database'] as const;
-export const ENVIRONMENT_CLASSES = ['dev', 'staging', 'prod'] as const;
+// The environment axis (edit/preview/deployed) lives on the binding, so a
+// single `ensure_database` covers what used to be split into
+// ensure_dev_database / ensure_prod_database. `migrate_schema` and
+// `retire_database` were always environment-agnostic.
+export const LIFECYCLE_OPERATIONS = ['ensure_database', 'migrate_schema', 'retire_database'] as const;
+// Mirrors the platform's view modes (proto api.v1.ViewMode: VIEW_MODE_EDIT /
+// VIEW_MODE_PREVIEW / VIEW_MODE_DEPLOYED). Working-state migrations and the
+// shared workspace database serve edit/preview; deploy-commit migrations and
+// the deploy gate concern deployed.
+export const LIFECYCLE_ENVIRONMENTS = ['edit', 'preview', 'deployed'] as const;
 export const DATABASE_ENGINES = ['postgres', 'snowflake', 'snowflake_postgres', 'lakebase'] as const;
 export const DATABASE_LIFECYCLE_MANAGED_BY = 'database_lifecycle';
 
-export type EnvironmentClass = (typeof ENVIRONMENT_CLASSES)[number];
+// Agent capability tag keys. A lifecycle worker publishes these in the
+// `tags` map of its agent registration (merged into — never replacing — the
+// tag map the agent already publishes; the existing `profile` tag carries
+// datatag coverage, same meaning it has for execution routing. Lifecycle
+// environment/profile coverage is published as pairs so edit-only staging
+// profiles do not imply deployed staging support. The server matches pending
+// lifecycle requests against these at poll/claim time and gates task creation
+// on "some active org agent supports this".
+export const DATABASE_LIFECYCLE_TAG_OPERATIONS = 'databaseLifecycle:operations';
+export const DATABASE_LIFECYCLE_TAG_ENGINES = 'databaseLifecycle:engines';
+export const DATABASE_LIFECYCLE_TAG_ENVIRONMENT_PROFILES = 'databaseLifecycle:environmentProfiles';
+
+export type LifecycleEnvironment = (typeof LIFECYCLE_ENVIRONMENTS)[number];
 export type DatabaseEngine = (typeof DATABASE_ENGINES)[number];
 export type LifecycleOperation = (typeof LIFECYCLE_OPERATIONS)[number];
 export type LifecycleTerminalState = (typeof LIFECYCLE_TERMINAL_STATES)[number];
@@ -40,22 +60,6 @@ export type CredentialRef = {
   field?: string;
 };
 
-export type CredentialResolverConfig = {
-  type: CredentialResolver;
-  config: Record<string, unknown>;
-};
-
-// Reference to a versioned Terraform module that the lifecycle worker should
-// invoke for one operation in this profile. `baseInputs` are profile-level
-// inputs the org admin sets once (AWS account/region/VPC/subnets/KMS/...);
-// the planner merges these with binding-derived inputs (binding_key,
-// requirement spec, credential refs) when it builds a dispatch payload.
-export type TerraformModuleRef = {
-  source: string;
-  version: string;
-  baseInputs: Record<string, unknown>;
-};
-
 export type DatabaseRequirement = {
   logicalName: string;
   engine: DatabaseEngine;
@@ -66,51 +70,17 @@ export type DatabaseRequirement = {
   migrationDirectory?: string;
 };
 
