diff --git a/.agents/skills/cli-admin/SKILL.md b/.agents/skills/cli-admin/SKILL.md
index a8e2a43db..b71049b13 100644
--- a/.agents/skills/cli-admin/SKILL.md
+++ b/.agents/skills/cli-admin/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: cli-admin
-description: CLI tool (csdk) for the admin API — provides CRUD commands for 26 tables and 12 custom operations
+description: CLI tool (csdk) for the admin API — provides CRUD commands for 30 tables and 12 custom operations
 ---
 
 # cli-admin
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-CLI tool (csdk) for the admin API — provides CRUD commands for 26 tables and 12 custom operations
+CLI tool (csdk) for the admin API — provides CRUD commands for 30 tables and 12 custom operations
 
 ## Usage
 
@@ -59,10 +59,14 @@ See the `references/` directory for detailed per-entity API documentation:
 - [org-get-managers-record](references/org-get-managers-record.md)
 - [org-get-subordinates-record](references/org-get-subordinates-record.md)
 - [app-permission](references/app-permission.md)
+- [app-permission-default-grant](references/app-permission-default-grant.md)
 - [org-permission](references/org-permission.md)
+- [org-permission-default-permission](references/org-permission-default-permission.md)
+- [org-permission-default-grant](references/org-permission-default-grant.md)
 - [org-member](references/org-member.md)
 - [app-permission-default](references/app-permission-default.md)
 - [org-permission-default](references/org-permission-default.md)
+- [app-permission-default-permission](references/app-permission-default-permission.md)
 - [app-admin-grant](references/app-admin-grant.md)
 - [app-owner-grant](references/app-owner-grant.md)
 - [org-admin-grant](references/org-admin-grant.md)
diff --git a/.agents/skills/cli-admin/references/app-admin-grant.md b/.agents/skills/cli-admin/references/app-admin-grant.md
index 8567b49bc..51c6a6384 100644
--- a/.agents/skills/cli-admin/references/app-admin-grant.md
+++ b/.agents/skills/cli-admin/references/app-admin-grant.md
@@ -12,7 +12,7 @@ csdk app-admin-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk app-admin-grant list --limit 10 --after <cursor>
 csdk app-admin-grant find-first --where.<field>.<op> <value>
 csdk app-admin-grant get --id <UUID>
-csdk app-admin-grant create --actorId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-admin-grant create [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-admin-grant update --id <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-admin-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk app-admin-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a appAdminGrant
 
 ```bash
-csdk app-admin-grant create --actorId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-admin-grant create [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a appAdminGrant by id
diff --git a/.agents/skills/cli-admin/references/app-grant.md b/.agents/skills/cli-admin/references/app-grant.md
index 9880b8767..90ed882f8 100644
--- a/.agents/skills/cli-admin/references/app-grant.md
+++ b/.agents/skills/cli-admin/references/app-grant.md
@@ -12,7 +12,7 @@ csdk app-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk app-grant list --limit 10 --after <cursor>
 csdk app-grant find-first --where.<field>.<op> <value>
 csdk app-grant get --id <UUID>
-csdk app-grant create --actorId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-grant create [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-grant update --id <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk app-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a appGrant
 
 ```bash
-csdk app-grant create --actorId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-grant create [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a appGrant by id
diff --git a/.agents/skills/cli-admin/references/app-owner-grant.md b/.agents/skills/cli-admin/references/app-owner-grant.md
index 9884f4a52..14153d25f 100644
--- a/.agents/skills/cli-admin/references/app-owner-grant.md
+++ b/.agents/skills/cli-admin/references/app-owner-grant.md
@@ -12,7 +12,7 @@ csdk app-owner-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk app-owner-grant list --limit 10 --after <cursor>
 csdk app-owner-grant find-first --where.<field>.<op> <value>
 csdk app-owner-grant get --id <UUID>
-csdk app-owner-grant create --actorId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-owner-grant create [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-owner-grant update --id <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk app-owner-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk app-owner-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a appOwnerGrant
 
