cdp-edge 1.18.2 → 1.19.0

package/README.md

@@ -2,7 +2,7 @@
 
 **Padrão Quantum Tracking: 100% Cloudflare Edge.** Sem GTM. Sem Stape. Sem cookies de terceiros.
 
-> **v2.0.0** — Enterprise-Level Intelligence Engine · Cloudflare Workers · Meta CAPI v22.0 · GA4 MP · TikTok Events API v1.3
+> **v2.0.3** — Enterprise-Level Intelligence Engine · Cloudflare Workers · Meta CAPI v22.0 · GA4 MP · TikTok Events API v1.3
 
 ---
 
@@ -25,6 +25,23 @@ Meu ecossistema opera como um Cérebro de Conversão Privado na borda. Quando um
 
 ---
 
+## 📋 CHANGELOG v2.0.3 (10 de Abril de 2026)
+
+### 🔧 Audit Completo — 45 Agentes
+
+- **Endpoints corrigidos**: `/api/tracking` → `/track`, `/api/wh/` → `/webhook/` em todos os agentes
+- **Secrets WhatsApp**: `WA_PHONE_ID`/`WA_ACCESS_TOKEN`/`WHATSAPP_TOKEN` → `WHATSAPP_PHONE_NUMBER_ID`/`WHATSAPP_ACCESS_TOKEN`
+- **`env.DB.prepare`**: corrigido em 8 agentes (attribution, crm, dashboard, debug, performance, security, master-feedback-loop)
+- **`env.GEO_CACHE`**: substituiu `KV.` bare em dashboard-agent, performance-agent, performance-optimization-agent
+- **YouTube events**: `video_milestone`/`video_progress_25/50/75` → `video_25`/`video_50`/`video_75` (alinhado ao VALID_EVENT_NAMES do worker)
+- **LinkedIn CAPI**: endpoint `/rest/conversionEvents` + header `LinkedIn-Version: 202401` em `contracts/api-versions.json`
+- **Workers AI model**: `llama-3-8b-instruct` → `@cf/meta/llama-3.1-8b-instruct`
+- **worker.js**: Content-Length guard (413 se > 64KB), payload validation (allowlist 19 events, 512 chars, value range), PII removido dos logs
+- **Testes**: bugs críticos em `deduplication.test.js` corrigidos (template literals escapados, prefixo errado)
+- **npm**: lodash 4.17.23 → 4.18.1, node-fetch removido
+
+---
+
 ## 📋 CHANGELOG v2.0.0 (9 de Abril de 2026)
 
