@voyant-travel/operator-settings 0.2.18 → 0.2.19

package/dist/hono-module.d.ts

@@ -3,6 +3,10 @@
  * surface mounted by `@voyant-travel/framework`'s composition. Routes live at
  * stable absolute paths, so the module uses `lazyRoutes` (explicit matchers +
  * a lazily-imported route bundle, cached per isolate).
+ *
+ * The loaded bundle is an `OpenAPIHono` (carrying the `defaultHook` that shapes
+ * request-validation failures) so its `createRoute(...).openapi(...)` operations
+ * are visible to the build-time `mergeLazyOpenApiPaths` replay (voyant#2114).
  */
 import type { HonoModule } from "@voyant-travel/hono/module";
 /** Stable absolute matchers for the operator-settings admin + public routes. */

package/dist/hono-module.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"hono-module.d.ts","sourceRoot":"","sources":["../src/hono-module.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAA;AAG5D,gFAAgF;AAChF,eAAO,MAAM,6BAA6B,kGAIhC,CAAA;AAEV,wBAAgB,gCAAgC,IAAI,UAAU,CAa7D"}
+{"version":3,"file":"hono-module.d.ts","sourceRoot":"","sources":["../src/hono-module.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAA;AAE5D,gFAAgF;AAChF,eAAO,MAAM,6BAA6B,kGAIhC,CAAA;AAEV,wBAAgB,gCAAgC,IAAI,UAAU,CAa7D"}

package/dist/hono-module.js

@@ -3,8 +3,13 @@
  * surface mounted by `@voyant-travel/framework`'s composition. Routes live at
  * stable absolute paths, so the module uses `lazyRoutes` (explicit matchers +
  * a lazily-imported route bundle, cached per isolate).
+ *
+ * The loaded bundle is an `OpenAPIHono` (carrying the `defaultHook` that shapes
+ * request-validation failures) so its `createRoute(...).openapi(...)` operations
+ * are visible to the build-time `mergeLazyOpenApiPaths` replay (voyant#2114).
  */
-import { Hono } from "hono";
+import { OpenAPIHono } from "@hono/zod-openapi";
+import { openApiValidationHook } from "@voyant-travel/hono";
 /** Stable absolute matchers for the operator-settings admin + public routes. */
 export const OPERATOR_SETTINGS_ROUTE_PATHS = [
     "/v1/admin/settings/*",
@@ -17,7 +22,7 @@ export function createOperatorSettingsHonoModule() {
         lazyRoutes: {
             paths: OPERATOR_SETTINGS_ROUTE_PATHS,
             load: () => import("./routes.js").then((m) => {
-                const app = new Hono();
+                const app = new OpenAPIHono({ defaultHook: openApiValidationHook });
                 m.mountOperatorSettingsRoutes(app);
                 return app;
             }),

package/dist/routes.d.ts

@@ -3,7 +3,31 @@
  * settings service. Absolute paths (kept stable from the prior deployment-local
  * routes): `/v1/admin/settings/*`, `/v1/public/operator-profile`,
  * `/v1/public/settings/operator`.
+ *
+ * Migrated to `@hono/zod-openapi` for the OpenAPI admin backfill (voyant#2114 —
+ * operator-settings batch). The legs are authored as `createRoute(...).openapi(...)`
+ * on a child `OpenAPIHono<Env>` chain (carrying the shared `openApiValidationHook`),
+ * composed onto the supplied mount target via `.route("/", child)`. The module is
+ * mounted lazily (see `hono-module.ts`), which builds an `OpenAPIHono` so the
+ * build-time `mergeLazyOpenApiPaths` replay reads these `.openapi()` operations
+ * and surfaces them in the operator spec.
+ *
+ * PATCH legs reuse the package's existing `update*Schema` validation as the
+ * request body and read the validated patch via `c.req.valid("json")` (the child
+ * chain's `defaultHook` shapes invalid input). Response row schemas are authored
+ * here from the Drizzle `$inferSelect` shapes (§17: timestamps → ISO strings;
+ * opaque jsonb payment-policy blobs are pass-throughs). Single-row readers return
+ * `null` when unset, so every `{ data }` envelope is nullable. Business logic is
+ * unchanged.
  */
 import type { Hono } from "hono";
-export declare function mountOperatorSettingsRoutes(hono: Hono): void;
+/**
+ * Structural mount target — just the `.route()` surface this function uses.
+ * Decoupled from Hono's full generic signature so the lazy loader can pass its
+ * `OpenAPIHono` instance without coupling to its Env/Schema/BasePath params.
+ */
+export interface OpenApiMountTarget {
+    route(path: string, app: Hono<any, any, any>): unknown;
+}
+export declare function mountOperatorSettingsRoutes(hono: OpenApiMountTarget): void;
 //# sourceMappingURL=routes.d.ts.map

