Concept Catalog

Generated from the live DSL by cmd/docs-gen -- do not hand-edit. A memQL node is an instance of one of these concepts; each concept's fields below are its schema.

Total: 102 concepts.

#v1:agents:agent

System-level AI assistant templates with configurable capabilities, personalities, and provider settings. Global-scoped: lives in _system alongside v1:identity:user, since per-user platform agents (assistant, plannerAgent, trainerAgent) are infrastructure that every tenant sees the same way -- keyed by ownerUserId payload field, addressed canonically as _system:v1:agents:agent:<seedName>-<userShortId>.

Relationships: parent -> v1:identity:user

#v1:agents:agentAuthorization

Standing authorization granting an agent permission to trigger Plans of certain kinds without per-Plan user approval. Per Q4 Option B (tiered trust + opt-in autonomy): agent-proactive Plans default to 'requires user approval' (canvas suggestion card -> click Approve to start); the user can graduate a specific agent to standing authorization for specific plan kinds via the 'Approve & always allow this' button on the suggestion card. The grant is per (agentId, planKind, spaceScope) and carries a per-grant token budget cap + an expiry so autonomy is bounded by default.

#v1:agents:agentRole

First-class catalog of agent roles. A role is the spine of an agent's identity: it picks the locked minimum skills (knowledge + tool + live-source bundles), declares the recommended LLM policy, and caps how many skills an agent in the role may carry at once. The role is the contract the assistant fulfills when it auto-creates a specialist mid-conversation -- pick the role, copy its locked + default skills onto the new agent, materialize the row. Lock semantics (#158): lockedSkillIds is the minimum required set for any agent carrying this role. The cockpit's Studio renders locked rows with a lock icon; mutationUpdateAgent rejects writes that strip a locked id (server-side enforcement, not just UI). defaultSkillIds is pre-selected when the agent is created but the user / planner may remove them later. forbiddenSkillIds hard-denies skills the agent factory MUST NOT grant. availableSkillIds (when non-empty) is the inclusive 'visible in the picker' set; empty = anything not forbidden is permitted. maxSkills caps the count -- 5 for specialists, 2 for the assistant by default. Predefined rows are re-seeded on every startup; user-created roles default to predefined=false and stay fully editable. Per-user roles are global-scoped because routing decisions (cognition / conductor) need to see the same role surface across every partition.

#v1:agents:avatarPersona

Operator-curated avatar persona catalog (memql#609). Global operator catalog -- like agentRole / skill: a shared set of vendor-minted avatar personas every user PICKS from when creating an assistant (copresent#239). Each row is minted ONCE from an operator image into ONE vendor (Anam or Simli) by the make avatar-mint tooling, which captures the vendor-issued id and emits the seed under dsl/agents/avatarPersonas.memql. When a user picks a persona the agent's avatarPersonaId/avatarVendor are stamped from the entry; the voice-agent resolves the persona at session start (integrations/voice/agent/avatar_*.go). Per-assistant vendor choice: an entry belongs to exactly one vendor.

#v1:agents:operatorMemory

Session-scoped memory for UI-driving agents. One record per user; accumulates short notes across takeovers so the operator agent can learn the user's app usage patterns and shortcut repeat work.

Relationships: parent -> v1:identity:user

#v1:agents:skill

First-class capability bundle: a named unit of (knowledgeDomains + toolSlugs + liveSources) that the Planner Agent attaches to agents in createSpecialist / extendSpecialist. After the full skills rollout (#157 -> #158 -> #159) the agent factory pulls skills off the catalog rather than threading parallel flat lists; this concept is the spine of that surface. Phase 1 (this PR) lands the schema + a 13-row predefined catalog; consumers don't read skills yet. Phase 2 migrates roles + agents to skillIds[]; Phase 3 lands the mintSkill authority + approval card.

#v1:agents:skillChangeEvent

Append-only audit log for every skill attach / reconfigure event on an agent. Mirrors v1:knowledge:validationEvent: denormalized state lives on the agent row for fast queries; this event log carries the per-mutation history the planner trace viewer (cockpit#125) and audits replay against. Two writes per attach (the agent row update + the event row); cheap. Phase 1 lands the concept; Phase 2 starts writing rows from the agent factory. detached is reserved for a future phase -- v1 is append-only because no consumer currently reads the negative path.

#v1:authoring:bundle

An atomic, versioned unit of planner-authored DSL: one automation plus the dependency closure it needs (logic / shapes / specs / traits / policies / mutations / queries / prompts), compiled from a user Responsibility. The bundle is the unit of validation and activation -- the whole closure passes Gate 1 (isolated compile+bind), Gate 2 (tiered behavioral dry-run), and Gate 3 (user approval) together, then activates together into the sandboxed authored-construct runtime (#959). Never part of the core engine Init() path, so a malformed bundle can never brick the cluster. Member constructs are v1:authoring:construct rows pointing back via bundleId.

#v1:authoring:construct

One authored DSL construct that is a member of a v1:authoring:bundle: the .memql source for an automation / logic / shape / spec / trait / policy / mutation / query / prompt, plus its cached compiled form. These are the NET-NEW constructs the planner authored because nothing existing fit (compose-first, author-the-gap); reused constructs are recorded on the bundle's reusedConstructRefs instead. After a bundle activates, a construct can be promoted into the per-owner reusable catalog (catalogued=true) so later bundles compose it -- the catalog match key lives in catalogKey (#957).

#v1:authoring:dependencyEdge

One dependency edge in a bundle's construct graph (epic memql#954, issue #957). Construct fromConstruct (kind fromKind) in bundle bundleId depends on construct toName (kind toKind), which resolves from toSource (core = sealed engine, catalog = the owner's reusable catalog, bundle = bundle-local). Edges are recorded at compile time so the catalog can run IMPACT ANALYSIS -- 'which bundles depend on this construct' -- before a shared / cataloged construct changes. This is the reuse-coupling mitigation from the design doc: editing a cataloged construct re-validates its dependents.

