veryfront 0.1.217 → 0.1.219

package/src/src/agent/ag-ui-detached-start.ts

@@ -0,0 +1,397 @@
+import { z } from "zod";
+import { INVALID_ARGUMENT } from "../errors/index.js";
+import { SKILL_TOOL_IDS } from "../skill/types.js";
+import { type Tool, toolRegistry } from "../tool/index.js";
+import { streamDataStreamEvents } from "./data-stream.js";
+import { type AgUiInjectedTool, type AgUiRequest, AgUiRequestSchema } from "./ag-ui-handler.js";
+import {
+  AgentRuntime,
+  RunAlreadyExistsError,
+  type RunResumeSessionManager,
+} from "./runtime/index.js";
+import type { Agent, Message } from "./types.js";
+
+const AGENT_ID_PATTERN = /^[a-zA-Z0-9_-]+$/;
+const AG_UI_DETACHED_RUN_ID_SCHEMA = z.string().min(1).max(128).regex(AGENT_ID_PATTERN);
+const MAX_TEXT_PART_LENGTH = 10_000;
+
+type AgUiResumeValue = {
+  result: unknown;
+  isError: boolean;
+};
+
+type AgUiContextValue =
+  | Record<string, unknown>
+  | ((request: Request) => Record<string, unknown> | Promise<Record<string, unknown>>);
+
+type AgUiRuntimePart = Record<string, unknown> & { type: string };
+
+function isRecord(value: unknown): value is Record<string, unknown> {
+  return typeof value === "object" && value !== null && !Array.isArray(value);
+}
+
+function normalizeToolArgs(part: Record<string, unknown>): Record<string, unknown> {
+  if (isRecord(part.args)) return part.args;
+  if (isRecord(part.input)) return part.input;
+  return {};
+}
+
+function normalizeMessagePart(part: Record<string, unknown>): Message["parts"][number] | null {
+  if (
+    part.type === "text" && typeof part.text === "string" &&
+    part.text.length <= MAX_TEXT_PART_LENGTH
+  ) {
+    return { type: "text", text: part.text };
+  }
+
+  if (part.type === "tool_call" && typeof part.id === "string" && typeof part.name === "string") {
+    return {
+      type: "tool-call",
+      toolCallId: part.id,
+      toolName: part.name,
+      args: normalizeToolArgs(part),
+    };
+  }
+
+  if (
+    part.type === "tool-call" &&
+    typeof part.toolCallId === "string" &&
+    typeof part.toolName === "string"
+  ) {
+    return {
+      type: "tool-call",
+      toolCallId: part.toolCallId,
+      toolName: part.toolName,
+      args: normalizeToolArgs(part),
+    };
+  }
+
+  if (
+    typeof part.type === "string" &&
+    part.type.startsWith("tool-") &&
+    part.type !== "tool-result" &&
+    typeof part.toolCallId === "string" &&
+    typeof part.toolName === "string"
+  ) {
+    return {
+      type: part.type,
+      toolCallId: part.toolCallId,
+      toolName: part.toolName,
+      args: normalizeToolArgs(part),
+    };
+  }
+
+  if (part.type === "tool_result" && typeof part.tool_call_id === "string") {
+    return {
+      type: "tool-result",
+      toolCallId: part.tool_call_id,
+      toolName: typeof part.tool_name === "string" ? part.tool_name : "unknown",
+      result: "output" in part ? part.output : undefined,
+    };
+  }
+
+  if (part.type === "tool-result" && typeof part.toolCallId === "string") {
+    return {
+      type: "tool-result",
+      toolCallId: part.toolCallId,
+      toolName: typeof part.toolName === "string" ? part.toolName : "unknown",
+      result: "result" in part ? part.result : undefined,
+    };
+  }
+
+  return null;
+}
+
+function normalizeMessages(messages: AgUiRequest["messages"]): Message[] {
+  return messages.map((message) => ({
+    id: message.id,
+    role: message.role,
+    parts: message.parts
+      .map((part) => normalizeMessagePart(part))
+      .filter((part): part is Message["parts"][number] => part !== null),
+    ...(message.createdAt ? { timestamp: Date.parse(message.createdAt) || undefined } : {}),
+    ...(message.metadata ? { metadata: message.metadata } : {}),
+  }));
+}
+
+function isRequest(obj: unknown): obj is Request {
+  return (
+    typeof obj === "object" &&
+    obj !== null &&
+    "json" in obj &&
+    typeof obj.json === "function" &&
+    "url" in obj &&
+    typeof obj.url === "string" &&
+    "method" in obj &&
+    typeof obj.method === "string"
+  );
+}
+
