@sylphx/management 0.1.0 → 0.2.1

package/dist/plans.d.ts

@@ -0,0 +1,66 @@
+/**
+ * Plans — per-project subscription plan CRUD + Stripe sync.
+ *
+ *   GET    /plans/projects/:id/plans                         — list plans for project
+ *   GET    /plans/projects/:id/plans/:planId                 — get plan
+ *   POST   /plans/plans                                      — create
+ *   PATCH  /plans/plans/:planId                              — update
+ *   DELETE /plans/plans/:planId                              — delete
+ *   POST   /plans/plans/:planId/sync-stripe                  — push to Stripe
+ *   POST   /plans/plans/reorder                              — reorder display
+ */
+import type { Client } from './client.js';
+export interface Plan {
+    readonly id: string;
+    readonly projectId: string;
+    readonly name: string;
+    readonly slug: string;
+    readonly priceUsdCents: number;
+    readonly intervalDays: number;
+    readonly stripePriceId: string | null;
+    readonly features: readonly string[];
+    readonly displayOrder: number;
+    readonly archivedAt: string | null;
+    readonly createdAt: string;
+}
+export declare const list: (client: Client, projectId: string) => Promise<{
+    plans: readonly Plan[];
+}>;
+export declare const get: (client: Client, projectId: string, planId: string) => Promise<{
+    plan: Plan;
+}>;
+export interface CreatePlanInput {
+    readonly projectId: string;
+    readonly name: string;
+    readonly slug: string;
+    readonly priceUsdCents: number;
+    readonly intervalDays?: number;
+    readonly features?: readonly string[];
+}
+export declare const create: (client: Client, body: CreatePlanInput) => Promise<{
+    plan: Plan;
+}>;
+export interface UpdatePlanInput {
+    readonly name?: string;
+    readonly priceUsdCents?: number;
+    readonly intervalDays?: number;
+    readonly features?: readonly string[];
+    readonly archived?: boolean;
+}
+export declare const update: (client: Client, planId: string, body: UpdatePlanInput) => Promise<{
+    plan: Plan;
+}>;
+declare const _delete: (client: Client, planId: string) => Promise<{
+    success: boolean;
+}>;
+export { _delete as delete };
+export declare const syncStripe: (client: Client, planId: string) => Promise<{
+    plan: Plan;
+    stripePriceId: string;
+}>;
+export declare const reorder: (client: Client, body: {
+    readonly order: readonly string[];
+}) => Promise<{
+    success: boolean;
+}>;
+//# sourceMappingURL=plans.d.ts.map

package/dist/plans.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"plans.d.ts","sourceRoot":"","sources":["../src/plans.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAGH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,MAAM,WAAW,IAAI;IACpB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;IAC9B,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAA;IACrC,QAAQ,CAAC,QAAQ,EAAE,SAAS,MAAM,EAAE,CAAA;IACpC,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;IAClC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC1B;AAED,eAAO,MAAM,IAAI,GAAI,QAAQ,MAAM,EAAE,WAAW,MAAM,KAAG,OAAO,CAAC;IAAE,KAAK,EAAE,SAAS,IAAI,EAAE,CAAA;CAAE,CAG1F,CAAA;AAED,eAAO,MAAM,GAAG,GAAI,QAAQ,MAAM,EAAE,WAAW,MAAM,EAAE,QAAQ,MAAM,KAAG,OAAO,CAAC;IAAE,IAAI,EAAE,IAAI,CAAA;CAAE,CAG7F,CAAA;AAED,MAAM,WAAW,eAAe;IAC/B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;IAC9B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAA;IAC9B,QAAQ,CAAC,QAAQ,CAAC,EAAE,SAAS,MAAM,EAAE,CAAA;CACrC;AAED,eAAO,MAAM,MAAM,GAAI,QAAQ,MAAM,EAAE,MAAM,eAAe,KAAG,OAAO,CAAC;IAAE,IAAI,EAAE,IAAI,CAAA;CAAE,CAGpF,CAAA;AAED,MAAM,WAAW,eAAe;IAC/B,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAA;IAC/B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAA;IAC9B,QAAQ,CAAC,QAAQ,CAAC,EAAE,SAAS,MAAM,EAAE,CAAA;IACrC,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;CAC3B;AAED,eAAO,MAAM,MAAM,GAClB,QAAQ,MAAM,EACd,QAAQ,MAAM,EACd,MAAM,eAAe,KACnB,OAAO,CAAC;IAAE,IAAI,EAAE,IAAI,CAAA;CAAE,CAGxB,CAAA;AAED,QAAA,MAAM,OAAO,GAAI,QAAQ,MAAM,EAAE,QAAQ,MAAM,KAAG,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAA;CAAE,CAG7E,CAAA;AACD,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,CAAA;AAE5B,eAAO,MAAM,UAAU,GACtB,QAAQ,MAAM,EACd,QAAQ,MAAM,KACZ,OAAO,CAAC;IAAE,IAAI,EAAE,IAAI,CAAC;IAAC,aAAa,EAAE,MAAM,CAAA;CAAE,CAG/C,CAAA;AAED,eAAO,MAAM,OAAO,GACnB,QAAQ,MAAM,EACd,MAAM;IAAE,QAAQ,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,CAAA;CAAE,KACzC,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAA;CAAE,CAG9B,CAAA"}

