@trycompai/db 2.1.0 → 2.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/schema.prisma +304 -57
- package/package.json +1 -1
package/dist/schema.prisma
CHANGED
|
@@ -38,6 +38,7 @@ enum AttachmentEntityType {
|
|
|
38
38
|
comment
|
|
39
39
|
trust_nda
|
|
40
40
|
task_item
|
|
41
|
+
background_check
|
|
41
42
|
}
|
|
42
43
|
|
|
43
44
|
enum AttachmentType {
|
|
@@ -169,6 +170,7 @@ model Member {
|
|
|
169
170
|
jobTitle String?
|
|
170
171
|
isActive Boolean @default(true)
|
|
171
172
|
deactivated Boolean @default(false)
|
|
173
|
+
backgroundCheckExempt Boolean @default(false)
|
|
172
174
|
externalUserId String?
|
|
173
175
|
externalUserSource String?
|
|
174
176
|
employeeTrainingVideoCompletion EmployeeTrainingVideoCompletion[]
|
|
@@ -194,6 +196,7 @@ model Member {
|
|
|
194
196
|
performedFrameworkSyncOperations FrameworkSyncOperation[] @relation("FrameworkSyncOperationPerformer")
|
|
195
197
|
approvedTasks Task[] @relation("TaskApprover")
|
|
196
198
|
devices Device[]
|
|
199
|
+
backgroundCheckRequests BackgroundCheckRequest[]
|
|
197
200
|
}
|
|
198
201
|
|
|
199
202
|
model Invitation {
|
|
@@ -343,6 +346,71 @@ model EvidenceAutomation {
|
|
|
343
346
|
@@index([taskId])
|
|
344
347
|
}
|
|
345
348
|
|
|
349
|
+
// ===== background-check.prisma =====
|
|
350
|
+
model BackgroundCheckRequest {
|
|
351
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bcr'::text)"))
|
|
352
|
+
organizationId String
|
|
353
|
+
memberId String
|
|
354
|
+
employeeEmail String
|
|
355
|
+
employeeName String
|
|
356
|
+
requesterNotes String?
|
|
357
|
+
identityBackgroundCheckId String? @unique
|
|
358
|
+
candidateUrl String?
|
|
359
|
+
status BackgroundCheckStatus @default(invited)
|
|
360
|
+
identityStatus String?
|
|
361
|
+
employmentStatus String?
|
|
362
|
+
referenceStatus String?
|
|
363
|
+
rightToWorkStatus String?
|
|
364
|
+
adjudicationStatus String?
|
|
365
|
+
stripePaymentIntentId String?
|
|
366
|
+
stripePaymentStatus String?
|
|
367
|
+
stripeRefundId String?
|
|
368
|
+
stripeAmountCents Int?
|
|
369
|
+
stripeCurrency String?
|
|
370
|
+
lastWebhookEventId String?
|
|
371
|
+
lastSyncedAt DateTime?
|
|
372
|
+
reportSnapshot Json?
|
|
373
|
+
reportSyncedAt DateTime?
|
|
374
|
+
createdAt DateTime @default(now())
|
|
375
|
+
updatedAt DateTime @updatedAt
|
|
376
|
+
|
|
377
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
378
|
+
member Member @relation(fields: [memberId], references: [id], onDelete: Cascade)
|
|
379
|
+
webhookEvents BackgroundCheckWebhookEvent[]
|
|
380
|
+
|
|
381
|
+
@@unique([organizationId, memberId])
|
|
382
|
+
@@index([organizationId])
|
|
383
|
+
@@index([memberId])
|
|
384
|
+
@@index([status])
|
|
385
|
+
@@map("background_check_requests")
|
|
386
|
+
}
|
|
387
|
+
|
|
388
|
+
model BackgroundCheckWebhookEvent {
|
|
389
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bcw'::text)"))
|
|
390
|
+
eventId String @unique
|
|
391
|
+
eventType String
|
|
392
|
+
backgroundCheckRequestId String?
|
|
393
|
+
identityBackgroundCheckId String?