+function extractRequest(requestOrCtx: unknown): Request {
+  if (isRequest(requestOrCtx)) return requestOrCtx;
+
+  if (typeof requestOrCtx === "object" && requestOrCtx !== null && "request" in requestOrCtx) {
+    const candidate = (requestOrCtx as Record<string, unknown>).request;
+    if (isRequest(candidate)) return candidate;
+  }
+
+  throw INVALID_ARGUMENT.create({
+    detail: "Invalid handler argument: expected Request or APIContext",
+  });
+}
+
+function buildStreamContext(
+  request: AgUiDetachedStartRequest,
+  baseContext: Record<string, unknown>,
+  threadId: string,
+  runId: string,
+): Record<string, unknown> {
+  return {
+    ...baseContext,
+    threadId,
+    runId,
+    agUi: {
+      context: request.context,
+      forwardedProps: request.forwardedProps,
+    },
+  };
+}
+
+function createInjectedAgUiTool(
+  runId: string,
+  tool: AgUiInjectedTool,
+  sessionManager: RunResumeSessionManager<AgUiResumeValue>,
+): Tool {
+  return {
+    id: tool.name,
+    type: "function",
+    description: tool.description ?? tool.name,
+    inputSchema: z.record(z.string(), z.unknown()),
+    inputSchemaJson: (tool.parameters ??
+      { type: "object", properties: {}, additionalProperties: true }) as Tool["inputSchemaJson"],
+    execute: async (_input, context) => {
+      const toolCallId = typeof context?.toolCallId === "string" ? context.toolCallId : null;
+      if (!toolCallId) {
+        throw new Error(`Missing toolCallId for injected tool "${tool.name}"`);
+      }
+
+      sessionManager.prepareForSignal(runId, toolCallId);
+      const submitted = await sessionManager.waitForSignal(runId, toolCallId);
+      if (submitted.isError) {
+        throw new Error(
+          typeof submitted.result === "string"
+            ? submitted.result
+            : JSON.stringify(submitted.result),
+        );
+      }
+      return submitted.result;
+    },
+  };
+}
+
+function buildMergedTools(
+  agent: Agent,
+  request: AgUiDetachedStartRequest,
+  sessionManager: RunResumeSessionManager<AgUiResumeValue>,
+): Agent["config"]["tools"] {
+  const injectedTools = Object.fromEntries(
+    request.tools.map((tool) => [
+      tool.name,
+      createInjectedAgUiTool(request.runId, tool, sessionManager),
+    ]),
+  );
+
+  if (!agent.config.tools) {
+    return Object.keys(injectedTools).length > 0 ? injectedTools : undefined;
+  }
+
+  if (agent.config.tools === true) {
+    const merged: Record<string, Tool | boolean> = {};
+    for (const [toolId] of toolRegistry.getAll()) {
+      if (!agent.config.skills && SKILL_TOOL_IDS.has(toolId)) {
+        continue;
+      }
+      merged[toolId] = true;
+    }
+    return { ...merged, ...injectedTools };
+  }
+
+  return { ...agent.config.tools, ...injectedTools };
+}
+
+async function resolveContextValue(
+  value: AgUiContextValue | undefined,
+  request: Request,
+): Promise<Record<string, unknown>> {
+  if (typeof value === "function") {
+    return await value(request);
+  }
+
+  return value ?? {};
+}
+
+function scheduleDetachedTask(requestOrCtx: unknown, task: Promise<void>): void {
+  if (
+    typeof requestOrCtx === "object" &&
+    requestOrCtx !== null &&
+    "waitUntil" in requestOrCtx &&
+    typeof (requestOrCtx as Record<string, unknown>).waitUntil === "function"
+  ) {
+    ((requestOrCtx as { waitUntil: (promise: Promise<void>) => void }).waitUntil)(task);
+    return;
+  }
+
+  void task;
+}
+
+async function drainRuntimeStream(
+  stream: ReadableStream<Uint8Array>,
+): Promise<void> {
+  for await (const _event of streamDataStreamEvents(stream) as AsyncIterable<AgUiRuntimePart>) {
+    continue;
+  }
+}
+
+export const AgUiDetachedStartRequestSchema = AgUiRequestSchema.extend({
+  threadId: z.string().uuid(),
+  runId: AG_UI_DETACHED_RUN_ID_SCHEMA,
+});
+
+export const AgUiDetachedStartAcceptedSchema = z.object({
+  accepted: z.literal(true),
+  duplicate: z.boolean(),
+  runId: AG_UI_DETACHED_RUN_ID_SCHEMA,
+  threadId: z.string().uuid(),
+});
+
+export type AgUiDetachedStartRequest = z.infer<typeof AgUiDetachedStartRequestSchema>;
