dpdp-erasure-cli 1.0.11 → 1.0.12

package/compliance.worker.yml

@@ -0,0 +1,164 @@
+# AUTO-GENERATED BY INTROSPECTOR
+# REVIEW REQUIRED: DPO must validate every table, join condition, and PII column before production use.
+# Generated At: 2026-06-12T05:19:07.235Z
+
+legal_attestation:
+  dpo_identifier: PENDING_REVIEW
+  configuration_version: introspector-draft
+  legal_review_date: PENDING_REVIEW
+  schema_hash: ea9e816d30fcee6bd4f322f1fb769e853c2e7ee5b19263aaa54f5ef80189212c
+  generated_by: compliance-introspector-v1
+  acknowledgment: PENDING_REVIEW
+
+legal_disclaimer:
+  text: "Auto-generated by Compliance Worker. The DPO/Developer is responsible for verifying all logical links and PII mappings."
+
+rules:
+  - id: dpdp_standard
+    root_table: public.users
+    max_depth: 32
+    targets:
+      - table: public.users
+        # Introspector Confidence: 0.950 (email)
+        # Introspector Confidence: 0.920 (indian_mobile)
+        pii_columns: [email, phone_number]
+      - table: public.kyc_documents
+        parent: public.users
+        join: "public.users.id = public.kyc_documents.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        pii_columns: []
+      - table: public.orders
+        parent: public.users
+        join: "public.users.id = public.orders.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        pii_columns: []
+      - table: public.support_tickets
+        parent: public.users
+        join: "public.users.id = public.support_tickets.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        # Introspector Confidence: 0.900 (indian_mobile)
+        pii_columns: [description]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          description: HMAC
+      - table: public.user_addresses
+        parent: public.users
+        join: "public.users.id = public.user_addresses.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        # Introspector Confidence: 0.780 (indian_pin_code)
+        pii_columns: [pincode]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          pincode: HMAC
+      - table: public.user_devices
+        parent: public.users
+        join: "public.users.id = public.user_devices.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        # Introspector Confidence: 0.820 (metadata)
+        pii_columns: [last_ip_address]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          last_ip_address: HMAC
+      - table: public.user_preferences
+        parent: public.users
+        join: "public.users.id = public.user_preferences.user_id"
+        parent_columns: [id]
+        child_columns: [user_id]
+        pii_columns: []
+      - table: public.order_items
+        parent: public.orders
+        join: "public.orders.id = public.order_items.order_id"
+        parent_columns: [id]
+        child_columns: [order_id]
+        pii_columns: []
+      - table: public.payments
+        parent: public.orders
+        join: "public.orders.id = public.payments.order_id"
+        parent_columns: [id]
+        child_columns: [order_id]
+        pii_columns: []
+      - table: public.ticket_messages
+        parent: public.support_tickets
+        join: "public.support_tickets.id = public.ticket_messages.ticket_id"
+        parent_columns: [id]
+        child_columns: [ticket_id]
+        # Introspector Confidence: 0.900 (indian_mobile)
+        pii_columns: [message_body]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          message_body: HMAC
+      - table: public.abandoned_carts
+        parent: public.users
+        join: "LOGICAL_LINK (customer_id)"
+        parent_columns: [customer_id]
+        child_columns: [customer_id]
+        pii_columns: []
+      - table: public.audit_logs
+        parent: public.users
+        join: "LOGICAL_LINK (actor_id)"
+        parent_columns: [actor_id]
