npm - ponch-mcp-server - Versions diffs - 1.0.76 → 1.0.77 - Mend

ponch-mcp-server 1.0.76 → 1.0.77

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -47,14 +47,14 @@ function resolveAuth() {
     const resolvedPath = saPath.startsWith("/") ? saPath : (0, import_path.join)(process.cwd(), saPath);
     if ((0, import_fs.existsSync)(resolvedPath)) {
       return {
-        mode: "cowork",
+        canSwitchTenant: true,
+        // service account = admin del SaaS
         tenantId: null,
         brandId: null,
         brands: [],
         userId: null,
         userName: null,
         rol: "super_admin",
-        // service account = admin total
         serviceAccountPath: resolvedPath,
         credentialsPath: null
       };
@@ -65,7 +65,7 @@ function resolveAuth() {
     try {
       const creds = JSON.parse((0, import_fs.readFileSync)(CREDENTIALS_PATH, "utf-8"));
       return {
-        mode: creds.rol === "super_admin" ? "cowork" : "tenant",
+        canSwitchTenant: creds.rol === "super_admin",
         tenantId: creds.tenantId ?? null,
         brandId: creds.brands?.[0]?.id ?? null,
         brands: creds.brands ?? [],
@@ -80,7 +80,7 @@ function resolveAuth() {
     }
   }
   return {
-    mode: "tenant",
+    canSwitchTenant: false,
     tenantId: null,
     brandId: null,
     brands: [],
@@ -108,6 +108,10 @@ function readCredentials() {
 var Session = class {
   context;
   _authContext;
+  _clientIdentity = {
+    mcpClient: null,
+    mcpClientVersion: null
+  };
   constructor(auth) {
     this._authContext = auth;
     this.context = {
@@ -115,8 +119,26 @@ var Session = class {
       brandId: auth.brandId
     };
   }
-  get mode() {
-    return this._authContext.mode;
+  /**
+   * Captura identidad del cliente MCP. Llamado al recibir handshake
+   * `initialize` del SDK. Idempotente — si se llama 2 veces, segunda no
+   * sobrescribe (el cliente no cambia mid-session).
+   */
+  setMcpClientIdentity(name, version) {
+    if (this._clientIdentity.mcpClient === null) {
+      this._clientIdentity.mcpClient = name;
+      this._clientIdentity.mcpClientVersion = version;
+    }
+  }
+  get mcpClientIdentity() {
+    return this._clientIdentity;
+  }
+  /**
+   * true → super_admin del SaaS (puede cambiar tenant). false → tenant
+   * member normal. Independiente del SDK que esté corriendo el MCP.
+   */
+  get canSwitchTenant() {
+    return this._authContext.canSwitchTenant;
   }
   get tenantId() {
     return this.context.tenantId;
@@ -137,19 +159,27 @@ var Session = class {
   get userId() {
     return this._authContext.userId;
   }
-  /** Rol del usuario (admin/encargado/empleado/super_admin). 211.1 HITO 6 */
+  /** Rol del usuario (super_admin | ROL00X del tenant). */
   get rol() {
     return this._authContext.rol;
   }
   setContext(tenantId, brandId) {
-    if (this._authContext.mode !== "cowork") {
-      throw new Error("set_context solo disponible en Modo Cowork");
+    if (!this._authContext.canSwitchTenant) {
+      throw new Error("set_context solo disponible para usuarios con permiso multi-tenant (super_admin).");
     }
     this.context.tenantId = tenantId;
     this.context.brandId = brandId;
   }
   /**
-   * Actualiza el contexto despues de connect_account (Modo B)
+   * Revoca canSwitchTenant en runtime. Usado cuando el bootstrap detecta
+   * token expirado — el usuario debe re-autenticar via connect_account
+   * antes de poder cambiar de tenant.
+   */
+  revokeCrossTenant() {
+    this._authContext.canSwitchTenant = false;
+  }
+  /**
+   * Actualiza el contexto después de connect_account.
    */
   setTenantContext(tenantId, brandId, brands, userId, userName) {
     this.context.tenantId = tenantId;
@@ -160,16 +190,10 @@ var Session = class {
     this._authContext.userId = userId;
     this._authContext.userName = userName;
   }
-  /**
-   * Fuerza el modo (usado cuando credentials existen pero token expiro)
-   */
-  forceMode(newMode) {
-    this._authContext.mode = newMode;
-  }
   requireTenant() {
     if (!this.context.tenantId) {
       throw new Error(
-        this._authContext.mode === "cowork" ? "Usa set_context para seleccionar un tenant primero" : "No conectado. Usa connect_account para conectar tu cuenta de Ponch"
+        this._authContext.canSwitchTenant ? "Usa set_context para seleccionar un tenant primero." : "No conectado. Usa connect_account para conectar tu cuenta de Ponch."
       );
     }
     return this.context.tenantId;
@@ -188,11 +212,11 @@ var import_app = require("firebase/app");
 var import_lite = require("firebase/firestore/lite");
 var import_auth = require("firebase/auth");
 var import_fs2 = require("fs");
-var mode = "none";
+var sdkMode = "none";
 var adminDb;
 var clientDb;
 function initFirebaseAdmin(serviceAccountPath) {
-  if (mode !== "none") return;
+  if (sdkMode !== "none") return;
   const serviceAccount = JSON.parse(
     (0, import_fs2.readFileSync)(serviceAccountPath, "utf-8")
   );
@@ -200,10 +224,10 @@ function initFirebaseAdmin(serviceAccountPath) {
     credential: import_firebase_admin.default.credential.cert(serviceAccount)
   });
   adminDb = import_firebase_admin.default.firestore();
-  mode = "admin";
+  sdkMode = "admin";
 }
 async function initFirebaseClient() {
-  if (mode !== "none") return true;
+  if (sdkMode !== "none") return true;
   const creds = readCredentials();
   if (!creds) {
     console.error("[firestore] No hay credentials.json");
@@ -221,7 +245,7 @@ async function initFirebaseClient() {
         if (newCustomToken) {
           await (0, import_auth.signInWithCustomToken)(auth, newCustomToken);
           clientDb = (0, import_lite.getFirestore)(app);
-          mode = "client";
+          sdkMode = "client";
           saveCredentials({ ...creds, customToken: newCustomToken });
           console.error("[firestore] Firebase Client re-autenticado con refreshToken");
           return true;
@@ -241,7 +265,7 @@ async function initFirebaseClient() {
         console.error("[firestore] refreshToken guardado para futuras sesiones");
       }
       clientDb = (0, import_lite.getFirestore)(app);
-      mode = "client";
+      sdkMode = "client";
       console.error("[firestore] Firebase Client autenticado con customToken");
       return true;
     } catch (err) {
@@ -306,27 +330,27 @@ async function reauthClient(customToken) {
       console.error("[firestore] refreshToken guardado");
     }
     clientDb = (0, import_lite.getFirestore)(app);
-    mode = "client";
+    sdkMode = "client";
     return true;
   } catch (err) {
     console.error("[firestore] Error re-autenticando:", err);
     return false;
   }
 }
-function getMode() {
-  return mode;
+function getSdkMode() {
+  return sdkMode;
 }
 function getAdminDb() {
-  if (mode !== "admin") {
-    throw new Error("getAdminDb: modo admin requerido (actual: " + mode + ")");
+  if (sdkMode !== "admin") {
+    throw new Error("getAdminDb: SDK admin requerido (actual: " + sdkMode + ")");
   }
   return adminDb;
 }
 async function queryByTenant(session, collectionName, filters = [], options = {}) {
   const tenantId = session.requireTenant();
-  if (mode === "admin") {
+  if (sdkMode === "admin") {
     return queryByTenantAdmin(tenantId, collectionName, filters, options);
-  } else if (mode === "client") {
+  } else if (sdkMode === "client") {
     return queryByTenantClient(tenantId, collectionName, filters, options);
   }
   throw new Error("Firebase no inicializado");
@@ -362,11 +386,11 @@ async function queryByTenantClient(tenantId, collectionName, filters, options) {
   return snapshot.docs.map((doc) => ({ id: doc.id, ...doc.data() }));
 }
 async function readDoc(collectionName, docId) {
-  if (mode === "admin") {
+  if (sdkMode === "admin") {
     const doc = await adminDb.collection(collectionName).doc(docId).get();
     if (!doc.exists) return null;
     return { id: doc.id, ...doc.data() };
-  } else if (mode === "client") {
+  } else if (sdkMode === "client") {
     const ref = (0, import_lite.doc)(clientDb, collectionName, docId);
     const doc = await (0, import_lite.getDoc)(ref);
     if (!doc.exists()) return null;
@@ -374,10 +398,21 @@ async function readDoc(collectionName, docId) {
   }
   throw new Error("Firebase no inicializado");
 }
+async function listCollection(path) {
+  if (sdkMode === "admin") {
+    const snap = await adminDb.collection(path).get();
+    return snap.docs.map((doc) => ({ id: doc.id, ...doc.data() }));
+  } else if (sdkMode === "client") {
+    const ref = (0, import_lite.collection)(clientDb, path);
+    const snap = await (0, import_lite.getDocs)(ref);
+    return snap.docs.map((doc) => ({ id: doc.id, ...doc.data() }));
+  }
+  throw new Error("Firebase no inicializado");
+}
 async function writeDoc(collectionName, docId, data) {
-  if (mode === "admin") {
+  if (sdkMode === "admin") {
     await adminDb.collection(collectionName).doc(docId).set(data, { merge: true });
-  } else if (mode === "client") {
+  } else if (sdkMode === "client") {
     const ref = (0, import_lite.doc)(clientDb, collectionName, docId);
     await (0, import_lite.setDoc)(ref, data, { merge: true });
   } else {
@@ -385,9 +420,9 @@ async function writeDoc(collectionName, docId, data) {
   }
 }