+export type AgUiDetachedStartAccepted = z.infer<typeof AgUiDetachedStartAcceptedSchema>;
+
+export interface AgUiDetachedStartHandlerOptions {
+  agent: Agent;
+  sessionManager: RunResumeSessionManager<AgUiResumeValue>;
+  context?: AgUiContextValue;
+  onAccepted?: (input: {
+    request: AgUiDetachedStartRequest;
+    runId: string;
+    threadId: string;
+  }) => Promise<void> | void;
+  onDuplicate?: (input: {
+    request: AgUiDetachedStartRequest;
+    runId: string;
+    threadId: string;
+  }) => Promise<void> | void;
+  onFinish?: (input: { runId: string; threadId: string }) => Promise<void> | void;
+  onError?: (input: { runId: string; threadId: string; error: unknown }) => Promise<void> | void;
+}
+
+export function createAgUiDetachedStartHandler(
+  options: AgUiDetachedStartHandlerOptions,
+): (requestOrCtx: unknown) => Promise<Response> {
+  return async function POST(requestOrCtx: unknown): Promise<Response> {
+    const request = extractRequest(requestOrCtx);
+
+    try {
+      const parsed = AgUiDetachedStartRequestSchema.parse(await request.json());
+      const context = await resolveContextValue(options.context, request);
+
+      try {
+        const abortSignal = options.sessionManager.startRun({
+          runId: parsed.runId,
+          threadId: parsed.threadId,
+        });
+
+        const runtime = new AgentRuntime(options.agent.id, {
+          ...options.agent.config,
+          tools: buildMergedTools(options.agent, parsed, options.sessionManager),
+        });
+
+        const runtimeStream = await runtime.stream(
+          normalizeMessages(parsed.messages),
+          buildStreamContext(parsed, context, parsed.threadId, parsed.runId),
+          undefined,
+          parsed.model,
+          parsed.maxOutputTokens,
+          abortSignal,
+        );
+
+        await options.onAccepted?.({
+          request: parsed,
+          runId: parsed.runId,
+          threadId: parsed.threadId,
+        });
+
+        const detachedTask = (async () => {
+          try {
+            await drainRuntimeStream(runtimeStream);
+            options.sessionManager.completeRun(parsed.runId);
+            await options.onFinish?.({
+              runId: parsed.runId,
+              threadId: parsed.threadId,
+            });
+          } catch (error) {
+            options.sessionManager.failRun(parsed.runId);
+            await options.onError?.({
+              runId: parsed.runId,
+              threadId: parsed.threadId,
+              error,
+            });
+          }
+        })().catch(() => undefined);
+
+        scheduleDetachedTask(requestOrCtx, detachedTask);
+
+        return Response.json(
+          {
+            accepted: true,
+            duplicate: false,
+            runId: parsed.runId,
+            threadId: parsed.threadId,
+          } satisfies AgUiDetachedStartAccepted,
+          { status: 202 },
+        );
+      } catch (error) {
+        if (error instanceof RunAlreadyExistsError) {
+          await options.onDuplicate?.({
+            request: parsed,
+            runId: parsed.runId,
+            threadId: parsed.threadId,
+          });
+
+          return Response.json(
+            {
+              accepted: true,
+              duplicate: true,
+              runId: parsed.runId,
+              threadId: parsed.threadId,
+            } satisfies AgUiDetachedStartAccepted,
+            { status: 202 },
+          );
+        }
+
+        options.sessionManager.failRun(parsed.runId);
+        throw error;
+      }
+    } catch (error) {
+      if (error instanceof z.ZodError) {
+        return Response.json(
+          {
+            error: "Invalid AG-UI detached start request",
+            details: error.issues.map((issue) => ({
+              path: issue.path,
+              message: issue.message,
+            })),
+          },
+          { status: 400 },
+        );
+      }
+
+      return Response.json(
+        {
+          error: error instanceof Error ? error.message : "Internal detached start failed",
+        },
+        { status: 500 },
+      );
+    }
+  };
+}

