@tangle-network/agent-integrations 0.25.1 → 0.25.3

package/dist/specs.d.ts

@@ -1,2962 +1,4 @@
-import { Server, IncomingMessage, ServerResponse } from 'node:http';
-
-type IntegrationSupportTier = 'catalogOnly' | 'setupReady' | 'gatewayExecutable' | 'firstPartyExecutable' | 'sandboxExecutable';
-interface IntegrationCatalogSource {
-    id: string;
-    connectors: IntegrationConnector[];
-    precedence?: number;
-}
-interface IntegrationRegistrySourceRef {
-    sourceId: string;
-    providerId: string;
-    connectorId: string;
-    supportTier: IntegrationSupportTier;
-    actionCount: number;
-    triggerCount: number;
-}
-interface IntegrationRegistryConflict {
-    field: 'auth' | 'category';
-    values: Array<{
-        value: string;
-        sourceId: string;
-        connectorId: string;
-    }>;
-}
-interface IntegrationRegistryEntry {
-    canonicalId: string;
-    connector: IntegrationConnector;
-    aliases: string[];
-    supportTier: IntegrationSupportTier;
-    sources: IntegrationRegistrySourceRef[];
-    conflicts: IntegrationRegistryConflict[];
-}
-interface IntegrationRegistry {
-    entries: IntegrationRegistryEntry[];
-    connectors: IntegrationConnector[];
-    byId: Map<string, IntegrationRegistryEntry>;
-}
-interface IntegrationRegistrySummary {
-    totalEntries: number;
-    totalSources: number;
-    toolBindableEntries: number;
-    conflictEntries: number;
-    bySupportTier: Record<IntegrationSupportTier, number>;
-}
-interface ComposeIntegrationRegistryOptions {
-    aliases?: Record<string, string>;
-    sourcePrecedence?: Record<string, number>;
-}
-declare function buildDefaultIntegrationRegistry(options?: {
-    includeSpecs?: boolean;
-    includeTangleCatalog?: boolean;
-    tangleCatalogRuntimeExecutable?: boolean;
-    /** @deprecated Use includeTangleCatalog. */
-    includeActivepieces?: boolean;
-}): IntegrationRegistry;
-declare function composeIntegrationRegistry(sources: IntegrationCatalogSource[], options?: ComposeIntegrationRegistryOptions): IntegrationRegistry;
-declare function summarizeIntegrationRegistry(registry: IntegrationRegistry): IntegrationRegistrySummary;
-declare function canonicalConnectorId(id: string, aliases?: Record<string, string>): string;
-declare function inferIntegrationSupportTier(connector: IntegrationConnector): IntegrationSupportTier;
-
-type IntegrationAuditEventType = 'connection.created' | 'connection.updated' | 'connection.revoked' | 'grant.created' | 'grant.revoked' | 'capability.issued' | 'action.invoked' | 'action.failed' | 'trigger.subscribed' | 'trigger.received' | 'workflow.installed' | 'approval.requested' | 'approval.resolved' | 'healthcheck.completed';
-interface IntegrationAuditEvent {
-    id: string;
-    type: IntegrationAuditEventType;
-    occurredAt: string;
-    actor?: IntegrationActor;
-    connectionId?: string;
-    providerId?: string;
-    connectorId?: string;
-    action?: string;
-    risk?: IntegrationConnectorAction['risk'];
-    dataClass?: IntegrationDataClass;
-    ok?: boolean;
-    message?: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationAuditSink {
-    record(event: IntegrationAuditEvent): Promise<void> | void;
-}
-interface IntegrationAuditStore extends IntegrationAuditSink {
-    list(filter?: IntegrationAuditFilter): Promise<IntegrationAuditEvent[]> | IntegrationAuditEvent[];
-}
-interface IntegrationAuditFilter {
-    type?: IntegrationAuditEventType;
-    actor?: IntegrationActor;
-    connectionId?: string;
-    providerId?: string;
-    connectorId?: string;
-    action?: string;
-}
-declare class InMemoryIntegrationAuditStore implements IntegrationAuditStore {
-    private readonly events;
-    record(event: IntegrationAuditEvent): void;
-    list(filter?: IntegrationAuditFilter): IntegrationAuditEvent[];
-}
-declare function createIntegrationAuditEvent(input: Omit<IntegrationAuditEvent, 'id' | 'occurredAt'> & {
-    id?: string;
-    occurredAt?: string | Date;
-    now?: () => Date;
-}): IntegrationAuditEvent;
-declare function createAuditingActionGuard(options: {
-    sink: IntegrationAuditSink;
-    subject?: IntegrationActor;
-    now?: () => Date;
-    includeInputPreview?: boolean;
-}): IntegrationActionGuard;
-declare function sanitizeAuditConnection(connection: IntegrationConnection): Record<string, unknown>;
-
-type IntegrationApprovalStatus = 'pending' | 'approved' | 'denied' | 'expired';
-interface IntegrationApprovalRecord {
-    id: string;
-    request: IntegrationApprovalRequest;
-    status: IntegrationApprovalStatus;
-    requestedAt: string;
-    resolvedAt?: string;
-    resolvedBy?: IntegrationActor;
-    reason?: string;
-    expiresAt?: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationApprovalStore {
-    get(approvalId: string): Promise<IntegrationApprovalRecord | undefined> | IntegrationApprovalRecord | undefined;
-    put(record: IntegrationApprovalRecord): Promise<void> | void;
-    list(filter?: IntegrationApprovalFilter): Promise<IntegrationApprovalRecord[]> | IntegrationApprovalRecord[];
-}
-interface IntegrationApprovalFilter {
-    status?: IntegrationApprovalStatus;
-    connectionId?: string;
-    connectorId?: string;
-    action?: string;
-    actor?: IntegrationActor;
-}
-interface ApprovalBackedPolicyOptions {
-    base: IntegrationPolicyEngine;
-    store: IntegrationApprovalStore;
-    audit?: IntegrationAuditSink;
-    now?: () => Date;
-    approvalTtlMs?: number;
-}
-declare class InMemoryIntegrationApprovalStore implements IntegrationApprovalStore {
-    private readonly records;
-    get(approvalId: string): IntegrationApprovalRecord | undefined;
-    put(record: IntegrationApprovalRecord): void;
-    list(filter?: IntegrationApprovalFilter): IntegrationApprovalRecord[];
-}
-declare class ApprovalBackedPolicyEngine implements IntegrationPolicyEngine {
-    private readonly base;
-    private readonly store;
-    private readonly audit;
-    private readonly now;
-    private readonly approvalTtlMs;
-    constructor(options: ApprovalBackedPolicyOptions);
-    decide(ctx: IntegrationGuardContext & {
-        subject: IntegrationActor;
-    }): Promise<IntegrationPolicyDecision>;
-    private findApprovedRecord;
-}
-declare function createApprovalBackedPolicyEngine(options: ApprovalBackedPolicyOptions): ApprovalBackedPolicyEngine;
-declare function resolveIntegrationApproval(input: {
-    store: IntegrationApprovalStore;
-    approvalId: string;
-    approved: boolean;
-    resolvedBy: IntegrationActor;
-    reason?: string;
-    metadata?: Record<string, unknown>;
-    audit?: IntegrationAuditSink;
-    now?: () => Date;
-}): Promise<IntegrationApprovalRecord>;
-
-declare const CANONICAL_INTEGRATION_ACTIONS: {
-    readonly googleCalendarEventsList: "google-calendar.events.list";
-    readonly googleCalendarEventsCreate: "google-calendar.events.create";
-    readonly gmailMessagesSearch: "gmail.messages.search";
-    readonly gmailMessagesSend: "gmail.messages.send";
-    readonly googleDriveFilesSearch: "google-drive.files.search";
-    readonly googleDriveFilesRead: "google-drive.files.read";
-    readonly githubRepositoriesGet: "github.repositories.get";
-    readonly githubIssuesSearch: "github.issues.search";
-    readonly githubIssuesCreate: "github.issues.create";
-    readonly githubPullRequestsComment: "github.pull-requests.comment";
-    readonly slackChannelsList: "slack.channels.list";
-    readonly slackMessagesSearch: "slack.messages.search";
-    readonly slackMessagesPost: "slack.messages.post";
-    readonly providerHttpRequest: "provider.http.request";
-};
-type CanonicalIntegrationActionId = typeof CANONICAL_INTEGRATION_ACTIONS[keyof typeof CANONICAL_INTEGRATION_ACTIONS];
-interface CanonicalLaunchConnectorOptions {
-    providerId?: string;
-    includeProviderPassthrough?: boolean;
-}
-declare function buildCanonicalLaunchConnectors(options?: CanonicalLaunchConnectorOptions): IntegrationConnector[];
-declare function canonicalActionConnectorId(actionId: string): string | undefined;
-
-interface IntegrationToolDefinition {
-    name: string;
-    title: string;
-    description: string;
-    providerId: string;
-    connectorId: string;
-    connectorTitle: string;
-    category: IntegrationConnectorCategory;
-    action: IntegrationConnectorAction;
-    risk: IntegrationActionRisk;
-    dataClass: IntegrationDataClass;
-    requiredScopes: string[];
-    inputSchema?: unknown;
-    outputSchema?: unknown;
-    tags: string[];
-}
-interface IntegrationToolSearchFilters {
-    providerId?: string;
-    connectorId?: string;
-    category?: IntegrationConnectorCategory;
-    maxRisk?: IntegrationActionRisk;
-    dataClass?: IntegrationDataClass;
-    limit?: number;
-}
-interface IntegrationToolSearchResult {
-    tool: IntegrationToolDefinition;
-    score: number;
-    matched: string[];
-}
-interface McpToolDefinition {
-    name: string;
-    description: string;
-    inputSchema: unknown;
-}
-declare function integrationToolName(providerId: string, connectorId: string, actionId: string): string;
-declare function parseIntegrationToolName(name: string): {
-    providerId: string;
-    connectorId: string;
-    actionId: string;
-};
-declare function buildIntegrationToolCatalog(connectors: IntegrationConnector[]): IntegrationToolDefinition[];
-declare function searchIntegrationTools(catalog: IntegrationToolDefinition[], query: string, filters?: IntegrationToolSearchFilters): IntegrationToolSearchResult[];
-declare function toMcpTools(tools: IntegrationToolDefinition[]): McpToolDefinition[];
-
-type IntegrationRequirementMode = 'read' | 'write' | 'trigger';
-type IntegrationRequirementStatus = 'ready' | 'missing_connection' | 'not_executable' | 'unknown_connector';
-interface IntegrationRequirement {
-    id: string;
-    connectorId: string;
-    reason: string;
-    mode: IntegrationRequirementMode;
-    requiredActions?: string[];
-    requiredTriggers?: string[];
-    requiredScopes?: string[];
-    optional?: boolean;
-}
-interface IntegrationManifest {
-    id: string;
-    title?: string;
-    owner?: IntegrationActor;
-    requirements: IntegrationRequirement[];
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationRequirementResolution {
-    requirement: IntegrationRequirement;
-    status: IntegrationRequirementStatus;
-    connector?: IntegrationConnector;
-    registryEntry?: IntegrationRegistryEntry;
-    connection?: IntegrationConnection;
-    missingScopes: string[];
-    missingActions: string[];
-    missingTriggers: string[];
-    message: string;
-}
-interface IntegrationManifestResolution {
-    manifest: IntegrationManifest;
-    owner: IntegrationActor;
-    ready: IntegrationRequirementResolution[];
-    missing: IntegrationRequirementResolution[];
-    optionalMissing: IntegrationRequirementResolution[];
-}
-interface IntegrationGrant {
-    id: string;
-    manifestId: string;
-    requirementId: string;
-    owner: IntegrationActor;
-    grantee: IntegrationActor;
-    connectionId: string;
-    connectorId: string;
-    scopes: string[];
-    allowedActions: string[];
-    allowedTriggers: string[];
-    status: 'active' | 'revoked';
-    createdAt: string;
-    updatedAt: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationGrantStore {
-    get(grantId: string): Promise<IntegrationGrant | undefined> | IntegrationGrant | undefined;
-    put(grant: IntegrationGrant): Promise<void> | void;
-    listByManifest(manifestId: string, grantee?: IntegrationActor): Promise<IntegrationGrant[]> | IntegrationGrant[];
-    listByGrantee(grantee: IntegrationActor): Promise<IntegrationGrant[]> | IntegrationGrant[];
-    delete?(grantId: string): Promise<void> | void;
-}
-interface IntegrationCapabilityBinding {
-    requirementId: string;
-    connectorId: string;
-    connectionId: string;
-    grantId: string;
-    scopes: string[];
-    allowedActions: string[];
-    allowedTriggers: string[];
-    capability: IssuedIntegrationCapability;
-}
-interface IntegrationSandboxBundle {
-    manifestId: string;
-    subject: IntegrationActor;
-    capabilities: IntegrationCapabilityBinding[];
-    connectors: IntegrationConnector[];
-    tools: IntegrationToolDefinition[];
-    expiresAt: string;
-}
-interface IntegrationRuntimeHub {
-    listRegistry(): Promise<IntegrationRegistry> | IntegrationRegistry;
-    listConnections(owner: IntegrationActor): Promise<IntegrationConnection[]> | IntegrationConnection[];
-    issueCapability(input: {
-        subject: IntegrationActor;
-        connectionId: string;
-        scopes: string[];
-        allowedActions: string[];
-        ttlMs: number;
-        metadata?: Record<string, unknown>;
-    }): Promise<IssuedIntegrationCapability> | IssuedIntegrationCapability;
-}
-interface IntegrationRuntimeOptions {
-    hub: IntegrationRuntimeHub;
-    grants?: IntegrationGrantStore;
-    now?: () => Date;
-}
-declare class InMemoryIntegrationGrantStore implements IntegrationGrantStore {
-    private readonly grants;
-    get(grantId: string): IntegrationGrant | undefined;
-    put(grant: IntegrationGrant): void;
-    listByManifest(manifestId: string, grantee?: IntegrationActor): IntegrationGrant[];
-    listByGrantee(grantee: IntegrationActor): IntegrationGrant[];
-    delete(grantId: string): void;
-}
-declare class IntegrationRuntime {
-    private readonly hub;
-    private readonly grants;
-    private readonly now;
-    constructor(options: IntegrationRuntimeOptions);
-    registry(): Promise<IntegrationRegistry>;
-    resolveManifest(manifest: IntegrationManifest, owner: IntegrationActor): Promise<IntegrationManifestResolution>;
-    createGrants(input: {
-        manifest: IntegrationManifest;
-        owner: IntegrationActor;
-        grantee: IntegrationActor;
-        metadata?: Record<string, unknown>;
-    }): Promise<IntegrationGrant[]>;
-    buildSandboxBundle(input: {
-        manifestId: string;
-        subject: IntegrationActor;
-        ttlMs: number;
-        grantee?: IntegrationActor;
-    }): Promise<IntegrationSandboxBundle>;
-}
-declare function createIntegrationRuntime(options: IntegrationRuntimeOptions): IntegrationRuntime;
-
-declare const DEFAULT_INTEGRATION_BRIDGE_ENV = "TANGLE_INTEGRATION_BUNDLE";
-interface IntegrationBridgePayload {
-    version: 1;
-    manifestId: string;
-    subject: IntegrationSandboxBundle['subject'];
-    expiresAt: string;
-    tools: IntegrationBridgeToolBinding[];
-}
-interface IntegrationBridgeToolBinding {
-    name: string;
-    title: string;
-    connectorId: string;
-    connectionId: string;
-    action: string;
-    risk: string;
-    dataClass: string;
-    requiredScopes: string[];
-    capabilityToken: string;
-}
-declare function buildIntegrationBridgePayload(bundle: IntegrationSandboxBundle): IntegrationBridgePayload;
-declare function encodeIntegrationBridgePayload(payload: IntegrationBridgePayload): string;
-declare function decodeIntegrationBridgePayload(encoded: string): IntegrationBridgePayload;
-declare function buildIntegrationBridgeEnvironment(bundle: IntegrationSandboxBundle, options?: {
-    envVar?: string;
-}): Record<string, string>;
-declare function parseIntegrationBridgeEnvironment(env: Record<string, string | undefined>, options?: {
-    envVar?: string;
-}): IntegrationBridgePayload;
-declare function redactIntegrationBridgePayload(payload: IntegrationBridgePayload): IntegrationBridgePayload;
-
-interface TangleIntegrationsClientOptions {
-    endpoint: string;
-    bridge?: IntegrationBridgePayload;
-    env?: Record<string, string | undefined>;
-    envVar?: string;
-    fetchImpl?: typeof fetch;
-    getCapabilityToken?: (tool: IntegrationBridgeToolBinding) => string | Promise<string>;
-}
-interface TangleIntegrationInvokeInput<TInput = unknown> {
-    tool: string;
-    input?: TInput;
-    idempotencyKey?: string;
-    dryRun?: boolean;
-    metadata?: Record<string, unknown>;
-}
-interface TangleIntegrationInvokeResult<TOutput = unknown> {
-    status: 'ok' | 'approval_required' | 'failed';
-    action: string;
-    output?: TOutput;
-    approval?: unknown;
-    error?: string;
-    metadata?: Record<string, unknown>;
-}
-declare class TangleIntegrationsClient {
-    private readonly endpoint;
-    private readonly bridge;
-    private readonly fetchImpl;
-    private readonly getCapabilityToken;
-    constructor(options: TangleIntegrationsClientOptions);
-    tools(): IntegrationBridgeToolBinding[];
-    findTool(toolOrAction: string): IntegrationBridgeToolBinding;
-    invoke<TOutput = unknown, TInput = unknown>(input: TangleIntegrationInvokeInput<TInput>): Promise<TangleIntegrationInvokeResult<TOutput>>;
-}
-declare function createTangleIntegrationsClient(options: TangleIntegrationsClientOptions): TangleIntegrationsClient;
-
-interface ConsentSummary {
-    title: string;
-    body: string;
-    bullets: string[];
-    primaryAction: string;
-    risk: 'read' | 'write' | 'destructive';
-    connectorIds: string[];
-}
-interface RenderConsentOptions {
-    appName?: string;
-    connectors?: IntegrationConnector[];
-}
-declare function renderConsentSummary(manifestOrResolution: IntegrationManifest | IntegrationManifestResolution, options?: RenderConsentOptions): ConsentSummary;
-declare function renderApprovalCopy(input: {
-    appName: string;
-    connectorTitle: string;
-    action: IntegrationConnectorAction;
-    approvalId?: string;
-}): ConsentSummary;
-
-/**
- * Connector primitives — the contract a concrete first-party integration
- * (Google Calendar, HubSpot, Stripe, ...) implements. Lower level than the
- * hub-side `IntegrationProvider` interface from `../index.ts`: a single
- * `IntegrationProvider` typically wraps several connectors (e.g., a
- * "first-party" provider that lists all your shipped connectors as a
- * single catalog).