package/dist/plans.js

@@ -0,0 +1,42 @@
+/**
+ * Plans — per-project subscription plan CRUD + Stripe sync.
+ *
+ *   GET    /plans/projects/:id/plans                         — list plans for project
+ *   GET    /plans/projects/:id/plans/:planId                 — get plan
+ *   POST   /plans/plans                                      — create
+ *   PATCH  /plans/plans/:planId                              — update
+ *   DELETE /plans/plans/:planId                              — delete
+ *   POST   /plans/plans/:planId/sync-stripe                  — push to Stripe
+ *   POST   /plans/plans/reorder                              — reorder display
+ */
+import { plansEndpoints } from '@sylphx/contract';
+import { interpolatePath, request } from './http.js';
+export const list = (client, projectId) => {
+    const { method, path } = plansEndpoints.list;
+    return request(client, method, interpolatePath(path, { id: projectId }));
+};
+export const get = (client, projectId, planId) => {
+    const { method, path } = plansEndpoints.get;
+    return request(client, method, interpolatePath(path, { id: projectId, planId }));
+};
+export const create = (client, body) => {
+    const { method, path } = plansEndpoints.create;
+    return request(client, method, path, { body });
+};
+export const update = (client, planId, body) => {
+    const { method, path } = plansEndpoints.update;
+    return request(client, method, interpolatePath(path, { planId }), { body });
+};
+const _delete = (client, planId) => {
+    const { method, path } = plansEndpoints.delete;
+    return request(client, method, interpolatePath(path, { planId }));
+};
+export { _delete as delete };
+export const syncStripe = (client, planId) => {
+    const { method, path } = plansEndpoints.syncStripe;
+    return request(client, method, interpolatePath(path, { planId }));
+};
+export const reorder = (client, body) => {
+    const { method, path } = plansEndpoints.reorder;
+    return request(client, method, path, { body });
+};

package/dist/privacy.d.ts

@@ -0,0 +1,138 @@
+/**
+ * Privacy — automated cookie discovery + consent mapping for GDPR / CCPA.
+ *
+ *   POST  /privacy/scans                                             — start scan
+ *   GET   /privacy/projects/:id/scans                                — list scans
+ *   GET   /privacy/projects/:id/scans/:scanId                        — get report
+ *   GET   /privacy/projects/:id/cookies                              — list detected cookies
+ *   GET   /privacy/projects/:id/summary                              — aggregate summary
+ *   PATCH /privacy/projects/:id/cookies/:cookieId/category           — recategorize
+ *   PATCH /privacy/projects/:id/cookies/:cookieId/consent-type       — (un)link consent type
+ *   POST  /privacy/cookies/bulk-link                                 — bulk category → consent
+ *   POST  /privacy/known-cookies/seed                                — admin: seed reference DB
+ *
+ * Project path parameters accept TypeID OR slug (handled server-side via
+ * `getProjectByIdOrSlugWithAccess`); the SDK intentionally does not narrow.
+ */
+import type { Client } from './client.js';
+export type CookieCategory = 'necessary' | 'analytics' | 'marketing' | 'preferences' | 'functional' | 'unknown';
+export type CookieParty = 'first_party' | 'third_party';
+export type ScanStatus = 'pending' | 'running' | 'completed' | 'failed';
+export interface StartScanInput {
+    readonly projectId: string;
+    readonly url: string;
+    readonly maxPages?: number;
+    readonly includeSubdomains?: boolean;
+}
+export interface StartScanResult {
+    readonly scanId: string;
+    readonly status: ScanStatus;
+    readonly message: string;
+}
+export declare const startScan: (client: Client, input: StartScanInput) => Promise<StartScanResult>;
+export interface ScanReport {
+    readonly id: string;
+    readonly url: string;
+    readonly status: ScanStatus;
+    readonly pagesCrawled: number | null;
+    readonly totalCookies: number | null;
+    readonly firstPartyCookies: number | null;
+    readonly thirdPartyCookies: number | null;
+    readonly categoryCounts: Readonly<Record<string, number>> | null;
+    readonly error: string | null;
+    readonly startedAt: string | null;
+    readonly completedAt: string | null;
+    readonly durationMs: number | null;
+    readonly createdAt: string;
+}
+export declare const getScan: (client: Client, projectIdOrSlug: string, scanId: string) => Promise<ScanReport>;
+export interface ScanSummary {
+    readonly id: string;
+    readonly url: string;
+    readonly status: ScanStatus;
+    readonly totalCookies: number | null;
+    readonly completedAt: string | null;
+    readonly createdAt: string;
+}
+export interface ListScansOptions {
+    readonly status?: ScanStatus;
+    readonly limit?: number;
+    readonly offset?: number;
+}
+export interface ListScansResult {
+    readonly scans: readonly ScanSummary[];
+    readonly total: number;
+    readonly limit: number;
+    readonly offset: number;
+}
+export declare const listScans: (client: Client, projectIdOrSlug: string, options?: ListScansOptions) => Promise<ListScansResult>;
+export interface DetectedCookie {
+    readonly id: string;
+    readonly name: string;
+    readonly domain: string;
+    readonly path: string | null;
+    readonly party: CookieParty;
+    readonly category: CookieCategory;
+    readonly expirationSeconds: number | null;
+    readonly isSession: boolean;
+    readonly isSecure: boolean;
+    readonly isHttpOnly: boolean;
+    readonly sameSite: string | null;
+    readonly provider: string | null;
+    readonly description: string | null;
+    readonly consentTypeId: string | null;
+    readonly createdAt: string;
+}
+export interface ListCookiesOptions {
+    readonly scanId?: string;
+    readonly category?: CookieCategory;
+    readonly party?: CookieParty;
+    readonly search?: string;
+    readonly limit?: number;
+    readonly offset?: number;
+}
+export interface ListCookiesResult {
+    readonly cookies: readonly DetectedCookie[];
+    readonly total: number;
+    readonly limit: number;
+    readonly offset: number;
+}
+export declare const listCookies: (client: Client, projectIdOrSlug: string, options?: ListCookiesOptions) => Promise<ListCookiesResult>;
+export interface CookieScanSummary {
+    readonly totalScans: number;
+    readonly lastScanAt: string | null;
+    readonly totalCookiesDetected: number;
+    readonly byCategoryCount: Readonly<Record<string, number>>;
+    readonly byPartyCount: Readonly<Record<string, number>>;
+    readonly unmappedCookies: number;
+}
+export declare const summary: (client: Client, projectIdOrSlug: string) => Promise<CookieScanSummary>;
+export interface UpdateCookieCategoryResult {
+    readonly id: string;
+    readonly name: string;
+    readonly category: CookieCategory;
+}
+export declare const updateCookieCategory: (client: Client, projectIdOrSlug: string, cookieId: string, category: CookieCategory) => Promise<UpdateCookieCategoryResult>;
+export interface LinkCookieResult {
+    readonly id: string;
+    readonly name: string;
+    readonly consentTypeId: string | null;
+}
+export declare const linkCookieToConsentType: (client: Client, projectIdOrSlug: string, cookieId: string, consentTypeId: string | null) => Promise<LinkCookieResult>;
+export interface BulkLinkCookiesInput {
+    readonly projectId: string;
+    readonly category: CookieCategory;
+    readonly consentTypeId: string;
+}
+export interface BulkLinkCookiesResult {
+    readonly linkedCount: number;
+    readonly category: CookieCategory;
+    readonly consentTypeId: string;
+}
+export declare const bulkLinkCookies: (client: Client, input: BulkLinkCookiesInput) => Promise<BulkLinkCookiesResult>;
+export interface SeedKnownCookiesResult {
+    readonly seededCount: number;
+    readonly message: string;
+}
+export declare const seedKnownCookies: (client: Client) => Promise<SeedKnownCookiesResult>;
+//# sourceMappingURL=privacy.d.ts.map