package/dist/routes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../src/routes.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EAAW,IAAI,EAAE,MAAM,MAAM,CAAA;AAwFzC,wBAAgB,2BAA2B,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI,CAe5D"}
+{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../src/routes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AAKH,OAAO,KAAK,EAAW,IAAI,EAAE,MAAM,MAAM,CAAA;AAqBzC;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IAEjC,KAAK,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,OAAO,CAAA;CACvD;AAmOD,wBAAgB,2BAA2B,CAAC,IAAI,EAAE,kBAAkB,GAAG,IAAI,CA4E1E"}

package/dist/routes.js

@@ -3,77 +3,227 @@
  * settings service. Absolute paths (kept stable from the prior deployment-local
  * routes): `/v1/admin/settings/*`, `/v1/public/operator-profile`,
  * `/v1/public/settings/operator`.
+ *
+ * Migrated to `@hono/zod-openapi` for the OpenAPI admin backfill (voyant#2114 —
+ * operator-settings batch). The legs are authored as `createRoute(...).openapi(...)`
+ * on a child `OpenAPIHono<Env>` chain (carrying the shared `openApiValidationHook`),
+ * composed onto the supplied mount target via `.route("/", child)`. The module is
+ * mounted lazily (see `hono-module.ts`), which builds an `OpenAPIHono` so the
+ * build-time `mergeLazyOpenApiPaths` replay reads these `.openapi()` operations
+ * and surfaces them in the operator spec.
+ *
+ * PATCH legs reuse the package's existing `update*Schema` validation as the
+ * request body and read the validated patch via `c.req.valid("json")` (the child
+ * chain's `defaultHook` shapes invalid input). Response row schemas are authored
+ * here from the Drizzle `$inferSelect` shapes (§17: timestamps → ISO strings;
+ * opaque jsonb payment-policy blobs are pass-throughs). Single-row readers return
+ * `null` when unset, so every `{ data }` envelope is nullable. Business logic is
+ * unchanged.
  */
-import { parseJsonBody } from "@voyant-travel/hono";
+import { createRoute, OpenAPIHono, z } from "@hono/zod-openapi";
+import { openApiValidationHook } from "@voyant-travel/hono";
 import { getOperatorPaymentDefaults, getOperatorPaymentInstructions, getOperatorProfile, getOperatorSettings, toPublicOperatorProfile, toPublicOperatorSettings, updateOperatorPaymentDefaultsSchema, updateOperatorPaymentInstructionsSchema, updateOperatorProfileSchema, updateOperatorSettingsSchema, upsertOperatorPaymentDefaults, upsertOperatorPaymentInstructions, upsertOperatorProfile, upsertOperatorSettings, } from "./service.js";
 const PUBLIC_OPERATOR_SETTINGS_CACHE_CONTROL = "public, s-maxage=300, stale-while-revalidate=600";
 function cachePublicOperatorSettings(c) {
     c.header("Cache-Control", PUBLIC_OPERATOR_SETTINGS_CACHE_CONTROL);
 }
-async function handleGetOperatorProfile(c) {
-    const db = c.get("db");
-    return c.json({ data: await getOperatorProfile(db) });
-}
-async function handlePatchOperatorProfile(c) {
-    const db = c.get("db");
-    const patch = await parseJsonBody(c, updateOperatorProfileSchema);
-    return c.json({ data: await upsertOperatorProfile(db, patch) });
-}
-async function handleGetOperatorPaymentInstructions(c) {
-    const db = c.get("db");
-    return c.json({ data: await getOperatorPaymentInstructions(db) });
-}
-async function handlePatchOperatorPaymentInstructions(c) {
-    const db = c.get("db");
-    const patch = await parseJsonBody(c, updateOperatorPaymentInstructionsSchema);
-    return c.json({ data: await upsertOperatorPaymentInstructions(db, patch) });
-}
-async function handleGetOperatorPaymentDefaults(c) {
-    const db = c.get("db");
-    return c.json({ data: await getOperatorPaymentDefaults(db) });
-}
-async function handlePatchOperatorPaymentDefaults(c) {
-    const db = c.get("db");