- *
- * Layering:
- *
- *   IntegrationHub                                — vendor-neutral facade (../index.ts)
- *     ↓
- *   IntegrationProvider                           — one per gateway or first-party provider
- *     ↓
- *   ConnectorAdapter (this file)                  — one per integration (Google Calendar, ...)
- *     ↓
- *   upstream HTTP API                             — vendor SDK / fetch / OAuth
- *
- * Three load-bearing decisions encoded here:
- *
- * 1. Capabilities are typed (`read` vs `mutation`). Every mutation MUST
- *    declare a CAS strategy. Conflict resolution is the SDK's job, not the
- *    connector's. `validateConnectorManifest()` rejects unsafe manifests
- *    before a connector is registered.
- *
- * 2. ConsistencyModel pins what the rest of the system can assume:
- *      authoritative → the source IS the truth (Calendar, payments)
- *      cache         → we mirror with TTL and may serve stale (price list)
- *      advisory      → informational only (FAQ doc)
- *    Agent planners can (and should) refuse to promise outcomes based on
- *    `cache`/`advisory` data without a live `authoritative` confirmation.
- *
- * 3. Capabilities surface to the calling agent's tool registry by
- *    transformation, not by hand-wiring. Adding a connector automatically
- *    expands the agent's toolbelt for that specific user without touching
- *    the prompt or runner.
- */
-/** Minimal JSON-schema shape used for capability arg validation. We
- *  intentionally don't pull `@types/json-schema` — most consumers already
- *  declare parameters as `Record<string, unknown>` and the
- *  shape is whatever the LLM SDK's structured-output expects. Keep the
- *  contract loose at the boundary; tighten via runtime zod where needed. */
-type CapabilityParameterSchema = Record<string, unknown>;
-/** What the rest of the system is allowed to assume about freshness. */
-type ConsistencyModel = 'authoritative' | 'cache' | 'advisory';
-/** Capability classes. `read` is safe to retry; `mutation` must go through
- *  MutationGuard (CAS + idempotency). `subscribe` is reserved for future
- *  push-driven sources (webhook callbacks) and is not yet wired. */
-type CapabilityClass = 'read' | 'mutation' | 'subscribe';
-/** Compare-and-swap strategy a mutation uses to detect conflicts. */
-type CASStrategy = 
-/** Upstream returns an etag/sequence on read, accepts If-Match on write
- *  (Google Calendar, GitHub, GDocs revision_id). The connector returns
- *  412 / Precondition Failed on conflict; the SDK maps to ResourceContention. */
-'etag-if-match'
-/** Upstream guarantees exactly-once-per-key (Stripe, idempotent webhooks).
- *  The SDK passes the idempotency key through; no etag check. */
- | 'native-idempotency'
-/** No upstream concurrency control. Connector MUST do read-then-write
- *  and verify nothing changed in-between (best-effort). Suitable only
- *  for low-contention single-user resources; rejected for any
- *  consistencyModel='authoritative' write that may race. */
- | 'optimistic-read-verify'
-/** Source is not contended (e.g. logging, telemetry). Mutations are
- *  fire-and-forget. Marks the capability as not eligible for
- *  authoritative writes. */
- | 'none';
-interface CapabilityRead {
-    name: string;
-    class: 'read';
-    description: string;
-    /** JSON-schema for the tool args the agent passes when invoking. */
-    parameters: CapabilityParameterSchema;
-    /** Optional: declare which scopes (per the connector manifest) this
-     *  capability requires. The capability is hidden from the agent's
-     *  tool registry if the user's grant didn't include them. */
-    requiredScopes?: string[];
-}
-interface CapabilityMutation {
-    name: string;
-    class: 'mutation';
-    description: string;
-    parameters: CapabilityParameterSchema;
-    /** Mandatory: how does the connector guarantee at-most-once + conflict-detect? */
-    cas: CASStrategy;
-    /** True for capabilities that affect resources outside the calling user
-     *  (e.g. booking against a shared calendar, charging a card). The agent's
-     *  planner treats these specially: requires explicit caller confirmation
-     *  before the call. */
-    externalEffect: boolean;
-    requiredScopes?: string[];
-}
-type Capability = CapabilityRead | CapabilityMutation;
-/** OAuth2 scope catalog the user has granted us, plus arbitrary metadata
- *  the connector pinned at connect-time (calendar id, sheet id, webhook
- *  url, …). `metadata` MUST NOT contain secrets — those go in the
- *  encrypted credentials envelope. */
-interface DataSourceMetadata {
-    scopes: string[];
-    [key: string]: unknown;
-}
-/** A connected, authenticated, ready-to-call data source for a project.
- *  Persistence shape mirrors the product's connection/source row but normalized — the
- *  encrypted credentials envelope is decrypted at hand-out time and held
- *  in memory only for the duration of the call. */
-interface ResolvedDataSource {
-    id: string;
-    projectId: string;
-    publishedAgentId: string | null;
-    kind: string;
-    label: string;
-    consistencyModel: ConsistencyModel;
-    scopes: string[];
-    metadata: Record<string, unknown>;
-    /** Unwrapped credentials handed to the connector at call-time. Never
-     *  persisted in this shape; never logged. */
-    credentials: ConnectorCredentials;
-    status: 'active' | 'revoked' | 'error';
-}
-/** Discriminated union of credential shapes. Connectors that need new
- *  shapes extend this union — `kind` is sealed via the tagged pattern so
- *  TypeScript catches an exhaustiveness gap at compile time. */
-type ConnectorCredentials = {
-    kind: 'oauth2';
-    accessToken: string;
-    refreshToken?: string;
-    expiresAt?: number;
-} | {
-    kind: 'api-key';
-    apiKey: string;
-} | {
-    kind: 'custom';
-    values: Record<string, unknown>;
-} | {
-    kind: 'hmac';
-    secret: string;
-} | {
-    kind: 'none';
-};
-/** Result of a read capability invocation. */
-interface CapabilityReadResult {
-    /** Free-form payload — the connector's data shape. The agent receives
-     *  this as the tool result; planners consume it via JSON-shape contract
-     *  declared in the capability's `parameters` (output schema). */
-    data: unknown;
-    /** Optional etag/sequence the caller can reuse for a subsequent CAS
-     *  mutation. */
-    etag?: string;
-    /** When this read happened (UTC ms since epoch). */
-    fetchedAt: number;
-}
-/** Result of a mutation capability invocation. Either committed (with the
- *  resulting etag/sequence so the caller can chain mutations), or
- *  contended (the upstream rejected with a state mismatch — the agent
- *  should re-read and retry, or surface alternatives to the caller). */
-type CapabilityMutationResult = {
-    status: 'committed';
-    data: unknown;
-    etagAfter?: string;
-    committedAt: number;
-    /** True iff this commit was returned from the idempotency store
-     *  rather than executed against upstream. The caller can use this
-     *  to suppress confirmation messages on retry. */
-    idempotentReplay: boolean;
-} | {
-    status: 'conflict';
-    /** Best-effort alternative options the upstream surfaced (e.g.,
-     *  next-available calendar slots after a booking conflict). */
-    alternatives: unknown[];
-    /** The current authoritative state, if the connector could re-read
-     *  cheaply. */
-    currentState?: unknown;
-    message: string;
-} | {
-    status: 'rate-limited';
-    /** Wall-clock ms the caller should wait before retrying. The SDK
-     *  computes this from the bucket's refill schedule so the agent
-     *  doesn't have to guess. */
-    retryAfterMs: number;
-    message: string;
-};
-/** Inputs the SDK passes into the connector's executeRead / executeMutation. */
-interface ConnectorInvocation {
-    source: ResolvedDataSource;
-    capabilityName: string;
-    args: Record<string, unknown>;
-    /** Idempotency key the caller (or the SDK's defaulting policy) supplied.
-     *  Always present at the connector boundary — the SDK manufactures one
-     *  if the agent didn't pass one. */
-    idempotencyKey: string;
-    /** Optional caller-supplied etag the connector should send as If-Match. */
-    expectedEtag?: string;
-    /** Product/session id (if any) for forensic logging. */
-    callSessionId?: string;
-}
-/** A single inbound event extracted from a push payload. The webhook
- *  receiver persists one `InboundEvent` row per entry the connector returns. */
-interface InboundEvent {
-    eventType: string;
-    providerEventId?: string;
-    payload: Record<string, unknown>;
-}
-/** Adapter response from an inbound-webhook dispatch. The receiver persists
- *  every `events[]` entry, then either honors the connector's `response`
- *  override (Slack `url_verification` echo, provider-specific 2xx body) or
- *  defaults to `{status: 200, body: {received: true, count: events.length}}`. */
-interface EventHandlerResult {
-    events: InboundEvent[];
-    /** Optional: how to respond to the provider. Stripe wants 200 within
-     *  30s; Slack wants the challenge param echoed. */
-    response?: {
-        status: number;
-        body: unknown;
-        headers?: Record<string, string>;
-    };
-}
-/**
- * Connector adapter — one per integration kind. Stateless. The SDK holds
- * the persistence + crypto + mutation-guard concerns; the adapter only
- * knows how to talk to its upstream.
- */
-interface ConnectorAdapter {
-    /** Manifest entry the registry uses to render UI + validate args. */
-    manifest: ConnectorManifest;
-    /** Read invocation. Required when manifest.capabilities contains reads.
-     *  Should return whatever shape the capability declared
-     *  in its parameters output schema. */
-    executeRead?(inv: ConnectorInvocation): Promise<CapabilityReadResult>;
-    /** Mutation invocation. Required when manifest.capabilities contains mutations.
-     *  Throws ResourceContention on a CAS miss; throws
-     *  any other Error for upstream failures. The MutationGuard wraps this
-     *  with idempotency-key short-circuit + audit logging — adapters do
-     *  NOT manage their own dedup. */
-    executeMutation?(inv: ConnectorInvocation): Promise<CapabilityMutationResult>;
-    /** Inbound webhook signature verifier. Called BEFORE handleInboundEvent.
-     *  MUST use constant-time comparison (`crypto.timingSafeEqual`) for any
-     *  HMAC check. The receiver returns 401 on `valid=false` without invoking
-     *  handleInboundEvent. Optional: connectors that don't accept push events
-     *  omit this method and the receiver returns 405 for the kind. */
-    verifySignature?(input: {
-        rawBody: string;
-        headers: Record<string, string | string[] | undefined>;
-        source: ResolvedDataSource;
-    }): {
-        valid: boolean;
-        reason?: string;
-    };
-    /** Inbound webhook dispatch. Called AFTER verifySignature passes. The
-     *  adapter parses the provider payload and emits zero-or-more
-     *  `InboundEvent` rows; the receiver persists them as one row each (modulo
-     *  the (dataSourceId, providerEventId) dedup unique). The optional
-     *  `response` overrides the receiver's default 200 (Slack `url_verification`
-     *  needs to echo the challenge in the body to pass Slack's app-config check). */
-    handleInboundEvent?(input: {
-        source: ResolvedDataSource;
-        rawBody: string;
-        headers: Record<string, string | string[] | undefined>;
-    }): Promise<EventHandlerResult>;
-    /** OAuth callback handler — exchanges the auth code for tokens, returns
-     *  the credentials envelope + scopes + metadata. Only present for
-     *  oauth2-style adapters. */
-    exchangeOAuth?(input: {
-        code: string;
-        state: string;
-        codeVerifier: string;
-        redirectUri: string;
-    }): Promise<{
-        credentials: ConnectorCredentials;
-        scopes: string[];
-        metadata: Record<string, unknown>;
-    }>;
-    /** Refresh access token. Only required for oauth2 adapters with
-     *  short-lived access tokens. */
-    refreshToken?(input: ConnectorCredentials): Promise<ConnectorCredentials>;
-    /** Health check — invoked when the user clicks "Test connection" in the
-     *  UI. Should perform the cheapest possible read that proves the grant
-     *  is still valid. Returns `{ok: false, reason}` rather than throwing
-     *  for the common case (token expired, scope missing). */
-    test(source: ResolvedDataSource): Promise<{
-        ok: true;
-    } | {
-        ok: false;
-        reason: string;
-    }>;
-}
-/** Static manifest a connector module exports. Drives the UI catalog,
- *  scope display, capability discovery for the agent's tool registry. */
-interface ConnectorManifest {
-    /** Stable kind id used as the foreign key in DataSource.kind. */
-    kind: string;
-    /** Human label shown in the UI catalog. */
-    displayName: string;
-    /** One-paragraph description shown next to the connect button. */
-    description: string;
-    /** Auth shape this connector requires. */
-    auth: AuthSpec;
-    /** Capability catalog — the agent's tool registry derives ToolDefinition
-     *  entries from this list at request time. */
-    capabilities: Capability[];
-    /** ConsistencyModel default for this kind — overridable per DataSource
-     *  if a particular instance is special (e.g., a user marks a sheet as
-     *  `cache` because they refresh it nightly). */
-    defaultConsistencyModel: ConsistencyModel;
-    /** Connector category for UI grouping. */
-    category: 'calendar' | 'spreadsheet' | 'crm' | 'doc' | 'webhook' | 'storage' | 'comms' | 'commerce' | 'other';
-    /** Optional icon URL or named icon. */
-    icon?: string;
-    /** Optional per-kind rate-limit budget. The SDK enforces it inside
-     *  `executeGuardedMutation` and the read path of `/invoke`. Omit to
-     *  leave the connector unrestricted. */
-    rateLimit?: RateLimitSpec;
-}
-/** Token-bucket budget the SDK enforces against the connector's upstream.
- *  We meter on OUR side rather than letting the upstream reject so a
- *  chatty agent can't burn quota that's shared across customers (almost
- *  every OAuth client is). */
-interface RateLimitSpec {
-    /** Max requests per window. */
-    requests: number;
-    /** Window in ms. */
-    windowMs: number;
-    /** Whether to apply across all DataSources sharing the same OAuth
-     *  client (true; default), or per-DataSource (false). The former
-     *  matches how upstreams meter (per-app), so almost always pick true. */
-    scope?: 'oauth-client' | 'data-source';
-}
-type AuthSpec = {
-    kind: 'oauth2';
-    /** Authorization endpoint URL. */
-    authorizationUrl: string;
-    /** Token endpoint URL. */
-    tokenUrl: string;
-    /** Scopes requested in the authorization grant. The user UI shows
-     *  these so the customer knows what's being shared. */
-    scopes: string[];
-    /** Whether the connector supports incremental authorization (Google
-     *  does; many don't). */
-    incremental?: boolean;
-    /** Env-var name holding the OAuth client_id. */
-    clientIdEnv: string;
-    /** Env-var name holding the OAuth client_secret. */
-    clientSecretEnv: string;
-    /** Optional extra params attached to the authorization URL (e.g.,
-     *  Google's `access_type=offline&prompt=consent` to obtain refresh
-     *  tokens). */
-    extraAuthParams?: Record<string, string>;
-} | {
-    kind: 'api-key';
-    /** UI hint shown when collecting the key. */
-    hint: string;
-} | {
-    kind: 'hmac';
-} | {
-    kind: 'none';
-};
-/** Thrown by `executeMutation` when upstream rejects on CAS — caught and
- *  rewrapped by MutationGuard. */
-declare class ResourceContention extends Error {
-    readonly alternatives: unknown[];
-    readonly currentState?: unknown | undefined;
-    readonly name = "ResourceContention";
-    constructor(message: string, alternatives?: unknown[], currentState?: unknown | undefined);
-}
-/** Thrown when the connector finds the user's grant has been revoked or
- *  the access token is no longer valid AND refresh failed. Surfaces to
- *  the UI as "Reconnect required". */
-declare class CredentialsExpired extends Error {
-    readonly dataSourceId: string;
-    readonly name = "CredentialsExpired";
-    constructor(message: string, dataSourceId: string);
-}
-interface ConnectorManifestValidationIssue {
-    path: string;
-    message: string;
-}
-interface ConnectorManifestValidationResult {
-    ok: boolean;
-    issues: ConnectorManifestValidationIssue[];
-}
-/** Validate the static connector manifest before a provider registers it.