package/dist/privacy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"privacy.d.ts","sourceRoot":"","sources":["../src/privacy.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,MAAM,MAAM,cAAc,GACvB,WAAW,GACX,WAAW,GACX,WAAW,GACX,aAAa,GACb,YAAY,GACZ,SAAS,CAAA;AACZ,MAAM,MAAM,WAAW,GAAG,aAAa,GAAG,aAAa,CAAA;AACvD,MAAM,MAAM,UAAU,GAAG,SAAS,GAAG,SAAS,GAAG,WAAW,GAAG,QAAQ,CAAA;AAEvE,MAAM,WAAW,cAAc;IAC9B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,iBAAiB,CAAC,EAAE,OAAO,CAAA;CACpC;AAED,MAAM,WAAW,eAAe;IAC/B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAA;IAC3B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;CACxB;AAED,eAAO,MAAM,SAAS,GAAI,QAAQ,MAAM,EAAE,OAAO,cAAc,KAAG,OAAO,CAAC,eAAe,CAC9B,CAAA;AAE3D,MAAM,WAAW,UAAU;IAC1B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAA;IAC3B,QAAQ,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CAAA;IACpC,QAAQ,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CAAA;IACpC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAA;IACzC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAA;IACzC,QAAQ,CAAC,cAAc,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,GAAG,IAAI,CAAA;IAChE,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAAA;IAC7B,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAA;IACjC,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAA;IACnC,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;IAClC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC1B;AAED,eAAO,MAAM,OAAO,GACnB,QAAQ,MAAM,EACd,iBAAiB,MAAM,EACvB,QAAQ,MAAM,KACZ,OAAO,CAAC,UAAU,CAKnB,CAAA;AAEF,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAA;IAC3B,QAAQ,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CAAA;IACpC,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAA;IACnC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC1B;AAED,MAAM,WAAW,gBAAgB;IAChC,QAAQ,CAAC,MAAM,CAAC,EAAE,UAAU,CAAA;IAC5B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CACxB;AAED,MAAM,WAAW,eAAe;IAC/B,QAAQ,CAAC,KAAK,EAAE,SAAS,WAAW,EAAE,CAAA;IACtC,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CACvB;AAED,eAAO,MAAM,SAAS,GACrB,QAAQ,MAAM,EACd,iBAAiB,MAAM,EACvB,UAAU,gBAAgB,KACxB,OAAO,CAAC,eAAe,CAOvB,CAAA;AAEH,MAAM,WAAW,cAAc;IAC9B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;IAC5B,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAA;IAC3B,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAA;IACjC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAA;IACzC,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAA;IAC3B,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAA;IAChC,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAA;IAChC,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAA;IACnC,QAAQ,CAAC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAA;IACrC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC1B;AAED,MAAM,WAAW,kBAAkB;IAClC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;IACxB,QAAQ,CAAC,QAAQ,CAAC,EAAE,cAAc,CAAA;IAClC,QAAQ,CAAC,KAAK,CAAC,EAAE,WAAW,CAAA;IAC5B,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;IACxB,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CACxB;AAED,MAAM,WAAW,iBAAiB;IACjC,QAAQ,CAAC,OAAO,EAAE,SAAS,cAAc,EAAE,CAAA;IAC3C,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CACvB;AAED,eAAO,MAAM,WAAW,GACvB,QAAQ,MAAM,EACd,iBAAiB,MAAM,EACvB,UAAU,kBAAkB,KAC1B,OAAO,CAAC,iBAAiB,CAUzB,CAAA;AAEH,MAAM,WAAW,iBAAiB;IACjC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;IAClC,QAAQ,CAAC,oBAAoB,EAAE,MAAM,CAAA;IACrC,QAAQ,CAAC,eAAe,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAA;IAC1D,QAAQ,CAAC,YAAY,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAA;IACvD,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;CAChC;AAED,eAAO,MAAM,OAAO,GAAI,QAAQ,MAAM,EAAE,iBAAiB,MAAM,KAAG,OAAO,CAAC,iBAAiB,CACA,CAAA;AAE3F,MAAM,WAAW,0BAA0B;IAC1C,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAA;CACjC;AAED,eAAO,MAAM,oBAAoB,GAChC,QAAQ,MAAM,EACd,iBAAiB,MAAM,EACvB,UAAU,MAAM,EAChB,UAAU,cAAc,KACtB,OAAO,CAAC,0BAA0B,CAMnC,CAAA;AAEF,MAAM,WAAW,gBAAgB;IAChC,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAA;CACrC;AAED,eAAO,MAAM,uBAAuB,GACnC,QAAQ,MAAM,EACd,iBAAiB,MAAM,EACvB,UAAU,MAAM,EAChB,eAAe,MAAM,GAAG,IAAI,KAC1B,OAAO,CAAC,gBAAgB,CAMzB,CAAA;AAEF,MAAM,WAAW,oBAAoB;IACpC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAA;IACjC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;CAC9B;AAED,MAAM,WAAW,qBAAqB;IACrC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAA;IACjC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;CAC9B;AAED,eAAO,MAAM,eAAe,GAC3B,QAAQ,MAAM,EACd,OAAO,oBAAoB,KACzB,OAAO,CAAC,qBAAqB,CACuC,CAAA;AAEvE,MAAM,WAAW,sBAAsB;IACtC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;CACxB;AAED,eAAO,MAAM,gBAAgB,GAAI,QAAQ,MAAM,KAAG,OAAO,CAAC,sBAAsB,CACzB,CAAA"}