#v1:calendar:calendarEvent

A single calendar event owned by one user. The app-native source of truth for that user's schedule (#642): the reactive harness's reminder triggers read queryUpcomingEvents over these rows ('remind me the day before X'), and the calendar tool/skill lets agents create + list + edit them. source discriminates native (first-party, the only writer in v1) from externalSync (a future Google/CalDAV sync via knowledge:liveConnector, which stamps externalRef back to the upstream event id). recurrence is an optional RFC-5545 RRULE string carried verbatim for v1 -- expansion into concrete occurrences is a downstream concern, not stored here.

Relationships: parent -> v1:identity:user

#v1:cluster:cluster

A memQL cluster -- the top-level deployment unit consisting of a shared database and seed nodes (bff, cognition, planner). Partitions exist within a cluster for data isolation.

#v1:cluster:database

A PostgreSQL database instance backing a memQL cluster. Tracks connection info, engine version, and installed extensions.

#v1:cluster:identityProvider

An identity provider used for authentication and user management in a memQL cluster. Typically the in-house identity service (component/identity), surfaced for cluster-topology dashboards.

#v1:cluster:node

A registered node in the memQL cluster. The record is written on registration and updated on every liveness transition (connecting, healthy, degraded, draining, offline, stopped). States mirror the NodeHealthStatus enum defined in component/node/node.proto -- that proto is the source of truth.

#v1:cluster:nodeType

Definition of a node type and its expected capabilities.

#v1:cluster:spawnEvent

Lifecycle event recording node state transitions (started, stopped, failed). Used for audit trail and cluster state recovery. Legacy name retained for data compatibility.

#v1:cluster:trainingResult

Ephemeral result node returned by trainAgent + trainAgentRetryStep capability handlers. Carries the per-run summary (counts of chunks indexed, identity-vector + system-prompt write status, retry-plan ids when the in-handler retry exhausted, elapsed wall-clock). The frontend reads this off the bundle to render the in-card success toast; the same fields also land on the training.completed canvas card for the historical record. Not intended to be queried -- it's a transit container, not a persisted entity. Cache TTL 0 + skipDeleted matches the other Plan/Task lifecycle concepts.

#v1:cognition:audioOverride

Per-(spaceId, agentId) audio control override. Lets a user dial a single agent's TTS publication on / off / mirror_user inside one space without changing the agent's own default (audioControl on v1:agents:agent). Written by the orb-corner overlay in PresencePanel + the canvas presence widget. Read by the cognition handler before forwarding TTS to the Bridge Agent: an active override beats the agent default; absence falls through to the agent default. id is the deterministic audioOverride:<spaceId>:<agentId> so re-toggling on the same orb hits the same row instead of growing a per-click history.

Relationships: parent -> v1:cognition:space, interactsWith -> v1:agents:agent

#v1:cognition:client:tool:request

Ephemeral request envelope for a client-executed tool call bridging cluster nodes. Inserted by cognition's client-tool relay when the agent node emits a ClientToolCall that needs to reach a browser stream on BFF. The browser (via its client-tool relay bridge) subscribes to these events, dispatches the tool, and inserts a matching v1:cognition:client:tool:response. Records are not retained -- once the response arrives the pair is a no-op for future consumers. Lives under v1:cognition because the relay is a cognition-level concern (mediating between the agent loop and the browser stream); consuming products need not define their own variant.

#v1:cognition:client:tool:response

Ephemeral response envelope paired with a v1:cognition:client:tool:request. Inserted by the browser after it dispatches the tool via the client-tool relay bridge. Cognition subscribes to these events, matches on callId, wraps the payload in a ClientToolResult MemqlClientMessage and forwards it to the agent node via AiForwardRequest so the parked agent tool-loop waiter unblocks.

#v1:cognition:greetSuppression

Short-lived marker that suppresses the greet-on-join LLM greeting for a space while a first-run walkthrough / guide is starting (copresent#252). The frontend arms it (deterministic id per space) when a brand-new user's first-run flow begins; greet-on-join reads it (queryActiveGreetSuppression) and SKIPS the greeting + LLM call when a non-expired one exists -- so the wasteful opening greeting doesn't fire while the guided intake is taking over the conversation. TTL-bounded via expiresAt so it never permanently mutes greetings. id is the deterministic greetSuppression-<hash(canonical spaceId)> so re-arming the same space upserts the latest row instead of growing history. Space-scoped (read by the cognition handler), mirroring v1:cognition:audioOverride.

Relationships: parent -> v1:cognition:space

#v1:cognition:guardrailHealth

Rolled-up guardrail health metrics for a time window. Written by the rollupGuardrailHealth automation from v1:cognition:unmetCapability rows; advisory-only signal for tuning the fit-score threshold and identifying missing specialist domains. One row per rollup run.

#v1:cognition:micState

Per-(spaceId, userId) mic state record. The CoPresent MediaControls footer writes this on every mic toggle so the cognition handler can resolve mirror_user audio control: when the user mutes, mirror_user agents skip TTS publish on their next turn; when the user unmutes, they speak. id is the deterministic micState:<spaceId>:<userId> so the latest toggle wins at read time without growing a per-click history. Distinct from v1:cognition:participant.presence -- that record carries SI-side state (thinking / responding / etc) and we don't want mic toggles in the same versioned chain.

Relationships: parent -> v1:cognition:space, parent -> v1:identity:user

#v1:cognition:misrouteFeedback

Append-only audit row capturing the misroute classifier's prediction and the user's response. Phase 8 feedback corpus -- drives tuning of the wrong-tab gating classifier whose toggle is exposed in CoPresent's Conversation Preferences (misrouteSafetyEnabled). forUserId is SERVER-STAMPED from actor.userId pre-insert. One row per classifier-gated send: when the user moves the message, dismisses the warning, the timeout fires, or the classifier blocks outright. Authz tier: owned. Spec ref: memql#190.

Relationships: parent -> v1:cognition:space

#v1:cognition:participant

A human or SI participant instance within a space.