- *  This catches the expensive mistakes early: duplicate capability names,
- *  mutation capabilities without CAS, authoritative fire-and-forget writes,
- *  and invalid rate-limit specs. */
-declare function validateConnectorManifest(manifest: ConnectorManifest): ConnectorManifestValidationResult;
-declare function assertValidConnectorManifest(manifest: ConnectorManifest): void;
-
-interface ConnectorAdapterProviderOptions {
-    id?: string;
-    kind?: IntegrationProviderKind;
-    adapters: ConnectorAdapter[];
-    resolveDataSource: (connection: IntegrationConnection) => Promise<ResolvedDataSource> | ResolvedDataSource;
-    now?: () => Date;
-}
-declare function createConnectorAdapterProvider(options: ConnectorAdapterProviderOptions): IntegrationProvider;
-declare function adapterManifestsToConnectors(adapters: ConnectorAdapter[], providerId?: string): IntegrationConnector[];
-declare function createConnectorAdapterCatalogSource(options: {
-    id?: string;
-    providerId?: string;
-    adapters: ConnectorAdapter[];
-    precedence?: number;
-}): IntegrationCatalogSource;
-declare function manifestToConnector(providerId: string, adapter: ConnectorAdapter): IntegrationConnector;
-
-interface IntegrationSecretStore {
-    get(ref: SecretRef): Promise<ConnectorCredentials | undefined> | ConnectorCredentials | undefined;
-    put(ref: SecretRef, credentials: ConnectorCredentials): Promise<void> | void;
-    delete?(ref: SecretRef): Promise<void> | void;
-}
-interface ConnectionCredentialResolverOptions {
-    secrets: IntegrationSecretStore;
-    connections?: IntegrationConnectionStore;
-    adapters?: ConnectorAdapter[];
-    now?: () => Date;
-    markConnectionError?: (connection: IntegrationConnection, error: Error) => Promise<void> | void;
-}
-declare class InMemoryIntegrationSecretStore implements IntegrationSecretStore {
-    private readonly secrets;
-    get(ref: SecretRef): ConnectorCredentials | undefined;
-    put(ref: SecretRef, credentials: ConnectorCredentials): void;
-    delete(ref: SecretRef): void;
-}
-declare function createConnectionCredentialResolver(options: ConnectionCredentialResolverOptions): (connection: IntegrationConnection) => Promise<ResolvedDataSource>;
-declare function resolveConnectionCredentials(input: IntegrationConnection, options: ConnectionCredentialResolverOptions): Promise<ConnectorCredentials>;
-declare function createCredentialBackedAdapterProvider(options: Omit<ConnectorAdapterProviderOptions, 'resolveDataSource'> & ConnectionCredentialResolverOptions): IntegrationProvider;
-declare function revokeConnection(input: {
-    connection: IntegrationConnection;
-    connections?: IntegrationConnectionStore;
-    secrets?: IntegrationSecretStore;
-    now?: () => Date;
-}): Promise<IntegrationConnection>;
-
-type IntegrationErrorCode = 'missing_connection' | 'missing_grant' | 'approval_required' | 'approval_denied' | 'connection_revoked' | 'connection_expired' | 'scope_missing' | 'action_denied' | 'action_not_found' | 'trigger_not_found' | 'provider_rate_limited' | 'provider_auth_failed' | 'provider_unavailable' | 'provider_error' | 'capability_expired' | 'capability_invalid' | 'manifest_invalid' | 'passthrough_disabled' | 'input_invalid' | 'unknown';
-interface IntegrationUserAction {
-    type: 'connect' | 'reconnect' | 'approve' | 'retry' | 'contact_support' | 'change_request';
-    label: string;
-    connectorId?: string;
-    approvalId?: string;
-}
-declare class IntegrationRuntimeError extends Error {
-    readonly code: IntegrationErrorCode;
-    readonly status: number;
-    readonly userAction?: IntegrationUserAction;
-    readonly metadata?: Record<string, unknown>;
-    constructor(input: {
-        code: IntegrationErrorCode;
-        message: string;
-        status?: number;
-        userAction?: IntegrationUserAction;
-        metadata?: Record<string, unknown>;
-    });
-}
-interface NormalizedIntegrationError {
-    ok: false;
-    code: IntegrationErrorCode;
-    message: string;
-    status: number;
-    userAction?: IntegrationUserAction;
-    metadata?: Record<string, unknown>;
-}
-declare function normalizeIntegrationError(error: unknown): NormalizedIntegrationError;
-declare function statusForCode(code: IntegrationErrorCode): number;
-
-interface IntegrationWorkflowDefinition {
-    id: string;
-    title?: string;
-    manifest: IntegrationManifest;
-    trigger: {
-        requirementId: string;
-        triggerId: string;
-        targetUrl?: string;
-    };
-    metadata?: Record<string, unknown>;
-}
-interface InstalledIntegrationWorkflow {
-    id: string;
-    workflowId: string;
-    manifestId: string;
-    owner: IntegrationActor;
-    grantee: IntegrationActor;
-    triggerGrantId: string;
-    subscription: IntegrationTriggerSubscription;
-    status: 'active' | 'paused' | 'error';
-    createdAt: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationWorkflowStore {
-    put(workflow: InstalledIntegrationWorkflow): Promise<void> | void;
-    get(id: string): Promise<InstalledIntegrationWorkflow | undefined> | InstalledIntegrationWorkflow | undefined;
-    list(): Promise<InstalledIntegrationWorkflow[]> | InstalledIntegrationWorkflow[];
-    listByWorkflow(workflowId: string): Promise<InstalledIntegrationWorkflow[]> | InstalledIntegrationWorkflow[];
-    listByOwner(owner: IntegrationActor): Promise<InstalledIntegrationWorkflow[]> | InstalledIntegrationWorkflow[];
-}
-interface IntegrationWorkflowRuntimeHub {
-    subscribeTrigger(connectionId: string, trigger: string, targetUrl?: string): Promise<IntegrationTriggerSubscription> | IntegrationTriggerSubscription;
-}
-interface IntegrationWorkflowRuntimeOptions {
-    runtime: IntegrationRuntime;
-    hub: IntegrationWorkflowRuntimeHub;
-    grants: IntegrationGrantStore;
-    store?: IntegrationWorkflowStore;
-    now?: () => Date;
-}
-declare class InMemoryIntegrationWorkflowStore implements IntegrationWorkflowStore {
-    private readonly workflows;
-    put(workflow: InstalledIntegrationWorkflow): void;
-    get(id: string): InstalledIntegrationWorkflow | undefined;
-    list(): InstalledIntegrationWorkflow[];
-    listByWorkflow(workflowId: string): InstalledIntegrationWorkflow[];
-    listByOwner(owner: IntegrationActor): InstalledIntegrationWorkflow[];
-}
-declare class IntegrationWorkflowRuntime {
-    private readonly runtime;
-    private readonly hub;
-    private readonly grants;
-    private readonly store;
-    private readonly now;
-    constructor(options: IntegrationWorkflowRuntimeOptions);
-    install(input: {
-        workflow: IntegrationWorkflowDefinition;
-        owner: IntegrationActor;
-        grantee: IntegrationActor;
-    }): Promise<InstalledIntegrationWorkflow>;
-    dispatchEvent<T = unknown>(event: IntegrationTriggerEvent<T>, handler: (input: {
-        event: IntegrationTriggerEvent<T>;
-        workflows: InstalledIntegrationWorkflow[];
-    }) => Promise<void> | void): Promise<{
-        matched: InstalledIntegrationWorkflow[];
-    }>;
-}
-declare function createIntegrationWorkflowRuntime(options: IntegrationWorkflowRuntimeOptions): IntegrationWorkflowRuntime;
-
-interface StoredIntegrationEvent {
-    id: string;
-    sourceId: string;
-    connectorId: string;
-    eventType: string;
-    providerEventId?: string;
-    receivedAt: string;
-    payload: Record<string, unknown>;
-    dispatchedAt?: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationEventStore {
-    put(event: StoredIntegrationEvent): Promise<void> | void;
-    hasProviderEvent(sourceId: string, providerEventId: string): Promise<boolean> | boolean;
-    list(): Promise<StoredIntegrationEvent[]> | StoredIntegrationEvent[];
-}
-interface IntegrationWebhookReceiverResult {
-    status: number;
-    body: unknown;
-    headers?: Record<string, string>;
-    received: StoredIntegrationEvent[];
-    duplicates: StoredIntegrationEvent[];
-}
-declare class InMemoryIntegrationEventStore implements IntegrationEventStore {
-    private readonly events;
-    private readonly providerIds;
-    put(event: StoredIntegrationEvent): void;
-    hasProviderEvent(sourceId: string, providerEventId: string): boolean;
-    list(): StoredIntegrationEvent[];
-}
-declare function receiveIntegrationWebhook(input: {
-    adapter: ConnectorAdapter;
-    source: ResolvedDataSource;
-    rawBody: string;
-    headers: Record<string, string | string[] | undefined>;
-    store: IntegrationEventStore;
-    workflowRuntime?: IntegrationWorkflowRuntime;
-    now?: () => Date;
-}): Promise<IntegrationWebhookReceiverResult>;
-declare function storedEventToTriggerEvent(event: StoredIntegrationEvent, source: ResolvedDataSource): IntegrationTriggerEvent;
-
-interface IntegrationIdempotencyRecord {
-    key: string;
-    requestHash: string;
-    result: IntegrationActionResult;
-    createdAt: string;
-}
-interface IntegrationIdempotencyStore {
-    get(key: string): Promise<IntegrationIdempotencyRecord | undefined> | IntegrationIdempotencyRecord | undefined;
-    put(record: IntegrationIdempotencyRecord): Promise<void> | void;
-}
-interface IntegrationRateLimitDecision {
-    allowed: boolean;
-    retryAfterMs?: number;
-    reason?: string;
-}
-interface IntegrationRateLimiter {
-    check(ctx: IntegrationGuardContext): Promise<IntegrationRateLimitDecision> | IntegrationRateLimitDecision;
-}
-declare class InMemoryIntegrationIdempotencyStore implements IntegrationIdempotencyStore {
-    private readonly records;
-    get(key: string): IntegrationIdempotencyRecord | undefined;
-    put(record: IntegrationIdempotencyRecord): void;
-}
-declare class DefaultIntegrationActionGuard implements IntegrationActionGuard {
-    private readonly idempotency;
-    private readonly audit;
-    private readonly rateLimiter;
-    private readonly now;
-    constructor(options?: {
-        idempotency?: IntegrationIdempotencyStore;
-        audit?: IntegrationAuditSink;
-        rateLimiter?: IntegrationRateLimiter;
-        now?: () => Date;
-    });
-    invokeAction(ctx: IntegrationGuardContext, proceed: () => Promise<IntegrationActionResult>): Promise<IntegrationActionResult>;
-    private writeIdempotency;
-}
-declare function createDefaultIntegrationActionGuard(options?: ConstructorParameters<typeof DefaultIntegrationActionGuard>[0]): DefaultIntegrationActionGuard;
-
-type IntegrationHealthcheckStatus = 'healthy' | 'degraded' | 'unhealthy' | 'unknown';
-interface IntegrationHealthcheckCheck {
-    id: string;
-    status: IntegrationHealthcheckStatus;
-    message: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationHealthcheckResult {
-    connectionId: string;
-    providerId: string;
-    connectorId: string;
-    status: IntegrationHealthcheckStatus;
-    checkedAt: string;
-    checks: IntegrationHealthcheckCheck[];
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationHealthcheckStore {
-    put(result: IntegrationHealthcheckResult): Promise<void> | void;
-    get(connectionId: string): Promise<IntegrationHealthcheckResult | undefined> | IntegrationHealthcheckResult | undefined;
-    list(): Promise<IntegrationHealthcheckResult[]> | IntegrationHealthcheckResult[];
-}
-declare class InMemoryIntegrationHealthcheckStore implements IntegrationHealthcheckStore {
-    private readonly results;
-    put(result: IntegrationHealthcheckResult): void;
-    get(connectionId: string): IntegrationHealthcheckResult | undefined;
-    list(): IntegrationHealthcheckResult[];
-}
-declare function runIntegrationHealthcheck(input: {
-    connection: IntegrationConnection;
-    connector?: IntegrationConnector;
-    registry?: IntegrationRegistry;
-    test?: (connection: IntegrationConnection, connector: IntegrationConnector) => Promise<IntegrationActionResult | boolean> | IntegrationActionResult | boolean;
-    audit?: IntegrationAuditSink;
-    now?: () => Date;
-}): Promise<IntegrationHealthcheckResult>;
-declare function runIntegrationHealthchecks(input: {
-    connections: IntegrationConnection[];
-    registry?: IntegrationRegistry;
-    store?: IntegrationHealthcheckStore;
-    audit?: IntegrationAuditSink;
-    now?: () => Date;
-    test?: (connection: IntegrationConnection, connector: IntegrationConnector) => Promise<IntegrationActionResult | boolean> | IntegrationActionResult | boolean;
-}): Promise<IntegrationHealthcheckResult[]>;
-declare function healthcheckRequest(action?: string): IntegrationActionRequest;
-
-interface ManifestValidationIssue {
-    path: string;
-    message: string;
-}
-interface ManifestValidationResult {
-    ok: boolean;
-    issues: ManifestValidationIssue[];
-}
-interface InferIntegrationRequirementsOptions {
-    manifestId: string;
-    title?: string;
-    tools: Array<string | {
-        action: string;
-        reason?: string;
-        mode?: IntegrationRequirementMode;
-        connectorId?: string;
-        scopes?: string[];
-    }>;
-    metadata?: Record<string, unknown>;
-}
-interface MissingRequirementExplanation {
-    requirementId: string;
-    connectorId: string;
-    status: string;
-    message: string;
-    userAction: 'connect' | 'enable' | 'ignore_optional';
-}
-declare function validateIntegrationManifest(manifest: IntegrationManifest): ManifestValidationResult;
-declare function assertValidIntegrationManifest(manifest: IntegrationManifest): void;
-declare function inferIntegrationManifestFromTools(options: InferIntegrationRequirementsOptions): IntegrationManifest;
-declare function explainMissingRequirements(resolution: IntegrationManifestResolution): MissingRequirementExplanation[];
-declare function calendarExercisePlannerManifest(id?: string): IntegrationManifest;
-
-interface ProviderHttpRequestInput {
-    method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
-    path: string;
-    query?: Record<string, string | number | boolean | undefined>;
-    headers?: Record<string, string>;
-    body?: unknown;
-}
-interface ProviderPassthroughPolicy {
-    enabled: boolean;
-    allowedMethods?: ProviderHttpRequestInput['method'][];
-    allowedPathPrefixes?: string[];
-    maxBodyBytes?: number;
-}
-declare const PROVIDER_PASSTHROUGH_ACTION: "provider.http.request";
-declare function validateProviderPassthroughRequest(input: ProviderHttpRequestInput, policy: ProviderPassthroughPolicy): void;
-
-type IntegrationPolicyEffect = 'allow' | 'require_approval' | 'deny';
-interface IntegrationPolicyRule {
-    id: string;
-    effect: IntegrationPolicyEffect;
-    reason: string;
-    providerId?: string;
-    connectorId?: string;
-    action?: string;
-    maxRisk?: IntegrationActionRisk;
-    risk?: IntegrationActionRisk;
-    dataClass?: IntegrationDataClass;
-}
-interface StaticIntegrationPolicyOptions {
-    rules?: IntegrationPolicyRule[];
-    defaultReadEffect?: IntegrationPolicyEffect;
-    defaultWriteEffect?: IntegrationPolicyEffect;
-    defaultDestructiveEffect?: IntegrationPolicyEffect;
-    now?: () => Date;
-}
-interface IntegrationApprovalResolution {
-    approvalId: string;
-    approved: boolean;
-    resolvedBy: string;
-    resolvedAt: string;
-    reason?: string;
-    metadata?: Record<string, unknown>;
-}
-declare class StaticIntegrationPolicyEngine implements IntegrationPolicyEngine {
-    private readonly rules;
-    private readonly defaultReadEffect;
-    private readonly defaultWriteEffect;
-    private readonly defaultDestructiveEffect;
-    private readonly now;
-    constructor(options?: StaticIntegrationPolicyOptions);
-    decide(ctx: IntegrationGuardContext & {
-        subject: {
-            type: string;
-            id: string;
-        };
-    }): IntegrationPolicyDecision;
-    private defaultEffect;
-}
-declare function createDefaultIntegrationPolicyEngine(options?: Omit<StaticIntegrationPolicyOptions, 'rules'>): StaticIntegrationPolicyEngine;
-declare function buildApprovalRequest(ctx: IntegrationGuardContext & {
-    subject: {
-        type: string;
-        id: string;
-    };
-}, reason: string, requestedAt: Date): IntegrationApprovalRequest;
-declare function redactApprovalRequest(request: IntegrationApprovalRequest): IntegrationApprovalRequest;
-
-interface PlatformIntegrationPolicyPresetOptions extends Omit<StaticIntegrationPolicyOptions, 'defaultReadEffect' | 'defaultWriteEffect' | 'defaultDestructiveEffect'> {
-    allowWritesWithoutApproval?: boolean;
-    allowDestructiveActions?: boolean;
-    allowProviderPassthrough?: boolean;
-}
-declare function createPlatformIntegrationPolicyPreset(options?: PlatformIntegrationPolicyPresetOptions): StaticIntegrationPolicyEngine;
-
-/**
- * Generic OAuth2 helper used by every oauth-shaped connector (Google
- * Calendar, Sheets, Drive, HubSpot, Salesforce, Zoom, ...).
- *
- * Everything PKCE-aware. Opaque-state CSRF guard. Refresh-token aware.
- * No connector-specific logic lives here — adapters hand a `clientId`,
- * `clientSecret`, `tokenUrl`, optional `extraAuthParams` and the rest is
- * mechanical.
- *
- * State and code_verifier are kept in a short-TTL flow store keyed by the
- * opaque `state` we round-trip through the provider. The default store is
- * in-memory for local/dev and tests. Production deployments should inject a
- * durable store backed by KV/Redis/D1/etc. so callbacks can land on any worker.
