@vm0/cli 9.156.9 → 9.157.1

package/{chunk-JZPZMJHP.js → chunk-YWCHIHYE.js}

@@ -4629,8 +4629,8 @@ var require_browser = __commonJS({
       if (!this.useColors) {
         return;
       }
-      const c106 = "color: " + this.color;
-      args.splice(1, 0, c106, "color: inherit");
+      const c107 = "color: " + this.color;
+      args.splice(1, 0, c107, "color: inherit");
       let index = 0;
       let lastC = 0;
       args[0].replace(/%[a-zA-Z%]/g, (match) => {
@@ -4642,7 +4642,7 @@ var require_browser = __commonJS({
           lastC = index;
         }
       });
-      args.splice(lastC, 0, c106);
+      args.splice(lastC, 0, c107);
     }
     exports.log = console.debug || console.log || (() => {
     });
@@ -4930,8 +4930,8 @@ var require_node = __commonJS({
     function formatArgs(args) {
       const { namespace: name, useColors: useColors2 } = this;
       if (useColors2) {
-        const c106 = this.color;
-        const colorCode = "\x1B[3" + (c106 < 8 ? c106 : "8;5;" + c106);
+        const c107 = this.color;
+        const colorCode = "\x1B[3" + (c107 < 8 ? c107 : "8;5;" + c107);
         const prefix = `  ${colorCode};1m${name} \x1B[0m`;
         args[0] = prefix + args[0].split("\n").join("\n" + prefix);
         args.push(colorCode + "m+" + module2.exports.humanize(this.diff) + "\x1B[0m");
@@ -8981,27 +8981,27 @@ var require_commonjs2 = __commonJS({
           const pad = n.some(isPadded);
           N = [];
           for (let i = x2; test(i, y) && N.length < max; i += incr) {
-            let c106;
+            let c107;
             if (isAlphaSequence) {
-              c106 = String.fromCharCode(i);
-              if (c106 === "\\") {
-                c106 = "";
+              c107 = String.fromCharCode(i);
+              if (c107 === "\\") {
+                c107 = "";
               }
             } else {
-              c106 = String(i);
+              c107 = String(i);
               if (pad) {
-                const need = width - c106.length;
+                const need = width - c107.length;
                 if (need > 0) {
                   const z3 = new Array(need + 1).join("0");
                   if (i < 0) {
-                    c106 = "-" + z3 + c106.slice(1);
+                    c107 = "-" + z3 + c107.slice(1);
                   } else {
-                    c106 = z3 + c106;
+                    c107 = z3 + c107;
                   }
                 }
               }
             }
-            N.push(c106);
+            N.push(c107);
           }
         } else {
           N = [];
@@ -9084,25 +9084,25 @@ var require_brace_expressions = __commonJS({
       let endPos = pos;
       let rangeStart = "";
       WHILE: while (i < glob.length) {
-        const c106 = glob.charAt(i);
-        if ((c106 === "!" || c106 === "^") && i === pos + 1) {
+        const c107 = glob.charAt(i);
+        if ((c107 === "!" || c107 === "^") && i === pos + 1) {
           negate = true;
           i++;
           continue;
         }
-        if (c106 === "]" && sawStart && !escaping) {
+        if (c107 === "]" && sawStart && !escaping) {
           endPos = i + 1;
           break;
         }
         sawStart = true;
-        if (c106 === "\\") {
+        if (c107 === "\\") {
           if (!escaping) {
             escaping = true;
             i++;
             continue;
           }
         }
-        if (c106 === "[" && !escaping) {
+        if (c107 === "[" && !escaping) {
           for (const [cls, [unip, u, neg]] of Object.entries(posixClasses)) {
             if (glob.startsWith(cls, i)) {
               if (rangeStart) {
@@ -9120,26 +9120,26 @@ var require_brace_expressions = __commonJS({
         }
         escaping = false;
         if (rangeStart) {
-          if (c106 > rangeStart) {
-            ranges.push(braceEscape(rangeStart) + "-" + braceEscape(c106));
-          } else if (c106 === rangeStart) {
-            ranges.push(braceEscape(c106));
+          if (c107 > rangeStart) {
+            ranges.push(braceEscape(rangeStart) + "-" + braceEscape(c107));
+          } else if (c107 === rangeStart) {
+            ranges.push(braceEscape(c107));
           }
           rangeStart = "";
           i++;
           continue;
         }
         if (glob.startsWith("-]", i + 1)) {
-          ranges.push(braceEscape(c106 + "-"));
+          ranges.push(braceEscape(c107 + "-"));
           i += 2;
           continue;
         }
         if (glob.startsWith("-", i + 1)) {
-          rangeStart = c106;
+          rangeStart = c107;
           i += 2;
           continue;
         }
-        ranges.push(braceEscape(c106));
+        ranges.push(braceEscape(c107));
         i++;
       }
       if (endPos < i) {
@@ -9189,8 +9189,8 @@ var require_ast = __commonJS({
     var brace_expressions_js_1 = require_brace_expressions();
     var unescape_js_1 = require_unescape();
     var types = /* @__PURE__ */ new Set(["!", "?", "+", "*", "@"]);
-    var isExtglobType = (c106) => types.has(c106);
-    var isExtglobAST = (c106) => isExtglobType(c106.type);
+    var isExtglobType = (c107) => types.has(c107);
+    var isExtglobAST = (c107) => isExtglobType(c107.type);
     var adoptionMap = /* @__PURE__ */ new Map([
       ["!", ["@"]],
       ["?", ["?", "@"]],
@@ -9387,11 +9387,11 @@ var require_ast = __commonJS({
           this.push(part.clone(this));
       }
       clone(parent) {
-        const c106 = new _a2(this.type, parent);
+        const c107 = new _a2(this.type, parent);
         for (const p of this.#parts) {
-          c106.copyIn(p);
+          c107.copyIn(p);
         }
-        return c106;
+        return c107;
       }
       static #parseAST(str, ast, pos, opt, extDepth) {
         const maxDepth = opt.maxExtglobRecursion ?? 2;
@@ -9403,39 +9403,39 @@ var require_ast = __commonJS({
           let i2 = pos;
           let acc2 = "";
           while (i2 < str.length) {
-            const c106 = str.charAt(i2++);
-            if (escaping || c106 === "\\") {
+            const c107 = str.charAt(i2++);
+            if (escaping || c107 === "\\") {
               escaping = !escaping;
-              acc2 += c106;
+              acc2 += c107;
               continue;
             }
             if (inBrace) {
               if (i2 === braceStart + 1) {
-                if (c106 === "^" || c106 === "!") {
+                if (c107 === "^" || c107 === "!") {
                   braceNeg = true;
                 }
-              } else if (c106 === "]" && !(i2 === braceStart + 2 && braceNeg)) {
+              } else if (c107 === "]" && !(i2 === braceStart + 2 && braceNeg)) {
                 inBrace = false;
               }
-              acc2 += c106;
+              acc2 += c107;
               continue;
-            } else if (c106 === "[") {
+            } else if (c107 === "[") {
               inBrace = true;
               braceStart = i2;
               braceNeg = false;
-              acc2 += c106;
+              acc2 += c107;
               continue;
             }
-            const doRecurse = !opt.noext && isExtglobType(c106) && str.charAt(i2) === "(" && extDepth <= maxDepth;
+            const doRecurse = !opt.noext && isExtglobType(c107) && str.charAt(i2) === "(" && extDepth <= maxDepth;
             if (doRecurse) {
               ast.push(acc2);
               acc2 = "";
-              const ext = new _a2(c106, ast);
+              const ext = new _a2(c107, ast);
               i2 = _a2.#parseAST(str, ext, i2, opt, extDepth + 1);
               ast.push(ext);
               continue;
             }
-            acc2 += c106;
+            acc2 += c107;
           }
           ast.push(acc2);
           return i2;
@@ -9445,48 +9445,48 @@ var require_ast = __commonJS({
         const parts = [];
         let acc = "";
         while (i < str.length) {
-          const c106 = str.charAt(i++);
-          if (escaping || c106 === "\\") {
+          const c107 = str.charAt(i++);
+          if (escaping || c107 === "\\") {
             escaping = !escaping;
-            acc += c106;
+            acc += c107;
             continue;
           }
           if (inBrace) {
             if (i === braceStart + 1) {
-              if (c106 === "^" || c106 === "!") {
+              if (c107 === "^" || c107 === "!") {
                 braceNeg = true;
               }
-            } else if (c106 === "]" && !(i === braceStart + 2 && braceNeg)) {
+            } else if (c107 === "]" && !(i === braceStart + 2 && braceNeg)) {
               inBrace = false;
             }
-            acc += c106;
+            acc += c107;
             continue;
-          } else if (c106 === "[") {
+          } else if (c107 === "[") {
             inBrace = true;
             braceStart = i;
             braceNeg = false;
-            acc += c106;
+            acc += c107;
             continue;
           }
-          const doRecurse = !opt.noext && isExtglobType(c106) && str.charAt(i) === "(" && /* c8 ignore start - the maxDepth is sufficient here */
-          (extDepth <= maxDepth || ast && ast.#canAdoptType(c106));
+          const doRecurse = !opt.noext && isExtglobType(c107) && str.charAt(i) === "(" && /* c8 ignore start - the maxDepth is sufficient here */
+          (extDepth <= maxDepth || ast && ast.#canAdoptType(c107));
           if (doRecurse) {
-            const depthAdd = ast && ast.#canAdoptType(c106) ? 0 : 1;
+            const depthAdd = ast && ast.#canAdoptType(c107) ? 0 : 1;
             part.push(acc);
             acc = "";
-            const ext = new _a2(c106, part);
+            const ext = new _a2(c107, part);
             part.push(ext);
             i = _a2.#parseAST(str, ext, i, opt, extDepth + depthAdd);
             continue;
           }
-          if (c106 === "|") {
+          if (c107 === "|") {
             part.push(acc);
             acc = "";
             parts.push(part);
             part = new _a2(null, ast);
             continue;
           }
-          if (c106 === ")") {
+          if (c107 === ")") {
             if (acc === "" && ast.#parts.length === 0) {
               ast.#emptyExt = true;
             }
@@ -9495,7 +9495,7 @@ var require_ast = __commonJS({
             ast.push(...parts, part);
             return i;
           }
-          acc += c106;
+          acc += c107;
         }
         ast.type = null;
         ast.#hasMagic = void 0;
@@ -9515,8 +9515,8 @@ var require_ast = __commonJS({
         }
         return this.#canAdoptType(gc.type, map2);
       }
-      #canAdoptType(c106, map2 = adoptionAnyMap) {
-        return !!map2.get(this.type)?.includes(c106);
+      #canAdoptType(c107, map2 = adoptionAnyMap) {
+        return !!map2.get(this.type)?.includes(c107);
       }
       #adoptWithSpace(child, index) {
         const gc = child.#parts[0];
@@ -9534,9 +9534,9 @@ var require_ast = __commonJS({
         }
         this.#toString = void 0;
       }
-      #canUsurpType(c106) {
+      #canUsurpType(c107) {
         const m = usurpMap.get(this.type);
-        return !!m?.has(c106);
+        return !!m?.has(c107);
       }
       #canUsurp(child) {
         if (!child || typeof child !== "object" || child.type !== null || child.#parts.length !== 1 || this.type === null || this.#parts.length !== 1) {
@@ -9749,18 +9749,18 @@ var require_ast = __commonJS({
           do {
             done = true;
             for (let i = 0; i < this.#parts.length; i++) {
-              const c106 = this.#parts[i];
-              if (typeof c106 === "object") {
-                c106.#flatten();
-                if (this.#canAdopt(c106)) {
+              const c107 = this.#parts[i];
+              if (typeof c107 === "object") {
+                c107.#flatten();
+                if (this.#canAdopt(c107)) {
                   done = false;
-                  this.#adopt(c106, i);
-                } else if (this.#canAdoptWithSpace(c106)) {
+                  this.#adopt(c107, i);
+                } else if (this.#canAdoptWithSpace(c107)) {
                   done = false;
-                  this.#adoptWithSpace(c106, i);
-                } else if (this.#canUsurp(c106)) {
+                  this.#adoptWithSpace(c107, i);
+                } else if (this.#canUsurp(c107)) {
                   done = false;
-                  this.#usurp(c106);
+                  this.#usurp(c107);
                 }
               }
             }
@@ -9784,13 +9784,13 @@ var require_ast = __commonJS({
         let uflag = false;
         let inStar = false;
         for (let i = 0; i < glob.length; i++) {
-          const c106 = glob.charAt(i);
+          const c107 = glob.charAt(i);
           if (escaping) {
             escaping = false;
-            re += (reSpecials.has(c106) ? "\\" : "") + c106;
+            re += (reSpecials.has(c107) ? "\\" : "") + c107;
             continue;
           }
-          if (c106 === "*") {
+          if (c107 === "*") {
             if (inStar)
               continue;
             inStar = true;
@@ -9800,7 +9800,7 @@ var require_ast = __commonJS({
           } else {
             inStar = false;
           }
-          if (c106 === "\\") {
+          if (c107 === "\\") {
             if (i === glob.length - 1) {
               re += "\\\\";
             } else {
@@ -9808,7 +9808,7 @@ var require_ast = __commonJS({
             }
             continue;
           }
-          if (c106 === "[") {
+          if (c107 === "[") {
             const [src, needUflag, consumed, magic] = (0, brace_expressions_js_1.parseClass)(glob, i);
             if (consumed) {
               re += src;
@@ -9818,12 +9818,12 @@ var require_ast = __commonJS({
               continue;
             }
           }
-          if (c106 === "?") {
+          if (c107 === "?") {
             re += qmark;
             hasMagic = true;
             continue;
           }
-          re += regExpEscape(c106);
+          re += regExpEscape(c107);
         }
         return [re, (0, unescape_js_1.unescape)(glob), !!hasMagic, uflag];
       }
@@ -13747,13 +13747,13 @@ var require_utils4 = __commonJS({
     }
     exports.arrayStringifyHelper = arrayStringifyHelper;
     function getPoolNameOld(pool) {
-      const c106 = pool.config.connectionConfig;
+      const c107 = pool.config.connectionConfig;
       let poolName = "";
-      poolName += c106.host ? `host: '${c106.host}', ` : "";
-      poolName += c106.port ? `port: ${c106.port}, ` : "";
-      poolName += c106.database ? `database: '${c106.database}', ` : "";
-      poolName += c106.user ? `user: '${c106.user}'` : "";
-      if (!c106.user) {
+      poolName += c107.host ? `host: '${c107.host}', ` : "";
+      poolName += c107.port ? `port: ${c107.port}, ` : "";
+      poolName += c107.database ? `database: '${c107.database}', ` : "";
+      poolName += c107.user ? `user: '${c107.user}'` : "";
+      if (!c107.user) {
         poolName = poolName.substring(0, poolName.length - 2);
       }
       return poolName.trim();
@@ -14105,7 +14105,7 @@ var require_src9 = __commonJS({
       return indexOpeningDashDashComment < indexClosingSlashComment;
     }
     function fixedEncodeURIComponent(str) {
-      return encodeURIComponent(str).replace(/[!'()*]/g, (c106) => `%${c106.charCodeAt(0).toString(16).toUpperCase()}`);
+      return encodeURIComponent(str).replace(/[!'()*]/g, (c107) => `%${c107.charCodeAt(0).toString(16).toUpperCase()}`);
     }
     function addSqlCommenterComment(span, query) {
       if (typeof query !== "string" || query.length === 0) {
@@ -22665,8 +22665,8 @@ var require_util = __commonJS({
     function isUSVString(val) {
       return hasIsWellFormed ? `${val}`.isWellFormed() : toUSVString(val) === `${val}`;
     }
-    function isTokenCharCode(c106) {
-      switch (c106) {
+    function isTokenCharCode(c107) {
+      switch (c107) {
         case 34:
         case 40:
         case 41:
@@ -22686,7 +22686,7 @@ var require_util = __commonJS({
         case 125:
           return false;
         default:
-          return c106 >= 33 && c106 <= 126;
+          return c107 >= 33 && c107 <= 126;
       }
     }
     function isValidHTTPToken(characters) {
@@ -24275,7 +24275,7 @@ var require_constants2 = __commonJS({
         exports.HEADER_CHARS.push(i);
       }
     }
-    exports.CONNECTION_TOKEN_CHARS = exports.HEADER_CHARS.filter((c106) => c106 !== 44);
+    exports.CONNECTION_TOKEN_CHARS = exports.HEADER_CHARS.filter((c107) => c107 !== 44);
     exports.MAJOR = exports.NUM_MAP;
     exports.MINOR = exports.MAJOR;
     var HEADER_STATE;
@@ -25421,10 +25421,10 @@ var require_util2 = __commonJS({
     }
     function isValidReasonPhrase(statusText) {
       for (let i = 0; i < statusText.length; ++i) {
-        const c106 = statusText.charCodeAt(i);
-        if (!(c106 === 9 || // HTAB
-        c106 >= 32 && c106 <= 126 || // SP / VCHAR
-        c106 >= 128 && c106 <= 255)) {
+        const c107 = statusText.charCodeAt(i);
+        if (!(c107 === 9 || // HTAB
+        c107 >= 32 && c107 <= 126 || // SP / VCHAR