+        child_columns: [actor_id]
+        # Introspector Confidence: 0.820 (ipv4)
+        pii_columns: [ip_address]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          ip_address: HMAC
+      - table: public.legacy_crm_notes
+        parent: public.users
+        join: "LOGICAL_LINK (client_id)"
+        parent_columns: [client_id]
+        child_columns: [client_id]
+        # Introspector Confidence: 0.950 (email, indian_mobile)
+        pii_columns: [agent_notes]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          agent_notes: HMAC
+      - table: public.marketing_campaign_clicks
+        parent: public.users
+        join: "LOGICAL_LINK (target_email)"
+        parent_columns: [target_email]
+        child_columns: [target_email]
+        # Introspector Confidence: 0.950 (email)
+        pii_columns: [target_email]
+        primary_key_columns: [id]
+        action: redact
+        mutation_rules:
+          target_email: HMAC
+      - table: public.third_party_telemetry
+        parent: public.users
+        join: "LOGICAL_LINK (user_uuid)"
+        parent_columns: [user_uuid]
+        child_columns: [user_uuid]
+        pii_columns: []
+
+# [Potential Logical Link] public.users.customer_id <-> public.abandoned_carts.customer_id - Table exposes customer_id which conceptually maps to the root entity.
+# [Potential Logical Link] public.users.actor_id <-> public.audit_logs.actor_id - Table exposes actor_id which conceptually maps to the root entity.
+# [Potential Logical Link] public.kyc_documents.user_id <-> public.orders.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.kyc_documents.user_id <-> public.support_tickets.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.kyc_documents.user_id <-> public.user_addresses.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.kyc_documents.user_id <-> public.user_devices.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.kyc_documents.user_id <-> public.user_preferences.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.orders.user_id <-> public.support_tickets.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.orders.user_id <-> public.user_addresses.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.orders.user_id <-> public.user_devices.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.orders.user_id <-> public.user_preferences.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.support_tickets.user_id <-> public.user_addresses.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.support_tickets.user_id <-> public.user_devices.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.support_tickets.user_id <-> public.user_preferences.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.user_addresses.user_id <-> public.user_devices.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.user_addresses.user_id <-> public.user_preferences.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.user_devices.user_id <-> public.user_preferences.user_id - Both tables expose user_id but no physical foreign key was found.
+# [Potential Logical Link] public.users.client_id <-> public.legacy_crm_notes.client_id - Table exposes client_id which conceptually maps to the root entity.
+# [Potential Logical Link] public.users.target_email <-> public.marketing_campaign_clicks.target_email - Table exposes target_email which conceptually maps to the root entity.
+# [Potential Logical Link] public.users.user_uuid <-> public.third_party_telemetry.user_uuid - Table exposes user_uuid which conceptually maps to the root entity.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "dpdp-erasure-cli",
-  "version": "1.0.11",
+  "version": "1.0.12",
   "license": "Apache-2.0",
   "keywords": [
     "dpdp",
@@ -54,4 +54,4 @@
     "postgres": "^3.4.9",
     "zod": "^4.4.2"
   }
-}
+}

