@vellumai/assistant 0.5.14 → 0.5.16

package/ARCHITECTURE.md

@@ -637,7 +637,7 @@ The assistant feature-flag resolver (`src/config/assistant-feature-flags.ts`) is
 | Enforcement Point                  | Module                                                        | Effect                                                                                                                                                                                                      |
 | ---------------------------------- | ------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
 | **1. Client skill list**           | `resolveSkillStates()` in `config/skill-state.ts`             | Skills with flag OFF are excluded from the resolved list returned to clients (macOS skill list, settings UI). The skill never appears in the client.                                                        |
-| **2. System prompt skill catalog** | `appendSkillsCatalog()` in `prompts/system-prompt.ts`         | The model-visible `## Skills Catalog` section in the system prompt filters out flagged-off skills. The model cannot see or reference them.                                                                  |
+| **2. Capability memory seeding**   | `seedCatalogSkillMemories()` in `skills/skill-memory.ts`      | Skills with flag OFF are excluded from capability memory seeding. The model cannot discover them via semantic recall.                                                                                        |
 | **3. `skill_load` tool**           | `executeSkillLoad()` in `tools/skills/load.ts`                | If the model attempts to load a flagged-off skill by name, the tool returns an error: `"skill is currently unavailable (disabled by feature flag)"`.                                                        |
 | **4. Runtime tool projection**     | `projectSkillTools()` in `daemon/conversation-skill-tools.ts` | Even if a skill was previously active in a session (has `<loaded_skill>` markers in history), the per-turn projection drops it when the flag is OFF. Already-registered tools are unregistered.             |
 | **5. Included child skills**       | `executeSkillLoad()` in `tools/skills/load.ts`                | When a parent skill includes children via the `includes` directive, each child is independently checked against its feature flag. Flagged-off children are silently excluded from the loaded skill content. |
@@ -653,7 +653,7 @@ All six enforcement points derive the flag key via `skillFlagKey(skill)` — whi
 | ----------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
 | `src/config/assistant-feature-flags.ts`         | Canonical resolver: `isAssistantFeatureFlagEnabled()`, `getAssistantFeatureFlagDefaults()`, registry loader                                                               |
 | `src/config/skill-state.ts`                     | `skillFlagKey(skill)` — returns canonical flag key for skills with a `featureFlag` frontmatter field, `undefined` otherwise; `resolveSkillStates()` — enforcement point 1 |
-| `src/prompts/system-prompt.ts`                  | `appendSkillsCatalog()` — enforcement point 2                                                                                                                             |
+| `src/skills/skill-memory.ts`                    | `seedCatalogSkillMemories()` — enforcement point 2                                                                                                                        |
 | `src/tools/skills/load.ts`                      | `executeSkillLoad()` — enforcement points 3 and 5                                                                                                                         |
 | `src/daemon/conversation-skill-tools.ts`        | `projectSkillTools()` — enforcement point 4                                                                                                                               |
 | `src/config/schema.ts`                          | `AssistantConfig` Zod schema definition (feature flag values are no longer stored here)                                                                                   |

