@wopr-network/platform-core 0.1.0 → 1.0.1

package/dist/metering/load-test.bench.js

@@ -1,7 +1,7 @@
 import { unlinkSync } from "node:fs";
 import { afterEach, beforeEach, bench, describe } from "vitest";
-import { createTestDb } from "../test/db.js";
 import { Credit } from "../credits/credit.js";
+import { createTestDb } from "../test/db.js";
 import { MeterAggregator } from "./aggregator.js";
 import { DrizzleUsageSummaryRepository } from "./drizzle-usage-summary-repository.js";
 import { MeterEmitter } from "./emitter.js";

package/dist/metering/metering.test.js

@@ -1,9 +1,9 @@
 import { existsSync, readFileSync, unlinkSync, writeFileSync } from "node:fs";
 import { eq, sql } from "drizzle-orm";
 import { afterAll, afterEach, beforeAll, beforeEach, describe, expect, it } from "vitest";
+import { Credit } from "../credits/credit.js";
 import { meterEvents } from "../db/schema/meter-events.js";
 import { createTestDb, truncateAllTables } from "../test/db.js";
-import { Credit } from "../credits/credit.js";
 import { MeterAggregator } from "./aggregator.js";
 import { DrizzleUsageSummaryRepository } from "./drizzle-usage-summary-repository.js";
 import { MeterEmitter } from "./emitter.js";

package/dist/metering/reconciliation-cron.test.js

@@ -1,9 +1,9 @@
 import crypto from "node:crypto";
 import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vitest";
-import { usageSummaries } from "../db/schema/meter-events.js";
-import { createTestDb, truncateAllTables } from "../test/db.js";
 import { Credit } from "../credits/credit.js";
 import { CreditLedger } from "../credits/credit-ledger.js";
+import { usageSummaries } from "../db/schema/meter-events.js";
+import { createTestDb, truncateAllTables } from "../test/db.js";
 import { runReconciliation } from "./reconciliation-cron.js";
 import { DrizzleAdapterUsageRepository, DrizzleUsageSummaryRepository } from "./reconciliation-repository.js";
 /** Today's date as YYYY-MM-DD (UTC). We use "today" as targetDate since the

package/dist/metering/reconciliation-repository.test.js

@@ -1,8 +1,8 @@
 import crypto from "node:crypto";
 import { afterAll, beforeAll, beforeEach, describe, expect, it } from "vitest";
-import { createTestDb, seedUsageSummary, truncateAllTables } from "../test/db.js";
 import { Credit } from "../credits/credit.js";
 import { CreditLedger } from "../credits/credit-ledger.js";
+import { createTestDb, seedUsageSummary, truncateAllTables } from "../test/db.js";
 import { DrizzleAdapterUsageRepository, DrizzleUsageSummaryRepository } from "./reconciliation-repository.js";
 let pool;
 let db;

package/dist/middleware/index.d.ts

@@ -1,5 +1,5 @@
-export type { IRateLimitRepository, RateLimitEntry } from "./rate-limit-repository.js";
+export { type CsrfOptions, csrfProtection, validateCsrfOrigin } from "./csrf.js";
 export { DrizzleRateLimitRepository } from "./drizzle-rate-limit-repository.js";
-export { rateLimit, rateLimitByRoute, getClientIp, parseTrustedProxies, type RateLimitConfig, type RateLimitRule, } from "./rate-limit.js";
 export { getClientIpFromContext } from "./get-client-ip.js";
-export { csrfProtection, validateCsrfOrigin, type CsrfOptions } from "./csrf.js";
+export { getClientIp, parseTrustedProxies, type RateLimitConfig, type RateLimitRule, rateLimit, rateLimitByRoute, } from "./rate-limit.js";
+export type { IRateLimitRepository, RateLimitEntry } from "./rate-limit-repository.js";

package/dist/middleware/index.js

@@ -1,4 +1,4 @@
+export { csrfProtection, validateCsrfOrigin } from "./csrf.js";
 export { DrizzleRateLimitRepository } from "./drizzle-rate-limit-repository.js";
-export { rateLimit, rateLimitByRoute, getClientIp, parseTrustedProxies, } from "./rate-limit.js";
 export { getClientIpFromContext } from "./get-client-ip.js";
-export { csrfProtection, validateCsrfOrigin } from "./csrf.js";
+export { getClientIp, parseTrustedProxies, rateLimit, rateLimitByRoute, } from "./rate-limit.js";