 ```bash
-csdk app-owner-grant create --actorId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-owner-grant create [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a appOwnerGrant by id
diff --git a/.agents/skills/cli-admin/references/app-permission-default-grant.md b/.agents/skills/cli-admin/references/app-permission-default-grant.md
new file mode 100644
index 000000000..ce62b3688
--- /dev/null
+++ b/.agents/skills/cli-admin/references/app-permission-default-grant.md
@@ -0,0 +1,68 @@
+# appPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+CRUD operations for AppPermissionDefaultGrant records via csdk CLI
+
+## Usage
+
+```bash
+csdk app-permission-default-grant list
+csdk app-permission-default-grant list --where.<field>.<op> <value> --orderBy <values>
+csdk app-permission-default-grant list --limit 10 --after <cursor>
+csdk app-permission-default-grant find-first --where.<field>.<op> <value>
+csdk app-permission-default-grant get --id <UUID>
+csdk app-permission-default-grant create --permissionId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-permission-default-grant update --id <UUID> [--permissionId <UUID>] [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk app-permission-default-grant delete --id <UUID>
+```
+
+## Examples
+
+### List appPermissionDefaultGrant records
+
+```bash
+csdk app-permission-default-grant list
+```
+
+### List appPermissionDefaultGrant records with pagination
+
+```bash
+csdk app-permission-default-grant list --limit 10 --offset 0
+```
+
+### List appPermissionDefaultGrant records with cursor pagination
+
+```bash
+csdk app-permission-default-grant list --limit 10 --after <cursor>
+```
+
+### Find first matching appPermissionDefaultGrant
+
+```bash
+csdk app-permission-default-grant find-first --where.id.equalTo <value>
+```
+
+### List appPermissionDefaultGrant records with field selection
+
+```bash
+csdk app-permission-default-grant list --select id,id
+```
+
+### List appPermissionDefaultGrant records with filtering and ordering
+
+```bash
+csdk app-permission-default-grant list --where.id.equalTo <value> --orderBy ID_ASC
+```
+
+### Create a appPermissionDefaultGrant
+
+```bash
+csdk app-permission-default-grant create --permissionId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+```
+
+### Get a appPermissionDefaultGrant by id
+
+```bash
+csdk app-permission-default-grant get --id <value>
+```
diff --git a/.agents/skills/cli-admin/references/app-permission-default-permission.md b/.agents/skills/cli-admin/references/app-permission-default-permission.md
new file mode 100644
index 000000000..c85737e9a
--- /dev/null
+++ b/.agents/skills/cli-admin/references/app-permission-default-permission.md
@@ -0,0 +1,68 @@
+# appPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+CRUD operations for AppPermissionDefaultPermission records via csdk CLI
+
+## Usage
+
+```bash
+csdk app-permission-default-permission list
+csdk app-permission-default-permission list --where.<field>.<op> <value> --orderBy <values>
+csdk app-permission-default-permission list --limit 10 --after <cursor>
+csdk app-permission-default-permission find-first --where.<field>.<op> <value>
+csdk app-permission-default-permission get --id <UUID>
+csdk app-permission-default-permission create --permissionId <UUID>
+csdk app-permission-default-permission update --id <UUID> [--permissionId <UUID>]
+csdk app-permission-default-permission delete --id <UUID>
+```
+
+## Examples
+
+### List appPermissionDefaultPermission records
+
+```bash
+csdk app-permission-default-permission list
+```
+
+### List appPermissionDefaultPermission records with pagination
+
+```bash
+csdk app-permission-default-permission list --limit 10 --offset 0
+```
+
+### List appPermissionDefaultPermission records with cursor pagination
+
+```bash
+csdk app-permission-default-permission list --limit 10 --after <cursor>
+```
+
+### Find first matching appPermissionDefaultPermission
+
+```bash
+csdk app-permission-default-permission find-first --where.id.equalTo <value>
+```
+
+### List appPermissionDefaultPermission records with field selection
+
+```bash
+csdk app-permission-default-permission list --select id,id
+```
+
+### List appPermissionDefaultPermission records with filtering and ordering
+
+```bash
+csdk app-permission-default-permission list --where.id.equalTo <value> --orderBy ID_ASC
+```
+
+### Create a appPermissionDefaultPermission
+
+```bash
+csdk app-permission-default-permission create --permissionId <UUID>
+```
+