package/dist/privacy.js

@@ -0,0 +1,41 @@
+/**
+ * Privacy — automated cookie discovery + consent mapping for GDPR / CCPA.
+ *
+ *   POST  /privacy/scans                                             — start scan
+ *   GET   /privacy/projects/:id/scans                                — list scans
+ *   GET   /privacy/projects/:id/scans/:scanId                        — get report
+ *   GET   /privacy/projects/:id/cookies                              — list detected cookies
+ *   GET   /privacy/projects/:id/summary                              — aggregate summary
+ *   PATCH /privacy/projects/:id/cookies/:cookieId/category           — recategorize
+ *   PATCH /privacy/projects/:id/cookies/:cookieId/consent-type       — (un)link consent type
+ *   POST  /privacy/cookies/bulk-link                                 — bulk category → consent
+ *   POST  /privacy/known-cookies/seed                                — admin: seed reference DB
+ *
+ * Project path parameters accept TypeID OR slug (handled server-side via
+ * `getProjectByIdOrSlugWithAccess`); the SDK intentionally does not narrow.
+ */
+import { request } from './http.js';
+export const startScan = (client, input) => request(client, 'POST', '/privacy/scans', { body: input });
+export const getScan = (client, projectIdOrSlug, scanId) => request(client, 'GET', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/scans/${encodeURIComponent(scanId)}`);
+export const listScans = (client, projectIdOrSlug, options) => request(client, 'GET', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/scans`, {
+    query: {
+        status: options?.status,
+        limit: options?.limit !== undefined ? String(options.limit) : undefined,
+        offset: options?.offset !== undefined ? String(options.offset) : undefined,
+    },
+});
+export const listCookies = (client, projectIdOrSlug, options) => request(client, 'GET', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/cookies`, {
+    query: {
+        scanId: options?.scanId,
+        category: options?.category,
+        party: options?.party,
+        search: options?.search,
+        limit: options?.limit !== undefined ? String(options.limit) : undefined,
+        offset: options?.offset !== undefined ? String(options.offset) : undefined,
+    },
+});
+export const summary = (client, projectIdOrSlug) => request(client, 'GET', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/summary`);
+export const updateCookieCategory = (client, projectIdOrSlug, cookieId, category) => request(client, 'PATCH', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/cookies/${encodeURIComponent(cookieId)}/category`, { body: { category } });
+export const linkCookieToConsentType = (client, projectIdOrSlug, cookieId, consentTypeId) => request(client, 'PATCH', `/privacy/projects/${encodeURIComponent(projectIdOrSlug)}/cookies/${encodeURIComponent(cookieId)}/consent-type`, { body: { consentTypeId } });
+export const bulkLinkCookies = (client, input) => request(client, 'POST', '/privacy/cookies/bulk-link', { body: input });
+export const seedKnownCookies = (client) => request(client, 'POST', '/privacy/known-cookies/seed');