package/dist/security/credential-vault/index.d.ts

@@ -1,6 +1,6 @@
-export type { SecretAuditEvent, ISecretAuditRepository } from "./audit-repository.js";
+export type { ISecretAuditRepository, SecretAuditEvent } from "./audit-repository.js";
 export { DrizzleSecretAuditRepository } from "./audit-repository.js";
-export type { CredentialRow, CredentialSummaryRow, InsertCredentialRow, ICredentialMigrationAccess, ICredentialRepository, IMigrationTenantKeyAccess, } from "./credential-repository.js";
+export type { CredentialRow, CredentialSummaryRow, ICredentialMigrationAccess, ICredentialRepository, IMigrationTenantKeyAccess, InsertCredentialRow, } from "./credential-repository.js";
 export { DrizzleCredentialRepository, DrizzleMigrationTenantKeyAccess } from "./credential-repository.js";
 export type { RotationResult } from "./key-rotation.js";
 export { reEncryptAllCredentials } from "./key-rotation.js";

package/dist/security/index.d.ts

@@ -1,11 +1,11 @@
-export type { EncryptedPayload, Provider, ValidateKeyRequest, ValidateKeyResponse, WriteSecretsRequest, ProviderEndpoint } from "./types.js";
-export { providerSchema, validateKeyRequestSchema, writeSecretsRequestSchema } from "./types.js";
-export { deriveInstanceKey, generateInstanceKey, encrypt, decrypt } from "./encryption.js";
+export { type AuthType, auditCredentialEncryption, type CreateCredentialInput, type CredentialRow, type CredentialSummary, type CredentialSummaryRow, CredentialVaultStore, type DecryptedCredential, DrizzleCredentialRepository, DrizzleMigrationTenantKeyAccess, DrizzleSecretAuditRepository, getVaultEncryptionKey, type ICredentialMigrationAccess, type ICredentialRepository, type ICredentialVaultStore, type IMigrationTenantKeyAccess, type InsertCredentialRow, type ISecretAuditRepository, type MigrationResult, migratePlaintextCredentials, type PlaintextFinding, type RotateCredentialInput, type RotationResult, reEncryptAllCredentials, type SecretAuditEvent, } from "./credential-vault/index.js";
+export { decrypt, deriveInstanceKey, encrypt, generateInstanceKey } from "./encryption.js";
 export { validateNodeHost } from "./host-validation.js";
-export { assertSafeRedirectUrl } from "./redirect-allowlist.js";
 export type { KeyLeakMatch } from "./key-audit.js";
 export { scanForKeyLeaks } from "./key-audit.js";
-export { writeEncryptedSeed, forwardSecretsToInstance } from "./key-injection.js";
+export { forwardSecretsToInstance, writeEncryptedSeed } from "./key-injection.js";
 export { PROVIDER_ENDPOINTS, validateProviderKey } from "./key-validation.js";
-export { type SecretAuditEvent, type ISecretAuditRepository, DrizzleSecretAuditRepository, type CredentialRow, type CredentialSummaryRow, type InsertCredentialRow, type ICredentialMigrationAccess, type ICredentialRepository, type IMigrationTenantKeyAccess, DrizzleCredentialRepository, DrizzleMigrationTenantKeyAccess, type RotationResult, reEncryptAllCredentials, type MigrationResult, migratePlaintextCredentials, type PlaintextFinding, auditCredentialEncryption, type AuthType, type CreateCredentialInput, type CredentialSummary, type DecryptedCredential, type ICredentialVaultStore, type RotateCredentialInput, CredentialVaultStore, getVaultEncryptionKey, } from "./credential-vault/index.js";
-export { type IKeyResolutionRepository, DrizzleKeyResolutionRepository, type ResolvedKey, resolveApiKey, buildPooledKeysMap, type TenantApiKey, type ITenantKeyRepository, TenantKeyRepository, type CapabilityName, type TenantCapabilitySetting, type ICapabilitySettingsRepository, ALL_CAPABILITIES, CapabilitySettingsStore, type IOrgMembershipRepository, type OrgResolvedKey, DrizzleOrgMembershipRepository, resolveApiKeyWithOrgFallback, } from "./tenant-keys/index.js";
+export { assertSafeRedirectUrl } from "./redirect-allowlist.js";
+export { ALL_CAPABILITIES, buildPooledKeysMap, type CapabilityName, CapabilitySettingsStore, DrizzleKeyResolutionRepository, DrizzleOrgMembershipRepository, type ICapabilitySettingsRepository, type IKeyResolutionRepository, type IOrgMembershipRepository, type ITenantKeyRepository, type OrgResolvedKey, type ResolvedKey, resolveApiKey, resolveApiKeyWithOrgFallback, type TenantApiKey, type TenantCapabilitySetting, TenantKeyRepository, } from "./tenant-keys/index.js";
+export type { EncryptedPayload, Provider, ProviderEndpoint, ValidateKeyRequest, ValidateKeyResponse, WriteSecretsRequest, } from "./types.js";
+export { providerSchema, validateKeyRequestSchema, writeSecretsRequestSchema } from "./types.js";