package/docs/architecture/integrations.md

@@ -164,18 +164,18 @@ sequenceDiagram
 
 ### Key Design Decisions
 
-| Decision                                   | Rationale                                                                                                                                                                                                                                        |
-| ------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
-| PKCE by default, optional client_secret    | Desktop apps prefer PKCE; some providers (Slack) require a secret, which is stored in the credential store (`oauth_app/{id}/client_secret`) for autonomous refresh                                                                               |
-| Shared connect orchestrator                | All OAuth providers route through `orchestrateOAuthConnect()`, which resolves profiles, enforces scope policy, runs the flow, stores tokens, and verifies identity. Adding a provider is a declarative profile entry, not new orchestration code |
-| Canonical credential naming                | All reads and writes use `client_id`/`client_secret` as canonical field names                                                                                                                                                                    |
-| Gateway callback transport                 | OAuth callbacks are now routed through the gateway at `${ingress.publicBaseUrl}/webhooks/oauth/callback` instead of a loopback redirect URI. This enables OAuth flows to work in remote and tunneled deployments.                                |
-| Unified `MessagingProvider` interface      | All platforms implement the same contract; generic tools work immediately for new providers                                                                                                                                                      |
-| Provider auto-selection                    | If only one provider is connected, tools skip the `platform` parameter — seamless single-platform UX                                                                                                                                             |
-| Token expiry in SQLite oauth-store         | `oauth_connections.expires_at` column tracks token expiry; `TokenManager` reads it for proactive refresh with 5min buffer. No separate metadata store needed                                                                                     |
-| Confidence scores on medium-risk tools     | LLM self-reports confidence (0-1); enables future trust calibration without blocking execution                                                                                                                                                   |
-| Platform-specific extension tools          | Operations unique to one platform (e.g. Gmail labels, Slack reactions) are separate tools, not forced into the generic interface                                                                                                                 |
-| Identity verification before token storage | OAuth2 tokens are only persisted after a successful identity verification call, preventing storage of invalid or mismatched credentials                                                                                                          |
+| Decision                                   | Rationale                                                                                                                                                                                                                                                                                         |
+| ------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+| PKCE by default, optional client_secret    | Desktop apps prefer PKCE; some providers (Slack) require a secret, which is stored in the credential store (`oauth_app/{id}/client_secret`) for autonomous refresh                                                                                                                                |
+| Shared connect orchestrator                | All OAuth providers route through `orchestrateOAuthConnect()`, which resolves profiles, enforces scope policy, runs the flow, stores tokens, and verifies identity. Adding a provider is a declarative profile entry, not new orchestration code                                                  |
+| Canonical credential naming                | All reads and writes use `client_id`/`client_secret` as canonical field names                                                                                                                                                                                                                     |
+| Caller-driven callback transport           | Transport (`loopback` or `gateway`) is chosen per-flow via the `callbackTransport` option on the connect API, defaulting to loopback. Desktop clients use loopback (no tunnel needed); web clients can pass `callback_transport: "gateway"`. Provider configuration no longer dictates transport. |
+| Unified `MessagingProvider` interface      | All platforms implement the same contract; generic tools work immediately for new providers                                                                                                                                                                                                       |
+| Provider auto-selection                    | If only one provider is connected, tools skip the `platform` parameter — seamless single-platform UX                                                                                                                                                                                              |
+| Token expiry in SQLite oauth-store         | `oauth_connections.expires_at` column tracks token expiry; `TokenManager` reads it for proactive refresh with 5min buffer. No separate metadata store needed                                                                                                                                      |
+| Confidence scores on medium-risk tools     | LLM self-reports confidence (0-1); enables future trust calibration without blocking execution                                                                                                                                                                                                    |
+| Platform-specific extension tools          | Operations unique to one platform (e.g. Gmail labels, Slack reactions) are separate tools, not forced into the generic interface                                                                                                                                                                  |
+| Identity verification before token storage | OAuth2 tokens are only persisted after a successful identity verification call, preventing storage of invalid or mismatched credentials                                                                                                                                                           |
 
 ### Source Files
 
@@ -217,7 +217,7 @@ Each provider row includes:
 
 | Column group              | Fields                                                                                                                           | Purpose                                                                                |
 | ------------------------- | -------------------------------------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------- |
-| **Protocol**              | `authUrl`, `tokenUrl`, `tokenEndpointAuthMethod`, `callbackTransport`, `extraParams`, `loopbackPort`                             | OAuth2 flow parameters                                                                 |
+| **Protocol**              | `authUrl`, `tokenUrl`, `tokenEndpointAuthMethod`, `extraParams`, `loopbackPort`                                                  | OAuth2 flow parameters                                                                 |
 | **Scopes**                | `defaultScopes`, `scopePolicy`                                                                                                   | Deterministic scope resolution (user-customizable, preserved across seed restarts)     |
 | **Identity verification** | `identityUrl`, `identityMethod`, `identityHeaders`, `identityBody`, `identityResponsePaths`, `identityFormat`, `identityOkField` | Data-driven identity verifier fetches human-readable account info after token exchange |
 | **Injection templates**   | `injectionTemplates`                                                                                                             | Auto-applied credential injection rules for the script proxy                           |
@@ -265,10 +265,11 @@ This replaces provider-specific handlers — any provider in the registry can be
 ### Adding a New OAuth Provider
 