package/dist/projects.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Projects — create / list / delete.
+ *
+ * Wire shape sourced from `@sylphx/contract` (ADR-084). Paths + methods
+ * come from `projectsEndpoints`; hand-written types are forbidden here.
+ */
+import type { CreateProjectInput, Project } from '@sylphx/contract';
+import type { Client } from './client.js';
+export declare const list: (client: Client) => Promise<Project[]>;
+export type CreateInput = CreateProjectInput;
+export declare const create: (client: Client, input: CreateInput) => Promise<Project>;
+declare const _delete: (client: Client, id: string) => Promise<void>;
+export { _delete as delete };
+//# sourceMappingURL=projects.d.ts.map

package/dist/projects.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"projects.d.ts","sourceRoot":"","sources":["../src/projects.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAEnE,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,eAAO,MAAM,IAAI,GAAU,QAAQ,MAAM,KAAG,OAAO,CAAC,OAAO,EAAE,CAI5D,CAAA;AAED,MAAM,MAAM,WAAW,GAAG,kBAAkB,CAAA;AAE5C,eAAO,MAAM,MAAM,GAAI,QAAQ,MAAM,EAAE,OAAO,WAAW,KAAG,OAAO,CAAC,OAAO,CAG1E,CAAA;AAED,QAAA,MAAM,OAAO,GAAI,QAAQ,MAAM,EAAE,IAAI,MAAM,KAAG,OAAO,CAAC,IAAI,CAGzD,CAAA;AACD,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,CAAA"}

package/dist/projects.js

@@ -0,0 +1,22 @@
+/**
+ * Projects — create / list / delete.
+ *
+ * Wire shape sourced from `@sylphx/contract` (ADR-084). Paths + methods
+ * come from `projectsEndpoints`; hand-written types are forbidden here.
+ */
+import { projectsEndpoints } from '@sylphx/contract';
+import { interpolatePath, request } from './http.js';
+export const list = async (client) => {
+    const { method, path } = projectsEndpoints.list;
+    const res = await request(client, method, path);
+    return Array.isArray(res) ? res : (res.data ?? []);
+};
+export const create = (client, input) => {
+    const { method, path } = projectsEndpoints.create;
+    return request(client, method, path, { body: input });
+};
+const _delete = (client, id) => {
+    const { method, path } = projectsEndpoints.delete;
+    return request(client, method, interpolatePath(path, { id }));
+};
+export { _delete as delete };

package/dist/realtime.d.ts

@@ -0,0 +1,33 @@
+/**
+ * Realtime pub/sub — per-project Redis Streams backing SSE channels.
+ *
+ *   GET    /realtime/status?projectId=         — availability + provider
+ *   GET    /realtime/channels?projectId=       — list active channels
+ *   POST   /realtime/channels                  — reserve a channel name
+ *   DELETE /realtime/channels/:channelName     — free a channel
+ *
+ * Channels are Redis-backed per-project streams; no external Soketi/Pusher
+ * service. Consumers open SSE connections to the runtime directly — this
+ * SDK module only manages the channel registry (create / list / delete).
+ */
+import type { Client } from './client.js';
+export interface RealtimeStatus {
+    readonly available: boolean;
+    readonly provider: string;
+}
+export declare const status: (client: Client, projectId: string) => Promise<RealtimeStatus>;
+export interface RealtimeChannel {
+    readonly name: string;
+    readonly activeConnections: number;
+    readonly messagesPerHour: number;
+    readonly status: 'active' | 'empty';
+}
+export declare const listChannels: (client: Client, projectId: string) => Promise<{
+    channels: readonly RealtimeChannel[];
+    count: number;
+}>;
+export declare const createChannel: (client: Client, projectId: string, name: string) => Promise<{
+    name: string;
+}>;
+export declare const deleteChannel: (client: Client, projectId: string, channelName: string) => Promise<void>;
+//# sourceMappingURL=realtime.d.ts.map

package/dist/realtime.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"realtime.d.ts","sourceRoot":"","sources":["../src/realtime.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,MAAM,WAAW,cAAc;IAC9B,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAA;IAC3B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;CACzB;AAED,eAAO,MAAM,MAAM,GAAI,QAAQ,MAAM,EAAE,WAAW,MAAM,KAAG,OAAO,CAAC,cAAc,CACZ,CAAA;AAErE,MAAM,WAAW,eAAe;IAC/B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;IAClC,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,QAAQ,CAAC,MAAM,EAAE,QAAQ,GAAG,OAAO,CAAA;CACnC;AAED,eAAO,MAAM,YAAY,GACxB,QAAQ,MAAM,EACd,WAAW,MAAM,KACf,OAAO,CAAC;IAAE,QAAQ,EAAE,SAAS,eAAe,EAAE,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CACK,CAAA;AAEvE,eAAO,MAAM,aAAa,GACzB,QAAQ,MAAM,EACd,WAAW,MAAM,EACjB,MAAM,MAAM,KACV,OAAO,CAAC;IAAE,IAAI,EAAE,MAAM,CAAA;CAAE,CACkD,CAAA;AAE7E,eAAO,MAAM,aAAa,GACzB,QAAQ,MAAM,EACd,WAAW,MAAM,EACjB,aAAa,MAAM,KACjB,OAAO,CAAC,IAAI,CAGZ,CAAA"}

