@tailor-platform/sdk 1.17.1 → 1.19.0

package/dist/{update-CUBVjZbL.mjs → update-Cr5c7h1r.mjs}

@@ -1,5 +1,7 @@
-import { t as db } from "./schema-R5TxC5Pn.mjs";
-import { $ as UserProfileProviderConfig_UserProfileProviderType, A as TailorDBGQLPermission_Action, B as ExecutorJobStatus, C as platformBaseUrl, D as WorkspacePlatformUserRole, E as readPackageJson, F as TailorDBType_PermitAction, G as AuthOAuth2Client_ClientType, H as ExecutorTriggerType, I as PipelineResolver_OperationType, J as AuthSCIMAttribute_Type, K as AuthOAuth2Client_GrantType, L as IdPLang, M as TailorDBGQLPermission_Permit, N as TailorDBType_Permission_Operator, O as WorkflowExecution_Status, P as TailorDBType_Permission_Permit, Q as TenantProviderConfig_TenantProviderType, R as FunctionExecution_Status, S as initOperatorClient, T as userAgent, U as AuthIDPConfig_AuthType, V as ExecutorTargetType, W as AuthInvokerSchema, X as AuthSCIMConfig_AuthorizationType, Y as AuthSCIMAttribute_Uniqueness, _ as writePlatformConfig, a as hasDependency, at as ApplicationSchemaUpdateAttemptStatus, c as OAuth2ClientSchema, ct as styles, et as GetApplicationSchemaHealthResponse_ApplicationSchemaHealthStatus, f as loadAccessToken, g as readPlatformConfig, h as loadWorkspaceId, i as loadConfig, it as PageDirection, j as TailorDBGQLPermission_Operator, k as WorkflowJobExecution_Status, l as stringifyFunction, lt as symbols, m as loadOrganizationId, n as generatePluginFilesIfNeeded, nt as Condition_Operator, o as getDistDir, ot as Subgraph_ServiceType, p as loadFolderId, q as AuthSCIMAttribute_Mutability, r as loadApplication, rt as FilterSchema, s as createExecutorService, st as logger, t as defineApplication, tt as ConditionSchema, u as tailorUserMap, v as fetchAll, w as resolveStaticWebsiteUrls, y as fetchMachineUserToken } from "./application-BMDE8KqK.mjs";
+import { t as db } from "./schema-D5Cpd8fQ.mjs";
+import { $ as GetApplicationSchemaHealthResponse_ApplicationSchemaHealthStatus, A as TailorDBGQLPermission_Operator, B as ExecutorTargetType, C as platformBaseUrl, D as WorkflowExecution_Status, E as WorkspacePlatformUserRole, F as PipelineResolver_OperationType, G as AuthOAuth2Client_GrantType, H as AuthIDPConfig_AuthType, I as IdPLang, J as AuthSCIMAttribute_Uniqueness, K as AuthSCIMAttribute_Mutability, L as FunctionExecution_Status, M as TailorDBType_Permission_Operator, N as TailorDBType_Permission_Permit, O as WorkflowJobExecution_Status, P as TailorDBType_PermitAction, Q as UserProfileProviderConfig_UserProfileProviderType, S as initOperatorClient, T as userAgent, U as AuthInvokerSchema, V as ExecutorTriggerType, W as AuthOAuth2Client_ClientType, Y as AuthSCIMConfig_AuthorizationType, Z as TenantProviderConfig_TenantProviderType, _ as writePlatformConfig, a as buildExecutorArgsExpr, at as Subgraph_ServiceType, c as createExecutorService, ct as symbols, et as ConditionSchema, f as loadAccessToken, g as readPlatformConfig, h as loadWorkspaceId, i as loadConfig, it as ApplicationSchemaUpdateAttemptStatus, j as TailorDBGQLPermission_Permit, k as TailorDBGQLPermission_Action, l as OAuth2ClientSchema, m as loadOrganizationId, n as generatePluginFilesIfNeeded, nt as FilterSchema, o as buildResolverOperationHookExpr, ot as logger, p as loadFolderId, q as AuthSCIMAttribute_Type, r as loadApplication, rt as PageDirection, s as getDistDir, st as styles, t as defineApplication, tt as Condition_Operator, u as stringifyFunction, v as fetchAll, w as resolveStaticWebsiteUrls, y as fetchMachineUserToken, z as ExecutorJobStatus } from "./application-A6PZjujv.mjs";
+import { t as readPackageJson } from "./package-json-DUY2kB6z.mjs";
+import { r as withSpan } from "./telemetry-rFq0QdvJ.mjs";
 import { createRequire } from "node:module";
 import { arg, defineCommand, runCommand } from "politty";
 import { z } from "zod";
@@ -159,6 +161,8 @@ const withCommonArgs = (handler) => async (args) => {
 	try {
 		if ("json" in args && typeof args.json === "boolean") logger.jsonMode = args.json;
 		loadEnvFiles(args["env-file"], args["env-file-if-exists"]);
+		const { initTelemetry } = await import("./telemetry-9A1BZqbl.mjs");
+		await initTelemetry();
 		await handler(args);
 	} catch (error) {
 		if (isCLIError(error)) {
@@ -169,6 +173,9 @@ const withCommonArgs = (handler) => async (args) => {
 			if (args.verbose && error.stack) logger.debug(`\nStack trace:\n${error.stack}`);
 		} else logger.error(`Unknown error: ${error}`);
 		process.exit(1);
+	} finally {
+		const { shutdownTelemetry } = await import("./telemetry-9A1BZqbl.mjs");
+		await shutdownTelemetry();
 	}
 	process.exit(0);
 };
@@ -373,6 +380,35 @@ function resolvePackageDirectory(startDir) {
 	}
 }
 
+//#endregion
+//#region src/parser/plugin-config/generation-types.ts
+/**
+* Derives generation-time dependency set from hook presence on a plugin.
+* @param plugin - Plugin to check for generation hooks
+* @param plugin.onTailorDBReady - TailorDB phase-complete hook
+* @param plugin.onResolverReady - Resolver phase-complete hook
+* @param plugin.onExecutorReady - Executor phase-complete hook
+* @returns Set of dependency kinds based on which hooks are implemented
+*/
+function getPluginGenerationDependencies(plugin) {
+	const deps = /* @__PURE__ */ new Set();
+	if (plugin.onTailorDBReady) deps.add("tailordb");
+	if (plugin.onResolverReady) deps.add("resolver");
+	if (plugin.onExecutorReady) deps.add("executor");
+	return deps;
+}
+/**
+* Checks if a plugin has any generation-time hooks.
+* @param plugin - Plugin to check
+* @param plugin.onTailorDBReady - TailorDB phase-complete hook
+* @param plugin.onResolverReady - Resolver phase-complete hook
+* @param plugin.onExecutorReady - Executor phase-complete hook
+* @returns True if the plugin has at least one generation hook
+*/
+function hasGenerationHooks(plugin) {
+	return !!(plugin.onTailorDBReady || plugin.onResolverReady || plugin.onExecutorReady);
+}
+
 //#endregion
 //#region src/plugin/manager.ts
 /**
@@ -409,13 +445,13 @@ var PluginManager = class {
 			success: false,
 			error: `Plugin "${plugin.id}" requires typeConfig, but none was provided for type "${context.type.name}".`
 		};
-		if (!plugin.processType) return {
+		if (!plugin.onTypeLoaded) return {
 			success: false,
-			error: `Plugin "${plugin.id}" does not support type-attached processing (missing processType method). Use processNamespace via definePlugins() instead.`
+			error: `Plugin "${plugin.id}" does not support type-attached processing (missing onTypeLoaded method). Use onNamespaceLoaded via definePlugins() instead.`
 		};
 		let output;
 		try {
-			output = await plugin.processType({
+			output = await plugin.onTypeLoaded({
 				type: context.type,
 				typeConfig: context.typeConfig,
 				pluginConfig: plugin.pluginConfig,
@@ -453,14 +489,14 @@ var PluginManager = class {
 	}
 	/**
 	* Process namespace plugins that don't require a source type.