 1. **Add seed data** to `PROVIDER_SEED_DATA` in `assistant/src/oauth/seed-providers.ts`:
-   - Set protocol fields: `authUrl`, `tokenUrl`, `defaultScopes`, `scopePolicy`, `callbackTransport`.
+   - Set protocol fields: `authUrl`, `tokenUrl`, `defaultScopes`, `scopePolicy`, `loopbackPort`.
    - Set identity verification: `identityUrl`, `identityMethod`, `identityHeaders`, `identityResponsePaths`, `identityFormat`.
    - Set injection templates: `injectionTemplates` for providers whose tokens should be auto-injected by the script proxy.
    - Set setup metadata: `displayName`, `dashboardUrl`, `appType` enable the generic OAuth setup skill to guide users through app creation.
+   - Note: callback transport (`loopback` or `gateway`) is chosen per-flow by the caller, not per-provider. All providers support both transports.
 2. **Alternatively, register dynamically** via the CLI: `assistant oauth providers register <key> --auth-url ... --token-url ...`.
 3. **No handler code needed** — the generic `oauth_connect_start` handler and the connect orchestrator handle the flow automatically.
 

package/knip.json

@@ -3,7 +3,9 @@
     "src/**/*.test.ts",
     "src/**/__tests__/**/*.ts",
     "scripts/**/*.ts",
-    "src/daemon/main.ts"
+    "src/daemon/main.ts",
+    "src/messaging/providers/*/types.ts",
+    "src/messaging/providers/*/client.ts"
   ],
   "project": ["src/**/*.ts", "src/**/*.tsx", "scripts/**/*.ts"],
   "ignoreDependencies": [

package/openapi.yaml

@@ -3,7 +3,7 @@
 openapi: 3.0.0
 info:
   title: Vellum Assistant API
-  version: 0.5.13
+  version: 0.5.15
   description: Auto-generated OpenAPI specification for the Vellum Assistant runtime HTTP server.
 servers:
   - url: http://127.0.0.1:7821
@@ -1855,47 +1855,6 @@ paths:
               required:
                 - provider
               additionalProperties: false
-  /v1/config/permissions/skip:
-    get:
-      operationId: config_permissions_skip_get
-      summary: Get permission-skip flag
-      description: Return whether dangerouslySkipPermissions is enabled.
-      tags:
-        - config
-      responses:
-        "200":
-          description: Successful response
-          content:
-            application/json:
-              schema:
-                type: object
-                properties:
-                  enabled:
-                    type: boolean
-                required:
-                  - enabled
-                additionalProperties: false
-    put:
-      operationId: config_permissions_skip_put
-      summary: Set permission-skip flag
-      description: Enable or disable dangerouslySkipPermissions.
-      tags:
-        - config
-      responses:
-        "200":
-          description: Successful response
-      requestBody:
-        required: true
-        content:
-          application/json:
-            schema:
-              type: object
-              properties:
-                enabled:
-                  type: boolean
-              required:
-                - enabled
-              additionalProperties: false
   /v1/config/platform:
     get:
       operationId: config_platform_get
@@ -6759,7 +6718,7 @@ paths:
                   buckets:
                     type: array
                     items: {}
-                    description: Daily usage bucket objects
+                    description: Usage bucket objects
                 required:
                   - buckets
                 additionalProperties: false
@@ -6776,6 +6735,15 @@ paths:
           schema:
             type: integer
           description: End epoch millis (required)
+        - name: granularity
+          in: query
+          required: false
+          schema:
+            type: string
+            enum:
+              - daily
+              - hourly
+          description: 'Bucket granularity: "daily" (default) or "hourly"'
   /v1/usage/totals:
     get:
       operationId: usage_totals_get

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vellumai/assistant",
-  "version": "0.5.14",
+  "version": "0.5.16",
   "license": "MIT",
   "type": "module",
   "exports": {

package/src/__tests__/assistant-feature-flags-integration.test.ts

@@ -1,85 +1,20 @@
 /**
- * Integration tests for assistant feature flag enforcement at system prompt,
- * skill_load, and session-skill-tools projection layers.
+ * Integration tests for assistant feature flag resolver.
  *
  * Covers:
- *   - Flag OFF blocks all exposure paths
  *   - Missing persisted value falls back to code default
  *   - Protected feature-flags.json is the sole override mechanism
  *   - Undeclared keys default to enabled
  */
-import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
-import { join } from "node:path";
-import { afterEach, beforeEach, describe, expect, mock, test } from "bun:test";
+import { afterEach, beforeEach, describe, expect, test } from "bun:test";
 
 // ---------------------------------------------------------------------------
-// Test-scoped temp directory and config state
+// Test-scoped config state
 // ---------------------------------------------------------------------------
 