- */
-interface PendingOAuthFlow {
-    /** code_verifier for PKCE. */
-    codeVerifier: string;
-    /** Opaque-state value also returned in the OAuth redirect. */
-    state: string;
-    /** Project the user is connecting under. */
-    projectId: string;
-    /** Connector kind (e.g. 'google-calendar'). */
-    kind: string;
-    /** Operator-supplied label that becomes DataSource.label. */
-    label: string;
-    /** When we drop the entry. */
-    expiresAt: number;
-    /** The redirectUri we used in the start step — must match exactly on
-     *  the callback exchange. */
-    redirectUri: string;
-}
-interface OAuthFlowStore {
-    put(state: string, flow: PendingOAuthFlow): Promise<void> | void;
-    consume(state: string): Promise<PendingOAuthFlow | undefined> | PendingOAuthFlow | undefined;
-    sweep?(now: number): Promise<void> | void;
-    clear?(): Promise<void> | void;
-}
-declare class InMemoryOAuthFlowStore implements OAuthFlowStore {
-    private readonly pendingFlows;
-    put(state: string, flow: PendingOAuthFlow): void;
-    consume(state: string): PendingOAuthFlow | undefined;
-    sweep(now: number): void;
-    clear(): void;
-}
-interface StartOAuthInput {
-    projectId: string;
-    kind: string;
-    label: string;
-    authorizationUrl: string;
-    scopes: string[];
-    clientId: string;
-    redirectUri: string;
-    /** Optional extra query params; Google needs `access_type=offline` and
-     *  `prompt=consent` to issue refresh tokens reliably. */
-    extraAuthParams?: Record<string, string>;
-    /** Optional flow store. Use a durable store in distributed production
-     *  runtimes; omitted means local in-memory storage. */
-    store?: OAuthFlowStore;
-    /** Override clock for tests. */
-    now?: number;
-}
-interface StartOAuthOutput {
-    /** URL the SPA should redirect the user to. */
-    authorizationUrl: string;
-    /** State token — caller stashes this in localStorage to verify on
-     *  callback. */
-    state: string;
-}
-/** Build the authorization URL + state. SPA navigates the user there;
- *  user consents; provider redirects back to redirectUri with `code` +
- *  `state`. The caller's callback then invokes `consumePendingFlow`. */
-declare function startOAuthFlow(input: StartOAuthInput): StartOAuthOutput;
-/** Look up + remove the pending flow record. Throws if state is unknown
- *  or expired (CSRF guard / replay protection). */
-declare function consumePendingFlow(state: string, store?: OAuthFlowStore): Promise<PendingOAuthFlow>;
-interface ExchangeCodeInput {
-    tokenUrl: string;
-    clientId: string;
-    clientSecret: string;
-    code: string;
-    codeVerifier: string;
-    redirectUri: string;
-    fetchImpl?: typeof fetch;
-    signal?: AbortSignal;
-}
-interface OAuthTokens {
-    accessToken: string;
-    refreshToken?: string;
-    expiresIn?: number;
-    scope?: string;
-    tokenType?: string;
-}
-/** POST authorization code → token endpoint. Provider-agnostic; if a
- *  provider returns a non-standard JSON shape, the adapter wraps this
- *  call rather than reaching into the helper. */
-declare function exchangeAuthorizationCode(input: ExchangeCodeInput): Promise<OAuthTokens>;
-interface RefreshInput {
-    tokenUrl: string;
-    clientId: string;
-    clientSecret: string;
-    refreshToken: string;
-    fetchImpl?: typeof fetch;
-    signal?: AbortSignal;
-}
-/** Refresh an access token. Returns the new tokens — the connector layer
- *  is responsible for re-encrypting + persisting the envelope. */
-declare function refreshAccessToken(input: RefreshInput): Promise<OAuthTokens>;
-/** Test-only — drop pending flows between unit-test runs. */
-declare function _resetPendingFlowsForTests(): void;
-
-/**
- * Inbound webhook signature verifiers — provider-specific HMAC schemes.
- *
- * Each signature scheme is a pure function:
- *   (rawBody: string, headers, secret, now?) → boolean
- *
- * Constant-time comparison via `crypto.timingSafeEqual`. Timestamps are
- * checked against a configurable tolerance to bound replay risk; the default
- * mirrors the upstream provider's documented window (Stripe: 5 min, Slack: 5 min).
- *
- * These verifiers are the building blocks for any inbound-webhook receiver
- * (a route + a `verify` call + a per-event handler). They live in this
- * package so every consumer of the integration substrate gets correct
- * verification — not just one product reimplementing it.
- */
-/** Default replay-protection window. Providers commonly use 5 minutes. */
-declare const DEFAULT_SIGNATURE_TOLERANCE_SECONDS: number;
-interface ParsedStripeSignatureHeader {
-    t: number;
-    sigs: string[];
-}
-declare function parseStripeSignatureHeader(header: string): ParsedStripeSignatureHeader | null;
-interface StripeVerifyOptions {
-    /** Replay-protection window in seconds. Default 300. */
-    toleranceSeconds?: number;
-    /** Override `now()` for tests. UTC seconds. */
-    now?: number;
-}
-/** Verify a Stripe webhook signature against the raw request body. */
-declare function verifyStripeSignature(rawBody: string, signatureHeader: string, secret: string, options?: StripeVerifyOptions): boolean;
-interface SlackVerifyOptions {
-    toleranceSeconds?: number;
-    now?: number;
-}
-declare function verifySlackSignature(rawBody: string, signatureHeader: string, timestampHeader: string, secret: string, options?: SlackVerifyOptions): boolean;
-interface GenericHmacVerifyOptions {
-    /** sha256 (default) | sha1 | sha512 — matches the algorithm the receiver
-     *  computed at sign time. */
-    algorithm?: 'sha256' | 'sha1' | 'sha512';
-    /** Optional prefix the receiver prepends to the signature in the header
-     *  (e.g., `'sha256='`). Stripped before constant-time comparison. */
-    signaturePrefix?: string;
-    /** Lowercase comparison (most providers emit hex-lowercase). Default true. */
-    lowercaseHex?: boolean;
-}
-declare function verifyHmacSignature(rawBody: string, signatureHeader: string, secret: string, options?: GenericHmacVerifyOptions): boolean;
-interface TwilioVerifyOptions {
-    /** Skip verification when the auth token isn't configured. Useful in
-     *  dev where the receiver wants to accept any payload. Default `false`
-     *  — production should always require a configured token. */
-    skipWhenAuthTokenMissing?: boolean;
-    /** When true, sign the raw body instead of the URL-encoded sorted-params
-     *  reduction. Twilio uses raw-body signing for `application/json`
-     *  webhook bodies. Default `false`. */
-    bodyAsRaw?: boolean;
-    /** When `bodyAsRaw` is true, the raw body to sign. Ignored otherwise. */
-    rawBody?: string;
-}
-/** Verify a Twilio webhook signature. */
-declare function verifyTwilioSignature(input: {
-    authToken: string | null | undefined;
-    signatureHeader: string | string[] | undefined;
-    fullUrl: string | null | undefined;
-    params: Record<string, string> | undefined;
-}, options?: TwilioVerifyOptions): boolean;
-declare function firstHeader(headers: Record<string, string | string[] | undefined>, name: string): string | undefined;
-
-/**
- * Google Calendar connector — CAS reference implementation.
- *
- * Scopes: `https://www.googleapis.com/auth/calendar` covers list/insert/
- * patch on the user's calendars. We could split read/write but for v1 the
- * single scope keeps the consent screen simple; an operator who wants
- * read-only-Calendar can pick a different `kind` later (`google-calendar-readonly`).
- *
- * The two capabilities the agent actually needs:
- *
- *   list_availability(calendarId, timeMin, timeMax)
- *     → {busy: [{start, end}], events: [{id, etag, start, end, summary}]}
- *     Read; no CAS. Cheap (events.list).
- *
- *   book_slot(calendarId, start, end, summary, attendees?)
- *     → {eventId, etag}
- *     Mutation. CAS by Calendar's own conflict-detection: we re-list
- *     events for the requested window inside the same call, and if any
- *     OVERLAP exists we return `conflict` with the next-3 free slots
- *     mined from the user's freebusy, instead of inserting.
- *
- * Why pre-flight read-then-insert rather than relying on If-Match:
- * `events.insert` doesn't take If-Match (you can't precondition an
- * insert against a non-existent resource). Calendar's own
- * `freebusy.query` is the canonical conflict signal. The whole flow is:
- *
- *   1. freebusy.query for [start, end] on this calendarId
- *   2. if busy → emit ResourceContention with next-3 free slots
- *      (computed by walking forward in 30-min steps until 3 free
- *      windows of (end-start) duration found)
- *   3. else events.insert with idempotency-key as `requestId` (a Calendar
- *      API feature that gives us per-key dedup at upstream)
- *
- * Step 3's `requestId` parameter means a retry of the same idempotency
- * key on the same calendar will return the original event rather than
- * creating a duplicate, which composes correctly with our MutationGuard's
- * idempotency record (which short-circuits before ever hitting upstream
- * on the second call). Defense-in-depth.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface GoogleCalendarOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function googleCalendar(opts: GoogleCalendarOptions): ConnectorAdapter;
-
-/**
- * Google Sheets connector — live KB source + writable rows.
- *
- * The flagship for the "agent reads from a live spreadsheet" UX. The
- * customer points the connection at a Sheet (spreadsheetId + sheetName +
- * headerRow). We expose:
- *
- *   list_rows(filter?, limit?)
- *     → {rows: [{...header→cell}], nextCursor?}
- *     Cheap; just spreadsheets.values.get with the configured range.
- *
- *   query_rows(predicate)
- *     → same shape as list_rows but with a structured filter (k=v pairs
- *     ANDed together). Simple and explainable; no SQL.
- *
- *   update_row(rowKey, patch)
- *     → {row: {...header→cell}, updatedRange}
- *     Mutation. CAS via Sheets' spreadsheets.values.update + a
- *     pre-flight read of the row's revisionId-equivalent hash. Sheets
- *     doesn't expose a per-row etag, so we synthesize one — see
- *     `rowFingerprint`. If the fingerprint doesn't match what the agent
- *     last read, we surface ResourceContention with the current row in
- *     `currentState`.
- *
- * KB binding: when a Sheet is `consistencyModel: 'cache'` (the default
- * for spreadsheets — they're slow-moving), the system also indexes the
- * rows as KB chunks. The KB build pipeline calls `list_rows` and emits
- * one markdown page per row; on a connector-level "refresh" event the
- * agent's KB rebuilds.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface GoogleSheetsOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function googleSheets(opts: GoogleSheetsOptions): ConnectorAdapter;
-
-/**
- * Microsoft Graph Calendar connector — the Outlook half of the
- * voice-agent's "book me a slot" surface.
- *
- * Mirrors the Google Calendar pattern almost line-for-line, with two
- * upstream-specific quirks worth calling out:
- *
- *   1. Graph exposes `@odata.etag` on every event resource AND honors
- *      `If-Match` on `events.patch` / `events.delete`. So unlike Calendar
- *      (insert can't be preconditioned against a non-existent resource),
- *      we DO get real etag CAS for updates after the booking. We still
- *      use the freebusy pre-flight for the create path, because the
- *      "two callers grab the same slot" race happens before any event
- *      exists.
- *
- *   2. `getSchedule` is the Graph equivalent of `freeBusy.query`. Same
- *      shape: send `[start, end]` plus the calendar's email/UPN, get
- *      back a `scheduleItems` list of busy windows.
- *
- * Why the same flow ports cleanly: the conflict mode is identical
- * ("did someone else grab this slot between read and write?"). The
- * mechanism — pre-flight read + idempotent insert — composes regardless
- * of whether upstream gives us a request-id dedup feature. Graph does
- * not have a `requestId` analogue on `events.create`, so we rely
- * exclusively on MutationGuard's idempotency-key short-circuit ABOVE
- * the connector. That layer prevents duplicate inserts on retry.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface MicrosoftCalendarOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function microsoftCalendar(opts: MicrosoftCalendarOptions): ConnectorAdapter;
-
-/**
- * HubSpot CRM connector — three load-bearing capabilities, picked to
- * cover the voice-agent's CRM hot path without trying to swallow all of
- * HubSpot's surface in v1.
- *
- *   find_contact(email)
- *     → {contact: {id, properties}} | {found: false}
- *     POST /crm/v3/objects/contacts/search with an email-equality filter.
- *     Cheap, idempotent, no CAS needed (read).
- *
- *   upsert_contact(email, properties)
- *     → {contactId, created}
- *     Mutation. CAS strategy = native-idempotency, BUT: HubSpot's
- *     `idempotencyKey` query param is ONLY available on the v3 *batch*
- *     endpoints (`/crm/v3/objects/contacts/batch/upsert`). The
- *     single-record endpoints don't honor it. We use the batch endpoint
- *     with a single-element array to get native idempotency on retry.
- *
- *   create_note(contactId, body)
- *     → {noteId}
- *     Mutation that logs a note engagement on a contact and associates
- *     it. Notes are append-only — there's no conflict to detect — so we
- *     use native-idempotency via the same batch trick on
- *     `/crm/v3/objects/notes/batch/create`.
- *
- * Why three and not thirty: the agent's leverage on HubSpot is
- * "remember who I just spoke to". `find_contact` lets the agent address
- * a returning caller by name; `upsert_contact` captures a new one
- * without duplicates; `create_note` writes the call's outcome as a CRM
- * activity. Anything beyond these (deals, tickets, lists) lives in
- * Tier-2 specific kinds — keeping the manifest tight keeps the agent's
- * tool registry comprehensible.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface HubSpotOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function hubspot(opts: HubSpotOptions): ConnectorAdapter;
-
-/**
- * Slack connector — bot-token OAuth, three messaging-oriented capabilities.
- *
- *   post_message(channel, text|blocks)  → mutation; cas: 'none'
- *   lookup_user(email)                  → read
- *   list_channels(types?, limit?)       → read
- *
- * Why `cas: 'none'` is acceptable here (and only here in this batch):
- * Slack messages are advisory — we set
- * `defaultConsistencyModel: 'advisory'`. The registry validator allows
- * `cas: 'none'` only on non-authoritative connectors precisely so that
- * append-only messaging surfaces don't have to invent fake CAS theatre.
- * The agent's planner already treats `advisory` data as informational
- * and does not promise outcomes based on its post results without
- * a separate authoritative confirm. MutationGuard's idempotency-key
- * dedup remains in force above the connector — a retry of the same
- * post_message call will short-circuit before reaching Slack.
- *
- * Auth: standard OAuth2. Slack's `/oauth.v2.access` returns a bot
- * `access_token` (`xoxb-…`) but does NOT return a refresh_token unless
- * the app has rotated tokens enabled. Bot tokens are long-lived by
- * default; we surface refreshToken handling but treat its absence as
- * normal rather than an error.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface SlackOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function slack(opts: SlackOptions): ConnectorAdapter;
-
-/**
- * Notion database connector — query + page-level CRUD against a single
- * connected database.
- *
- *   query_database(filter?, pageSize?)  → read
- *   create_page(properties)             → mutation; cas: 'native-idempotency'
- *   update_page(pageId, properties)     → mutation; cas: 'etag-if-match'
- *
- * CAS quirks worth flagging:
- *
- *   1. Notion added support for the `Idempotency-Key` HTTP header on
- *      mutating requests. We forward our SDK's idempotency key on
- *      create_page, which gives at-most-once semantics under the same
- *      key for ~24h. MutationGuard's record short-circuits above us;
- *      Notion's dedup is the second line of defense.
- *
- *   2. Notion does NOT expose a per-page etag the way Graph does. The
- *      canonical drift signal is `last_edited_time` (RFC3339). Our
- *      `update_page` capability accepts an `expectedLastEditedTime` arg;
- *      if supplied, we GET the page first and compare. Mismatch →
- *      ResourceContention with the current page state. Conflict-free
- *      callers can omit the field (last-write-wins, the Notion default).
- *
- * Auth: standard OAuth2. Notion's token endpoint follows RFC 6749 with
- * one twist — the workspace_id and bot_id come back in the response and
- * we stash them in `metadata` so the agent can address resources by
- * workspace where useful.
- */
-
-/** OAuth client config the factory closes over. Caller resolves these
- *  at construction time (env, DB, secret manager — package doesn't care). */
-interface NotionDatabaseOptions {
-    clientId: string;
-    clientSecret: string;
-}
-declare function notionDatabase(opts: NotionDatabaseOptions): ConnectorAdapter;
-
-type RestCredentialPlacement = {
-    kind: 'bearer';
-} | {
-    kind: 'header';
-    header: string;
-    prefix?: string;
-} | {
-    kind: 'query';
-    parameter: string;
-};
-interface RestConnectorSpec {
-    kind: string;
-    displayName: string;
-    description: string;
-    auth: ConnectorAdapter['manifest']['auth'];
-    category: ConnectorAdapter['manifest']['category'];
-    defaultConsistencyModel: ConnectorAdapter['manifest']['defaultConsistencyModel'];
-    baseUrl: string | {
-        metadataKey: string;
-        fallback?: string;
-    };
-    credentialPlacement?: RestCredentialPlacement;
-    defaultHeaders?: Record<string, string>;
-    capabilities: RestOperationSpec[];
-    test?: RestRequestSpec;
-}
-interface RestOperationSpec {
-    name: string;
-    class: 'read' | 'mutation';
-    description: string;
-    parameters: Record<string, unknown>;
-    requiredScopes?: string[];
-    request: RestRequestSpec;
-    cas?: 'etag-if-match' | 'native-idempotency' | 'optimistic-read-verify' | 'none';
-    externalEffect?: boolean;
-}
-interface RestRequestSpec {
-    method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
-    path: string;
-    query?: Record<string, string | number | boolean | undefined>;
-    headers?: Record<string, string>;
-    body?: 'args' | string | Record<string, unknown>;
-}
-declare function declarativeRestConnector(spec: RestConnectorSpec): ConnectorAdapter;
-
-/**
- * Twilio SMS connector — outbound texts + recent-message lookup. The
- * agent's "send the caller a confirmation link" surface.
- *
- * Auth: HTTP Basic (Account SID + Auth Token). Twilio's API key auth
- * also supports SID/Secret pairs; we accept either by treating the
- * stored apiKey envelope as `accountSid:authToken` (or
- * `accountSid:keySid:secret`) — the connector parses it at call time.
- *
- *   send_sms(to, body)
- *     Mutation. CAS = native-idempotency. Twilio added the
- *     `Idempotency-Key` HTTP header to POST /Messages in 2024 — same
- *     key + same args within 24h returns the original Message resource
- *     instead of sending a second SMS. MutationGuard's record short-
- *     circuits before us; Twilio's own dedup is defense-in-depth.
- *
- *   lookup_number(phoneNumber)
- *     Read. Hits /v1/PhoneNumbers/{e164} on Lookup API. Confirms the
- *     number is real, returns carrier info if the caller has Lookup
- *     enabled on their account.