 async function updateDoc(collectionName, docId, data) {
-  if (mode === "admin") {
+  if (sdkMode === "admin") {
     await adminDb.collection(collectionName).doc(docId).update(data);
-  } else if (mode === "client") {
+  } else if (sdkMode === "client") {
     const ref = (0, import_lite.doc)(clientDb, collectionName, docId);
     await (0, import_lite.updateDoc)(ref, data);
   } else {
@@ -395,7 +430,7 @@ async function updateDoc(collectionName, docId, data) {
   }
 }
 function serverTimestamp() {
-  if (mode === "admin") {
+  if (sdkMode === "admin") {
     return import_firebase_admin.default.firestore.FieldValue.serverTimestamp();
   } else {
     return (0, import_lite.serverTimestamp)();
@@ -407,10 +442,10 @@ var import_zod = require("zod");
 var import_functions = require("firebase/functions");
 var import_app2 = require("firebase/app");
 function registerContextTools(server, session) {
-  if (session.mode === "cowork") {
+  if (session.canSwitchTenant) {
     server.tool(
       "set_context",
-      "Establece el tenant y brand para esta sesion. Solo disponible en Modo Cowork (admin).",
+      "Establece el tenant y brand para esta sesion. Solo disponible para super_admin.",
       {
         tenantId: import_zod.z.string().describe('ID del tenant (ej: "atteyo")'),
         brandId: import_zod.z.string().describe('ID de la brand (ej: "ponch")')
@@ -418,8 +453,8 @@ function registerContextTools(server, session) {
       async ({ tenantId, brandId }) => {
         const brand = await readDoc(`tenants/${tenantId}/marketing_config`, brandId);
         if (!brand) {
-          const brandsSnap = await getAdminDb().collection("tenants").doc(tenantId).collection("marketing_config").get();
-          if (brandsSnap.empty) {
+          const brands = await listCollection(`tenants/${tenantId}/marketing_config`);
+          if (brands.length === 0) {
             return {
               content: [{ type: "text", text: JSON.stringify({ ok: false, error: `Tenant "${tenantId}" no tiene marketing_config` }) }]
             };
@@ -430,7 +465,7 @@ function registerContextTools(server, session) {
               text: JSON.stringify({
                 ok: false,
                 error: `Brand "${brandId}" no existe en tenant "${tenantId}"`,
-                brandsDisponibles: brandsSnap.docs.map((d) => d.id)
+                brandsDisponibles: brands.map((b) => b.id)
               })
             }]
           };
@@ -2120,7 +2155,7 @@ var TenantStatusFieldsSchema = import_zod14.z.object({
   cancellation: CancellationInfoSchema
 }).passthrough();
 var AuditActorSchema = import_zod15.z.object({
-  type: import_zod15.z.enum(["user", "martin", "system", "cf_scheduled", "webhook"]),
+  type: import_zod15.z.enum(["user", "martin", "mcp_client", "system", "cf_scheduled", "webhook"]),
   uid: import_zod15.z.string().nullable(),
   nombre: import_zod15.z.string(),
   metadata: import_zod15.z.record(import_zod15.z.string(), import_zod15.z.any()).optional()
@@ -2734,6 +2769,9 @@ var import_firebase_admin3 = require("firebase-admin");
 var import_zod27 = require("zod");
 var import_zod28 = require("zod");
 var import_zod29 = require("zod");
+var import_fs3 = require("fs");
+var import_path2 = require("path");
+var import_url = require("url");
 var import_firebase_admin4 = require("firebase-admin");
 var import_firebase_admin5 = require("firebase-admin");
 var import_firebase_admin6 = require("firebase-admin");
@@ -2753,6 +2791,7 @@ var import_zod34 = require("zod");
 var import_firestore7 = require("firebase-admin/firestore");
 var import_zod35 = require("zod");
 var import_firestore8 = require("firebase-admin/firestore");
+var import_meta = {};
 var RULE_NEGATIVES = {
   allowFaces: "no people, no faces, no hands",
   allowProductTransform: "no distorted products, no warped objects",
@@ -3013,6 +3052,74 @@ var planWriter = {
   save,
   updateField
 };
+var _localeCache = {};
+function _resolveLocaleFile(locale) {
+  let baseDir;
+  try {
+    baseDir = typeof __dirname !== "undefined" ? __dirname : (0, import_path2.dirname)((0, import_url.fileURLToPath)(import_meta.url));
+  } catch {
+    baseDir = process.cwd();
+  }
+  const candidates = [
+    (0, import_path2.join)(baseDir, "..", "..", "..", "..", "src", "i18n", "locales", `${locale}.json`),
+    (0, import_path2.join)(baseDir, "..", "..", "..", "src", "i18n", "locales", `${locale}.json`)
+  ];
+  for (const candidate of candidates) {
+    try {
+      (0, import_fs3.readFileSync)(candidate, "utf-8");
+      return candidate;
+    } catch {
+      continue;
+    }
+  }
+  throw new Error(
+    `getMessage: locale file '${locale}.json' not found. Tried:
+` + candidates.map((c) => `  - ${c}`).join("\n")
+  );
+}
+function _loadLocale(locale) {
+  if (_localeCache[locale]) return _localeCache[locale];
+  const path2 = _resolveLocaleFile(locale);
+  const raw = (0, import_fs3.readFileSync)(path2, "utf-8");
+  const data = JSON.parse(raw);
+  _localeCache[locale] = data;
+  return data;
+}
+function _resolvePath(obj, path2) {
+  const parts = path2.split(".");
+  let current = obj;
+  for (const part of parts) {
+    if (current === null || typeof current !== "object") return null;
+    current = current[part];
+  }
+  return typeof current === "string" ? current : null;
+}
+function _interpolate(template, vars, context) {
+  return template.replace(/\{(\w+)\}/g, (_match, key) => {
+    if (!vars || !(key in vars)) {
+      throw new Error(
+        `getMessage: variable '${key}' in template '${context.path}' (${context.locale}) not provided in vars. Pass { ${key}: '...' } when calling getMessage.`
+      );
+    }
+    return vars[key];
+  });
+}
+var SUPPORTED_LOCALES = ["es", "en"];
+function getMessage(path2, locale, vars) {
+  if (!SUPPORTED_LOCALES.includes(locale)) {
+    throw new Error(
+      `getMessage: locale '${locale}' not supported. Active locales: ${SUPPORTED_LOCALES.join(", ")}.`
+    );
+  }
+  const data = _loadLocale(locale);
+  const template = _resolvePath(data, path2);
+  if (template === null) {
+    throw new Error(
+      `getMessage: path '${path2}' not found in locale '${locale}'. Add it to src/i18n/locales/${locale}.json.`
+    );
+  }
+  return _interpolate(template, vars, { path: path2, locale });
+}
 var DisabledReasonCodeSchema = import_zod29.z.enum([
   "paywall",
   // Acción requiere upgrade de plan
@@ -3038,44 +3145,8 @@ var DisabledOutputSchema = import_zod29.z.object({
    */
   detail: import_zod29.z.record(import_zod29.z.string(), import_zod29.z.string()).optional()
 });
-var TEMPLATES = {
-  es: {
-    paywall: "Esta acci\xF3n requiere actualizar tu plan.",
-    oauth_missing: "Necesitas conectar {service} primero.",
-    data_missing: "Falta informaci\xF3n: {detail}",
-    plan_not_includes: "Tu plan no incluye {feature}",
-    feature_disabled: "Esta funci\xF3n est\xE1 deshabilitada para tu cuenta.",
-    other: "{detail}"
-  },
-  en: {
-    paywall: "This action requires upgrading your plan.",
-    oauth_missing: "You need to connect {service} first.",
-    data_missing: "Missing information: {detail}",
-    plan_not_includes: "Your plan doesn't include {feature}",
-    feature_disabled: "This feature is disabled for your account.",
-    other: "{detail}"
-  }
-};
 function getDisabledMessage(code, locale, vars) {
-  if (!(locale in TEMPLATES)) {
-    throw new Error(
-      `Locale '${locale}' no soportado en disabledMessages. Locales activos: ${Object.keys(TEMPLATES).join(", ")}.`
-    );
-  }
-  const template = TEMPLATES[locale][code];
-  if (!template) {
-    throw new Error(
-      `Disabled code '${code}' no tiene template definido para locale '${locale}'.`
-    );
-  }
-  return template.replace(/\{(\w+)\}/g, (_match, key) => {
-    if (!vars || !(key in vars)) {
-      throw new Error(
-        `getDisabledMessage: variable '${key}' del template '${code}' (${locale}) no provista en vars. Helper debe pasar { ${key}: '...' } en detail.`
-      );
-    }
-    return vars[key];
-  });
+  return getMessage(`marketing.disabled.${code}`, locale, vars);
 }
 var SideEffectEnum = import_zod28.z.enum([
   "reads_firestore",
@@ -3107,6 +3178,10 @@ var ExtractTargetPathSchema = import_zod28.z.custom((val) => typeof val === "fun
 var ExtractChangesSchema = import_zod28.z.custom((val) => typeof val === "function", {
   message: "extractChanges debe ser funci\xF3n (input, output) => { before, after }"
 });
+var InputPredicateSchema = import_zod28.z.custom(
+  (val) => typeof val === "function",
+  { message: "predicado debe ser funci\xF3n (input) => boolean" }
+);
 var MartinContractSchema = import_zod28.z.object({
   // Schema versioning (Dim 4 backbone)
   schemaVersion: import_zod28.z.literal(1).default(1),
@@ -3122,6 +3197,16 @@ var MartinContractSchema = import_zod28.z.object({
   destructive: import_zod28.z.boolean(),
   affectsPublication: import_zod28.z.boolean(),
   affectsExternal: import_zod28.z.boolean(),
+  /**
+   * Override runtime del flag `destructive`. Si el predicado retorna
+   * true para un input específico, el wrapper trata la invocación
+   * como destructiva aun si `destructive: false`. Útil cuando una
+   * misma tool tiene 2 modos según args (ej. update con
+   * accionContenidoExistente='descartar').