-const TEST_DIR = process.env.VELLUM_WORKSPACE_DIR!;
-
-let currentConfig: Record<string, unknown> = {
-  services: {
-    inference: {
-      mode: "your-own",
-      provider: "anthropic",
-      model: "claude-opus-4-6",
-    },
-    "image-generation": {
-      mode: "your-own",
-      provider: "gemini",
-      model: "gemini-3.1-flash-image-preview",
-    },
-    "web-search": { mode: "your-own", provider: "inference-provider-native" },
-  },
-};
-
 const DECLARED_FLAG_ID = "contacts";
 const DECLARED_FLAG_KEY = DECLARED_FLAG_ID;
-const DECLARED_SKILL_ID = "contacts";
-
-const noopLogger = new Proxy({} as Record<string, unknown>, {
-  get: (_target, prop) => (prop === "child" ? () => noopLogger : () => {}),
-});
-
-// eslint-disable-next-line @typescript-eslint/no-require-imports
-const realLogger = require("../util/logger.js");
-mock.module("../util/logger.js", () => ({
-  ...realLogger,
-  getLogger: () => noopLogger,
-  getCliLogger: () => noopLogger,
-  truncateForLog: (v: string) => v,
-  initLogger: () => {},
-  pruneOldLogFiles: () => 0,
-}));
 
-mock.module("../config/loader.js", () => ({
-  getConfig: () => currentConfig,
-  loadConfig: () => currentConfig,
-  loadRawConfig: () => ({}),
-  saveConfig: () => {},
-  saveRawConfig: () => {},
-  invalidateConfigCache: () => {},
-  getNestedValue: () => undefined,
-  setNestedValue: () => {},
-}));
-
-// eslint-disable-next-line @typescript-eslint/no-require-imports
-const realUserReference = require("../prompts/user-reference.js");
-mock.module("../prompts/user-reference.js", () => ({
-  ...realUserReference,
-  resolveUserReference: () => "TestUser",
-  resolveUserPronouns: () => null,
-}));
-
-// eslint-disable-next-line @typescript-eslint/no-require-imports
-const realCredentialMetadataStore = require("../tools/credentials/metadata-store.js");
-mock.module("../tools/credentials/metadata-store.js", () => ({
-  ...realCredentialMetadataStore,
-  listCredentialMetadata: () => [],
-}));
-
-const { buildSystemPrompt } = await import("../prompts/system-prompt.js");
 const { isAssistantFeatureFlagEnabled, _setOverridesForTesting } =
   await import("../config/assistant-feature-flags.js");
 const { skillFlagKey } = await import("../config/skill-state.js");
@@ -90,319 +25,12 @@ const { skillFlagKey } = await import("../config/skill-state.js");
 
 beforeEach(() => {
   _setOverridesForTesting({});
-  currentConfig = {
-    services: {
-      inference: {
-        mode: "your-own",
-        provider: "anthropic",
-        model: "claude-opus-4-6",
-      },
-      "image-generation": {
-        mode: "your-own",
-        provider: "gemini",
-        model: "gemini-3.1-flash-image-preview",
-      },
-      "web-search": { mode: "your-own", provider: "inference-provider-native" },
-    },
-  };
 });
 
 afterEach(() => {
   _setOverridesForTesting({});
 });
 