-export type TerraformDatabaseBackend = {
-  provisioner: 'terraform';
-  provider: 'aws-rds' | 'snowflake' | 'databricks';
-  stateBackend: 's3' | 'gcs' | 'azurerm' | 'local';
-  remoteState: boolean;
-  locking: boolean;
-};
-
-export type DatabaseBackend = TerraformDatabaseBackend;
-
-export type EnvironmentProfile = {
-  id: string;
-  organizationId: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
-  opaAgentId: string;
-  supportedOperations: LifecycleOperation[];
-  supportedEngines: DatabaseEngine[];
-  backend: DatabaseBackend;
-  // V1 stop-gap. Picks the Terraform module the lifecycle worker invokes
-  // per operation. `Partial` because not every operation is Terraform-backed
-  // in V1 — `migrate_schema` is served by the native Go runner inside the
-  // worker (ENG-3415); admins leave it unset and the dispatcher skips
-  // emitting a Terraform dispatch for it.
-  //
-  // TODO(ENG-3456): collapse into per-operation backends when the
-  // shared-vs-isolated admin config lands. Each operation will then carry
-  // its own discriminated kind ('terraform' | 'native-migration-runner'),
-  // with the module reference and Terraform backend config nested under
-  // kind: 'terraform'. The wire protocol picks up a matching discriminant.
-  moduleSelectors: Partial<Record<LifecycleOperation, TerraformModuleRef>>;
-  // Where the worker resolves and writes credential refs. Scoped per profile
-  // because dev/prod profiles may use different resolvers (e.g. opa_local
-  // for dev, aws_secrets_manager for prod).
-  credentialResolver: CredentialResolverConfig;
-};
-
 type DatabaseBindingBase = {
   id: string;
   bindingKey: string;
   requirementKey: string;
   logicalName: string;
   applicationId: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
+  environment: LifecycleEnvironment;
+  // The datatag key (Profile.key, e.g. 'staging' / 'production') this
+  // binding serves. The same datatag can exist across environments, so the
+  // pair (environment, profile) — not either alone — scopes a binding.
+  profile: string;
   desiredSpecHash: string;
   migrationState: LifecycleMigrationState;
 };
@@ -148,47 +118,33 @@ export type LifecycleRequest = {
   state: LifecycleState;
 };
 
-export type TerraformModuleInput = {
-  bindingKey: string;
-  requirement: DatabaseRequirement;
-  credentialRefs: Record<string, CredentialRef>;
-  metadata: Record<string, string>;
-};
-
-export type TerraformModuleOutput = {
-  connection: Record<string, string | number | boolean>;
-  credentialRefs: Record<string, CredentialRef>;
-  resourceKey: string;
-};
+// Physical database instances back the M2 shared-RDS allocation pattern: dev-DB
+// provisioning issues `CREATE DATABASE`/`CREATE ROLE` against a pre-existing
+// physical database instance instead of spinning up a fresh RDS per binding.
+// The control plane is the dumb org-scoped state store (registry + atomic
+// capacity counter); ALL selection and provisioning logic lives in the worker.
+export const PHYSICAL_DATABASE_INSTANCE_STATUSES = ['active', 'draining', 'retired'] as const;
+export type PhysicalDatabaseInstanceStatus = (typeof PHYSICAL_DATABASE_INSTANCE_STATUSES)[number];
 
-// Resolved per-dispatch Terraform module reference. Mirrors the Go worker's
-// `pkg/databaselifecycle.TerraformModule` JSON shape — `MaterializeJob`
-// writes these straight into `terraform.tfvars.json` and the generated root
-// `main.tf` module block.
-export type TerraformModuleDispatch = {
-  source: string;
-  version: string;
-  inputs: Record<string, unknown>;
-};
-
-// Backend config the worker writes into `backend.tfbackend` and passes to
-// `terraform init -backend-config=...`. Derived from the profile's
-// `backend.stateBackend` plus the per-binding state key. `stateBackend` is
-// the discriminant the worker uses to emit the right HCL
-// `terraform { backend "<stateBackend>" {} }` block — same name as on the
-// profile side. `remoteState` and `locking` pass through unchanged. The
-// worker doesn't see `provisioner`/`provider` — those are server-side
-// categorical fields, not backend args.
-export type TerraformBackendDispatch = {
-  stateBackend: TerraformDatabaseBackend['stateBackend'];
-  remoteState: boolean;
-  locking: boolean;
-  key: string;
+export type PhysicalDatabaseInstance = {
+  id: string;
+  organizationId: string;
+  region: string;
+  environment: LifecycleEnvironment;
+  engine: DatabaseEngine; // postgres-only in V1
+  endpoint: string;
+  masterCredentialRef: CredentialRef;
+  capacityMax: number;
+  capacityUsed: number;
+  status: PhysicalDatabaseInstanceStatus;
+  metadata: Record<string, unknown>;
+  created?: Date;
+  updated?: Date;
 };
 