package/src/src/agent/index.ts

@@ -173,6 +173,14 @@ export {
   getProviderNativeToolNames,
   type ProviderNativeToolInventoryOptions,
 } from "./provider-native-tool-inventory.js";
+export {
+  type AgUiDetachedStartAccepted,
+  AgUiDetachedStartAcceptedSchema,
+  type AgUiDetachedStartHandlerOptions,
+  type AgUiDetachedStartRequest,
+  AgUiDetachedStartRequestSchema,
+  createAgUiDetachedStartHandler,
+} from "./ag-ui-detached-start.js";
 export {
   type AgUiCancelHandlerOptions,
   type AgUiResumeHandlerOptions,

package/src/src/extensions/interfaces/auth-provider.ts

@@ -36,17 +36,49 @@ export interface VerifyOptions {
   [key: string]: unknown;
 }
 
+/**
+ * The parsed, unverified header of a JWT.
+ *
+ * Returned by {@link AuthProvider.decode}. `alg` is the signing algorithm
+ * advertised by the token (e.g. `"HS256"`, `"RS256"`); additional fields
+ * such as `kid` or `typ` may be present.
+ */
+export interface TokenHeader {
+  /** Signing algorithm advertised by the token header. */
+  alg?: string;
+  /** Additional header fields. */
+  [key: string]: unknown;
+}
+
 /**
  * AuthProvider contract interface.
  *
  * Implementations sign, verify, and decode authentication tokens
- * (e.g. JWTs) for request authentication.
+ * (e.g. JWTs) for request authentication, and verify third-party tokens
+ * against a remote JWKS.
  */
 export interface AuthProvider {
   /** Sign a payload into a token string. */
   sign(payload: TokenPayload, options?: SignOptions): Promise<string>;
   /** Verify a token and return its decoded payload. Throws on invalid tokens. */
   verify(token: string, options?: VerifyOptions): Promise<TokenPayload>;
-  /** Decode a token without verifying its signature. */
-  decode(token: string): TokenPayload | undefined;
+  /**
+   * Verify a token against a remote JSON Web Key Set.
+   *
+   * Fetches (and caches) the JWKS at `jwksUrl`, then verifies the token's
+   * signature and claims. Throws on invalid tokens, unreachable JWKS, or
+   * `kid`/algorithm mismatch.
+   */
+  verifyWithJwks(
+    token: string,
+    jwksUrl: string,
+    options?: VerifyOptions,
+  ): Promise<TokenPayload>;
+  /**
+   * Decode a token's protected header without verifying its signature.
+   *
+   * Returns `undefined` on malformed input. Useful for inspecting `alg`
+   * before choosing a verification strategy.
+   */
+  decode(token: string): TokenHeader | undefined;
 }

package/src/src/extensions/interfaces/index.ts

@@ -23,6 +23,9 @@ export type {
 // Cache store
 export type { CacheStore } from "./cache-store.js";
 
+// Token cache store (proxy-grade cache with scan + stats)
+export type { TokenCacheEntry, TokenCacheStats, TokenCacheStore } from "./token-cache-store.js";
+
 // CSS processor
 export type { CSSProcessOptions, CSSProcessor, CSSProcessResult } from "./css-processor.js";
 
@@ -37,7 +40,13 @@ export type {
 export type { DatabaseClient, QueryResult } from "./database-client.js";
 
 // Auth provider
-export type { AuthProvider, SignOptions, TokenPayload, VerifyOptions } from "./auth-provider.js";
+export type {
+  AuthProvider,
+  SignOptions,
+  TokenHeader,
+  TokenPayload,
+  VerifyOptions,
+} from "./auth-provider.js";
 
 // Tracing exporter
 export type { SpanData, TracingExporter } from "./tracing-exporter.js";

package/src/src/extensions/interfaces/token-cache-store.ts

@@ -0,0 +1,58 @@
+/**
+ * Contract interface for OAuth-token-style cache stores used by the proxy.
+ *
+ * This contract is richer than the generic `CacheStore` — it adds scan-by-prefix,
+ * bulk read, and usage statistics primitives that the proxy's token cache needs.
+ * Simpler key-value consumers should use `CacheStore` instead.
+ *
+ * Default implementation: `@veryfront/ext-redis`.
+ *
+ * @module extensions/interfaces/token-cache-store
+ */
+
+/**
+ * A cache entry stored by `TokenCacheStore`.
+ *
+ * The proxy persists OAuth tokens keyed by request metadata; this entry shape
+ * mirrors what the proxy has historically stored.
+ */
+export interface TokenCacheEntry {
+  token: string;
+  /** Unix timestamp in milliseconds. */
+  expiresAt: number;
+  scope: "preview" | "production";
+  projectSlug?: string;
+}
+
+/**
+ * Aggregate usage statistics for a `TokenCacheStore`.
+ */
+export interface TokenCacheStats {
+  hits: number;
+  misses: number;
+  size: number;
+  type: "memory" | "redis";
+}
+
+/**
+ * TokenCacheStore contract interface.
+ *
+ * Implementations provide TTL-aware token caching, plus scan and stats
+ * primitives that generic key-value caches do not require.
+ */
+export interface TokenCacheStore {
+  /** Retrieve a cached entry by key. Returns `null` on miss or expiry. */
+  get(key: string): Promise<TokenCacheEntry | null>;
+  /** Store an entry. TTL is derived from `entry.expiresAt`. */
+  set(key: string, entry: TokenCacheEntry): Promise<void>;
+  /** Delete a cached entry. No-op if the key does not exist. */
+  delete(key: string): Promise<void>;
+  /** Remove every entry owned by this store. */
+  clear(): Promise<void>;
+  /** Check whether a non-expired entry exists for the given key. */
+  has(key: string): Promise<boolean>;
+  /** Return current hit/miss/size statistics. */
+  stats(): Promise<TokenCacheStats>;
+  /** Close connections and release resources. */
+  close(): Promise<void>;
+}