package/dist/realtime.js

@@ -0,0 +1,19 @@
+/**
+ * Realtime pub/sub — per-project Redis Streams backing SSE channels.
+ *
+ *   GET    /realtime/status?projectId=         — availability + provider
+ *   GET    /realtime/channels?projectId=       — list active channels
+ *   POST   /realtime/channels                  — reserve a channel name
+ *   DELETE /realtime/channels/:channelName     — free a channel
+ *
+ * Channels are Redis-backed per-project streams; no external Soketi/Pusher
+ * service. Consumers open SSE connections to the runtime directly — this
+ * SDK module only manages the channel registry (create / list / delete).
+ */
+import { request } from './http.js';
+export const status = (client, projectId) => request(client, 'GET', '/realtime/status', { query: { projectId } });
+export const listChannels = (client, projectId) => request(client, 'GET', '/realtime/channels', { query: { projectId } });
+export const createChannel = (client, projectId, name) => request(client, 'POST', '/realtime/channels', { body: { projectId, name } });
+export const deleteChannel = (client, projectId, channelName) => request(client, 'DELETE', `/realtime/channels/${encodeURIComponent(channelName)}`, {
+    query: { projectId },
+});

package/dist/referrals.d.ts

@@ -0,0 +1,100 @@
+/**
+ * Referrals — per-project referral codes + conversion tracking.
+ *
+ *   GET  /referrals                  — list (projectId required)
+ *   GET  /referrals/stats            — aggregated conversion stats
+ *   GET  /referrals/:id              — detail (projectId required as query)
+ *   POST /referrals                  — create (optional custom code)
+ *   POST /referrals/:id/expire       — mark pending referral expired
+ *
+ * Referral data is sharded into per-project databases; the `projectId`
+ * routes the request to the correct shard and is required on every call.
+ */
+import type { Client } from './client.js';
+export type ReferralStatus = 'pending' | 'completed' | 'expired' | 'cancelled';
+export type RewardType = 'points' | 'credit' | 'discount' | 'custom';
+export interface UserRef {
+    readonly id: string;
+    readonly email: string;
+    readonly name: string | null;
+}
+export interface Referral {
+    readonly id: string;
+    readonly projectId: string;
+    readonly projectName: string;
+    readonly code: string;
+    readonly referrer: UserRef | null;
+    readonly referredUser: UserRef | null;
+    readonly status: ReferralStatus;
+    readonly rewardType: RewardType;
+    readonly createdAt: string;
+    readonly completedAt: string | null;
+}
+export interface ReferralDetail extends Referral {
+    readonly metadata: Readonly<Record<string, unknown>> | null;
+}
+export interface ListOptions {
+    readonly environmentId?: string;
+    readonly limit?: number;
+    readonly offset?: number;
+}
+export declare const list: (client: Client, projectId: string, options?: ListOptions) => Promise<readonly Referral[]>;
+export declare const get: (client: Client, id: string, projectId: string) => Promise<ReferralDetail>;
+export interface CreateInput {
+    readonly projectId: string;
+    readonly referrerId: string;
+    readonly code?: string;
+    readonly rewardType?: RewardType;
+}
+export interface CreateResult {
+    readonly id: string;
+    readonly code: string;
+}
+export declare const create: (client: Client, input: CreateInput) => Promise<CreateResult>;
+export interface StatsOptions {
+    readonly environmentId?: string;
+    readonly days?: number;
+}
+export interface ReferralStats {
+    readonly overall: {
+        readonly total: number;
+        readonly completed: number;
+        readonly pending: number;
+        readonly expired: number;
+        readonly conversionRate: number;
+    };
+    readonly period: {
+        readonly days: number;
+        readonly since: string;
+        readonly created: number;
+        readonly completed: number;
+        readonly conversionRate: number;
+    };
+    readonly byRewardType: readonly {
+        readonly rewardType: RewardType;
+        readonly total: number;
+        readonly completed: number;
+        readonly conversionRate: number;
+    }[];
+    readonly byProject: readonly {
+        readonly projectId: string;
+        readonly total: number;
+        readonly completed: number;
+        readonly conversionRate: number;
+    }[];
+    readonly dailyTrend: readonly {
+        readonly date: string;
+        readonly created: number;
+        readonly completed: number;
+    }[];
+    readonly topReferrers: readonly {
+        readonly referrerId: string;
+        readonly totalReferrals: number;
+        readonly completedReferrals: number;
+    }[];
+}
+export declare const stats: (client: Client, projectId: string, options?: StatsOptions) => Promise<ReferralStats>;
+export declare const expire: (client: Client, id: string, projectId: string) => Promise<{
+    success: boolean;
+}>;
+//# sourceMappingURL=referrals.d.ts.map