+### Get a appPermissionDefaultPermission by id
+
+```bash
+csdk app-permission-default-permission get --id <value>
+```
diff --git a/.agents/skills/cli-admin/references/org-admin-grant.md b/.agents/skills/cli-admin/references/org-admin-grant.md
index 82488b55c..6f5712f38 100644
--- a/.agents/skills/cli-admin/references/org-admin-grant.md
+++ b/.agents/skills/cli-admin/references/org-admin-grant.md
@@ -12,7 +12,7 @@ csdk org-admin-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk org-admin-grant list --limit 10 --after <cursor>
 csdk org-admin-grant find-first --where.<field>.<op> <value>
 csdk org-admin-grant get --id <UUID>
-csdk org-admin-grant create --actorId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-admin-grant create --entityId <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk org-admin-grant update --id <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--entityId <UUID>] [--grantorId <UUID>]
 csdk org-admin-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk org-admin-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a orgAdminGrant
 
 ```bash
-csdk org-admin-grant create --actorId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-admin-grant create --entityId <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a orgAdminGrant by id
diff --git a/.agents/skills/cli-admin/references/org-grant.md b/.agents/skills/cli-admin/references/org-grant.md
index b03e47787..8fbb06ec9 100644
--- a/.agents/skills/cli-admin/references/org-grant.md
+++ b/.agents/skills/cli-admin/references/org-grant.md
@@ -12,7 +12,7 @@ csdk org-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk org-grant list --limit 10 --after <cursor>
 csdk org-grant find-first --where.<field>.<op> <value>
 csdk org-grant get --id <UUID>
-csdk org-grant create --actorId <UUID> --entityId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-grant create --entityId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk org-grant update --id <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--entityId <UUID>] [--grantorId <UUID>]
 csdk org-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk org-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a orgGrant
 
 ```bash
-csdk org-grant create --actorId <UUID> --entityId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-grant create --entityId <UUID> [--permissions <BitString>] [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a orgGrant by id
diff --git a/.agents/skills/cli-admin/references/org-owner-grant.md b/.agents/skills/cli-admin/references/org-owner-grant.md
index e354a4b4f..3c9a82e22 100644
--- a/.agents/skills/cli-admin/references/org-owner-grant.md
+++ b/.agents/skills/cli-admin/references/org-owner-grant.md
@@ -12,7 +12,7 @@ csdk org-owner-grant list --where.<field>.<op> <value> --orderBy <values>
 csdk org-owner-grant list --limit 10 --after <cursor>
 csdk org-owner-grant find-first --where.<field>.<op> <value>
 csdk org-owner-grant get --id <UUID>
-csdk org-owner-grant create --actorId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-owner-grant create --entityId <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 csdk org-owner-grant update --id <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--entityId <UUID>] [--grantorId <UUID>]
 csdk org-owner-grant delete --id <UUID>
 ```
@@ -58,7 +58,7 @@ csdk org-owner-grant list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a orgOwnerGrant
 
 ```bash
-csdk org-owner-grant create --actorId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-owner-grant create --entityId <UUID> [--isGrant <Boolean>] [--actorId <UUID>] [--grantorId <UUID>]
 ```
 
 ### Get a orgOwnerGrant by id
diff --git a/.agents/skills/cli-admin/references/org-permission-default-grant.md b/.agents/skills/cli-admin/references/org-permission-default-grant.md
new file mode 100644
index 000000000..9620cc795
--- /dev/null
+++ b/.agents/skills/cli-admin/references/org-permission-default-grant.md
@@ -0,0 +1,68 @@
+# orgPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+CRUD operations for OrgPermissionDefaultGrant records via csdk CLI
+
+## Usage
+
+```bash
+csdk org-permission-default-grant list
+csdk org-permission-default-grant list --where.<field>.<op> <value> --orderBy <values>
+csdk org-permission-default-grant list --limit 10 --after <cursor>
+csdk org-permission-default-grant find-first --where.<field>.<op> <value>
+csdk org-permission-default-grant get --id <UUID>
+csdk org-permission-default-grant create --permissionId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+csdk org-permission-default-grant update --id <UUID> [--permissionId <UUID>] [--isGrant <Boolean>] [--grantorId <UUID>] [--entityId <UUID>]