package/src/src/extensions/recommendations.ts

@@ -7,6 +7,7 @@
 const recommendations = new Map<string, string>([
   ["Bundler", "@veryfront/ext-esbuild"],
   ["CacheStore", "@veryfront/ext-redis"],
+  ["TokenCacheStore", "@veryfront/ext-redis"],
   ["CSSProcessor", "@veryfront/ext-tailwind"],
   ["ContentTransformer", "@veryfront/ext-mdx"],
   ["DatabaseClient", "@veryfront/ext-postgres"],

package/src/src/integrations/_data.ts

@@ -27,7 +27,7 @@ export const connectors: IntegrationConfig[] = [
   {"name":"mailchimp","displayName":"Mailchimp","icon":"mailchimp.svg","description":"Manage email campaigns, lists, and subscribers in Mailchimp","auth":{"type":"oauth2","provider":"mailchimp","authorizationUrl":"https://login.mailchimp.com/oauth2/authorize","tokenUrl":"https://login.mailchimp.com/oauth2/token","scopes":[],"requiredApis":[{"name":"Mailchimp API","enableUrl":"https://admin.mailchimp.com/account/oauth2/"}]},"envVars":[{"name":"MAILCHIMP_CLIENT_ID","description":"Mailchimp OAuth Client ID","required":true,"sensitive":false,"docsUrl":"https://mailchimp.com/developer/marketing/guides/access-user-data-oauth-2/"},{"name":"MAILCHIMP_CLIENT_SECRET","description":"Mailchimp OAuth Client Secret","required":true,"sensitive":true,"docsUrl":"https://mailchimp.com/developer/marketing/guides/access-user-data-oauth-2/"}],"tools":[{"id":"list-campaigns","name":"List Campaigns","description":"List all email campaigns in Mailchimp","requiresWrite":false},{"id":"get-campaign","name":"Get Campaign","description":"Get details of a specific campaign","requiresWrite":false},{"id":"list-lists","name":"List Audience Lists","description":"List all audience lists (mailing lists) in Mailchimp","requiresWrite":false},{"id":"get-list","name":"Get Audience List","description":"Get details of a specific audience list","requiresWrite":false},{"id":"list-members","name":"List Members","description":"List subscribers/members in an audience list","requiresWrite":false}],"prompts":[{"id":"campaign-stats","title":"Show campaign stats","prompt":"Show me the performance statistics for my recent email campaigns in Mailchimp.","category":"marketing","icon":"chart"},{"id":"list-subscribers","title":"List subscribers","prompt":"Show me the subscribers in my main email list with their subscription status.","category":"marketing","icon":"users"}],"suggestedWith":["slack","notion","hubspot"]},
   {"name":"mixpanel","displayName":"Mixpanel","icon":"mixpanel.svg","description":"Track events, analyze funnels, and understand user behavior with Mixpanel analytics","auth":{"type":"api-key","requiredApis":[{"name":"Mixpanel API","enableUrl":"https://mixpanel.com/settings/project"}],"keyName":"MIXPANEL_PROJECT_TOKEN"},"envVars":[{"name":"MIXPANEL_PROJECT_TOKEN","description":"Mixpanel Project Token for event tracking","required":true,"sensitive":true,"docsUrl":"https://docs.mixpanel.com/docs/tracking-methods/id-management/authentication"},{"name":"MIXPANEL_API_SECRET","description":"Mixpanel API Secret for data export and query operations","required":true,"sensitive":true,"docsUrl":"https://developer.mixpanel.com/reference/authentication"},{"name":"MIXPANEL_PROJECT_ID","description":"Mixpanel Project ID (found in project settings)","required":true,"sensitive":false,"docsUrl":"https://docs.mixpanel.com/docs/admin/organizations-projects/manage-projects"}],"tools":[{"id":"track-event","name":"Track Event","description":"Track a custom event in Mixpanel with properties","requiresWrite":true},{"id":"query-events","name":"Query Events","description":"Query and export event data from Mixpanel","requiresWrite":false},{"id":"get-funnel","name":"Get Funnel","description":"Retrieve funnel analysis data to understand conversion rates","requiresWrite":false},{"id":"get-retention","name":"Get Retention","description":"Analyze user retention cohorts over time","requiresWrite":false},{"id":"list-cohorts","name":"List Cohorts","description":"List all user cohorts defined in your Mixpanel project","requiresWrite":false}],"prompts":[{"id":"event-analysis","title":"Event analysis","prompt":"Show me the most important events tracked in my Mixpanel project over the last 7 days and their trends.","category":"analytics","icon":"chart"},{"id":"funnel-performance","title":"Funnel performance","prompt":"Analyze my key conversion funnels and identify where users are dropping off.","category":"analytics","icon":"funnel"},{"id":"retention-insights","title":"Retention insights","prompt":"Give me insights about user retention and cohort behavior over the past month.","category":"analytics","icon":"users"}],"suggestedWith":["slack","analytics","monitoring"]},