- *
- *   find_recent_messages(toOrFrom?, limit?)
- *     Read. Returns the most recent Messages on the account, optionally
- *     filtered by To/From. Useful for "did the confirmation actually
- *     send?" introspection inside an agent run.
- */
-
-declare const twilioSmsConnector: ConnectorAdapter;
-
-/**
- * Stripe pack connector — single connector kind packing 3 capabilities,
- * validating the "connector pack" concept (one auth handshake, multiple
- * related capabilities) without exploding the registry into
- * `stripe-customers`, `stripe-checkout`, `stripe-invoices` triplets.
- *
- *   find_customer(email)               → read; CAS n/a
- *   create_invoice(customerId, items)  → mutation; cas: 'native-idempotency'
- *   create_checkout_session(...)       → mutation; cas: 'native-idempotency'
- *
- * Auth: API key (Stripe restricted key). Operator pastes the key into
- * the Connections UI. We never see their account password / OAuth flow;
- * Stripe restricted keys are the customer's responsibility (they pick
- * which permissions the key carries). The kind exposes a webhook URL
- * post-connect for the operator to paste into the Stripe dashboard —
- * we'll wire the receiver to P-3's inbound webhook surface in a later
- * commit. That URL is returned in `metadata.webhookUrl` so the UI can
- * render it.
- *
- * Why this is the textbook example of `cas: 'native-idempotency'`:
- * Stripe's `Idempotency-Key` HTTP header is THE reference implementation
- * of native idempotency. Same key + same args within 24h returns the
- * stored response (Stripe's words, not ours). Same key + different args
- * → 400 with `idempotency_error`. We forward the SDK's idempotency key
- * directly. MutationGuard short-circuits before us on retry; Stripe's
- * own dedup is the second line of defense.
- */
-
-declare const stripePackConnector: ConnectorAdapter;
-
-/**
- * Universal webhook connector — the long-tail escape hatch.
- *
- * The user declares a target URL + a JSON-schema for the request body
- * the agent should send, plus an optional shared secret. We sign every
- * outbound POST with HMAC-SHA256 over `timestamp.body` and forward the
- * agent's idempotency key as a header. The receiving system enforces
- * its own idempotency.
- *
- * One adapter, two capabilities. Both arity-1 — `body` is whatever JSON
- * the agent's planner constructs from the operator-defined schema (which
- * lives in DataSource.metadata.requestSchema). The agent's planner reads
- * that schema at request time and constructs valid args.
- *
- * Why one connector covers 50 systems badly and 1 system well: the agent
- * gets a generic "send_event" tool that doesn't *know* what the upstream
- * does with the payload. That's fine for fire-and-forget event posting
- * (Zapier-style); it's wrong for booking against a calendar where you
- * need conflict-resolution. So webhook's `post_event` capability is
- * marked `cas: 'native-idempotency'` (we forward the key — the receiver
- * MUST honor it) and `defaultConsistencyModel: 'advisory'`. Anyone
- * needing real CAS uses a kind-specific connector (Calendar, Sheets, ...).
- */
-
-declare const webhookConnector: ConnectorAdapter;
-
-/**
- * Stripe inbound-webhook receiver — push-only side of a Stripe connector.
- *
- * The full Stripe connector (charges/customers/invoices read+mutation) is
- * tracked in INTEGRATIONS.md as separate `stripe-customers` / `stripe-invoices`
- * rows. This adapter only ships the inbound surface today: receive a push,
- * verify the signature, persist one `InboundEvent` per Stripe event so the
- * agent's runtime can react (e.g. payment_failed → outbound dunning call).
- *
- * Why a dedicated `kind: 'stripe'` rather than reusing the billing webhook
- * at /api/billing/stripe-webhook: that route is hard-coded for OUR Stripe
- * account (Builder subscription state). This connector is for the customer's
- * OWN Stripe account — they paste their `whsec_*` and we listen on a
- * per-DataSource URL, /api/webhooks/inbound/stripe/:dataSourceId.
- *
- * Signature scheme: Stripe's `t=<unix>,v1=<hmac>` header. HMAC is
- * sha256(`${t}.${rawBody}`) keyed by the customer's webhook secret. We use
- * `timingSafeEqual` to defeat timing oracles and bound timestamp skew at
- * 5 minutes (Stripe's recommendation) to thwart replay against captured
- * signatures.
- */
-
-declare const stripeWebhookReceiverConnector: ConnectorAdapter;
-
-/**
- * Slack Events API inbound receiver.
- *
- * Slack sends two distinct request shapes to the same webhook URL:
- *
- *   1. `url_verification` — a one-off handshake during app-config. The body
- *      contains a `challenge` string we MUST echo back as the response body
- *      (Slack's app-config UI fails the URL otherwise). No InboundEvent is
- *      persisted for this — it's an infrastructure ping, not a user event.
- *
- *   2. `event_callback` — every actual workspace event (message posted,
- *      reaction added, channel created, …). We persist one InboundEvent
- *      keyed by `event_id` so a Slack retry (Slack retries 3 times on any
- *      non-2xx) is deduped at the unique constraint, not after we've
- *      double-processed.
- *
- * Signature scheme: `v0=<hmac(sha256, "v0:<timestamp>:<rawBody>")>` keyed by
- * the app's signing secret. Header `X-Slack-Request-Timestamp` carries the
- * timestamp; we reject anything older than 5 minutes (Slack's recommendation)
- * to bound replay risk.
- */
-
-declare const slackEventsConnector: ConnectorAdapter;
-
-declare const githubConnector: ConnectorAdapter;
-
-declare const gitlabConnector: ConnectorAdapter;
-
-declare const airtableConnector: ConnectorAdapter;
-
-declare const asanaConnector: ConnectorAdapter;
-
-declare const salesforceConnector: ConnectorAdapter;
-
-interface CatalogExecutorInvocation {
-    connection: IntegrationConnection;
-    request: IntegrationActionRequest;
-    connector: IntegrationConnector;
-    action: IntegrationConnector['actions'][number];
-}
-interface CatalogExecutorProviderOptions {
-    id: string;
-    kind: IntegrationProviderKind;
-    connectors: IntegrationConnector[];
-    startAuth?: (request: StartAuthRequest) => Promise<StartAuthResult> | StartAuthResult;
-    completeAuth?: (request: CompleteAuthRequest) => Promise<IntegrationConnection> | IntegrationConnection;
-    executeAction: (invocation: CatalogExecutorInvocation) => Promise<IntegrationActionResult> | IntegrationActionResult;
-    subscribeTrigger?: (connection: IntegrationConnection, trigger: NonNullable<IntegrationConnector['triggers']>[number], targetUrl?: string) => Promise<IntegrationTriggerSubscription> | IntegrationTriggerSubscription;
-    unsubscribeTrigger?: (subscriptionId: string) => Promise<void> | void;
-    normalizeTriggerEvent?: (raw: unknown) => Promise<IntegrationTriggerEvent> | IntegrationTriggerEvent;
-}
-declare function createCatalogExecutorProvider(options: CatalogExecutorProviderOptions): IntegrationProvider;
-
-interface IntegrationInvocationEnvelope {
-    kind: 'integration.invocation';
-    capabilityToken: string;
-    toolName: string;
-    action: string;
-    input?: unknown;
-    idempotencyKey: string;
-    dryRun?: boolean;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationInvocationEnvelopeValidationOptions {
-    connectors?: IntegrationConnector[];
-    maxInputBytes?: number;
-    requireKnownTool?: boolean;
-}
-type NormalizedIntegrationResult = {
-    status: 'ok';
-    action: string;
-    output?: unknown;
-    metadata?: Record<string, unknown>;
-} | {
-    status: 'approval_required';
-    action: string;
-    approval: IntegrationApprovalRequest;
-    metadata?: Record<string, unknown>;
-} | {
-    status: 'failed';
-    action: string;
-    error: string;
-    metadata?: Record<string, unknown>;
-};
-interface IntegrationSandboxHostHub {
-    invokeWithCapability(token: string, request: InvokeWithCapabilityRequest): Promise<IntegrationActionResult> | IntegrationActionResult;
-}
-interface IntegrationSandboxHostOptions extends IntegrationInvocationEnvelopeValidationOptions {
-    hub: IntegrationSandboxHostHub;
-}
-declare function buildIntegrationInvocationEnvelope(input: {
-    capabilityToken: string;
-    toolName: string;
-    args?: unknown;
-    idempotencyKey: string;
-    dryRun?: boolean;
-    metadata?: Record<string, unknown>;
-}): IntegrationInvocationEnvelope;
-declare function invocationRequestFromEnvelope(envelope: IntegrationInvocationEnvelope): InvokeWithCapabilityRequest;
-declare function validateIntegrationInvocationEnvelope(envelope: IntegrationInvocationEnvelope, options?: IntegrationInvocationEnvelopeValidationOptions): void;
-declare function redactInvocationEnvelope(envelope: IntegrationInvocationEnvelope): Omit<IntegrationInvocationEnvelope, 'capabilityToken'> & {
-    capabilityToken: '[REDACTED]';
-};
-declare function redactCapability(capability: IntegrationCapability): IntegrationCapability;
-declare function normalizeIntegrationResult(result: IntegrationActionResult): NormalizedIntegrationResult;
-declare function dispatchIntegrationInvocation(envelope: IntegrationInvocationEnvelope, options: IntegrationSandboxHostOptions): Promise<NormalizedIntegrationResult>;
-declare class IntegrationSandboxHost {
-    private readonly options;
-    constructor(options: IntegrationSandboxHostOptions);
-    dispatch(envelope: IntegrationInvocationEnvelope): Promise<NormalizedIntegrationResult>;
-}
-
-interface ImportCatalogOptions {
-    providerId: string;
-    connectorId: string;
-    connectorTitle: string;
-    category?: IntegrationConnectorCategory;
-    auth?: IntegrationConnector['auth'];
-    scopes?: string[];
-    dataClass?: IntegrationDataClass;
-    defaultRisk?: IntegrationActionRisk;
-}
-interface OpenApiDocument {
-    openapi?: string;
-    swagger?: string;
-    info?: {
-        title?: string;
-    };
-    paths?: Record<string, Record<string, OpenApiOperation | unknown>>;
-}
-interface OpenApiOperation {
-    operationId?: string;
-    summary?: string;
-    description?: string;
-    parameters?: unknown[];
-    requestBody?: unknown;
-    responses?: unknown;
-    security?: Array<Record<string, string[]>>;
-    tags?: string[];
-}
-interface GraphqlOperationSpec {
-    name: string;
-    kind: 'query' | 'mutation';
-    description?: string;
-    inputSchema?: unknown;
-    outputSchema?: unknown;
-    requiredScopes?: string[];
-}
-interface McpCatalogTool {
-    name: string;
-    description?: string;
-    inputSchema?: unknown;
-    annotations?: {
-        readOnlyHint?: boolean;
-        destructiveHint?: boolean;
-        openWorldHint?: boolean;
-        title?: string;
-    };
-}
-interface McpCatalog {
-    tools: McpCatalogTool[];
-}
-declare function importOpenApiConnector(document: OpenApiDocument, options: ImportCatalogOptions): IntegrationConnector;
-declare function importGraphqlConnector(operations: GraphqlOperationSpec[], options: ImportCatalogOptions): IntegrationConnector;
-declare function importMcpConnector(catalog: McpCatalog, options: ImportCatalogOptions): IntegrationConnector;
-
-interface GatewayCatalogProviderOptions {
-    id: string;
-    kind: Extract<IntegrationProviderKind, 'nango' | 'pipedream' | 'activepieces' | 'tangle_catalog' | 'zapier' | 'executor' | 'custom'>;
-    fetchCatalog: () => Promise<GatewayCatalogEntry[]> | GatewayCatalogEntry[];
-    startAuth?: (request: StartAuthRequest) => Promise<StartAuthResult> | StartAuthResult;
-    completeAuth?: (request: CompleteAuthRequest) => Promise<IntegrationConnection> | IntegrationConnection;
-    invokeAction?: (connection: IntegrationConnection, request: IntegrationActionRequest) => Promise<IntegrationActionResult> | IntegrationActionResult;
-    cacheTtlMs?: number;
-    now?: () => Date;
-}
-interface GatewayCatalogEntry {
-    id?: string;
-    key?: string;
-    name?: string;
-    title?: string;
-    category?: string;
-    auth?: 'oauth2' | 'api_key' | 'none' | 'custom' | string;
-    scopes?: string[];
-    actions?: GatewayCatalogAction[];
-    triggers?: GatewayCatalogTrigger[];
-    metadata?: Record<string, unknown>;
-}
-interface GatewayCatalogAction {
-    id?: string;
-    key?: string;
-    name?: string;
-    title?: string;
-    description?: string;
-    risk?: 'read' | 'write' | 'destructive' | string;
-    scopes?: string[];
-    requiredScopes?: string[];
-    dataClass?: IntegrationDataClass | string;
-    approvalRequired?: boolean;
-    inputSchema?: unknown;
-    outputSchema?: unknown;
-}
-interface GatewayCatalogTrigger {
-    id?: string;
-    key?: string;
-    name?: string;
-    title?: string;
-    description?: string;
-    scopes?: string[];
-    requiredScopes?: string[];
-    dataClass?: IntegrationDataClass | string;
-    payloadSchema?: unknown;
-}
-declare function createGatewayCatalogProvider(options: GatewayCatalogProviderOptions): IntegrationProvider;
-declare function normalizeGatewayCatalog(entries: GatewayCatalogEntry[], options: {
-    providerId: string;
-    providerKind: IntegrationProviderKind;
-}): IntegrationConnector[];
-
-interface ActivepiecesCatalogEntry {
-    id: string;
-    title: string;
-    description: string;
-    npmPackage?: string;
-    version?: string;
-    category: IntegrationConnectorCategory;
-    auth: IntegrationConnector['auth'];
-    authFields?: ActivepiecesCatalogAuthField[];
-    domains: string[];
-    actions: Array<{
-        id: string;
-        title: string;
-        risk: IntegrationActionRisk;
-        upstreamName?: string;
-    }>;
-    triggers: Array<{
-        id: string;
-        title: string;
-        upstreamName?: string;
-    }>;
-    source: {
-        repository: string;
-        path: string;
-        license: 'MIT';
-    };
-}
-interface ActivepiecesCatalogAuthField {
-    key: string;
-    label: string;
-    required: boolean;
-    secret: boolean;
-    kind: 'text' | 'number' | 'boolean' | 'select' | 'object' | 'unknown';
-    description?: string;
-}
-declare function listActivepiecesCatalogEntries(): ActivepiecesCatalogEntry[];
-declare function buildActivepiecesConnectors(options?: {
-    providerId?: string;
-    includeCatalogActions?: boolean;
-    executable?: boolean;
-}): IntegrationConnector[];
-
-interface ActivepiecesPieceOverride {
-    category?: IntegrationConnectorCategory;
-    actionRisks?: Record<string, IntegrationActionRisk>;
-    approvalRequired?: Record<string, boolean>;
-}
-declare const ACTIVEPIECES_OVERRIDES: Record<string, ActivepiecesPieceOverride>;
-declare function getActivepiecesOverride(id: string): ActivepiecesPieceOverride | undefined;
-
-interface ActivepiecesExecutorInvocation {
-    connection: IntegrationConnection;
-    request: IntegrationActionRequest;
-    connector: IntegrationConnector;
-    catalogEntry: ActivepiecesCatalogEntry;
-    piece: {
-        id: string;
-        npmPackage?: string;
-        version?: string;
-        actionId: string;
-        upstreamActionName?: string;
-    };
-}
-interface ActivepiecesExecutorProviderOptions {
-    id?: string;
-    connectors?: IntegrationConnector[];
-    startAuth?: (request: StartAuthRequest) => Promise<StartAuthResult> | StartAuthResult;
-    completeAuth?: (request: CompleteAuthRequest) => Promise<IntegrationConnection> | IntegrationConnection;
-    executeAction: (invocation: ActivepiecesExecutorInvocation) => Promise<IntegrationActionResult> | IntegrationActionResult;
-}
-declare function createActivepiecesExecutorProvider(options: ActivepiecesExecutorProviderOptions): IntegrationProvider;
-
-declare const ACTIVEPIECES_RUNTIME_SIGNATURE_HEADER = "x-tangle-activepieces-signature";
-declare const TANGLE_CATALOG_RUNTIME_SIGNATURE_HEADER = "x-tangle-catalog-signature";
-interface TangleCatalogRuntimeActionRequest {
-    id: string;
-    input: unknown;
-    idempotencyKey?: string;
-    dryRun?: boolean;
-    metadata?: Record<string, unknown>;
-}
-interface TangleCatalogRuntimePiece {
-    id: string;
-    packageName?: string;
-    version?: string;
-    actionId: string;
-    upstreamActionName?: string;
-}
-interface TangleCatalogHttpExecutorOptions {
-    endpoint: string;
-    path?: string;
-    signatureHeader?: string;
-    secret?: string;
-    fetchImpl?: typeof fetch;
-    headers?: Record<string, string>;
-    timeoutMs?: number;
-    requestId?: () => string;
-}
-interface TangleCatalogHttpExecutorInvocation extends Omit<ActivepiecesExecutorInvocation, 'catalogEntry' | 'piece'> {
-    catalogEntry: unknown;
-    piece: TangleCatalogRuntimePiece;
-}
-/**
- * @deprecated Use the Tangle catalog runtime types. This name is kept only for
- * compatibility with the upstream catalog ingestion backend.
- */
-interface ActivepiecesRuntimeRequest {
-    version: 1;
-    requestId: string;
-    providerId: string;
-    connection: IntegrationConnection;
-    connector: Pick<IntegrationConnector, 'id' | 'title' | 'auth' | 'scopes' | 'metadata'>;
-    piece: ActivepiecesExecutorInvocation['piece'];
-    action: TangleCatalogRuntimeActionRequest;
-}
-/**
- * @deprecated Use `TangleCatalogHttpExecutorOptions`.