+   */
+  isDestructiveForInput: InputPredicateSchema.optional(),
+  /** Mismo patrón para affectsPublication (override runtime). */
+  isPublicationForInput: InputPredicateSchema.optional(),
   // Presentación al usuario (i18n)
   martinSummaryTemplate: SummaryTemplateSchema,
   martinConfirmationTemplate: ConfirmationTemplateSchema.optional(),
@@ -3262,7 +3347,7 @@ var OutputSchema = import_zod27.z.discriminatedUnion("ok", [
 ]);
 var rawContract = {
   name: "save_marketing_plan",
-  description: "Guarda el plan de marketing de una brand. Si el plan incluye blogStrategy, la extrae al nivel brand (no dentro de plan).",
+  description: "Save a marketing plan for a brand. If the plan object includes a blogStrategy field, it is extracted and stored at brand level (not nested inside plan).",
   paramsSchema: ParamsSchema,
   outputSchema: OutputSchema,
   // No es destructivo (sobrescribe plan completo, pero plan se regenera fácil),
@@ -3566,7 +3651,7 @@ var OutputSchema2 = import_zod30.z.discriminatedUnion("ok", [
 ]);
 var rawContract2 = {
   name: "add_calendar_slot",
-  description: "Agrega un slot nuevo al calendario editorial. NO modifica slots existentes \u2014 para eso usa update_calendar_slot.",
+  description: "Add a new slot to the editorial calendar. Does NOT modify existing slots \u2014 use update_calendar_slot for that.",
   paramsSchema: ParamsSchema2,
   outputSchema: OutputSchema2,
   requiresConfirmation: false,
@@ -3636,7 +3721,7 @@ async function calendarSlotUpdater(input) {
   if (slotIndex >= items.length) {
     return {
       ok: false,
-      error: `slotIndex ${slotIndex} no existe (semana ${semana} tiene ${items.length} slots). Para agregar un slot nuevo usa add_calendar_slot.`,
+      error: `slotIndex=${slotIndex} >= items.length=${items.length} for week=${semana}`,
       code: "SLOT_NOT_FOUND"
     };
   }
@@ -3648,14 +3733,9 @@ async function calendarSlotUpdater(input) {
   if (oldContenidoRef && tocaSemantica && !accionContenidoExistente) {
     return {
       ok: false,
-      error: `El slot tiene contenidoRef previo "${oldContenidoRef}" y los cambios tocan campos semanticos (${CAMPOS_SEMANTICOS.filter((f) => f in cambios).join(", ")}). El sistema NO decide automaticamente que hacer con el contenido viejo. Pregunta al tenant y vuelve a llamar con accionContenidoExistente en una de las 4 opciones.`,
+      error: `slot has contenidoRef=${oldContenidoRef} and cambios touch semantic fields=[${CAMPOS_SEMANTICOS.filter((f) => f in cambios).join(",")}]; require accionContenidoExistente`,
       code: "ACCION_CONTENIDO_EXISTENTE_REQUIRED",
-      opciones: [
-        `'descartar'                \u2014 marcar "${oldContenidoRef}" como descartado y aplicar cambios en este slot`,
-        `'mover:semana:N:slot:M'    \u2014 mover "${oldContenidoRef}" al slot destino N/M (target debe estar vacio) y aplicar cambios aqui`,
-        `'nuevo_slot'               \u2014 NO tocar este slot ni "${oldContenidoRef}". Crear un slot nuevo el mismo dia con los cambios (util para multiples publicaciones/dia \u2014 ej: almuerzo + cena GBP)`,
-        `'mantener'                 \u2014 mantener "${oldContenidoRef}" aqui y aplicar cambios (caso typo fix, el contenido viejo sigue valido para el nuevo keyword/tema)`
-      ]
+      opciones: ["descartar", "mover", "nuevo_slot", "mantener"]
     };
   }
   let contenidosADescartar = [];
@@ -3675,7 +3755,7 @@ async function calendarSlotUpdater(input) {
     if (!m) {
       return {
         ok: false,
-        error: `accionContenidoExistente "${accionContenidoExistente}" invalido. Formato: mover:semana:N:slot:M`,
+        error: `accionContenidoExistente="${accionContenidoExistente}" invalid format (expected: mover:semana:N:slot:M)`,
         code: "MOVE_TARGET_INVALID"
       };
     }
@@ -3684,7 +3764,7 @@ async function calendarSlotUpdater(input) {
     if (targetSemanaNum === semana && targetSlotIdx === slotIndex) {
       return {
         ok: false,
-        error: "mover al mismo slot origen no tiene sentido. Usa 'mantener' si quieres conservar el contenido aqui.",
+        error: "move target same as origin (semantic noop)",
         code: "MOVE_TARGET_INVALID"
       };
     }
@@ -3692,7 +3772,7 @@ async function calendarSlotUpdater(input) {
     if (!targetSemana) {
       return {
         ok: false,
-        error: `Target semana ${targetSemanaNum} no existe en el calendario`,
+        error: `target semana=${targetSemanaNum} does not exist`,
         code: "MOVE_TARGET_INVALID"
       };
     }
@@ -3700,14 +3780,14 @@ async function calendarSlotUpdater(input) {
     if (!targetItems[targetSlotIdx]) {
       return {
         ok: false,
-        error: `Target slot ${targetSlotIdx} no existe en semana ${targetSemanaNum}`,
+        error: `target slot=${targetSlotIdx} does not exist in semana=${targetSemanaNum}`,
         code: "MOVE_TARGET_INVALID"
       };
     }
     if (targetItems[targetSlotIdx].contenidoRef) {
       return {
         ok: false,
-        error: `Target slot ya tiene contenidoRef "${targetItems[targetSlotIdx].contenidoRef}". No se sobrescribe para evitar perder contenido ajeno. Elige otro slot o usa 'descartar'.`,
+        error: `target slot already has contenidoRef=${targetItems[targetSlotIdx].contenidoRef}`,
         code: "MOVE_TARGET_OCCUPIED"
       };
     }
@@ -3889,18 +3969,25 @@ var OutputSchema3 = import_zod31.z.discriminatedUnion("ok", [
 ]);
 var rawContract3 = {
   name: "update_calendar_slot",
-  description: "MODIFICA un slot existente del calendario editorial. NO agrega slots nuevos \u2014 para eso usa add_calendar_slot. Si el slot ten\xEDa contenidoRef previo y los cambios tocan campos sem\xE1nticos (keyword/tema/plataforma/tipo), exige accionContenidoExistente con 4 opciones: descartar | mover:semana:N:slot:M | nuevo_slot | mantener.",
+  description: "MODIFY an existing slot in the editorial calendar. Does NOT add new slots \u2014 use add_calendar_slot for that. If the slot already had a contenidoRef and the changes touch semantic fields (keyword/tema/plataforma/tipo), requires accionContenidoExistente with 4 options: descartar | mover:semana:N:slot:M | nuevo_slot | mantener.",
   paramsSchema: ParamsSchema3,
   outputSchema: OutputSchema3,
+  // Por default, modificar un slot es reversible (cambias campos cosméticos).
+  // PERO si accionContenidoExistente='descartar', el helper marca el
+  // contenido vinculado como descartado — eso SÍ es destructivo. El predicado
+  // runtime `isDestructiveForInput` lo detecta y obliga al wrapper a pedir
+  // confirmación en ese caso específico.
   requiresConfirmation: false,
   destructive: false,
-  // Mutación, pero reversible (puede deshacerse cambiando el slot).
+  isDestructiveForInput: (input) => input.accionContenidoExistente === "descartar",
   affectsPublication: false,
   affectsExternal: false,
   martinSummaryTemplate: (input, output, locale) => {
     if (!output.ok) {
-      if (locale === "en") return `I couldn't update the slot: ${output.error}`;
-      return `No pude actualizar el slot: ${output.error}`;
+      if (output.code) {
+        return getMessage(`marketing.errors.${output.code}`, locale);
+      }
+      return getMessage("marketing.safeError.generic", locale);
     }
     const verb = {
       updated: locale === "en" ? "updated" : "actualic\xE9",
@@ -3912,6 +3999,15 @@ var rawContract3 = {
     }
     return `${verb[0].toUpperCase() + verb.slice(1)} el slot en la semana ${input.semana} (${input.mes}).`;
   },
+  // Confirmation message when isDestructiveForInput returns true
+  // (accionContenidoExistente === 'descartar'). Only invoked if the wrapper
+  // detects the destructive runtime case and asks the user for OK.
+  martinConfirmationTemplate: (input, locale) => {
+    if (locale === "en") {
+      return `Are you sure? This will discard the existing content linked to slot ${input.slotIndex} in week ${input.semana} (${input.mes}). The content will be marked as discarded and cannot be easily recovered.`;
+    }
+    return `\xBFConfirmas? Esto descarta el contenido existente del slot ${input.slotIndex} en la semana ${input.semana} (${input.mes}). El contenido queda marcado como descartado y no se recupera f\xE1cilmente.`;
+  },
   auditAction: "marketing.calendario.slot.actualizar",
   extractTargetPath: (input) => `tenants/${input.tenantId}/marketing_calendario/(brand=${input.brandId},mes=${input.mes}).semana=${input.semana}.slot=${input.slotIndex}`,
   extractChanges: (input, output) => ({
@@ -3968,7 +4064,7 @@ var OutputSchema4 = import_zod32.z.object({
 });
 var rawContract4 = {
   name: "get_calendar",
-  description: "Lee el calendario editorial del mes para una brand. Retorna semanas con items planificados por plataforma.",
+  description: "Read the editorial calendar for a given brand and month. Returns weeks with planned items per platform.",
   paramsSchema: ParamsSchema4,
   outputSchema: OutputSchema4,
   requiresConfirmation: false,
@@ -4304,7 +4400,7 @@ var OutputSchema5 = import_zod33.z.discriminatedUnion("ok", [
 ]);
 var rawContract5 = {
   name: "generate_brand_brief",
-  description: "Prepara los datos del negocio (Shopify, SEO, GBP, site_content scrape, brand config, ubicaciones del tenant) para que el sistema genere un Brand Brief pre-llenado. NO escribe el brief \u2014 s\xF3lo arma el payload.",
+  description: "Aggregate business data (Shopify, SEO, GBP, scraped site_content, brand config, tenant locations) into a payload to generate a pre-filled Brand Brief. Read-only \u2014 does NOT write the brief; the caller saves it via save_brand_brief.",
   paramsSchema: ParamsSchema5,
   outputSchema: OutputSchema5,
   // Lectura pura, sin side effects de escritura ni publicación.