-    const patch = await parseJsonBody(c, updateOperatorPaymentDefaultsSchema);
-    return c.json({ data: await upsertOperatorPaymentDefaults(db, patch) });
-}
-async function handleGetPublicOperatorProfile(c) {
-    const db = c.get("db");
-    const [profile, defaults] = await Promise.all([
-        getOperatorProfile(db),
-        getOperatorPaymentDefaults(db),
-    ]);
-    cachePublicOperatorSettings(c);
-    if (!profile)
-        return c.json({ data: null });
-    return c.json({ data: toPublicOperatorProfile(profile, defaults) });
-}
-async function handleGetOperatorSettings(c) {
-    const db = c.get("db");
-    return c.json({ data: await getOperatorSettings(db) });
-}
-async function handlePatchOperatorSettings(c) {
-    const db = c.get("db");
-    const patch = await parseJsonBody(c, updateOperatorSettingsSchema);
-    return c.json({ data: await upsertOperatorSettings(db, patch) });
+// ──────────────────────────────────────────────────────────────────
+// Response schemas (Drizzle `$inferSelect` → wire shapes)
+// ──────────────────────────────────────────────────────────────────
+const isoTimestamp = z.string();
+/** Opaque jsonb payment-policy blob (mirrors finance `PaymentPolicy`). */
+const opaqueJson = z.unknown().nullable();
+/** `operator_profile` row. All identity/contact columns are nullable text. */
+const operatorProfileRowSchema = z.object({
+    id: z.string(),
+    name: z.string().nullable(),
+    legalName: z.string().nullable(),
+    vatId: z.string().nullable(),
+    registrationNumber: z.string().nullable(),
+    address: z.string().nullable(),
+    phone: z.string().nullable(),
+    email: z.string().nullable(),
+    website: z.string().nullable(),
+    license: z.string().nullable(),
+    licenseAuthority: z.string().nullable(),
+    signatoryName: z.string().nullable(),
+    signatoryRole: z.string().nullable(),
+    createdAt: isoTimestamp,
+    updatedAt: isoTimestamp,
+});
+/** `operator_payment_instructions` row. */
+const operatorPaymentInstructionsRowSchema = z.object({
+    id: z.string(),
+    bankTransferBeneficiary: z.string().nullable(),
+    iban: z.string().nullable(),
+    bank: z.string().nullable(),
+    notes: z.string().nullable(),
+    createdAt: isoTimestamp,
+    updatedAt: isoTimestamp,
+});
+/** `operator_payment_defaults` row. */
+const operatorPaymentDefaultsRowSchema = z.object({
+    id: z.string(),
+    customerPaymentPolicy: opaqueJson,
+    bookingCheckoutUrlTemplate: z.string().nullable(),
+    invoicePayUrlTemplate: z.string().nullable(),
+    createdAt: isoTimestamp,
+    updatedAt: isoTimestamp,
+});
+/**
+ * Combined settings — `getOperatorSettings` spreads the profile row and folds in
+ * the instruction + defaults columns (or returns `null` when nothing is set).
+ * Profile fields are optional because the spread is empty when no profile row
+ * exists yet.
+ */
+const combinedOperatorSettingsSchema = operatorProfileRowSchema.partial().extend({
+    bankTransferBeneficiary: z.string().nullable(),
+    iban: z.string().nullable(),
+    bank: z.string().nullable(),
+    notes: z.string().nullable(),
+    customerPaymentPolicy: opaqueJson,
+    bookingCheckoutUrlTemplate: z.string().nullable(),
+    invoicePayUrlTemplate: z.string().nullable(),
+});
+/** Public projection — `toPublicOperatorProfile` / `toPublicOperatorSettings`. */
+const publicOperatorProfileSchema = z.object({
+    name: z.string(),
+    legalName: z.string(),
+    address: z.string(),
+    phone: z.string(),
+    email: z.string(),
+    website: z.string(),
+    license: z.string(),
+    licenseAuthority: z.string(),
+    customerPaymentPolicy: opaqueJson,
+    bookingCheckoutUrlTemplate: z.string().nullable(),
+    invoicePayUrlTemplate: z.string().nullable(),
+});