-	* This method is called once per namespace for plugins with processNamespace method.
+	* This method is called once per namespace for plugins with onNamespaceLoaded method.
 	* @param namespace - The target namespace for generated types
 	* @returns Array of results with plugin outputs and configs
 	*/
 	async processNamespacePlugins(namespace) {
 		const results = [];
 		for (const [pluginId, plugin] of this.plugins) {
-			if (!plugin.processNamespace) continue;
+			if (!plugin.onNamespaceLoaded) continue;
 			const config = plugin.pluginConfig;
 			const context = {
 				pluginConfig: config,
@@ -468,7 +504,7 @@ var PluginManager = class {
 			};
 			let output;
 			try {
-				output = await plugin.processNamespace(context);
+				output = await plugin.onNamespaceLoaded(context);
 			} catch (error) {
 				const message = error instanceof Error ? error.message : String(error);
 				results.push({
@@ -520,11 +556,11 @@ var PluginManager = class {
 		return results;
 	}
 	/**
-	* Get plugins that have processNamespace method
+	* Get plugins that have onNamespaceLoaded method
 	* @returns Array of plugin IDs that support namespace processing
 	*/
 	getNamespacePluginIds() {
-		return Array.from(this.plugins.entries()).filter(([, plugin]) => plugin.processNamespace !== void 0).map(([id]) => id);
+		return Array.from(this.plugins.entries()).filter(([, plugin]) => plugin.onNamespaceLoaded !== void 0).map(([id]) => id);
 	}
 	/**
 	* Get the count of registered plugins
@@ -582,6 +618,23 @@ var PluginManager = class {
 		return this.generatedExecutors.filter((info) => info.namespace === namespace);
 	}
 	/**
+	* Get plugins that have any generation-time hooks.
+	* @returns Array of plugins with generation hooks
+	*/
+	getPluginsWithGenerationHooks() {
+		return Array.from(this.plugins.values()).filter((plugin) => hasGenerationHooks(plugin));
+	}
+	/**
+	* Get the generation-time dependencies for a specific plugin.
+	* @param pluginId - The plugin ID to look up
+	* @returns Set of dependency kinds, or empty set if plugin not found
+	*/
+	getPluginGenerationDependencies(pluginId) {
+		const plugin = this.plugins.get(pluginId);
+		if (!plugin) return /* @__PURE__ */ new Set();
+		return getPluginGenerationDependencies(plugin);
+	}
+	/**
 	* Generate plugin files (types and executors) and store the executor file paths.
 	* @param params - Parameters for file generation
 	* @returns Generated executor file paths
@@ -738,11 +791,12 @@ function trn$6(workspaceId, name) {
 async function planApplication(context) {
 	const { client, workspaceId, application, forRemoval } = context;
 	const changeSet = createChangeSet("Applications");
-	const existingApplications = await fetchAll(async (pageToken) => {
+	const existingApplications = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { applications, nextPageToken } = await client.listApplications({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [applications, nextPageToken];
 		} catch (error) {
@@ -769,12 +823,13 @@ async function planApplication(context) {
 		if (idProvider) authIdpConfigName = idProvider.name;
 	} else if (application.config.auth) {
 		authNamespace = application.config.auth.name;
-		const idpConfigs = await fetchAll(async (pageToken) => {
+		const idpConfigs = await fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { idpConfigs: idpConfigs$1, nextPageToken } = await client.listAuthIDPConfigs({
 					workspaceId,
 					namespaceName: authNamespace,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [idpConfigs$1, nextPageToken];
 			} catch (error) {
@@ -953,11 +1008,12 @@ async function planServices$3(client, workspaceId, appName, idps) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { idpServices, nextPageToken } = await client.listIdPServices({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [idpServices, nextPageToken];
 		} catch (error) {
@@ -1049,12 +1105,13 @@ async function planServices$3(client, workspaceId, appName, idps) {
 async function planClients(client, workspaceId, idps, deletedServices) {
 	const changeSet = createChangeSet("IdP clients");
 	const fetchClients = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { clients, nextPageToken } = await client.listIdPClients({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [clients, nextPageToken];
 			} catch (error) {
@@ -1063,9 +1120,11 @@ async function planClients(client, workspaceId, idps, deletedServices) {
 			}
 		});
 	};
-	for (const idp of idps) {
+	const clientsByIdp = await Promise.all(idps.map((idp) => fetchClients(idp.name)));
+	for (let i = 0; i < idps.length; i++) {
+		const idp = idps[i];
 		const namespaceName = idp.name;
-		const existingClients = await fetchClients(namespaceName);
+		const existingClients = clientsByIdp[i];
 		const existingNameMap = /* @__PURE__ */ new Map();
 		existingClients.forEach((client$1) => {
 			existingNameMap.set(client$1.name, client$1.clientSecret);
@@ -1097,16 +1156,20 @@ async function planClients(client, workspaceId, idps, deletedServices) {
 			});
 		});
 	}
-	for (const namespaceName of deletedServices) (await fetchClients(namespaceName)).forEach((client$1) => {
-		changeSet.deletes.push({
-			name: client$1.name,
-			request: {
-				workspaceId,
-				namespaceName,
-				name: client$1.name
-			}
+	const deletedClientsByService = await Promise.all(deletedServices.map((namespaceName) => fetchClients(namespaceName)));
+	for (let i = 0; i < deletedServices.length; i++) {
+		const namespaceName = deletedServices[i];
+		deletedClientsByService[i].forEach((client$1) => {
+			changeSet.deletes.push({
+				name: client$1.name,
+				request: {
+					workspaceId,
+					namespaceName,
+					name: client$1.name
+				}
+			});
 		});
-	});
+	}
 	return changeSet;
 }
 function convertLang(lang) {
@@ -1184,13 +1247,15 @@ async function planAuth(context) {
 	}
 	const { changeSet: serviceChangeSet, conflicts, unmanaged, resourceOwners } = await planServices$2(client, workspaceId, application.name, auths);
 	const deletedServices = serviceChangeSet.deletes.map((del) => del.name);
-	const idpConfigChangeSet = await planIdPConfigs(client, workspaceId, auths, deletedServices);
-	const userProfileConfigChangeSet = await planUserProfileConfigs(client, workspaceId, auths, deletedServices);
-	const tenantConfigChangeSet = await planTenantConfigs(client, workspaceId, auths, deletedServices);
-	const machineUserChangeSet = await planMachineUsers(client, workspaceId, auths, deletedServices);
-	const oauth2ClientChangeSet = await planOAuth2Clients(client, workspaceId, auths, deletedServices);
-	const scimChangeSet = await planSCIMConfigs(client, workspaceId, auths, deletedServices);
-	const scimResourceChangeSet = await planSCIMResources(client, workspaceId, auths, deletedServices);
+	const [idpConfigChangeSet, userProfileConfigChangeSet, tenantConfigChangeSet, machineUserChangeSet, oauth2ClientChangeSet, scimChangeSet, scimResourceChangeSet] = await Promise.all([
+		planIdPConfigs(client, workspaceId, auths, deletedServices),
+		planUserProfileConfigs(client, workspaceId, auths, deletedServices),
+		planTenantConfigs(client, workspaceId, auths, deletedServices),
+		planMachineUsers(client, workspaceId, auths, deletedServices),
+		planOAuth2Clients(client, workspaceId, auths, deletedServices),
+		planSCIMConfigs(client, workspaceId, auths, deletedServices),
+		planSCIMResources(client, workspaceId, auths, deletedServices)
+	]);
 	serviceChangeSet.print();
 	idpConfigChangeSet.print();
 	userProfileConfigChangeSet.print();