@@ -5060,7 +5156,7 @@ function diversify(items, jaccardThreshold = 0.6) {
 }
 async function contentFinder(input) {
   const { db, tenantId, brandId, contexto, fecha, include, limit, diversidad, deps } = input;
-  const mode2 = input.mode ?? "text";
+  const mode = input.mode ?? "text";
   const textThreshold = deps.thresholds?.text ?? DEFAULT_TEXT_THRESHOLD;
   const imageThreshold = deps.thresholds?.image ?? DEFAULT_IMAGE_THRESHOLD;
   const conflictThreshold = deps.thresholds?.conflictSimilarity ?? DEFAULT_CONFLICT_THRESHOLD;
@@ -5091,7 +5187,7 @@ async function contentFinder(input) {
       queryEmbedding: queryEmbedding ?? void 0,
       queryText
     };
-    if (mode2 === "text") {
+    if (mode === "text") {
       return safeSearch(true, {
         ...baseParams,
         limit: lim,
@@ -6320,6 +6416,90 @@ async function checkQuota(tenantId, quotaName) {
 async function getCurrentUsage(_tenantId, _quotaName) {
   return 0;
 }
+var NIVELES_CANONICOS = [
+  "ninguno",
+  "ver",
+  "editar",
+  "completo"
+];
+var CACHE_TTL_MS = 60 * 1e3;
+var _rolesCache = /* @__PURE__ */ new Map();
+var _userCache = /* @__PURE__ */ new Map();
+function _getCached(map, key) {
+  const entry = map.get(key);
+  if (!entry) return void 0;
+  if (Date.now() - entry.t > CACHE_TTL_MS) {
+    map.delete(key);
+    return void 0;
+  }
+  return entry.data;
+}
+function _setCached(map, key, data) {
+  map.set(key, { t: Date.now(), data });
+}
+async function _readRolesDoc(db, tenantId) {
+  const key = `roles:${tenantId}`;
+  const cached = _getCached(_rolesCache, key);
+  if (cached !== void 0) return cached;
+  const ref = db.collection("configuracion").doc(`${tenantId}_roles`);
+  const snap = await ref.get();
+  const data = snap.exists ? snap.data() : null;
+  _setCached(_rolesCache, key, data);
+  return data;
+}
+async function _readUserDoc(db, uid) {
+  const key = `user:${uid}`;
+  const cached = _getCached(_userCache, key);
+  if (cached !== void 0) return cached;
+  const ref = db.collection("usuarios").doc(uid);
+  const snap = await ref.get();
+  const data = snap.exists ? snap.data() : null;
+  _setCached(_userCache, key, data);
+  return data;
+}
+async function getUserContext({
+  db,
+  tenantId,
+  uid
+}) {
+  const userDoc = await _readUserDoc(db, uid);
+  if (!userDoc) {
+    throw new Error(`userContext: usuario ${uid} no encontrado.`);
+  }
+  const rolId = userDoc.rol ?? "empleado";
+  const rolNombre = rolId === "super_admin" ? "Super Admin" : await _resolveRolNombre(db, tenantId, rolId);
+  return {
+    uid,
+    nombre: userDoc.nombre ?? userDoc.email ?? "Usuario",
+    email: userDoc.email ?? null,
+    rolId,
+    rolNombre,
+    idiomaPreferido: userDoc.idiomaPreferido ?? "es"
+  };
+}
+async function _resolveRolNombre(db, tenantId, rolId) {
+  const rolesData = await _readRolesDoc(db, tenantId);
+  if (!rolesData) return null;
+  const rolData = rolesData[rolId];
+  return rolData?.nombre ?? null;
+}
+async function getUserPermissionLevel({
+  db,
+  tenantId,
+  userRol,
+  modulo
+}) {
+  if (userRol === "super_admin") return "completo";
+  if (!userRol) return "ninguno";
+  const rolesData = await _readRolesDoc(db, tenantId);
+  if (!rolesData) return "ninguno";
+  const rolData = rolesData[userRol];
+  if (!rolData || rolData.activo === false) return "ninguno";
+  const permisos = rolData.permisosPorModulo || {};
+  const nivel = permisos[modulo];
+  if (!nivel || !NIVELES_CANONICOS.includes(nivel)) return "ninguno";
+  return nivel;
+}
 async function resolveTenantIdioma(tenantId) {
   const db = (0, import_firestore5.getFirestore)();
   const tenantSnap = await db.doc(`tenants/${tenantId}`).get();
@@ -6335,72 +6515,44 @@ async function resolveTenantIdioma(tenantId) {
   }
   return idioma;
 }
-var MESSAGES = {
-  es: {
-    generic: "Tuve un problema. Intent\xE9moslo de nuevo en un momento.",
-    quota_exceeded: "Alcanzaste el l\xEDmite mensual.",
-    not_found: "No lo encontr\xE9. \xBFPodr\xEDas verificar el dato?",
-    permission: "No tengo permiso para hacer eso desde tu cuenta.",
-    timeout: "Esto est\xE1 tardando m\xE1s de lo normal. \xBFLo intento de nuevo?"
-  },
-  en: {
-    generic: "I had a problem. Let's try again in a moment.",
-    quota_exceeded: "You reached the monthly limit.",
-    not_found: "I couldn't find it. Could you verify the data?",
-    permission: "I don't have permission to do that from your account.",
-    timeout: "This is taking longer than usual. Should I try again?"
-  }
-};
 function martinSafeError(err, locale) {
-  if (!(locale in MESSAGES)) {
-    throw new Error(
-      `Locale '${locale}' no soportado en martinSafeError. Locales activos: ${Object.keys(MESSAGES).join(", ")}. Agregar traducciones antes de usar.`
-    );
-  }
-  const msgs = MESSAGES[locale];
   const e = err;
   const message = e?.message ?? "";
   const code = e?.code ?? "";
-  if (/quota|límite|limit/i.test(message)) return msgs.quota_exceeded;
-  if (/not.found|no.encontrado|no existe/i.test(message)) return msgs.not_found;
-  if (/permission|permiso/i.test(message)) return msgs.permission;
-  if (code === "deadline-exceeded" || /timeout/i.test(message)) return msgs.timeout;
-  return msgs.generic;
-}
-var MESSAGES2 = {
-  es: {
-    denied_role: "No tengo permiso para hacer eso desde tu cuenta. P\xEDdelo al encargado o admin que te autorice.",
-    input_invalido: "Falta algo o est\xE1 mal. \xBFLo intentamos de nuevo?",
-    confirm_default: "\xBFConfirmas?"
-  },
-  en: {
-    denied_role: "I don't have permission to do that from your account. Ask the manager or admin to authorize it.",
-    input_invalido: "Something is missing or off. Could you try again?",
-    confirm_default: "Are you sure?"