+function dataEnvelope(schema) {
+    return z.object({ data: schema });
 }
-async function handleGetPublicOperatorSettings(c) {
-    const db = c.get("db");
-    const row = await getOperatorSettings(db);
-    cachePublicOperatorSettings(c);
-    if (!row)
-        return c.json({ data: null });
-    return c.json({ data: toPublicOperatorSettings(row) });
+const jsonContent = (schema, description) => ({
+    description,
+    content: { "application/json": { schema } },
+});
+const jsonBody = (schema) => ({
+    required: true,
+    content: { "application/json": { schema } },
+});
+/**
+ * Bridges a handler's `{ data: Row | null }` payload (Date-bearing Drizzle rows
+ * whose wire shape is the declared `z.string()` timestamp) to the `.openapi()`
+ * inferred typed-response union. Runtime payloads honor the declared schemas
+ * (asserted by the contract tests); this only relaxes the compile-time check.
+ */
+// biome-ignore lint/suspicious/noExplicitAny: intentional — bridges Date-bearing rows to the inferred typed-response union (voyant#2114)
+function asRouteResponse(response) {
+    return response;
 }
+// ──────────────────────────────────────────────────────────────────
+// Route definitions
+// ──────────────────────────────────────────────────────────────────
+const getOperatorProfileRoute = createRoute({
+    method: "get",
+    path: "/v1/admin/settings/operator-profile",
+    responses: {
+        200: jsonContent(dataEnvelope(operatorProfileRowSchema.nullable()), "The operator profile"),
+    },
+});
+const patchOperatorProfileRoute = createRoute({
+    method: "patch",
+    path: "/v1/admin/settings/operator-profile",
+    request: { body: jsonBody(updateOperatorProfileSchema) },
+    responses: {
+        200: jsonContent(dataEnvelope(operatorProfileRowSchema.nullable()), "The updated operator profile"),
+    },
+});
+const getOperatorPaymentInstructionsRoute = createRoute({
+    method: "get",
+    path: "/v1/admin/settings/operator-payment-instructions",
+    responses: {
+        200: jsonContent(dataEnvelope(operatorPaymentInstructionsRowSchema.nullable()), "The operator payment instructions"),
+    },
+});
+const patchOperatorPaymentInstructionsRoute = createRoute({
+    method: "patch",
+    path: "/v1/admin/settings/operator-payment-instructions",
+    request: { body: jsonBody(updateOperatorPaymentInstructionsSchema) },
+    responses: {
+        200: jsonContent(dataEnvelope(operatorPaymentInstructionsRowSchema.nullable()), "The updated operator payment instructions"),
+    },
+});
+const getOperatorPaymentDefaultsRoute = createRoute({
+    method: "get",
+    path: "/v1/admin/settings/operator-payment-defaults",
+    responses: {
+        200: jsonContent(dataEnvelope(operatorPaymentDefaultsRowSchema.nullable()), "The operator payment defaults"),
+    },
+});
+const patchOperatorPaymentDefaultsRoute = createRoute({
+    method: "patch",
+    path: "/v1/admin/settings/operator-payment-defaults",
+    request: { body: jsonBody(updateOperatorPaymentDefaultsSchema) },
+    responses: {
+        200: jsonContent(dataEnvelope(operatorPaymentDefaultsRowSchema.nullable()), "The updated operator payment defaults"),
+    },
+});
+const getPublicOperatorProfileRoute = createRoute({
+    method: "get",
+    path: "/v1/public/operator-profile",
+    responses: {
+        200: jsonContent(dataEnvelope(publicOperatorProfileSchema.nullable()), "The public operator profile (null when unset)"),
+    },
+});
+const getOperatorSettingsRoute = createRoute({
+    method: "get",
+    path: "/v1/admin/settings/operator",
+    responses: {
+        200: jsonContent(dataEnvelope(combinedOperatorSettingsSchema.nullable()), "The combined operator settings"),
+    },
+});
+const patchOperatorSettingsRoute = createRoute({