+csdk org-permission-default-grant delete --id <UUID>
+```
+
+## Examples
+
+### List orgPermissionDefaultGrant records
+
+```bash
+csdk org-permission-default-grant list
+```
+
+### List orgPermissionDefaultGrant records with pagination
+
+```bash
+csdk org-permission-default-grant list --limit 10 --offset 0
+```
+
+### List orgPermissionDefaultGrant records with cursor pagination
+
+```bash
+csdk org-permission-default-grant list --limit 10 --after <cursor>
+```
+
+### Find first matching orgPermissionDefaultGrant
+
+```bash
+csdk org-permission-default-grant find-first --where.id.equalTo <value>
+```
+
+### List orgPermissionDefaultGrant records with field selection
+
+```bash
+csdk org-permission-default-grant list --select id,id
+```
+
+### List orgPermissionDefaultGrant records with filtering and ordering
+
+```bash
+csdk org-permission-default-grant list --where.id.equalTo <value> --orderBy ID_ASC
+```
+
+### Create a orgPermissionDefaultGrant
+
+```bash
+csdk org-permission-default-grant create --permissionId <UUID> --entityId <UUID> [--isGrant <Boolean>] [--grantorId <UUID>]
+```
+
+### Get a orgPermissionDefaultGrant by id
+
+```bash
+csdk org-permission-default-grant get --id <value>
+```
diff --git a/.agents/skills/cli-admin/references/org-permission-default-permission.md b/.agents/skills/cli-admin/references/org-permission-default-permission.md
new file mode 100644
index 000000000..9b1d5d221
--- /dev/null
+++ b/.agents/skills/cli-admin/references/org-permission-default-permission.md
@@ -0,0 +1,68 @@
+# orgPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+CRUD operations for OrgPermissionDefaultPermission records via csdk CLI
+
+## Usage
+
+```bash
+csdk org-permission-default-permission list
+csdk org-permission-default-permission list --where.<field>.<op> <value> --orderBy <values>
+csdk org-permission-default-permission list --limit 10 --after <cursor>
+csdk org-permission-default-permission find-first --where.<field>.<op> <value>
+csdk org-permission-default-permission get --id <UUID>
+csdk org-permission-default-permission create --permissionId <UUID> --entityId <UUID>
+csdk org-permission-default-permission update --id <UUID> [--permissionId <UUID>] [--entityId <UUID>]
+csdk org-permission-default-permission delete --id <UUID>
+```
+
+## Examples
+
+### List orgPermissionDefaultPermission records
+
+```bash
+csdk org-permission-default-permission list
+```
+
+### List orgPermissionDefaultPermission records with pagination
+
+```bash
+csdk org-permission-default-permission list --limit 10 --offset 0
+```
+
+### List orgPermissionDefaultPermission records with cursor pagination
+
+```bash
+csdk org-permission-default-permission list --limit 10 --after <cursor>
+```
+
+### Find first matching orgPermissionDefaultPermission
+
+```bash
+csdk org-permission-default-permission find-first --where.id.equalTo <value>
+```
+
+### List orgPermissionDefaultPermission records with field selection
+
+```bash
+csdk org-permission-default-permission list --select id,id
+```
+
+### List orgPermissionDefaultPermission records with filtering and ordering
+
+```bash
+csdk org-permission-default-permission list --where.id.equalTo <value> --orderBy ID_ASC
+```
+
+### Create a orgPermissionDefaultPermission
+
+```bash
+csdk org-permission-default-permission create --permissionId <UUID> --entityId <UUID>
+```
+
+### Get a orgPermissionDefaultPermission by id
+
+```bash
+csdk org-permission-default-permission get --id <value>
+```
diff --git a/.agents/skills/cli-agent/references/agent-message.md b/.agents/skills/cli-agent/references/agent-message.md
index 3abe12365..64d773469 100644
--- a/.agents/skills/cli-agent/references/agent-message.md
+++ b/.agents/skills/cli-agent/references/agent-message.md
@@ -12,8 +12,8 @@ csdk agent-message list --where.<field>.<op> <value> --orderBy <values>
 csdk agent-message list --limit 10 --after <cursor>
 csdk agent-message find-first --where.<field>.<op> <value>
 csdk agent-message get --id <UUID>
-csdk agent-message create --threadId <UUID> --authorRole <String> [--ownerId <UUID>] [--parts <JSON>] [--model <String>]
-csdk agent-message update --id <UUID> [--ownerId <UUID>] [--parts <JSON>] [--threadId <UUID>] [--authorRole <String>] [--model <String>]
+csdk agent-message create --threadId <UUID> --authorRole <String> [--actorId <UUID>] [--parts <JSON>] [--model <String>] [--agentId <UUID>]
+csdk agent-message update --id <UUID> [--actorId <UUID>] [--parts <JSON>] [--threadId <UUID>] [--authorRole <String>] [--model <String>] [--agentId <UUID>]