|
|
394
|
+
payload Json
|
|
395
|
+
processedAt DateTime @default(now())
|
|
396
|
+
|
|
397
|
+
backgroundCheckRequest BackgroundCheckRequest? @relation(fields: [backgroundCheckRequestId], references: [id], onDelete: SetNull)
|
|
398
|
+
|
|
399
|
+
@@index([backgroundCheckRequestId])
|
|
400
|
+
@@index([identityBackgroundCheckId])
|
|
401
|
+
@@map("background_check_webhook_events")
|
|
402
|
+
}
|
|
403
|
+
|
|
404
|
+
enum BackgroundCheckStatus {
|
|
405
|
+
invited
|
|
406
|
+
in_progress
|
|
407
|
+
in_review
|
|
408
|
+
completed
|
|
409
|
+
completed_with_flags
|
|
410
|
+
failed
|
|
411
|
+
cancelled
|
|
412
|
+
}
|
|
413
|
+
|
|
346
414
|
// ===== browserbase-context.prisma =====
|
|
347
415
|
/// Stores Browserbase context IDs for browser-based automation
|
|
348
416
|
/// One context per organization - shared like a normal browser
|
|
@@ -748,6 +816,21 @@ model EvidenceSubmission {
|
|
|
748
816
|
@@index([submittedById, status])
|
|
749
817
|
}
|
|
750
818
|
|
|
819
|
+
model EvidenceFormSetting {
|
|
820
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('efs'::text)"))
|
|
821
|
+
organizationId String
|
|
822
|
+
formType EvidenceFormType
|
|
823
|
+
isNotRelevant Boolean @default(false)
|
|
824
|
+
createdAt DateTime @default(now())
|
|
825
|
+
updatedAt DateTime @updatedAt
|
|
826
|
+
|
|
827
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
828
|
+
|
|
829
|
+
@@unique([organizationId, formType])
|
|
830
|
+
@@index([organizationId])
|
|
831
|
+
@@index([organizationId, isNotRelevant])
|
|
832
|
+
}
|
|
833
|
+
|
|
751
834
|
// ===== finding.prisma =====
|
|
752
835
|
enum FindingType {
|
|
753
836
|
soc2
|
|
@@ -1664,18 +1747,146 @@ model OrganizationChart {
|
|
|
1664
1747
|
|
|
1665
1748
|
// ===== organization-billing.prisma =====
|
|
1666
1749
|
model OrganizationBilling {
|
|
1667
|
-
id
|
|
1668
|
-
organizationId
|
|
1669
|
-
stripeCustomerId
|
|
1670
|
-
|
|
1671
|
-
|
|
1750
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('obil'::text)"))
|
|
1751
|
+
organizationId String @unique @map("organization_id")
|
|
1752
|
+
stripeCustomerId String @map("stripe_customer_id")
|
|
1753
|
+
stripePaymentMethodId String? @map("stripe_payment_method_id")
|
|
1754
|
+
paymentMethodUpdatedAt DateTime? @map("payment_method_updated_at")
|
|
1755
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1756
|
+
updatedAt DateTime @updatedAt @map("updated_at")
|
|
1672
1757
|
|
|
1673
|
-
organization
|
|
1674
|
-
pentestSubscription PentestSubscription?