-// ---------------------------------------------------------------------------
-// Helpers
-// ---------------------------------------------------------------------------
-
-function createSkillOnDisk(
-  id: string,
-  name: string,
-  description: string,
-  featureFlag?: string,
-): void {
-  const skillsDir = join(TEST_DIR, "skills");
-  mkdirSync(join(skillsDir, id), { recursive: true });
-  const ffBlock = featureFlag
-    ? `\nmetadata: {"vellum":{"feature-flag":"${featureFlag}"}}`
-    : "";
-  writeFileSync(
-    join(skillsDir, id, "SKILL.md"),
-    `---\nname: "${name}"\ndescription: "${description}"${ffBlock}\n---\n\nInstructions for ${id}.\n`,
-  );
-  const indexPath = join(skillsDir, "SKILLS.md");
-  const existing = existsSync(indexPath)
-    ? readFileSync(indexPath, "utf-8")
-    : "";
-  writeFileSync(indexPath, existing + `- ${id}\n`);
-}
-
-// ---------------------------------------------------------------------------
-// System prompt — assistant feature flag filtering
-// ---------------------------------------------------------------------------
-
-describe("buildSystemPrompt assistant feature flag filtering", () => {
-  test("flag OFF skill does not appear in skills catalog", () => {
-    createSkillOnDisk(
-      DECLARED_SKILL_ID,
-      "Contacts",
-      "Toggle contacts behavior",
-      DECLARED_FLAG_ID,
-    );
-    createSkillOnDisk(
-      "browser",
-      "Browser",
-      "Web browsing automation",
-      "browser",
-    );
-
-    _setOverridesForTesting({
-      [DECLARED_FLAG_KEY]: false,
-      browser: true,
-    });
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    // browser is explicitly enabled, declared flagged skill is explicitly off
-    expect(result).toContain("**browser**");
-    expect(result).not.toContain(`**${DECLARED_SKILL_ID}**`);
-  });
-
-  test("contacts visible but email-channel hidden when no flag overrides set (contacts defaults true, email-channel defaults false)", () => {
-    createSkillOnDisk(
-      DECLARED_SKILL_ID,
-      "Contacts",
-      "Toggle contacts behavior",
-      DECLARED_FLAG_ID,
-    );
-    createSkillOnDisk(
-      "email-channel",
-      "Email Channel",
-      "Email channel setup",
-      "email-channel",
-    );
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    // contacts defaults to true, email-channel defaults to false
-    expect(result).toContain(`**${DECLARED_SKILL_ID}**`);
-    expect(result).not.toContain("**email-channel**");
-  });
-
-  test("flagged-off skills hidden when all flags are OFF", () => {
-    createSkillOnDisk(
-      DECLARED_SKILL_ID,
-      "Contacts",
-      "Toggle contacts behavior",
-      DECLARED_FLAG_ID,
-    );
-    createSkillOnDisk(
-      "email-channel",
-      "Email Channel",
-      "Email channel setup",
-      "email-channel",
-    );
-
-    _setOverridesForTesting({
-      [DECLARED_FLAG_KEY]: false,
-      "email-channel": false,
-    });
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    expect(result).not.toContain(`**${DECLARED_SKILL_ID}**`);
-    expect(result).not.toContain("**email-channel**");
-  });
-
-  test("file-based overrides control visibility", () => {
-    createSkillOnDisk(
-      DECLARED_SKILL_ID,
-      "Contacts",
-      "Toggle contacts behavior",
-      DECLARED_FLAG_ID,
-    );
-
-    _setOverridesForTesting({ [DECLARED_FLAG_KEY]: true });
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    expect(result).toContain(`**${DECLARED_SKILL_ID}**`);
-  });
-
-  test("persisted overrides for undeclared flags are respected", () => {
-    createSkillOnDisk(
-      "browser",
-      "Browser",
-      "Web browsing automation",
-      "browser",
-    );
-
-    _setOverridesForTesting({ browser: false });
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    // browser declares featureFlag: "browser" and the user
-    // explicitly disabled it — that override must be honored.
-    expect(result).not.toContain("**browser**");
-  });
-
-  test("declared flags with no persisted override use registry default", () => {
-    createSkillOnDisk(
-      "browser",
-      "Browser",
-      "Web browsing automation",
-      "browser",
-    );
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    // browser is declared in the registry with defaultEnabled: true
-    expect(result).toContain("**browser**");
-  });
-
-  test("skill without featureFlag is never flag-gated", () => {
-    createSkillOnDisk("my-skill", "My Skill", "A skill without feature flag");
-
-    currentConfig = {
-      services: {
-        inference: {
-          mode: "your-own",
-          provider: "anthropic",
-          model: "claude-opus-4-6",
-        },
-        "image-generation": {
-          mode: "your-own",
-          provider: "gemini",
-          model: "gemini-3.1-flash-image-preview",
-        },
-        "web-search": {
-          mode: "your-own",
-          provider: "inference-provider-native",
-        },
-      },
-    };
-
-    const result = buildSystemPrompt();
-
-    // Skills without featureFlag declared are never gated — always pass through
-    expect(result).toContain("**my-skill**");
-  });
-});
-
 // ---------------------------------------------------------------------------
 // Resolver unit tests (within integration context)
 // ---------------------------------------------------------------------------

package/src/__tests__/ces-rpc-credential-backend.test.ts

@@ -185,7 +185,10 @@ describe("CesRpcCredentialBackend", () => {
       const result = await backend.list();
 
       expect(callFn).toHaveBeenCalledWith(CesRpcMethod.ListCredentials, {});
-      expect(result).toEqual({ accounts: ["account-a", "account-b"], unreachable: false });
+      expect(result).toEqual({
+        accounts: ["account-a", "account-b"],
+        unreachable: false,
+      });
     });
 
     test("returns unreachable when RPC call throws", async () => {