 ### 🆕 Sprint Enterprise — Fases 1 a 4

package/contracts/agent-versions.json

@@ -0,0 +1,364 @@
+{
+  "_comment": "Fonte de verdade para versões dos agent files. Atualizar manualmente quando worker.js mudar. Use scripts/validate-agents.js para detectar drifts.",
+  "worker_version": "2.0.3",
+  "worker_hash_date": "2026-04-10",
+  "agents": {
+    "master-orchestrator": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:fetch",
+        "worker.js:endpoints",
+        "worker.js:events"
+      ],
+      "critical_sections": [
+        "endpoints",
+        "event_names",
+        "secret_names",
+        "phases"
+      ],
+      "status": "synced"
+    },
+    "server-tracking": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:fetch",
+        "worker.js:saveLead",
+        "worker.js:upsertProfile",
+        "worker.js:secrets"
+      ],
+      "critical_sections": [
+        "endpoint /track",
+        "secret names",
+        "D1 binding",
+        "identity graph"
+      ],
+      "status": "synced"
+    },
+    "meta-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:sendMetaCapi",
+        "contracts/api-versions.json:meta"
+      ],
+      "critical_sections": [
+        "Meta CAPI version",
+        "endpoint pattern",
+        "event names"
+      ],
+      "status": "synced"
+    },
+    "google-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:sendGA4Mp",
+        "contracts/api-versions.json:google"
+      ],
+      "critical_sections": [
+        "GA4 Measurement Protocol endpoint",
+        "event names"
+      ],
+      "status": "synced"
+    },
+    "tiktok-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:sendTikTokApi",
+        "contracts/api-versions.json:tiktok"
+      ],
+      "critical_sections": [
+        "TikTok Events API v1.3",
+        "endpoint pattern",
+        "event names"
+      ],
+      "status": "synced"
+    },
+    "youtube-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "contracts/api-versions.json:youtube"
+      ],
+      "critical_sections": [
+        "video milestone events: video_25/50/75/video_complete",
+        "YT IFrame API"
+      ],
+      "status": "synced"
+    },
+    "whatsapp-ctwa-setup-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:sendWhatsApp",
+        "worker.js:processWhatsAppWebhook"
+      ],
+      "critical_sections": [
+        "WHATSAPP_ACCESS_TOKEN",
+        "WHATSAPP_PHONE_NUMBER_ID",
+        "WA_WEBHOOK_VERIFY_TOKEN"
+      ],
+      "status": "synced"
+    },
+    "intelligence-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:runIntelligenceAgent",
+        "worker.js:checkApiVersionsIntelligence"
+      ],
+      "critical_sections": [
+        "cron schedule",
+        "endpoint /track",
+        "secret names"
+      ],
+      "status": "synced"
+    },
+    "fraud-detection-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:checkFraudGate",
+        "worker.js:handleFraudAlerts",
+        "schema-fraud.sql"
+      ],
+      "critical_sections": [
+        "fraud score threshold",
+        "KV blocklist",
+        "endpoints /api/fraud/"
+      ],
+      "status": "synced"
+    },
+    "ml-clustering-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:handleSegmentationCluster",
+        "schema-segmentation.sql"
+      ],
+      "critical_sections": [
+        "Workers AI model",
+        "endpoints /api/segmentation/",
+        "D1 binding"
+      ],
+      "status": "synced"
+    },
+    "bidding-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:handleBiddingRecommend",
+        "schema-bidding.sql"
+      ],
+      "critical_sections": [
+        "endpoints /api/bidding/",
+        "segment multipliers"
+      ],
+      "status": "synced"
+    },
+    "ab-ltv-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:predictLtv",
+        "worker.js:getLtvAbVariation",
+        "schema-ab-ltv.sql"
+      ],
+      "critical_sections": [
+        "Workers AI model @cf/meta/llama-3.1-8b-instruct",
+        "endpoints /api/ltv/"
+      ],
+      "status": "synced"
+    },
+    "security-enterprise-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:checkFraudGate",
+        "worker.js:verifyHmac"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "env.GEO_CACHE",
+        "HMAC validation"
+      ],
+      "status": "synced"
+    },
+    "attribution-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:saveLead",
+        "worker.js:sendMetaCapi",
+        "worker.js:sendTikTokApi"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "env.META_ACCESS_TOKEN",
+        "env.TIKTOK_ACCESS_TOKEN"
+      ],
+      "status": "synced"
+    },
+    "devops-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "wrangler.toml",
+        "schema.sql",
+        "schema-segmentation.sql",
+        "schema-bidding.sql",
+        "schema-ab-ltv.sql",
+        "schema-fraud.sql"
+      ],
+      "critical_sections": [
+        "D1 binding names",
+        "secret names",
+        "schema execution order",
+        "Workers AI binding"
+      ],
+      "status": "synced"
+    },
+    "validator-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js",
+        "all agents"
+      ],
+      "critical_sections": [
+        "canonical event names 19",
+        "canonical secret names",
+        "canonical endpoints"
+      ],
+      "status": "synced"
+    },
+    "ltv-predictor-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:predictLtv"
+      ],
+      "critical_sections": [
+        "@cf/meta/llama-3.1-8b-instruct model name"
+      ],
+      "status": "synced"
+    },
+    "database-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "schema.sql",
+        "schema-segmentation.sql",
+        "schema-bidding.sql",
+        "schema-ab-ltv.sql",
+        "schema-fraud.sql",
+        "schema-indexes.sql"
+      ],
+      "critical_sections": [
+        "table count (24 tables)",
+        "binding: DB",
+        "KV: GEO_CACHE"
+      ],
+      "status": "synced"
+    },
+    "performance-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:getHealthMetrics"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "env.GEO_CACHE"
+      ],
+      "status": "synced"
+    },
+    "dashboard-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:generateDailyReport"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "env.GEO_CACHE"
+      ],
+      "status": "synced"
+    },
+    "browser-tracking": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "extracted-skill/tracking-events-generator/cdpTrack.js"
+      ],
+      "critical_sections": [
+        "endpoint /track",
+        "event_id deduplication",
+        "cdp_uid cookie"
+      ],
+      "status": "synced"
+    },
+    "debug-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js",
+        "all endpoints"
+      ],
+      "critical_sections": [
+        "endpoint /track",
+        "endpoint /health",
+        "D1 binding"
+      ],
+      "status": "synced"
+    },
+    "crm-integration-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js:saveLead",
+        "worker.js:upsertProfile"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "leads table schema"
+      ],
+      "status": "synced"
+    },
+    "performance-optimization-agent": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "worker.js"
+      ],
+      "critical_sections": [
+        "env.GEO_CACHE (not env.CACHE_KV)"
+      ],
+      "status": "synced"
+    },
+    "master-feedback-loop": {
+      "version": "2.0.3",
+      "last_synced": "2026-04-10",
+      "depends_on": [
+        "all agents"
+      ],
+      "critical_sections": [
+        "env.DB.prepare",
+        "cron schedule"
+      ],
+      "status": "synced"
+    }
+  },
+  "change_triggers": {
+    "worker.js:addNewEndpoint": "Atualizar: master-orchestrator, server-tracking, browser-tracking, debug-agent, intelligence-agent",
+    "worker.js:changeSecretName": "Atualizar: devops-agent, server-tracking, intelligence-agent, whatsapp-ctwa-setup-agent, database-agent",
+    "worker.js:changeEventName": "Atualizar: master-orchestrator, youtube-agent, validator-agent, browser-tracking",
+    "worker.js:changeAIModel": "Atualizar: ml-clustering-agent, ab-ltv-agent, ltv-predictor-agent",
+    "schema.sql:addTable": "Atualizar: database-agent (table count), devops-agent (migration order)",
+    "wrangler.toml:addBinding": "Atualizar: devops-agent, database-agent, debug-agent",
+    "contracts/api-versions.json:bumpVersion": "Atualizar: agent especialista + master-orchestrator"
+  }
+}