   {"name":"monday","displayName":"Monday.com","icon":"monday.svg","description":"Manage projects, tasks, and workflows in Monday.com","auth":{"type":"oauth2","provider":"monday","authorizationUrl":"https://auth.monday.com/oauth2/authorize","tokenUrl":"https://auth.monday.com/oauth2/token","scopes":["me:read","boards:read","boards:write"],"requiredApis":[{"name":"Monday.com Developers","enableUrl":"https://monday.com/developers/apps"}]},"envVars":[{"name":"MONDAY_CLIENT_ID","description":"Monday.com OAuth Client ID","required":true,"sensitive":false,"docsUrl":"https://developer.monday.com/apps/docs/oauth"},{"name":"MONDAY_CLIENT_SECRET","description":"Monday.com OAuth Client Secret","required":true,"sensitive":true,"docsUrl":"https://developer.monday.com/apps/docs/oauth"}],"tools":[{"id":"list-boards","name":"List Boards","description":"List all boards in the workspace","requiresWrite":false},{"id":"list-items","name":"List Items","description":"List items in a board","requiresWrite":false},{"id":"get-item","name":"Get Item","description":"Get details of a specific item","requiresWrite":false},{"id":"create-item","name":"Create Item","description":"Create a new item in a board","requiresWrite":true},{"id":"update-item","name":"Update Item","description":"Update an existing item","requiresWrite":true}],"prompts":[{"id":"my-items","title":"Show my items","prompt":"List all items assigned to me in Monday.com with their status and due dates.","category":"productivity","icon":"list"},{"id":"create-item","title":"Create an item","prompt":"Create a new item with a name, status, and assign it to someone.","category":"productivity","icon":"plus"}],"suggestedWith":["slack","notion","asana"]},
-  {"name":"neon","displayName":"Neon","icon":"neon.svg","description":"Manage Neon Postgres projects, branches, and execute database queries","auth":{"type":"api-key","requiredApis":[{"name":"Neon Management API","enableUrl":"https://console.neon.tech/app/settings/api-keys"}],"tokenName":"API Key","docsUrl":"https://neon.tech/docs/manage/api-keys"},"envVars":[{"name":"NEON_API_KEY","description":"Neon API Key for Management API access","required":true,"sensitive":true,"docsUrl":"https://neon.tech/docs/manage/api-keys"},{"name":"DATABASE_URL","description":"PostgreSQL connection string for database queries","required":true,"sensitive":true,"docsUrl":"https://neon.tech/docs/connect/connect-from-any-app"}],"tools":[{"id":"list-projects","name":"List Projects","description":"List all Neon projects in your account","requiresWrite":false},{"id":"list-branches","name":"List Branches","description":"List all branches for a specific project","requiresWrite":false},{"id":"query-database","name":"Query Database","description":"Execute SQL queries against the connected database","requiresWrite":false},{"id":"list-tables","name":"List Tables","description":"List all tables in the connected database","requiresWrite":false},{"id":"describe-table","name":"Describe Table","description":"Get detailed schema information for a specific table","requiresWrite":false}],"prompts":[{"id":"check-db-status","title":"Check database status","prompt":"Show me the status of my Neon projects and their branches.","category":"database","icon":"database"},{"id":"explore-schema","title":"Explore database schema","prompt":"List all tables in my database and show me the schema for the main tables.","category":"database","icon":"table"},{"id":"query-data","title":"Query database","prompt":"Help me query my database to find specific data.","category":"database","icon":"search"}],"suggestedWith":["stripe","clerk","vercel"]},