 csdk agent-message delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk agent-message list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a agentMessage
 
 ```bash
-csdk agent-message create --threadId <UUID> --authorRole <String> [--ownerId <UUID>] [--parts <JSON>] [--model <String>]
+csdk agent-message create --threadId <UUID> --authorRole <String> [--actorId <UUID>] [--parts <JSON>] [--model <String>] [--agentId <UUID>]
 ```
 
 ### Get a agentMessage by id
diff --git a/.agents/skills/cli-agent/references/agent-task.md b/.agents/skills/cli-agent/references/agent-task.md
index c16e8c9e0..7472fee63 100644
--- a/.agents/skills/cli-agent/references/agent-task.md
+++ b/.agents/skills/cli-agent/references/agent-task.md
@@ -12,8 +12,8 @@ csdk agent-task list --where.<field>.<op> <value> --orderBy <values>
 csdk agent-task list --limit 10 --after <cursor>
 csdk agent-task find-first --where.<field>.<op> <value>
 csdk agent-task get --id <UUID>
-csdk agent-task create --planId <UUID> --description <String> [--ownerId <UUID>] [--status <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
-csdk agent-task update --id <UUID> [--ownerId <UUID>] [--status <String>] [--planId <UUID>] [--description <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
+csdk agent-task create --planId <UUID> --description <String> [--actorId <UUID>] [--status <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
+csdk agent-task update --id <UUID> [--actorId <UUID>] [--status <String>] [--planId <UUID>] [--description <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
 csdk agent-task delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk agent-task list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a agentTask
 
 ```bash
-csdk agent-task create --planId <UUID> --description <String> [--ownerId <UUID>] [--status <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
+csdk agent-task create --planId <UUID> --description <String> [--actorId <UUID>] [--status <String>] [--source <String>] [--error <String>] [--orderIndex <Int>] [--requiresApproval <Boolean>] [--approvalStatus <String>] [--approvedBy <UUID>] [--approvedAt <Datetime>] [--approvalFeedback <String>]
 ```
 
 ### Get a agentTask by id
diff --git a/.agents/skills/cli-api/SKILL.md b/.agents/skills/cli-api/SKILL.md
index 1f350ae64..1134d9029 100644
--- a/.agents/skills/cli-api/SKILL.md
+++ b/.agents/skills/cli-api/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: cli-api
-description: CLI tool (csdk) for the api API — provides CRUD commands for 45 tables and 10 custom operations
+description: CLI tool (csdk) for the api API — provides CRUD commands for 46 tables and 10 custom operations
 ---
 
 # cli-api
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-CLI tool (csdk) for the api API — provides CRUD commands for 45 tables and 10 custom operations
+CLI tool (csdk) for the api API — provides CRUD commands for 46 tables and 10 custom operations
 
 ## Usage
 
@@ -78,6 +78,7 @@ See the `references/` directory for detailed per-entity API documentation:
 - [schema-grant](references/schema-grant.md)
 - [default-privilege](references/default-privilege.md)
 - [enum](references/enum.md)
+- [composite-type](references/composite-type.md)
 - [api-schema](references/api-schema.md)
 - [api-module](references/api-module.md)
 - [domain](references/domain.md)
diff --git a/.agents/skills/cli-api/references/composite-type.md b/.agents/skills/cli-api/references/composite-type.md
new file mode 100644
index 000000000..3df297656
--- /dev/null
+++ b/.agents/skills/cli-api/references/composite-type.md
@@ -0,0 +1,68 @@
+# compositeType
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+CRUD operations for CompositeType records via csdk CLI
+
+## Usage
+
+```bash
+csdk composite-type list
+csdk composite-type list --where.<field>.<op> <value> --orderBy <values>
+csdk composite-type list --limit 10 --after <cursor>
+csdk composite-type find-first --where.<field>.<op> <value>
+csdk composite-type get --id <UUID>
+csdk composite-type create --databaseId <UUID> --schemaId <UUID> --name <String> [--label <String>] [--description <String>] [--attributes <JSON>] [--smartTags <JSON>] [--category <ObjectCategory>] [--module <String>] [--scope <Int>] [--tags <String>]
+csdk composite-type update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--name <String>] [--label <String>] [--description <String>] [--attributes <JSON>] [--smartTags <JSON>] [--category <ObjectCategory>] [--module <String>] [--scope <Int>] [--tags <String>]
+csdk composite-type delete --id <UUID>
+```
+
+## Examples