package/dist/commands/install.js

@@ -32,7 +32,7 @@ function printBanner() {
   console.log(chalk.cyan('╚██████╗██████╔╝██║         ███████╗██████╔╝╚██████╔╝███████╗'));
   console.log(chalk.cyan(' ╚═════╝╚═════╝ ╚═╝         ╚══════╝╚═════╝  ╚═════╝╚══════╝'));
   console.log('');
-  console.log(chalk.gray('  Customer Data Platform on the Edge · Global Edge Tracking · v2.0.2'));
+  console.log(chalk.gray('  Customer Data Platform on the Edge · Global Edge Tracking · v2.0.3'));
   console.log('');
   console.log(chalk.gray('═'.repeat(68)));
   console.log('');

package/dist/commands/setup.js

@@ -19,7 +19,7 @@ function printBanner() {
   console.log(chalk.cyan('╚██████╗██████╔╝██║         ███████╗██████╔╝╚██████╔╝███████╗'));
   console.log(chalk.cyan(' ╚═════╝╚═════╝ ╚═╝         ╚══════╝╚═════╝  ╚═════╝╚══════╝'));
   console.log('');
-  console.log(chalk.gray('  Customer Data Platform on the Edge · Global Edge Tracking · v2.0.2'));
+  console.log(chalk.gray('  Customer Data Platform on the Edge · Global Edge Tracking · v2.0.3'));
   console.log('');
   console.log(chalk.gray('═'.repeat(68)));
   console.log('');

package/extracted-skill/tracking-events-generator/agents/browser-tracking.md

@@ -33,7 +33,7 @@ Database: Cloudflare D1 (Persistência)
 ## 📊 FUNCIONALIDADES DO SDK
 
 ### 1. Direct Fetch
-O rastreamento utiliza chamadas diretas via `fetch()` para o endpoint `/api/tracking` no mesmo domínio.
+O rastreamento utiliza chamadas diretas via `fetch()` para o endpoint `/track` no mesmo domínio.
 