-  }
-};
+  let key = "generic";
+  if (/quota|límite|limit/i.test(message)) key = "quota_exceeded";
+  else if (/not.found|no.encontrado|no existe/i.test(message)) key = "not_found";
+  else if (/permission|permiso/i.test(message)) key = "permission";
+  else if (code === "deadline-exceeded" || /timeout/i.test(message)) key = "timeout";
+  return getMessage(`marketing.safeError.${key}`, locale);
+}
 function getWrapperMessage(key, locale) {
-  if (!(locale in MESSAGES2)) {
-    throw new Error(
-      `Locale '${locale}' no soportado en getWrapperMessage. Locales activos: ${Object.keys(MESSAGES2).join(", ")}. Agregar traducciones antes de usar.`
-    );
-  }
-  const msg = MESSAGES2[locale][key];
-  if (!msg) {
-    throw new Error(
-      `Mensaje '${key}' no definido en wrapperMessages para locale '${locale}'.`
-    );
-  }
-  return msg;
+  return getMessage(`marketing.wrapper.${key}`, locale);
 }
 var NIVELES_ORDER = ["ninguno", "ver", "editar", "completo"];
-function nivelAlcanza(nivel, accion) {
+function nivelAlcanza2(nivel, accion) {
   return NIVELES_ORDER.indexOf(nivel) >= NIVELES_ORDER.indexOf(accion);
 }
 function wrapWithContract(contract, helper, options = {}) {
   return async function wrappedTool(input, ctx) {
     const startMs = Date.now();
     const locale = ctx.user.idiomaPreferido;
+    const actorType = ctx.user.clientType === "martin" ? "martin" : "mcp_client";
+    const buildActor = () => {
+      const base = {
+        type: actorType,
+        uid: ctx.user.uid,
+        nombre: ctx.user.nombre
+      };
+      const cm = ctx.user.clientMetadata;
+      if (cm && (cm.mcpClient || cm.mcpClientVersion)) {
+        base.metadata = {
+          ...cm.mcpClient ? { mcpClient: cm.mcpClient } : {},
+          ...cm.mcpClientVersion ? { mcpClientVersion: cm.mcpClientVersion } : {}
+        };
+      }
+      return base;
+    };
     let accesoOk = false;
     let reqDesc = "";
     switch (contract.permissionScope) {
@@ -6425,7 +6577,7 @@ function wrapWithContract(contract, helper, options = {}) {
           userRol: ctx.user.rol,
           modulo: contract.permissionKey
         });
-        accesoOk = nivelAlcanza(nivel, contract.permissionAction);
+        accesoOk = nivelAlcanza2(nivel, contract.permissionAction);
         break;
       }
       case "self": {
@@ -6449,7 +6601,7 @@ function wrapWithContract(contract, helper, options = {}) {
       await writeAuditLog({
         tenantId: ctx.tenantId,
         brandId: ctx.brandId ?? null,
-        actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+        actor: buildActor(),
         action: contract.auditAction,
         motivo: `Acceso denegado \u2014 rol '${ctx.user.rol}' sin permiso para ${reqDesc}`,
         conversacionId: ctx.conversacionId ?? null,
@@ -6481,7 +6633,7 @@ function wrapWithContract(contract, helper, options = {}) {
       await writeAuditLog({
         tenantId: ctx.tenantId,
         brandId: ctx.brandId ?? null,
-        actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+        actor: buildActor(),
         action: contract.auditAction,
         motivo: "Input inv\xE1lido \u2014 Zod parse failed",
         conversacionId: ctx.conversacionId ?? null,
@@ -6497,7 +6649,10 @@ function wrapWithContract(contract, helper, options = {}) {
       };
     }
     const parsedInput = parseResult.data;
-    if (contract.requiresConfirmation && !ctx.confirmationGranted) {
+    const effectiveDestructive = contract.isDestructiveForInput?.(parsedInput) ?? contract.destructive;
+    const effectivePublication = contract.isPublicationForInput?.(parsedInput) ?? contract.affectsPublication;
+    const effectiveRequiresConfirmation = contract.requiresConfirmation || effectiveDestructive || effectivePublication;
+    if (effectiveRequiresConfirmation && !ctx.confirmationGranted) {
       const confirmMsg = contract.martinConfirmationTemplate ? contract.martinConfirmationTemplate(parsedInput, locale) : getWrapperMessage("confirm_default", locale);
       return {
         text: confirmMsg,
@@ -6522,7 +6677,7 @@ function wrapWithContract(contract, helper, options = {}) {
         await writeAuditLog({
           tenantId: ctx.tenantId,
           brandId: ctx.brandId ?? null,
-          actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+          actor: buildActor(),
           action: contract.auditAction,
           motivo: `Quota excedida \u2014 ${quotaName}: ${check.current}/${check.limit}`,
           conversacionId: ctx.conversacionId ?? null,
@@ -6544,9 +6699,9 @@ function wrapWithContract(contract, helper, options = {}) {
       await writeAuditLog({
         tenantId: ctx.tenantId,
         brandId: ctx.brandId ?? null,
-        actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+        actor: buildActor(),
         action: contract.auditAction,
-        motivo: "Acci\xF3n solicitada v\xEDa Martin",
+        motivo: `Acci\xF3n solicitada v\xEDa ${actorType}`,
         conversacionId: ctx.conversacionId ?? null,
         status: "error",
         errorMessage: err?.message ?? "unknown",
@@ -6573,7 +6728,7 @@ function wrapWithContract(contract, helper, options = {}) {
       await writeAuditLog({
         tenantId: ctx.tenantId,
         brandId: ctx.brandId ?? null,
-        actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+        actor: buildActor(),
         action: contract.auditAction,
         motivo: `Output del helper inv\xE1lido \u2014 bug de "${contract.name}"`,
         conversacionId: ctx.conversacionId ?? null,
@@ -6606,7 +6761,7 @@ function wrapWithContract(contract, helper, options = {}) {
       await writeAuditLog({
         tenantId: ctx.tenantId,
         brandId: ctx.brandId ?? null,
-        actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+        actor: buildActor(),
         action: contract.auditAction,
         motivo: `disabled \u2014 ${code}${detail ? `: ${JSON.stringify(detail)}` : ""}`,
         conversacionId: ctx.conversacionId ?? null,
@@ -6625,11 +6780,11 @@ function wrapWithContract(contract, helper, options = {}) {
     await writeAuditLog({
       tenantId: ctx.tenantId,
       brandId: ctx.brandId ?? null,
-      actor: { type: "martin", uid: ctx.user.uid, nombre: ctx.user.nombre },
+      actor: buildActor(),
       action: contract.auditAction,
       targetPath,
       changes,
-      motivo: "Acci\xF3n solicitada v\xEDa Martin",
+      motivo: `Acci\xF3n solicitada v\xEDa ${actorType}`,
       conversacionId: ctx.conversacionId ?? null,
       status: "success",
       durationMs: Date.now() - startMs
@@ -6701,41 +6856,54 @@ var ListarRutinasOutputSchema = import_zod35.z.object({
   rutinas: import_zod35.z.array(MartinRutinaSchema)
 });
-// src/tools/martinContext.ts
-function buildMartinContext(session, brandId, opts = {}) {
+// src/tools/buildContext.ts
+async function buildContext(session, brandId, opts = {}) {
+  const tenantId = session.requireTenant();
+  const ci = session.mcpClientIdentity;
+  let userCtx = null;
+  if (session.userId && getSdkMode() === "admin") {
+    try {
+      userCtx = await getUserContext({
+        db: getAdminDb(),
+        tenantId,
+        uid: session.userId
+      });
+    } catch {
+      userCtx = null;
+    }
+  }
   return {
-    tenantId: session.requireTenant(),
+    tenantId,
     brandId,
     user: {
       uid: session.userId ?? "cowork-admin",
-      nombre: session.userName ?? "Cowork Admin",
-      rol: session.rol ?? "super_admin",
-      idiomaPreferido: "es"
-      // TODO HITO 8: leer usuarios/{uid}.idiomaPreferido
+      nombre: userCtx?.nombre ?? session.userName ?? "Cowork Admin",
+      rol: userCtx?.rolId ?? session.rol ?? "super_admin",
+      rolNombre: userCtx?.rolNombre ?? null,
+      idiomaPreferido: userCtx?.idiomaPreferido ?? "es",
+      // Any caller entering through this factory is an MCP client (Claude
+      // Desktop, Cursor, custom LLM scripts), NOT the Martin product app.
+      // When Martin product app ships (211.3+), its server-side caller will
+      // override clientType to 'martin' via the same `_martinContext` channel.
+      clientType: "mcp_client",
+      clientMetadata: {
+        mcpClient: ci.mcpClient,
+        mcpClientVersion: ci.mcpClientVersion
+      }
     },
     conversacionId: opts.conversacionId ?? null,
-    confirmationGranted: opts.confirmationGranted ?? true,
+    // HITO 6 A7.8: default false — secure default para acciones destructivas.
+    // Tools sin requiresConfirmation lo ignoran; tools con
+    // requiresConfirmation: true necesitan el flag explícito para ejecutar.
+    confirmationGranted: opts.confirmationGranted ?? false,
     doubleConfirmationGranted: opts.doubleConfirmationGranted ?? false
   };
 }
 async function dispatchWithContract(args) {
   const { contract, helper, callable, input, ctx } = args;
-  if (getMode() === "admin") {
+  if (getSdkMode() === "admin") {
     const db = getAdminDb();
-    const permissionResolver = async (args2) => {
-      if (args2.userRol === "super_admin") return "completo";
-      const ref = db.collection("configuracion").doc(`${args2.tenantId}_roles`);
-      const snap = await ref.get();
-      if (!snap.exists) return "ninguno";
-      const rolesData = snap.data();
-      const rolData = rolesData[args2.userRol];
-      if (!rolData || rolData.activo === false) return "ninguno";
-      const nivel = rolData.permisosPorModulo?.[args2.modulo];
-      if (nivel === "completo" || nivel === "editar" || nivel === "ver" || nivel === "ninguno") {
-        return nivel;
-      }
-      return "ninguno";
-    };
+    const permissionResolver = (args2) => getUserPermissionLevel({ db, ...args2 });
     const wrapped = wrapWithContract(
       contract,
       async (i) => helper({ ...i, db }),
@@ -6743,15 +6911,20 @@ async function dispatchWithContract(args) {
     );
     return wrapped(input, ctx);
   }
-  return callable({
+  const result = await callable({
     ...input,
     _martinContext: {
       conversacionId: ctx.conversacionId ?? null,
       confirmationGranted: ctx.confirmationGranted === true,
       doubleConfirmationGranted: ctx.doubleConfirmationGranted === true,
-      userIdiomaPreferido: ctx.user.idiomaPreferido
+      userIdiomaPreferido: ctx.user.idiomaPreferido,
+      // HITO 6 A7.5: propagar clientType + identidad concreta para que
+      // el factory CF arme actor.type + actor.metadata en el audit log.
+      clientType: ctx.user.clientType ?? "mcp_client",
+      clientMetadata: ctx.user.clientMetadata ?? null
     }
   });
+  return result;
 }
 // src/services/marketingHelperCallables.ts
@@ -6883,7 +7056,7 @@ async function generateTextEmbedding(text, session) {
   if (!trimmed) {
     throw new Error("generateTextEmbedding: text no puede estar vacio");
   }
-  if (getMode() === "client") {
+  if (getSdkMode() === "client") {
     return null;
   }
   return callEmbeddingCF({ text: trimmed }, session);
@@ -6977,7 +7150,7 @@ async function findNearestInCollection(params) {
       `findNearestInCollection: vectorField obligatorio (embeddingText | embeddingImage), recibido ${vectorField}`
     );
   }
-  if (getMode() === "client") {
+  if (getSdkMode() === "client") {
     if (!queryText || typeof queryText !== "string") {
       throw new Error(
         "findNearestInCollection en Modo B (client) requiere queryText. El MCP cliente no puede generar embeddings localmente; la CF puente marketingVectorSearchCallable los genera server-side."