 // One forward-only SQL migration the server attaches to a dispatch
 // payload so the lifecycle worker's migration runner can apply it after
-// `tofu apply` succeeds. `version` is the sort key + the primary key in
+// provisioning succeeds. `version` is the sort key + the primary key in
 // the worker's in-DB `superblocks_schema_migrations` ledger; `filename`
 // is recorded for diagnostics; `sql` is the raw multi-statement SQL.
 // Matches `orchestrator/pkg/databaselifecycle/migrations.Migration`.
@@ -201,32 +157,31 @@ export type LifecycleMigration = {
 // Canonical wire payload for a lifecycle dispatch sent from the server to a
 // lifecycle worker. The worker's `DispatchPayload` struct in
 // orchestrator/pkg/databaselifecycle/dispatch.go decodes this JSON shape;
-// keys and order here are intentional. Replaces three duplicate definitions
-// previously living in dispatchQueue.ts / devPersistence.ts / planner.
+// keys and order here are intentional.
+//
+// The server describes WHAT (binding identity, desired spec, migrations,
+// connection/credential context); the worker owns HOW (Terraform modules,
+// state backends, credential resolvers, shared physical database instances — all resolved from
+// the worker's local config keyed by the payload's environment + profile).
 //
 // `migrations` is present iff the operation should consider migration
-// state — `ensure_dev_database` / `ensure_prod_database` / `migrate_schema`
-// dispatches carry an array (possibly empty); `retire_database` omits it.
-// An omitted slice keeps the worker's `MigrationState` at the default
-// "pending"; an empty slice means "vacuous truth, mark migrated"; a
-// non-empty slice triggers the runner.
+// state — `ensure_database` / `migrate_schema` dispatches carry an array
+// (possibly empty); `retire_database` omits it. An omitted slice keeps the
+// worker's `MigrationState` at the default "pending"; an empty slice means
+// "vacuous truth, mark migrated"; a non-empty slice triggers the runner.
 export type LifecycleDispatchPayload = {
-  agentId: string;
   bindingKey: string;
   connectionMetadata?: Record<string, string | number | boolean>;
   desiredSpec: DatabaseRequirement;
   desiredSpecHash: string;
+  environment: LifecycleEnvironment;
   migrations?: LifecycleMigration[];
   operation: LifecycleOperation;
-  profileId: string;
+  profile: string;
   requestId: string;
   resourceKey: string;
   runtimeCredentialRefs?: Record<string, CredentialRef>;
-  // Present for Terraform-backed operations. Omitted for native migration
-  // dispatches, where the worker skips Terraform materialization and runs the
-  // migration runner directly.
-  terraformBackend?: TerraformBackendDispatch;
-  terraformModule?: TerraformModuleDispatch;
+  migrationCredentialRefs?: Record<string, CredentialRef>;
 };
 
 export function computeRequirementKey(requirement: Pick<DatabaseRequirement, 'logicalName' | 'engine'>): string {
@@ -236,8 +191,8 @@ export function computeRequirementKey(requirement: Pick<DatabaseRequirement, 'lo
 export function computeBindingKey(input: {
   organizationId: string;
   applicationId: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
+  environment: LifecycleEnvironment;
+  profile: string;
   requirementKey: string;
 }): string {
   return [input.organizationId, ...bindingKeySegments(input)].join(':');
@@ -245,8 +200,8 @@ export function computeBindingKey(input: {
 
 export function computeLegacyBindingKeyWithoutOrganization(input: {
   applicationId: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
+  environment: LifecycleEnvironment;
+  profile: string;
   requirementKey: string;
 }): string {
   return bindingKeySegments(input).join(':');
@@ -254,16 +209,11 @@ export function computeLegacyBindingKeyWithoutOrganization(input: {
 
 function bindingKeySegments(input: {
   applicationId: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
+  environment: LifecycleEnvironment;
+  profile: string;
   requirementKey: string;
 }): string[] {
-  return [
-    input.applicationId,
-    input.environmentClass,
-    `${slugify(input.environmentName)}~${encodeURIComponent(input.environmentName)}`,
-    input.requirementKey
-  ];
+  return [input.applicationId, input.environment, `${slugify(input.profile)}~${encodeURIComponent(input.profile)}`, input.requirementKey];
 }
 