 ### 2. Deduplicação
 Gera um `event_id` único para cada evento disparado no browser para que o Worker possa bater com a CAPI.
@@ -311,7 +311,7 @@ document.getElementById('buy-btn').addEventListener('click', function() {
 | Depende de | Input Esperado | O que faz com isso |
 |-------------|----------------|------------------|
 | **Page Analyzer** | Lista de elementos HTML | Mapeia `content_name` e `content_id` |
-| **Server Tracking Agent** | Lista de plataformas | Adiciona endpoint Spotify `/api/wh/spotify` |
+| **Server Tracking Agent** | Lista de plataformas | Adiciona endpoint Spotify `/webhook/spotify` |
 | **Premium Tracking Intelligence** | Estratégia de tracking | Define eventos prioritários para Spotify |
 | **Validator Agent** | Código gerado | Valida conformidade com Spotify API v1 |
 

package/extracted-skill/tracking-events-generator/agents/master-orchestrator.md

@@ -741,7 +741,7 @@ cloudflare/
 - JSON do Premium Tracking Intelligence Agent (estratégia de tracking)
 
 **RESPONSABILIDADE:**
-- Gerar endpoint `/api/wh/*` (recebe webhooks de Hotmart, Kiwify, Eduzz, Ticto)
+- Gerar endpoint `/webhook/*` (recebe webhooks de Hotmart, Kiwify, Eduzz, Ticto)
 - Implementar Lead Lock (salvar PII no D1, vincular com fbp/fbc)
 - Implementar despacho de Purchase via Server-Side (CAPI, Events API)
 - Implementar Advanced Matching Máximo (email, phone, city, state) via checkout data
@@ -751,9 +751,9 @@ cloudflare/
 ```
 cloudflare/
 └── webhooks/
-    ├── hotmart-webhook.js    ← Rota /api/wh/hotmart
-    ├── kiwify-webhook.js     ← Rota /api/wh/kiwify
-    ├── eduzz-webhook.js      ← Rota /api/wh/eduzz
+    ├── hotmart-webhook.js    ← Rota /webhook/hotmart
+    ├── kiwify-webhook.js     ← Rota /webhook/kiwify
+    ├── eduzz-webhook.js      ← Rota /webhook/eduzz
     └── ticto-webhook.js      ← Rota /webhook/ticto (HMAC-SHA256 X-Ticto-Signature)
 ```
 

package/extracted-skill/tracking-events-generator/agents/premium-tracking-intelligence-agent.md