@@ -1223,11 +1288,12 @@ async function planServices$2(client, workspaceId, appName, auths) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { authServices, nextPageToken } = await client.listAuthServices({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [authServices, nextPageToken];
 		} catch (error) {
@@ -1299,12 +1365,13 @@ async function planServices$2(client, workspaceId, appName, auths) {
 async function planIdPConfigs(client, workspaceId, auths, deletedServices) {
 	const changeSet = createChangeSet("Auth idpConfigs");
 	const fetchIdPConfigs = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { idpConfigs, nextPageToken } = await client.listAuthIDPConfigs({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [idpConfigs, nextPageToken];
 			} catch (error) {
@@ -1602,12 +1669,13 @@ function protoTenantConfig(tenantConfig) {
 async function planMachineUsers(client, workspaceId, auths, deletedServices) {
 	const changeSet = createChangeSet("Auth machineUsers");
 	const fetchMachineUsers = (authNamespace) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { machineUsers, nextPageToken } = await client.listAuthMachineUsers({
 					workspaceId,
 					authNamespace,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [machineUsers, nextPageToken];
 			} catch (error) {
@@ -1680,12 +1748,13 @@ function protoMachineUserAttributeMap(attributeMap) {
 async function planOAuth2Clients(client, workspaceId, auths, deletedServices) {
 	const changeSet = createChangeSet("Auth oauth2Clients");
 	const fetchOAuth2Clients = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { oauth2Clients, nextPageToken } = await client.listAuthOAuth2Clients({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [oauth2Clients, nextPageToken];
 			} catch (error) {
@@ -2195,11 +2264,12 @@ async function planFunctionRegistry(client, workspaceId, appName, entries) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const existingFunctions = await fetchAll(async (pageToken) => {
+	const existingFunctions = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const response = await client.listFunctionRegistries({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [response.functions.map((f) => ({
 				name: f.name,
@@ -2362,11 +2432,12 @@ async function planExecutor(context) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { executors: executors$1, nextPageToken } = await client.listExecutorExecutors({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [executors$1, nextPageToken];
 		} catch (error) {
@@ -2433,33 +2504,11 @@ async function planExecutor(context) {
 		resourceOwners
 	};
 }
-const actorTransformExpr = `actor: args.actor ? (({ attributeMap, attributes: attrList, ...rest }) => ({ ...rest, attributes: attributeMap, attributeList: attrList }))(args.actor) : null`;
-/**
-* Build args expression for resolverExecuted trigger.
-* Transforms server's succeeded/failed fields to success/result/error fields.
-* @param additionalFields - Additional fields to include in the args expression
-* @returns JavaScript expression for resolverExecuted trigger args
-*/
-function buildResolverExecutedArgsExpr(additionalFields) {
-	const baseFields = `...args, appNamespace: args.namespaceName, ${actorTransformExpr}, success: !!args.succeeded, result: args.succeeded?.result.resolver, error: args.failed?.error`;
-	return additionalFields ? `({ ${baseFields}, ${additionalFields} })` : `({ ${baseFields} })`;
-}
-/**
-* Build args expression for incomingWebhook trigger.
-* Transforms server's raw_body field to rawBody field.
-* @param additionalFields - Additional fields to include in the args expression
-* @returns JavaScript expression for incomingWebhook trigger args
-*/
-function buildIncomingWebhookArgsExpr(additionalFields) {
-	const baseFields = `...args, appNamespace: args.namespaceName, rawBody: args.raw_body`;
-	return additionalFields ? `({ ${baseFields}, ${additionalFields} })` : `({ ${baseFields} })`;
-}
 function protoExecutor(appName, executor, env) {
 	const trigger = executor.trigger;
 	let triggerType;
 	let triggerConfig;
-	const envField = `env: ${JSON.stringify(env)}`;
-	const baseArgsExpr = `({ ...args, appNamespace: args.namespaceName, ${actorTransformExpr}, ${envField} })`;
+	const argsExpr = buildExecutorArgsExpr(trigger.kind, env);
 	const eventType = {
 		recordCreated: "tailordb.type_record.created",
 		recordUpdated: "tailordb.type_record.updated",
@@ -2491,7 +2540,7 @@ function protoExecutor(appName, executor, env) {
 				case: "event",
 				value: {
 					eventType: eventType[trigger.kind],
-					condition: { expr: [`args.typeName === "${trigger.typeName}"`, ...trigger.condition ? [`(${stringifyFunction(trigger.condition)})(${baseArgsExpr})`] : []].join(" && ") }
+					condition: { expr: [`args.typeName === "${trigger.typeName}"`, ...trigger.condition ? [`(${stringifyFunction(trigger.condition)})(${argsExpr})`] : []].join(" && ") }
 				}
 			} };
 			break;
@@ -2501,7 +2550,7 @@ function protoExecutor(appName, executor, env) {
 				case: "event",
 				value: {
 					eventType: eventType[trigger.kind],
-					condition: { expr: [`args.resolverName === "${trigger.resolverName}"`, ...trigger.condition ? [`(${stringifyFunction(trigger.condition)})(${buildResolverExecutedArgsExpr(envField)})`] : []].join(" && ") }
+					condition: { expr: [`args.resolverName === "${trigger.resolverName}"`, ...trigger.condition ? [`(${stringifyFunction(trigger.condition)})(${argsExpr})`] : []].join(" && ") }
 				}
 			} };
 			break;
@@ -2529,7 +2578,6 @@ function protoExecutor(appName, executor, env) {
 	const target = executor.operation;
 	let targetType;
 	let targetConfig;
-	const argsExpr = trigger.kind === "resolverExecuted" ? buildResolverExecutedArgsExpr(envField) : trigger.kind === "incomingWebhook" ? buildIncomingWebhookArgsExpr(envField) : baseArgsExpr;
 	switch (target.kind) {
 		case "webhook":
 			targetType = ExecutorTargetType.WEBHOOK;
@@ -2628,6 +2676,10 @@ const SCALAR_TYPE_MAP = {
 		kind: "ScalarType",
 		name: "Float"
 	},
+	decimal: {
+		kind: "CustomScalarType",
+		name: "Decimal"
+	},
 	boolean: {
 		kind: "ScalarType",
 		name: "Boolean"
@@ -2701,11 +2753,12 @@ async function planServices$1(client, workspaceId, appName, pipelines) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { pipelineServices, nextPageToken } = await client.listPipelineServices({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [pipelineServices, nextPageToken];
 		} catch (error) {
@@ -2774,12 +2827,13 @@ async function planServices$1(client, workspaceId, appName, pipelines) {
 async function planResolvers(client, workspaceId, pipelines, executors, deletedServices, env) {
 	const changeSet = createChangeSet("Pipeline resolvers");
 	const fetchResolvers = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { pipelineResolvers, nextPageToken } = await client.listPipelineResolvers({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [pipelineResolvers, nextPageToken];
 			} catch (error) {
@@ -2844,7 +2898,7 @@ function processResolver(namespace, resolver, executorUsedResolvers, env) {
 		description: `${resolver.name} function body`,
 		operationType: PipelineResolver_OperationType.FUNCTION,
 		operationSourceRef: resolverFunctionName(namespace, resolver.name),
-		operationHook: { expr: `({ ...context.pipeline, input: context.args, user: ${tailorUserMap}, env: ${JSON.stringify(env)} });` },
+		operationHook: { expr: buildResolverOperationHookExpr(env) },
 		postScript: `args.body`
 	}];
 	const typeBaseName = inflection.camelize(resolver.name);
@@ -2931,11 +2985,12 @@ async function planStaticWebsite(context) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { staticwebsites, nextPageToken } = await client.listStaticWebsites({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [staticwebsites, nextPageToken];