package/dist/referrals.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"referrals.d.ts","sourceRoot":"","sources":["../src/referrals.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,MAAM,MAAM,cAAc,GAAG,SAAS,GAAG,WAAW,GAAG,SAAS,GAAG,WAAW,CAAA;AAC9E,MAAM,MAAM,UAAU,GAAG,QAAQ,GAAG,QAAQ,GAAG,UAAU,GAAG,QAAQ,CAAA;AAEpE,MAAM,WAAW,OAAO;IACvB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;CAC5B;AAED,MAAM,WAAW,QAAQ;IACxB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,QAAQ,EAAE,OAAO,GAAG,IAAI,CAAA;IACjC,QAAQ,CAAC,YAAY,EAAE,OAAO,GAAG,IAAI,CAAA;IACrC,QAAQ,CAAC,MAAM,EAAE,cAAc,CAAA;IAC/B,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAA;IAC/B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAA;CACnC;AAED,MAAM,WAAW,cAAe,SAAQ,QAAQ;IAC/C,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,GAAG,IAAI,CAAA;CAC3D;AAED,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAA;IAC/B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CACxB;AAED,eAAO,MAAM,IAAI,GAChB,QAAQ,MAAM,EACd,WAAW,MAAM,EACjB,UAAU,WAAW,KACnB,OAAO,CAAC,SAAS,QAAQ,EAAE,CAQ3B,CAAA;AAEH,eAAO,MAAM,GAAG,GAAI,QAAQ,MAAM,EAAE,IAAI,MAAM,EAAE,WAAW,MAAM,KAAG,OAAO,CAAC,cAAc,CACD,CAAA;AAEzF,MAAM,WAAW,WAAW;IAC3B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,UAAU,CAAC,EAAE,UAAU,CAAA;CAChC;AAED,MAAM,WAAW,YAAY;IAC5B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;CACrB;AAED,eAAO,MAAM,MAAM,GAAI,QAAQ,MAAM,EAAE,OAAO,WAAW,KAAG,OAAO,CAAC,YAAY,CACzB,CAAA;AAEvD,MAAM,WAAW,YAAY;IAC5B,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAA;IAC/B,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CACtB;AAED,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,OAAO,EAAE;QACjB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;QAC1B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;KAC/B,CAAA;IACD,QAAQ,CAAC,MAAM,EAAE;QAChB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;QACrB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;QAC1B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;KAC/B,CAAA;IACD,QAAQ,CAAC,YAAY,EAAE,SAAS;QAC/B,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAA;QAC/B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;QAC1B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;KAC/B,EAAE,CAAA;IACH,QAAQ,CAAC,SAAS,EAAE,SAAS;QAC5B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;QAC1B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;QAC1B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;KAC/B,EAAE,CAAA;IACH,QAAQ,CAAC,UAAU,EAAE,SAAS;QAC7B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;QACrB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;KAC1B,EAAE,CAAA;IACH,QAAQ,CAAC,YAAY,EAAE,SAAS;QAC/B,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;QAC3B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;QAC/B,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAA;KACnC,EAAE,CAAA;CACH;AAED,eAAO,MAAM,KAAK,GACjB,QAAQ,MAAM,EACd,WAAW,MAAM,EACjB,UAAU,YAAY,KACpB,OAAO,CAAC,aAAa,CAOrB,CAAA;AAEH,eAAO,MAAM,MAAM,GAClB,QAAQ,MAAM,EACd,IAAI,MAAM,EACV,WAAW,MAAM,KACf,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAA;CAAE,CAG5B,CAAA"}

package/dist/referrals.js

@@ -0,0 +1,33 @@
+/**
+ * Referrals — per-project referral codes + conversion tracking.
+ *
+ *   GET  /referrals                  — list (projectId required)
+ *   GET  /referrals/stats            — aggregated conversion stats
+ *   GET  /referrals/:id              — detail (projectId required as query)
+ *   POST /referrals                  — create (optional custom code)
+ *   POST /referrals/:id/expire       — mark pending referral expired
+ *
+ * Referral data is sharded into per-project databases; the `projectId`
+ * routes the request to the correct shard and is required on every call.
+ */
+import { request } from './http.js';
+export const list = (client, projectId, options) => request(client, 'GET', '/referrals', {
+    query: {
+        projectId,
+        environmentId: options?.environmentId,
+        limit: options?.limit !== undefined ? String(options.limit) : undefined,
+        offset: options?.offset !== undefined ? String(options.offset) : undefined,
+    },
+});
+export const get = (client, id, projectId) => request(client, 'GET', `/referrals/${encodeURIComponent(id)}`, { query: { projectId } });
+export const create = (client, input) => request(client, 'POST', '/referrals', { body: input });
+export const stats = (client, projectId, options) => request(client, 'GET', '/referrals/stats', {
+    query: {
+        projectId,
+        environmentId: options?.environmentId,
+        days: options?.days !== undefined ? String(options.days) : undefined,
+    },
+});
+export const expire = (client, id, projectId) => request(client, 'POST', `/referrals/${encodeURIComponent(id)}/expire`, {
+    body: { projectId },
+});