@@ -553,7 +553,7 @@ function detectAdBlock() {
 function handleAdBlockFallback(eventData) {
   if (detectAdBlock()) {
     // AdBlock ativo: enviar via servidor (não pode usar scripts de terceiros)
-    fetch('/api/tracking', {
+    fetch('/track', {
       method: 'POST',
       headers: { 'Content-Type': 'application/json' },
       body: JSON.stringify({
@@ -619,9 +619,9 @@ function getSessionId() {
 ```javascript
 /**
  * Endpoint de Tracking no Mesmo Domínio
- * URL: https://meusite.com/api/tracking (NÃO third-party)
+ * URL: https://meusite.com/track (NÃO third-party)
  */
-const TRACKING_ENDPOINT = '/api/tracking'; // Same-Domain Protocol
+const TRACKING_ENDPOINT = '/track'; // Same-Domain Protocol
 
 /**
  * Enviar evento via servidor (adblock-proof)
@@ -804,7 +804,7 @@ const serverTracking = {
 
 ### Server Tracking (O que processar no Worker)
 
-- [x] Receber eventos do browser (POST /api/tracking)
+- [x] Receber eventos do browser (POST /track)
 - [x] Capturar IP e geolocalização (Cloudflare headers)
 - [x] Recuperar PII do D1 (Lead Lock)
 - [x] Calcular Engagement Score (0.0 - 5.0)

package/extracted-skill/tracking-events-generator/agents/server-tracking.md

@@ -27,7 +27,7 @@ Browser (Visitante)
        ▼
 Cloudflare Edge (Worker)
   ├── Route Principal: /api/*     ← Same-Domain Protocol
-  ├── Route Webhook: /api/wh/*    ← Rota para Gateways de Pagamento
+  ├── Route Webhook: /webhook/*    ← Rota para Gateways de Pagamento
   ├── Edge Routing (A/B)         ← Interceptação via A/B Testing Agent
   ├── Edge Localization          ← Manipulação de Checkout/Moeda
   ├── ML LTV Prediction          ← Predição de Valor via Workers AI
@@ -526,7 +526,7 @@ async function syncIdentity(DB, body) {
   const fp = body.fingerprint || null;
   if (!fp || !DB) return body;
 
-  const existing = await DB.prepare(
+  const existing = await env.DB.prepare(
     'SELECT * FROM identity_graph WHERE fingerprint = ?'
   ).bind(fp).first();
 
@@ -541,7 +541,7 @@ async function syncIdentity(DB, body) {
       visit_count: (existing.visit_count || 1) + 1
     };
   } else {
-    await DB.prepare(`
+    await env.DB.prepare(`
       INSERT OR IGNORE INTO identity_graph (fingerprint, fbp, fbc, ga_client_id, external_id, ttclid, first_utm)
       VALUES (?, ?, ?, ?, ?, ?, ?)
     `).bind(fp, body.fbp, body.fbc, body.ga_client_id, body.external_id, body.ttclid, JSON.stringify(body.utm || {})).run();
@@ -635,7 +635,7 @@ function buildCookieHeader(visitor, umbrellaDomain) {
 async function logBehavioralEvent(DB, body, visitor, engagementScore) {
   if (!DB) return;
 
-  await DB.prepare(`
+  await env.DB.prepare(`
     INSERT OR REPLACE INTO behavioral_events (
       event_id, user_id, session_id,
       engagement_score, time_level, scroll_score, click_score, video_score, hover_score, intention_level,
@@ -812,7 +812,7 @@ context: {
 ### Estratégias para Maximizar Resiliência
 
 **1. Same-Domain Endpoint:**
-- Worker deve estar no mesmo domínio do site: `site.com/api/tracking`
+- Worker deve estar no mesmo domínio do site: `site.com/track`
 - Evita bloqueios de CORS e ad-blockers que bloqueiam requests cross-origin
 
 **2. First-Party Cookies:**
@@ -843,9 +843,9 @@ const corsHeaders = {
 - Ad-blockers podem falsificar user-agent
 - Validação deve ser baseada em token/secret, não UA
 
-**6. No Sensitive Keywords in Paths:**
-- Evitar paths com palavras que ativam ad-blockers: `/track`, `/pixel`, `/analytics`
-- Usar `/api/tracking` ou `/api/events` em vez disso
+**6. Same-Domain via Worker Route (anti-blocking):**
+- Endpoint de tracking: `/track` (Worker route same-domain — ad-blockers não bloqueiam requests same-domain)
+- A proteção real vem do same-domain, não do nome do path
 
 ---
 
@@ -972,7 +972,7 @@ CREATE INDEX IF NOT EXISTS idx_retry_scheduled ON retry_queue(scheduled_at, stat
 async function logEventSuccess(DB, platform, eventId) {
   if (!DB) return;
 
-  await DB.prepare(`
+  await env.DB.prepare(`
     UPDATE events_log
     SET status = 'success',
         retry_count = 0,
@@ -988,7 +988,7 @@ async function logEventFailure(DB, platform, eventId, errorMessage, retryCount)
   const maxRetries = 3;
   const isFinalFailure = retryCount >= maxRetries;
 
-  await DB.prepare(`
+  await env.DB.prepare(`
     UPDATE events_log
     SET status = ?,
         retry_count = ?,
@@ -1150,7 +1150,7 @@ export async function queue(batch, env) {
 
 - Gerar `wrangler.toml` completo com bindings D1, KV, R2, Queues e Cron Triggers
 - Gerar `schema.sql` com todas as tabelas: `events_log`, `identity_graph`, `leads`, `behavioral_events`, `webhook_events`, `user_profiles`
-- Gerar `worker.js` principal com endpoint `/api/tracking` (recebe eventos do browser)
+- Gerar `worker.js` principal com endpoint `/track` (recebe eventos do browser)
 - Implementar Identity Graph sync, Engagement Scoring server-side e First-Party Cookie (`_cdp_uid`)
 - Implementar Anti-Blocking: CORS same-domain, headers limpos, sem keywords bloqueáveis
 - Implementar sistema de retry com Cloudflare Queues (3-Tier: imediato → 5min → 15min → 45min)
@@ -1167,9 +1167,9 @@ export async function queue(batch, env) {
     "DEPLOY.md"
   ],
   "endpoints": {
-    "tracking":  "POST /api/tracking",
+    "tracking":  "POST /track",
     "health":    "GET  /api/health",
-    "webhooks":  "POST /api/wh/{gateway}",
+    "webhooks":  "POST /webhook/{gateway}",
     "ticto":     "POST /webhook/ticto"
   },
   "bindings_cloudflare": {

package/extracted-skill/tracking-events-generator/agents/spotify-agent.md

@@ -310,7 +310,7 @@ export async function hashPII(data) {
 | Depende de | Input Esperado | O que faz com isso |
 |-------------|----------------|------------------|
 | **Page Analyzer** | Lista de elementos HTML | Mapeia `content_name` e `content_id` |
-| **Server Tracking Agent** | Lista de plataformas | Adiciona endpoint Spotify `/api/wh/spotify` |
+| **Server Tracking Agent** | Lista de plataformas | Adiciona endpoint Spotify `/webhook/spotify` |
 | **Premium Tracking Intelligence** | Estratégia de tracking | Define eventos prioritários para Spotify |
 | **Validator Agent** | Código gerado | Valida conformidade com Spotify API v1 |
 

package/extracted-skill/tracking-events-generator/agents/webhook-agent.md

@@ -65,7 +65,7 @@ async function hashWebhookUserData(webhookPayload) {
 
 ## 📦 ENTREGÁVEIS
 
-1.  **Route Handler**: `/api/wh/{gateway}` no Worker.
+1.  **Route Handler**: `/webhook/{gateway}` no Worker.
 2.  **D1 Query**: Lógica de atualização do perfil do usuário com o status de comprador.
 3.  **CAPI Dispatch**: Envio dos dados enriquecidos para as redes de anúncio.
 
@@ -153,10 +153,10 @@ ctx.waitUntil(Promise.allSettled([
 ```json
 {
   "rotas_geradas": {
-    "hotmart":  "/api/wh/hotmart",
-    "kiwify":   "/api/wh/kiwify",
+    "hotmart":  "/webhook/hotmart",
+    "kiwify":   "/webhook/kiwify",
     "ticto":    "/webhook/ticto",
-    "stripe":   "/api/wh/stripe"
+    "stripe":   "/webhook/stripe"
   },
   "validacao_hmac": {
     "hotmart": "X-Hotmart-Hottok",