|
|
1758
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1675
1759
|
|
|
1676
1760
|
@@map("organization_billing")
|
|
1677
1761
|
}
|
|
1678
1762
|
|
|
1763
|
+
model OrganizationBillingSubscription {
|
|
1764
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('obs'::text)"))
|
|
1765
|
+
organizationId String @map("organization_id")
|
|
1766
|
+
skuKey String @map("sku_key")
|
|
1767
|
+
stripeSubscriptionId String @map("stripe_subscription_id")
|
|
1768
|
+
stripeSubscriptionItemId String @map("stripe_subscription_item_id")
|
|
1769
|
+
stripePriceId String @map("stripe_price_id")
|
|
1770
|
+
stripeStatus String @map("stripe_status")
|
|
1771
|
+
currentPeriodStart DateTime? @map("current_period_start")
|
|
1772
|
+
currentPeriodEnd DateTime? @map("current_period_end")
|
|
1773
|
+
includedQuantity Int @map("included_quantity")
|
|
1774
|
+
usedQuantity Int @default(0) @map("used_quantity")
|
|
1775
|
+
cancelAtPeriodEnd Boolean @default(false) @map("cancel_at_period_end")
|
|
1776
|
+
canceledAt DateTime? @map("canceled_at")
|
|
1777
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1778
|
+
updatedAt DateTime @updatedAt @map("updated_at")
|
|
1779
|
+
|
|
1780
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1781
|
+
|
|
1782
|
+
@@unique([organizationId, skuKey])
|
|
1783
|
+
@@unique([stripeSubscriptionId, stripeSubscriptionItemId], map: "org_billing_subs_stripe_sub_item_key")
|
|
1784
|
+
@@index([organizationId])
|
|
1785
|
+
@@index([stripeSubscriptionId])
|
|
1786
|
+
@@index([skuKey])
|
|
1787
|
+
@@map("organization_billing_subscriptions")
|
|
1788
|
+
}
|
|
1789
|
+
|
|
1790
|
+
model BillingUsageEvent {
|
|
1791
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bue'::text)"))
|
|
1792
|
+
organizationId String @map("organization_id")
|
|
1793
|
+
skuKey String @map("sku_key")
|
|
1794
|
+
eventType String @map("event_type")
|
|
1795
|
+
quantity Int
|
|
1796
|
+
sourceResourceId String? @map("source_resource_id")
|
|
1797
|
+
idempotencyKey String @unique @map("idempotency_key")
|
|
1798
|
+
stripeEventId String? @map("stripe_event_id")
|
|
1799
|
+
stripeInvoiceId String? @map("stripe_invoice_id")
|
|
1800
|
+
stripeSubscriptionItemId String? @map("stripe_subscription_item_id")
|
|
1801
|
+
periodStart DateTime? @map("period_start")
|
|
1802
|
+
periodEnd DateTime? @map("period_end")
|
|
1803
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1804
|
+
|
|
1805
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1806
|
+
|
|
1807
|
+
@@index([organizationId, skuKey])
|
|
1808
|
+
@@index([stripeEventId])
|
|
1809
|
+
@@index([stripeInvoiceId])
|
|
1810
|
+
@@map("billing_usage_events")
|
|
1811
|
+
}
|
|
1812
|
+
|
|
1813
|
+
model StripeWebhookEvent {
|
|
1814
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('swe'::text)"))
|
|
1815
|
+
stripeEventId String @unique @map("stripe_event_id")
|
|
1816
|
+
eventType String @map("event_type")
|
|
1817
|
+
payload Json
|
|
1818
|
+
status String @default("processed")
|
|
1819
|
+
error String?
|
|
1820
|
+
processedAt DateTime @default(now()) @map("processed_at")
|
|
1821
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1822
|
+
|
|
1823
|
+
@@index([eventType])
|
|
1824
|
+
@@index([status])
|
|
1825
|
+
@@map("stripe_webhook_events")
|
|
1826
|
+
}
|
|
1827
|
+
|
|
1828
|
+
model BillingAuditEvent {
|
|
1829
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bae'::text)"))
|
|
1830
|
+
organizationId String @map("organization_id")
|
|
1831
|
+
eventType String @map("event_type")
|
|
1832
|
+
skuKey String? @map("sku_key")
|
|
1833
|
+
stripeEventId String? @map("stripe_event_id")
|
|
1834
|
+
metadata Json?
|
|
1835
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1836
|
+
|
|
1837
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1838
|
+
|
|
1839
|
+
@@index([organizationId])
|
|
1840
|
+
@@index([stripeEventId])
|
|
1841
|
+
@@index([skuKey])
|
|
1842
|
+
@@map("billing_audit_events")
|
|
1843
|
+
}
|
|
1844
|
+
|
|
1845
|
+
model BillingCreditBalance {
|
|
1846
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bcb'::text)"))
|
|
1847
|
+
organizationId String @map("organization_id")
|
|
1848
|
+
productKey String @map("product_key")
|
|
1849
|
+
skuKey String? @map("sku_key")
|
|
1850
|
+
balance Int @default(0)
|
|
1851
|
+
totalGranted Int @default(0) @map("total_granted")
|
|
1852
|
+
totalConsumed Int @default(0) @map("total_consumed")
|
|
1853
|
+
totalRefunded Int @default(0) @map("total_refunded")
|
|
1854
|
+
lastSource String @default("manual") @map("last_source")
|
|
1855
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1856
|
+
updatedAt DateTime @updatedAt @map("updated_at")
|
|
1857
|
+
|
|
1858
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1859
|
+
events BillingCreditEvent[]
|
|
1860
|
+
|
|
1861
|
+
@@index([organizationId, productKey])
|
|
1862
|
+
@@map("billing_credit_balances")
|
|
1863
|
+
}
|
|
1864
|
+
|
|
1865
|
+
model BillingCreditEvent {
|
|
1866
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('bce'::text)"))
|
|
1867
|
+
organizationId String @map("organization_id")
|
|
1868
|
+
balanceId String @map("balance_id")
|
|
1869
|
+
productKey String @map("product_key")
|
|
1870
|
+
skuKey String? @map("sku_key")
|
|
1871
|
+
eventType String @map("event_type")
|
|
1872
|
+
quantity Int
|
|
1873
|
+
source String
|
|
1874
|
+
note String?