package/report.json

@@ -0,0 +1,370 @@
+{
+  "summary": {
+    "rootTable": "public.users",
+    "generatedAt": "2026-06-12T05:19:07.235Z",
+    "schemaHash": "ea9e816d30fcee6bd4f322f1fb769e853c2e7ee5b19263aaa54f5ef80189212c",
+    "targetCount": 15,
+    "tablesWithPii": 8,
+    "piiColumnCount": 9,
+    "highConfidenceCount": 6,
+    "reviewRequiredCount": 3,
+    "potentialLogicalLinkCount": 20
+  },
+  "findings": [
+    {
+      "table": "public.legacy_crm_notes",
+      "column": "agent_notes",
+      "dataType": "text",
+      "confidence": 0.95,
+      "metadataScore": 0,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "email",
+        "indian_mobile"
+      ]
+    },
+    {
+      "table": "public.marketing_campaign_clicks",
+      "column": "target_email",
+      "dataType": "character varying",
+      "confidence": 0.95,
+      "metadataScore": 0.92,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "email"
+      ]
+    },
+    {
+      "table": "public.users",
+      "column": "email",
+      "dataType": "character varying",
+      "confidence": 0.95,
+      "metadataScore": 0.92,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "email"
+      ]
+    },
+    {
+      "table": "public.users",
+      "column": "phone_number",
+      "dataType": "character varying",
+      "confidence": 0.92,
+      "metadataScore": 0.92,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "indian_mobile"
+      ]
+    },
+    {
+      "table": "public.support_tickets",
+      "column": "description",
+      "dataType": "text",
+      "confidence": 0.9,
+      "metadataScore": 0,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "indian_mobile"
+      ]
+    },
+    {
+      "table": "public.ticket_messages",
+      "column": "message_body",
+      "dataType": "text",
+      "confidence": 0.9,
+      "metadataScore": 0,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "indian_mobile"
+      ]
+    },
+    {
+      "table": "public.audit_logs",
+      "column": "ip_address",
+      "dataType": "inet",
+      "confidence": 0.82,
+      "metadataScore": 0.82,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "ipv4"
+      ]
+    },
+    {
+      "table": "public.user_devices",
+      "column": "last_ip_address",
+      "dataType": "inet",
+      "confidence": 0.82,
+      "metadataScore": 0.82,
+      "contentMatchRatio": 0,
+      "sampleSize": 0,
+      "matchedSignatures": []
+    },
+    {
+      "table": "public.user_addresses",
+      "column": "pincode",
+      "dataType": "character varying",
+      "confidence": 0.78,
+      "metadataScore": 0.62,
+      "contentMatchRatio": 1,
+      "sampleSize": 50,
+      "matchedSignatures": [
+        "indian_pin_code"
+      ]
+    }
+  ],
+  "potentialLogicalLinks": [
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "users"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "abandoned_carts"
+      },
+      "column": "customer_id",
+      "reason": "Table exposes customer_id which conceptually maps to the root entity."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "users"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "audit_logs"
+      },
+      "column": "actor_id",
+      "reason": "Table exposes actor_id which conceptually maps to the root entity."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "kyc_documents"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "orders"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "kyc_documents"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "support_tickets"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "kyc_documents"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_addresses"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "kyc_documents"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_devices"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "kyc_documents"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_preferences"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "orders"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "support_tickets"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "orders"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_addresses"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "orders"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_devices"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "orders"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_preferences"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "support_tickets"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_addresses"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "support_tickets"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_devices"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "support_tickets"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_preferences"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "user_addresses"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_devices"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "user_addresses"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_preferences"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "user_devices"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "user_preferences"
+      },
+      "column": "user_id",
+      "reason": "Both tables expose user_id but no physical foreign key was found."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "users"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "legacy_crm_notes"
+      },
+      "column": "client_id",
+      "reason": "Table exposes client_id which conceptually maps to the root entity."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "users"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "marketing_campaign_clicks"
+      },
+      "column": "target_email",
+      "reason": "Table exposes target_email which conceptually maps to the root entity."
+    },
+    {
+      "sourceTable": {
+        "schema": "public",
+        "table": "users"
+      },
+      "targetTable": {
+        "schema": "public",
+        "table": "third_party_telemetry"
+      },
+      "column": "user_uuid",
+      "reason": "Table exposes user_uuid which conceptually maps to the root entity."
+    }
+  ],
+  "nextSteps": [
+    "Review every PII column and potential logical link with the application owner.",
+    "Copy reviewed targets into compliance.worker.yml and complete legal_attestation.",
+    "Run compliance-worker check-integrity before allowing live worker boot.",
+    "Sign the reviewed manifest with compliance-worker sign after DPO approval."
+  ]
+}