 export async function computeDesiredSpecHash(requirement: DatabaseRequirement): Promise<string> {
@@ -273,52 +223,26 @@ export async function computeDesiredSpecHash(requirement: DatabaseRequirement):
 // resource_key identifies the physical resource a binding maps to in
 // customer infrastructure, and is the unit of locking inside the lifecycle
 // worker. Distinct from binding_key (product identity in the control plane)
-// because two different profiles could plausibly target the same logical
-// resource — the planner uses profileId here so a profile swap forces a
-// fresh resource. Shape mirrors planning doc §15.
+// because the worker derives infrastructure identity from it — shape
+// mirrors planning doc §15.
 export function computeResourceKey(input: {
   organizationId: string;
-  profileId: string;
   applicationId: string;
   requirementKey: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
+  environment: LifecycleEnvironment;
+  profile: string;
   actorScope?: string;
 }): string {
   return [
     input.organizationId,
-    input.profileId,
     input.applicationId,
     input.requirementKey,
-    input.environmentClass,
-    `${slugify(input.environmentName)}~${encodeURIComponent(input.environmentName)}`,
+    input.environment,
+    `${slugify(input.profile)}~${encodeURIComponent(input.profile)}`,
     input.actorScope ?? 'default'
   ].join('/');
 }
 
-// Per-binding Terraform state path inside the configured backend. Used to
-// generate the `backend.tfbackend` config that the worker passes to
-// `terraform init -backend-config=...`. Planning doc §9.4.
-export function computeTerraformStateKey(input: {
-  organizationId: string;
-  applicationId: string;
-  requirementKey: string;
-  environmentClass: EnvironmentClass;
-  environmentName: string;
-  actorScope?: string;
-}): string {
-  return [
-    'superblocks/byo-db',
-    input.environmentClass,
-    input.organizationId,
-    input.applicationId,
-    input.requirementKey,
-    `${slugify(input.environmentName)}~${encodeURIComponent(input.environmentName)}`,
-    input.actorScope ?? 'default',
-    'terraform.tfstate'
-  ].join('/');
-}
-
 export function isTerminalLifecycleState(state: LifecycleState): state is LifecycleTerminalState {
   return (LIFECYCLE_TERMINAL_STATES as readonly string[]).includes(state);
 }

package/src/socket/protocol.ts

@@ -23,7 +23,8 @@ import {
   ModifyEntitiesResponse,
   GetAppBranchLockResponseBody,
   LockInfo,
-  DegradedMode
+  DegradedMode,
+  CheckpointSkipReason
 } from '../types';
 import {
   AiChatMessageDto,
@@ -36,7 +37,8 @@ import {
   FactCreate,
   FactDto,
   FactListQuery,
-  ListFactsResponse
+  ListFactsResponse,
+  NpmInstallBlockedAuditReport
 } from '../types/index.js';
 import { MethodSchema } from './types.js';
 
@@ -159,6 +161,15 @@ export interface ServerMethods {
       list: ServerMethodSchema<FactListQuery, ListFactsResponse>;
       create: ServerMethodSchema<FactCreate, FactDto>;
     };
+    audit: {
+      /**
+       * Report a controlled-install `NpmInstallBlocked` so the server can write a
+       * throttled OCSF audit row (APPS-4191 / P6.3). Org + actor are derived from
+       * the authenticated connection; `recorded` is false when the event was
+       * dropped by the per-org or global throttle.
+       */
+      npmInstallBlocked: ServerMethodSchema<NpmInstallBlockedAuditReport, { recorded: boolean }>;
+    };
   };
   v2: {
     application: {
@@ -214,8 +225,15 @@ export interface ServerMethods {
          */
         get: ServerMethodSchema<{ applicationId: string; branchName?: string }, { hash: string }>;
         set: ServerMethodSchema<
-          { applicationId: string; branchName?: string; hash: string; source?: string },
-          { hash: string; degradedMode?: DegradedMode; commitId?: string }
+          {
+            applicationId: string;
+            branchName?: string;
+            hash: string;
+            source?: string;
+            targetTemplateName?: string;
+            migrationGeneration?: number;
+          },
+          { hash: string; degradedMode?: DegradedMode; commitId?: string; checkpointSkipped?: CheckpointSkipReason }
         >;
       };
       directoryContents: {