+        c107 >= 128 && c107 <= 255)) {
           return false;
         }
       }
@@ -29398,7 +29398,7 @@ var require_pool_base = __commonJS({
             pool.emit("drain", origin, [pool, ...targets]);
           }
           if (pool[kClosedResolve] && queue.isEmpty()) {
-            Promise.all(pool[kClients].map((c106) => c106.close())).then(pool[kClosedResolve]);
+            Promise.all(pool[kClients].map((c107) => c107.close())).then(pool[kClosedResolve]);
           }
         };
         this[kOnConnect] = (origin, targets) => {
@@ -29447,7 +29447,7 @@ var require_pool_base = __commonJS({
       }
       async [kClose]() {
         if (this[kQueue].isEmpty()) {
-          await Promise.all(this[kClients].map((c106) => c106.close()));
+          await Promise.all(this[kClients].map((c107) => c107.close()));
         } else {
           await new Promise((resolve2) => {
             this[kClosedResolve] = resolve2;
@@ -29462,7 +29462,7 @@ var require_pool_base = __commonJS({
           }
           item.handler.onError(err);
         }
-        await Promise.all(this[kClients].map((c106) => c106.destroy(err)));
+        await Promise.all(this[kClients].map((c107) => c107.destroy(err)));
       }
       [kDispatch](opts, handler) {
         const dispatcher = this[kGetDispatcher]();
@@ -36232,8 +36232,8 @@ var require_util4 = __commonJS({
       return new TextDecoder(encoding).decode(sliced);
     }
     function BOMSniffing(ioQueue) {
-      const [a, b, c106] = ioQueue;
-      if (a === 239 && b === 187 && c106 === 191) {
+      const [a, b, c107] = ioQueue;
+      if (a === 239 && b === 187 && c107 === 191) {
         return "UTF-8";
       } else if (a === 254 && b === 255) {
         return "UTF-16BE";
@@ -40356,7 +40356,7 @@ var require_style = __commonJS({
   "../../node_modules/.pnpm/prompts@2.4.2/node_modules/prompts/dist/util/style.js"(exports, module2) {
     "use strict";
     init_esm_shims();
-    var c106 = require_kleur();
+    var c107 = require_kleur();
     var figures = require_figures();
     var styles3 = Object.freeze({
       password: {
@@ -40378,14 +40378,14 @@ var require_style = __commonJS({
     });
     var render = (type) => styles3[type] || styles3.default;
     var symbols = Object.freeze({
-      aborted: c106.red(figures.cross),
-      done: c106.green(figures.tick),
-      exited: c106.yellow(figures.cross),
-      default: c106.cyan("?")
+      aborted: c107.red(figures.cross),
+      done: c107.green(figures.tick),
+      exited: c107.yellow(figures.cross),
+      default: c107.cyan("?")
     });
     var symbol2 = (done, aborted2, exited) => aborted2 ? symbols.aborted : exited ? symbols.exited : done ? symbols.done : symbols.default;
-    var delimiter = (completing) => c106.gray(completing ? figures.ellipsis : figures.pointerSmall);
-    var item = (expandable, expanded) => c106.gray(expandable ? expanded ? figures.pointerSmall : "+" : figures.line);
+    var delimiter = (completing) => c107.gray(completing ? figures.ellipsis : figures.pointerSmall);
+    var item = (expandable, expanded) => c107.gray(expandable ? expanded ? figures.pointerSmall : "+" : figures.line);
     module2.exports = {
       styles: styles3,
       render,
@@ -40667,10 +40667,10 @@ var require_text = __commonJS({
         this.cursor = this.cursor + n;
         this.cursorOffset += n;
       }
-      _(c106, key) {
+      _(c107, key) {
         let s1 = this.value.slice(0, this.cursor);
         let s2 = this.value.slice(this.cursor);
-        this.value = `${s1}${c106}${s2}`;
+        this.value = `${s1}${c107}${s2}`;
         this.red = false;
         this.cursor = this.placeholder ? 0 : s1.length + 1;
         this.render();
@@ -40845,8 +40845,8 @@ var require_select = __commonJS({
         this.moveCursor((this.cursor + 1) % this.choices.length);
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") return this.submit();
+      _(c107, key) {
+        if (c107 === " ") return this.submit();
       }
       get selection() {
         return this.choices[this.cursor];
@@ -40972,12 +40972,12 @@ var require_toggle = __commonJS({
         this.fire();
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.value = !this.value;
-        } else if (c106 === "1") {
+        } else if (c107 === "1") {
           this.value = true;
-        } else if (c106 === "0") {
+        } else if (c107 === "0") {
           this.value = false;
         } else return this.bell();
         this.render();
@@ -41485,9 +41485,9 @@ var require_date = __commonJS({
         this.moveCursor(next ? this.parts.indexOf(next) : this.parts.findIndex((part) => part instanceof DatePart));
         this.render();
       }
-      _(c106) {
-        if (/\d/.test(c106)) {
-          this.typed += c106;
+      _(c107) {
+        if (/\d/.test(c107)) {
+          this.typed += c107;
           this.parts[this.cursor].setTo(this.typed);
           this.render();
         }
@@ -41596,8 +41596,8 @@ var require_number = __commonJS({
       parse(x2) {
         return this.float ? parseFloat(x2) : parseInt(x2);
       }
-      valid(c106) {
-        return c106 === `-` || c106 === `.` && this.float || isNumber.test(c106);
+      valid(c107) {
+        return c107 === `-` || c107 === `.` && this.float || isNumber.test(c107);
       }
       reset() {
         this.typed = ``;
@@ -41690,14 +41690,14 @@ var require_number = __commonJS({
         this.fire();
         this.render();
       }
-      _(c106, key) {
-        if (!this.valid(c106)) return this.bell();
+      _(c107, key) {
+        if (!this.valid(c107)) return this.bell();
         const now = Date.now();
         if (now - this.lastHit > 1e3) this.typed = ``;
-        this.typed += c106;
+        this.typed += c107;
         this.lastHit = now;
         this.color = `cyan`;
-        if (c106 === `.`) return this.fire();
+        if (c107 === `.`) return this.fire();
         this.value = Math.min(this.parse(this.typed), this.max);
         if (this.value > this.max) this.value = this.max;
         if (this.value < this.min) this.value = this.min;
@@ -41861,10 +41861,10 @@ var require_multiselect = __commonJS({
         this.value.filter((v) => !v.disabled).forEach((v) => v.selected = newSelected);
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.handleSpaceToggle();
-        } else if (c106 === "a") {
+        } else if (c107 === "a") {
           this.toggleAll();
         } else {
           return this.bell();
@@ -42105,10 +42105,10 @@ var require_autocomplete = __commonJS({
         this.out.write("\n");
         this.close();
       }
-      _(c106, key) {
+      _(c107, key) {
         let s1 = this.input.slice(0, this.cursor);
         let s2 = this.input.slice(this.cursor);
-        this.input = `${s1}${c106}${s2}`;
+        this.input = `${s1}${c107}${s2}`;
         this.cursor = s1.length + 1;
         this.complete(this.render);
         this.render();
@@ -42308,15 +42308,15 @@ var require_autocompleteMultiselect = __commonJS({
           this.render();
         }
       }
-      handleInputChange(c106) {
-        this.inputValue = this.inputValue + c106;
+      handleInputChange(c107) {
+        this.inputValue = this.inputValue + c107;
         this.updateFilteredOptions();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.handleSpaceToggle();
         } else {
-          this.handleInputChange(c106);
+          this.handleInputChange(c107);
         }
       }
       renderInstructions() {
@@ -42422,12 +42422,12 @@ var require_confirm = __commonJS({
         this.out.write("\n");
         this.close();
       }
-      _(c106, key) {
-        if (c106.toLowerCase() === "y") {
+      _(c107, key) {
+        if (c107.toLowerCase() === "y") {
           this.value = true;
           return this.submit();
         }
-        if (c106.toLowerCase() === "n") {
+        if (c107.toLowerCase() === "n") {
           this.value = false;
           return this.submit();
         }
@@ -42868,7 +42868,7 @@ var require_style2 = __commonJS({
   "../../node_modules/.pnpm/prompts@2.4.2/node_modules/prompts/lib/util/style.js"(exports, module2) {
     "use strict";
     init_esm_shims();
-    var c106 = require_kleur();
+    var c107 = require_kleur();
     var figures = require_figures2();
     var styles3 = Object.freeze({
       password: { scale: 1, render: (input) => "*".repeat(input.length) },
@@ -42878,14 +42878,14 @@ var require_style2 = __commonJS({
     });
     var render = (type) => styles3[type] || styles3.default;
     var symbols = Object.freeze({
-      aborted: c106.red(figures.cross),
-      done: c106.green(figures.tick),
-      exited: c106.yellow(figures.cross),
-      default: c106.cyan("?")
+      aborted: c107.red(figures.cross),
+      done: c107.green(figures.tick),
+      exited: c107.yellow(figures.cross),
+      default: c107.cyan("?")
     });
     var symbol2 = (done, aborted2, exited) => aborted2 ? symbols.aborted : exited ? symbols.exited : done ? symbols.done : symbols.default;
-    var delimiter = (completing) => c106.gray(completing ? figures.ellipsis : figures.pointerSmall);
-    var item = (expandable, expanded) => c106.gray(expandable ? expanded ? figures.pointerSmall : "+" : figures.line);
+    var delimiter = (completing) => c107.gray(completing ? figures.ellipsis : figures.pointerSmall);
+    var item = (expandable, expanded) => c107.gray(expandable ? expanded ? figures.pointerSmall : "+" : figures.line);
     module2.exports = {
       styles: styles3,
       render,
@@ -43118,10 +43118,10 @@ var require_text2 = __commonJS({
         this.cursor = this.cursor + n;
         this.cursorOffset += n;
       }
-      _(c106, key) {
+      _(c107, key) {
         let s1 = this.value.slice(0, this.cursor);
         let s2 = this.value.slice(this.cursor);
-        this.value = `${s1}${c106}${s2}`;
+        this.value = `${s1}${c107}${s2}`;
         this.red = false;
         this.cursor = this.placeholder ? 0 : s1.length + 1;
         this.render();
@@ -43295,8 +43295,8 @@ var require_select2 = __commonJS({
         this.moveCursor((this.cursor + 1) % this.choices.length);
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") return this.submit();
+      _(c107, key) {
+        if (c107 === " ") return this.submit();
       }
       get selection() {
         return this.choices[this.cursor];
@@ -43420,12 +43420,12 @@ var require_toggle2 = __commonJS({
         this.fire();
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.value = !this.value;
-        } else if (c106 === "1") {
+        } else if (c107 === "1") {
           this.value = true;
-        } else if (c106 === "0") {
+        } else if (c107 === "0") {
           this.value = false;
         } else return this.bell();
         this.render();
@@ -43881,9 +43881,9 @@ var require_date2 = __commonJS({
         this.moveCursor(next ? this.parts.indexOf(next) : this.parts.findIndex((part) => part instanceof DatePart));
         this.render();
       }
-      _(c106) {
-        if (/\d/.test(c106)) {
-          this.typed += c106;
+      _(c107) {
+        if (/\d/.test(c107)) {
+          this.typed += c107;
           this.parts[this.cursor].setTo(this.typed);
           this.render();
         }
@@ -43965,8 +43965,8 @@ var require_number2 = __commonJS({
       parse(x2) {
         return this.float ? parseFloat(x2) : parseInt(x2);
       }
-      valid(c106) {
-        return c106 === `-` || c106 === `.` && this.float || isNumber.test(c106);
+      valid(c107) {
+        return c107 === `-` || c107 === `.` && this.float || isNumber.test(c107);
       }
       reset() {
         this.typed = ``;
@@ -44053,14 +44053,14 @@ var require_number2 = __commonJS({
         this.fire();
         this.render();
       }
-      _(c106, key) {
-        if (!this.valid(c106)) return this.bell();
+      _(c107, key) {
+        if (!this.valid(c107)) return this.bell();
         const now = Date.now();
         if (now - this.lastHit > 1e3) this.typed = ``;
-        this.typed += c106;
+        this.typed += c107;
         this.lastHit = now;
         this.color = `cyan`;
-        if (c106 === `.`) return this.fire();
+        if (c107 === `.`) return this.fire();
         this.value = Math.min(this.parse(this.typed), this.max);
         if (this.value > this.max) this.value = this.max;
         if (this.value < this.min) this.value = this.min;
@@ -44222,10 +44222,10 @@ var require_multiselect2 = __commonJS({
         this.value.filter((v) => !v.disabled).forEach((v) => v.selected = newSelected);
         this.render();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.handleSpaceToggle();
-        } else if (c106 === "a") {
+        } else if (c107 === "a") {
           this.toggleAll();
         } else {
           return this.bell();
@@ -44422,10 +44422,10 @@ var require_autocomplete2 = __commonJS({
         this.out.write("\n");
         this.close();
       }
-      _(c106, key) {
+      _(c107, key) {
         let s1 = this.input.slice(0, this.cursor);
         let s2 = this.input.slice(this.cursor);
-        this.input = `${s1}${c106}${s2}`;
+        this.input = `${s1}${c107}${s2}`;
         this.cursor = s1.length + 1;
         this.complete(this.render);
         this.render();
@@ -44628,15 +44628,15 @@ var require_autocompleteMultiselect2 = __commonJS({
           this.render();
         }
       }
-      handleInputChange(c106) {
-        this.inputValue = this.inputValue + c106;
+      handleInputChange(c107) {
+        this.inputValue = this.inputValue + c107;
         this.updateFilteredOptions();
       }
-      _(c106, key) {
-        if (c106 === " ") {
+      _(c107, key) {
+        if (c107 === " ") {
           this.handleSpaceToggle();
         } else {
-          this.handleInputChange(c106);
+          this.handleInputChange(c107);
         }
       }
       renderInstructions() {
@@ -44743,12 +44743,12 @@ var require_confirm2 = __commonJS({
         this.out.write("\n");
         this.close();
       }
-      _(c106, key) {
-        if (c106.toLowerCase() === "y") {
+      _(c107, key) {
+        if (c107.toLowerCase() === "y") {
           this.value = true;
           return this.submit();
         }
-        if (c106.toLowerCase() === "n") {
+        if (c107.toLowerCase() === "n") {
           this.value = false;
           return this.submit();
         }
@@ -45634,9 +45634,9 @@ var require_Alias = __commonJS({
       } else if (identity.isCollection(node2)) {
         let count = 0;
         for (const item of node2.items) {
-          const c106 = getAliasCount(doc, item, anchors2);
-          if (c106 > count)
-            count = c106;
+          const c107 = getAliasCount(doc, item, anchors2);
+          if (c107 > count)
+            count = c107;
         }
         return count;
       } else if (identity.isPair(node2)) {
@@ -53176,8 +53176,8 @@ function _htmlElementAsString(el, keyAttrs) {
     const className = elem.className;
     if (className && isString(className)) {
       const classes = className.split(/\s+/);
-      for (const c106 of classes) {
-        out.push(`.${c106}`);
+      for (const c107 of classes) {
+        out.push(`.${c107}`);
       }
     }
   }
@@ -53409,9 +53409,9 @@ function uuid4(crypto = getCrypto()) {
   }
   return emptyUuid.replace(
     /[018]/g,
-    (c106) => (
+    (c107) => (
       // eslint-disable-next-line no-bitwise
-      (c106 ^ (getRandomByte() & 15) >> c106 / 4).toString(16)
+      (c107 ^ (getRandomByte() & 15) >> c107 / 4).toString(16)
     )
   );
 }
@@ -72468,16 +72468,16 @@ var HonoInstrumentation = class extends InstrumentationBase {
    */
   _wrapHandler(handler) {
     const instrumentation = this;
-    return function(c106, next) {
+    return function(c107, next) {
       if (!instrumentation.isEnabled()) {
-        return handler.apply(this, [c106, next]);
+        return handler.apply(this, [c107, next]);
       }
-      const path3 = c106.req.path;
+      const path3 = c107.req.path;
       const span = instrumentation.tracer.startSpan(path3);
       return context.with(trace.setSpan(context.active(), span), () => {
         return instrumentation._safeExecute(
           () => {
-            const result = handler.apply(this, [c106, next]);
+            const result = handler.apply(this, [c107, next]);
             if (isThenable(result)) {
               return result.then((result2) => {
                 const type = instrumentation._determineHandlerType(result2);
@@ -74083,7 +74083,7 @@ if (DSN) {
   init2({
     dsn: DSN,
     environment: process.env.SENTRY_ENVIRONMENT ?? "production",
-    release: "9.156.9",
+    release: "9.157.1",
     sendDefaultPii: false,
     tracesSampleRate: 0,
     shutdownTimeout: 500,
@@ -74102,7 +74102,7 @@ if (DSN) {
     }
   });
   setContext("cli", {
-    version: "9.156.9",
+    version: "9.157.1",
     command: process.argv.slice(2).join(" ")
   });
   setContext("runtime", {
@@ -74194,8 +74194,343 @@ function configureGlobalProxyFromEnv() {
   }
 }
 