Relationships: interactsWith -> v1:agents:agent, parent -> v1:cognition:space, parent -> v1:identity:user, interactsWith -> v1:identity:user

#v1:cognition:participant:presence

UI-friendly presence snapshot for a participant (especially AI). Used to show current agent status such as thinking/responding/waiting.

Relationships: parent -> v1:cognition:space, parent -> v1:cognition:participant

#v1:cognition:privateUtterance

Per-user 'Team-tab' utterance -- the private thread sister of v1:cognition:utterance. Each row lives in exactly one user's Team thread inside a space (the row's forUserId names the owner); the group thread reads NEVER surface it. forUserId is SERVER-STAMPED from actor.userId on insert -- callers cannot land a privateUtterance in someone else's thread regardless of what they pass. Authz tier: owned. Driven by the SPA's Team-tab + misroute Move flows (visionarys-io/copresent#44, Phase 8). Spec ref: memql#190.

Relationships: parent -> v1:cognition:space, interactsWith -> v1:cognition:participant

#v1:cognition:session

Real-time interaction state tracking device + stream + activity for a participant in a space. Audio capability is gated by the user's mic toggle (humanInput.microphoneEnabled) plus the agent's audioControl mode -- there is NO tier ceiling anymore. Whether voice flows in / out of the room is purely a function of who has their mic open and which agents are configured to publish TTS.

Relationships: parent -> v1:cognition:space, parent -> v1:cognition:participant

#v1:cognition:space

Persistent rooms where humans and AI assistants meet, converse, and interact. Every space is a multi-participant room with a bounded capacity for humans and for agents -- there is no longer a 1:1 vs group distinction.

Relationships: parent -> v1:identity:user, contains -> v1:cognition:participant, owns -> v1:cognition:turn:state, contains -> v1:cognition:utterance

#v1:cognition:space:context

Queryable runtime context snapshot for a space (participants, sessions, media activity). Intended to improve AI turn-taking and provide UI context.

Relationships: parent -> v1:cognition:space

#v1:cognition:text:chunk

A streaming text chunk emitted incrementally during AI response generation. The frontend subscribes to creation events and accumulates chunks into a real-time message.

Relationships: parent -> v1:cognition:space, createdBy -> v1:cognition:participant

#v1:cognition:turn:state

Tracks conversation turn-taking state including who is speaking and AI participation permissions.

Relationships: parent -> v1:cognition:space

#v1:cognition:unmetCapability

A single instance of the cognition router determining that no agent in a space could meet the user's request -- either the assistant stepped in as fallback (specialist_gap) or nobody could help (full_gap). Emitted by cognition via the cognition.capability.unmet event and consumed by the guardrail health rollup for product-level insight into missing capabilities.

Relationships: parent -> v1:cognition:space

#v1:cognition:utterance

A single multi-modal contribution to the conversation stream.

Relationships: interactsWith -> v1:cognition:participant, interactsWith -> v1:cognition:utterance, parent -> v1:cognition:space

#v1:cognition:videoOverride

Per-(spaceId, agentId) video control override. Lets a user dial a single agent's avatar publication on / off / mirror_user inside one space without changing the agent's own default (videoControl on v1:agents:agent). Mirrors v1:cognition:audioOverride exactly -- same fields, same id pattern, same write/read paths -- but governs lip-synced video instead of TTS audio. Read by the voice-agent process at session start (Phase 9): an active override beats the agent default; absence falls through to the agent default. id is the deterministic videoOverride:<spaceId>:<agentId> so re-toggling on the same orb hits the same row instead of growing a per-click history.

Relationships: parent -> v1:cognition:space, interactsWith -> v1:agents:agent

#v1:common:attachment

A file attachment uploaded to a space, with extracted transcription.

Relationships: parent -> v1:cognition:space

#v1:common:documentChunk

A single retrievable text chunk attached to a knowledge domain. Chunks are produced by the knowledge ingestion integration (which splits source text and embeds each chunk). The embedding itself lives in the node_vectors table keyed by this chunk's id, via integration.embedding.store with vectorField='content'. Per Q8: text-style breakdowns of user-uploaded Documents (PDF sections, markdown chunks, plain text chunks) reuse this concept rather than duplicating the chunk infrastructure into a new typed concept.

Relationships: parent -> v1:common:knowledgeDomain

#v1:common:knowledgeBridge

Synthetic 'bridge' that combines multiple knowledge domains for a specific role. Generated per-agent at training time when an agent has 2+ knowledge domains attached: the bridge captures cross-domain connections specific to that combination + role (e.g. how a customer-service agent applies tax_law + accounting differently from a legal-compliance agent applying the same two domains). Hash-keyed by (roleSlug, sortedDomainIds) so identical combinations across agents share the same bridge corpus -- pay for the LLM call once per (role, combo) pair, reuse for all subsequent agents that match. Per docs/planning/knowledge-seeder.md (v2 bridge chunks).

#v1:common:knowledgeDomain

A knowledge domain that agents can specialise in. First-class replacement for the hardcoded domain list that used to live in the frontend. Each domain can have document chunks ingested into it for retrieval-augmented generation, and can declare which tool slugs REQUIRE it (so the UI auto-adds it when the user picks a tool like copresent_takeover). Per Q21: user-created domains carry a scope (workspace = visible to all in partition; private = visible only to owner) plus an ownerId; seeded domains stay workspace-scoped with ownerId null (system-owned). Per docs/planning/knowledge-seeder.md: seeded domains carry a tier (A=auto-seed, B=auto-seed with disclaimer, C=high-stakes, do-not-auto-seed) that drives the seeder pipeline's content strategy.

#v1:common:media

Audio, video, image, and document assets referenced by utterances.

Relationships: parent -> v1:cognition:space

#v1:curriculum:curriculum

A guided lesson plan that an agent with the app-control tool set can run. Consumed by the CoPresent Operator on the client and executed segment by segment. The first consumer is the first-login demo (copresent.welcome.v1); future consumers are education agents running lessons against CoPresent or other apps.