package/src/types/ai/index.ts

@@ -123,3 +123,4 @@ export interface AiPromptCostResponse {
 
 export * from './provider-credential.js';
 export * from './quota-paywall.js';
+export * from './safety-classification.js';

package/src/types/ai/quota-paywall.ts

@@ -8,6 +8,26 @@ export type AiQuotaPaywallReason =
   | 'trial_expired'
   | 'user_credit_limit_exceeded';
 
+/**
+ * The complete set of paywall reasons, kept in lockstep with the
+ * `AiQuotaPaywallReason` union above. Shared so that callers parsing
+ * untrusted error payloads (`packages/vite-plugin-file-sync`) can validate
+ * string values against the same source of truth rather than duplicating it.
+ */
+export const AI_QUOTA_PAYWALL_REASONS: ReadonlySet<AiQuotaPaywallReason> = new Set<AiQuotaPaywallReason>([
+  'credit_limit_exceeded',
+  'deploy_quota_exceeded',
+  'dollar_commit_exhausted',
+  'no_seat_assigned',
+  'payment_past_due',
+  'token_limit_exceeded',
+  'trial_expired',
+  'user_credit_limit_exceeded'
+]);
+
+export const isAiQuotaPaywallReason = (value: unknown): value is AiQuotaPaywallReason =>
+  typeof value === 'string' && AI_QUOTA_PAYWALL_REASONS.has(value as AiQuotaPaywallReason);
+
 export const getAiQuotaPaywallReasonFromMessage = (message: string): AiQuotaPaywallReason | undefined => {
   const normalizedMessage = message.toLowerCase();
 

package/src/types/ai/safety-classification.ts

@@ -0,0 +1,27 @@
+/**
+ * Shared constants and types for LLM-based prompt safety classification.
+ *
+ * Used by the Clark AI service (vite-plugin-file-sync) and the server-side
+ * policy-gate prompt check. Each consumer owns its own context-specific
+ * system prompt; only the structural contract (categories, result types,
+ * default results) lives here.
+ */
+
+export const SAFETY_CATEGORIES = [
+  'harmful_instructions',
+  'illegal_activity',
+  'jailbreak_attempt',
+  'malicious_code',
+  'other',
+  'personal_data_extraction',
+  'prompt_injection',
+  'system_extraction'
+] as const;
+
+export type SafetyCategory = (typeof SAFETY_CATEGORIES)[number];
+
+export interface SafetyClassificationResult {
+  safe: boolean;
+  justification: string;
+  categories?: SafetyCategory[];
+}

package/src/types/application/index.ts

@@ -630,6 +630,22 @@ export type ApplicationHashChangeSource =
   // scratch artifacts are removed.
   | 'migrate:complete';
 
+/**
+ * Why setApplicationHash returned no `commitId` even though the call succeeded.
+ * These are the by-design no-checkpoint paths. The dev server, which always
+ * supplies a `source`, uses this to log by-design skips at info instead of
+ * warning on every autosave; for it, absence of both `commitId` and this field
+ * is the only genuine "checkpoint creation failed" signal. (The server-side
+ * `no-source` path also returns a commit-less response without this field, but
+ * the dev server never omits the source, so that case does not arise here.)
+ *
+ *  - 'draft-autosave' a DRAFT autosave was written inside an active draft session
+ *                     (a commit exists, but its id is intentionally withheld)
+ *  - 'no-changes'     the tree hash matches the last checkpoint, so nothing to commit
+ *  - 'no-op-source'   the change source never produces a commit (e.g. ai:generate:pre)
+ */
+export type CheckpointSkipReason = 'draft-autosave' | 'no-changes' | 'no-op-source';
+
 /**
  * Returns true if the application's template uses the SDK API structure.
  * Legacy apps (templateName null/undefined) use YAML API.