+
+### List compositeType records
+
+```bash
+csdk composite-type list
+```
+
+### List compositeType records with pagination
+
+```bash
+csdk composite-type list --limit 10 --offset 0
+```
+
+### List compositeType records with cursor pagination
+
+```bash
+csdk composite-type list --limit 10 --after <cursor>
+```
+
+### Find first matching compositeType
+
+```bash
+csdk composite-type find-first --where.id.equalTo <value>
+```
+
+### List compositeType records with field selection
+
+```bash
+csdk composite-type list --select id,id
+```
+
+### List compositeType records with filtering and ordering
+
+```bash
+csdk composite-type list --where.id.equalTo <value> --orderBy ID_ASC
+```
+
+### Create a compositeType
+
+```bash
+csdk composite-type create --databaseId <UUID> --schemaId <UUID> --name <String> [--label <String>] [--description <String>] [--attributes <JSON>] [--smartTags <JSON>] [--category <ObjectCategory>] [--module <String>] [--scope <Int>] [--tags <String>]
+```
+
+### Get a compositeType by id
+
+```bash
+csdk composite-type get --id <value>
+```
diff --git a/.agents/skills/cli-modules/SKILL.md b/.agents/skills/cli-modules/SKILL.md
index 24c9c5298..78de22820 100644
--- a/.agents/skills/cli-modules/SKILL.md
+++ b/.agents/skills/cli-modules/SKILL.md
@@ -80,38 +80,38 @@ See the `references/` directory for detailed per-entity API documentation:
 - [blueprint-template](references/blueprint-template.md)
 - [blueprint-construction](references/blueprint-construction.md)
 - [crypto-auth-module](references/crypto-auth-module.md)
-- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [sessions-module](references/sessions-module.md)
 - [config-secrets-module](references/config-secrets-module.md)
 - [merkle-store-module](references/merkle-store-module.md)
 - [graph-module](references/graph-module.md)
 - [secure-table-provision](references/secure-table-provision.md)
+- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [invites-module](references/invites-module.md)
 - [database-provision-module](references/database-provision-module.md)
-- [namespace-module](references/namespace-module.md)
 - [realtime-module](references/realtime-module.md)
 - [webauthn-auth-module](references/webauthn-auth-module.md)
+- [namespace-module](references/namespace-module.md)
 - [compute-log-module](references/compute-log-module.md)
 - [inference-log-module](references/inference-log-module.md)
 - [storage-log-module](references/storage-log-module.md)
 - [transfer-log-module](references/transfer-log-module.md)
+- [plans-module](references/plans-module.md)
 - [db-usage-module](references/db-usage-module.md)
 - [notifications-module](references/notifications-module.md)
-- [plans-module](references/plans-module.md)
-- [hierarchy-module](references/hierarchy-module.md)
-- [billing-module](references/billing-module.md)
 - [billing-provider-module](references/billing-provider-module.md)
+- [function-module](references/function-module.md)
+- [hierarchy-module](references/hierarchy-module.md)
 - [profiles-module](references/profiles-module.md)
 - [permissions-module](references/permissions-module.md)
+- [billing-module](references/billing-module.md)
 - [relation-provision](references/relation-provision.md)
-- [function-module](references/function-module.md)
 - [user-auth-module](references/user-auth-module.md)
 - [agent-module](references/agent-module.md)
 - [limits-module](references/limits-module.md)
 - [memberships-module](references/memberships-module.md)
 - [storage-module](references/storage-module.md)
-- [events-module](references/events-module.md)
 - [entity-type-provision](references/entity-type-provision.md)
+- [events-module](references/events-module.md)
 - [resolve-blueprint-field](references/resolve-blueprint-field.md)
 - [resolve-blueprint-table](references/resolve-blueprint-table.md)
 - [construct-blueprint](references/construct-blueprint.md)
diff --git a/.agents/skills/cli-modules/references/agent-module.md b/.agents/skills/cli-modules/references/agent-module.md
index 730e632ea..0cb65a767 100644
--- a/.agents/skills/cli-modules/references/agent-module.md
+++ b/.agents/skills/cli-modules/references/agent-module.md
@@ -12,8 +12,8 @@ csdk agent-module list --where.<field>.<op> <value> --orderBy <values>
 csdk agent-module list --limit 10 --after <cursor>
 csdk agent-module find-first --where.<field>.<op> <value>
 csdk agent-module get --id <UUID>
-csdk agent-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>]
-csdk agent-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>]