+// ../../packages/connectors/src/feature-switch-key.ts
+init_esm_shims();
+
 // src/lib/api/zero-token.ts
 init_esm_shims();
+
+// ../../packages/core/src/feature-switch.ts
+init_esm_shims();
+
+// ../../packages/core/src/feature-switch-key.ts
+init_esm_shims();
+
+// ../../packages/core/src/identity-hash.ts
+init_esm_shims();
+function fnv1a(input) {
+  let h = 2166136261 >>> 0;
+  for (let i = 0; i < input.length; i++) {
+    h ^= input.charCodeAt(i);
+    h = Math.imul(h, 16777619) >>> 0;
+  }
+  return h.toString(16).padStart(8, "0");
+}
+var STAFF_ORG_ID_HASHES = [
+  "afce210e"
+  // org_3ANttyrbWYJk6JKRSTRLEsbsDLe
+];
+
+// ../../packages/core/src/feature-switch.ts
+var FEATURE_SWITCHES = {
+  ["dummy" /* Dummy */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Test-only feature switch for flag system validation",
+    enabled: true
+  },
+  ["ahrefsConnector" /* AhrefsConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Ahrefs SEO connector",
+    enabled: false
+  },
+  ["bentomlConnector" /* BentomlConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the BentoML model serving connector",
+    enabled: false
+  },
+  ["canvaConnector" /* CanvaConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Canva design connector",
+    enabled: false
+  },
+  ["computerConnector" /* ComputerConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Computer connector for local service tunneling",
+    enabled: false
+  },
+  ["deelConnector" /* DeelConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Deel HR connector",
+    enabled: false
+  },
+  ["docusignConnector" /* DocuSignConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the DocuSign e-signature connector",
+    enabled: false
+  },
+  ["dropboxConnector" /* DropboxConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Dropbox file storage connector",
+    enabled: false
+  },
+  ["figmaConnector" /* FigmaConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Figma design connector",
+    enabled: false
+  },
+  ["mercuryConnector" /* MercuryConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Mercury banking connector",
+    enabled: false
+  },
+  ["neonConnector" /* NeonConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Neon serverless Postgres connector",
+    enabled: false
+  },
+  ["garminConnectConnector" /* GarminConnectConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Garmin Connect wellness connector",
+    enabled: false
+  },
+  ["redditConnector" /* RedditConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Reddit connector integration",
+    enabled: false
+  },
+  ["supabaseConnector" /* SupabaseConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Supabase database connector integration",
+    enabled: false
+  },
+  ["closeConnector" /* CloseConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Close CRM connector",
+    enabled: false
+  },
+  ["webflowConnector" /* WebflowConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Webflow site management connector",
+    enabled: false
+  },
+  ["outlookMailConnector" /* OutlookMailConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Outlook Mail connector",
+    enabled: false
+  },
+  ["outlookCalendarConnector" /* OutlookCalendarConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Outlook Calendar connector",
+    enabled: false
+  },
+  ["googleAdsConnector" /* GoogleAdsConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Google Ads connector",
+    enabled: false
+  },
+  ["metaAdsConnector" /* MetaAdsConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Meta Ads Manager connector",
+    enabled: false
+  },
+  ["stripeConnector" /* StripeConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Stripe payment connector integration",
+    enabled: false
+  },
+  ["cliAuthStripe" /* CliAuthStripe */]: {
+    maintainer: "liangyou@vm0.ai",
+    description: "Gate Stripe-specific CLI auth UI and API surfaces.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["posthogConnector" /* PosthogConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the PostHog analytics connector",
+    enabled: false
+  },
+  ["pwaOfflineCache" /* PwaOfflineCache */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable PWA offline caching (static asset cache-first, offline fallback page, and service worker updateViaCache: none)",
+    enabled: false
+  },
+  ["mailchimpConnector" /* MailchimpConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Mailchimp email marketing connector",
+    enabled: false
+  },
+  ["resendConnector" /* ResendConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Resend email service connector",
+    enabled: false
+  },
+  ["spotifyConnector" /* SpotifyConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Spotify connector integration",
+    enabled: false
+  },
+  ["dataExport" /* DataExport */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Show the data export option in account menu",
+    enabled: false
+  },
+  ["zeroDebug" /* ZeroDebug */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Reveal activity debug surfaces, activity log navigation, appended system prompts, and Debug preferences",
+    enabled: false
+  },
+  ["computerUse" /* ComputerUse */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable remote desktop host registration",
+    enabled: false
+  },
+  ["localBrowserUse" /* LocalBrowserUse */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Local Browser connector and user-authorized browser host lifecycle",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["lab" /* Lab */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Show the Lab page for toggling experimental features",
+    enabled: false
+  },
+  ["auditLink" /* AuditLink */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Show audit log links in integration replies",
+    enabled: false
+  },
+  ["audioOutput" /* AudioOutput */]: {
+    maintainer: "lancy@vm0.ai",
+    description: "Enable audio output in chat (TTS read-aloud + auto-read) \u2014 gates the volume/read buttons and the /api/zero/voice-io/tts route",
+    enabled: false
+  },
+  ["autoSkill" /* AutoSkill */]: {
+    maintainer: "lancy@vm0.ai",
+    description: "Enable automatic skill creation in agent prompts",
+    enabled: false
+  },
+  ["testOauthConnector" /* TestOauthConnector */]: {
+    maintainer: "liangyou@vm0.ai",
+    description: "Enable the test-oauth connector, a synthetic OAuth 2.0 provider used only for automated tests. Off in prod.",
+    enabled: false
+  },
+  ["chatHeaderNewButton" /* ChatHeaderNewButton */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Replace the Invite people button in the agent chat page header with a New button that creates a new chat thread",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["agentPhoneAppUi" /* AgentPhoneAppUi */]: {
+    maintainer: "linghan@vm0.ai",
+    description: "Show first-class AgentPhone app surfaces: Works card and onboarding entry points.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["chatMessageStartButton" /* ChatMessageStartButton */]: {
+    maintainer: "linghan@vm0.ai",
+    description: "Show an icon button in assistant message group actions that scrolls back to the start of that message group.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["goal" /* Goal */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable Codex-style goal mode in web chat: typing `/go <objective>` starts a self-continuing chain that runs up to 10 turns until the agent emits the [GOAL_DONE] sentinel, the budget is exhausted, the run fails, or the user interrupts.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["chatThreadRename" /* ChatThreadRename */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Adds a Rename chat item to the sidebar thread kebab menu. When the user renames a thread, automated title generation is suppressed for that thread.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["docsSite" /* DocsSite */]: {
+    maintainer: "linghan@vm0.ai",
+    description: "Enable the authenticated Strapi-backed docs site routes, navigation entry, and docs pages. Staff-only during rollout; per-user toggle via Lab.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["freshdeskConnector" /* FreshdeskConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Freshdesk helpdesk connector",
+    enabled: false
+  },
+  ["stabilityAiConnector" /* StabilityAiConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Stability AI image generation connector",
+    enabled: false
+  },
+  ["zoomConnector" /* ZoomConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Zoom connector (OAuth 2.0) for meetings, past participants, and cloud recordings access",
+    enabled: false
+  },
+  ["apiKeys" /* ApiKeys */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Gate the custom /settings/api-keys UI for issuing personal access tokens used by the /api/v1 public surface. When disabled, the settings page redirects to / and the sidebar menu item is hidden. The backend /api/v1 verification does NOT consult this flag \u2014 previously issued PATs continue to work.",
+    enabled: false
+  },
+  ["apiBackend" /* ApiBackend */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Route platform API traffic to the api backend host instead of the www backend host. Unported endpoints continue through the api backend's web fallback proxy.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["connectorCategories" /* ConnectorCategories */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Show category sections and the hover-reveal outline menu on the Connectors settings page. Staff-only during rollout.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["storedSecretKmsRead" /* StoredSecretKmsRead */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Prefer AWS KMS material when reading stored-secret envelopes. Legacy AES remains as a fallback for old or explicitly legacy-only rows.",
+    enabled: true
+  },
+  ["storedSecretKmsWrite" /* StoredSecretKmsWrite */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Dual-write stored-secret values to AWS KMS in addition to the legacy AES branch. When OFF, writes stay legacy-only even if SECRETS_KMS_KEY_ID is configured \u2014 this gates the KMS GenerateDataKey call so a missing IAM grant does not 500 every secret save.",
+    enabled: true
+  },
+  ["trinity" /* Trinity */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Embed the voice-chat mic toggle + voice-mode layout into the agent chat page. Gates the mic launcher, composer swap, and status/subtitle/task-card UI.",
+    enabled: false
+  },
+  ["zapierConnector" /* ZapierConnector */]: {
+    maintainer: "ethan@vm0.ai",
+    description: "Enable the Zapier connector. When disabled, Zapier is hidden from the connectors list and cannot be connected.",
+    enabled: false
+  },
+  ["voiceChatRealtimeBilling" /* VoiceChatRealtimeBilling */]: {
+    maintainer: "lancy@vm0.ai",
+    description: "Gate voice-chat realtime billing (Plan D, Epic #12128). When OFF, the token route mints an OpenAI ephemeral token without admission checks and the /session-started, /usage, and /session-ended endpoints are 200 no-ops \u2014 the org gets unmetered voice-chat. When ON, the token route runs credit + pricing admission, /session-started inserts an audit row in voice_chat_realtime_sessions, and the browser self-reports response.done + transcription.completed usage events for billing. Staff-only during rollout; operator flips per org via the feature-switch overrides API.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  },
+  ["hostedSites" /* HostedSites */]: {
+    maintainer: "lancy@vm0.ai",
+    description: "Enable static hosted-site deployments from zero host. Staff-only during rollout.",
+    enabled: false,
+    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
+  }
+};
+function isFeatureEnabled(key, ctx) {
+  const override = ctx.overrides?.[key];
+  if (override !== void 0) {
+    return override;
+  }
+  const featureSwitch = FEATURE_SWITCHES[key];
+  if (featureSwitch.enabled) {
+    return true;
+  }
+  if (ctx.userId && featureSwitch.enabledUserHashes?.length) {
+    if (featureSwitch.enabledUserHashes.includes(fnv1a(ctx.userId)))
+      return true;
+  }
+  if (ctx.email && featureSwitch.enabledEmailHashes?.length) {
+    if (featureSwitch.enabledEmailHashes.includes(fnv1a(ctx.email.toLowerCase())))
+      return true;
+  }
+  if (ctx.orgId && featureSwitch.enabledOrgIdHashes?.length) {
+    if (featureSwitch.enabledOrgIdHashes.includes(fnv1a(ctx.orgId)))
+      return true;
+  }
+  return false;
+}
+
+// src/lib/api/zero-token.ts
 function decodeZeroTokenPayload(token) {
   const raw = token ?? process.env.ZERO_TOKEN;
   if (!raw) return void 0;
@@ -74215,6 +74550,15 @@ function decodeZeroTokenPayload(token) {
   }
   return void 0;
 }
+function zeroTokenAllowsFeatureSwitch(key, payload = decodeZeroTokenPayload()) {
+  if (!payload) return true;
+  const tokenValue = payload.featureSwitches?.[key];
+  if (typeof tokenValue === "boolean") return tokenValue;
+  return isFeatureEnabled(key, {
+    userId: payload.userId,
+    orgId: payload.orgId
+  });
+}
 