- */
-type ActivepiecesHttpExecutorOptions = TangleCatalogHttpExecutorOptions;
-/**
- * @deprecated Use `createTangleCatalogHttpExecutor`.
- */
-declare function createActivepiecesHttpExecutor(options: ActivepiecesHttpExecutorOptions): ActivepiecesExecutorProviderOptions['executeAction'];
-/**
- * @deprecated Use `buildTangleCatalogRuntimeRequest`.
- */
-declare function buildActivepiecesRuntimeRequest(invocation: ActivepiecesExecutorInvocation, requestId?: string): ActivepiecesRuntimeRequest;
-/**
- * @deprecated Use `signTangleCatalogRuntimeRequest`.
- */
-declare function signActivepiecesRuntimeRequest(serializedBody: string, secret: string): string;
-/**
- * @deprecated Use `verifyTangleCatalogRuntimeSignature`.
- */
-declare function verifyActivepiecesRuntimeSignature(serializedBody: string, signature: string | null | undefined, secret: string): boolean;
-interface TangleCatalogRuntimeRequest {
-    version: 1;
-    requestId: string;
-    providerId: string;
-    connection: IntegrationConnection;
-    connector: Pick<IntegrationConnector, 'id' | 'title' | 'auth' | 'scopes' | 'metadata'>;
-    piece: TangleCatalogRuntimePiece;
-    action: TangleCatalogRuntimeActionRequest;
-}
-declare function createTangleCatalogHttpExecutor(options: TangleCatalogHttpExecutorOptions): (invocation: TangleCatalogHttpExecutorInvocation) => Promise<IntegrationActionResult>;
-declare function buildTangleCatalogRuntimeRequest(invocation: TangleCatalogHttpExecutorInvocation, requestId?: string): TangleCatalogRuntimeRequest;
-declare const signTangleCatalogRuntimeRequest: typeof signActivepiecesRuntimeRequest;
-declare const verifyTangleCatalogRuntimeSignature: typeof verifyActivepiecesRuntimeSignature;
-
-interface IntegrationCatalogFreshnessOptions {
-    liveActivepieces?: boolean;
-    minActivepiecesConnectors?: number;
-    staleConnectorDelta?: number;
-    fetchImpl?: typeof fetch;
-}
-interface IntegrationCatalogFreshnessResult {
-    ok: boolean;
-    generatedAt: string;
-    local: {
-        activepiecesEntries: number;
-        activepiecesConnectors: number;
-        activepiecesActions: number;
-        activepiecesTriggers: number;
-        executableActivepiecesConnectors: number;
-        executableActivepiecesActions: number;
-        executableActivepiecesTriggers: number;
-        executableToolDefinitions: number;
-        unsupportedExecutableConnectorIds: string[];
-        registryEntries: number;
-        registrySummary: IntegrationRegistrySummary;
-        conflictSamples: IntegrationRegistryConflict[];
-    };
-    upstream?: {
-        activepiecesPieces?: number;
-        activepiecesDelta?: number;
-        checkedUrl: string;
-        warning?: string;
-    };
-    warnings: string[];
-}
-declare const ACTIVEPIECES_PUBLIC_CATALOG_URL = "https://www.activepieces.com/pieces";
-declare function extractActivepiecesPublicPieceCount(html: string): number | undefined;
-declare function auditIntegrationCatalogFreshness(options?: IntegrationCatalogFreshnessOptions): Promise<IntegrationCatalogFreshnessResult>;
-
-declare const TANGLE_INTEGRATIONS_CATALOG_PROVIDER_ID = "tangle-catalog";
-declare const TANGLE_INTEGRATIONS_CATALOG_SOURCE = "tangle-integrations-catalog";
-type TangleIntegrationImplementationKind = 'native_adapter' | 'package_runtime';
-type TangleIntegrationContractStatus = 'contract_ready' | 'runtime_backed' | 'native_backed';
-interface TangleIntegrationCatalogEntry {
-    id: string;
-    title: string;
-    description: string;
-    category: IntegrationConnector['category'];
-    auth: IntegrationConnector['auth'];
-    authFields?: ActivepiecesCatalogEntry['authFields'];
-    domains: string[];
-    actions: Array<{
-        id: string;
-        title: string;
-        risk: IntegrationConnector['actions'][number]['risk'];
-        upstreamName?: string;
-    }>;
-    triggers: Array<{
-        id: string;
-        title: string;
-        upstreamName?: string;
-    }>;
-}
-interface TangleIntegrationContract {
-    id: string;
-    title: string;
-    description: string;
-    category: IntegrationConnector['category'];
-    auth: IntegrationConnector['auth'];
-    authFields: NonNullable<ActivepiecesCatalogEntry['authFields']>;
-    actions: Array<{
-        id: string;
-        title: string;
-        risk: IntegrationConnector['actions'][number]['risk'];
-        upstreamName: string;
-    }>;
-    triggers: Array<{
-        id: string;
-        title: string;
-        upstreamName: string;
-    }>;
-    implementation: {
-        kind: TangleIntegrationImplementationKind;
-        runtimePackage?: string;
-        version?: string;
-    };
-    status: TangleIntegrationContractStatus;
-    quality: {
-        tangleContract: true;
-        authFieldsMapped: boolean;
-        actionNamesMapped: boolean;
-        triggerNamesMapped: boolean;
-        runtimePackageMapped: boolean;
-        nativeAdapter: boolean;
-    };
-}
-interface TangleCatalogRuntimePackageManifestOptions {
-    name?: string;
-    includeAgentIntegrationsPackage?: boolean;
-    agentIntegrationsVersion?: string;
-    additionalDependencies?: Record<string, string>;
-}
-interface TangleCatalogRuntimePackageManifest {
-    name: string;
-    private: true;
-    type: 'module';
-    dependencies: Record<string, string>;
-    tangle: {
-        integrationContracts: number;
-        packageRuntimeBackends: number;
-        generatedFrom: typeof TANGLE_INTEGRATIONS_CATALOG_SOURCE;
-    };
-}
-interface TangleCatalogExecutorInvocation {
-    connection: IntegrationConnection;
-    request: IntegrationActionRequest;
-    connector: IntegrationConnector;
-    catalogEntry: TangleIntegrationCatalogEntry;
-    piece: {
-        id: string;
-        packageName?: string;
-        version?: string;
-        actionId: string;
-        upstreamActionName?: string;
-    };
-}
-interface TangleCatalogTriggerInvocation {
-    connection: IntegrationConnection;
-    connector: IntegrationConnector;
-    catalogEntry: TangleIntegrationCatalogEntry;
-    trigger: NonNullable<IntegrationConnector['triggers']>[number];
-    targetUrl?: string;
-    piece: {
-        id: string;
-        packageName?: string;
-        version?: string;
-        triggerId: string;
-        upstreamTriggerName?: string;
-    };
-}
-interface TangleCatalogExecutorProviderOptions {
-    id?: string;
-    connectors?: IntegrationConnector[];
-    startAuth?: (request: StartAuthRequest) => Promise<StartAuthResult> | StartAuthResult;
-    completeAuth?: (request: CompleteAuthRequest) => Promise<IntegrationConnection> | IntegrationConnection;
-    executeAction: (invocation: TangleCatalogExecutorInvocation) => Promise<IntegrationActionResult> | IntegrationActionResult;
-    subscribeTrigger?: (invocation: TangleCatalogTriggerInvocation) => Promise<IntegrationTriggerSubscription> | IntegrationTriggerSubscription;
-    unsubscribeTrigger?: (subscriptionId: string) => Promise<void> | void;
-    normalizeTriggerEvent?: (raw: unknown) => Promise<IntegrationTriggerEvent> | IntegrationTriggerEvent;
-}
-type TangleIntegrationCatalogFreshnessOptions = IntegrationCatalogFreshnessOptions;
-interface TangleIntegrationCatalogFreshnessResult {
-    ok: boolean;
-    generatedAt: string;
-    local: {
-        catalogEntries: number;
-        catalogConnectors: number;
-        catalogActions: number;
-        catalogTriggers: number;
-        executableCatalogConnectors: number;
-        executableCatalogActions: number;
-        executableCatalogTriggers: number;
-        executableToolDefinitions: number;
-        unsupportedExecutableConnectorIds: string[];
-        registryEntries: number;
-        registrySummary: Awaited<ReturnType<typeof auditIntegrationCatalogFreshness>>['local']['registrySummary'];
-        conflictSamples: Awaited<ReturnType<typeof auditIntegrationCatalogFreshness>>['local']['conflictSamples'];
-    };
-    upstream?: {
-        externalEntries?: number;
-        externalDelta?: number;
-        checkedUrl: string;
-        warning?: string;
-    };
-    warnings: string[];
-}
-declare function listTangleIntegrationCatalogEntries(): TangleIntegrationCatalogEntry[];
-declare function listTangleIntegrationContracts(): TangleIntegrationContract[];
-declare function listTangleIntegrationCatalogRuntimePackages(): Array<{
-    connectorId: string;
-    packageName: string;
-    version?: string;
-}>;
-declare function buildTangleCatalogRuntimePackageManifest(options?: TangleCatalogRuntimePackageManifestOptions): TangleCatalogRuntimePackageManifest;
-declare function renderTangleCatalogRuntimePnpmAddCommand(options?: {
-    includeAgentIntegrationsPackage?: boolean;
-    agentIntegrationsVersion?: string;
-}): string;
-declare function buildTangleIntegrationCatalogConnectors(options?: {
-    providerId?: string;
-    includeCatalogActions?: boolean;
-    executable?: boolean;
-}): IntegrationConnector[];
-declare function createTangleCatalogExecutorProvider(options: TangleCatalogExecutorProviderOptions): IntegrationProvider;
-declare const extractExternalCatalogPublicCount: typeof extractActivepiecesPublicPieceCount;
-declare function auditTangleIntegrationCatalogFreshness(options?: TangleIntegrationCatalogFreshnessOptions): Promise<TangleIntegrationCatalogFreshnessResult>;
-
-interface TangleCatalogRuntimeInvocation {
-    request: TangleCatalogRuntimeRequest;
-    connection: IntegrationConnection;
-    connector: IntegrationConnector;
-    action: IntegrationConnectorAction;
-}
-interface TangleCatalogRuntimeHandlerOptions {
-    secret?: string;
-    requireSignature?: boolean;
-    signatureHeader?: string;
-    connectors?: IntegrationConnector[];
-    maxBodyBytes?: number;
-    executeAction: (invocation: TangleCatalogRuntimeInvocation) => Promise<IntegrationActionResult> | IntegrationActionResult;
-}
-interface TangleCatalogInstalledPackageExecutorOptions {
-    moduleLoader?: (packageName: string) => Promise<unknown> | unknown;
-    actionAliases?: Record<string, Record<string, string>>;
-    allowFuzzyActionMatch?: boolean;
-    resolveAuth?: (connection: IntegrationConnection) => Promise<unknown> | unknown;
-    beforeRun?: (invocation: TangleCatalogRuntimeInvocation) => Promise<void> | void;
-}
-interface TangleCatalogAuthResolverOptions {
-    secrets: IntegrationSecretStore;
-    mapCredentials?: (input: {
-        connection: IntegrationConnection;
-        credentials: ConnectorCredentials;
-        connectorId: string;
-    }) => unknown;
-}
-interface TangleCatalogHttpAuthResolverOptions {
-    endpoint: string;
-    secret: string;
-    path?: string;
-    timeoutMs?: number;
-    fetchImpl?: typeof fetch;
-    headers?: Record<string, string>;
-    requestId?: () => string;
-}
-interface TangleCatalogHttpAuthResolverRequest {
-    version: 1;
-    requestId: string;
-    providerId: string;
-    connectorId: string;
-    connectionId: string;
-    secretRef?: IntegrationConnection['secretRef'];
-}
-interface TangleCatalogRuntimeModuleAction {
-    name?: string;
-    displayName?: string;
-    run?: (context: {
-        auth: unknown;
-        propsValue: unknown;
-        input: unknown;
-        connection: IntegrationConnection;
-        request: TangleCatalogRuntimeRequest;
-    }) => Promise<unknown> | unknown;
-}
-interface TangleCatalogRuntimeHttpRequest {
-    body: string | Uint8Array | TangleCatalogRuntimeRequest;
-    headers?: Headers | Record<string, string | string[] | undefined>;
-}
-interface TangleCatalogRuntimeHttpResponse {
-    status: number;
-    headers: Record<string, string>;
-    body: IntegrationActionResult | {
-        ok: false;
-        action: string;
-        output: {
-            code: string;
-            message: string;
-        };
-    };
-}
-interface TangleCatalogRuntimePackageCoverageRow {
-    connectorId: string;
-    packageName: string;
-    packageInstalled: boolean;
-    packageLoads: boolean;
-    pieceExportFound: boolean;
-    actionMappingsVerified: number;
-    actionMappingsTotal: number;
-    triggerMappingsFound: number;
-    triggerMappingsTotal: number;
-    triggerHostingSupported: boolean;
-    error?: string;
-}
-interface TangleCatalogRuntimePackageCoverageOptions {
-    connectorIds?: string[];
-    moduleLoader?: (packageName: string) => Promise<unknown> | unknown;
-}
-declare function createTangleCatalogRuntimeHandler(options: TangleCatalogRuntimeHandlerOptions): (input: TangleCatalogRuntimeHttpRequest) => Promise<TangleCatalogRuntimeHttpResponse>;
-declare function createTangleCatalogInstalledPackageExecutor(options?: TangleCatalogInstalledPackageExecutorOptions): TangleCatalogRuntimeHandlerOptions['executeAction'];
-declare function auditTangleCatalogRuntimePackages(options?: TangleCatalogRuntimePackageCoverageOptions): Promise<TangleCatalogRuntimePackageCoverageRow[]>;
-declare function createTangleCatalogCredentialAuthResolver(options: TangleCatalogAuthResolverOptions): (connection: IntegrationConnection) => Promise<unknown>;
-declare function createTangleCatalogHttpAuthResolver(options: TangleCatalogHttpAuthResolverOptions): (connection: IntegrationConnection) => Promise<unknown>;
-declare function tangleCatalogAuthValue(credentials: ConnectorCredentials): unknown;
-
-interface TangleCatalogRuntimeNodeServerOptions {
-    secret: string;
-    host?: string;
-    port?: number;
-    path?: string;
-    maxBodyBytes?: number;
-    requireSignature?: boolean;
-    authResolver?: false | TangleCatalogHttpAuthResolverOptions;
-    executor?: Omit<TangleCatalogInstalledPackageExecutorOptions, 'resolveAuth'> & {
-        resolveAuth?: TangleCatalogInstalledPackageExecutorOptions['resolveAuth'];
-    };
-    onLog?: (event: {
-        level: 'info' | 'warn' | 'error';
-        message: string;
-        metadata?: Record<string, unknown>;
-    }) => void;
-}
-interface StartedTangleCatalogRuntimeNodeServer {
-    server: Server;
-    url: string;
-    close: () => Promise<void>;
-}
-declare function createTangleCatalogRuntimeNodeRequestListener(options: TangleCatalogRuntimeNodeServerOptions): (request: IncomingMessage, response: ServerResponse) => Promise<void>;
-declare function startTangleCatalogRuntimeNodeServer(options: TangleCatalogRuntimeNodeServerOptions): Promise<StartedTangleCatalogRuntimeNodeServer>;
-
-type IntegrationCoveragePriority = 'tier_0' | 'tier_1' | 'tier_2' | 'long_tail';
-interface IntegrationCoverageSpec {
-    id: string;
-    title: string;
-    category: IntegrationConnectorCategory;
-    auth: IntegrationConnector['auth'];
-    priority: IntegrationCoveragePriority;
-    providerKinds: IntegrationProviderKind[];
-    domains: string[];
-    actionPack: IntegrationActionPack;
-    scopes?: string[];
-}
-type IntegrationActionPack = 'email' | 'calendar' | 'chat' | 'crm' | 'storage' | 'docs' | 'database' | 'project' | 'support' | 'marketing' | 'sales' | 'commerce' | 'finance' | 'hr' | 'dev' | 'ai' | 'analytics' | 'workflow' | 'webhook';
-declare function listIntegrationCoverageSpecs(): IntegrationCoverageSpec[];
-declare function buildIntegrationCoverageConnectors(options?: {
-    providerId?: string;
-    priorities?: IntegrationCoveragePriority[];
-    categories?: IntegrationConnectorCategory[];
-    actionPacks?: IntegrationActionPack[];
-}): IntegrationConnector[];
-declare function integrationCoverageChecklistMarkdown(): string;
-
-type IntegrationAuthMode = 'oauth2' | 'api_key' | 'hmac' | 'none' | 'custom';
-type IntegrationSpecStatus = 'catalog' | 'executable' | 'deprecated';
-type IntegrationFamilyId = 'google' | 'microsoft-graph' | 'atlassian' | 'salesforce' | 'hubspot' | 'slack' | 'notion' | 'standard-oauth2' | 'api-key' | 'hmac' | 'none';
-type NormalizedPermission = `${string}.read` | `${string}.write` | `${string}.delete` | `${string}.admin`;
-interface IntegrationSpec {
-    kind: string;
-    title: string;
-    category: IntegrationConnectorCategory;
-    status: IntegrationSpecStatus;
-    family: IntegrationFamilyId;
-    auth: IntegrationAuthSpec;
-    permissions: PermissionDescriptor[];
-    actions: IntegrationConnectorAction[];
-    triggers?: IntegrationConnectorTrigger[];
-    setup: IntegrationSetupSpec;
-    lifecycle?: IntegrationLifecycleSpec;
-    plannerHints?: IntegrationPlannerHints;
-    metadata?: Record<string, unknown>;
-}
-type IntegrationAuthSpec = OAuth2AuthSpec | ApiKeyAuthSpec | HmacAuthSpec | NoneAuthSpec | CustomAuthSpec;
-interface OAuth2AuthSpec {
-    mode: 'oauth2';
-    authorizationUrl: string;
-    tokenUrl: string;
-    clientIdEnv?: string;
-    clientSecretEnv?: string;