@@ -7129,8 +7302,8 @@ var LimitSchema = import_zod36.z.object({
 async function findContentForTopicHandler(input, session) {
   const tenantId = session.requireTenant();
   const brandId = input.brandId;
-  const mode2 = getMode();
-  const r = mode2 === "admin" ? await contentFinder({
+  const mode = getSdkMode();
+  const r = mode === "admin" ? await contentFinder({
     db: getAdminDb(),
     tenantId,
     brandId,
@@ -7218,7 +7391,7 @@ Cuando uses hybrid: inspecciona el campo \`modesFound\` en los resultados. 2 = e
       diversidad: import_zod36.z.boolean().default(true),
       mode: import_zod36.z.enum(["text", "hybrid"]).default("text").describe("Modo de busqueda: 'text' (rapido, 1 query) o 'hybrid' (text+image via RRF, 2x queries, rescata SEO debil)")
     },
-    async ({ brandId: inputBrandId, contexto, fecha, include, limit, diversidad, mode: mode2 }) => {
+    async ({ brandId: inputBrandId, contexto, fecha, include, limit, diversidad, mode }) => {
       const brandId = inputBrandId ?? session.requireBrand();
       const resolvedInclude = include || {
         products: true,
@@ -7241,7 +7414,7 @@ Cuando uses hybrid: inspecciona el campo \`modesFound\` en los resultados. 2 = e
             include: resolvedInclude,
             limit: resolvedLimit,
             diversidad,
-            mode: mode2
+            mode
           },
           session
         );
@@ -7329,7 +7502,7 @@ USAR: antes de generar contenido de cualquier slot del calendario.`,
     async ({ brandId: inputBrandId, keyword, plataforma, fecha, limit }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await slotAssetFinder({
+      const result = getSdkMode() === "admin" ? await slotAssetFinder({
         db: getAdminDb(),
         tenantId,
         brandId,
@@ -7370,7 +7543,7 @@ Luego llama execute_photo_edit con tu analisis y prompt.`,
     async ({ fotoId }) => {
       const tenantId = session.requireTenant();
       const lang = await resolveTenantIdioma(tenantId);
-      const result = getMode() === "admin" ? await photoDirectorPlan({
+      const result = getSdkMode() === "admin" ? await photoDirectorPlan({
         db: getAdminDb(),
         tenantId,
         fotoId,
@@ -7410,7 +7583,7 @@ Si estrategia era 'tal_cual', pasa acciones=['none'] \u2014 no se edita pero si
     async ({ fotoId, prompt, acciones, descripcion, tipo, tagsPrimarios, tagsSecundarios, tagsContexto }) => {
       const tenantId = session.requireTenant();
       const lang = await resolveTenantIdioma(tenantId);
-      if (getMode() === "admin") {
+      if (getSdkMode() === "admin") {
         const executePhotoEditAdapter = async (payload) => {
           const cfUrl = process.env.MARKETING_PHOTO_EDIT_CF_URL || "https://us-central1-atteyo-ops.cloudfunctions.net/marketingExecutePhotoEdit";
           const { GoogleAuth: GoogleAuth2 } = await import("google-auth-library");
@@ -7647,7 +7820,7 @@ USAR: solo si tenant tiene Canva conectado (tenants/{tenantId}/marketing_config/
     async ({ brandId: inputBrandId, plataforma, tipoContenido, keyword }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await canvaTemplateSelector({
+      const result = getSdkMode() === "admin" ? await canvaTemplateSelector({
         db: getAdminDb(),
         tenantId,
         brandId,
@@ -7664,7 +7837,7 @@ USAR: solo si tenant tiene Canva conectado (tenants/{tenantId}/marketing_config/
   );
   server.tool(
     "request_photo_shoot",
-    `Agrega necesidades al FotoBriefing semanal del tenant. Lo usa Claude cuando detecta gaps fotograficos mientras planifica contenido (get_photos_for_slot retorna < 3 fotos).
+    `Agrega necesidades al FotoBriefing semanal del tenant. The LLM uses this when it detects photo gaps mientras planifica contenido (get_photos_for_slot retorna < 3 fotos).
 EFECTO: merge de necesidades en marketing_fotobriefings/{tenantId}_{brandId}_{semana}. Si el doc no existe, lo crea. Idempotente por tema.
@@ -7833,7 +8006,7 @@ function registerMarketingTools(server, session) {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
       const targetMes = mes ?? (/* @__PURE__ */ new Date()).toISOString().slice(0, 7);
-      const ctx = buildMartinContext(session, brandId);
+      const ctx = await buildContext(session, brandId);
       const result = await dispatchWithContract({
         contract: getCalendarContract,
         helper: getCalendar,
@@ -7918,32 +8091,32 @@ function registerMarketingTools(server, session) {
   );
   server.tool(
     "generate_marketing_plan",
-    "Prepara los datos necesarios para generar un plan de marketing estrategico. Retorna snapshot SEO + productos para que Claude genere el plan con el system prompt.",
+    "Aggregate the data needed to generate a strategic marketing plan: SEO snapshot + products. The LLM uses the system prompt to generate the plan from this payload.",
     {
       brandId: import_zod38.z.string().optional().describe("ID de la brand")
     },
     async ({ brandId: inputBrandId }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await marketingPlanBuilder({ db: getAdminDb(), tenantId, brandId }) : await callMarketingPlanBuilder({ tenantId, brandId });
+      const result = getSdkMode() === "admin" ? await marketingPlanBuilder({ db: getAdminDb(), tenantId, brandId }) : await callMarketingPlanBuilder({ tenantId, brandId });
       const payload = result.ok ? result.payload : result;
       return { content: [{ type: "text", text: JSON.stringify(payload, null, 2) }] };
     }
   );
   server.tool(
     "save_marketing_plan",
-    "Guarda el plan de marketing generado por Claude en la configuracion de la brand. Escribe en tenants/{tenantId}/marketing_config/{brandId}.plan.",
+    "Save a marketing plan to the brand configuration. Writes to tenants/{tenantId}/marketing_config/{brandId}.plan. If the plan object includes a blogStrategy field, it is extracted and stored at brand level (not nested inside plan).",
     {
-      brandId: import_zod38.z.string().optional().describe("ID de la brand"),
-      plan: import_zod38.z.record(import_zod38.z.string(), import_zod38.z.unknown()).describe("Plan de marketing generado (keywordsPrioritarios, gapsCompetencia, temporadas, tonoMarca, quickWins, etc.)")
+      brandId: import_zod38.z.string().optional().describe("Brand ID. If omitted, uses the active brand from session context."),
+      plan: import_zod38.z.record(import_zod38.z.string(), import_zod38.z.unknown()).describe("Full marketing plan object. Common fields: keywordsPrioritarios, gapsCompetencia, temporadas, tonoMarca, quickWins, coleccionesPriorizadas, blogStrategy.")
     },
     async ({ brandId: inputBrandId, plan }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const ctx = buildMartinContext(session, brandId);
+      const ctx = await buildContext(session, brandId);
       const result = await dispatchWithContract({
         contract: planWriterSaveContract,
-        helper: planWriter.save,
+        helper: ({ db, ...rest }) => planWriter.save({ db, ...rest }),
         callable: callPlanWriterSave,
         input: { tenantId, brandId, plan },
         ctx
@@ -7952,8 +8125,8 @@ function registerMarketingTools(server, session) {
         ok: false,
         state: result.state,
         mensaje: result.text,
-        // HITO 6 A6.7: incluir detalles Zod estructurados para que
-        // Claude (LLM) pueda auto-recuperarse en el siguiente intento.
+        // HITO 6 A6.7: include structured Zod details so
+        // the LLM can self-recover on the next attempt.
         ...result.validationErrors && result.validationErrors.length > 0 ? { validationErrors: result.validationErrors } : {}
       };
       return { content: [{ type: "text", text: JSON.stringify(payload) }] };
@@ -7970,20 +8143,20 @@ function registerMarketingTools(server, session) {
     async ({ brandId: inputBrandId, field, value }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await planWriter.updateField({ db: getAdminDb(), tenantId, brandId, field, value }) : await callPlanWriterUpdateField({ tenantId, brandId, field, value });
+      const result = getSdkMode() === "admin" ? await planWriter.updateField({ db: getAdminDb(), tenantId, brandId, field, value }) : await callPlanWriterUpdateField({ tenantId, brandId, field, value });
       return { content: [{ type: "text", text: JSON.stringify(result) }] };
     }
   );
   server.tool(
     "generate_brand_brief",
-    "Prepara todos los datos del negocio para que Claude genere un Brand Brief pre-llenado. Retorna Shopify + SEO + GBP + tenant data. Claude genera el brief, luego usa save_brand_brief para guardar.",
+    "Aggregate all business data needed to generate a Brand Brief: Shopify (products, collections, orders, shop info), SEO snapshot, GBP profiles, scraped site_content, brand config, tenant locations. Read-only \u2014 does NOT write the brief. After receiving the payload, generate the brief content and save it via save_brand_brief.",
     {
-      brandId: import_zod38.z.string().optional().describe("ID de la brand")
+      brandId: import_zod38.z.string().optional().describe("Brand ID. If omitted, uses the active brand from session context.")