package/report.md

@@ -0,0 +1,57 @@
+# Compliance Introspector Report
+
+## Summary
+
+- Root table: `public.users`
+- Generated at: `2026-06-12T05:19:07.235Z`
+- Schema hash: `ea9e816d30fcee6bd4f322f1fb769e853c2e7ee5b19263aaa54f5ef80189212c`
+- DAG targets: 15
+- Tables with PII: 8
+- PII columns: 9
+- High-confidence findings: 6
+- Review-required findings: 3
+- Potential logical links: 20
+
+## PII Findings
+
+| Table | Column | Type | Confidence | Metadata | Content | Signatures |
+| --- | --- | --- | ---: | ---: | ---: | --- |
+| `public.legacy_crm_notes` `agent_notes` `text` 0.950 0.000 1.000 email, indian_mobile |
+| `public.marketing_campaign_clicks` `target_email` `character varying` 0.950 0.920 1.000 email |
+| `public.users` `email` `character varying` 0.950 0.920 1.000 email |
+| `public.users` `phone_number` `character varying` 0.920 0.920 1.000 indian_mobile |
+| `public.support_tickets` `description` `text` 0.900 0.000 1.000 indian_mobile |
+| `public.ticket_messages` `message_body` `text` 0.900 0.000 1.000 indian_mobile |
+| `public.audit_logs` `ip_address` `inet` 0.820 0.820 1.000 ipv4 |
+| `public.user_devices` `last_ip_address` `inet` 0.820 0.820 0.000 metadata |
+| `public.user_addresses` `pincode` `character varying` 0.780 0.620 1.000 indian_pin_code |
+
+## Potential Logical Links
+
+- `public.users.customer_id` <-> `public.abandoned_carts.customer_id`: Table exposes customer_id which conceptually maps to the root entity.
+- `public.users.actor_id` <-> `public.audit_logs.actor_id`: Table exposes actor_id which conceptually maps to the root entity.
+- `public.kyc_documents.user_id` <-> `public.orders.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.kyc_documents.user_id` <-> `public.support_tickets.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.kyc_documents.user_id` <-> `public.user_addresses.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.kyc_documents.user_id` <-> `public.user_devices.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.kyc_documents.user_id` <-> `public.user_preferences.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.orders.user_id` <-> `public.support_tickets.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.orders.user_id` <-> `public.user_addresses.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.orders.user_id` <-> `public.user_devices.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.orders.user_id` <-> `public.user_preferences.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.support_tickets.user_id` <-> `public.user_addresses.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.support_tickets.user_id` <-> `public.user_devices.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.support_tickets.user_id` <-> `public.user_preferences.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.user_addresses.user_id` <-> `public.user_devices.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.user_addresses.user_id` <-> `public.user_preferences.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.user_devices.user_id` <-> `public.user_preferences.user_id`: Both tables expose user_id but no physical foreign key was found.
+- `public.users.client_id` <-> `public.legacy_crm_notes.client_id`: Table exposes client_id which conceptually maps to the root entity.
+- `public.users.target_email` <-> `public.marketing_campaign_clicks.target_email`: Table exposes target_email which conceptually maps to the root entity.
+- `public.users.user_uuid` <-> `public.third_party_telemetry.user_uuid`: Table exposes user_uuid which conceptually maps to the root entity.
+
+## Next Steps
+
+- Review every PII column and potential logical link with the application owner.
+- Copy reviewed targets into compliance.worker.yml and complete legal_attestation.
+- Run compliance-worker check-integrity before allowing live worker boot.
+- Sign the reviewed manifest with compliance-worker sign after DPO approval.

package/src/modules/introspector/classifier.ts

@@ -137,6 +137,7 @@ const METADATA_PATTERNS: Array<{ pattern: RegExp; score: number }> = [
   { pattern: /(^|_)(driving_license|driving_licence|license_number|licence_number|dl_number|dl_no)($|_)/i, score: MEDIUM_METADATA_SCORE },
   { pattern: /(^|_)(address|street|postal_code|zip_code|pin_code|pincode)($|_)/i, score: WEAK_METADATA_SCORE },
   { pattern: /(^|_)(device_fingerprint|device_id|advertising_id|gaid|idfa)($|_)/i, score: WEAK_METADATA_SCORE },
+  { pattern: /(^|_)(document_number|identity_number|id_number)($|_)/i, score: WEAK_METADATA_SCORE },
 ];
 
 function qualifiedKey(table: QualifiedTable): string {
@@ -336,12 +337,23 @@ function classifyLeafDetailed(value: string, columnName: string = ""): ContentSi
   const bytes = textEncoder.encode(value.trim());
   try {
     const normalized = textDecoder.decode(bytes).trim();
-    return CONTENT_SIGNATURES
-      .filter((signature) =>
-        signatureHasMetadataSupport(signature, columnName) &&
-        signature.pattern.test(normalized) &&
-        (!signature.validate || signature.validate(normalized))
-      );
+    // Split into tokens and strip leading/trailing punctuation so regexes can match substrings
+    const tokens = normalized.split(/\s+/).map((t) => t.replace(/^[^\w\+]+|[^\w]+$/g, ""));
+    const candidates = Array.from(new Set([normalized, ...tokens])).filter((t) => t.length > 0);
+
+    const matches = new Set<ContentSignature>();
+    for (const candidate of candidates) {
+      for (const signature of CONTENT_SIGNATURES) {
+        if (
+          signatureHasMetadataSupport(signature, columnName) &&
+          signature.pattern.test(candidate) &&
+          (!signature.validate || signature.validate(candidate))
+        ) {
+          matches.add(signature);
+        }
+      }
+    }
+    return Array.from(matches);
   } finally {
     bytes.fill(0);
   }