-    scopes: ScopeDescriptor[];
-    extraAuthParams?: Record<string, string>;
-    redirectUriTemplate: string;
-    pkce?: 'required' | 'supported' | 'unsupported';
-}
-interface ApiKeyAuthSpec {
-    mode: 'api_key';
-    credential: CredentialFieldSpec;
-    placement?: 'bearer' | 'header' | 'query' | 'basic';
-}
-interface HmacAuthSpec {
-    mode: 'hmac';
-    credential: CredentialFieldSpec;
-    signatureHeader?: string;
-}
-interface NoneAuthSpec {
-    mode: 'none';
-}
-interface CustomAuthSpec {
-    mode: 'custom';
-    description: string;
-}
-interface ScopeDescriptor {
-    normalized: NormalizedPermission;
-    providerScope: string;
-    title: string;
-    reason: string;
-    risk: IntegrationActionRisk;
-    dataClass: IntegrationDataClass;
-}
-interface PermissionDescriptor {
-    normalized: NormalizedPermission;
-    providerScopes: string[];
-    title: string;
-    risk: IntegrationActionRisk;
-    dataClass: IntegrationDataClass;
-    reason: string;
-}
-interface CredentialFieldSpec {
-    label: string;
-    description: string;
-    env?: string;
-    example?: string;
-    regex?: string;
-    secret: boolean;
-}
-interface ConsoleStep {
-    id: string;
-    title: string;
-    detail: string;
-    copyValue?: string;
-}
-interface Quirk {
-    id: string;
-    severity: 'info' | 'warning' | 'critical';
-    message: string;
-}
-interface PostSetupCheck {
-    id: string;
-    title: string;
-    detail: string;
-}
-interface HealthcheckSpec {
-    id: string;
-    level: 'client_config' | 'connection' | 'webhook' | 'static';
-    method?: 'GET' | 'POST';
-    url?: string;
-    expectedStatus?: number[];
-    description: string;
-}
-interface IntegrationSetupSpec {
-    consoleUrl?: string;
-    consoleSteps: ConsoleStep[];
-    credentialFields: CredentialFieldSpec[];
-    redirectUriTemplate?: string;
-    knownQuirks?: Quirk[];
-    postSetup?: PostSetupCheck[];
-    healthcheck?: HealthcheckSpec;
-}
-interface IntegrationLifecycleSpec {
-    supportsRefresh: boolean;
-    supportsRevoke: boolean;
-    supportsIncrementalAuth: boolean;
-    recommendedHealthcheckIntervalHours?: number;
-    freshnessSloMinutes?: number;
-}
-interface IntegrationPlannerHints {
-    useFor: string[];
-    avoidFor?: string[];
-    dataFreshness: 'realtime' | 'near_realtime' | 'eventual' | 'manual';
-    writeRisk: 'low' | 'medium' | 'high';
-}
-interface IntegrationFamilySpec {
-    id: IntegrationFamilyId;
-    title: string;
-    authMode: IntegrationAuthMode;
-    consoleUrl?: string;
-    authorizationUrl?: string;
-    tokenUrl?: string;
-    redirectUriTemplate?: string;
-    credentialFields: CredentialFieldSpec[];
-    consoleSteps: ConsoleStep[];
-    knownQuirks?: Quirk[];
-    lifecycle: IntegrationLifecycleSpec;
-}
-interface IntegrationSpecValidationIssue {
-    path: string;
-    message: string;
-}
-interface IntegrationSpecValidationResult {
-    ok: boolean;
-    issues: IntegrationSpecValidationIssue[];
-}
-interface RenderSpecOptions {
-    host: string;
-    callbackPath?: string;
-}
-interface RenderedConsoleStep extends ConsoleStep {
-    detail: string;
-    copyValue?: string;
-}
-interface CredentialValidationInput {
-    field: CredentialFieldSpec;
-    value: string;
-}
-interface CredentialValidationResult {
-    ok: boolean;
-    field: string;
-    message?: string;
-}
-interface HealthcheckPlan {
-    kind: string;
-    healthcheck: HealthcheckSpec;
-    requires: Array<'client_id' | 'client_secret' | 'api_key' | 'hmac_secret' | 'connection_credentials'>;
-    message: string;
-}
-declare function specAuthToConnectorAuth(auth: IntegrationAuthSpec): IntegrationConnector['auth'];
-
-declare const INTEGRATION_FAMILIES: Record<IntegrationFamilyId, IntegrationFamilySpec>;
-declare function getIntegrationFamily(id: IntegrationFamilyId): IntegrationFamilySpec;
-
-declare function listIntegrationSpecs(): IntegrationSpec[];
-declare function getIntegrationSpec(kind: string): IntegrationSpec | undefined;
-declare function listExecutableIntegrationSpecs(): IntegrationSpec[];
-declare function integrationSpecToConnector(spec: IntegrationSpec, providerId?: string): IntegrationConnector;
-
-declare function renderConsoleSteps(spec: IntegrationSpec, options: RenderSpecOptions): RenderedConsoleStep[];
-declare function renderRunbookMarkdown(spec: IntegrationSpec, options: RenderSpecOptions): string;
-declare function renderAgentToolDescription(spec: IntegrationSpec): string;
-declare function buildHealthcheckPlan(spec: IntegrationSpec): HealthcheckPlan;
-declare function consoleStepsToText(steps: ConsoleStep[]): string;
-
-declare function validateIntegrationSpec(spec: IntegrationSpec): IntegrationSpecValidationResult;
-declare function assertValidIntegrationSpec(spec: IntegrationSpec): void;
-declare function validateCredentialFormat(field: CredentialFieldSpec, value: string): CredentialValidationResult;
-declare function validateCredentialSet(spec: IntegrationSpec, values: Record<string, string>): CredentialValidationResult[];
-
-type IntegrationProviderKind = 'first_party' | 'nango' | 'pipedream' | 'zapier' | 'activepieces' | 'tangle_catalog' | 'executor' | 'custom';
-type IntegrationConnectorCategory = 'email' | 'calendar' | 'chat' | 'crm' | 'storage' | 'docs' | 'database' | 'webhook' | 'workflow' | 'internal' | 'other';
-type IntegrationActionRisk = 'read' | 'write' | 'destructive';
-type IntegrationDataClass = 'public' | 'internal' | 'private' | 'sensitive' | 'secret';
-interface IntegrationActor {
-    type: 'user' | 'team' | 'app' | 'agent' | 'sandbox' | 'system';
-    id: string;
-}
-interface IntegrationConnectorAction {
-    id: string;
-    title: string;
-    risk: IntegrationActionRisk;
-    requiredScopes: string[];
-    dataClass: IntegrationDataClass;
-    description?: string;
-    approvalRequired?: boolean;
-    inputSchema?: unknown;
-    outputSchema?: unknown;
-}
-interface IntegrationConnectorTrigger {
-    id: string;
-    title: string;
-    requiredScopes: string[];
-    dataClass: IntegrationDataClass;
-    description?: string;
-    payloadSchema?: unknown;
-}
-interface IntegrationConnector {
-    id: string;
-    providerId: string;
-    title: string;
-    category: IntegrationConnectorCategory;
-    auth: 'oauth2' | 'api_key' | 'none' | 'custom';
-    scopes: string[];
-    actions: IntegrationConnectorAction[];
-    triggers?: IntegrationConnectorTrigger[];
-    metadata?: Record<string, unknown>;
-}
-interface SecretRef {
-    provider: string;
-    id: string;
-    label?: string;
-}
-interface IntegrationConnection {
-    id: string;
-    owner: IntegrationActor;
-    providerId: string;
-    connectorId: string;
-    status: 'pending' | 'active' | 'expired' | 'revoked' | 'error';
-    grantedScopes: string[];
-    account?: {
-        id?: string;
-        email?: string;
-        displayName?: string;
-    };
-    secretRef?: SecretRef;
-    createdAt: string;
-    updatedAt: string;
-    expiresAt?: string;
-    lastUsedAt?: string;
-    metadata?: Record<string, unknown>;
-}
-interface StartAuthRequest {
-    connectorId: string;
-    owner: IntegrationActor;
-    requestedScopes: string[];
-    redirectUri: string;
-    state?: string;
-    metadata?: Record<string, unknown>;
-}
-interface StartAuthResult {
-    providerId: string;
-    connectorId: string;
-    authUrl: string;
-    state: string;
-    expiresAt?: string;
-    metadata?: Record<string, unknown>;
-}
-interface CompleteAuthRequest {
-    connectorId: string;
-    owner: IntegrationActor;
-    code?: string;
-    state: string;
-    redirectUri: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationActionRequest {
-    connectionId: string;
-    action: string;
-    input?: unknown;
-    idempotencyKey?: string;
-    dryRun?: boolean;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationActionResult<T = unknown> {
-    ok: boolean;
-    action: string;
-    output?: T;
-    externalId?: string;
-    warnings?: string[];
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationTriggerSubscription {
-    id: string;
-    connectionId: string;
-    trigger: string;
-    targetUrl?: string;
-    status: 'active' | 'paused' | 'error';
-    createdAt: string;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationTriggerEvent<T = unknown> {
-    id: string;
-    providerId: string;
-    connectorId: string;
-    connectionId: string;
-    trigger: string;
-    occurredAt: string;
-    payload: T;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationProvider {
-    id: string;
-    kind: IntegrationProviderKind;
-    listConnectors(): Promise<IntegrationConnector[]> | IntegrationConnector[];
-    startAuth?(request: StartAuthRequest): Promise<StartAuthResult> | StartAuthResult;
-    completeAuth?(request: CompleteAuthRequest): Promise<IntegrationConnection> | IntegrationConnection;
-    invokeAction(connection: IntegrationConnection, request: IntegrationActionRequest): Promise<IntegrationActionResult> | IntegrationActionResult;
-    subscribeTrigger?(connection: IntegrationConnection, trigger: string, targetUrl?: string): Promise<IntegrationTriggerSubscription> | IntegrationTriggerSubscription;
-    unsubscribeTrigger?(subscriptionId: string): Promise<void> | void;
-    normalizeTriggerEvent?(raw: unknown): Promise<IntegrationTriggerEvent> | IntegrationTriggerEvent;
-}
-interface IntegrationConnectionStore {
-    get(connectionId: string): Promise<IntegrationConnection | undefined> | IntegrationConnection | undefined;
-    put(connection: IntegrationConnection): Promise<void> | void;
-    listByOwner(owner: IntegrationActor): Promise<IntegrationConnection[]> | IntegrationConnection[];
-    delete?(connectionId: string): Promise<void> | void;
-}
-interface IssueCapabilityRequest {
-    subject: IntegrationActor;
-    connectionId: string;
-    scopes: string[];
-    allowedActions: string[];
-    ttlMs: number;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationCapability {
-    id: string;
-    subject: IntegrationActor;
-    connectionId: string;
-    scopes: string[];
-    allowedActions: string[];
-    issuedAt: string;
-    expiresAt: string;
-    metadata?: Record<string, unknown>;
-}
-interface IssuedIntegrationCapability {
-    capability: IntegrationCapability;
-    token: string;
-}
-/**
- * Wraps every action invocation with cross-cutting discipline (idempotency,
- * conflict detection, rate-limiting, audit logging). Optional. When set on
- * the hub, runs BEFORE provider.invokeAction; can short-circuit (return a
- * result directly) or pass through (call `proceed()` to invoke the provider).
- *
- * Why this hook exists: production deployments need conflict-resolution
- * guarantees that span every provider, gateway, and webhook receiver. The
- * canonical implementation is a "MutationGuard" that:
- *   1. Short-circuits on a known idempotency key (returns recorded response).
- *   2. Refuses same-key-different-args (drift detection).
- *   3. Wraps `proceed()` and audit-logs the outcome.
- *   4. Translates upstream conflict signals into a structured result with
- *      alternatives the agent can act on.
- *
- * Implementations live in consumers (every product has different
- * persistence + telemetry needs); this interface is the contract.
- */
-interface IntegrationActionGuard {
-    /** Wrap an invokeAction call. Implementations MUST call `proceed()` to
-     *  invoke the underlying provider unless they're returning a cached or
-     *  short-circuited result.
-     *
-     *  @param ctx connection + request the hub is about to dispatch
-     *  @param proceed call to invoke the wrapped provider; returns the
-     *                 underlying IntegrationActionResult
-     *  @returns the result the hub should return to the caller
-     */
-    invokeAction(ctx: IntegrationGuardContext, proceed: () => Promise<IntegrationActionResult>): Promise<IntegrationActionResult>;
-}
-interface IntegrationGuardContext {
-    connection: IntegrationConnection;
-    request: IntegrationActionRequest;
-    /** The action descriptor from the connector manifest, if discovered. */
-    action?: IntegrationConnectorAction;
-}
-type IntegrationPolicyDecision = {
-    decision: 'allow';
-    reason: string;
-    metadata?: Record<string, unknown>;
-} | {
-    decision: 'require_approval';
-    reason: string;
-    approval: IntegrationApprovalRequest;
-    metadata?: Record<string, unknown>;
-} | {
-    decision: 'deny';
-    reason: string;
-    metadata?: Record<string, unknown>;
-};
-interface IntegrationApprovalRequest {
-    id: string;
-    connectionId: string;
-    providerId: string;
-    connectorId: string;
-    action: string;
-    actor: IntegrationActor;
-    risk: IntegrationActionRisk;
-    dataClass: IntegrationDataClass;
-    reason: string;
-    requestedAt: string;
-    inputPreview?: unknown;
-    metadata?: Record<string, unknown>;
-}
-interface IntegrationPolicyEngine {
-    decide(ctx: IntegrationGuardContext & {
-        subject: IntegrationActor;
-    }): Promise<IntegrationPolicyDecision> | IntegrationPolicyDecision;
-}
-interface IntegrationHubOptions {
-    providers: IntegrationProvider[];
-    store: IntegrationConnectionStore;
-    capabilitySecret: string;
-    /** Optional cross-cutting guard. If provided, every invokeAction call
-     *  passes through it before reaching the provider. See {@link IntegrationActionGuard}. */
-    guard?: IntegrationActionGuard;
-    /** Optional policy engine. Runs after capability/scope checks and before
-     *  provider invocation. Use it to pause writes, deny destructive actions,
-     *  or apply tenant-specific allow rules. */
-    policy?: IntegrationPolicyEngine;
-    now?: () => Date;
-}
-interface HttpIntegrationProviderOptions {
-    id: string;
-    kind?: IntegrationProviderKind;
-    connectors: IntegrationConnector[];
-    baseUrl: string;
-    bearer?: string;
-    fetchImpl?: typeof fetch;
-}
-interface InvokeWithCapabilityRequest extends Omit<IntegrationActionRequest, 'connectionId'> {
-    connectionId?: never;
-}
-declare class IntegrationError extends Error {
-    readonly code: 'provider_not_found' | 'connector_not_found' | 'connection_not_found' | 'connection_not_active' | 'auth_not_supported' | 'capability_invalid' | 'capability_expired' | 'scope_denied' | 'action_denied' | 'action_not_found' | 'trigger_not_found' | 'approval_required' | 'policy_denied';
-    constructor(message: string, code: 'provider_not_found' | 'connector_not_found' | 'connection_not_found' | 'connection_not_active' | 'auth_not_supported' | 'capability_invalid' | 'capability_expired' | 'scope_denied' | 'action_denied' | 'action_not_found' | 'trigger_not_found' | 'approval_required' | 'policy_denied');
-}
-declare class InMemoryConnectionStore implements IntegrationConnectionStore {
-    private readonly connections;
-    get(connectionId: string): IntegrationConnection | undefined;
-    put(connection: IntegrationConnection): void;
-    listByOwner(owner: IntegrationActor): IntegrationConnection[];
-    delete(connectionId: string): void;
-}
-declare class IntegrationHub {
-    private readonly providers;
-    private readonly store;
-    private readonly capabilitySecret;
-    private readonly guard;
-    private readonly policy;
-    private readonly now;
-    constructor(options: IntegrationHubOptions);
-    listConnectors(): Promise<IntegrationConnector[]>;
-    listRegistry(options?: ComposeIntegrationRegistryOptions): Promise<IntegrationRegistry>;
-    startAuth(providerId: string, request: StartAuthRequest): Promise<StartAuthResult>;
-    completeAuth(providerId: string, request: CompleteAuthRequest): Promise<IntegrationConnection>;
-    upsertConnection(connection: IntegrationConnection): Promise<IntegrationConnection>;
-    listConnections(owner: IntegrationActor): Promise<IntegrationConnection[]>;
-    issueCapability(request: IssueCapabilityRequest): Promise<IssuedIntegrationCapability>;
-    verifyCapability(token: string): IntegrationCapability;
-    invokeWithCapability(token: string, request: InvokeWithCapabilityRequest): Promise<IntegrationActionResult>;
-    subscribeTrigger(connectionId: string, trigger: string, targetUrl?: string): Promise<IntegrationTriggerSubscription>;
-    private requireProvider;
-    private requireConnector;
-    private requireConnection;
-    private assertConnectionActive;
-}
-declare function sanitizeConnection(connection: IntegrationConnection): Record<string, unknown>;
-declare function createMockIntegrationProvider(options?: {