+  {"name":"neon","displayName":"Neon","icon":"neon.svg","description":"Manage Neon Postgres projects, branches, and execute database queries","auth":{"type":"api-key","requiredApis":[{"name":"Neon Management API","enableUrl":"https://console.neon.tech/app/settings/api-keys"}],"tokenName":"API Key","docsUrl":"https://neon.tech/docs/manage/api-keys"},"envVars":[{"name":"NEON_API_KEY","description":"Neon API Key for Management API access","required":true,"sensitive":true,"docsUrl":"https://neon.tech/docs/manage/api-keys"},{"name":"DATABASE_URL","description":"PostgreSQL connection string for database queries","required":true,"sensitive":true,"docsUrl":"https://neon.tech/docs/connect/connect-from-any-app"}],"npmDependencies":{"pg":"^8.13.1"},"tools":[{"id":"list-projects","name":"List Projects","description":"List all Neon projects in your account","requiresWrite":false},{"id":"list-branches","name":"List Branches","description":"List all branches for a specific project","requiresWrite":false},{"id":"query-database","name":"Query Database","description":"Execute SQL queries against the connected database","requiresWrite":false},{"id":"list-tables","name":"List Tables","description":"List all tables in the connected database","requiresWrite":false},{"id":"describe-table","name":"Describe Table","description":"Get detailed schema information for a specific table","requiresWrite":false}],"prompts":[{"id":"check-db-status","title":"Check database status","prompt":"Show me the status of my Neon projects and their branches.","category":"database","icon":"database"},{"id":"explore-schema","title":"Explore database schema","prompt":"List all tables in my database and show me the schema for the main tables.","category":"database","icon":"table"},{"id":"query-data","title":"Query database","prompt":"Help me query my database to find specific data.","category":"database","icon":"search"}],"suggestedWith":["stripe","clerk","vercel"]},
   {"name":"notion","displayName":"Notion","icon":"notion.svg","description":"Search, read, and create pages in Notion workspaces","auth":{"type":"oauth2","provider":"notion","authorizationUrl":"https://api.notion.com/v1/oauth/authorize","tokenUrl":"https://api.notion.com/v1/oauth/token","scopes":[],"tokenAuthMethod":"basic","requiredApis":[{"name":"Notion Integration","enableUrl":"https://www.notion.so/my-integrations"}]},"envVars":[{"name":"NOTION_CLIENT_ID","description":"Notion OAuth Client ID (from your integration)","required":true,"sensitive":false,"docsUrl":"https://www.notion.so/my-integrations"},{"name":"NOTION_CLIENT_SECRET","description":"Notion OAuth Client Secret","required":true,"sensitive":true,"docsUrl":"https://www.notion.so/my-integrations"}],"tools":[{"id":"search-notion","name":"Search Notion","description":"Search pages and databases in the workspace","requiresWrite":false},{"id":"read-page","name":"Read Page","description":"Read the content of a Notion page","requiresWrite":false},{"id":"create-page","name":"Create Page","description":"Create a new page in a database or as a subpage","requiresWrite":true},{"id":"query-database","name":"Query Database","description":"Query a Notion database with filters and sorts","requiresWrite":false}],"prompts":[{"id":"search-docs","title":"Search my docs","prompt":"Search my Notion workspace for relevant documentation or notes about a topic.","category":"productivity","icon":"search"},{"id":"summarize-page","title":"Summarize a page","prompt":"Read and summarize a specific Notion page. Extract the key points and action items.","category":"productivity","icon":"document"},{"id":"create-meeting-notes","title":"Create meeting notes","prompt":"Create a new meeting notes page with today's date, attendees, agenda, and action items sections.","category":"productivity","icon":"plus"}],"suggestedWith":["gmail","slack","calendar"]},
   {"name":"onedrive","displayName":"OneDrive","icon":"onedrive.svg","description":"Access and manage files in Microsoft OneDrive","auth":{"type":"oauth2","provider":"microsoft","authorizationUrl":"https://login.microsoftonline.com/common/oauth2/v2.0/authorize","tokenUrl":"https://login.microsoftonline.com/common/oauth2/v2.0/token","scopes":["Files.Read","Files.ReadWrite","Files.Read.All","Files.ReadWrite.All","offline_access"],"tokenAuthMethod":"body","requiredApis":[{"name":"Microsoft Graph API","enableUrl":"https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"}]},"envVars":[{"name":"MICROSOFT_CLIENT_ID","description":"Microsoft Azure App Client ID (shared with Outlook/Teams/SharePoint)","required":true,"sensitive":false,"docsUrl":"https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"},{"name":"MICROSOFT_CLIENT_SECRET","description":"Microsoft