package/dist/security/index.js

@@ -1,11 +1,11 @@
-export { providerSchema, validateKeyRequestSchema, writeSecretsRequestSchema } from "./types.js";
-export { deriveInstanceKey, generateInstanceKey, encrypt, decrypt } from "./encryption.js";
+// Credential vault
+export { auditCredentialEncryption, CredentialVaultStore, DrizzleCredentialRepository, DrizzleMigrationTenantKeyAccess, DrizzleSecretAuditRepository, getVaultEncryptionKey, migratePlaintextCredentials, reEncryptAllCredentials, } from "./credential-vault/index.js";
+export { decrypt, deriveInstanceKey, encrypt, generateInstanceKey } from "./encryption.js";
 export { validateNodeHost } from "./host-validation.js";
-export { assertSafeRedirectUrl } from "./redirect-allowlist.js";
 export { scanForKeyLeaks } from "./key-audit.js";
-export { writeEncryptedSeed, forwardSecretsToInstance } from "./key-injection.js";
+export { forwardSecretsToInstance, writeEncryptedSeed } from "./key-injection.js";
 export { PROVIDER_ENDPOINTS, validateProviderKey } from "./key-validation.js";
-// Credential vault
-export { DrizzleSecretAuditRepository, DrizzleCredentialRepository, DrizzleMigrationTenantKeyAccess, reEncryptAllCredentials, migratePlaintextCredentials, auditCredentialEncryption, CredentialVaultStore, getVaultEncryptionKey, } from "./credential-vault/index.js";
+export { assertSafeRedirectUrl } from "./redirect-allowlist.js";
 // Tenant keys
-export { DrizzleKeyResolutionRepository, resolveApiKey, buildPooledKeysMap, TenantKeyRepository, ALL_CAPABILITIES, CapabilitySettingsStore, DrizzleOrgMembershipRepository, resolveApiKeyWithOrgFallback, } from "./tenant-keys/index.js";
+export { ALL_CAPABILITIES, buildPooledKeysMap, CapabilitySettingsStore, DrizzleKeyResolutionRepository, DrizzleOrgMembershipRepository, resolveApiKey, resolveApiKeyWithOrgFallback, TenantKeyRepository, } from "./tenant-keys/index.js";
+export { providerSchema, validateKeyRequestSchema, writeSecretsRequestSchema } from "./types.js";

package/dist/security/redirect-allowlist.js

@@ -1,10 +1,12 @@
-const ALLOWED_REDIRECT_ORIGINS = [
-    "https://app.wopr.bot",
-    "https://wopr.network",
-    ...(process.env.NODE_ENV !== "production" ? ["http://localhost:3000", "http://localhost:3001"] : []),
-    ...(process.env.PLATFORM_UI_URL ? [process.env.PLATFORM_UI_URL] : []),
-    ...(process.env.NODE_ENV !== "production" ? ["https://example.com"] : []),
-];
+const STATIC_ORIGINS = ["https://app.wopr.bot", "https://wopr.network"];
+function getAllowedOrigins() {
+    return [
+        ...STATIC_ORIGINS,
+        ...(process.env.NODE_ENV !== "production" ? ["http://localhost:3000", "http://localhost:3001"] : []),
+        ...(process.env.PLATFORM_UI_URL ? [process.env.PLATFORM_UI_URL] : []),
+        ...(process.env.NODE_ENV !== "production" ? ["https://example.com"] : []),
+    ];
+}
 /**
  * Throws if `url` is not rooted at one of the allowed origins.
  * Comparison is scheme + host (origin), not prefix string match,
@@ -22,7 +24,7 @@ export function assertSafeRedirectUrl(url) {
         throw new Error("Invalid redirect URL");
     }
     const origin = parsed.origin;
-    const allowed = ALLOWED_REDIRECT_ORIGINS.some((o) => {
+    const allowed = getAllowedOrigins().some((o) => {
         try {
             return origin === new URL(o).origin;
         }