-    id?: string;
-    connectors?: IntegrationConnector[];
-    onInvoke?: (connection: IntegrationConnection, request: IntegrationActionRequest) => IntegrationActionResult | Promise<IntegrationActionResult>;
-}): IntegrationProvider;
-declare function createHttpIntegrationProvider(options: HttpIntegrationProviderOptions): IntegrationProvider;
-declare function signCapability(capability: IntegrationCapability, secret: string): string;
-declare function verifyCapabilityToken(token: string, secret: string): IntegrationCapability;
-
-export { type HttpIntegrationProviderOptions as $, ACTIVEPIECES_OVERRIDES as A, type ApiKeyAuthSpec, type ConnectionCredentialResolverOptions as B, CANONICAL_INTEGRATION_ACTIONS as C, type ConsoleStep, type CredentialFieldSpec, type CredentialValidationInput, type CredentialValidationResult, type CustomAuthSpec, type ConnectorAdapter as D, type ConnectorAdapterProviderOptions as E, type ConnectorCredentials as F, type ConnectorInvocation as G, type ConnectorManifest as H, type HealthcheckPlan, type HealthcheckSpec, type HmacAuthSpec, type ConnectorManifestValidationIssue as I, INTEGRATION_FAMILIES, type IntegrationAuthMode, type IntegrationAuthSpec, type IntegrationFamilyId, type IntegrationFamilySpec, type IntegrationLifecycleSpec, type IntegrationPlannerHints, type IntegrationSetupSpec, type IntegrationSpec, type IntegrationSpecStatus, type IntegrationSpecValidationIssue, type IntegrationSpecValidationResult, type ConnectorManifestValidationResult as J, type ConsentSummary as K, type ConsistencyModel as L, CredentialsExpired as M, DEFAULT_INTEGRATION_BRIDGE_ENV as N, type NoneAuthSpec, type NormalizedPermission, DEFAULT_SIGNATURE_TOLERANCE_SECONDS as O, type OAuth2AuthSpec, type DataSourceMetadata as P, type PermissionDescriptor, type PostSetupCheck, DefaultIntegrationActionGuard as Q, type Quirk, type EventHandlerResult as R, type RenderSpecOptions, type RenderedConsoleStep, type ExchangeCodeInput as S, type ScopeDescriptor, type GatewayCatalogAction as T, type GatewayCatalogEntry as U, type GatewayCatalogProviderOptions as V, type GatewayCatalogTrigger as W, type GenericHmacVerifyOptions as X, type GoogleCalendarOptions as Y, type GoogleSheetsOptions as Z, type GraphqlOperationSpec as _, ACTIVEPIECES_PUBLIC_CATALOG_URL as a, type IntegrationInvocationEnvelopeValidationOptions as a$, type HubSpotOptions as a0, type ImportCatalogOptions as a1, InMemoryConnectionStore as a2, InMemoryIntegrationApprovalStore as a3, InMemoryIntegrationAuditStore as a4, InMemoryIntegrationEventStore as a5, InMemoryIntegrationGrantStore as a6, InMemoryIntegrationHealthcheckStore as a7, InMemoryIntegrationIdempotencyStore as a8, InMemoryIntegrationSecretStore as a9, type IntegrationCatalogFreshnessOptions as aA, type IntegrationCatalogFreshnessResult as aB, type IntegrationCatalogSource as aC, type IntegrationConnection as aD, type IntegrationConnectionStore as aE, type IntegrationConnector as aF, type IntegrationConnectorAction as aG, type IntegrationConnectorCategory as aH, type IntegrationConnectorTrigger as aI, type IntegrationCoveragePriority as aJ, type IntegrationCoverageSpec as aK, type IntegrationDataClass as aL, IntegrationError as aM, type IntegrationErrorCode as aN, type IntegrationEventStore as aO, type IntegrationGrant as aP, type IntegrationGrantStore as aQ, type IntegrationGuardContext as aR, type IntegrationHealthcheckCheck as aS, type IntegrationHealthcheckResult as aT, type IntegrationHealthcheckStatus as aU, type IntegrationHealthcheckStore as aV, IntegrationHub as aW, type IntegrationHubOptions as aX, type IntegrationIdempotencyRecord as aY, type IntegrationIdempotencyStore as aZ, type IntegrationInvocationEnvelope as a_, InMemoryIntegrationWorkflowStore as aa, InMemoryOAuthFlowStore as ab, type InboundEvent as ac, type InferIntegrationRequirementsOptions as ad, type InstalledIntegrationWorkflow as ae, type IntegrationActionGuard as af, type IntegrationActionPack as ag, type IntegrationActionRequest as ah, type IntegrationActionResult as ai, type IntegrationActionRisk as aj, type IntegrationActor as ak, type IntegrationApprovalFilter as al, type IntegrationApprovalRecord as am, type IntegrationApprovalRequest as an, type IntegrationApprovalResolution as ao, type IntegrationApprovalStatus as ap, type IntegrationApprovalStore as aq, type IntegrationAuditEvent as ar, type IntegrationAuditEventType as as, assertValidIntegrationSpec, type IntegrationAuditFilter as at, type IntegrationAuditSink as au, type IntegrationAuditStore as av, type IntegrationBridgePayload as aw, type IntegrationBridgeToolBinding as ax, type IntegrationCapability as ay, type IntegrationCapabilityBinding as az, ACTIVEPIECES_RUNTIME_SIGNATURE_HEADER as b, type ProviderPassthroughPolicy as b$, type IntegrationManifest as b0, type IntegrationManifestResolution as b1, type IntegrationPolicyDecision as b2, type IntegrationPolicyEffect as b3, type IntegrationPolicyEngine as b4, type IntegrationPolicyRule as b5, type IntegrationProvider as b6, type IntegrationProviderKind as b7, type IntegrationRateLimitDecision as b8, type IntegrationRateLimiter as b9, type IntegrationWorkflowDefinition as bA, IntegrationWorkflowRuntime as bB, type IntegrationWorkflowRuntimeHub as bC, type IntegrationWorkflowRuntimeOptions as bD, type IntegrationWorkflowStore as bE, type InvokeWithCapabilityRequest as bF, type IssueCapabilityRequest as bG, type IssuedIntegrationCapability as bH, type ManifestValidationIssue as bI, type ManifestValidationResult as bJ, type McpCatalog as bK, type McpCatalogTool as bL, type McpToolDefinition as bM, type MicrosoftCalendarOptions as bN, type MissingRequirementExplanation as bO, type NormalizedIntegrationError as bP, type NormalizedIntegrationResult as bQ, type NotionDatabaseOptions as bR, type OAuthFlowStore as bS, type OAuthTokens as bT, type OpenApiDocument as bU, type OpenApiOperation as bV, PROVIDER_PASSTHROUGH_ACTION as bW, type ParsedStripeSignatureHeader as bX, type PendingOAuthFlow as bY, type PlatformIntegrationPolicyPresetOptions as bZ, type ProviderHttpRequestInput as b_, type IntegrationRegistry as ba, type IntegrationRegistryConflict as bb, type IntegrationRegistryEntry as bc, type IntegrationRegistrySourceRef as bd, type IntegrationRegistrySummary as be, type IntegrationRequirement as bf, type IntegrationRequirementMode as bg, type IntegrationRequirementResolution as bh, type IntegrationRequirementStatus as bi, IntegrationRuntime as bj, IntegrationRuntimeError as bk, type IntegrationRuntimeHub as bl, type IntegrationRuntimeOptions as bm, type IntegrationSandboxBundle as bn, IntegrationSandboxHost as bo, type IntegrationSandboxHostHub as bp, type IntegrationSandboxHostOptions as bq, type IntegrationSecretStore as br, type IntegrationSupportTier as bs, type IntegrationToolDefinition as bt, type IntegrationToolSearchFilters as bu, buildHealthcheckPlan, type IntegrationToolSearchResult as bv, type IntegrationTriggerEvent as bw, type IntegrationTriggerSubscription as bx, type IntegrationUserAction as by, type IntegrationWebhookReceiverResult as bz, type ActivepiecesCatalogAuthField as c, auditIntegrationCatalogFreshness as c$, type RateLimitSpec as c0, type RefreshInput as c1, type RenderConsentOptions as c2, type ResolvedDataSource as c3, ResourceContention as c4, type RestConnectorSpec as c5, type RestCredentialPlacement as c6, type RestOperationSpec as c7, type RestRequestSpec as c8, type SecretRef as c9, type TangleCatalogRuntimeInvocation as cA, type TangleCatalogRuntimeModuleAction as cB, type TangleCatalogRuntimeNodeServerOptions as cC, type TangleCatalogRuntimePackageCoverageOptions as cD, type TangleCatalogRuntimePackageCoverageRow as cE, type TangleCatalogRuntimePackageManifest as cF, type TangleCatalogRuntimePackageManifestOptions as cG, type TangleCatalogRuntimePiece as cH, type TangleCatalogRuntimeRequest as cI, type TangleCatalogTriggerInvocation as cJ, type TangleIntegrationCatalogEntry as cK, type TangleIntegrationCatalogFreshnessOptions as cL, type TangleIntegrationCatalogFreshnessResult as cM, type TangleIntegrationContract as cN, type TangleIntegrationContractStatus as cO, type TangleIntegrationImplementationKind as cP, type TangleIntegrationInvokeInput as cQ, type TangleIntegrationInvokeResult as cR, TangleIntegrationsClient as cS, type TangleIntegrationsClientOptions as cT, type TwilioVerifyOptions as cU, _resetPendingFlowsForTests as cV, adapterManifestsToConnectors as cW, airtableConnector as cX, asanaConnector as cY, assertValidConnectorManifest as cZ, assertValidIntegrationManifest as c_, type SlackOptions as ca, type SlackVerifyOptions as cb, type StartAuthRequest as cc, type StartAuthResult as cd, type StartOAuthInput as ce, type StartOAuthOutput as cf, type StartedTangleCatalogRuntimeNodeServer as cg, StaticIntegrationPolicyEngine as ch, type StaticIntegrationPolicyOptions as ci, type StoredIntegrationEvent as cj, type StripeVerifyOptions as ck, TANGLE_CATALOG_RUNTIME_SIGNATURE_HEADER as cl, TANGLE_INTEGRATIONS_CATALOG_PROVIDER_ID as cm, TANGLE_INTEGRATIONS_CATALOG_SOURCE as cn, type TangleCatalogAuthResolverOptions as co, consoleStepsToText, type TangleCatalogExecutorInvocation as cp, type TangleCatalogExecutorProviderOptions as cq, type TangleCatalogHttpAuthResolverOptions as cr, type TangleCatalogHttpAuthResolverRequest as cs, type TangleCatalogHttpExecutorInvocation as ct, type TangleCatalogHttpExecutorOptions as cu, type TangleCatalogInstalledPackageExecutorOptions as cv, type TangleCatalogRuntimeActionRequest as cw, type TangleCatalogRuntimeHandlerOptions as cx, type TangleCatalogRuntimeHttpRequest as cy, type TangleCatalogRuntimeHttpResponse as cz, type ActivepiecesCatalogEntry as d, importGraphqlConnector as d$, auditTangleCatalogRuntimePackages as d0, auditTangleIntegrationCatalogFreshness as d1, buildActivepiecesConnectors as d2, buildActivepiecesRuntimeRequest as d3, buildApprovalRequest as d4, buildCanonicalLaunchConnectors as d5, buildDefaultIntegrationRegistry as d6, buildIntegrationBridgeEnvironment as d7, buildIntegrationBridgePayload as d8, buildIntegrationCoverageConnectors as d9, createIntegrationWorkflowRuntime as dA, createMockIntegrationProvider as dB, createPlatformIntegrationPolicyPreset as dC, createTangleCatalogCredentialAuthResolver as dD, createTangleCatalogExecutorProvider as dE, createTangleCatalogHttpAuthResolver as dF, createTangleCatalogHttpExecutor as dG, createTangleCatalogInstalledPackageExecutor as dH, createTangleCatalogRuntimeHandler as dI, createTangleCatalogRuntimeNodeRequestListener as dJ, createTangleIntegrationsClient as dK, declarativeRestConnector as dL, decodeIntegrationBridgePayload as dM, dispatchIntegrationInvocation as dN, encodeIntegrationBridgePayload as dO, exchangeAuthorizationCode as dP, explainMissingRequirements as dQ, extractActivepiecesPublicPieceCount as dR, extractExternalCatalogPublicCount as dS, firstHeader as dT, getActivepiecesOverride as dU, githubConnector as dV, gitlabConnector as dW, googleCalendar as dX, googleSheets as dY, healthcheckRequest as dZ, hubspot as d_, buildIntegrationInvocationEnvelope as da, buildIntegrationToolCatalog as db, buildTangleCatalogRuntimePackageManifest as dc, buildTangleCatalogRuntimeRequest as dd, buildTangleIntegrationCatalogConnectors as de, calendarExercisePlannerManifest as df, canonicalActionConnectorId as dg, canonicalConnectorId as dh, composeIntegrationRegistry as di, consumePendingFlow as dj, createActivepiecesExecutorProvider as dk, createActivepiecesHttpExecutor as dl, createApprovalBackedPolicyEngine as dm, createAuditingActionGuard as dn, createCatalogExecutorProvider as dp, createConnectionCredentialResolver as dq, createConnectorAdapterCatalogSource as dr, createConnectorAdapterProvider as ds, createCredentialBackedAdapterProvider as dt, createDefaultIntegrationActionGuard as du, createDefaultIntegrationPolicyEngine as dv, createGatewayCatalogProvider as dw, createHttpIntegrationProvider as dx, createIntegrationAuditEvent as dy, createIntegrationRuntime as dz, type ActivepiecesExecutorInvocation as e, verifyTangleCatalogRuntimeSignature as e$, importMcpConnector as e0, importOpenApiConnector as e1, inferIntegrationManifestFromTools as e2, inferIntegrationSupportTier as e3, integrationCoverageChecklistMarkdown as e4, integrationToolName as e5, invocationRequestFromEnvelope as e6, listActivepiecesCatalogEntries as e7, listIntegrationCoverageSpecs as e8, listTangleIntegrationCatalogEntries as e9, sanitizeAuditConnection as eA, sanitizeConnection as eB, searchIntegrationTools as eC, signActivepiecesRuntimeRequest as eD, signCapability as eE, signTangleCatalogRuntimeRequest as eF, slack as eG, slackEventsConnector as eH, startOAuthFlow as eI, startTangleCatalogRuntimeNodeServer as eJ, statusForCode as eK, storedEventToTriggerEvent as eL, stripePackConnector as eM, stripeWebhookReceiverConnector as eN, summarizeIntegrationRegistry as eO, tangleCatalogAuthValue as eP, toMcpTools as eQ, twilioSmsConnector as eR, validateConnectorManifest as eS, validateIntegrationInvocationEnvelope as eT, validateIntegrationManifest as eU, validateProviderPassthroughRequest as eV, verifyActivepiecesRuntimeSignature as eW, verifyCapabilityToken as eX, verifyHmacSignature as eY, verifySlackSignature as eZ, verifyStripeSignature as e_, listTangleIntegrationCatalogRuntimePackages as ea, listTangleIntegrationContracts as eb, manifestToConnector as ec, microsoftCalendar as ed, normalizeGatewayCatalog as ee, normalizeIntegrationError as ef, normalizeIntegrationResult as eg, notionDatabase as eh, parseIntegrationBridgeEnvironment as ei, parseIntegrationToolName as ej, parseStripeSignatureHeader as ek, receiveIntegrationWebhook as el, redactApprovalRequest as em, redactCapability as en, redactIntegrationBridgePayload as eo, redactInvocationEnvelope as ep, refreshAccessToken as eq, renderApprovalCopy as er, renderConsentSummary as es, renderTangleCatalogRuntimePnpmAddCommand as et, resolveConnectionCredentials as eu, resolveIntegrationApproval as ev, revokeConnection as ew, runIntegrationHealthcheck as ex, runIntegrationHealthchecks as ey, salesforceConnector as ez, type ActivepiecesExecutorProviderOptions as f, verifyTwilioSignature as f0, webhookConnector as f1, type ActivepiecesHttpExecutorOptions as g, getIntegrationFamily, getIntegrationSpec, type ActivepiecesPieceOverride as h, type ActivepiecesRuntimeRequest as i, integrationSpecToConnector, ApprovalBackedPolicyEngine as j, type ApprovalBackedPolicyOptions as k, type AuthSpec as l, listExecutableIntegrationSpecs, listIntegrationSpecs, type CASStrategy as m, type CanonicalIntegrationActionId as n, type CanonicalLaunchConnectorOptions as o, type Capability as p, type CapabilityClass as q, type CapabilityMutation as r, renderAgentToolDescription, renderConsoleSteps, renderRunbookMarkdown, type CapabilityMutationResult as s, specAuthToConnectorAuth, type CapabilityParameterSchema as t, type CapabilityRead as u, type CapabilityReadResult as v, validateCredentialFormat, validateCredentialSet, validateIntegrationSpec, type CatalogExecutorInvocation as w, type CatalogExecutorProviderOptions as x, type CompleteAuthRequest as y, type ComposeIntegrationRegistryOptions as z };
+export { O as ApiKeyAuthSpec, P as ConsoleStep, Q as CredentialFieldSpec, R as CredentialValidationInput, S as CredentialValidationResult, U as CustomAuthSpec, V as HealthcheckPlan, W as HealthcheckSpec, X as HmacAuthSpec, Y as INTEGRATION_FAMILIES, Z as IntegrationAuthMode, _ as IntegrationAuthSpec, $ as IntegrationFamilyId, a0 as IntegrationFamilySpec, a1 as IntegrationLifecycleSpec, a2 as IntegrationPlannerHints, a3 as IntegrationSetupSpec, a4 as IntegrationSpec, a5 as IntegrationSpecStatus, a6 as IntegrationSpecValidationIssue, a7 as IntegrationSpecValidationResult, a8 as NoneAuthSpec, a9 as NormalizedPermission, aa as OAuth2AuthSpec, ab as PermissionDescriptor, ac as PostSetupCheck, ad as Quirk, ae as RenderSpecOptions, af as RenderedConsoleStep, ag as ScopeDescriptor, ah as assertValidIntegrationSpec, ai as buildHealthcheckPlan, aj as consoleStepsToText, ak as getIntegrationFamily, al as getIntegrationSpec, am as integrationSpecToConnector, an as listExecutableIntegrationSpecs, ao as listIntegrationSpecs, ap as renderAgentToolDescription, aq as renderConsoleSteps, ar as renderRunbookMarkdown, as as specAuthToConnectorAuth, at as validateCredentialFormat, au as validateCredentialSet, av as validateIntegrationSpec } from './registry.js';
+import './index-BNb1A0Id.js';
+import './connectors/index.js';
+import 'node:http';