 // src/commands/zero/local-agent/index.ts
 init_esm_shims();
@@ -77348,7 +77692,7 @@ var $ZodBase64 = /* @__PURE__ */ $constructor("$ZodBase64", (inst, def) => {
 function isValidBase64URL(data) {
   if (!base64url.test(data))
     return false;
-  const base643 = data.replace(/[-_]/g, (c106) => c106 === "-" ? "+" : "/");
+  const base643 = data.replace(/[-_]/g, (c107) => c107 === "-" ? "+" : "/");
   const padded = base643.padEnd(Math.ceil(base643.length / 4) * 4, "=");
   return isValidBase64(padded);
 }
@@ -87459,9 +87803,9 @@ var ZodDate = /* @__PURE__ */ $constructor("ZodDate", (inst, def) => {
   inst._zod.processJSONSchema = (ctx, json2, params) => dateProcessor(inst, ctx, json2, params);
   inst.min = (value, params) => inst.check(_gte(value, params));
   inst.max = (value, params) => inst.check(_lte(value, params));
-  const c106 = inst._zod.bag;
-  inst.minDate = c106.minimum ? new Date(c106.minimum) : null;
-  inst.maxDate = c106.maximum ? new Date(c106.maximum) : null;
+  const c107 = inst._zod.bag;
+  inst.minDate = c107.minimum ? new Date(c107.minimum) : null;
+  inst.maxDate = c107.maximum ? new Date(c107.maximum) : null;
 });
 function date3(params) {
   return _date(ZodDate, params);
@@ -97116,6 +97460,13 @@ var github = {
     oauth: {
       authorizationUrl: "https://github.com/login/oauth/authorize",
       tokenUrl: "https://github.com/login/oauth/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GH_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GH_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["repo", "project", "workflow"]
     }
   }
@@ -97152,6 +97503,13 @@ var gmail = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["https://www.googleapis.com/auth/gmail.modify"]
     }
   }
@@ -97188,6 +97546,13 @@ var notion = {
     oauth: {
       authorizationUrl: "https://api.notion.com/v1/oauth/authorize",
       tokenUrl: "https://api.notion.com/v1/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "NOTION_OAUTH_CLIENT_ID",
+        clientSecretEnv: "NOTION_OAUTH_CLIENT_SECRET"
+      },
       scopes: []
     }
   }
@@ -97223,6 +97588,13 @@ var x = {
     oauth: {
       authorizationUrl: "https://twitter.com/i/oauth2/authorize",
       tokenUrl: "https://api.twitter.com/2/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "X_OAUTH_CLIENT_ID",
+        clientSecretEnv: "X_OAUTH_CLIENT_SECRET"
+      },
       // https://docs.x.com/fundamentals/authentication/oauth-2-0/authorization-code
       scopes: [
         "tweet.read",
@@ -97304,6 +97676,13 @@ var googleDrive = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/drive",
         "https://www.googleapis.com/auth/userinfo.email"
@@ -97339,6 +97718,13 @@ var slack = {
     oauth: {
       authorizationUrl: "https://slack.com/oauth/v2/authorize",
       tokenUrl: "https://slack.com/api/oauth.v2.access",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "SLACK_CLIENT_ID",
+        clientSecretEnv: "SLACK_CLIENT_SECRET"
+      },
       // Note: Slack does not approve `search:read` or user `*:history`
       // scopes outside of RTS / MCP applications. The personal connector
       // intentionally omits them. Bot-side history access is provided
@@ -97412,6 +97798,13 @@ var googleSheets = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/spreadsheets",
         "https://www.googleapis.com/auth/userinfo.email"
@@ -97451,6 +97844,13 @@ var googleCalendar = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/calendar",
         "https://www.googleapis.com/auth/userinfo.email"
@@ -97489,6 +97889,13 @@ var googleDocs = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/documents",
         "https://www.googleapis.com/auth/userinfo.email"
@@ -97528,6 +97935,13 @@ var linear = {
     oauth: {
       authorizationUrl: "https://linear.app/oauth/authorize",
       tokenUrl: "https://api.linear.app/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "LINEAR_OAUTH_CLIENT_ID",
+        clientSecretEnv: "LINEAR_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "read",
         "write",
@@ -97565,6 +97979,13 @@ var intervalsIcu = {
     oauth: {
       authorizationUrl: "https://intervals.icu/oauth/authorize",
       tokenUrl: "https://intervals.icu/api/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "INTERVALS_ICU_OAUTH_CLIENT_ID",
+        clientSecretEnv: "INTERVALS_ICU_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["ACTIVITY", "WELLNESS", "CALENDAR", "SETTINGS", "LIBRARY"]
     }
   }
@@ -97595,6 +98016,13 @@ var vercel = {
     defaultAuthMethod: "oauth",
     oauth: {
       tokenUrl: "https://api.vercel.com/v2/oauth/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "VERCEL_OAUTH_CLIENT_ID",
+        clientSecretEnv: "VERCEL_OAUTH_CLIENT_SECRET"
+      },
       scopes: []
     }
   }
@@ -97630,6 +98058,13 @@ var strava = {
     oauth: {
       authorizationUrl: "https://www.strava.com/oauth/authorize",
       tokenUrl: "https://www.strava.com/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "STRAVA_OAUTH_CLIENT_ID",
+        clientSecretEnv: "STRAVA_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "read",
         "profile:read_all",
@@ -97670,6 +98105,13 @@ var googleMeet = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/meetings.space.created",
         // Use meetings.space.readonly (not meetings.conferencerecords.readonly) — confirmed
@@ -97713,6 +98155,13 @@ var hubspot = {
     oauth: {
       authorizationUrl: "https://app.hubspot.com/oauth/authorize",
       tokenUrl: "https://api.hubapi.com/oauth/v1/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "HUBSPOT_OAUTH_CLIENT_ID",
+        clientSecretEnv: "HUBSPOT_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "crm.objects.contacts.read",
         "crm.objects.contacts.write",
@@ -97781,6 +98230,13 @@ var sentry = {
     oauth: {
       authorizationUrl: "https://sentry.io/oauth/authorize/",
       tokenUrl: "https://sentry.io/oauth/token/",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "SENTRY_OAUTH_CLIENT_ID",
+        clientSecretEnv: "SENTRY_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "org:read",
         "project:read",
@@ -97819,6 +98275,13 @@ var todoist = {
     oauth: {
       authorizationUrl: "https://todoist.com/oauth/authorize",
       tokenUrl: "https://todoist.com/oauth/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "TODOIST_OAUTH_CLIENT_ID",
+        clientSecretEnv: "TODOIST_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["data:read_write", "data:delete", "project:delete"]
     }
   }
@@ -97854,6 +98317,13 @@ var xero = {
     oauth: {
       authorizationUrl: "https://login.xero.com/identity/connect/authorize",
       tokenUrl: "https://identity.xero.com/connect/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "XERO_OAUTH_CLIENT_ID",
+        clientSecretEnv: "XERO_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "openid",
         "profile",
@@ -97912,6 +98382,13 @@ var airtable = {
     oauth: {
       authorizationUrl: "https://airtable.com/oauth2/v1/authorize",
       tokenUrl: "https://airtable.com/oauth2/v1/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "AIRTABLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "AIRTABLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "data.records:read",
         "data.records:write",
@@ -97927,11 +98404,6 @@ var airtable = {
 
 // ../../packages/connectors/src/connectors/docusign.ts
 init_esm_shims();
-
-// ../../packages/connectors/src/feature-switch-key.ts
-init_esm_shims();
-
-// ../../packages/connectors/src/connectors/docusign.ts
 var docusign = {
   docusign: {
     label: "DocuSign",
@@ -97961,6 +98433,13 @@ var docusign = {
     oauth: {
       authorizationUrl: "https://account-d.docusign.com/oauth/auth",
       tokenUrl: "https://account-d.docusign.com/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "DOCUSIGN_OAUTH_CLIENT_ID",
+        clientSecretEnv: "DOCUSIGN_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["signature", "extended", "openid"]
     }
   }
@@ -97998,6 +98477,13 @@ var googleAds = {
     oauth: {
       authorizationUrl: "https://accounts.google.com/o/oauth2/v2/auth",
       tokenUrl: "https://oauth2.googleapis.com/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GOOGLE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GOOGLE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "https://www.googleapis.com/auth/adwords",
         "https://www.googleapis.com/auth/userinfo.email"
@@ -98071,6 +98557,13 @@ var gumroad = {
     oauth: {
       authorizationUrl: "https://gumroad.com/oauth/authorize",
       tokenUrl: "https://gumroad.com/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GUMROAD_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GUMROAD_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "view_profile",
         "edit_products",
@@ -98113,6 +98606,13 @@ var spotify = {
     oauth: {
       authorizationUrl: "https://accounts.spotify.com/authorize",
       tokenUrl: "https://accounts.spotify.com/api/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "SPOTIFY_OAUTH_CLIENT_ID",
+        clientSecretEnv: "SPOTIFY_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "ugc-image-upload",
         "user-read-playback-state",
@@ -98254,6 +98754,13 @@ var ahrefs = {
     oauth: {
       authorizationUrl: "https://app.ahrefs.com/api/auth",
       tokenUrl: "https://app.ahrefs.com/api/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "AHREFS_OAUTH_CLIENT_ID",
+        clientSecretEnv: "AHREFS_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["api"]
     }
   }
@@ -98439,6 +98946,13 @@ var asana = {
     oauth: {
       authorizationUrl: "https://app.asana.com/-/oauth_authorize",
       tokenUrl: "https://app.asana.com/-/oauth_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "ASANA_OAUTH_CLIENT_ID",
+        clientSecretEnv: "ASANA_OAUTH_CLIENT_SECRET"
+      },
       scopes: []
     }
   }
@@ -98512,6 +99026,35 @@ var attio = {
   }
 };
 
+// ../../packages/connectors/src/connectors/atlascloud.ts
+init_esm_shims();
+var atlascloud = {
+  atlascloud: {
+    label: "Atlas Cloud",
+    category: "ai-general-models",
+    generation: ["audio", "image", "text", "video"],
+    tags: ["llm", "multimodal", "openai-compatible"],
+    environmentMapping: {
+      ATLASCLOUD_API_KEY: "$secrets.ATLASCLOUD_API_KEY"
+    },
+    helpText: "Connect Atlas Cloud to access multimodal AI models for chat, image generation, video generation, and audio through one API key",
+    authMethods: {
+      "api-token": {
+        label: "API Key",
+        helpText: "1. Sign in to [Atlas Cloud](https://console.atlascloud.ai)\n2. Go to **API Keys**\n3. Click **Create API Key**\n4. Copy the key and use it with `https://api.atlascloud.ai/v1` for OpenAI-compatible chat or `https://api.atlascloud.ai/api/v1` for image, video, and media APIs",
+        secrets: {
+          ATLASCLOUD_API_KEY: {
+            label: "API Key",
+            required: true,
+            placeholder: "your-atlascloud-api-key"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/aviationstack.ts
 init_esm_shims();
 var aviationstack = {
@@ -98656,6 +99199,34 @@ var braveSearch = {
   }
 };
 
+// ../../packages/connectors/src/connectors/brex.ts
+init_esm_shims();
+var brex = {
+  brex: {
+    label: "Brex",
+    category: "sales-crm-business-operations",
+    tags: ["corporate-card", "expenses", "payments", "transactions", "finance"],
+    environmentMapping: {
+      BREX_TOKEN: "$secrets.BREX_TOKEN"
+    },
+    helpText: "Connect your Brex account to access corporate card, expense, payment, transaction, and team data",
+    authMethods: {
+      "api-token": {
+        label: "API Token",
+        helpText: "1. In Brex, create or obtain an API user token with the permissions required for your workflow\n2. Confirm the token is intended for the production API at `https://api.brex.com`\n3. Copy the token",
+        secrets: {
+          BREX_TOKEN: {
+            label: "API Token",
+            required: true,
+            placeholder: "your-brex-api-token"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/brevo.ts
 init_esm_shims();
 var brevo = {
@@ -98967,6 +99538,13 @@ var canva = {
     oauth: {
       authorizationUrl: "https://www.canva.com/api/oauth/authorize",
       tokenUrl: "https://api.canva.com/rest/v1/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "CANVA_OAUTH_CLIENT_ID",
+        clientSecretEnv: "CANVA_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "asset:read",
         "asset:write",
@@ -99012,6 +99590,40 @@ var chatwoot = {
   }
 };
 
+// ../../packages/connectors/src/connectors/checkr.ts
+init_esm_shims();
+var checkr = {
+  checkr: {
+    label: "Checkr",
+    category: "sales-crm-business-operations",
+    tags: [
+      "background-checks",
+      "screening",
+      "candidates",
+      "reports",
+      "compliance"
+    ],
+    environmentMapping: {
+      CHECKR_TOKEN: "$secrets.CHECKR_TOKEN"
+    },
+    helpText: "Connect your Checkr account to manage candidates, invitations, reports, packages, and background check workflows",
+    authMethods: {
+      "api-token": {
+        label: "API Key",
+        helpText: "1. Log in to the [Checkr Dashboard](https://dashboard.checkr.com)\n2. Go to **Account Settings > Developer Settings**\n3. Copy a live or test API key for the account you want to connect\n4. Use only keys and actions that comply with your background check authorization and compliance process",
+        secrets: {
+          CHECKR_TOKEN: {
+            label: "API Key",
+            required: true,
+            placeholder: "your-checkr-api-key"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/clado.ts
 init_esm_shims();
 var clado = {
@@ -99121,6 +99733,13 @@ var close2 = {
     oauth: {
       authorizationUrl: "https://app.close.com/oauth2/authorize/",
       tokenUrl: "https://api.close.com/oauth2/token/",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "CLOSE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "CLOSE_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["all.full_access", "offline_access"]
     }
   }
@@ -99217,42 +99836,6 @@ var coda = {
   }
 };
 