package/dist/security/tenant-keys/index.d.ts

@@ -1,10 +1,10 @@
+export type { CapabilityName, ICapabilitySettingsRepository, TenantCapabilitySetting, } from "./capability-settings-store.js";
+export { ALL_CAPABILITIES, CapabilitySettingsStore } from "./capability-settings-store.js";
+export type { ResolvedKey } from "./key-resolution.js";
+export { buildPooledKeysMap, resolveApiKey } from "./key-resolution.js";
 export type { IKeyResolutionRepository } from "./key-resolution-repository.js";
 export { DrizzleKeyResolutionRepository } from "./key-resolution-repository.js";
-export type { ResolvedKey } from "./key-resolution.js";
-export { resolveApiKey, buildPooledKeysMap } from "./key-resolution.js";
-export type { TenantApiKey, ITenantKeyRepository } from "./tenant-key-repository.js";
-export { TenantKeyRepository } from "./tenant-key-repository.js";
-export type { CapabilityName, TenantCapabilitySetting, ICapabilitySettingsRepository } from "./capability-settings-store.js";
-export { ALL_CAPABILITIES, CapabilitySettingsStore } from "./capability-settings-store.js";
 export type { IOrgMembershipRepository, OrgResolvedKey } from "./org-key-resolution.js";
 export { DrizzleOrgMembershipRepository, resolveApiKeyWithOrgFallback } from "./org-key-resolution.js";
+export type { ITenantKeyRepository, TenantApiKey } from "./tenant-key-repository.js";
+export { TenantKeyRepository } from "./tenant-key-repository.js";

package/dist/security/tenant-keys/index.js

@@ -1,5 +1,5 @@
-export { DrizzleKeyResolutionRepository } from "./key-resolution-repository.js";
-export { resolveApiKey, buildPooledKeysMap } from "./key-resolution.js";
-export { TenantKeyRepository } from "./tenant-key-repository.js";
 export { ALL_CAPABILITIES, CapabilitySettingsStore } from "./capability-settings-store.js";
+export { buildPooledKeysMap, resolveApiKey } from "./key-resolution.js";
+export { DrizzleKeyResolutionRepository } from "./key-resolution-repository.js";
 export { DrizzleOrgMembershipRepository, resolveApiKeyWithOrgFallback } from "./org-key-resolution.js";
+export { TenantKeyRepository } from "./tenant-key-repository.js";

package/dist/tenancy/index.d.ts

@@ -1,6 +1,6 @@
-export type { Tenant, IOrgRepository } from "./drizzle-org-repository.js";
+export type { IOrgRepository, Tenant } from "./drizzle-org-repository.js";
 export { DrizzleOrgRepository } from "./drizzle-org-repository.js";
-export type { OrgMemberRow, OrgInviteRow, IOrgMemberRepository } from "./org-member-repository.js";
+export type { IOrgMemberRepository, OrgInviteRow, OrgMemberRow } from "./org-member-repository.js";
 export { DrizzleOrgMemberRepository } from "./org-member-repository.js";
-export type { OrgWithMembers, OrgMemberWithUser, OrgInvitePublic, OrgServiceOptions } from "./org-service.js";
+export type { OrgInvitePublic, OrgMemberWithUser, OrgServiceOptions, OrgWithMembers } from "./org-service.js";
 export { OrgService } from "./org-service.js";

package/dist/tenancy/org-service.d.ts

@@ -4,8 +4,8 @@
  * IOrgMemberRepository (members/invites data).
  */
 import type { PlatformDb } from "../db/index.js";
-import type { IOrgMemberRepository, OrgInviteRow } from "./org-member-repository.js";
 import type { IOrgRepository, Tenant } from "./drizzle-org-repository.js";
+import type { IOrgMemberRepository, OrgInviteRow } from "./org-member-repository.js";
 export interface OrgWithMembers extends Tenant {
     members: OrgMemberWithUser[];
     invites: OrgInvitePublic[];

package/dist/tenancy/org-service.test.js

@@ -1,8 +1,8 @@
 import { TRPCError } from "@trpc/server";
 import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vitest";
-import { DrizzleOrgMemberRepository } from "./org-member-repository.js";
 import { createTestDb, truncateAllTables } from "../test/db.js";
 import { DrizzleOrgRepository } from "./drizzle-org-repository.js";
+import { DrizzleOrgMemberRepository } from "./org-member-repository.js";
 import { OrgService } from "./org-service.js";
 async function setup(db) {
     const orgRepo = new DrizzleOrgRepository(db);

package/dist/trpc/index.d.ts

@@ -1 +1 @@
-export { router, createCallerFactory, publicProcedure, protectedProcedure, adminProcedure, tenantProcedure, orgMemberProcedure, setTrpcOrgMemberRepo, type TRPCContext, } from "./init.js";
+export { adminProcedure, createCallerFactory, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, type TRPCContext, tenantProcedure, } from "./init.js";

package/dist/trpc/index.js

@@ -1 +1 @@
-export { router, createCallerFactory, publicProcedure, protectedProcedure, adminProcedure, tenantProcedure, orgMemberProcedure, setTrpcOrgMemberRepo, } from "./init.js";
+export { adminProcedure, createCallerFactory, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, tenantProcedure, } from "./init.js";