 		} catch (error) {
@@ -3309,6 +3364,7 @@ function createSnapshotFieldConfig(field) {
 		...field.config.serial.maxValue !== void 0 && { maxValue: field.config.serial.maxValue },
 		...field.config.serial.format && { format: field.config.serial.format }
 	};
+	if (field.config.scale !== void 0) config.scale = field.config.scale;
 	if (field.config.fields && Object.keys(field.config.fields).length > 0) {
 		config.fields = {};
 		for (const [nestedName, nestedConfig] of Object.entries(field.config.fields)) config.fields[nestedName] = createSnapshotFieldConfigFromOperatorConfig(nestedConfig);
@@ -3353,6 +3409,7 @@ function createSnapshotFieldConfigFromOperatorConfig(fieldConfig) {
 		...fieldConfig.serial.maxValue !== void 0 && { maxValue: fieldConfig.serial.maxValue },
 		...fieldConfig.serial.format && { format: fieldConfig.serial.format }
 	};
+	if (fieldConfig.scale !== void 0) config.scale = fieldConfig.scale;
 	if (fieldConfig.fields && Object.keys(fieldConfig.fields).length > 0) {
 		config.fields = {};
 		for (const [nestedName, nestedConfig] of Object.entries(fieldConfig.fields)) config.fields[nestedName] = createSnapshotFieldConfigFromOperatorConfig(nestedConfig);
@@ -3739,6 +3796,7 @@ function areFieldsDifferent(oldField, newField) {
 		if (oldSerial.maxValue !== newSerial.maxValue) return true;
 		if ((oldSerial.format ?? "") !== (newSerial.format ?? "")) return true;
 	}
+	if (oldField.scale !== newField.scale) return true;
 	const oldFields = oldField.fields ?? {};
 	const newFields = newField.fields ?? {};
 	const oldFieldNames = Object.keys(oldFields);
@@ -4161,6 +4219,7 @@ function convertRemoteFieldsToSnapshot(remoteType) {
 			...remoteField.serial.maxValue && { maxValue: Number(remoteField.serial.maxValue) },
 			...remoteField.serial.format && { format: remoteField.serial.format }
 		};
+		if (remoteField.scale !== void 0) config.scale = remoteField.scale;
 		fields[fieldName] = config;
 	}
 	return fields;
@@ -4205,6 +4264,7 @@ function compareFields(typeName, fieldName, remoteField, snapshotField) {
 	const remoteVector = remoteField.vector ?? false;
 	const snapshotVector = snapshotField.vector ?? false;
 	if (remoteVector !== snapshotVector) differences.push(`vector: remote=${remoteVector}, expected=${snapshotVector}`);
+	if (remoteField.scale !== snapshotField.scale) differences.push(`scale: remote=${remoteField.scale}, expected=${snapshotField.scale}`);
 	if (differences.length > 0) return {
 		typeName,
 		kind: "field_mismatch",
@@ -4652,12 +4712,13 @@ function groupMigrationsByNamespace(migrations) {
 * @returns {Promise<ProtoTailorDBType[]>} Remote TailorDB types
 */
 async function fetchRemoteTypes(client, workspaceId, namespace) {
-	return fetchAll(async (pageToken) => {
+	return fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { tailordbTypes, nextPageToken } = await client.listTailorDBTypes({
 				workspaceId,
 				namespaceName: namespace,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [tailordbTypes, nextPageToken];
 		} catch (error) {
@@ -5123,8 +5184,7 @@ async function planTailorDB(context) {
 	const executors = forRemoval ? [] : Object.values(await application.executorService?.loadExecutors() ?? {});
 	const { changeSet: serviceChangeSet, conflicts, unmanaged, resourceOwners } = await planServices(client, workspaceId, application.name, tailordbs);
 	const deletedServices = serviceChangeSet.deletes.map((del) => del.name);
-	const typeChangeSet = await planTypes(client, workspaceId, tailordbs, executors, deletedServices);
-	const gqlPermissionChangeSet = await planGqlPermissions(client, workspaceId, tailordbs, deletedServices);
+	const [typeChangeSet, gqlPermissionChangeSet] = await Promise.all([planTypes(client, workspaceId, tailordbs, executors, deletedServices), planGqlPermissions(client, workspaceId, tailordbs, deletedServices)]);
 	serviceChangeSet.print();
 	typeChangeSet.print();
 	gqlPermissionChangeSet.print();
@@ -5153,11 +5213,12 @@ async function planServices(client, workspaceId, appName, tailordbs) {
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		try {
 			const { tailordbServices, nextPageToken } = await client.listTailorDBServices({
 				workspaceId,
-				pageToken
+				pageToken,
+				pageSize: maxPageSize
 			});
 			return [tailordbServices, nextPageToken];
 		} catch (error) {
@@ -5224,12 +5285,13 @@ async function planServices(client, workspaceId, appName, tailordbs) {
 async function planTypes(client, workspaceId, tailordbs, executors, deletedServices, filteredTypesByNamespace) {
 	const changeSet = createChangeSet("TailorDB types");
 	const fetchTypes = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { tailordbTypes, nextPageToken } = await client.listTailorDBTypes({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [tailordbTypes, nextPageToken];
 			} catch (error) {
@@ -5337,7 +5399,8 @@ function generateTailorDBTypeManifest(type, executorUsedTypes, namespaceGqlOpera
 				start: fieldConfig.serial.start,
 				...fieldConfig.serial.maxValue && { maxValue: fieldConfig.serial.maxValue },
 				...fieldConfig.serial.format && { format: fieldConfig.serial.format }
-			} }
+			} },
+			...fieldConfig.scale !== void 0 && { scale: fieldConfig.scale }
 		};
 		if (fieldConfig.type === "nested" && fieldConfig.fields) fieldEntry.fields = processNestedFields(fieldConfig.fields);
 		fields[fieldName] = fieldEntry;
@@ -5421,7 +5484,8 @@ function processNestedFields(fields) {
 				foreignKey: false,
 				vector: false,
 				...toProtoFieldHooks(nestedFieldConfig),
-				fields: deepNestedFields
+				fields: deepNestedFields,
+				...nestedFieldConfig.scale !== void 0 && { scale: nestedFieldConfig.scale }
 			};
 		} else nestedFields[nestedFieldName] = {
 			type: nestedType,
@@ -5439,7 +5503,8 @@ function processNestedFields(fields) {
 				start: nestedFieldConfig.serial.start,
 				...nestedFieldConfig.serial.maxValue && { maxValue: nestedFieldConfig.serial.maxValue },
 				...nestedFieldConfig.serial.format && { format: nestedFieldConfig.serial.format }
-			} }
+			} },
+			...nestedFieldConfig.scale !== void 0 && { scale: nestedFieldConfig.scale }
 		};
 	});
 	return nestedFields;
@@ -5524,12 +5589,13 @@ function protoOperand(operand) {
 async function planGqlPermissions(client, workspaceId, tailordbs, deletedServices) {
 	const changeSet = createChangeSet("TailorDB gqlPermissions");
 	const fetchGqlPermissions = (namespaceName) => {
-		return fetchAll(async (pageToken) => {
+		return fetchAll(async (pageToken, maxPageSize) => {
 			try {
 				const { permissions, nextPageToken } = await client.listTailorDBGQLPermissions({
 					workspaceId,
 					namespaceName,
-					pageToken
+					pageToken,
+					pageSize: maxPageSize
 				});
 				return [permissions, nextPageToken];
 			} catch (error) {
@@ -5809,10 +5875,11 @@ async function registerJobFunctions(client, changeSet, appName) {
 	const { workspaceId } = firstWorkflow;
 	const allUsedJobNames = /* @__PURE__ */ new Set();
 	for (const item of [...changeSet.creates, ...changeSet.updates]) for (const jobName of item.usedJobNames) allUsedJobNames.add(jobName);
-	const existingJobFunctions = await fetchAll(async (pageToken) => {
+	const existingJobFunctions = await fetchAll(async (pageToken, maxPageSize) => {
 		const response = await client.listWorkflowJobFunctions({
 			workspaceId,
-			pageToken
+			pageToken,
+			pageSize: maxPageSize
 		});
 		return [response.jobFunctions.map((j) => j.name), response.nextPageToken];
 	});
@@ -5864,10 +5931,11 @@ async function planWorkflow(client, workspaceId, appName, workflows, mainJobDeps
 	const conflicts = [];