|
|
1875
|
+
adminUserId String? @map("admin_user_id")
|
|
1876
|
+
sourceResourceId String? @map("source_resource_id")
|
|
1877
|
+
linkedEventId String? @map("linked_event_id")
|
|
1878
|
+
idempotencyKey String @unique @map("idempotency_key")
|
|
1879
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
1880
|
+
|
|
1881
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
1882
|
+
balance BillingCreditBalance @relation(fields: [balanceId], references: [id], onDelete: Cascade)
|
|
1883
|
+
|
|
1884
|
+
@@index([organizationId, productKey])
|
|
1885
|
+
@@index([sourceResourceId])
|
|
1886
|
+
@@index([linkedEventId])
|
|
1887
|
+
@@map("billing_credit_events")
|
|
1888
|
+
}
|
|
1889
|
+
|
|
1679
1890
|
// ===== organization.prisma =====
|
|
1680
1891
|
model Organization {
|
|
1681
1892
|
id String @id @default(dbgenerated("generate_prefixed_cuid('org'::text)"))
|
|
@@ -1692,6 +1903,7 @@ model Organization {
|
|
|
1692
1903
|
evidenceApprovalEnabled Boolean @default(false)
|
|
1693
1904
|
deviceAgentStepEnabled Boolean @default(true)
|
|
1694
1905
|
securityTrainingStepEnabled Boolean @default(true)
|
|
1906
|
+
backgroundCheckStepEnabled Boolean @default(true)
|
|
1695
1907
|
whistleblowerReportEnabled Boolean @default(true)
|
|
1696
1908
|
accessRequestFormEnabled Boolean @default(true)
|
|
1697
1909
|
|
|
@@ -1718,6 +1930,7 @@ model Organization {
|
|
|
1718
1930
|
comments Comment[]
|
|
1719
1931
|
attachments Attachment[]
|
|
1720
1932
|
evidenceSubmissions EvidenceSubmission[]
|
|
1933
|
+
evidenceFormSettings EvidenceFormSetting[]
|
|
1721
1934
|
trust Trust[]
|
|
1722
1935
|
context Context[]
|
|
1723
1936
|
secrets Secret[]
|
|
@@ -1739,9 +1952,16 @@ model Organization {
|
|
|
1739
1952
|
integrationOAuthApps IntegrationOAuthApp[]
|
|
1740
1953
|
integrationSyncLogs IntegrationSyncLog[]
|
|
1741
1954
|
|
|
1742
|
-
// Pentest
|
|
1743
|
-
|
|
1744
|
-
|
|
1955
|
+
// Pentest credits — wallet of run-credits an org can spend.
|
|
1956
|
+
// Source of credits (trial / future Stripe subscription / top-up)
|
|
1957
|
+
// is metadata on the row; balance is unified.
|
|
1958
|
+
pentestCredits PentestCredits?
|
|
1959
|
+
billing OrganizationBilling?
|
|
1960
|
+
billingSubscriptions OrganizationBillingSubscription[]
|
|
1961
|
+
billingUsageEvents BillingUsageEvent[]
|
|
1962
|
+
billingAuditEvents BillingAuditEvent[]
|
|
1963
|
+
billingCreditBalances BillingCreditBalance[]
|
|
1964
|
+
billingCreditEvents BillingCreditEvent[]
|
|
1745
1965
|
|
|
1746
1966
|
// Browser Automation
|
|
1747
1967
|
browserbaseContext BrowserbaseContext?