package/dist/trpc/init.test.js

@@ -1,5 +1,5 @@
-import { describe, expect, it, vi, beforeEach } from "vitest";
-import { router, createCallerFactory, publicProcedure, protectedProcedure, adminProcedure, tenantProcedure, orgMemberProcedure, setTrpcOrgMemberRepo, } from "./init.js";
+import { beforeEach, describe, expect, it, vi } from "vitest";
+import { adminProcedure, createCallerFactory, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, tenantProcedure, } from "./init.js";
 // ---------------------------------------------------------------------------
 // Helpers
 // ---------------------------------------------------------------------------
@@ -28,9 +28,7 @@ const appRouter = router({
     protectedHello: protectedProcedure.query(() => "protected-ok"),
     adminHello: adminProcedure.query(() => "admin-ok"),
     tenantHello: tenantProcedure.query(() => "tenant-ok"),
-    orgAction: orgMemberProcedure
-        .input((v) => v)
-        .mutation(() => "org-ok"),
+    orgAction: orgMemberProcedure.input((v) => v).mutation(() => "org-ok"),
 });
 const createCaller = createCallerFactory(appRouter);
 // ---------------------------------------------------------------------------

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wopr-network/platform-core",
-  "version": "0.1.0",
+  "version": "1.0.1",
   "type": "module",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -45,6 +45,8 @@
     "@trpc/server": "^11.12.0",
     "@types/node": "^25.4.0",
     "@types/pg": "^8.18.0",
+    "@vitest/coverage-v8": "^4.0.18",
+    "@wopr-network/semantic-release-config": "^1.0.0",
     "better-auth": "^1.5.4",
     "drizzle-kit": "^0.31.9",
     "drizzle-orm": "^0.45.1",
@@ -60,5 +62,12 @@
     "winston": "^3.19.0",
     "zod": "^4.3.6"
   },
+  "release": {
+    "extends": "@wopr-network/semantic-release-config"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/wopr-network/platform-core.git"
+  },
   "packageManager": "pnpm@10.31.0"
 }

package/src/admin/index.ts

@@ -1,6 +1,6 @@
 export type { IAdminAuditLogRepository } from "./admin-audit-log-repository.js";
 export { DrizzleAdminAuditLogRepository } from "./admin-audit-log-repository.js";
-export type { AuditCategory, AuditEntry, AdminAuditLogRow, AuditFilters } from "./audit-log.js";
+export type { AdminAuditLogRow, AuditCategory, AuditEntry, AuditFilters } from "./audit-log.js";
 export { AdminAuditLog } from "./audit-log.js";
 export type { Role, UserRoleRow } from "./role-store.js";
 export { isValidRole, RoleStore } from "./role-store.js";

package/src/auth/better-auth.ts

@@ -11,10 +11,10 @@
 import { type BetterAuthOptions, betterAuth } from "better-auth";
 import { twoFactor } from "better-auth/plugins";
 import type { Pool } from "pg";
-import type { PlatformDb } from "../db/index.js";
 import { RoleStore } from "../admin/role-store.js";
 import { logger } from "../config/logger.js";
 import { initTwoFactorSchema } from "../db/auth-user-repository.js";
+import type { PlatformDb } from "../db/index.js";
 import { getEmailClient } from "../email/client.js";
 import { passwordResetEmailTemplate, verifyEmailTemplate } from "../email/templates.js";
 import { generateVerificationToken, initVerificationSchema, PgEmailVerifier } from "../email/verification.js";

package/src/billing/drizzle-webhook-seen-repository.ts

@@ -1,7 +1,7 @@
 import { and, eq, lt } from "drizzle-orm";
+import type { WebhookSeenEvent } from "../credits/repository-types.js";
 import type { PlatformDb } from "../db/index.js";
 import { webhookSeenEvents } from "../db/schema/index.js";
-import type { WebhookSeenEvent } from "../credits/repository-types.js";
 import type { IWebhookSeenRepository } from "./webhook-seen-repository.js";
 
 export class DrizzleWebhookSeenRepository implements IWebhookSeenRepository {

package/src/billing/index.ts

@@ -1,22 +1,20 @@
+export { DrizzleWebhookSeenRepository } from "./drizzle-webhook-seen-repository.js";
 export type {
-  SavedPaymentMethod,
-  CheckoutOpts,
-  CheckoutSession,
   ChargeOpts,
   ChargeResult,
-  SetupResult,
+  CheckoutOpts,
+  CheckoutSession,
+  Invoice,
+  IPaymentProcessor,
   PortalOpts,
+  SavedPaymentMethod,
+  SetupResult,
   WebhookResult,
-  IPaymentProcessor,
-  Invoice,
 } from "./payment-processor.js";
 export { PaymentMethodOwnershipError } from "./payment-processor.js";
-export type { IWebhookSeenRepository } from "./webhook-seen-repository.js";
-export { noOpReplayGuard } from "./webhook-seen-repository.js";
-export { DrizzleWebhookSeenRepository } from "./drizzle-webhook-seen-repository.js";
-
-// Stripe
-export * from "./stripe/index.js";
-
 // PayRam
 export * from "./payram/index.js";
+// Stripe
+export * from "./stripe/index.js";
+export type { IWebhookSeenRepository } from "./webhook-seen-repository.js";
+export { noOpReplayGuard } from "./webhook-seen-repository.js";