#v1:curriculum:segment

One step in a v1:curriculum:curriculum. Carries the GA's narration, the tool calls the GA should consider making, and the options the user can pick to advance the graph. Authoring model is hybrid: a segment has a goal and a set of recommendedSteps the GA follows by default but may deviate from based on runtime context (e.g., user already created a space, user asked a side question, user is confused). Options carry an explicit nextSegmentId when the author knows the route, or a roleTag the GA resolves to a concrete target at runtime.

Relationships: parent -> v1:curriculum:curriculum

#v1:data:log

Audit log entry for validation state transitions. Tracks who performed each check, confirm, or revert action, when, and why.

Relationships: parent -> v1:data:record

#v1:data:policy

Validation policy defining check/confirm requirements for a record type. Controls how many synthetic checks and human confirmations are needed, and whether checked data is usable before full confirmation.

Relationships: parent -> v1:cognition:space

#v1:data:record

Data record with validation lifecycle: draft -> checked -> confirmed. Replaces the staging/production split with a unified concept where data visibility is governed by validation state and policy.

Relationships: parent -> v1:cognition:space

#v1:guide:guide

A persisted, re-runnable Guide: an ordered sequence of Scenes the General Assistant narrates while driving the CoPresent UI + Canvas in an immersive voice-to-voice walkthrough. Authored on the fly from a voice intake (copresent#194) and run by the client Guide runtime (copresent#190). Consumed first by the first-run walkthrough (copresent#195), then generalised to anytime demo/teach (copresent#196). Evolves v1:curriculum:curriculum -- same parent+ordered-children shape -- as a distinct namespace so the training-studio Curriculum stays untouched.

#v1:guide:scene

One Scene in a v1:guide:guide: the unit of a Guide. Carries the narration INTENT the GA voices (it may paraphrase, staying on-intent), the Canvas actions to perform (publish content + live annotation directives), optional avatar directives, and the interruptibility contract (interruptible / allowsQuestions) the locked-Scene control enforces (copresent#191). Scenes are ordered by order; the runtime advances on Scene completion / agent decision. Evolves v1:curriculum:segment -- narration + recommended actions + ordering -- without the option-graph branching (a Guide is a linear narrated sequence, not a choose-your-own-path).

Relationships: parent -> v1:guide:guide

#v1:harness:consolidationCursor

The per-owner consolidation watermark (#586), stored as a node so the consolidation loop's bookkeeping is itself durable + queryable -- no separate cursor store. Holds the createdAt boundary of the most recent episodic batch already consolidated for this owner; each scheduled run reads only episodes with createdAt > watermark, then advances the watermark to the newest episode it processed. This is what makes consolidation INCREMENTAL: cost is bounded by the new-episode delta, not total history, as the agent's log grows without bound. One row per owner (content-addressed id on ownerUserId), updated in place. ownerUserId is the per-row authz key (owned tier), stamped from actor.userId at create time.

Relationships: parent -> v1:identity:user

#v1:harness:observation

What actually happened during a step -- the agent's own actions made durable and recall-able. One observation per meaningful event (a tool result, an error, a note, a decision). The content field is the embedding text: the harness's embedding loop stores it into node_vectors keyed by this observation's id (via integration.embedding.store with vectorField='content'), so observations become recall-able memory feeding the recall path in #585 -- the agent can semantically search its own history ('what did I try last time I hit this error?'). The embedding field carries the vector once computed; until then recall reads node_vectors directly. ownerUserId is the per-row authz key (owned tier), stamped from actor.userId at create time. Provenance is automatic via the engine-stamped createdBy intrinsic.

Relationships: parent -> v1:identity:user, parent -> v1:harness:step, parent -> v1:harness:plan

#v1:harness:plan

The desired state of a unit of agent work -- the spine the reconciler (#583) drives and everything else reads. A Plan is the user/agent mental anchor (the goal); Steps are the executable decomposition that hang off it via step.plan. Lifecycle: open -> running -> done/failed/cancelled. ownerUserId is the per-row authorization key (owned tier): stamped from actor.userId at create time so only the owner reaches the plan's reads/writes. Provenance is automatic -- the engine stamps createdBy from the authenticated actor on every inserted version; provenanceMutation records WHICH mutation produced this version so the audit trail names the transition, not just the actor.

Relationships: parent -> v1:identity:user, owns -> v1:harness:step

#v1:harness:semanticMemory

A durable, distilled belief consolidated from episodic memory (#586) -- a stable fact, preference, or learned outcome the agent should keep across plans. The content field is the embedding text: the consolidation + embedding loop stores it into node_vectors keyed by this memory's id (integration.embedding.store, vectorField='content'), mirroring v1:harness:observation and v1:common:documentChunk, so semantic memories are themselves similarTo-recall-able -- both for the recall path (#585) and for the dedup step of consolidation itself (before writing a new belief, similarTo against existing semanticMemory rows; reinforce the match instead of duplicating). Provenance is the killer feature: sourceEpisodes links every belief back to the episodic node ids that formed it, so a belief is always auditable. confidence rises on reinforcement and decays when a belief goes unreinforced; lastReinforced is the decay clock. ownerUserId is the per-row authz key (owned tier), stamped from actor.userId at create time; only the owner reaches their own beliefs.

Relationships: parent -> v1:identity:user, formedFrom -> v1:harness:observation

#v1:harness:step

A unit of work inside a Plan -- one DAG node. Steps form a DAG via dependsOn (not a flat list), enabling parallel specialists. The status state machine is: pending -> ready (dependsOn satisfied) -> running (controller claims) -> done (result recorded) / failed (error, attempts exhausted) / blocked (needs another step); blocked -> ready (blocker done); failed -> ready (retry, attempt++); done is terminal. Invalid transitions (e.g. done -> running) are rejected by the engine pre-insert guard (component/memql/harness_step_validation.go) since the append-only model cannot express a state machine in the DSL alone. idempotencyKey makes step execution safe to retry / replay (critical for the event-sourced loop in #583). ownerUserId is the per-row authz key (owned tier), stamped from actor.userId at create time. Provenance: the engine stamps createdBy automatically; provenanceMutation names the transition.