 	const unmanaged = [];
 	const resourceOwners = /* @__PURE__ */ new Set();
-	const withoutLabel = await fetchAll(async (pageToken) => {
+	const withoutLabel = await fetchAll(async (pageToken, maxPageSize) => {
 		const response = await client.listWorkflows({
 			workspaceId,
-			pageToken
+			pageToken,
+			pageSize: maxPageSize
 		});
 		return [response.workflows.map((w) => ({
 			id: w.id,
@@ -5940,131 +6008,174 @@ async function planWorkflow(client, workspaceId, appName, workflows, mainJobDeps
 * @returns Promise that resolves when apply completes
 */
 async function apply(options) {
-	const { config, plugins } = await loadConfig(options?.configPath);
-	const dryRun = options?.dryRun ?? false;
-	const yes = options?.yes ?? false;
-	const buildOnly = options?.buildOnly ?? process.env.TAILOR_PLATFORM_SDK_BUILD_ONLY === "true";
-	let pluginManager;
-	if (plugins.length > 0) pluginManager = new PluginManager(plugins);
-	await generateUserTypes({
-		config,
-		configPath: config.path
-	});
-	const { application, workflowBuildResult } = await loadApplication({
-		config,
-		pluginManager
-	});
-	if (buildOnly) return;
-	const client = await initOperatorClient(await loadAccessToken({
-		useProfile: true,
-		profile: options?.profile
-	}));
-	const workspaceId = loadWorkspaceId({
-		workspaceId: options?.workspaceId,
-		profile: options?.profile
-	});
-	const workflowService = application.workflowService;
-	const functionEntries = collectFunctionEntries(application, workflowService?.jobs ?? []);
-	const ctx = {
-		client,
-		workspaceId,
-		application,
-		forRemoval: false,
-		config,
-		noSchemaCheck: options?.noSchemaCheck
-	};
-	const functionRegistry = await planFunctionRegistry(client, workspaceId, application.name, functionEntries);
-	const tailorDB = await planTailorDB(ctx);
-	const staticWebsite = await planStaticWebsite(ctx);
-	const idp = await planIdP(ctx);
-	const auth = await planAuth(ctx);
-	const pipeline = await planPipeline(ctx);
-	const app = await planApplication(ctx);
-	const executor = await planExecutor(ctx);
-	const workflow = await planWorkflow(client, workspaceId, application.name, workflowService?.workflows ?? {}, workflowBuildResult?.mainJobDeps ?? {});
-	const allConflicts = [
-		...functionRegistry.conflicts,
-		...tailorDB.conflicts,
-		...staticWebsite.conflicts,
-		...idp.conflicts,
-		...auth.conflicts,
-		...pipeline.conflicts,
-		...executor.conflicts,
-		...workflow.conflicts
-	];
-	await confirmOwnerConflict(allConflicts, application.name, yes);
-	await confirmUnmanagedResources([
-		...functionRegistry.unmanaged,
-		...tailorDB.unmanaged,
-		...staticWebsite.unmanaged,
-		...idp.unmanaged,
-		...auth.unmanaged,
-		...pipeline.unmanaged,
-		...executor.unmanaged,
-		...workflow.unmanaged
-	], application.name, yes);
-	const importantDeletions = [];
-	for (const del of tailorDB.changeSet.type.deletes) importantDeletions.push({
-		resourceType: "TailorDB type",
-		resourceName: del.name
-	});
-	for (const del of staticWebsite.changeSet.deletes) importantDeletions.push({
-		resourceType: "StaticWebsite",
-		resourceName: del.name
-	});
-	for (const del of auth.changeSet.oauth2Client.deletes) importantDeletions.push({
-		resourceType: "OAuth2 client",
-		resourceName: del.name
-	});
-	for (const replace of auth.changeSet.oauth2Client.replaces) importantDeletions.push({
-		resourceType: "OAuth2 client (client type change)",
-		resourceName: replace.name
-	});
-	await confirmImportantResourceDeletion(importantDeletions, yes);
-	const resourceOwners = new Set([
-		...functionRegistry.resourceOwners,
-		...tailorDB.resourceOwners,
-		...staticWebsite.resourceOwners,
-		...idp.resourceOwners,
-		...auth.resourceOwners,
-		...pipeline.resourceOwners,
-		...executor.resourceOwners,
-		...workflow.resourceOwners
-	]);
-	const emptyApps = [...new Set(allConflicts.map((c) => c.currentOwner))].filter((owner) => !resourceOwners.has(owner));
-	for (const emptyApp of emptyApps) app.deletes.push({
-		name: emptyApp,
-		request: {
-			workspaceId,
-			applicationName: emptyApp
+	return withSpan("apply", async (rootSpan) => {
+		rootSpan.setAttribute("apply.dry_run", options?.dryRun ?? false);
+		const { config, application, workflowBuildResult, buildOnly } = await withSpan("build", async () => {
+			const { config: config$1, plugins } = await withSpan("build.loadConfig", () => loadConfig(options?.configPath));
+			const dryRun$1 = options?.dryRun ?? false;
+			const buildOnly$1 = options?.buildOnly ?? process.env.TAILOR_PLATFORM_SDK_BUILD_ONLY === "true";
+			let pluginManager;
+			if (plugins.length > 0) pluginManager = new PluginManager(plugins);
+			await withSpan("build.generateUserTypes", () => generateUserTypes({
+				config: config$1,
+				configPath: config$1.path
+			}));
+			const { application: application$1, workflowBuildResult: workflowBuildResult$1 } = await withSpan("build.loadApplication", () => loadApplication({
+				config: config$1,
+				pluginManager
+			}));
+			return {
+				config: config$1,
+				plugins,
+				application: application$1,
+				workflowBuildResult: workflowBuildResult$1,
+				dryRun: dryRun$1,
+				buildOnly: buildOnly$1
+			};
+		});
+		if (buildOnly) return;
+		const client = await initOperatorClient(await loadAccessToken({
+			useProfile: true,
+			profile: options?.profile
+		}));
+		const workspaceId = loadWorkspaceId({
+			workspaceId: options?.workspaceId,
+			profile: options?.profile
+		});
+		rootSpan.setAttribute("app.name", application.name);
+		rootSpan.setAttribute("workspace.id", workspaceId);
+		const workflowService = application.workflowService;
+		const functionEntries = collectFunctionEntries(application, workflowService?.jobs ?? []);
+		const dryRun = options?.dryRun ?? false;
+		const yes = options?.yes ?? false;
+		const { functionRegistry, tailorDB, staticWebsite, idp, auth, pipeline, app, executor, workflow } = await withSpan("plan", async () => {
+			const ctx = {
+				client,
+				workspaceId,
+				application,
+				forRemoval: false,
+				config,
+				noSchemaCheck: options?.noSchemaCheck
+			};
+			const [functionRegistry$1, tailorDB$1, staticWebsite$1, idp$1, auth$1, pipeline$1, app$1, executor$1, workflow$1] = await Promise.all([
+				withSpan("plan.functionRegistry", () => planFunctionRegistry(client, workspaceId, application.name, functionEntries)),
+				withSpan("plan.tailorDB", () => planTailorDB(ctx)),
+				withSpan("plan.staticWebsite", () => planStaticWebsite(ctx)),
+				withSpan("plan.idp", () => planIdP(ctx)),
+				withSpan("plan.auth", () => planAuth(ctx)),
+				withSpan("plan.pipeline", () => planPipeline(ctx)),
+				withSpan("plan.application", () => planApplication(ctx)),
+				withSpan("plan.executor", () => planExecutor(ctx)),
+				withSpan("plan.workflow", () => planWorkflow(client, workspaceId, application.name, workflowService?.workflows ?? {}, workflowBuildResult?.mainJobDeps ?? {}))
+			]);
+			return {
+				functionRegistry: functionRegistry$1,
+				tailorDB: tailorDB$1,
+				staticWebsite: staticWebsite$1,
+				idp: idp$1,
+				auth: auth$1,
+				pipeline: pipeline$1,
+				app: app$1,
+				executor: executor$1,
+				workflow: workflow$1
+			};
+		});
+		await withSpan("confirm", async () => {
+			const allConflicts = [
+				...functionRegistry.conflicts,
+				...tailorDB.conflicts,
+				...staticWebsite.conflicts,
+				...idp.conflicts,
+				...auth.conflicts,
+				...pipeline.conflicts,
+				...executor.conflicts,
+				...workflow.conflicts
+			];
+			await confirmOwnerConflict(allConflicts, application.name, yes);
+			await confirmUnmanagedResources([
+				...functionRegistry.unmanaged,
+				...tailorDB.unmanaged,