-// ../../packages/connectors/src/connectors/codex-oauth.ts
-init_esm_shims();
-var codexOauth = {
-  "codex-oauth": {
-    label: "ChatGPT (OAuth)",
-    category: "ai-general-models",
-    environmentMapping: {
-      CHATGPT_TOKEN: "$secrets.CHATGPT_ACCESS_TOKEN"
-    },
-    helpText: "Sign in with your ChatGPT subscription (Plus / Pro / Business / Edu / Enterprise) to use Codex agents against your ChatGPT quota.",
-    authMethods: {
-      oauth: {
-        label: "OAuth",
-        helpText: "Sign in with ChatGPT.",
-        secrets: {
-          CHATGPT_ACCESS_TOKEN: { label: "Access Token", required: true },
-          CHATGPT_REFRESH_TOKEN: { label: "Refresh Token", required: true }
-        }
-      }
-    },
-    defaultAuthMethod: "oauth",
-    oauth: {
-      authorizationUrl: "https://auth.openai.com/oauth/authorize",
-      tokenUrl: "https://auth.openai.com/oauth/token",
-      scopes: [
-        "openid",
-        "profile",
-        "email",
-        "offline_access",
-        "api.connectors.read",
-        "api.connectors.invoke"
-      ]
-    }
-  }
-};
-
 // ../../packages/connectors/src/connectors/computer.ts
 init_esm_shims();
 var computer = {
@@ -99415,6 +99998,13 @@ var deel = {
     oauth: {
       authorizationUrl: "https://app.deel.com/oauth2/authorize",
       tokenUrl: "https://app.deel.com/oauth2/tokens",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "DEEL_OAUTH_CLIENT_ID",
+        clientSecretEnv: "DEEL_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "contracts:read",
         "people:read",
@@ -99717,6 +100307,13 @@ var dropbox = {
     oauth: {
       authorizationUrl: "https://www.dropbox.com/oauth2/authorize",
       tokenUrl: "https://api.dropboxapi.com/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "DROPBOX_OAUTH_CLIENT_ID",
+        clientSecretEnv: "DROPBOX_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "account_info.read",
         "files.metadata.read",
@@ -99917,6 +100514,41 @@ var explorium = {
   }
 };
 
+// ../../packages/connectors/src/connectors/faire.ts
+init_esm_shims();
+var faire = {
+  faire: {
+    label: "Faire",
+    category: "sales-crm-business-operations",
+    tags: [
+      "wholesale",
+      "marketplace",
+      "brands",
+      "orders",
+      "inventory",
+      "products"
+    ],
+    environmentMapping: {
+      FAIRE_TOKEN: "$secrets.FAIRE_TOKEN"
+    },
+    helpText: "Connect your Faire brand account to manage wholesale products, orders, inventory, shipments, and brand profile data",
+    authMethods: {
+      "api-token": {
+        label: "Access Token",
+        helpText: "1. In the Faire portal, go to **Settings > Integrations**\n2. Generate an API key for a direct integration, or request one from Faire for a custom integration\n3. Copy the access token for the brand account you want to connect",
+        secrets: {
+          FAIRE_TOKEN: {
+            label: "Access Token",
+            required: true,
+            placeholder: "your-faire-access-token"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/fal.ts
 init_esm_shims();
 var fal = {
@@ -99987,6 +100619,13 @@ var figma = {
     oauth: {
       authorizationUrl: "https://www.figma.com/oauth",
       tokenUrl: "https://api.figma.com/v1/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "FIGMA_OAUTH_CLIENT_ID",
+        clientSecretEnv: "FIGMA_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "current_user:read",
         "file_content:read",
@@ -100148,6 +100787,13 @@ var garminConnect = {
     oauth: {
       authorizationUrl: "https://connect.garmin.com/oauth2Confirm",
       tokenUrl: "https://diauth.garmin.com/di-oauth2-service/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "GARMIN_CONNECT_OAUTH_CLIENT_ID",
+        clientSecretEnv: "GARMIN_CONNECT_OAUTH_CLIENT_SECRET"
+      },
       scopes: []
     }
   }
@@ -101096,6 +101742,13 @@ var mailchimp = {
     oauth: {
       authorizationUrl: "https://login.mailchimp.com/oauth2/authorize",
       tokenUrl: "https://login.mailchimp.com/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "MAILCHIMP_OAUTH_CLIENT_ID",
+        clientSecretEnv: "MAILCHIMP_OAUTH_CLIENT_SECRET"
+      },
       scopes: []
     }
   }
@@ -101307,6 +101960,13 @@ var mercury = {
     oauth: {
       authorizationUrl: "https://oauth2.mercury.com/oauth2/auth",
       tokenUrl: "https://oauth2.mercury.com/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "MERCURY_OAUTH_CLIENT_ID",
+        clientSecretEnv: "MERCURY_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["offline_access"]
     }
   }
@@ -101339,6 +101999,13 @@ var metaAds = {
     oauth: {
       authorizationUrl: "https://www.facebook.com/v22.0/dialog/oauth",
       tokenUrl: "https://graph.facebook.com/v22.0/oauth/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "META_ADS_OAUTH_CLIENT_ID",
+        clientSecretEnv: "META_ADS_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["ads_management", "ads_read", "business_management"]
     }
   }
@@ -101542,6 +102209,13 @@ var monday = {
     oauth: {
       authorizationUrl: "https://auth.monday.com/oauth2/authorize",
       tokenUrl: "https://auth.monday.com/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "MONDAY_OAUTH_CLIENT_ID",
+        clientSecretEnv: "MONDAY_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "me:read",
         "boards:read",
@@ -101699,6 +102373,13 @@ var neon = {
     oauth: {
       authorizationUrl: "https://oauth2.neon.tech/oauth2/auth",
       tokenUrl: "https://oauth2.neon.tech/oauth2/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "NEON_OAUTH_CLIENT_ID",
+        clientSecretEnv: "NEON_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "openid",
         "offline_access",
@@ -101883,6 +102564,13 @@ var outlookCalendar = {
     oauth: {
       authorizationUrl: "https://login.microsoftonline.com/common/oauth2/v2.0/authorize",
       tokenUrl: "https://login.microsoftonline.com/common/oauth2/v2.0/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "MICROSOFT_OAUTH_CLIENT_ID",
+        clientSecretEnv: "MICROSOFT_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["Calendars.ReadWrite", "User.Read", "offline_access"]
     }
   }
@@ -101919,6 +102607,13 @@ var outlookMail = {
     oauth: {
       authorizationUrl: "https://login.microsoftonline.com/common/oauth2/v2.0/authorize",
       tokenUrl: "https://login.microsoftonline.com/common/oauth2/v2.0/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "MICROSOFT_OAUTH_CLIENT_ID",
+        clientSecretEnv: "MICROSOFT_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["Mail.ReadWrite", "Mail.Send", "User.Read", "offline_access"]
     }
   }
@@ -102266,6 +102961,13 @@ var posthog = {
     oauth: {
       authorizationUrl: "https://us.posthog.com/oauth/authorize",
       tokenUrl: "https://us.posthog.com/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "POSTHOG_OAUTH_CLIENT_ID",
+        clientSecretEnv: "POSTHOG_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "openid",
         "profile",
@@ -102563,6 +103265,13 @@ var reddit = {
     oauth: {
       authorizationUrl: "https://www.reddit.com/api/v1/authorize",
       tokenUrl: "https://www.reddit.com/api/v1/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "REDDIT_OAUTH_CLIENT_ID",
+        clientSecretEnv: "REDDIT_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["identity", "read"]
     }
   }
@@ -102789,6 +103498,34 @@ var scrapeninja = {
   }
 };
 
+// ../../packages/connectors/src/connectors/segment.ts
+init_esm_shims();
+var segment = {
+  segment: {
+    label: "Segment",
+    category: "data-automation-infrastructure",
+    tags: ["cdp", "analytics", "events", "tracking", "sources", "destinations"],
+    environmentMapping: {
+      SEGMENT_TOKEN: "$secrets.SEGMENT_TOKEN"
+    },
+    helpText: "Connect your Segment workspace to manage sources, destinations, tracking plans, and data pipeline configuration through the Public API",
+    authMethods: {
+      "api-token": {
+        label: "Public API Token",
+        helpText: "1. Log in to [Segment](https://app.segment.com)\n2. Open the workspace you want to manage\n3. Create a Public API token with the permissions required for your workflow\n4. Copy the token",
+        secrets: {
+          SEGMENT_TOKEN: {
+            label: "Public API Token",
+            required: true,
+            placeholder: "your-segment-public-api-token"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/sendgrid.ts
 init_esm_shims();
 var sendgrid = {
@@ -103064,6 +103801,48 @@ var sponge = {
   }
 };
 
+// ../../packages/connectors/src/connectors/sproutgigs.ts
+init_esm_shims();
+var sproutgigs = {
+  sproutgigs: {
+    label: "SproutGigs",
+    category: "marketing-content-growth",
+    tags: [
+      "microtasks",
+      "jobs",
+      "gigs",
+      "freelancers",
+      "crowdsourcing",
+      "picoworkers"
+    ],
+    environmentMapping: {
+      SPROUTGIGS_USER_ID: "$vars.SPROUTGIGS_USER_ID",
+      SPROUTGIGS_API_SECRET: "$secrets.SPROUTGIGS_API_SECRET"
+    },
+    helpText: "Connect SproutGigs to manage buyer jobs, gigs, freelancer lists, profiles, balances, and task reviews through the SproutGigs API",
+    authMethods: {
+      "api-token": {
+        label: "API Secret",
+        helpText: "1. Log in to [SproutGigs](https://sproutgigs.com)\n2. Open **Account Settings** and go to the **Settings** tab\n3. Create or reset your API secret\n4. Enter your SproutGigs user ID and API secret. SproutGigs signs requests with HTTP Basic Auth using `USER_ID:API_SECRET`.",
+        secrets: {
+          SPROUTGIGS_USER_ID: {
+            label: "User ID",
+            required: true,
+            type: "variable",
+            placeholder: "your-user-id"
+          },
+          SPROUTGIGS_API_SECRET: {
+            label: "API Secret",
+            required: true,
+            placeholder: "your-sproutgigs-api-secret"
+          }
+        }
+      }
+    },
+    defaultAuthMethod: "api-token"
+  }
+};
+
 // ../../packages/connectors/src/connectors/square.ts
 init_esm_shims();
 var square = {
@@ -103243,38 +104022,18 @@ var stripe = {
     oauth: {
       authorizationUrl: "https://connect.stripe.com/oauth/authorize",
       tokenUrl: "https://connect.stripe.com/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "STRIPE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "STRIPE_OAUTH_CLIENT_SECRET"
+      },
       scopes: ["read_write"]
     }
   }
 };
 
-// ../../packages/connectors/src/connectors/suno.ts
-init_esm_shims();
-var suno = {
-  suno: {
-    label: "Suno",
-    category: "ai-image-video",
-    generation: ["audio"],
-    environmentMapping: {
-      SUNO_TOKEN: "$secrets.SUNO_TOKEN"
-    },
-    helpText: "Connect Suno to generate AI music tracks, vocals, and instrumentals from text prompts",
-    authMethods: {
-      "api-token": {
-        label: "API Key",
-        helpText: "1. Sign in to [SunoAPI](https://sunoapi.org)\n2. Open the **API Keys** page in your account\n3. Click **Create Key**, name it, and copy the value\n4. Use it as a Bearer token on requests to `https://api.sunoapi.org`",
-        secrets: {
-          SUNO_TOKEN: {
-            label: "API Key",
-            required: true
-          }
-        }
-      }
-    },
-    defaultAuthMethod: "api-token"
-  }
-};
-
 // ../../packages/connectors/src/connectors/supabase.ts
 init_esm_shims();
 var supabase = {
@@ -103317,6 +104076,13 @@ var supabase = {
     oauth: {
       authorizationUrl: "https://api.supabase.com/v1/oauth/authorize",
       tokenUrl: "https://api.supabase.com/v1/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "SUPABASE_OAUTH_CLIENT_ID",
+        clientSecretEnv: "SUPABASE_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "organizations:read",
         "projects:read",
@@ -103448,6 +104214,13 @@ var testOauth = {
       // the preview-URL host changes per deploy.
       authorizationUrl: "/api/test/oauth-provider/authorize",
       tokenUrl: "/api/test/oauth-provider/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientId: "test-oauth-client",
+        clientSecret: "test-oauth-secret"
+      },
       scopes: ["read"]
     }
   }
@@ -103727,6 +104500,13 @@ var webflow = {
     oauth: {
       authorizationUrl: "https://webflow.com/oauth/authorize",
       tokenUrl: "https://api.webflow.com/oauth/access_token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_post",
+        clientIdEnv: "WEBFLOW_OAUTH_CLIENT_ID",
+        clientSecretEnv: "WEBFLOW_OAUTH_CLIENT_SECRET"
+      },
       scopes: [
         "authorized_user:read",
         "sites:read",
@@ -104032,6 +104812,13 @@ var zoom = {
     oauth: {
       authorizationUrl: "https://zoom.us/oauth/authorize",
       tokenUrl: "https://zoom.us/oauth/token",
+      client: {
+        clientRegistration: "static",
+        clientType: "confidential",
+        tokenEndpointAuthMethod: "client_secret_basic",
+        clientIdEnv: "ZOOM_OAUTH_CLIENT_ID",
+        clientSecretEnv: "ZOOM_OAUTH_CLIENT_SECRET"
+      },
       // Granular scopes (Zoom's "resource:action:target" format). Covers the
       // core read/write flows documented in the zoom skill: users, meetings,
       // past-meeting data, cloud recordings, and webinars.
@@ -104093,11 +104880,13 @@ var CONNECTOR_TYPES_DEF = {
   ...asana,
   ...atlassian,
   ...attio,
+  ...atlascloud,
   ...aviationstack,
   ...axiom,
   ...bentoml,
   ...bitrix,
   ...braveSearch,
+  ...brex,
   ...brevo,
   ...brightData,
   ...browserbase,
@@ -104110,6 +104899,7 @@ var CONNECTOR_TYPES_DEF = {
   ...calendly,
   ...canva,
   ...chatwoot,
+  ...checkr,
   ...clado,
   ...clerk,
   ...clickup,
@@ -104117,7 +104907,6 @@ var CONNECTOR_TYPES_DEF = {
   ...cloudflare,
   ...cloudinary,
   ...coda,
-  ...codexOauth,
   ...computer,
   ...cronlytic,
   ...customerIo,
@@ -104140,6 +104929,7 @@ var CONNECTOR_TYPES_DEF = {
   ...etsy,
   ...exa,
   ...explorium,
+  ...faire,
   ...fal,
   ...figma,
   ...firecrawl,
@@ -104233,6 +105023,7 @@ var CONNECTOR_TYPES_DEF = {
   ...runway,
   ...salesforce,
   ...scrapeninja,
+  ...segment,
   ...sendgrid,
   ...serpapi,
   ...servicenow,
@@ -104242,12 +105033,12 @@ var CONNECTOR_TYPES_DEF = {
   ...slackWebhook,
   ...snowflake,
   ...sponge,
+  ...sproutgigs,
   ...square,
   ...stabilityAi,
   ...strapi,
   ...streak,
   ...stripe,
-  ...suno,
   ...supabase,
   ...supadata,
   ...supermemory,
@@ -105469,6 +106260,8 @@ init_esm_shims();
 // ../../packages/api-contracts/src/contracts/runners.ts
 init_esm_shims();
 var c20 = initContract();
+var MIN_EPOCH_MS_TIMESTAMP = 1e12;
+var apiStartTimeSchema = external_exports.number().int().min(MIN_EPOCH_MS_TIMESTAMP);
 var runnerGroupSchema = external_exports.string().regex(
   /^[a-z0-9-]+\/[a-z0-9-]+$/,
   "Runner group must be in vm0/<name> format (e.g., vm0/production)"
@@ -105554,8 +106347,8 @@ var storedExecutionContextSchema = external_exports.object({
   debugNoMockCodex: external_exports.boolean().optional(),
   // Capture HTTP request headers, request bodies, and response bodies in network logs
   captureNetworkBodies: external_exports.boolean().optional(),
-  // Dispatch timestamp for E2E timing metrics
-  apiStartTime: external_exports.number().optional(),
+  // Dispatch timestamp for E2E timing metrics, as Unix epoch milliseconds
+  apiStartTime: apiStartTimeSchema.optional(),
   // User's timezone preference (IANA format, e.g., "Asia/Shanghai")
   userTimezone: external_exports.string().optional(),
   // Firewall for proxy-side token replacement (complete config, all permissions)
@@ -105602,8 +106395,8 @@ var executionContextSchema = external_exports.object({
   debugNoMockCodex: external_exports.boolean().optional(),
   // Capture HTTP request headers, request bodies, and response bodies in network logs
   captureNetworkBodies: external_exports.boolean().optional(),
-  // Dispatch timestamp for E2E timing metrics
-  apiStartTime: external_exports.number().optional(),
+  // Dispatch timestamp for E2E timing metrics, as Unix epoch milliseconds
+  apiStartTime: apiStartTimeSchema.optional(),
   // User's timezone preference (IANA format, e.g., "Asia/Shanghai")
   userTimezone: external_exports.string().optional(),
   // Firewall for proxy-side token replacement (complete config, all permissions)
@@ -109052,7 +109845,11 @@ async function generateWebImage(options) {
         ...options.moderation ? { moderation: options.moderation } : {},
         ...options.seed !== void 0 ? { seed: options.seed } : {},
         ...options.safetyTolerance ? { safetyTolerance: options.safetyTolerance } : {},
-        ...options.enhancePrompt !== void 0 ? { enhancePrompt: options.enhancePrompt } : {}
+        ...options.enhancePrompt !== void 0 ? { enhancePrompt: options.enhancePrompt } : {},
+        ...options.imageUrls && options.imageUrls.length > 0 ? { imageUrls: options.imageUrls } : {},
+        ...options.maskImageUrl ? { maskImageUrl: options.maskImageUrl } : {},
+        ...options.inputFidelity ? { inputFidelity: options.inputFidelity } : {},
+        ...options.imagePromptStrength !== void 0 ? { imagePromptStrength: options.imagePromptStrength } : {}
       })
     }
   );
@@ -109162,6 +109959,42 @@ async function generateWebPresentation(options) {
     fallback: "Failed to generate presentation"
   });
 }
+async function generateWebWebsite(options) {
+  const baseUrl = await getBaseUrl();
+  const token = await getActiveToken();
+  if (!token) {
+    throw new ApiRequestError("Not authenticated", "UNAUTHORIZED", 401);
+  }
+  const headers = {
+    Authorization: `Bearer ${token}`,
+    "Content-Type": "application/json"
+  };
+  const bypassSecret = process.env.VERCEL_AUTOMATION_BYPASS_SECRET;
+  if (bypassSecret) {
+    headers["x-vercel-protection-bypass"] = bypassSecret;
+  }
+  const response = await fetch(
+    new URL("/api/zero/website-io/generate", baseUrl),
+    {
+      method: "POST",
+      headers,
+      body: JSON.stringify({
+        prompt: options.prompt,
+        ...options.template ? { template: options.template } : {},
+        ...options.title ? { title: options.title } : {},
+        ...options.audience ? { audience: options.audience } : {}
+      })
+    }
+  );
+  if (!response.ok) {
+    const { message, code } = await parseErrorBody(
+      response,
+      "Failed to generate website"
+    );
+    throw new ApiRequestError(message, code, response.status);
+  }
+  return await response.json();
+}
 