     },
     async ({ brandId: inputBrandId }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const ctx = buildMartinContext(session, brandId);
+      const ctx = await buildContext(session, brandId);
       const result = await dispatchWithContract({
         contract: brandBriefBuilderContract,
         helper: brandBriefBuilder,
@@ -8004,21 +8177,21 @@ function registerMarketingTools(server, session) {
   );
   server.tool(
     "save_brand_brief",
-    "Guarda el Brand Brief generado por Claude en tenants/{tenantId}/marketing_config/{brandId}.brandBrief. Escribe solo ese campo (merge parcial, no rebuild del doc).",
+    "Save the Brand Brief at tenants/{tenantId}/marketing_config/{brandId}.brandBrief. Partial merge \u2014 only the brandBrief field is overwritten.",
     {
       brandId: import_zod38.z.string().optional().describe("ID de la brand"),
-      brandBrief: import_zod38.z.record(import_zod38.z.string(), import_zod38.z.unknown()).describe("Brand Brief completo generado por Claude")
+      brandBrief: import_zod38.z.record(import_zod38.z.string(), import_zod38.z.unknown()).describe("Full Brand Brief object.")
     },
     async ({ brandId: inputBrandId, brandBrief }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await brandBriefWriter({ db: getAdminDb(), tenantId, brandId, brandBrief }) : await callBrandBriefWriter({ tenantId, brandId, brandBrief });
+      const result = getSdkMode() === "admin" ? await brandBriefWriter({ db: getAdminDb(), tenantId, brandId, brandBrief }) : await callBrandBriefWriter({ tenantId, brandId, brandBrief });
       return { content: [{ type: "text", text: JSON.stringify(result) }] };
     }
   );
   server.tool(
     "generate_weekly_content",
-    "Prepara datos del calendario + fotos + plan para generar el contenido de la semana. Claude genera con el system prompt, luego usa save_generated_content para guardar.",
+    "Aggregate calendar + photos + plan data to generate the week's content. The LLM generates with the system prompt, then uses save_generated_content to persist.",
     {
       brandId: import_zod38.z.string().optional().describe("ID de la brand"),
       semana: import_zod38.z.number().optional().describe("Numero de semana (1-5). Default: semana actual del mes."),
@@ -8027,16 +8200,16 @@ function registerMarketingTools(server, session) {
     async ({ brandId: inputBrandId, semana, modo }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await weeklyContentBuilder({ db: getAdminDb(), tenantId, brandId, semana, modo }) : await callWeeklyContentBuilder({ tenantId, brandId, semana, modo });
+      const result = getSdkMode() === "admin" ? await weeklyContentBuilder({ db: getAdminDb(), tenantId, brandId, semana, modo }) : await callWeeklyContentBuilder({ tenantId, brandId, semana, modo });
       const payload = result.ok ? result.payload : result;
       return { content: [{ type: "text", text: JSON.stringify(payload, null, 2) }] };
     }
   );
   server.tool(
     "save_generated_content",
-    `Guarda contenido generado por Claude en Firestore. Usa buildContenido para validar la estructura.
+    `Save generated content to Firestore. Uses buildContenido to validate the structure.
-IMPORTANTE: Si seleccionaste una foto con get_photos_for_slot, SIEMPRE pasa fotoId aqu\xED. Sin fotoId el post se publica sin imagen.`,
+IMPORTANT: If you selected a photo with get_photos_for_slot, ALWAYS pass fotoId here. Without fotoId the post will be published without an image.`,
     {
       brandId: import_zod38.z.string().optional().describe("ID de la brand"),
       plataforma: import_zod38.z.enum(["gbp", "shopify_blog", "instagram", "review"]).describe("Plataforma destino"),
@@ -8051,7 +8224,7 @@ IMPORTANTE: Si seleccionaste una foto con get_photos_for_slot, SIEMPRE pasa foto
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
       try {
-        const result = getMode() === "admin" ? await contenidoWriter({
+        const result = getSdkMode() === "admin" ? await contenidoWriter({
           db: getAdminDb(),
           tenantId,
           brandId,
@@ -8100,7 +8273,7 @@ Si pasas campos dentro de "datos", se hace merge con los datos existentes (no lo
     },
     async ({ contenidoId, datos: newDatos, fotoId, keyword, languageCode, estado, calendarioItemRef }) => {
       const tenantId = session.requireTenant();
-      const result = getMode() === "admin" ? await contenidoUpdater({
+      const result = getSdkMode() === "admin" ? await contenidoUpdater({
         db: getAdminDb(),
         tenantId,
         contenidoId,
@@ -8125,26 +8298,26 @@ Si pasas campos dentro de "datos", se hace merge con los datos existentes (no lo
   );
   server.tool(
     "add_calendar_slot",
-    "Agrega un slot NUEVO al calendario editorial. Para modificar un slot existente usa update_calendar_slot.",
+    "Add a NEW slot to the editorial calendar. To modify an existing slot use update_calendar_slot instead.",
     {
-      brandId: import_zod38.z.string().describe("ID de la brand"),
-      mes: import_zod38.z.string().describe("Mes del calendario en formato YYYY-MM"),
-      semana: import_zod38.z.number().describe("Numero de semana (1-5)"),
+      brandId: import_zod38.z.string().describe('Brand ID (e.g. "ponch", "teleglobos").'),
+      mes: import_zod38.z.string().describe('Calendar month in YYYY-MM format (e.g. "2026-05").'),
+      semana: import_zod38.z.number().describe("Week number within the month (1-5)."),
       slot: import_zod38.z.object({
-        dia: import_zod38.z.string().describe("Fecha del slot en formato YYYY-MM-DD. Debe caer dentro del rango fechaInicio/fechaFin de la semana indicada."),
-        plataforma: import_zod38.z.enum(["gbp", "shopify_blog", "instagram", "review"]).describe("Plataforma destino"),
-        tipo: import_zod38.z.enum(["post", "blog", "carousel", "reel", "story", "review_response"]).describe("Tipo de contenido"),
-        keyword: import_zod38.z.string().describe("Keyword principal del contenido"),
-        tema: import_zod38.z.string().optional().describe("Tema del contenido. OMITE el campo si no aplica, no envies cadena vacia ni null."),
-        productoId: import_zod38.z.string().optional().describe("ID de producto vinculado. OMITE el campo si no aplica."),
-        estado: import_zod38.z.enum(["planificado", "pre_aprobado", "generado", "revisar", "aprobado", "publicado", "rechazado"]).optional().describe("Estado inicial. OMITE si quieres default 'planificado'."),
-        locationId: import_zod38.z.string().optional().describe("GBP location ID \u2014 solo si plataforma=gbp y multi-sucursal. OMITE si no aplica."),
-        locationNombre: import_zod38.z.string().optional().describe("Nombre de la sucursal GBP. OMITE si no aplica.")
-      }).describe("Datos del slot nuevo")
+        dia: import_zod38.z.string().describe("Slot date in YYYY-MM-DD format. Must fall within the week's fechaInicio/fechaFin range."),
+        plataforma: import_zod38.z.enum(["gbp", "shopify_blog", "instagram", "review"]).describe("Target publishing platform."),
+        tipo: import_zod38.z.enum(["post", "blog", "carousel", "reel", "story", "review_response"]).describe("Content type."),
+        keyword: import_zod38.z.string().describe("Primary keyword for the content."),
+        tema: import_zod38.z.string().optional().describe("Content topic/theme. OMIT this field if it does not apply. Do NOT send empty string or null."),
+        productoId: import_zod38.z.string().optional().describe("Linked product ID. OMIT this field if no product is linked."),
+        estado: import_zod38.z.enum(["planificado", "pre_aprobado", "generado", "revisar", "aprobado", "publicado", "rechazado"]).optional().describe('Initial status. OMIT to use default "planificado".'),
+        locationId: import_zod38.z.string().optional().describe("GBP location ID \u2014 only when plataforma=gbp AND tenant is multi-location. OMIT otherwise."),
+        locationNombre: import_zod38.z.string().optional().describe("Human-readable GBP location name. OMIT if locationId is not provided.")
+      }).describe("New slot data.")