Relationships: parent -> v1:identity:user, parent -> v1:harness:plan, dependsOn -> v1:harness:step, interactsWith -> v1:agents:agent

#v1:identity:accessRequest

Self-service access request placed on the waitlist queue. Created when an unknown email submits the registration form while IDENTITY_REGISTRATION_MODE=approval. Admins triage rows in the admin console: approval mints a v1:identity:invitation and emails a magic link; rejection stamps the reason and closes the row. Also auto-aged by the accessRequestExpirySweep cron once IDENTITY_ACCESS_REQUEST_EXPIRY_DAYS has elapsed without a decision. Global scope so admins in any partition (typically owners of the cluster) can review the queue.

Relationships: parent -> v1:identity:user, parent -> v1:identity:invitation

#v1:identity:accountEntitlement

Per-account entitlement that caps the number of CONCURRENTLY-RUNNING tasks (Plans) a paying account may have across all of its spaces, sourced from the billing tier (epic memql#902 / foundation child #903). The cap is per paying account -- v1 keys on v1:identity:user.id (accountKind='user'); accountKind='org' is reserved for a future per-organization rollup where many users share one paying account's slots. DEFAULT = UNLIMITED (enterprise behavior): an account with no row here, an enterprise tier, or a non-positive maxConcurrentTasks is uncapped -- the admission controller (#904) is a no-op until a finite cap is written, so existing / unconfigured accounts behave exactly as today (no regression). The NUMBER (maxConcurrentTasks) is the source of truth so billing can change a tier's cap without a code change; tier is carried alongside purely for the Tasks-UX upgrade / limit messaging (#909) and the enterprise=unlimited shortcut. Global scope (lives in _system) so the planner node's admission controller and the billing / admin writer can both reach it from any partition. One logical row per account: mutationSetAccountEntitlement mints a deterministic id (accountEntitlement-<hash(accountId)>) so each set appends a new time-series version and the latest wins.

Relationships: parent -> v1:identity:user

#v1:identity:auditEvent

Append-only audit log entry. Captures security-relevant events (auth, identity, authorization, configuration, admin) with actor + target + source attribution. Global scope so any cluster operator can read the full trail. Retention controlled by IDENTITY_AUDIT_LOG_RETENTION_DAYS via the daily auditEventRetentionSweep automation. The prevEventHash field is reserved for future hash-chain tamper-resistance; written but not validated in MVP.

Relationships: parent -> v1:identity:user, parent -> v1:identity:identity

#v1:identity:authCode

One-time OAuth authorization code, RFC 6749 §4.1 style. Minted at /auth/magic-link/consume when the originating magic link carried an oauthCtxJSON (third-party OAuth client flow) and exchanged at /oauth/token for an access + refresh token pair. Single-use, redirect-URI bound, client-ID bound, ~60s TTL. Bound to the specific magic-link row it was minted from so a leaked code cannot be replayed across sessions. Global scope: token redemption is unauthenticated and must work without partition context.

Relationships: parent -> v1:identity:user, parent -> v1:identity:identity, parent -> v1:identity:magicLinkRequest

#v1:identity:authSession

Bearer-token session record. One row per access token issued by the identity service's magic-link / refresh flow. Looked up on every authenticated request to enforce per-session revocation; rows past expiresAt are tombstoned by GC, not by user action. Global scope: lives in _system so any partition's middleware can resolve a session.

Relationships: parent -> v1:identity:user, parent -> v1:identity:identity

#v1:identity:clusterSettings

Runtime-editable cluster settings. Single-row concept (id='cluster') that holds the operator-tunable knobs originally bootstrapped from IDENTITY_* env vars. The first-run wizard (Phase 3) writes this row; the admin app (Phase 6) edits it. Service.LiveConfig() reads from here first and falls back to env so a fresh deployment is functional without any post-bootstrap edits. Global scope so the configuration is reachable from every binary that needs it (identity itself plus future per-node verifier middleware).

#v1:identity:delegation

Grants an AI agent the right to act through a user's v1:identity:identity for a bounded role ceiling, scope set, and lifetime. Global scope: lives in _system and is readable from any partition so cross-partition agent work does not require per-partition delegation rows.

#v1:identity:group

Organization group. Users belong to groups; agents are assigned to groups for scoped access control. Created and managed in-app; the externalId field is preserved for any legacy rows that came from a previous external sync source.

#v1:identity:identity

An account or credential set owned by a v1:identity:user. One user can have many identities: a magic-link verified email, OAuth accounts on external apps, API keys (Personal Access Tokens), or service accounts. Agents borrow identities to act on the user's behalf via v1:identity:delegation. Global scope: lives in _system and is readable from any partition.

#v1:identity:invitation

Token-hashed invitation credential. Maps an invitee (existing user by ID, or external guest by email + token) to an optional product scope hint. The identity layer owns the lifecycle (pending/accepted/expired/cancelled) and the auth primitive; product layers populate spaceId/spaceName and any display-name denormalizations they need. Global-scoped: an unauthenticated /join/<token> resolve has no envelope partition, and even authenticated invitees may live in a different partition than the inviter, so token -> invitation lookup must work without a partition context. Product-side rows that REFERENCE invitations (e.g. v1:copresent:participation) stay partition-scoped on the partition where the work actually happens.

Relationships: parent -> v1:cognition:space, parent -> v1:identity:user, parent -> v1:identity:user

#v1:identity:magicLinkRequest

Pending magic-link authentication request. One row per /auth/magic-link issuance. The plain token is hashed (SHA-256) before persistence -- only the hash lives here so a database snapshot can never be replayed into a login. Single-use semantics: consumedAt is set atomically on the first successful click and any subsequent click against the same row is rejected. Past expiresAt the row is also rejected. Global scope so the public unauthenticated /auth/magic-link/consume endpoint can resolve the row regardless of which partition the eventual user belongs to.

Relationships: parent -> v1:identity:invitation

#v1:identity:user

A person (or synthetic principal). Owns identities. Same record cluster-wide.