Azure App Client Secret","required":true,"sensitive":true,"docsUrl":"https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"}],"tools":[{"id":"list-files","name":"List Files","description":"List files and folders in a OneDrive folder","requiresWrite":false},{"id":"search-files","name":"Search Files","description":"Search for files and folders in OneDrive by name or content","requiresWrite":false},{"id":"upload-file","name":"Upload File","description":"Upload or update a file in OneDrive","requiresWrite":true},{"id":"download-file","name":"Download File","description":"Download file content from OneDrive","requiresWrite":false}],"prompts":[{"id":"search-documents","title":"Search documents","prompt":"Search for documents in OneDrive and summarize their content.","category":"productivity","icon":"search"},{"id":"list-recent-files","title":"List recent files","prompt":"Show me the most recently modified files in my OneDrive.","category":"productivity","icon":"document"},{"id":"organize-files","title":"Organize files","prompt":"Help me organize and manage files in my OneDrive storage.","category":"productivity","icon":"folder"},{"id":"backup-file","title":"Backup a file","prompt":"Upload and backup a file to my OneDrive storage.","category":"productivity","icon":"upload"}],"suggestedWith":["outlook","teams","sharepoint"]},
   {"name":"outlook","displayName":"Microsoft Outlook","icon":"outlook.svg","description":"Read, send, and manage Outlook emails","auth":{"type":"oauth2","provider":"microsoft","authorizationUrl":"https://login.microsoftonline.com/common/oauth2/v2.0/authorize","tokenUrl":"https://login.microsoftonline.com/common/oauth2/v2.0/token","scopes":["Mail.Read","Mail.Send","Mail.ReadWrite","offline_access"],"tokenAuthMethod":"body","requiredApis":[{"name":"Microsoft Graph API","enableUrl":"https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"}]},"envVars":[{"name":"MICROSOFT_CLIENT_ID","description":"Microsoft Azure App Client ID (Application ID)","required":true,"sensitive":false,"docsUrl":"https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"},{"name":"MICROSOFT_CLIENT_SECRET","description":"Microsoft Azure App Client Secret","required":true,"sensitive":true,"docsUrl":"https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade"}],"tools":[{"id":"list-emails","name":"List Emails","description":"List recent emails from inbox or a specific folder","requiresWrite":false},{"id":"get-email","name":"Get Email","description":"Get detailed information about a specific email","requiresWrite":false},{"id":"send-email","name":"Send Email","description":"Send a new email message","requiresWrite":true},{"id":"search-emails","name":"Search Emails","description":"Search emails by query, subject, sender, or date","requiresWrite":false},{"id":"list-folders","name":"List Folders","description":"List all mail folders in the mailbox","requiresWrite":false}],"prompts":[{"id":"check-emails","title":"Check my emails","prompt":"List my recent unread emails and summarize the most important ones.","category":"productivity","icon":"mail"},{"id":"search-emails","title":"Search my emails","prompt":"Search my emails for specific topics, senders, or date ranges.","category":"productivity","icon":"search"},{"id":"draft-email","title":"Draft an email","prompt":"Help me draft a professional email with proper formatting and tone.","category":"productivity","icon":"compose"}],"suggestedWith":["teams","calendar","gmail"]},

package/src/src/integrations/schema.ts

@@ -151,6 +151,14 @@ export const IntegrationConfigSchema = z.object({
   description: z.string(),
   auth: OAuthConfigSchema,
   envVars: z.array(EnvVarSchema).optional(),
+  /**
+   * Optional map of npm packages to semver ranges. When this integration is
+   * selected during `veryfront init`, these deps are merged into the
+   * generated project's `package.json#dependencies`. Use this for templates
+   * that import packages beyond the init scaffold's defaults (react,
+   * react-dom, veryfront, zod).
+   */
+  npmDependencies: z.record(z.string(), z.string()).optional(),
   tools: z.array(IntegrationToolSchema),
   prompts: z.array(IntegrationPromptSchema).optional(),
   suggestedWith: z.array(z.string()).optional(),