+    method: "patch",
+    path: "/v1/admin/settings/operator",
+    request: { body: jsonBody(updateOperatorSettingsSchema) },
+    responses: {
+        200: jsonContent(dataEnvelope(combinedOperatorSettingsSchema.nullable()), "The updated combined operator settings"),
+    },
+});
+const getPublicOperatorSettingsRoute = createRoute({
+    method: "get",
+    path: "/v1/public/settings/operator",
+    responses: {
+        200: jsonContent(dataEnvelope(publicOperatorProfileSchema.nullable()), "The public operator settings (null when unset)"),
+    },
+});
 export function mountOperatorSettingsRoutes(hono) {
-    hono.get("/v1/admin/settings/operator-profile", handleGetOperatorProfile);
-    hono.patch("/v1/admin/settings/operator-profile", handlePatchOperatorProfile);
-    hono.get("/v1/admin/settings/operator-payment-instructions", handleGetOperatorPaymentInstructions);
-    hono.patch("/v1/admin/settings/operator-payment-instructions", handlePatchOperatorPaymentInstructions);
-    hono.get("/v1/admin/settings/operator-payment-defaults", handleGetOperatorPaymentDefaults);
-    hono.patch("/v1/admin/settings/operator-payment-defaults", handlePatchOperatorPaymentDefaults);
-    hono.get("/v1/public/operator-profile", handleGetPublicOperatorProfile);
-    hono.get("/v1/admin/settings/operator", handleGetOperatorSettings);
-    hono.patch("/v1/admin/settings/operator", handlePatchOperatorSettings);
-    hono.get("/v1/public/settings/operator", handleGetPublicOperatorSettings);
+    const routes = new OpenAPIHono({ defaultHook: openApiValidationHook })
+        .openapi(getOperatorProfileRoute, (c) => asRouteResponse((async () => c.json({ data: await getOperatorProfile(c.get("db")) }, 200))()))
+        .openapi(patchOperatorProfileRoute, (c) => asRouteResponse((async () => c.json({ data: await upsertOperatorProfile(c.get("db"), c.req.valid("json")) }, 200))()))
+        .openapi(getOperatorPaymentInstructionsRoute, (c) => asRouteResponse((async () => c.json({ data: await getOperatorPaymentInstructions(c.get("db")) }, 200))()))
+        .openapi(patchOperatorPaymentInstructionsRoute, (c) => asRouteResponse((async () => c.json({ data: await upsertOperatorPaymentInstructions(c.get("db"), c.req.valid("json")) }, 200))()))
+        .openapi(getOperatorPaymentDefaultsRoute, (c) => asRouteResponse((async () => c.json({ data: await getOperatorPaymentDefaults(c.get("db")) }, 200))()))
+        .openapi(patchOperatorPaymentDefaultsRoute, (c) => asRouteResponse((async () => c.json({ data: await upsertOperatorPaymentDefaults(c.get("db"), c.req.valid("json")) }, 200))()))
+        .openapi(getPublicOperatorProfileRoute, (c) => asRouteResponse((async () => {
+        const db = c.get("db");
+        const [profile, defaults] = await Promise.all([
+            getOperatorProfile(db),
+            getOperatorPaymentDefaults(db),
+        ]);
+        cachePublicOperatorSettings(c);
+        if (!profile)
+            return c.json({ data: null }, 200);
+        return c.json({ data: toPublicOperatorProfile(profile, defaults) }, 200);
+    })()))
+        .openapi(getOperatorSettingsRoute, (c) => asRouteResponse((async () => c.json({ data: await getOperatorSettings(c.get("db")) }, 200))()))
+        .openapi(patchOperatorSettingsRoute, (c) => asRouteResponse((async () => c.json({ data: await upsertOperatorSettings(c.get("db"), c.req.valid("json")) }, 200))()))
+        .openapi(getPublicOperatorSettingsRoute, (c) => asRouteResponse((async () => {
+        const row = await getOperatorSettings(c.get("db"));
+        cachePublicOperatorSettings(c);
+        if (!row)
+            return c.json({ data: null }, 200);
+        return c.json({ data: toPublicOperatorSettings(row) }, 200);
+    })()));
+    hono.route("/", routes);
 }