|
|
@@ -1753,6 +1973,9 @@ model Organization {
|
|
|
1753
1973
|
// Device Agent
|
|
1754
1974
|
devices Device[]
|
|
1755
1975
|
|
|
1976
|
+
// Background Checks
|
|
1977
|
+
backgroundCheckRequests BackgroundCheckRequest[]
|
|
1978
|
+
|
|
1756
1979
|
// Org Chart
|
|
1757
1980
|
organizationChart OrganizationChart?
|
|
1758
1981
|
|
|
@@ -1770,26 +1993,51 @@ model Organization {
|
|
|
1770
1993
|
@@index([slug])
|
|
1771
1994
|
}
|
|
1772
1995
|
|
|
1773
|
-
// ===== pentest-
|
|
1774
|
-
|
|
1775
|
-
|
|
1776
|
-
|
|
1777
|
-
|
|
1778
|
-
|
|
1779
|
-
|
|
1780
|
-
|
|
1781
|
-
|
|
1782
|
-
|
|
1783
|
-
|
|
1784
|
-
|
|
1785
|
-
|
|
1786
|
-
|
|
1787
|
-
|
|
1788
|
-
|
|
1789
|
-
|
|
1996
|
+
// ===== pentest-credits.prisma =====
|
|
1997
|
+
/// Pentest credit wallet — one row per organization, holding the org's
|
|
1998
|
+
/// current quota for penetration test runs.
|
|
1999
|
+
///
|
|
2000
|
+
/// `balance` is the operative number: decremented atomically when a run is
|
|
2001
|
+
/// created, granted by trial bootstrap, future Stripe subscription renewals,
|
|
2002
|
+
/// future top-up purchases, etc. The wallet does not differentiate by
|
|
2003
|
+
/// source — credits are credits. The most recent grant source is recorded
|
|
2004
|
+
/// for support visibility, not for spend logic.
|
|
2005
|
+
///
|
|
2006
|
+
/// For a full audit trail of every grant/consume, a future
|
|
2007
|
+
/// `pentest_credit_entries` ledger table can be layered in. v1 sticks with
|
|
2008
|
+
/// running totals (`totalGranted` / `totalConsumed`) for simplicity.
|
|
2009
|
+
model PentestCredits {
|
|
2010
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('pcr'::text)"))
|
|
2011
|
+
organizationId String @unique @map("organization_id")
|
|
2012
|
+
|
|
2013
|
+
/// Spendable balance. Never negative.
|
|
2014
|
+
/// Enforced both in code (atomic `updateMany WHERE balance > 0` in
|
|
2015
|
+
/// PentestCreditsService.debitOrThrow) AND at the DB level via a
|
|
2016
|
+
/// CHECK constraint added in migration
|
|
2017
|
+
/// `20260429120000_pentest_credits_balance_check`. Prisma's schema
|
|
2018
|
+
/// DSL doesn't currently support CHECK constraints, hence the
|
|
2019
|
+
/// SQL-only migration.
|
|
2020
|
+
balance Int @default(0)
|
|
2021
|
+
|
|
2022
|
+
/// Lifetime totals — useful for analytics and "why do I have N credits?"
|
|
2023
|
+
/// support questions without needing a full ledger.
|
|
2024
|
+
totalGranted Int @default(0) @map("total_granted")
|
|
2025
|
+
totalConsumed Int @default(0) @map("total_consumed")
|
|
2026
|
+
|
|
2027
|
+
/// Where the most recent grant came from. Free-form string so v2 can add
|
|
2028
|
+
/// new sources (`subscription`, `topup`, `promo`, `refund`, …) without a
|
|
2029
|
+
/// schema change. `trial` is the v1 default.
|
|
2030
|
+
lastGrantSource String @default("trial") @map("last_grant_source")
|
|
2031
|
+
|
|
2032
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
2033
|
+
updatedAt DateTime @updatedAt @map("updated_at")
|
|
1790
2034
|
|
|
1791
|
-
|
|
1792
|
-
|
|
2035
|
+
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
2036
|
+
|
|
2037
|
+
// No explicit @@index([organizationId]) — `@unique` on organizationId
|
|
2038
|
+
// already creates a btree index, and a duplicate would just consume
|
|
2039
|
+
// disk + write amplification with no read benefit.