     },
     async ({ brandId, mes, semana, slot }) => {
       const tenantId = session.requireTenant();
-      const ctx = buildMartinContext(session, brandId);
+      const ctx = await buildContext(session, brandId);
       const result = await dispatchWithContract({
         contract: addCalendarSlotContract,
         helper: addCalendarSlot,
@@ -8163,40 +8336,48 @@ Si pasas campos dentro de "datos", se hace merge con los datos existentes (no lo
   );
   server.tool(
     "update_calendar_slot",
-    "MODIFICA un slot EXISTENTE del calendario editorial. Para crear un slot nuevo usa add_calendar_slot. Si slotIndex no existe, retorna error SLOT_NOT_FOUND.",
+    "MODIFY an EXISTING slot in the editorial calendar. To create a new slot use add_calendar_slot. If slotIndex does not exist, returns error SLOT_NOT_FOUND.",
     {
-      brandId: import_zod38.z.string().optional().describe("ID de la brand"),
-      mes: import_zod38.z.string().describe("Mes del calendario (YYYY-MM)"),
-      semana: import_zod38.z.number().describe("Numero de semana (1-5)"),
-      slotIndex: import_zod38.z.number().describe("Indice del slot (0-based). Si >= items.length, agrega nuevo slot al final."),
+      brandId: import_zod38.z.string().optional().describe("Brand ID. If omitted, uses the active brand from session context."),
+      mes: import_zod38.z.string().describe("Calendar month in YYYY-MM format."),
+      semana: import_zod38.z.number().describe("Week number within the month (1-5)."),
+      slotIndex: import_zod38.z.number().describe("Slot index (0-based). Must point to an existing slot \u2014 to add new slots use add_calendar_slot."),
       cambios: import_zod38.z.object({
-        dia: import_zod38.z.string().nullable().optional(),
-        plataforma: import_zod38.z.enum(["gbp", "shopify_blog", "instagram", "review"]).nullable().optional(),
-        tipo: import_zod38.z.enum(["post", "blog", "carousel", "reel", "story", "review_response"]).nullable().optional(),
-        keyword: import_zod38.z.string().nullable().optional(),
-        tema: import_zod38.z.string().nullable().optional(),
-        productoId: import_zod38.z.string().nullable().optional(),
-        estado: import_zod38.z.enum(["planificado", "pre_aprobado", "generado", "revisar", "aprobado", "publicado", "rechazado"]).optional(),
-        contenidoRef: import_zod38.z.string().nullable().optional(),
-        fotoIdAsignada: import_zod38.z.string().nullable().optional(),
-        notas: import_zod38.z.array(NotaCalendarioSchema).optional(),
-        locationId: import_zod38.z.string().nullable().optional().describe("GBP location ID \u2014 a qu\xE9 sucursal publicar el post"),
-        locationNombre: import_zod38.z.string().nullable().optional().describe("Nombre de la sucursal GBP (para UI)")
-      }).strict().describe("Campos del slot. Solo acepta campos validos del schema. Campos no reconocidos seran rechazados."),
+        dia: import_zod38.z.string().nullable().optional().describe("Slot date in YYYY-MM-DD. OMIT if not changing date. Use null to explicitly clear."),
+        plataforma: import_zod38.z.enum(["gbp", "shopify_blog", "instagram", "review"]).nullable().optional().describe("OMIT if not changing platform."),
+        tipo: import_zod38.z.enum(["post", "blog", "carousel", "reel", "story", "review_response"]).nullable().optional().describe("OMIT if not changing content type."),
+        keyword: import_zod38.z.string().nullable().optional().describe("OMIT if not changing keyword."),
+        tema: import_zod38.z.string().nullable().optional().describe("OMIT if not changing topic."),
+        productoId: import_zod38.z.string().nullable().optional().describe("OMIT if not changing linked product. Use null to unlink."),
+        estado: import_zod38.z.enum(["planificado", "pre_aprobado", "generado", "revisar", "aprobado", "publicado", "rechazado"]).optional().describe("OMIT if not changing status manually."),
+        contenidoRef: import_zod38.z.string().nullable().optional().describe("OMIT \u2014 managed by the system, not by callers."),
+        fotoIdAsignada: import_zod38.z.string().nullable().optional().describe("Use assign_photo_to_content for photos. OMIT here."),
+        notas: import_zod38.z.array(NotaCalendarioSchema).optional().describe("Append-only notes for the slot."),
+        locationId: import_zod38.z.string().nullable().optional().describe("GBP location ID \u2014 only when plataforma=gbp."),
+        locationNombre: import_zod38.z.string().nullable().optional().describe("Human-readable GBP location name (for UI).")
+      }).strict().describe("Fields to update on the slot. Only declared fields accepted; unknown fields are rejected. OMIT any field you are not changing."),
       accionContenidoExistente: import_zod38.z.union([
         import_zod38.z.enum(["descartar", "nuevo_slot", "mantener"]),
-        import_zod38.z.string().regex(/^mover:semana:\d+:slot:\d+$/, "Formato: mover:semana:N:slot:M")
+        import_zod38.z.string().regex(/^mover:semana:\d+:slot:\d+$/, "Format: mover:semana:N:slot:M")
       ]).optional().describe(
-        "Decision del tenant cuando el slot ya tiene un contenidoRef existente Y los cambios tocan keyword/tema/plataforma/tipo. Requerido en ese escenario (si no se pasa, el helper retorna ACCION_CONTENIDO_EXISTENTE_REQUIRED con las 4 opciones para que preguntes al tenant). Valores: 'descartar' (marca el contenido existente como descartado y aplica cambios al slot) | 'mover:semana:N:slot:M' (mueve el contenido existente al slot destino vacio y aplica cambios al slot origen) | 'nuevo_slot' (NO toca este slot ni su contenido; crea un slot nuevo el mismo dia con los cambios \u2014 util para multiples publicaciones/dia) | 'mantener' (conserva el contenido existente aqui y aplica los cambios igualmente \u2014 caso typo fix)."
+        'Required ONLY when the slot already has a contenidoRef AND the cambios touch semantic fields (keyword/tema/plataforma/tipo). In that case, the helper returns ACCION_CONTENIDO_EXISTENTE_REQUIRED with the 4 options listed below \u2014 ask the tenant which one to apply. OMIT this field in any other case. Do NOT send null. Valid values: "descartar" (mark existing content as discarded and apply changes to this slot) | "mover:semana:N:slot:M" (move existing content to target empty slot N/M and apply changes to origin slot) | "nuevo_slot" (do NOT touch this slot or its content; create a new slot same day with the changes \u2014 useful for multiple posts per day) | "mantener" (keep existing content here and apply changes anyway \u2014 typo-fix case where old content stays valid).'
       )
     },
     async ({ brandId: inputBrandId, mes, semana, slotIndex, cambios, accionContenidoExistente }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const ctx = buildMartinContext(session, brandId);
+      const ctx = await buildContext(session, brandId);
       const result = await dispatchWithContract({
         contract: calendarSlotUpdaterContract,
-        helper: calendarSlotUpdater,
+        // Wrap en arrow para que TS infiera el tipo del input desde el
+        // schema del contract (acepta `cambios: Record<string, unknown>`),
+        // no desde la interface estricta CalendarSlotUpdaterInput.
+        // El helper internamente acepta el shape — Zod ya valido en el wrapper.
+        helper: (input) => calendarSlotUpdater({
+          ...input,
+          cambios: input.cambios,
+          accionContenidoExistente: input.accionContenidoExistente
+        }),
         callable: callCalendarSlotUpdater,
         input: { tenantId, brandId, mes, semana, slotIndex, cambios, accionContenidoExistente },
         ctx
@@ -8205,8 +8386,8 @@ Si pasas campos dentro de "datos", se hace merge con los datos existentes (no lo
         ok: false,
         state: result.state,
         mensaje: result.text,
-        // HITO 6 A6.7: incluir detalles Zod estructurados para que
-        // Claude (LLM) pueda auto-recuperarse en el siguiente intento.
+        // HITO 6 A6.7: include structured Zod details so
+        // the LLM can self-recover on the next attempt.
         ...result.validationErrors && result.validationErrors.length > 0 ? { validationErrors: result.validationErrors } : {}
       };
       return { content: [{ type: "text", text: JSON.stringify(payload) }] };
@@ -8229,7 +8410,7 @@ NUNCA uses update_calendar_slot para asignar fotos \u2014 eso escribe en la agen
     async ({ contenidoRef, fotoId, calendarioItemRef }) => {
       const tenantId = session.requireTenant();
       const brandId = session.requireBrand();
-      const result = getMode() === "admin" ? await photoAssigner({ db: getAdminDb(), tenantId, brandId, contenidoRef, fotoId, calendarioItemRef }) : await callPhotoAssigner({ tenantId, brandId, contenidoRef, fotoId, calendarioItemRef });
+      const result = getSdkMode() === "admin" ? await photoAssigner({ db: getAdminDb(), tenantId, brandId, contenidoRef, fotoId, calendarioItemRef }) : await callPhotoAssigner({ tenantId, brandId, contenidoRef, fotoId, calendarioItemRef });
       return { content: [{ type: "text", text: JSON.stringify(result) }] };
     }
   );
@@ -8378,7 +8559,7 @@ NUNCA uses update_calendar_slot para asignar fotos \u2014 eso escribe en la agen
     async ({ brandId: inputBrandId, suggestions }) => {
       const tenantId = session.requireTenant();
       const brandId = inputBrandId ?? session.requireBrand();
-      const result = getMode() === "admin" ? await collectionSuggestionsWriter({ db: getAdminDb(), tenantId, brandId, suggestions }) : await callCollectionSuggestionsWriter({ tenantId, brandId, suggestions });
+      const result = getSdkMode() === "admin" ? await collectionSuggestionsWriter({ db: getAdminDb(), tenantId, brandId, suggestions }) : await callCollectionSuggestionsWriter({ tenantId, brandId, suggestions });
       return { content: [{ type: "text", text: JSON.stringify(result) }] };
     }
   );
@@ -8386,8 +8567,8 @@ NUNCA uses update_calendar_slot para asignar fotos \u2014 eso escribe en la agen
 // src/index.ts
 async function buildSystemPrompt2(session) {
-  const mode2 = getMode();
-  if (mode2 === "admin") {
+  const mode = getSdkMode();
+  if (mode === "admin") {
     const db = getAdminDb();
     return buildSystemPrompt({
       db,
@@ -8404,7 +8585,9 @@ async function buildSystemPrompt2(session) {
 async function main() {
   const authContext = resolveAuth();
   const session = new Session(authContext);
-  console.error(`[ponch-mcp] Modo: ${authContext.mode}`);
+  console.error(
+    `[ponch-mcp] Auth resuelto. canSwitchTenant=${authContext.canSwitchTenant} tenantId=${authContext.tenantId ?? "(none)"} rol=${authContext.rol ?? "(none)"}`
+  );
   let firebaseReady = false;
   if (authContext.serviceAccountPath) {
     initFirebaseAdmin(authContext.serviceAccountPath);
@@ -8416,7 +8599,7 @@ async function main() {
       console.error(`[ponch-mcp] Firebase Client autenticado. Tenant: ${authContext.tenantId}`);
     } else {
       console.error("[ponch-mcp] Token expirado. Usa connect_account para reconectar.");
-      session.forceMode("tenant");
+      session.revokeCrossTenant();
     }
   } else {
     console.error("[ponch-mcp] Sin conexion. Usa connect_account para conectar.");
@@ -8425,6 +8608,13 @@ async function main() {
     name: "ponch",
     version: "1.0.1"
   });
+  server.server.oninitialized = () => {
+    const ci = server.server.getClientVersion();
+    if (ci) {
+      session.setMcpClientIdentity(ci.name ?? null, ci.version ?? null);
+      console.error(`[ponch-mcp] Cliente MCP: ${ci.name ?? "(sin name)"} v${ci.version ?? "(sin version)"}`);
+    }
+  };
   server.resource(
     "system-prompt",
     "ponch://system-prompt",