#v1:identity:workerPairingCode

Short-lived pairing credential for the computer-use enrollment flow. CoPresent's Settings -> Computer Use 'Connect this computer' card mints a row + plain code (XXXX-XXXX, 8 alphanumeric chars from Crockford's Base32 alphabet). The cockpit wizard on the user's machine redeems the code on the cluster's gRPC stream via Authorization: Pair <code>, the redeem handler stamps redeemedAt + redeemedBy, mints a v1:identity:identity worker_token row owned by the same user, and returns the plain mql_wkr_<...> token + cluster URL to the cockpit. Single-use: a row with non-empty redeemedAt is dead. TTL ~10 minutes (IDENTITY_PAIRING_CODE_TTL_MIN, default 10).

Relationships: parent -> v1:identity:user, parent -> v1:identity:identity

#v1:knowledge:document

A user-uploaded file (or chat-promoted segment) that's been analyzed and structured into queryable items. Container concept that owns metadata + back-references; the actual structured content lives in per-format item concepts (v1:knowledge:spreadsheetRow for tabular, v1:knowledge:imageRegion for visual, v1:common:documentChunk for text-style breakdowns of PDFs / markdown / plain text). Per the v1 brainstorm Q8 hybrid model: one Document container query gives the Knowledge page its listing, typed per-format item queries give analytic surfaces (e.g. spreadsheet row column-filters) without JSON-path indirection.

Relationships: parent -> v1:common:attachment, parent -> v1:planner:plan

#v1:knowledge:domainEntitySchema

Per-knowledge-domain entity schema declaration. Specifies what 'an entity' looks like in a domain (entityKind), which fields uniquely identify it (keyFields), and which fields are descriptive (displayFields). Powers cross-file dedup (Q17): when a Document is attached to a domain, the analyzer hashes each item's key field values and looks up the entityIndex to detect duplicates. Per Q17 Option D: the schema is INFERRED by an entity-inference Plan triggered on the SECOND validated Document into a domain (the first Document seeds the inference); the user confirms the proposal once and the schema locks in. Subsequent Documents use it for dedup automatically.

Relationships: parent -> v1:common:knowledgeDomain

#v1:knowledge:entityIndex

The cross-file dedup lookup table. One row per validated entity in a domain (per entityKind), keyed by sha256(normalized key field values). Populated when an item is validated as 'new'; queried during analysis-time / attach-time dedup to detect when an incoming row matches an existing canonical entity. Per Q17/Q26: this is the load-bearing piece of cross-file dedup; without it the HR example ('all of these employees already exist') is unfulfillable.

#v1:knowledge:imageRegion

One detected region inside an image Document. Carries a bounding box, a vision-model-generated caption, and (lazily) a visual embedding. Per Q8: images get their own typed concept because bbox + caption + embedding doesn't fit the text-as-content shape of v1:common:documentChunk.

Relationships: parent -> v1:knowledge:document

#v1:knowledge:liveConnector

Defines a backing data source for one or more v1:knowledge:liveSource rows. A connector is the adapter to a particular kind of upstream: memql concepts (internal), postgres / mysql / mssql (SQL DBs), REST APIs, GraphQL endpoints, custom plug-ins. The engine ships built-in connectors for memql + postgres + REST; new kinds register via the plug-in system. Auth lives in v1:platform:partitionSecret rows referenced by name -- the connector row itself carries only the secret reference, not the secret value.

#v1:knowledge:liveSnapshot

Cached result of a v1:knowledge:liveSource read with a particular set of args. Keyed by (liveSourceId, queryArgsHash) -- a fresh hash collision-free read is materialized once and reused until expiresAt. Per Q8 cachePolicy='bounded_stale'. Tasks-page snapshots can be cited by the agent via the citation envelope's snapshotId so the frontend can render 'fetched X seconds ago' provenance. Optional concept for v1 -- the fetch path can be wired without it and snapshot reuse added in a follow-up.

Relationships: parent -> v1:knowledge:liveSource

#v1:knowledge:liveSource

A named query against a volatile data source. The 'live knowledge' counterpart to v1:common:knowledgeDomain: where a knowledge domain holds pre-embedded chunks that change rarely, a liveSource is a current-state read against an underlying connector (inventory, employees, calendar, tickets, etc.). Agents bind to liveSources via capabilities.liveSources[]; the prompt-context builder pulls fresh results into the system_knowledge block between Tasks. Results carry citations back to the originating liveSourceId + snapshot id so the frontend can render 'fetched 12 seconds ago from inventory' provenance.

#v1:knowledge:spreadsheetRow

One row extracted from a spreadsheet Document. Typed (not polymorphic-via-data) so analytic queries can filter on data.<columnName>=<value> as native column predicates rather than JSON-path indirection. Per the v1 brainstorm Q8: text-style breakdowns reuse v1:common:documentChunk; spreadsheet rows and image regions get their own concepts because their structure can't fit a free-text chunk shape.

Relationships: parent -> v1:knowledge:document

#v1:knowledge:validationEvent

Append-only audit log for every validation status transition on any data-bearing concept (Document, SpreadsheetRow, ImageRegion, documentChunk). Powers the validation history view on Document detail and gives auditing the provenance trail it needs ('who validated this row two months ago when we were ramping up; do they still vouch for it'). Per Q15: denormalized validationStatus on the data concept gives fast queries; this event log gives history. Two writes per validation action; cheap.

#v1:library:artifact

A single Library index row pointing at one underlying source concept (document / generated output / note / to-do / calendar event / memory / live source). Carries the shared provenance + type spine the Library panel needs to list / search / filter / sort across heterogeneous sources, while the actual content stays on the backing concept referenced by sourceConceptRef. The LOCKED backend shape for the Library epic (memql#693): a real index concept, not a UI projection. Per-row authz: owned -- ownerUserId is stamped from actor.userId on every write and every read gates on ownerUserId==actor.userId.

Relationships: parent -> v1:identity:user

#v1:library:generatedOutput

A deliverable PRODUCED through the app (as opposed to an uploaded document): a workbench result, a computer-use output, or a standalone agent output. Carries either inline text (body) or a reference to file bytes (attachmentId -> v1:common:attachment). Auto-promoted into the Library by logicIndexGeneratedOutput on creation. Per-row authz: owned -- ownerUserId is the producing user; reads gate on ownerUserId==actor.userId.