|
|
2040
|
+
@@map("pentest_credits")
|
|
1793
2041
|
}
|
|
1794
2042
|
|
|
1795
2043
|
// ===== policy.prisma =====
|
|
@@ -2037,20 +2285,6 @@ model Risk {
|
|
|
2037
2285
|
residualImpact Impact @default(insignificant)
|
|
2038
2286
|
treatmentStrategyDescription String?
|
|
2039
2287
|
treatmentStrategy RiskTreatmentType @default(accept)
|
|
2040
|
-
// Per-strategy text store. When the user switches strategies, the current
|
|
2041
|
-
// `treatmentStrategyDescription` is moved into this map under the OLD
|
|
2042
|
-
// strategy key, and the NEW strategy's saved value is loaded back into the
|
|
2043
|
-
// active field. Lets users keep an independent Mitigate plan + Accept
|
|
2044
|
-
// rationale + Transfer rationale on the same risk.
|
|
2045
|
-
// Shape: { mitigate?: string, accept?: string, transfer?: string, avoid?: string }
|
|
2046
|
-
strategyDescriptions Json?
|
|
2047
|
-
|
|
2048
|
-
// Active auto-link suggestion run (trigger.dev). Set when the user kicks
|
|
2049
|
-
// off an AI suggest scan; cleared when the user applies or discards. Lets
|
|
2050
|
-
// the UI resume an in-flight or completed-but-unreviewed scan after a
|
|
2051
|
-
// page reload so progress isn't lost.
|
|
2052
|
-
autoLinkRunId String?
|
|
2053
|
-
autoLinkRunStartedAt DateTime?
|
|
2054
2288
|
|
|
2055
2289
|
// Dates
|
|
2056
2290
|
createdAt DateTime @default(now())
|
|
@@ -2117,11 +2351,25 @@ model Secret {
|
|
|
2117
2351
|
|
|
2118
2352
|
// ===== security-penetration-test-run.prisma =====
|
|
2119
2353
|
model SecurityPenetrationTestRun {
|
|
2120
|
-
id
|
|
2121
|
-
organizationId
|
|
2122
|
-
providerRunId
|
|
2123
|
-
|
|
2124
|
-
|
|
2354
|
+
id String @id @default(dbgenerated("generate_prefixed_cuid('ptr'::text)"))
|
|
2355
|
+
organizationId String @map("organization_id")
|
|
2356
|
+
providerRunId String @map("provider_run_id")
|
|
2357
|
+
billingUsageSourceId String? @map("billing_usage_source_id")
|
|
2358
|
+
createdAt DateTime @default(now()) @map("created_at")
|
|
2359
|
+
updatedAt DateTime @updatedAt @map("updated_at")
|
|
2360
|
+
|
|
2361
|
+
/// Set the first time we refund this run's credit (e.g. on
|
|
2362
|
+
/// `pentest.failed` / `pentest.cancelled` webhooks). Used to make the
|
|
2363
|
+
/// refund idempotent — webhook redelivery cannot double-credit because
|
|
2364
|
+
/// the second attempt sees a non-null value here.
|
|
2365
|
+
creditRefundedAt DateTime? @map("credit_refunded_at")
|
|
2366
|
+
|
|
2367
|
+
/// Set the first time we write a `pentest_completed` audit-log entry
|
|
2368
|
+
/// for this run. Webhook redelivery would otherwise create duplicate
|
|
2369
|
+
/// rows in `audit_log` because Maced retries `pentest.completed` on
|
|
2370
|
+
/// transient delivery failures. The atomic claim on this column
|
|
2371
|
+
/// guarantees one audit row per run regardless of retry count.
