@trycompai/db 1.3.21-canary.1 → 1.3.22-canary.0

package/dist/schema.prisma

@@ -71,6 +71,7 @@ model User {
   invitations        Invitation[]
   members            Member[]
   sessions           Session[]
+  fleetPolicyResults FleetPolicyResult[]
 
   @@unique([email])
 }
@@ -168,6 +169,8 @@ model Member {
   createdTaskItems       TaskItem[]           @relation("TaskItemCreator")
   updatedTaskItems       TaskItem[]           @relation("TaskItemUpdater")
   assignedTaskItems      TaskItem[]           @relation("TaskItemAssignee")
+  createdFindings        Finding[]            @relation("FindingCreatedBy")
+  publishedPolicyVersions PolicyVersion[]     @relation("PolicyVersionPublisher")
 }
 
 model Invitation {
@@ -476,6 +479,76 @@ model Control {
 }
 
 
+// ===== finding.prisma =====
+enum FindingType {
+  soc2
+  iso27001
+}
+
+enum FindingStatus {
+  open
+  ready_for_review
+  needs_revision
+  closed
+}
+
+model FindingTemplate {
+  id        String   @id @default(dbgenerated("generate_prefixed_cuid('fnd_t'::text)"))
+  category  String // e.g., "evidence_issue", "further_evidence", "task_specific", "na_incorrect"
+  title     String // Short title
+  content   String // Full message template
+  order     Int      @default(0)
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  findings Finding[]
+}
+
+model Finding {
+  id           String        @id @default(dbgenerated("generate_prefixed_cuid('fnd'::text)"))
+  type         FindingType   @default(soc2)
+  status       FindingStatus @default(open)
+  content      String // Custom message or copied from template
+  revisionNote String? // Auditor's note when requesting revision
+
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  // Relationships
+  taskId         String
+  task           Task             @relation(fields: [taskId], references: [id], onDelete: Cascade)
+  templateId     String?
+  template       FindingTemplate? @relation(fields: [templateId], references: [id])
+  createdById    String
+  createdBy      Member           @relation("FindingCreatedBy", fields: [createdById], references: [id])
+  organizationId String
+  organization   Organization     @relation(fields: [organizationId], references: [id], onDelete: Cascade)
+
+  @@index([taskId])
+  @@index([organizationId, status])
+}
+
+
+// ===== fleet-policy-result.prisma =====
+model FleetPolicyResult {
+  id                  String   @id @default(dbgenerated("generate_prefixed_cuid('fpr'::text)"))
+  userId              String
+  organizationId      String
+  fleetPolicyId       Int
+  fleetPolicyName     String
+  fleetPolicyResponse String
+  attachments         String[] @default([])
+  createdAt           DateTime @default(now())
+  updatedAt           DateTime @updatedAt
+
+  user         User         @relation(fields: [userId], references: [id], onDelete: Cascade)
+  organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
+
+  @@index([userId])
+  @@index([organizationId])
+}
+
+
 // ===== framework-editor.prisma =====
 // --- Data for Framework Editor ---
 model FrameworkEditorVideo {
@@ -671,9 +744,9 @@ model IntegrationConnection {
     findings           IntegrationPlatformFinding[]
     checkRuns          IntegrationCheckRun[]
 
-    @@unique([providerId, organizationId])
     @@index([organizationId])
     @@index([providerId])
+    @@index([providerId, organizationId])
     @@index([status])
 }
 
@@ -1146,6 +1219,7 @@ model Organization {
   trustNdaAgreements                 TrustNDAAgreement[]
   trustDocuments                     TrustDocument[]
   trustResources                     TrustResource[]                     @relation("OrganizationTrustResources")
+  trustCustomLinks                   TrustCustomLink[]
   knowledgeBaseDocuments             KnowledgeBaseDocument[]
   questionnaires                     Questionnaire[]
   securityQuestionnaireManualAnswers SecurityQuestionnaireManualAnswer[]
@@ -1153,13 +1227,16 @@ model Organization {
   primaryColor                       String?
   trustPortalFaqs                    Json? // Array of { question: string, answer: string, order: number }
 
-
   // Integration Platform
   integrationConnections IntegrationConnection[]
   integrationOAuthApps   IntegrationOAuthApp[]
 
   // Browser Automation
   browserbaseContext BrowserbaseContext?
+  fleetPolicyResults FleetPolicyResult[]
+
+  // Findings
+  findings Finding[]
 
   @@index([slug])
 }
@@ -1177,6 +1254,7 @@ model Policy {
   description      String?
   status           PolicyStatus        @default(draft)
   content          Json[]
+  draftContent     Json[]              @default([])
   frequency        Frequency?
   department       Departments?
   isRequiredToSign Boolean             @default(true)
@@ -1202,10 +1280,37 @@ model Policy {
   policyTemplateId String?
   policyTemplate   FrameworkEditorPolicyTemplate? @relation(fields: [policyTemplateId], references: [id])
   controls         Control[]
+  currentVersionId String?                        @unique
+  currentVersion   PolicyVersion?                 @relation("PolicyCurrentVersion", fields: [currentVersionId], references: [id])
+  pendingVersionId String?
+  versions         PolicyVersion[]                @relation("PolicyVersions")
 