package/src/billing/payram/webhook.test.ts

@@ -7,9 +7,9 @@
 
 import type { PGlite } from "@electric-sql/pglite";
 import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vitest";
+import { CreditLedger } from "../../credits/credit-ledger.js";
 import type { PlatformDb } from "../../db/index.js";
 import { createTestDb, truncateAllTables } from "../../test/db.js";
-import { CreditLedger } from "../../credits/credit-ledger.js";
 import { DrizzleWebhookSeenRepository } from "../drizzle-webhook-seen-repository.js";
 import { noOpReplayGuard } from "../webhook-seen-repository.js";
 import { PayRamChargeRepository } from "./charge-store.js";

package/src/billing/stripe/index.ts

@@ -1,14 +1,26 @@
 export { createCreditCheckoutSession, createVpsCheckoutSession } from "./checkout.js";
 export { createStripeClient, loadStripeConfig } from "./client.js";
-export type { CreditPricePoint, CreditPriceMap } from "./credit-prices.js";
-export { CREDIT_PRICE_POINTS, loadCreditPriceMap, getCreditAmountForPurchase, lookupCreditPrice, getConfiguredPriceIds } from "./credit-prices.js";
-export { detachPaymentMethod, detachAllPaymentMethods } from "./payment-methods.js";
+export type { CreditPriceMap, CreditPricePoint } from "./credit-prices.js";
+export {
+  CREDIT_PRICE_POINTS,
+  getConfiguredPriceIds,
+  getCreditAmountForPurchase,
+  loadCreditPriceMap,
+  lookupCreditPrice,
+} from "./credit-prices.js";
 export type { DetachPaymentMethodOpts } from "./payment-methods.js";
+export { detachAllPaymentMethods, detachPaymentMethod } from "./payment-methods.js";
 export { createPortalSession } from "./portal.js";
 export type { SetupIntentOpts } from "./setup-intent.js";
 export { createSetupIntent } from "./setup-intent.js";
-export type { StripeWebhookHandlerResult, StripePaymentProcessorDeps } from "./stripe-payment-processor.js";
+export type { StripePaymentProcessorDeps, StripeWebhookHandlerResult } from "./stripe-payment-processor.js";
 export { StripePaymentProcessor } from "./stripe-payment-processor.js";
 export type { ITenantCustomerRepository } from "./tenant-store.js";
 export { DrizzleTenantCustomerRepository, TenantCustomerRepository } from "./tenant-store.js";
-export type { TenantCustomerRow, CreditCheckoutOpts, PortalSessionOpts, VpsCheckoutOpts, StripeBillingConfig } from "./types.js";
+export type {
+  CreditCheckoutOpts,
+  PortalSessionOpts,
+  StripeBillingConfig,
+  TenantCustomerRow,
+  VpsCheckoutOpts,
+} from "./types.js";

package/src/billing/stripe/stripe-payment-processor.test.ts

@@ -1,7 +1,7 @@
 import type Stripe from "stripe";
 import { beforeEach, describe, expect, it, vi } from "vitest";
-import { Credit } from "../../credits/credit.js";
 import type { IAutoTopupEventLogRepository } from "../../credits/auto-topup-event-log-repository.js";
+import { Credit } from "../../credits/credit.js";
 import type { CreditTransaction, ICreditLedger } from "../../credits/credit-ledger.js";
 import { PaymentMethodOwnershipError } from "../payment-processor.js";
 import type { CreditPriceMap } from "./credit-prices.js";
@@ -309,7 +309,6 @@ describe("StripePaymentProcessor", () => {
         tenantRepo: mocks.tenantRepo,
         webhookSecret: "whsec_test",
         creditLedger: mocks.creditLedger,
-  
       });
 
       await expect(
@@ -447,7 +446,7 @@ describe("StripePaymentProcessor", () => {
         tenantRepo: mocks.tenantRepo,
         webhookSecret: "whsec_test",
         creditLedger: mocks.creditLedger,
-  
+
         priceMap,
       });
 

package/src/billing/stripe/stripe-payment-processor.ts

@@ -1,7 +1,7 @@
 import type Stripe from "stripe";
-import { Credit } from "../../credits/credit.js";
 import { chargeAutoTopup } from "../../credits/auto-topup-charge.js";
 import type { IAutoTopupEventLogRepository } from "../../credits/auto-topup-event-log-repository.js";
+import { Credit } from "../../credits/credit.js";
 import type { ICreditLedger } from "../../credits/credit-ledger.js";
 import {
   type ChargeOpts,