package/src/modules/introspector/dag.ts

@@ -236,7 +236,7 @@ export async function discoverPotentialLogicalLinks(
   const byColumn = new Map<string, QualifiedTable[]>();
   for (const row of rows) {
     const normalized = row.column_name.toLowerCase();
-    if (!/^(?:user_id|account_id|customer_id|member_id|subject_id|.*_user_id)$/.test(normalized)) {
+    if (!/^(?:user_id|account_id|customer_id|client_id|actor_id|user_uuid|member_id|subject_id|.*_user_id|target_email|user_email)$/.test(normalized)) {
       continue;
     }
 
@@ -247,7 +247,25 @@ export async function discoverPotentialLogicalLinks(
 
   const links: PotentialLogicalLink[] = [];
   const emitted = new Set<string>();
+
   for (const [column, tables] of byColumn.entries()) {
+    for (const table of tables) {
+      // Explicitly link any orphan table that has an identity-like column to the root table
+      if (table.schema === root.schema && table.table === root.table) {
+        continue;
+      }
+      const key = physicalLinkKey(root, table, column);
+      if (!physicalLinks.has(key) && !emitted.has(key)) {
+        emitted.add(key);
+        links.push({
+          sourceTable: root,
+          targetTable: table,
+          column,
+          reason: `Table exposes ${column} which conceptually maps to the root entity.`,
+        });
+      }
+    }
+    
     if (tables.length < 2) {
       continue;
     }

package/src/modules/introspector/run.ts

@@ -38,14 +38,6 @@ export async function runIntrospector(options: RunIntrospectorOptions): Promise<
     maxDepth,
   });
 
-  const classifiedColumns = await classifyDagTargets({
-    sql: options.sql,
-    targets: dag,
-    samplePercent: options.samplePercent,
-    sampleLimit: options.sampleLimit,
-    threshold: options.threshold,
-  });
-
   const [schemaHash, potentialLogicalLinks] = await Promise.all([
     detectSchemaDrift(options.sql, root.schema),
     discoverPotentialLogicalLinks(
@@ -58,7 +50,49 @@ export async function runIntrospector(options: RunIntrospectorOptions): Promise<
     ),
   ]);
 
-  const targets: IntrospectorTargetDraft[] = dag.map((target) => ({
+  const dagTableKeys = new Set(dag.map((t) => targetKey(t.table.schema, t.table.table)));
+  const logicalTargets: typeof dag = [];
+
+  for (const link of potentialLogicalLinks) {
+    const sourceKey = targetKey(link.sourceTable.schema, link.sourceTable.table);
+    const targetKeyStr = targetKey(link.targetTable.schema, link.targetTable.table);
+
+    if (dagTableKeys.has(sourceKey) && !dagTableKeys.has(targetKeyStr)) {
+      dagTableKeys.add(targetKeyStr);
+      logicalTargets.push({
+        table: link.targetTable,
+        parentTable: link.sourceTable,
+        constraintName: null,
+        childColumns: [link.column],
+        parentColumns: [link.column],
+        depth: maxDepth,
+        fkCondition: `LOGICAL_LINK (${link.column})`,
+      });
+    } else if (dagTableKeys.has(targetKeyStr) && !dagTableKeys.has(sourceKey)) {
+      dagTableKeys.add(sourceKey);
+      logicalTargets.push({
+        table: link.sourceTable,
+        parentTable: link.targetTable,
+        constraintName: null,
+        childColumns: [link.column],
+        parentColumns: [link.column],
+        depth: maxDepth,
+        fkCondition: `LOGICAL_LINK (${link.column})`,
+      });
+    }
+  }
+
+  const fullTargets = [...dag, ...logicalTargets];
+
+  const classifiedColumns = await classifyDagTargets({
+    sql: options.sql,
+    targets: fullTargets,
+    samplePercent: options.samplePercent,
+    sampleLimit: options.sampleLimit,
+    threshold: options.threshold,
+  });
+
+  const targets: IntrospectorTargetDraft[] = fullTargets.map((target) => ({
     table: target.table,
     parentTable: target.parentTable,
     fkCondition: target.fkCondition,