+				...staticWebsite.unmanaged,
+				...idp.unmanaged,
+				...auth.unmanaged,
+				...pipeline.unmanaged,
+				...executor.unmanaged,
+				...workflow.unmanaged
+			], application.name, yes);
+			const importantDeletions = [];
+			for (const del of tailorDB.changeSet.type.deletes) importantDeletions.push({
+				resourceType: "TailorDB type",
+				resourceName: del.name
+			});
+			for (const del of staticWebsite.changeSet.deletes) importantDeletions.push({
+				resourceType: "StaticWebsite",
+				resourceName: del.name
+			});
+			for (const del of auth.changeSet.oauth2Client.deletes) importantDeletions.push({
+				resourceType: "OAuth2 client",
+				resourceName: del.name
+			});
+			for (const replace of auth.changeSet.oauth2Client.replaces) importantDeletions.push({
+				resourceType: "OAuth2 client (client type change)",
+				resourceName: replace.name
+			});
+			await confirmImportantResourceDeletion(importantDeletions, yes);
+			const resourceOwners = new Set([
+				...functionRegistry.resourceOwners,
+				...tailorDB.resourceOwners,
+				...staticWebsite.resourceOwners,
+				...idp.resourceOwners,
+				...auth.resourceOwners,
+				...pipeline.resourceOwners,
+				...executor.resourceOwners,
+				...workflow.resourceOwners
+			]);
+			const emptyApps = [...new Set(allConflicts.map((c) => c.currentOwner))].filter((owner) => !resourceOwners.has(owner));
+			for (const emptyApp of emptyApps) app.deletes.push({
+				name: emptyApp,
+				request: {
+					workspaceId,
+					applicationName: emptyApp
+				}
+			});
+		});
+		if (dryRun) {
+			logger.info("Dry run enabled. No changes applied.");
+			return;
 		}
+		await withSpan("apply.createUpdateServices", async () => {
+			await applyFunctionRegistry(client, workspaceId, functionRegistry, "create-update");
+			await applyStaticWebsite(client, staticWebsite, "create-update");
+			await applyIdP(client, idp, "create-update");
+			await applyAuth(client, auth, "create-update");
+			await applyTailorDB(client, tailorDB, "create-update");
+			await applyPipeline(client, pipeline, "create-update");
+		});
+		await withSpan("apply.deleteSubgraphResources", async () => {
+			await applyPipeline(client, pipeline, "delete-resources");
+			await applyAuth(client, auth, "delete-resources");
+			await applyIdP(client, idp, "delete-resources");
+		});
+		await withSpan("apply.createUpdateApplication", () => applyApplication(client, app, "create-update"));
+		await withSpan("apply.createUpdateDependentServices", async () => {
+			await applyExecutor(client, executor, "create-update");
+			await applyWorkflow(client, workflow, "create-update");
+		});
+		await withSpan("apply.deleteDependentServices", async () => {
+			await applyWorkflow(client, workflow, "delete");
+			await applyExecutor(client, executor, "delete");
+			await applyStaticWebsite(client, staticWebsite, "delete");
+		});
+		await withSpan("apply.deleteApplication", () => applyApplication(client, app, "delete"));
+		await withSpan("apply.deleteSubgraphServices", async () => {
+			await applyPipeline(client, pipeline, "delete-services");
+			await applyAuth(client, auth, "delete-services");
+			await applyIdP(client, idp, "delete-services");
+			await applyTailorDB(client, tailorDB, "delete-services");
+		});
+		await withSpan("apply.cleanup", () => applyFunctionRegistry(client, workspaceId, functionRegistry, "delete"));
+		logger.success("Successfully applied changes.");
 	});
-	if (dryRun) {
-		logger.info("Dry run enabled. No changes applied.");
-		return;
-	}
-	await applyFunctionRegistry(client, workspaceId, functionRegistry, "create-update");
-	await applyStaticWebsite(client, staticWebsite, "create-update");
-	await applyIdP(client, idp, "create-update");
-	await applyAuth(client, auth, "create-update");
-	await applyTailorDB(client, tailorDB, "create-update");
-	await applyPipeline(client, pipeline, "create-update");
-	await applyPipeline(client, pipeline, "delete-resources");
-	await applyAuth(client, auth, "delete-resources");
-	await applyIdP(client, idp, "delete-resources");
-	await applyApplication(client, app, "create-update");
-	await applyExecutor(client, executor, "create-update");
-	await applyWorkflow(client, workflow, "create-update");
-	await applyWorkflow(client, workflow, "delete");
-	await applyExecutor(client, executor, "delete");
-	await applyStaticWebsite(client, staticWebsite, "delete");
-	await applyApplication(client, app, "delete");
-	await applyPipeline(client, pipeline, "delete-services");
-	await applyAuth(client, auth, "delete-services");
-	await applyIdP(client, idp, "delete-services");
-	await applyTailorDB(client, tailorDB, "delete-services");
-	await applyFunctionRegistry(client, workspaceId, functionRegistry, "delete");
-	logger.success("Successfully applied changes.");
 }
 const applyCommand = defineCommand({
 	name: "apply",
@@ -6654,10 +6765,11 @@ async function listWorkflowExecutions(options) {
 		}) }));
 	}
 	const filter = filters.length > 0 ? create(FilterSchema, { and: filters }) : void 0;
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { executions, nextPageToken } = await client.listWorkflowExecutions({
 			workspaceId,
 			pageToken,
+			pageSize: maxPageSize,
 			pageDirection: PageDirection.DESC,
 			filter
 		});
@@ -7154,11 +7266,12 @@ async function getExecutorJob(options) {
 		if (!job) throw new Error(`Job '${options.jobId}' not found.`);
 		const jobInfo = toExecutorJobInfo(job);
 		if (options.attempts) {
-			const attempts = await fetchAll(async (pageToken) => {
+			const attempts = await fetchAll(async (pageToken, maxPageSize) => {
 				const { attempts: attempts$1, nextPageToken } = await client.listExecutorJobAttempts({
 					workspaceId,
 					jobId: options.jobId,
 					pageToken,
+					pageSize: maxPageSize,
 					pageDirection: PageDirection.DESC
 				});
 				return [attempts$1, nextPageToken];
@@ -7210,11 +7323,12 @@ async function watchExecutorJob(options) {
 		const coloredStatus = colorizeExecutorJobStatus(jobInfo.status);
 		if (job.status === ExecutorJobStatus.SUCCESS) spinner.succeed(`Executor job completed: ${coloredStatus}`);
 		else spinner.fail(`Executor job completed: ${coloredStatus}`);
-		const attemptInfos = (await fetchAll(async (pageToken) => {
+		const attemptInfos = (await fetchAll(async (pageToken, maxPageSize) => {
 			const { attempts, nextPageToken } = await client.listExecutorJobAttempts({
 				workspaceId,
 				jobId: options.jobId,
 				pageToken,
+				pageSize: maxPageSize,
 				pageDirection: PageDirection.DESC
 			});
 			return [attempts, nextPageToken];
@@ -7486,10 +7600,11 @@ async function listExecutors(options) {
 		workspaceId: options?.workspaceId,
 		profile: options?.profile
 	});
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { executors, nextPageToken } = await client.listExecutorExecutors({
 			workspaceId,
-			pageToken
+			pageToken,
+			pageSize: maxPageSize
 		});
 		return [executors, nextPageToken];
 	})).map((e) => toExecutorListInfo(e));
@@ -7756,10 +7871,11 @@ async function listWebhookExecutors(options) {
 		workspaceId: options?.workspaceId,
 		profile: options?.profile
 	});
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { executors, nextPageToken } = await client.listExecutorExecutors({
 			workspaceId,
-			pageToken
+			pageToken,
+			pageSize: maxPageSize
 		});
 		return [executors, nextPageToken];
 	})).filter((e) => e.triggerType === ExecutorTriggerType.INCOMING_WEBHOOK).map((e) => ({
@@ -7798,6 +7914,19 @@ const webhookCommand = defineCommand({
 	}
 });
 
+//#endregion
+//#region src/cli/generator/types.ts
+/**
+* Type guard to check if a generator has a specific dependency.