|
|
2372
|
+
completedAuditAt DateTime? @map("completed_audit_at")
|
|
2125
2373
|
|
|
2126
2374
|
organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
|
|
2127
2375
|
|
|
@@ -2216,6 +2464,7 @@ enum AuditLogEntityType {
|
|
|
2216
2464
|
integration
|
|
2217
2465
|
trust
|
|
2218
2466
|
finding
|
|
2467
|
+
pentest
|
|
2219
2468
|
}
|
|
2220
2469
|
|
|
2221
2470
|
enum EvidenceFormType {
|
|
@@ -2699,6 +2948,7 @@ model Trust {
|
|
|
2699
2948
|
soc2 Boolean @default(false)
|
|
2700
2949
|
soc2type1 Boolean @default(false)
|
|
2701
2950
|
soc2type2 Boolean @default(false)
|
|
2951
|
+
soc3 Boolean @default(false)
|
|
2702
2952
|
iso27001 Boolean @default(false)
|
|
2703
2953
|
iso42001 Boolean @default(false)
|
|
2704
2954
|
nen7510 Boolean @default(false)
|
|
@@ -2706,10 +2956,13 @@ model Trust {
|
|
|
2706
2956
|
hipaa Boolean @default(false)
|
|
2707
2957
|
pci_dss Boolean @default(false)
|
|
2708
2958
|
iso9001 Boolean @default(false)
|
|
2959
|
+
pipeda Boolean @default(false)
|
|
2960
|
+
ccpa Boolean @default(false)
|
|
2709
2961
|
|
|
2710
2962
|
soc2_status FrameworkStatus @default(started)
|
|
2711
2963
|
soc2type1_status FrameworkStatus @default(started)
|
|
2712
2964
|
soc2type2_status FrameworkStatus @default(started)
|
|
2965
|
+
soc3_status FrameworkStatus @default(started)
|
|
2713
2966
|
iso27001_status FrameworkStatus @default(started)
|
|
2714
2967
|
iso42001_status FrameworkStatus @default(started)
|
|
2715
2968
|
nen7510_status FrameworkStatus @default(started)
|
|
@@ -2717,6 +2970,8 @@ model Trust {
|
|
|
2717
2970
|
hipaa_status FrameworkStatus @default(started)
|
|
2718
2971
|
pci_dss_status FrameworkStatus @default(started)
|
|
2719
2972
|
iso9001_status FrameworkStatus @default(started)
|
|
2973
|
+
pipeda_status FrameworkStatus @default(started)
|
|
2974
|
+
ccpa_status FrameworkStatus @default(started)
|
|
2720
2975
|
|
|
2721
2976
|
// Overview section for public trust portal
|
|
2722
2977
|
overviewTitle String?
|
|
@@ -2750,6 +3005,7 @@ enum TrustFramework {
|
|
|
2750
3005
|
hipaa
|
|
2751
3006
|
soc2_type1
|
|
2752
3007
|
soc2_type2
|
|
3008
|
+
soc3
|
|
2753
3009
|
pci_dss
|
|
2754
3010
|
nen_7510
|
|
2755
3011
|
iso_9001
|
|
@@ -2943,10 +3199,6 @@ model Vendor {
|
|
|
2943
3199
|
inherentImpact Impact @default(insignificant)
|
|
2944
3200
|
residualProbability Likelihood @default(very_unlikely)
|
|
2945
3201
|
residualImpact Impact @default(insignificant)
|
|
2946
|
-
treatmentStrategy RiskTreatmentType @default(accept)
|
|
2947
|
-
treatmentStrategyDescription String?
|
|
2948
|
-
// See `Risk.strategyDescriptions`.
|
|
2949
|
-
strategyDescriptions Json?
|
|
2950
3202
|
website String?
|
|
2951
3203
|
isSubProcessor Boolean @default(false)
|
|
2952
3204
|
|
|
@@ -2956,11 +3208,6 @@ model Vendor {
|
|
|
2956
3208
|
trustPortalOrder Int?
|
|
2957
3209
|
complianceBadges Json? // Array of { type: 'soc2' | 'iso27001' | etc, verified: boolean }
|
|
2958
3210
|
|
|
2959
|
-
// Active auto-link suggestion run (trigger.dev). Same semantics as
|
|
2960
|
-
// Risk.autoLinkRunId — lets the UI resume an in-flight scan on reload.
|
|
2961
|
-
autoLinkRunId String?
|
|
2962
|
-
autoLinkRunStartedAt DateTime?
|
|
2963
|
-
|
|
2964
3211
|
createdAt DateTime @default(now())
|
|
2965
3212
|
updatedAt DateTime @updatedAt
|
|
2966
3213
|
|