Relationships: parent -> v1:identity:user

#v1:library:memory

A durable memory the assistant retains about the user across sessions (a fact, preference, standing instruction, or episodic recollection). The user-facing LLM-memory concept; surfaced in the Library's Records lens. Per-row authz: owned -- ownerUserId stamped from actor.userId; reads gate on ownerUserId==actor.userId.

Relationships: parent -> v1:identity:user

#v1:memql:checkpoint

Automation execution checkpoints for failure recovery and audit history.

#v1:notes:note

A user-owned standalone note: an optional title, a body, and tags, plus an updatedAt watermark. The standalone notebook concept -- distinct from copresent's canvasState.note caption field. Per-row authz: owned -- ownerUserId is stamped from actor.userId on every write and every read gates on ownerUserId==actor.userId.

Relationships: parent -> v1:identity:user

#v1:observability:codeMetric

Aggregate observability rollups for a code reference over a time window. Backed by TimescaleDB continuous aggregates over the code_invocation hypertable -- callCount, p50/p95/p99 durations, errorRate -- so the cockpit's drill-down sparkline can query the metric for any (codeReference, kind, window) in O(few rows) regardless of how many raw invocations the function had. Aggregates outlive raw rows: when codeProfile.retentionDays evicts the underlying invocation chunk, the matching codeMetric rows for that chunk are preserved by the policy so the trendline stays continuous.

#v1:observability:codeProfile

Live per-function observability configuration. Created on demand: a function only has a codeProfile row when someone wanted to set a non-default level on it (incident response, hot path under investigation, etc.). Resolution at call time is codeProfile -> MEMQL_OBSERVE_LEVEL default -> off. Keyed by codeReference, which matches the model.Node.ID for the Method or Func node in topology.model.json (e.g. 'method:github.com/znasllc-io/memql/component/auth.(*Handler).Login'). Cockpit writes these from the drill-down 'bump verbosity for this method' control; the observe runtime reads them through a CDC-driven cache.

Relationships: parent -> v1:identity:user

#v1:observability:invocation

One captured invocation of a Method or Func. Backed by the code_invocation TimescaleDB hypertable (see scripts/dev/migrations/observability/); rows are time-partitioned, jsonb-compressed after 24h, and dropped per codeProfile.retentionDays. The mutation surface goes through the engine like any other concept so the engine's auth + partition middleware applies uniformly, but the read path on the hot drill-down view is intended to use the continuous aggregates (codeMetric) rather than these raw rows. Hand-querying invocation rows directly is fine for forensic 'last 20 calls to X' lookups.

#v1:planner:plan

A user-visible unit of work the planner orchestrates. Per the v1 brainstorm Q1 (Option D): Plan + Task model where Plans CAN nest via parentPlanId, Tasks always belong to one Plan and never recurse. Plans are the user mental anchor (the thing the user dropped a file for, asked a question about, or kicked off as a workflow); Tasks are the engineer-facing decomposition. Lifecycle covers queued / routing / running (with sub-states for paused / awaitingFeedback / needsAgent), succeeded / failed / cancelled. The planner emits Tasks per Q3's outline+per-phase incremental strategy: the Plan's phases array carries the coarse outline, Tasks emerge per phase with a phase tag.

#v1:planner:responsibility

A user-authored standing directive aimed at an agent (epic #631 / program #629). Three archetypes discriminated by trigger: REACTIVE (a condition is evaluated against incoming signals; fires when it matches -- e.g. 'when a customer escalation mentions a refund, draft a reply'), STANDING (a behavioral always-on directive with no schedule or condition -- e.g. 'always keep the project tracker tidy'), and RECURRING (a cron schedule; the old standingTask -- e.g. 'every Monday 9am summarize last week's marketing performance'). Per-user; the optional scopeSpaceId pins the directive to one space. Consumed by the reactive-loop epic #632 (queryDueResponsibilities feeds the heartbeat-driven evaluator; mutationRecordResponsibilityEvaluation closes the loop). Replaces the retired standingTask concept -- recurring directives carry the same cron schedule + soft-disable + last-run bookkeeping standingTask had.

#v1:planner:task

One executable step inside a Plan. Two flavors discriminated by category: 'semantic' rows are what the Planner Agent decomposes a Plan into (one per logical step); 'toolInvocation' rows are auto-stamped by the engine on every tool call an agent makes (one per call). Tool-call rows attach to their executing semantic row via parentTaskId, giving one level of recursion -- semantic Tasks never have a parentTaskId, tool-call Tasks always do. Sub-goal nesting still happens at the Plan level via parentPlanId (Q1); the recursion here is purely mechanical record-keeping. Per Q13 each Task declares its executionSurface so the planner can route inProcess work to the agent node and containerExecutor work to NemoClaw / homegrown sandboxes.

Relationships: parent -> v1:planner:task

#v1:planner:taskState

Persisted working state of a Task that's parked awaiting user feedback (or has been paused mid-execution). The async-parking + planner re-invocation model from Q18: when an agent calls requestUserFeedback, the agent's process exits cleanly after persisting its working state; when the user responds, the planner re-invokes the agent with this state as bootstrap context. Same machinery powers Pause/Resume (Q12) and refinement-Plan parent-Task resumption (Q9). Per Task; written when the Task transitions to awaitingFeedback / paused; read on resume.

#v1:platform:globalSecret

Instance-wide encrypted secret. Lives in the reserved _system partition (via @scope("global")). The cleartext value is NEVER stored -- only a NaCl secretbox ciphertext (base64(nonce||ct)) under MEMQL_MASTER_KEY and a short fingerprint for UI display. Used for instance-level API keys, OAuth client secrets, Azure/Graph credentials, etc. For per-tenant overrides (BYOK) use v1:platform:partitionSecret; the resolver falls back partition -> global automatically.