 // src/lib/api/domains/zero-host.ts
 init_esm_shims();
@@ -114055,6 +114888,27 @@ var atlassianFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/atlascloud.generated.ts
+init_esm_shims();
+var atlascloudFirewall = {
+  name: "atlascloud",
+  description: "Atlas Cloud API",
+  placeholders: {
+    ATLASCLOUD_API_KEY: "c0ffee5afe10ca1c0ffee5afe10ca1c0ffee5afe10ca1c0ffee5afe10ca1c0ff"
+  },
+  apis: [
+    {
+      base: "https://api.atlascloud.ai",
+      auth: {
+        headers: {
+          Authorization: "Bearer ${{ secrets.ATLASCLOUD_API_KEY }}"
+        }
+      },
+      permissions: []
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/aviationstack.generated.ts
 init_esm_shims();
 var aviationstackFirewall = {
@@ -114518,6 +115372,43 @@ var braveSearchFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/brex.generated.ts
+init_esm_shims();
+var brexFirewall = {
+  name: "brex",
+  description: "Brex API",
+  placeholders: {
+    BREX_TOKEN: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafeLocal"
+  },
+  apis: [
+    {
+      base: "https://api.brex.com",
+      auth: {
+        headers: {
+          Authorization: "Bearer ${{ secrets.BREX_TOKEN }}"
+        }
+      },
+      permissions: [
+        {
+          name: "read",
+          description: "Read Brex resources",
+          rules: ["GET /{path+}"]
+        },
+        {
+          name: "write",
+          description: "Create, update, and delete Brex resources",
+          rules: [
+            "POST /{path+}",
+            "PUT /{path+}",
+            "PATCH /{path+}",
+            "DELETE /{path+}"
+          ]
+        }
+      ]
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/brevo.generated.ts
 init_esm_shims();
 var brevoFirewall = {
@@ -114776,6 +115667,43 @@ var chatwootFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/checkr.generated.ts
+init_esm_shims();
+var checkrFirewall = {
+  name: "checkr",
+  description: "Checkr API",
+  placeholders: {
+    CHECKR_TOKEN: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafeLocal"
+  },
+  apis: [
+    {
+      base: "https://api.checkr.com/v1",
+      auth: {
+        headers: {
+          Authorization: '${{ basic(secrets.CHECKR_TOKEN, "") }}'
+        }
+      },
+      permissions: [
+        {
+          name: "read",
+          description: "Read Checkr resources",
+          rules: ["GET /{path+}"]
+        },
+        {
+          name: "write",
+          description: "Create, update, and delete Checkr resources",
+          rules: [
+            "POST /{path+}",
+            "PUT /{path+}",
+            "PATCH /{path+}",
+            "DELETE /{path+}"
+          ]
+        }
+      ]
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/clado.generated.ts
 init_esm_shims();
 var cladoFirewall = {
@@ -116525,6 +117453,43 @@ var exploriumFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/faire.generated.ts
+init_esm_shims();
+var faireFirewall = {
+  name: "faire",
+  description: "Faire External API V2",
+  placeholders: {
+    FAIRE_TOKEN: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafeLocal"
+  },
+  apis: [
+    {
+      base: "https://www.faire.com/external-api/v2",
+      auth: {
+        headers: {
+          "X-FAIRE-ACCESS-TOKEN": "${{ secrets.FAIRE_TOKEN }}"
+        }
+      },
+      permissions: [
+        {
+          name: "read",
+          description: "Read Faire resources",
+          rules: ["GET /{path+}"]
+        },
+        {
+          name: "write",
+          description: "Create, update, and delete Faire resources",
+          rules: [
+            "POST /{path+}",
+            "PUT /{path+}",
+            "PATCH /{path+}",
+            "DELETE /{path+}"
+          ]
+        }
+      ]
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/fal.generated.ts
 init_esm_shims();
 var falFirewall = {
@@ -120326,6 +121291,43 @@ var scrapeninjaFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/segment.generated.ts
+init_esm_shims();
+var segmentFirewall = {
+  name: "segment",
+  description: "Segment Public API",
+  placeholders: {
+    SEGMENT_TOKEN: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafeLocal"
+  },
+  apis: [
+    {
+      base: "https://api.segmentapis.com",
+      auth: {
+        headers: {
+          Authorization: "Bearer ${{ secrets.SEGMENT_TOKEN }}"
+        }
+      },
+      permissions: [
+        {
+          name: "read",
+          description: "Read Segment resources",
+          rules: ["GET /{path+}"]
+        },
+        {
+          name: "write",
+          description: "Create, update, and delete Segment resources",
+          rules: [
+            "POST /{path+}",
+            "PUT /{path+}",
+            "PATCH /{path+}",
+            "DELETE /{path+}"
+          ]
+        }
+      ]
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/sentry.generated.ts
 init_esm_shims();
 var sentryFirewall = {
@@ -121169,6 +122171,109 @@ var spongeFirewall = {
   ]
 };
 
+// ../../packages/connectors/src/firewalls/sproutgigs.generated.ts
+init_esm_shims();
+var sproutgigsFirewall = {
+  name: "sproutgigs",
+  description: "SproutGigs buyer jobs, gigs, lists, profiles, and users API",
+  placeholders: {
+    SPROUTGIGS_API_SECRET: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafeLocal"
+  },
+  apis: [
+    {
+      base: "https://sproutgigs.com/api",
+      auth: {
+        headers: {
+          Authorization: "${{ basic(vars.SPROUTGIGS_USER_ID, secrets.SPROUTGIGS_API_SECRET) }}"
+        }
+      },
+      permissions: [
+        {
+          name: "gigs:read",
+          description: "Read gig categories, listings, details, questions, and reviews",
+          rules: [
+            "GET /gigs/get-categories.php",
+            "GET /gigs/get-gig-public-questions.php",
+            "GET /gigs/get-gig-reviews.php",
+            "GET /gigs/get-gig.php",
+            "GET /gigs/get-gigs.php"
+          ]
+        },
+        {
+          name: "jobs:read",
+          description: "Read job categories, jobs, zones, rated and unrated tasks, and predicted position",
+          rules: [
+            "GET /jobs/get-categories.php",
+            "GET /jobs/get-job.php",
+            "GET /jobs/get-jobs.php",
+            "POST /jobs/get-predicted-position.php",
+            "GET /jobs/get-rated-tasks.php",
+            "GET /jobs/get-unrated-tasks.php",
+            "GET /jobs/get-zones.php"
+          ]
+        },
+        {
+          name: "jobs:write",
+          description: "Create, update, feature, pause, resume, restart, stop, and configure jobs",
+          rules: [
+            "POST /jobs/add-positions.php",
+            "POST /jobs/edit-targeting.php",
+            "POST /jobs/feature-job.php",
+            "POST /jobs/job-pause.php",
+            "POST /jobs/job-restart.php",
+            "POST /jobs/job-resume.php",
+            "POST /jobs/job-stop.php",
+            "POST /jobs/post-job.php",
+            "POST /jobs/set-daily-tasks-limit.php",
+            "POST /jobs/set-distribution.php",
+            "POST /jobs/set-speed.php",
+            "POST /jobs/set-ttr.php"
+          ]
+        },
+        {
+          name: "tasks:rate",
+          description: "Approve or reject single and multiple submitted tasks",
+          rules: [
+            "POST /jobs/rate-multiple-tasks.php",
+            "POST /jobs/rate-single-task.php"
+          ]
+        },
+        {
+          name: "lists:read",
+          description: "Read public and account freelancer lists",
+          rules: [
+            "GET /jobs/get-lists.php",
+            "GET /lists/get-public-lists.php"
+          ]
+        },
+        {
+          name: "lists:write",
+          description: "Add, block, and unblock freelancers in lists",
+          rules: [
+            "POST /lists/add-workers.php",
+            "POST /lists/block-workers.php",
+            "POST /lists/unblock-workers.php"
+          ]
+        },
+        {
+          name: "profiles:read",
+          description: "Read freelancer profile details",
+          rules: [
+            "GET /profiles/get-profile.php"
+          ]
+        },
+        {
+          name: "users:read",
+          description: "Read account balances",
+          rules: [
+            "GET /users/get-balances.php"
+          ]
+        }
+      ]
+    }
+  ]
+};
+
 // ../../packages/connectors/src/firewalls/spotify.generated.ts
 init_esm_shims();
 var spotifyFirewall = {
@@ -121360,27 +122465,6 @@ var stripeFirewall = {
   ]
 };
 
-// ../../packages/connectors/src/firewalls/suno.generated.ts
-init_esm_shims();
-var sunoFirewall = {
-  name: "suno",
-  description: "Suno API",
-  placeholders: {
-    SUNO_TOKEN: "CoffeeSafeLocalCoffeeSafeLocalCoffeeSafe"
-  },
-  apis: [
-    {
-      base: "https://api.sunoapi.org",
-      auth: {
-        headers: {
-          Authorization: "Bearer ${{ secrets.SUNO_TOKEN }}"
-        }
-      },
-      permissions: []
-    }
-  ]
-};
-
 // ../../packages/connectors/src/firewalls/supabase.generated.ts
 init_esm_shims();
 var supabaseFirewall = {
@@ -123815,10 +124899,12 @@ var CONNECTOR_FIREWALLS = {
   asana: asanaFirewall,
   attio: attioFirewall,
   atlassian: atlassianFirewall,
+  atlascloud: atlascloudFirewall,
   axiom: axiomFirewall,
   bentoml: bentomlFirewall,
   bitrix: bitrixFirewall,
   "brave-search": braveSearchFirewall,
+  brex: brexFirewall,
   brevo: brevoFirewall,
   "bright-data": brightDataFirewall,
   browserbase: browserbaseFirewall,
@@ -123829,6 +124915,7 @@ var CONNECTOR_FIREWALLS = {
   calendly: calendlyFirewall,
   canva: canvaFirewall,
   chatwoot: chatwootFirewall,
+  checkr: checkrFirewall,
   clerk: clerkFirewall,
   clickup: clickupFirewall,
   close: closeFirewall,
@@ -123856,6 +124943,7 @@ var CONNECTOR_FIREWALLS = {
   etsy: etsyFirewall,
   exa: exaFirewall,
   explorium: exploriumFirewall,
+  faire: faireFirewall,
   fal: falFirewall,
   figma: figmaFirewall,
   firecrawl: firecrawlFirewall,
@@ -123949,6 +125037,7 @@ var CONNECTOR_FIREWALLS = {
   runway: runwayFirewall,
   salesforce: salesforceFirewall,
   scrapeninja: scrapeninjaFirewall,
+  segment: segmentFirewall,
   sentry: sentryFirewall,
   serpapi: serpapiFirewall,
   shopify: shopifyFirewall,
@@ -123958,6 +125047,7 @@ var CONNECTOR_FIREWALLS = {
   slack: slackFirewall,
   "slack-webhook": slackWebhookFirewall,
   sponge: spongeFirewall,
+  sproutgigs: sproutgigsFirewall,
   spotify: spotifyFirewall,
   strava: stravaFirewall,
   strapi: strapiFirewall,
@@ -124010,8 +125100,7 @@ var CONNECTOR_FIREWALLS = {
   nyne: nyneFirewall,
   openrouter: openrouterFirewall,
   openweather: openweatherFirewall,
-  reducto: reductoFirewall,
-  suno: sunoFirewall
+  reducto: reductoFirewall
 };
 function expandPlaceholders(firewall, connectorType) {
   if (!firewall.placeholders) return firewall;
@@ -124143,16 +125232,27 @@ var healthAuthContract = c29.router({
 // ../../packages/api-contracts/src/contracts/desktop-auth.ts
 init_esm_shims();
 var c30 = initContract();
+var desktopAuthCallbackSchemes = [
+  "ai.vm0.zero.desktop",
+  "ai.vm0.zero.desktop.dev"
+];
+var defaultDesktopAuthCallbackScheme = desktopAuthCallbackSchemes[0];
+var desktopAuthCallbackSchemeSchema = external_exports.enum(
+  desktopAuthCallbackSchemes
+);
 var desktopAuthHandoffContract = c30.router({
   create: {
     method: "POST",
     path: "/api/desktop-auth/handoff",
     headers: authHeadersSchema,
-    body: external_exports.object({}).optional(),
+    body: external_exports.object({
+      callbackScheme: desktopAuthCallbackSchemeSchema.optional()
+    }).optional(),
     responses: {
       200: external_exports.object({
         callbackUrl: external_exports.string()
       }),
+      400: apiErrorSchema,
       401: apiErrorSchema,
       403: apiErrorSchema,
       500: apiErrorSchema
@@ -127589,7 +128689,17 @@ var zeroImageIoGenerateRequestSchema = external_exports.object({
   moderation: external_exports.unknown().optional(),
   seed: external_exports.unknown().optional(),
   safetyTolerance: external_exports.unknown().optional(),
-  enhancePrompt: external_exports.unknown().optional()
+  enhancePrompt: external_exports.unknown().optional(),
+  imageUrl: external_exports.unknown().optional(),
+  image_url: external_exports.unknown().optional(),
+  imageUrls: external_exports.unknown().optional(),
+  image_urls: external_exports.unknown().optional(),
+  maskImageUrl: external_exports.unknown().optional(),
+  mask_image_url: external_exports.unknown().optional(),
+  inputFidelity: external_exports.unknown().optional(),
+  input_fidelity: external_exports.unknown().optional(),
+  imagePromptStrength: external_exports.unknown().optional(),
+  image_prompt_strength: external_exports.unknown().optional()
 }).passthrough();
 var zeroImageIoGenerateResponseSchema = external_exports.object({
   id: external_exports.string(),
@@ -127611,7 +128721,11 @@ var zeroImageIoGenerateResponseSchema = external_exports.object({
   billingCategory: external_exports.string().optional(),
   billingQuantity: external_exports.number().optional(),
   sourceUrl: external_exports.string().optional(),
-  seed: external_exports.number().optional()
+  seed: external_exports.number().optional(),
+  sourceImageUrls: external_exports.array(external_exports.string()).optional(),
+  maskImageUrl: external_exports.string().optional(),
+  inputFidelity: external_exports.string().optional(),
+  imagePromptStrength: external_exports.number().optional()
 });
 var zeroImageIoGenerateContract = c91.router({
   post: {
@@ -127746,10 +128860,105 @@ var zeroPresentationIoGenerateContract = c93.router({
   }
 });
 