package/dist/service.d.ts

@@ -35,8 +35,8 @@ export declare const updateOperatorPaymentDefaultsSchema: z.ZodObject<{
     customerPaymentPolicy: z.ZodOptional<z.ZodNullable<z.ZodObject<{
         deposit: z.ZodObject<{
             kind: z.ZodEnum<{
-                percent: "percent";
                 none: "none";
+                percent: "percent";
                 fixed_cents: "fixed_cents";
             }>;
             percent: z.ZodOptional<z.ZodNumber>;
@@ -69,8 +69,8 @@ export declare const updateOperatorSettingsSchema: z.ZodObject<{
     customerPaymentPolicy: z.ZodOptional<z.ZodNullable<z.ZodObject<{
         deposit: z.ZodObject<{
             kind: z.ZodEnum<{
-                percent: "percent";
                 none: "none";
+                percent: "percent";
                 fixed_cents: "fixed_cents";
             }>;
             percent: z.ZodOptional<z.ZodNumber>;
@@ -110,19 +110,19 @@ export declare function getOperatorProfile(db: PostgresJsDatabase): Promise<{
 export declare function upsertOperatorProfile(db: PostgresJsDatabase, patch: UpdateOperatorProfileInput): Promise<{
     id: string;
     name: string | null;
-    createdAt: Date;
-    updatedAt: Date;
-    email: string | null;
-    phone: string | null;
-    address: string | null;
-    vatId: string | null;
     legalName: string | null;
+    vatId: string | null;
     registrationNumber: string | null;
+    address: string | null;
+    phone: string | null;
+    email: string | null;
     website: string | null;
     license: string | null;
     licenseAuthority: string | null;
     signatoryName: string | null;
     signatoryRole: string | null;
+    createdAt: Date;
+    updatedAt: Date;
 } | null>;
 export declare function getOperatorPaymentInstructions(db: PostgresJsDatabase): Promise<{
     id: string;
@@ -135,12 +135,12 @@ export declare function getOperatorPaymentInstructions(db: PostgresJsDatabase):
 } | null>;
 export declare function upsertOperatorPaymentInstructions(db: PostgresJsDatabase, patch: UpdateOperatorPaymentInstructionsInput): Promise<{
     id: string;
-    createdAt: Date;
-    updatedAt: Date;
-    notes: string | null;
     iban: string | null;
     bank: string | null;
+    createdAt: Date;
+    updatedAt: Date;
     bankTransferBeneficiary: string | null;
+    notes: string | null;
 } | null>;
 export declare function getOperatorPaymentDefaults(db: PostgresJsDatabase): Promise<{
     id: string;
@@ -152,9 +152,9 @@ export declare function getOperatorPaymentDefaults(db: PostgresJsDatabase): Prom
 } | null>;
 export declare function upsertOperatorPaymentDefaults(db: PostgresJsDatabase, patch: UpdateOperatorPaymentDefaultsInput): Promise<{
     id: string;
+    customerPaymentPolicy: unknown;
     createdAt: Date;
     updatedAt: Date;
-    customerPaymentPolicy: unknown;
     bookingCheckoutUrlTemplate: string | null;
     invoicePayUrlTemplate: string | null;
 } | null>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@voyant-travel/operator-settings",
-  "version": "0.2.18",
+  "version": "0.2.19",
   "license": "Apache-2.0",
   "type": "module",
   "exports": {
@@ -31,12 +31,13 @@
     }
   },
   "dependencies": {
+    "@hono/zod-openapi": "^1.4.0",
     "drizzle-orm": "^0.45.2",
     "hono": "^4.12.10",
     "zod": "^4.3.6",
     "@voyant-travel/db": "^0.109.4",
-    "@voyant-travel/finance": "^0.137.0",
-    "@voyant-travel/hono": "^0.117.0"
+    "@voyant-travel/finance": "^0.137.1",
+    "@voyant-travel/hono": "^0.118.0"
   },
   "devDependencies": {
     "drizzle-kit": "^0.31.10",
@@ -64,10 +65,10 @@
     ]
   },
   "scripts": {
-    "typecheck": "tsc --noEmit",
+    "typecheck": "tsc -p tsconfig.typecheck.json",
     "lint": "biome check src/",
     "test": "vitest run",
-    "build": "tsc -p tsconfig.json",
+    "build": "tsc -p tsconfig.build.json",
     "clean": "rm -rf dist tsconfig.tsbuildinfo",
     "db:generate": "drizzle-kit generate --config=drizzle.migrations.config.ts --name=operator_settings_baseline && node ../../scripts/migrations/guard-create-type.mjs ./migrations && node ../../scripts/migrations/ensure-extensions.mjs ./migrations"
   },