package/src/credits/auto-topup-charge.test.ts

@@ -5,11 +5,11 @@ import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vites
 import type { PlatformDb } from "../db/index.js";
 import { creditAutoTopup } from "../db/schema/credit-auto-topup.js";
 import { createTestDb, truncateAllTables } from "../test/db.js";
-import { Credit } from "./credit.js";
-import type { ITenantCustomerRepository } from "./tenant-customer-repository.js";
 import { type AutoTopupChargeDeps, chargeAutoTopup, MAX_CONSECUTIVE_FAILURES } from "./auto-topup-charge.js";
 import { DrizzleAutoTopupEventLogRepository } from "./auto-topup-event-log-repository.js";
+import { Credit } from "./credit.js";
 import { CreditLedger } from "./credit-ledger.js";
+import type { ITenantCustomerRepository } from "./tenant-customer-repository.js";
 
 function mockStripe(overrides?: {
   paymentIntentId?: string;

package/src/credits/auto-topup-charge.ts

@@ -1,9 +1,9 @@
 import Stripe from "stripe";
 import { logger } from "../config/logger.js";
-import type { Credit } from "./credit.js";
-import type { ITenantCustomerRepository } from "./tenant-customer-repository.js";
 import type { IAutoTopupEventLogRepository } from "./auto-topup-event-log-repository.js";
+import type { Credit } from "./credit.js";
 import type { ICreditLedger } from "./credit-ledger.js";
+import type { ITenantCustomerRepository } from "./tenant-customer-repository.js";
 
 /** After this many consecutive Stripe failures, the auto-topup mode is disabled. */
 export const MAX_CONSECUTIVE_FAILURES = 3;

package/src/credits/auto-topup-schedule.test.ts

@@ -2,9 +2,9 @@ import type { PGlite } from "@electric-sql/pglite";
 import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vitest";
 import type { PlatformDb } from "../db/index.js";
 import { beginTestTransaction, createTestDb, endTestTransaction, rollbackTestTransaction } from "../test/db.js";
-import { Credit } from "./credit.js";
 import { runScheduledTopups, type ScheduleTopupDeps } from "./auto-topup-schedule.js";
 import { DrizzleAutoTopupSettingsRepository } from "./auto-topup-settings-repository.js";
+import { Credit } from "./credit.js";
 
 describe("runScheduledTopups", () => {
   let pool: PGlite;

package/src/credits/auto-topup-schedule.ts

@@ -1,8 +1,8 @@
 import { logger } from "../config/logger.js";
-import type { Credit } from "./credit.js";
 import type { AutoTopupChargeResult } from "./auto-topup-charge.js";
 import { MAX_CONSECUTIVE_FAILURES } from "./auto-topup-charge.js";
 import type { IAutoTopupSettingsRepository } from "./auto-topup-settings-repository.js";
+import type { Credit } from "./credit.js";
 
 export interface ScheduleTopupDeps {
   settingsRepo: IAutoTopupSettingsRepository;

package/src/credits/auto-topup-settings-repository.test.ts

@@ -2,8 +2,8 @@ import type { PGlite } from "@electric-sql/pglite";
 import { afterAll, beforeAll, beforeEach, describe, expect, it } from "vitest";
 import type { PlatformDb } from "../db/index.js";
 import { beginTestTransaction, createTestDb, endTestTransaction, rollbackTestTransaction } from "../test/db.js";
-import { Credit } from "./credit.js";
 import { DrizzleAutoTopupSettingsRepository } from "./auto-topup-settings-repository.js";
+import { Credit } from "./credit.js";
 
 describe("DrizzleAutoTopupSettingsRepository", () => {
   let pool: PGlite;

package/src/credits/auto-topup-usage.test.ts

@@ -2,9 +2,9 @@ import type { PGlite } from "@electric-sql/pglite";
 import { afterAll, beforeAll, beforeEach, describe, expect, it, vi } from "vitest";
 import type { PlatformDb } from "../db/index.js";
 import { createTestDb, truncateAllTables } from "../test/db.js";
-import { Credit } from "./credit.js";
 import { DrizzleAutoTopupSettingsRepository } from "./auto-topup-settings-repository.js";
 import { maybeTriggerUsageTopup, type UsageTopupDeps } from "./auto-topup-usage.js";
+import { Credit } from "./credit.js";
 import { CreditLedger } from "./credit-ledger.js";
 
 describe("maybeTriggerUsageTopup", () => {

package/src/credits/auto-topup-usage.ts

@@ -1,8 +1,8 @@
 import { logger } from "../config/logger.js";
-import type { Credit } from "./credit.js";
 import type { AutoTopupChargeResult } from "./auto-topup-charge.js";
 import { MAX_CONSECUTIVE_FAILURES } from "./auto-topup-charge.js";
 import type { IAutoTopupSettingsRepository } from "./auto-topup-settings-repository.js";
+import type { Credit } from "./credit.js";
 import type { ICreditLedger } from "./credit-ledger.js";
 