-// ../../packages/api-contracts/src/contracts/internal-callbacks-agent.ts
+// ../../packages/api-contracts/src/contracts/zero-website-io-generate.ts
 init_esm_shims();
 var c94 = initContract();
-var internalCallbacksAgentContract = c94.router({
+var zeroWebsiteTemplateIdSchema = external_exports.enum(["launch", "profile"]);
+var zeroWebsiteTemplateRequestSchema = external_exports.enum([
+  "auto",
+  "launch",
+  "profile"
+]);
+var zeroWebsiteIoGenerateRequestSchema = external_exports.object({
+  prompt: external_exports.unknown().optional(),
+  template: external_exports.unknown().optional(),
+  title: external_exports.unknown().optional(),
+  audience: external_exports.unknown().optional()
+}).passthrough();
+var zeroWebsiteIoUsageSchema = external_exports.object({
+  inputTokens: external_exports.number(),
+  outputTokens: external_exports.number(),
+  totalTokens: external_exports.number()
+});
+var zeroWebsiteCtaSchema = external_exports.object({
+  label: external_exports.string(),
+  href: external_exports.string()
+});
+var zeroWebsiteHighlightSchema = external_exports.object({
+  title: external_exports.string(),
+  body: external_exports.string()
+});
+var zeroWebsiteSectionSchema = external_exports.object({
+  kicker: external_exports.string(),
+  title: external_exports.string(),
+  body: external_exports.string(),
+  bullets: external_exports.array(external_exports.string())
+});
+var zeroWebsiteStatSchema = external_exports.object({
+  label: external_exports.string(),
+  value: external_exports.string()
+});
+var zeroWebsiteFooterSchema = external_exports.object({
+  title: external_exports.string(),
+  body: external_exports.string(),
+  cta: zeroWebsiteCtaSchema
+});
+var zeroWebsiteThemeSchema = external_exports.object({
+  accent: external_exports.enum(["cobalt", "green", "coral", "mono"]),
+  tone: external_exports.enum(["light", "dark"])
+});
+var zeroWebsiteSiteDataSchema = external_exports.object({
+  siteName: external_exports.string(),
+  eyebrow: external_exports.string(),
+  headline: external_exports.string(),
+  subhead: external_exports.string(),
+  primaryCta: zeroWebsiteCtaSchema,
+  secondaryCta: zeroWebsiteCtaSchema,
+  highlights: external_exports.array(zeroWebsiteHighlightSchema),
+  sections: external_exports.array(zeroWebsiteSectionSchema),
+  stats: external_exports.array(zeroWebsiteStatSchema),
+  footer: zeroWebsiteFooterSchema,
+  theme: zeroWebsiteThemeSchema
+});
+var zeroWebsiteGenerationPayloadSchema = external_exports.object({
+  templateId: zeroWebsiteTemplateIdSchema,
+  siteData: zeroWebsiteSiteDataSchema
+});
+var zeroWebsiteIoGenerateResponseSchema = external_exports.object({
+  generationId: external_exports.string(),
+  templateId: zeroWebsiteTemplateIdSchema,
+  templateLabel: external_exports.string(),
+  slugSuggestion: external_exports.string(),
+  siteData: zeroWebsiteSiteDataSchema,
+  creditsCharged: external_exports.number(),
+  model: external_exports.string(),
+  responseId: external_exports.string().optional(),
+  usage: zeroWebsiteIoUsageSchema
+});
+var zeroWebsiteIoGenerateContract = c94.router({
+  post: {
+    method: "POST",
+    path: "/api/zero/website-io/generate",
+    headers: authHeadersSchema,
+    body: zeroWebsiteIoGenerateRequestSchema,
+    responses: {
+      200: zeroWebsiteIoGenerateResponseSchema,
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      402: apiErrorSchema,
+      403: apiErrorSchema,
+      500: apiErrorSchema,
+      502: apiErrorSchema,
+      503: apiErrorSchema
+    },
+    summary: "Generate structured content for a hosted website template"
+  }
+});
+
+// ../../packages/api-contracts/src/contracts/internal-callbacks-agent.ts
+init_esm_shims();
+var c95 = initContract();
+var internalCallbacksAgentContract = c95.router({
   post: {
     method: "POST",
     path: "/api/internal/callbacks/agent",
@@ -127767,7 +128976,7 @@ var internalCallbacksAgentContract = c94.router({
 
 // ../../packages/api-contracts/src/contracts/internal-callbacks-github-issues.ts
 init_esm_shims();
-var c95 = initContract();
+var c96 = initContract();
 var githubIssuesCallbackPayloadSchema = external_exports.object({
   installationId: external_exports.string(),
   repo: external_exports.string(),
@@ -127778,7 +128987,7 @@ var githubIssuesCallbackPayloadSchema = external_exports.object({
   triggerReactionId: external_exports.string().optional(),
   triggerCommentBody: external_exports.string().optional()
 }).passthrough();
-var internalCallbacksGithubIssuesContract = c95.router({
+var internalCallbacksGithubIssuesContract = c96.router({
   post: {
     method: "POST",
     path: "/api/internal/callbacks/github/issues",
@@ -127799,7 +129008,7 @@ var internalCallbacksGithubIssuesContract = c95.router({
 
 // ../../packages/api-contracts/src/contracts/internal-callbacks-schedule.ts
 init_esm_shims();
-var c96 = initContract();
+var c97 = initContract();
 var scheduleLoopCallbackPayloadSchema = external_exports.object({
   scheduleId: external_exports.string()
 }).passthrough();
@@ -127807,7 +129016,7 @@ var scheduleCronCallbackPayloadSchema = scheduleLoopCallbackPayloadSchema.extend
   timezone: external_exports.string(),
   cronExpression: external_exports.string().optional()
 }).passthrough();
-var internalCallbacksScheduleContract = c96.router({
+var internalCallbacksScheduleContract = c97.router({
   cron: {
     method: "POST",
     path: "/api/internal/callbacks/schedule/cron",
@@ -127842,13 +129051,13 @@ var internalCallbacksScheduleContract = c96.router({
 
 // ../../packages/api-contracts/src/contracts/zero-voice-io-quota.ts
 init_esm_shims();
-var c97 = initContract();
+var c98 = initContract();
 var audioInputQuotaResponseSchema = external_exports.object({
   allowed: external_exports.boolean(),
   count: external_exports.number().int().nonnegative(),
   limit: external_exports.number().int().positive().nullable()
 });
-var zeroVoiceIoQuotaContract = c97.router({
+var zeroVoiceIoQuotaContract = c98.router({
   get: {
     method: "GET",
     path: "/api/zero/voice-io/quota",
@@ -127864,7 +129073,7 @@ var zeroVoiceIoQuotaContract = c97.router({
 
 // ../../packages/api-contracts/src/contracts/zero-voice-io-speech.ts
 init_esm_shims();
-var c98 = initContract();
+var c99 = initContract();
 var zeroVoiceIoSpeechRequestSchema = external_exports.object({
   text: external_exports.unknown().optional(),
   voice: external_exports.unknown().optional(),
@@ -127881,7 +129090,7 @@ var zeroVoiceIoSpeechResponseSchema = external_exports.object({
   model: external_exports.string(),
   voice: external_exports.string()
 });
-var zeroVoiceIoSpeechContract = c98.router({
+var zeroVoiceIoSpeechContract = c99.router({
   post: {
     method: "POST",
     path: "/api/zero/voice-io/speech",
@@ -127903,7 +129112,7 @@ var zeroVoiceIoSpeechContract = c98.router({
 
 // ../../packages/api-contracts/src/contracts/zero-voice-io-stt.ts
 init_esm_shims();
-var c99 = initContract();
+var c100 = initContract();
 var zeroVoiceIoSttResponseSchema = external_exports.object({
   text: external_exports.string()
 });
@@ -127913,13 +129122,13 @@ var zeroVoiceIoSttQuotaErrorSchema = apiErrorSchema.extend({
     limit: external_exports.number().nullable()
   }).optional()
 });
-var zeroVoiceIoSttContract = c99.router({
+var zeroVoiceIoSttContract = c100.router({
   post: {
     method: "POST",
     path: "/api/zero/voice-io/stt",
     headers: authHeadersSchema,
     contentType: "multipart/form-data",
-    body: c99.type(),
+    body: c100.type(),
     responses: {
       200: zeroVoiceIoSttResponseSchema,
       400: apiErrorSchema,
@@ -127935,18 +129144,18 @@ var zeroVoiceIoSttContract = c99.router({
 
 // ../../packages/api-contracts/src/contracts/zero-voice-io-tts.ts
 init_esm_shims();
-var c100 = initContract();
+var c101 = initContract();
 var zeroVoiceIoTtsRequestSchema = external_exports.object({
   text: external_exports.unknown().optional()
 }).passthrough();
-var zeroVoiceIoTtsContract = c100.router({
+var zeroVoiceIoTtsContract = c101.router({
   post: {
     method: "POST",
     path: "/api/zero/voice-io/tts",
     headers: authHeadersSchema,
     body: zeroVoiceIoTtsRequestSchema,
     responses: {
-      200: c100.otherResponse({
+      200: c101.otherResponse({
         contentType: "application/octet-stream",
         body: external_exports.unknown()
       }),
@@ -127961,7 +129170,7 @@ var zeroVoiceIoTtsContract = c100.router({
 
 // ../../packages/api-contracts/src/contracts/zero-voice-chat.ts
 init_esm_shims();
-var c101 = initContract();
+var c102 = initContract();
 var voiceChatItemRoleSchema = external_exports.enum([
   "user",
   "assistant",
@@ -128058,7 +129267,7 @@ var sessionEndedBodySchema = external_exports.object({
   relaySessionId: external_exports.uuid()
 });
 var okResponseSchema = external_exports.object({ ok: external_exports.literal(true) });
-var zeroVoiceChatContract = c101.router({
+var zeroVoiceChatContract = c102.router({
   createSession: {
     method: "POST",
     path: "/api/zero/voice-chat",
@@ -128233,7 +129442,7 @@ var zeroVoiceChatContract = c101.router({
 
 // ../../packages/api-contracts/src/contracts/zero-uploads.ts
 init_esm_shims();
-var c102 = initContract();
+var c103 = initContract();
 var prepareRequestSchema = external_exports.object({
   filename: external_exports.string().min(1).max(255),
   contentType: external_exports.string().min(1).max(200),
@@ -128260,7 +129469,7 @@ var completeResponseSchema = external_exports.object({
   size: external_exports.number(),
   url: external_exports.string().url()
 });
-var zeroUploadsContract = c102.router({
+var zeroUploadsContract = c103.router({
   prepare: {
     method: "POST",
     path: "/api/zero/uploads/prepare",
@@ -128294,7 +129503,7 @@ var zeroUploadsContract = c102.router({
 
 // ../../packages/api-contracts/src/contracts/zero-host.ts
 init_esm_shims();
-var c103 = initContract();
+var c104 = initContract();
 var hostedSiteSlugSchema = external_exports.string().trim().min(3).max(63).regex(
   /^[a-z0-9](?:[a-z0-9-]*[a-z0-9])?$/,
   "Site slug must use lowercase letters, numbers, and hyphens, and must start and end with a letter or number"
@@ -128329,7 +129538,7 @@ var hostedSiteCompleteResponseSchema = external_exports.object({
   url: external_exports.string().url(),
   status: external_exports.literal("ready")
 });
-var zeroHostContract = c103.router({
+var zeroHostContract = c104.router({
   prepare: {
     method: "POST",
     path: "/api/zero/host/deployments/prepare",
@@ -128368,7 +129577,7 @@ var zeroHostContract = c103.router({
 