+* @template D
+* @param generator - Code generator instance
+* @param dependency - Dependency kind to check
+* @returns True if the generator has the dependency
+*/
+function hasDependency(generator, dependency) {
+	return generator.dependencies.includes(dependency);
+}
+
 //#endregion
 //#region src/cli/generator/watch/index.ts
 /**
@@ -8198,6 +8327,7 @@ function createGenerationManager(params) {
 	};
 	let watcher = null;
 	const generatorResults = {};
+	const generationPlugins = pluginManager?.getPluginsWithGenerationHooks() ?? [];
 	function getDeps(gen) {
 		return new Set(gen.dependencies);
 	}
@@ -8318,12 +8448,112 @@ function createGenerationManager(params) {
 			baseDir: path.join(baseDir, gen.id),
 			configPath: config.path
 		});
+		await writeGeneratedFiles(gen.id, result);
+	}
+	/**
+	* Build TailorDB namespace data array from loaded services.
+	* @returns Array of TailorDB namespace data
+	*/
+	function buildTailorDBData() {
+		return Object.entries(services.tailordb).map(([namespace, info]) => ({
+			namespace,
+			types: info.types,
+			sourceInfo: new Map(Object.entries(info.sourceInfo)),
+			pluginAttachments: info.pluginAttachments
+		}));
+	}
+	/**
+	* Build resolver namespace data array from loaded services.
+	* @returns Array of resolver namespace data
+	*/
+	function buildResolverData() {
+		return Object.entries(services.resolver).map(([namespace, resolvers]) => ({
+			namespace,
+			resolvers
+		}));
+	}
+	/**
+	* Run a plugin's phase-complete hook and write any generated files.
+	* @param plugin - Plugin to run the hook on
+	* @param hookName - Name of the hook to call
+	* @returns Promise that resolves when hook completes
+	*/
+	async function runPluginPhaseHook(plugin, hookName) {
+		if (!plugin[hookName]) return;
+		const pluginBaseDir = path.join(baseDir, plugin.id);
+		const auth = getAuthInput();
+		const tailordb = buildTailorDBData();
+		let result;
+		switch (hookName) {
+			case "onTailorDBReady":
+				result = await plugin.onTailorDBReady({
+					tailordb,
+					auth,
+					baseDir: pluginBaseDir,
+					configPath: config.path,
+					pluginConfig: plugin.pluginConfig
+				});
+				break;
+			case "onResolverReady":
+				result = await plugin.onResolverReady({
+					tailordb,
+					resolvers: buildResolverData(),
+					auth,
+					baseDir: pluginBaseDir,
+					configPath: config.path,
+					pluginConfig: plugin.pluginConfig
+				});
+				break;
+			case "onExecutorReady":
+				result = await plugin.onExecutorReady({
+					tailordb,
+					resolvers: buildResolverData(),
+					executors: { ...services.executor },
+					auth,
+					baseDir: pluginBaseDir,
+					configPath: config.path,
+					pluginConfig: plugin.pluginConfig
+				});
+				break;
+		}
+		await writeGeneratedFiles(plugin.id, result);
+	}
+	/**
+	* Run a specific generation-time hook for all plugins that implement it.
+	* Each hook runs at its natural pipeline phase, ensuring outputs from earlier
+	* phases are available when later phases load resolvers/executors.
+	* @param hookName - Name of the hook to call
+	* @param watch - Whether running in watch mode (suppresses throws)
+	*/
+	async function runPluginHook(hookName, watch$1) {
+		const plugins = generationPlugins.filter((p) => p[hookName] != null);
+		if (plugins.length === 0) return;
+		const results = await Promise.allSettled(plugins.map(async (plugin) => {
+			try {
+				await runPluginPhaseHook(plugin, hookName);
+			} catch (error) {
+				logger.error(`Error processing plugin ${styles.bold(plugin.id)} (${hookName})`);
+				logger.error(String(error));
+				if (!watch$1) throw error;
+			}
+		}));
+		if (!watch$1) {
+			const failures = results.filter((r) => r.status === "rejected");
+			if (failures.length > 0) throw new AggregateError(failures.map((f) => f.reason));
+		}
+	}
+	/**
+	* Write generated files to disk.