 export interface UsageTopupDeps {

package/src/credits/index.ts

@@ -9,6 +9,7 @@ export {
   computeNextScheduleAt,
   DrizzleAutoTopupSettingsRepository,
 } from "./auto-topup-settings-repository.js";
+export { Credit } from "./credit.js";
 export type { CreditExpiryCronConfig, CreditExpiryCronResult } from "./credit-expiry-cron.js";
 export { runCreditExpiryCron } from "./credit-expiry-cron.js";
 export type {
@@ -21,5 +22,4 @@ export type {
 } from "./credit-ledger.js";
 export { CreditLedger, DrizzleCreditLedger, InsufficientBalanceError } from "./credit-ledger.js";
 export { grantSignupCredits, SIGNUP_GRANT } from "./signup-grant.js";
-export { Credit } from "./credit.js";
 export type { ITenantCustomerRepository, TenantCustomerRow } from "./tenant-customer-repository.js";

package/src/db/schema/index.ts

@@ -5,9 +5,9 @@ export * from "./admin-users.js";
 export * from "./affiliate.js";
 export * from "./affiliate-fraud.js";
 export * from "./coupon-codes.js";
-export * from "./credits.js";
 export * from "./credit-auto-topup.js";
 export * from "./credit-auto-topup-settings.js";
+export * from "./credits.js";
 export * from "./dividend-distributions.js";
 export * from "./email-notifications.js";
 export * from "./meter-events.js";

package/src/email/index.ts

@@ -20,12 +20,12 @@ export { DrizzleNotificationPreferencesStore } from "./notification-preferences-
 export type { INotificationQueueRepository } from "./notification-queue-store.js";
 export { DrizzleNotificationQueueStore } from "./notification-queue-store.js";
 export type {
-  NotificationPrefs,
-  NotificationStatus,
-  QueuedNotification,
   NotificationEmailType,
   NotificationInput,
+  NotificationPrefs,
   NotificationRow,
+  NotificationStatus,
+  QueuedNotification,
 } from "./notification-repository-types.js";
 export { NotificationService } from "./notification-service.js";
 export type { TemplateName as NotificationTemplateName } from "./notification-templates.js";

package/src/index.ts

@@ -1,36 +1,32 @@
 // Database
-export type { PlatformDb, PlatformSchema } from "./db/index.js";
-export { createDb, schema } from "./db/index.js";
 
 // Admin
 export * from "./admin/index.js";
-
 // Auth
 export * from "./auth/index.js";
-
 // Billing (selective — ITenantCustomerRepository/TenantCustomerRow also in credits)
 export {
-  PaymentMethodOwnershipError,
-  noOpReplayGuard,
-  DrizzleWebhookSeenRepository,
-  type SavedPaymentMethod,
-  type CheckoutOpts,
-  type CheckoutSession,
   type ChargeOpts,
   type ChargeResult,
-  type SetupResult,
-  type PortalOpts,
-  type WebhookResult,
-  type IPaymentProcessor,
+  type CheckoutOpts,
+  type CheckoutSession,
+  DrizzleWebhookSeenRepository,
   type Invoice,
+  type IPaymentProcessor,
   type IWebhookSeenRepository,
+  noOpReplayGuard,
+  PaymentMethodOwnershipError,
+  type PortalOpts,
+  type SavedPaymentMethod,
+  type SetupResult,
+  type WebhookResult,
 } from "./billing/index.js";
-
 // Config
-export { config, billingConfigSchema, type PlatformConfig } from "./config/index.js";
-
+export { billingConfigSchema, config, type PlatformConfig } from "./config/index.js";
 // Credits
 export * from "./credits/index.js";
+export type { PlatformDb, PlatformSchema } from "./db/index.js";
+export { createDb, schema } from "./db/index.js";
 
 // Email
 export * from "./email/index.js";

package/src/metering/aggregator.test.ts

@@ -1,10 +1,10 @@
 import crypto from "node:crypto";
 import type { PGlite } from "@electric-sql/pglite";
 import { afterEach, beforeEach, describe, expect, it } from "vitest";
+import { Credit } from "../credits/credit.js";
 import type { PlatformDb } from "../db/index.js";
 import { meterEvents, usageSummaries } from "../db/schema/meter-events.js";
 import { createTestDb } from "../test/db.js";
-import { Credit } from "../credits/credit.js";
 import { DrizzleMeterAggregator } from "./aggregator.js";
 import { DrizzleUsageSummaryRepository } from "./drizzle-usage-summary-repository.js";