 // ../../packages/api-contracts/src/contracts/zero-integrations-telegram.ts
 init_esm_shims();
-var c104 = initContract();
+var c105 = initContract();
 var telegramEnvironmentSchema = external_exports.object({
   requiredSecrets: external_exports.array(external_exports.string()),
   requiredVars: external_exports.array(external_exports.string()),
@@ -128467,7 +129676,7 @@ var telegramSetupStatusSchema = external_exports.object({
 var telegramWebhookPathParamsSchema = external_exports.object({
   telegramBotId: external_exports.string().min(1)
 });
-var zeroIntegrationsTelegramContract = c104.router({
+var zeroIntegrationsTelegramContract = c105.router({
   list: {
     method: "GET",
     path: "/api/integrations/telegram",
@@ -128510,9 +129719,9 @@ var zeroIntegrationsTelegramContract = c104.router({
     path: "/api/integrations/telegram/:botId",
     headers: authHeadersSchema,
     pathParams: external_exports.object({ botId: external_exports.string().min(1) }),
-    body: c104.noBody(),
+    body: c105.noBody(),
     responses: {
-      204: c104.noBody(),
+      204: c105.noBody(),
       401: apiErrorSchema,
       403: apiErrorSchema,
       404: apiErrorSchema
@@ -128523,10 +129732,10 @@ var zeroIntegrationsTelegramContract = c104.router({
     method: "DELETE",
     path: "/api/integrations/telegram/link",
     headers: authHeadersSchema,
-    body: c104.noBody(),
+    body: c105.noBody(),
     query: external_exports.object({ botId: external_exports.string().optional() }),
     responses: {
-      204: c104.noBody(),
+      204: c105.noBody(),
       401: apiErrorSchema,
       404: apiErrorSchema
     },
@@ -128557,7 +129766,7 @@ var zeroIntegrationsTelegramContract = c104.router({
       sig: external_exports.string().optional()
     }),
     responses: {
-      200: c104.otherResponse({
+      200: c105.otherResponse({
         contentType: "application/octet-stream",
         body: external_exports.unknown()
       }),
@@ -128572,7 +129781,7 @@ var zeroIntegrationsTelegramContract = c104.router({
     method: "GET",
     path: "/api/integrations/telegram/auth-callback",
     responses: {
-      200: c104.otherResponse({
+      200: c105.otherResponse({
         contentType: "text/html",
         body: external_exports.unknown()
       })
@@ -128631,19 +129840,19 @@ var zeroIntegrationsTelegramContract = c104.router({
     pathParams: telegramWebhookPathParamsSchema,
     body: external_exports.unknown(),
     responses: {
-      200: c104.otherResponse({
+      200: c105.otherResponse({
         contentType: "text/plain",
         body: external_exports.string()
       }),
-      400: c104.otherResponse({
+      400: c105.otherResponse({
         contentType: "text/plain",
         body: external_exports.string()
       }),
-      401: c104.otherResponse({
+      401: c105.otherResponse({
         contentType: "text/plain",
         body: external_exports.string()
       }),
-      404: c104.otherResponse({
+      404: c105.otherResponse({
         contentType: "text/plain",
         body: external_exports.string()
       })
@@ -128654,7 +129863,7 @@ var zeroIntegrationsTelegramContract = c104.router({
 
 // ../../packages/api-contracts/src/contracts/zero-integrations-agentphone.ts
 init_esm_shims();
-var c105 = initContract();
+var c106 = initContract();
 var agentPhoneConnectBodySchema = external_exports.object({
   phoneHandle: external_exports.string().min(1),
   agentphoneAgentId: external_exports.string().min(1),
@@ -128691,7 +129900,7 @@ var agentPhoneStartLinkResponseSchema = external_exports.object({
   phoneHandle: external_exports.string(),
   verificationSent: external_exports.literal(true)
 });
-var zeroIntegrationsAgentPhoneContract = c105.router({
+var zeroIntegrationsAgentPhoneContract = c106.router({
   connectAgentPhone: {
     method: "POST",
     path: "/api/agentphone/connect",
@@ -128709,7 +129918,7 @@ var zeroIntegrationsAgentPhoneContract = c105.router({
     method: "POST",
     path: "/api/agentphone/webhook",
     headers: agentPhoneWebhookHeadersSchema,
-    body: c105.type(),
+    body: c106.type(),
     responses: {
       200: external_exports.string(),
       400: external_exports.string(),
@@ -128749,9 +129958,9 @@ var zeroIntegrationsAgentPhoneContract = c105.router({
     method: "DELETE",
     path: "/api/integrations/agentphone/link",
     headers: authHeadersSchema,
-    body: c105.noBody(),
+    body: c106.noBody(),
     responses: {
-      204: c105.noBody(),
+      204: c106.noBody(),
       401: apiErrorSchema,
       403: apiErrorSchema,
       404: apiErrorSchema
@@ -128850,305 +130059,6 @@ function getInstructionsFilename(framework) {
   return FRAMEWORK_INSTRUCTIONS_FILENAMES[validated];
 }
 
-// ../../packages/core/src/feature-switch-key.ts
-init_esm_shims();
-
-// ../../packages/core/src/feature-switch.ts
-init_esm_shims();
-
-// ../../packages/core/src/identity-hash.ts
-init_esm_shims();
-var STAFF_ORG_ID_HASHES = [
-  "afce210e"
-  // org_3ANttyrbWYJk6JKRSTRLEsbsDLe
-];
-
-// ../../packages/core/src/feature-switch.ts
-var FEATURE_SWITCHES = {
-  ["dummy" /* Dummy */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Test-only feature switch for flag system validation",
-    enabled: true
-  },
-  ["ahrefsConnector" /* AhrefsConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Ahrefs SEO connector",
-    enabled: false
-  },
-  ["bentomlConnector" /* BentomlConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the BentoML model serving connector",
-    enabled: false
-  },
-  ["canvaConnector" /* CanvaConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Canva design connector",
-    enabled: false
-  },
-  ["computerConnector" /* ComputerConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Computer connector for local service tunneling",
-    enabled: false
-  },
-  ["deelConnector" /* DeelConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Deel HR connector",
-    enabled: false
-  },
-  ["docusignConnector" /* DocuSignConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the DocuSign e-signature connector",
-    enabled: false
-  },
-  ["dropboxConnector" /* DropboxConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Dropbox file storage connector",
-    enabled: false
-  },
-  ["figmaConnector" /* FigmaConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Figma design connector",
-    enabled: false
-  },
-  ["mercuryConnector" /* MercuryConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Mercury banking connector",
-    enabled: false
-  },
-  ["neonConnector" /* NeonConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Neon serverless Postgres connector",
-    enabled: false
-  },
-  ["garminConnectConnector" /* GarminConnectConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Garmin Connect wellness connector",
-    enabled: false
-  },
-  ["redditConnector" /* RedditConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Reddit connector integration",
-    enabled: false
-  },
-  ["supabaseConnector" /* SupabaseConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Supabase database connector integration",
-    enabled: false
-  },
-  ["closeConnector" /* CloseConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Close CRM connector",
-    enabled: false
-  },
-  ["webflowConnector" /* WebflowConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Webflow site management connector",
-    enabled: false
-  },
-  ["outlookMailConnector" /* OutlookMailConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Outlook Mail connector",
-    enabled: false
-  },
-  ["outlookCalendarConnector" /* OutlookCalendarConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Outlook Calendar connector",
-    enabled: false
-  },
-  ["googleAdsConnector" /* GoogleAdsConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Google Ads connector",
-    enabled: false
-  },
-  ["metaAdsConnector" /* MetaAdsConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Meta Ads Manager connector",
-    enabled: false
-  },
-  ["stripeConnector" /* StripeConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Stripe payment connector integration",
-    enabled: false
-  },
-  ["cliAuthStripe" /* CliAuthStripe */]: {
-    maintainer: "liangyou@vm0.ai",
-    description: "Gate Stripe-specific CLI auth UI and API surfaces.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["posthogConnector" /* PosthogConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the PostHog analytics connector",
-    enabled: false
-  },
-  ["pwaOfflineCache" /* PwaOfflineCache */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable PWA offline caching (static asset cache-first, offline fallback page, and service worker updateViaCache: none)",
-    enabled: false
-  },
-  ["mailchimpConnector" /* MailchimpConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Mailchimp email marketing connector",
-    enabled: false
-  },
-  ["resendConnector" /* ResendConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Resend email service connector",
-    enabled: false
-  },
-  ["spotifyConnector" /* SpotifyConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Spotify connector integration",
-    enabled: false
-  },
-  ["dataExport" /* DataExport */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Show the data export option in account menu",
-    enabled: false
-  },
-  ["zeroDebug" /* ZeroDebug */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Reveal activity debug surfaces, activity log navigation, appended system prompts, and Debug preferences",
-    enabled: false
-  },
-  ["computerUse" /* ComputerUse */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable remote desktop host registration",
-    enabled: false
-  },
-  ["localBrowserUse" /* LocalBrowserUse */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Local Browser connector and user-authorized browser host lifecycle",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["lab" /* Lab */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Show the Lab page for toggling experimental features",
-    enabled: false
-  },
-  ["auditLink" /* AuditLink */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Show audit log links in integration replies",
-    enabled: false
-  },
-  ["audioOutput" /* AudioOutput */]: {
-    maintainer: "lancy@vm0.ai",
-    description: "Enable audio output in chat (TTS read-aloud + auto-read) \u2014 gates the volume/read buttons and the /api/zero/voice-io/tts route",
-    enabled: false
-  },
-  ["autoSkill" /* AutoSkill */]: {
-    maintainer: "lancy@vm0.ai",
-    description: "Enable automatic skill creation in agent prompts",
-    enabled: false
-  },
-  ["testOauthConnector" /* TestOauthConnector */]: {
-    maintainer: "liangyou@vm0.ai",
-    description: "Enable the test-oauth connector, a synthetic OAuth 2.0 provider used only for automated tests. Off in prod.",
-    enabled: false
-  },
-  ["chatHeaderNewButton" /* ChatHeaderNewButton */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Replace the Invite people button in the agent chat page header with a New button that creates a new chat thread",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["agentPhoneAppUi" /* AgentPhoneAppUi */]: {
-    maintainer: "linghan@vm0.ai",
-    description: "Show first-class AgentPhone app surfaces: Works card and onboarding entry points.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["chatMessageStartButton" /* ChatMessageStartButton */]: {
-    maintainer: "linghan@vm0.ai",
-    description: "Show an icon button in assistant message group actions that scrolls back to the start of that message group.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["goal" /* Goal */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable Codex-style goal mode in web chat: typing `/go <objective>` starts a self-continuing chain that runs up to 10 turns until the agent emits the [GOAL_DONE] sentinel, the budget is exhausted, the run fails, or the user interrupts.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["chatThreadRename" /* ChatThreadRename */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Adds a Rename chat item to the sidebar thread kebab menu. When the user renames a thread, automated title generation is suppressed for that thread.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["docsSite" /* DocsSite */]: {
-    maintainer: "linghan@vm0.ai",
-    description: "Enable the authenticated Strapi-backed docs site routes, navigation entry, and docs pages. Staff-only during rollout; per-user toggle via Lab.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["freshdeskConnector" /* FreshdeskConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Freshdesk helpdesk connector",
-    enabled: false
-  },
-  ["stabilityAiConnector" /* StabilityAiConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Stability AI image generation connector",
-    enabled: false
-  },
-  ["zoomConnector" /* ZoomConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Zoom connector (OAuth 2.0) for meetings, past participants, and cloud recordings access",
-    enabled: false
-  },
-  ["apiKeys" /* ApiKeys */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Gate the custom /settings/api-keys UI for issuing personal access tokens used by the /api/v1 public surface. When disabled, the settings page redirects to / and the sidebar menu item is hidden. The backend /api/v1 verification does NOT consult this flag \u2014 previously issued PATs continue to work.",
-    enabled: false
-  },
-  ["apiBackend" /* ApiBackend */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Route platform API traffic to the api backend host instead of the www backend host. Unported endpoints continue through the api backend's web fallback proxy.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["connectorCategories" /* ConnectorCategories */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Show category sections and the hover-reveal outline menu on the Connectors settings page. Staff-only during rollout.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["storedSecretKmsRead" /* StoredSecretKmsRead */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Prefer AWS KMS material when reading stored-secret envelopes. Disabled keeps reading the legacy AES branch during rollout. Read path is independent of StoredSecretKmsWrite \u2014 enable read only after dual-write has been on long enough to backfill existing rows.",
-    enabled: false
-  },
-  ["storedSecretKmsWrite" /* StoredSecretKmsWrite */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Dual-write stored-secret values to AWS KMS in addition to the legacy AES branch. When OFF, writes stay legacy-only even if SECRETS_KMS_KEY_ID is configured \u2014 this gates the KMS GenerateDataKey call so a missing IAM grant does not 500 every secret save.",
-    enabled: false
-  },
-  ["trinity" /* Trinity */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Embed the voice-chat mic toggle + voice-mode layout into the agent chat page. Gates the mic launcher, composer swap, and status/subtitle/task-card UI.",
-    enabled: false
-  },
-  ["zapierConnector" /* ZapierConnector */]: {
-    maintainer: "ethan@vm0.ai",
-    description: "Enable the Zapier connector. When disabled, Zapier is hidden from the connectors list and cannot be connected.",
-    enabled: false
-  },
-  ["voiceChatRealtimeBilling" /* VoiceChatRealtimeBilling */]: {
-    maintainer: "lancy@vm0.ai",
-    description: "Gate voice-chat realtime billing (Plan D, Epic #12128). When OFF, the token route mints an OpenAI ephemeral token without admission checks and the /session-started, /usage, and /session-ended endpoints are 200 no-ops \u2014 the org gets unmetered voice-chat. When ON, the token route runs credit + pricing admission, /session-started inserts an audit row in voice_chat_realtime_sessions, and the browser self-reports response.done + transcription.completed usage events for billing. Staff-only during rollout; operator flips per org via the feature-switch overrides API.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  },
-  ["hostedSites" /* HostedSites */]: {
-    maintainer: "lancy@vm0.ai",
-    description: "Enable static hosted-site deployments from zero host. Staff-only during rollout.",
-    enabled: false,
-    enabledOrgIdHashes: STAFF_ORG_ID_HASHES
-  }
-};
-
 // ../../packages/core/src/staff-org.ts
 init_esm_shims();
 
@@ -129506,9 +130416,9 @@ var CodexEventParser = class {
     if (!item.changes || item.changes.length === 0) {
       return null;
     }
-    const changes = item.changes.map((c106) => {
-      const action = c106.kind === "add" ? "Created" : c106.kind === "modify" ? "Modified" : "Deleted";
-      return `${action}: ${c106.path}`;
+    const changes = item.changes.map((c107) => {
+      const action = c107.kind === "add" ? "Created" : c107.kind === "modify" ? "Modified" : "Deleted";
+      return `${action}: ${c107.path}`;
     }).join("\n");
     return {
       type: "text",
@@ -130512,6 +131422,7 @@ export {
   source_default,
   decodeCliTokenPayload,
   decodeZeroTokenPayload,
+  zeroTokenAllowsFeatureSwitch,
   loadConfig,
   saveConfig,
   getToken,
@@ -130645,6 +131556,7 @@ export {
   generateWebImage,
   generateWebVideo,
   generateWebPresentation,
+  generateWebWebsite,
   prepareHostedSite,
   completeHostedSite,
   getInstructionsStorageName,
@@ -130695,4 +131607,4 @@ undici/lib/web/fetch/body.js:
 undici/lib/web/websocket/frame.js:
   (*! ws. MIT License. Einar Otto Stangvik <einaros@gmail.com> *)
 */
-//# sourceMappingURL=chunk-JZPZMJHP.js.map
+//# sourceMappingURL=chunk-YWCHIHYE.js.map