#v1:platform:globalVariable

Instance-wide plaintext configuration variable. Lives in the reserved _system partition (via @scope("global")) and is visible to every tenant. Used for instance-level defaults like provider names, feature flags, log levels, and tuning knobs. For per-tenant overrides use v1:platform:partitionVariable. For sensitive values use v1:platform:globalSecret.

#v1:platform:missingCapability

A capability the platform itself cannot yet provide -- a missing tool, missing integration, missing liveSource connector kind, missing knowledge domain category, etc. Distinct from v1:cognition:unmetCapability which fires when the chat router can't find a specialist for an utterance: missingCapability fires when even creating the right specialist wouldn't solve the problem because the underlying platform surface doesn't exist. Logged by the Planner Agent during its capability-gap detection step before agent creation. Becomes the product backlog -- 'these are the things the platform can't do yet that users actually want.' Global-scoped so it's visible across tenants for prioritization.

#v1:platform:partitionSecret

Partition-scoped encrypted secret. Holds per-tenant sensitive values (BYOK vendor API keys, per-tenant Twilio/SMTP creds, etc.). Same wire shape as v1:platform:globalSecret, different scope. The cleartext value is NEVER stored -- only a NaCl secretbox ciphertext under MEMQL_MASTER_KEY and a fingerprint. When the partition-scoped resolver (resolveSecret) cannot find a row, it falls back to v1:platform:globalSecret so a tenant's BYOK key wins over the instance default but the instance default is always available.

#v1:platform:partitionVariable

Partition-scoped plaintext configuration variable. Holds per-tenant non-sensitive overrides (default chat provider, default language, feature flags scoped to a single tenant, etc.). Same wire shape as v1:platform:globalVariable, different scope. When the partition-scoped resolver (resolveVariable) cannot find a row, it falls back to v1:platform:globalVariable so a tenant's override wins over the instance default but the instance default is always available.

#v1:platform:policyTrace

Persisted trace tree for a single policy evaluation. The engine writes one row per evaluation when the resolved policy carries @traces_persisted or when the caller requests PersistTrace=true on the EvaluatePolicy options. The row carries the policy name, the tier, the caller (actor / partition), the args hash (for cache lookup and audit correlation), the JSON-serialized PolicyTrace tree, the computed result, the wall-clock duration in milliseconds, and any error message that arose during evaluation. Retention is governed by the MEMQL_POLICYTRACE_RETENTION_DAYS env var (default 90); the daily purge automation hard-deletes rows whose createdAt + retentionDays < now. Distinct from v1:identity:auditEvent, which is the lightweight @audited per-eval row -- policyTrace is the heavyweight 'I'm debugging WHY this returned X' artifact.

#v1:router:budget

Spend limit for a partition or a specific agent within a partition. The router checks the current-period spend against this cap before every SI call; over-budget calls are refused with a typed error that surfaces in the UI as a clear 'budget reached' state. Rolls over at periodType boundary (UTC day, week, or month).

#v1:router:call

One SI invocation recorded by the memQL SI Router. Every call through the router -- agent replies, prompt renders, suggest endpoints, TTS, transcription -- produces exactly one row here with attribution, token counts, latency, and cost. Partition-scoped usage ledger; the time-series axis rides the shared MemoryNodes hypertable.

#v1:router:modelCatalog

Virtual projection of a registered SI provider entry. Never persisted -- rows are produced at query time by the integration.router.listModels capability from the live provider registry. Lives in the concept registry so the engine can shape results without a database round-trip.

#v1:router:policyCatalog

Virtual projection of a registered SI Router policy. Never persisted -- rows are produced at query time by the integration.router.listPolicies capability from the live policy registry. Lives in the concept registry so the engine can shape results without a database round-trip.

#v1:safety:classification

One row per safety-classifier decision. Captures what the Gate decided, the verdict source (rule / model / cache), the surface + action it was deciding about, and the (redacted) payload. Retention is governed by the MEMQL_SAFETY_CLASSIFICATION_RETENTION_DAYS env var (default 90); the daily purge automation hard-deletes rows whose createdAt + retentionDays < now. Distinct from v1:platform:policyTrace -- policyTrace covers the decision-policy evaluation tree; this concept covers the safety-classifier verdict + final gate decision per command.

#v1:todos:todo

A user-owned to-do item: a titled task with a done flag plus optional due date, priority, and a back-pointer to the responsibility that spawned it. The standalone source-of-truth to-do concept the assistant manages on the user's behalf. Per-row authz: owned -- ownerUserId is stamped from actor.userId on every write and every read gates on ownerUserId==actor.userId.

Relationships: parent -> v1:identity:user

#v1:workbench:workspace

Per-Plan workbench workspace. Tracks the persistent filesystem mounted into every per-Task container running under the Plan. Created lazily on first workbenchHost call; released when the parent Plan transitions to a terminal status (succeeded / failed / cancelled). Universal authorization -- no scope grants, no kill switch, no per-agent gating; the workbench is sandboxed inside the cluster and the blast radius is contained to the per-Plan directory tree.

Relationships: parent -> v1:planner:plan

#v1:worker:invocation

Per-call telemetry for worker tool invocations. Written once on call completion (success / failure / cancelled / timeout / denied). Operator reads these for plan debugging; auditor reads identity:auditEvent for the security timeline. Linkage between the two layers is via correlationId. Retention default 90 days, tunable via WORKER_INVOCATION_RETENTION_DAYS; the workerInvocationRetentionSweep cron soft-deletes rows past their TTL.

Relationships: parent -> v1:identity:user, parent -> v1:worker:registration, parent -> v1:agents:agent, parent -> v1:planner:plan

#v1:worker:registration

Operational registration of a worker -- the runtime record for a memql-cockpit instance running in worker mode and connected to this cluster. Persists stable identity + capabilities + last-seen state. The currently-connected gRPC stream + per-call concurrency live in-memory on whichever agent node holds the stream; this concept is for everything that needs to survive disconnect and binary restart. Per-user routing: every registration is owned by exactly one v1:identity:user; only agents in sessions owned by that user can dispatch tools to this worker.

Relationships: parent -> v1:identity:user, parent -> v1:identity:identity, parent -> v1:identity:user