package/dist/refresh.d.ts

@@ -0,0 +1,44 @@
+/**
+ * Refresh token lifecycle (Platform-audience OAuth rotation).
+ *
+ *   POST /auth/refresh   — rotate a refresh token and mint a new access JWT
+ *   POST /auth/logout    — revoke the presented refresh token (sign out)
+ *
+ * The refresh endpoint is PUBLIC (no platformAuth middleware) because it
+ * authenticates via the refresh token itself in the JSON body.
+ *
+ * Note (ADR-089 Phase 5.1): these endpoints currently live on the
+ * Platform host but authenticate BaaS-issued refresh tokens. When Phase
+ * 5.1 consolidates the full OAuth AS on the runtime/BaaS plane, these
+ * methods will move to `@sylphx/sdk.auth.oauth`. Until then, Management
+ * exposes them so Console / CLI have a single type-safe surface.
+ *
+ * @see docs/adr/ADR-059-unified-credentials.md §1.1
+ * @see docs/adr/ADR-089-platform-as-first-customer-of-baas.md
+ */
+import type { Client } from './client.js';
+export interface RefreshResult {
+    readonly accessToken: string;
+    readonly refreshToken: string;
+    readonly expiresIn: number;
+    readonly tokenType: 'Bearer';
+}
+/**
+ * Rotate a refresh token. Returns a fresh access+refresh pair; the
+ * presented refresh token is invalidated server-side (single-use
+ * rotation per ADR-059 §1.1).
+ */
+export declare const rotate: (client: Client, refreshToken: string) => Promise<RefreshResult>;
+/**
+ * Revoke a refresh token (sign out). Idempotent — revoking an already-
+ * revoked or unknown token still returns success to prevent side-channel
+ * token-existence probing.
+ */
+export declare const signOut: (client: Client, refreshToken: string) => Promise<{
+    success: boolean;
+}>;
+/** Backwards-compat alias used by some Console flows. */
+export declare const revoke: (client: Client, refreshToken: string) => Promise<{
+    success: boolean;
+}>;
+//# sourceMappingURL=refresh.d.ts.map

package/dist/refresh.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"refresh.d.ts","sourceRoot":"","sources":["../src/refresh.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AAGzC,MAAM,WAAW,aAAa;IAC7B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAA;CAC5B;AAED;;;;GAIG;AACH,eAAO,MAAM,MAAM,GAAI,QAAQ,MAAM,EAAE,cAAc,MAAM,KAAG,OAAO,CAAC,aAAa,CACd,CAAA;AAErE;;;;GAIG;AACH,eAAO,MAAM,OAAO,GAAI,QAAQ,MAAM,EAAE,cAAc,MAAM,KAAG,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAA;CAAE,CACvB,CAAA;AAEpE,yDAAyD;AACzD,eAAO,MAAM,MAAM,WAJa,MAAM,gBAAgB,MAAM,KAAG,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAA;CAAE,CAI9D,CAAA"}

package/dist/refresh.js

@@ -0,0 +1,33 @@
+/**
+ * Refresh token lifecycle (Platform-audience OAuth rotation).
+ *
+ *   POST /auth/refresh   — rotate a refresh token and mint a new access JWT
+ *   POST /auth/logout    — revoke the presented refresh token (sign out)
+ *
+ * The refresh endpoint is PUBLIC (no platformAuth middleware) because it
+ * authenticates via the refresh token itself in the JSON body.
+ *
+ * Note (ADR-089 Phase 5.1): these endpoints currently live on the
+ * Platform host but authenticate BaaS-issued refresh tokens. When Phase
+ * 5.1 consolidates the full OAuth AS on the runtime/BaaS plane, these
+ * methods will move to `@sylphx/sdk.auth.oauth`. Until then, Management
+ * exposes them so Console / CLI have a single type-safe surface.
+ *
+ * @see docs/adr/ADR-059-unified-credentials.md §1.1
+ * @see docs/adr/ADR-089-platform-as-first-customer-of-baas.md
+ */
+import { request } from './http.js';
+/**
+ * Rotate a refresh token. Returns a fresh access+refresh pair; the
+ * presented refresh token is invalidated server-side (single-use
+ * rotation per ADR-059 §1.1).
+ */
+export const rotate = (client, refreshToken) => request(client, 'POST', '/auth/refresh', { body: { refreshToken } });
+/**
+ * Revoke a refresh token (sign out). Idempotent — revoking an already-
+ * revoked or unknown token still returns success to prevent side-channel
+ * token-existence probing.
+ */
+export const signOut = (client, refreshToken) => request(client, 'POST', '/auth/logout', { body: { refreshToken } });
+/** Backwards-compat alias used by some Console flows. */
+export const revoke = signOut;

package/dist/remoteConfig.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Remote config — server-persisted non-secret key-value store per env.
+ *
+ * Renamed from `config.ts` in the old OOP SDK to `remoteConfig.ts` (ADR-077
+ * Rule D) — disambiguates from the CLI-side local JSON store (`config.ts`)
+ * and the billing `plan`/`subscription` surface.
+ */
+import type { Client } from './client.js';
+import type { ConfigEntry } from './types.js';
+export declare const list: (client: Client, projectId: string, envType?: string) => Promise<ConfigEntry[]>;
+export declare const get: (client: Client, projectId: string, key: string, envType?: string) => Promise<ConfigEntry>;
+export declare const set: (client: Client, projectId: string, key: string, value: string, envType?: string) => Promise<ConfigEntry>;
+declare const _delete: (client: Client, projectId: string, key: string, envType?: string) => Promise<void>;
+export { _delete as delete };
+//# sourceMappingURL=remoteConfig.d.ts.map