+	* @param sourceId - Generator or plugin ID for logging
+	* @param result - Generator result containing files to write
+	*/
+	async function writeGeneratedFiles(sourceId, result) {
 		await Promise.all(result.files.map(async (file) => {
 			fs$2.mkdirSync(path.dirname(file.path), { recursive: true });
 			return new Promise((resolve, reject) => {
 				if (file.skipIfExists && fs$2.existsSync(file.path)) {
 					const relativePath = path.relative(process.cwd(), file.path);
-					logger.debug(`${gen.id} | skip existing: ${relativePath}`);
+					logger.debug(`${sourceId} | skip existing: ${relativePath}`);
 					return resolve();
 				}
 				fs$2.writeFile(file.path, file.content, (err) => {
@@ -8334,7 +8564,7 @@ function createGenerationManager(params) {
 						reject(err);
 					} else {
 						const relativePath = path.relative(process.cwd(), file.path);
-						logger.log(`${gen.id} | generate: ${styles.success(relativePath)}`);
+						logger.log(`${sourceId} | generate: ${styles.success(relativePath)}`);
 						if (file.executable) fs$2.chmod(file.path, 493, (chmodErr) => {
 							if (chmodErr) {
 								const relativePath$1 = path.relative(process.cwd(), file.path);
@@ -8363,7 +8593,7 @@ function createGenerationManager(params) {
 		await aggregate(gen);
 	}
 	async function runGenerators(gens, watch$1) {
-		await Promise.allSettled(gens.map(async (gen) => {
+		const results = await Promise.allSettled(gens.map(async (gen) => {
 			try {
 				await processGenerator(gen);
 			} catch (error) {
@@ -8372,6 +8602,10 @@ function createGenerationManager(params) {
 				if (!watch$1) throw error;
 			}
 		}));
+		if (!watch$1) {
+			const failures = results.filter((r) => r.status === "rejected");
+			if (failures.length > 0) throw new AggregateError(failures.map((f) => f.reason));
+		}
 	}
 	async function restartWatchProcess() {
 		logger.newline();
@@ -8433,8 +8667,9 @@ function createGenerationManager(params) {
 			if (app.authService) await app.authService.resolveNamespaces();
 			if (app.tailorDBServices.length > 0 || pluginExecutorFiles.length > 0) logger.newline();
 			const tailordbOnlyGens = generators.filter((g) => onlyHas(g, "tailordb"));
-			if (tailordbOnlyGens.length > 0) {
-				await runGenerators(tailordbOnlyGens, watch$1);
+			const hasOnTailorDBReady = generationPlugins.some((p) => p.onTailorDBReady != null);
+			if (tailordbOnlyGens.length > 0 || hasOnTailorDBReady) {
+				await Promise.all([runGenerators(tailordbOnlyGens, watch$1), runPluginHook("onTailorDBReady", watch$1)]);
 				logger.newline();
 			}
 			for (const resolverService of app.resolverServices) {
@@ -8452,8 +8687,9 @@ function createGenerationManager(params) {
 				}
 			}
 			const nonExecutorGens = generators.filter((g) => !tailordbOnlyGens.includes(g) && hasNone(g, "executor"));
-			if (nonExecutorGens.length > 0) {
-				await runGenerators(nonExecutorGens, watch$1);
+			const hasOnResolverReady = generationPlugins.some((p) => p.onResolverReady != null);
+			if (nonExecutorGens.length > 0 || hasOnResolverReady) {
+				await Promise.all([runGenerators(nonExecutorGens, watch$1), runPluginHook("onResolverReady", watch$1)]);
 				logger.newline();
 			}
 			if (executorService) {
@@ -8465,8 +8701,9 @@ function createGenerationManager(params) {
 				services.executor[key] = executor;
 			});
 			const executorGens = generators.filter((g) => hasAll(g, "executor"));
-			if (executorGens.length > 0) {
-				await runGenerators(executorGens, watch$1);
+			const hasOnExecutorReady = generationPlugins.some((p) => p.onExecutorReady != null);
+			if (executorGens.length > 0 || hasOnExecutorReady) {
+				await Promise.all([runGenerators(executorGens, watch$1), runPluginHook("onExecutorReady", watch$1)]);
 				logger.newline();
 			}
 		},
@@ -8574,10 +8811,11 @@ async function listMachineUsers(options) {
 		applicationName: config.name
 	});
 	if (!application?.authNamespace) throw new Error(`Application ${config.name} does not have an auth configuration.`);
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { machineUsers, nextPageToken } = await client.listAuthMachineUsers({
 			workspaceId,
 			pageToken,
+			pageSize: maxPageSize,
 			authNamespace: application.authNamespace
 		});
 		return [machineUsers, nextPageToken];
@@ -8789,10 +9027,11 @@ async function listOAuth2Clients(options) {
 		applicationName: config.name
 	});
 	if (!application?.authNamespace) throw new Error(`Application ${config.name} does not have an auth configuration.`);
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { oauth2Clients, nextPageToken } = await client.listAuthOAuth2Clients({
 			workspaceId,
 			pageToken,
+			pageSize: maxPageSize,
 			namespaceName: application.authNamespace
 		});
 		return [oauth2Clients, nextPageToken];
@@ -9133,7 +9372,8 @@ function generateTableType(type, breakingChangeFields) {
 function mapToTsType(fieldType) {
 	switch (fieldType) {
 		case "uuid":
-		case "string": return {
+		case "string":
+		case "decimal": return {
 			type: "string",
 			usedTimestamp: false
 		};
@@ -9488,7 +9728,7 @@ async function generate(options) {
 	if (options.init) await handleInitOption(namespacesWithMigrations, options.yes);
 	let pluginManager;
 	if (plugins.length > 0) pluginManager = new PluginManager(plugins);
-	const { defineApplication: defineApplication$1 } = await import("./application-Dni_W16P.mjs");
+	const { defineApplication: defineApplication$1 } = await import("./application-nPS5veK6.mjs");
 	const application = defineApplication$1({
 		config,
 		pluginManager
@@ -9826,10 +10066,11 @@ async function listWorkflows(options) {
 		workspaceId: options?.workspaceId,
 		profile: options?.profile
 	});
-	return (await fetchAll(async (pageToken) => {
+	return (await fetchAll(async (pageToken, maxPageSize) => {
 		const { workflows, nextPageToken } = await client.listWorkflows({
 			workspaceId,
-			pageToken
+			pageToken,
+			pageSize: maxPageSize
 		});
 		return [workflows, nextPageToken];
 	})).map(toWorkflowListInfo);
@@ -10700,4 +10941,4 @@ const updateCommand = defineCommand({
 
 //#endregion
 export { jobsCommand as $, generateCommand as A, getMigrationDirPath as At, getMachineUserToken as B, getNamespacesWithMigrations as Bt, resumeCommand as C, MIGRATE_FILE_NAME as Ct, truncate as D, createSnapshotFromLocalTypes as Dt, listWorkflows as E, compareSnapshots as Et, removeCommand$1 as F, loadDiff as Ft, generateCommand$1 as G, commonArgs as Gt, listCommand$5 as H, generateUserTypes as Ht, listCommand$4 as I, reconstructSnapshotFromMigrations as It, triggerCommand as J, jsonArgs as Jt, listWebhookExecutors as K, confirmationArgs as Kt, listOAuth2Clients as L, formatDiffSummary as Lt, show as M, getMigrationFiles as Mt, showCommand as N, getNextMigrationNumber as Nt, truncateCommand as O, formatMigrationNumber as Ot, remove as P, isValidMigrationNumber as Pt, getExecutorJob as Q, getCommand$1 as R, formatMigrationDiff as Rt, healthCommand as S, INITIAL_SCHEMA_NUMBER as St, listCommand$3 as T, compareLocalTypesWithSnapshot as Tt, listMachineUsers as U, apiCall as Ut, tokenCommand as V, trnPrefix as Vt, generate$1 as W, apiCommand as Wt, listCommand$6 as X, workspaceArgs as Xt, triggerExecutor as Y, withCommonArgs as Yt, listExecutors as Z, createCommand as _, MIGRATION_LABEL_KEY as _t, listCommand as a, getWorkflow as at, listCommand$2 as b, DB_TYPES_FILE_NAME as bt, inviteUser as c, listWorkflowExecutions as ct, listCommand$1 as d, getCommand$3 as dt, listExecutorJobs as et, listWorkspaces as f, getExecutor as ft, deleteWorkspace as g, waitForExecution$1 as gt, deleteCommand as h, executeScript as ht, removeUser as i, getCommand$2 as it, logBetaWarning as j, getMigrationFilePath as jt, generate as k, getLatestMigrationNumber as kt, restoreCommand as l, functionExecutionStatusToString as lt, getWorkspace as m, applyCommand as mt, updateUser as n, startCommand as nt, listUsers as o, executionsCommand as ot, getCommand as p, apply as pt, webhookCommand as q, deploymentArgs as qt, removeCommand as r, startWorkflow as rt, inviteCommand as s, getWorkflowExecution as st, updateCommand as t, watchExecutorJob as tt, restoreWorkspace as u, formatKeyValueTable as ut, createWorkspace as v, parseMigrationLabelNumber as vt, resumeWorkflow as w, SCHEMA_FILE_NAME as wt, getAppHealth as x, DIFF_FILE_NAME as xt, listApps as y, bundleMigrationScript as yt, getOAuth2Client as z, hasChanges as zt };
-//# sourceMappingURL=update-CUBVjZbL.mjs.map
+//# sourceMappingURL=update-Cr5c7h1r.mjs.map