   @@index([organizationId])
 }
 
+model PolicyVersion {
+  id        String   @id @default(dbgenerated("generate_prefixed_cuid('pv'::text)"))
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  // Relations
+  policyId String
+  policy   Policy @relation("PolicyVersions", fields: [policyId], references: [id], onDelete: Cascade)
+  currentForPolicy Policy? @relation("PolicyCurrentVersion")
+
+  // Version details
+  version       Int
+  content       Json[]
+  pdfUrl        String?
+  publishedById String?
+  publishedBy   Member? @relation("PolicyVersionPublisher", fields: [publishedById], references: [id], onDelete: SetNull)
+  changelog     String?
+
+  @@unique([policyId, version])
+  @@index([policyId])
+  @@index([createdAt])
+}
+
 
 // ===== questionnaire.prisma =====
 model Questionnaire {
@@ -1453,6 +1558,7 @@ enum AuditLogEntityType {
   tests
   integration
   trust
+  finding
 }
 
 model GlobalVendors {
@@ -1742,6 +1848,7 @@ model Task {
 
   EvidenceAutomationRun EvidenceAutomationRun[]
   integrationCheckRuns  IntegrationCheckRun[]
+  findings              Finding[]
 }
 
 enum TaskStatus {
@@ -1775,9 +1882,12 @@ model Trust {
   domainVerified     Boolean      @default(false)
   isVercelDomain     Boolean      @default(false)
   vercelVerification String?
-  status             TrustStatus  @default(draft)
+  status             TrustStatus  @default(published)
   contactEmail       String?
 
+  /// Domains that bypass NDA signing when requesting trust portal access
+  allowedDomains String[] @default([])
+
   email         String?
   privacyPolicy String?
   soc2          Boolean @default(false)
@@ -1802,6 +1912,11 @@ model Trust {
   pci_dss_status   FrameworkStatus @default(started)
   iso9001_status   FrameworkStatus @default(started)
 
+  // Overview section for public trust portal
+  overviewTitle   String?
+  overviewContent String? // Markdown content with links
+  showOverview    Boolean @default(false)
+
   @@id([status, organizationId])
   @@unique([organizationId])
   @@index([organizationId])
@@ -1989,6 +2104,25 @@ model TrustDocument {
   @@index([organizationId, isActive])
 }
 
+model TrustCustomLink {
+  id String @id @default(dbgenerated("generate_prefixed_cuid('tcl'::text)"))
+
+  organizationId String
+  organization   Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
+
+  title       String
+  description String?
+  url         String
+  order       Int     @default(0)
+  isActive    Boolean @default(true)
+
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  @@index([organizationId])
+  @@index([organizationId, isActive, order])
+}
+
 
 // ===== vendor.prisma =====
 model Vendor {
@@ -2002,6 +2136,13 @@ model Vendor {
   residualProbability Likelihood     @default(very_unlikely)
   residualImpact      Impact         @default(insignificant)
   website             String?
+  isSubProcessor      Boolean        @default(false)
+
+  // Trust Portal display settings
+  logoUrl           String?
+  showOnTrustPortal Boolean @default(false)
+  trustPortalOrder  Int?
+  complianceBadges  Json? // Array of { type: 'soc2' | 'iso27001' | etc, verified: boolean }
 
   createdAt DateTime @default(now())
   updatedAt DateTime @updatedAt

package/package.json

@@ -1,15 +1,15 @@
 {
   "name": "@trycompai/db",
   "description": "Database package with Prisma client and schema for Comp AI",
-  "version": "1.3.21-canary.1",
+  "version": "1.3.22-canary.0",
   "dependencies": {
-    "@prisma/client": "^6.13.0",
+    "@prisma/client": "6.18.0",
     "dotenv": "^16.4.5",
     "zod": "^4.1.12"
   },
   "devDependencies": {
     "@types/node": "^24.2.0",
-    "prisma": "^6.13.0",
+    "prisma": "6.18.0",
     "ts-node": "^10.9.2",
     "typescript": "^5.9.2"
   },
@@ -42,9 +42,9 @@
     "directory": "packages/db"
   },
   "scripts": {
-    "build": "rm -rf dist && rm -rf ./prisma/generated && prisma generate && node scripts/combine-schemas.js && tsc",
+    "build": "rm -rf dist && rm -rf ./prisma/generated && node scripts/combine-schemas.js && prisma generate --schema=dist/schema.prisma && tsc",
     "check-types": "tsc --noEmit",
-    "db:generate": "prisma generate",
+    "db:generate": "node scripts/combine-schemas.js && prisma generate --schema=dist/schema.prisma",
     "db:migrate": "prisma migrate dev",
     "db:migrate:reset": "prisma migrate reset",
     "db:push": "prisma db push",