package/extracted-skill/tracking-events-generator/agents/youtube-agent.md

@@ -53,7 +53,7 @@ if (consentModeVersion !== 'v2') {
 
 ### TrueView In-Stream (pulável após 5s)
 - **Evento de billing**: view confirmada após 30s ou clique
-- **Rastrear**: `video_start`, `video_progress_30s`, `video_complete`, clique no CTA
+- **Rastrear**: `video_start`, `video_complete`, clique no CTA
 - **Conversão Google Ads**: `engaged_view` (30s assistidos = 1 conversão de vídeo)
 
 ### Bumper Ads (6s não-puláveis)
@@ -505,7 +505,7 @@ if (youtubeMobileLeads.count === 0) {
 
 ## RESPONSABILIDADE
 
-- Gerar eventos de progresso de vídeo (`video_start`, `video_progress_25/50/75/90`, `video_complete`) via GA4
+- Gerar eventos de progresso de vídeo (`video_start`, `video_25`, `video_50`, `video_75`, `video_complete`) via GA4
 - Implementar YouTube IFrame API listener para rastreamento de VSL no browser
 - Garantir `gclid`, `wbraid`, `gbraid` chegando ao Worker (nunca hashear estes campos)
 - Persistir `ga_client_id` no D1 para cruzamento com conversões YouTube Ads
@@ -522,7 +522,7 @@ if (youtubeMobileLeads.count === 0) {
   },
   "eventos_implementados": [
     "video_start",
-    "video_progress_25", "video_progress_50", "video_progress_75", "video_progress_90",
+    "video_25", "video_50", "video_75",
     "video_complete",
     "generate_lead",
     "purchase"

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cdp-edge",
-  "version": "1.18.2",
+  "version": "1.19.0",
   "description": "CDP Edge - Quantum Tracking - Sistema multi-agente para tracking digital Cloudflare Native (Workers + D1)",
   "main": "dist/index.js",
   "type": "module",
@@ -28,7 +28,12 @@
     "test:unit:hash": "node tests/unit/hashing.test.js",
     "test:unit:dedup": "node tests/unit/deduplication.test.js",
     "test:unit:payload": "node tests/unit/payload-validation.test.js",
-    "test:all": "npm run test:unit"
+    "test:all": "npm run test:unit",
+    "test:integration": "cd tests/integration && npx vitest run",
+    "agents:check": "node scripts/validate-agents.js",
+    "agents:sync": "node scripts/sync-agents.js",
+    "agents:sync:list": "node scripts/sync-agents.js --list",
+    "agents:sync:all": "node scripts/sync-agents.js --apply-all"
   },
   "keywords": [
     "pixel",