+csdk agent-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--shared <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
+csdk agent-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--shared <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 csdk agent-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk agent-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a agentModule
 
 ```bash
-csdk agent-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>]
+csdk agent-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--threadTableId <UUID>] [--messageTableId <UUID>] [--taskTableId <UUID>] [--promptsTableId <UUID>] [--planTableId <UUID>] [--agentTableId <UUID>] [--personaTableId <UUID>] [--resourceTableId <UUID>] [--threadTableName <String>] [--messageTableName <String>] [--taskTableName <String>] [--promptsTableName <String>] [--planTableName <String>] [--agentTableName <String>] [--personaTableName <String>] [--resourceTableName <String>] [--hasPlans <Boolean>] [--hasResources <Boolean>] [--hasAgents <Boolean>] [--shared <Boolean>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--resources <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 ```
 
 ### Get a agentModule by id
diff --git a/.agents/skills/cli-modules/references/billing-module.md b/.agents/skills/cli-modules/references/billing-module.md
index 474b79e37..f19cdad5a 100644
--- a/.agents/skills/cli-modules/references/billing-module.md
+++ b/.agents/skills/cli-modules/references/billing-module.md
@@ -12,8 +12,8 @@ csdk billing-module list --where.<field>.<op> <value> --orderBy <values>
 csdk billing-module list --limit 10 --after <cursor>
 csdk billing-module find-first --where.<field>.<op> <value>
 csdk billing-module get --id <UUID>
-csdk billing-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
-csdk billing-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk billing-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk billing-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk billing-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk billing-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a billingModule
 
 ```bash
-csdk billing-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk billing-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--metersTableId <UUID>] [--metersTableName <String>] [--planSubscriptionsTableId <UUID>] [--planSubscriptionsTableName <String>] [--ledgerTableId <UUID>] [--ledgerTableName <String>] [--balancesTableId <UUID>] [--balancesTableName <String>] [--meterCreditsTableId <UUID>] [--meterCreditsTableName <String>] [--meterSourcesTableId <UUID>] [--meterSourcesTableName <String>] [--meterDefaultsTableId <UUID>] [--meterDefaultsTableName <String>] [--recordUsageFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a billingModule by id
diff --git a/.agents/skills/cli-modules/references/db-usage-module.md b/.agents/skills/cli-modules/references/db-usage-module.md
index 2f09fceea..6b0bcede9 100644
--- a/.agents/skills/cli-modules/references/db-usage-module.md
+++ b/.agents/skills/cli-modules/references/db-usage-module.md
@@ -12,8 +12,8 @@ csdk db-usage-module list --where.<field>.<op> <value> --orderBy <values>
 csdk db-usage-module list --limit 10 --after <cursor>
 csdk db-usage-module find-first --where.<field>.<op> <value>
 csdk db-usage-module get --id <UUID>
-csdk db-usage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
-csdk db-usage-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk db-usage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk db-usage-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk db-usage-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk db-usage-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a dbUsageModule
 
 ```bash
-csdk db-usage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk db-usage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--tableStatsLogTableId <UUID>] [--tableStatsLogTableName <String>] [--tableStatsDailyTableId <UUID>] [--tableStatsDailyTableName <String>] [--queryStatsLogTableId <UUID>] [--queryStatsLogTableName <String>] [--queryStatsDailyTableId <UUID>] [--queryStatsDailyTableName <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a dbUsageModule by id
diff --git a/.agents/skills/cli-modules/references/entity-type-provision.md b/.agents/skills/cli-modules/references/entity-type-provision.md
index 73c5c10ca..2eda35338 100644
--- a/.agents/skills/cli-modules/references/entity-type-provision.md
+++ b/.agents/skills/cli-modules/references/entity-type-provision.md
@@ -12,8 +12,8 @@ csdk entity-type-provision list --where.<field>.<op> <value> --orderBy <values>
 csdk entity-type-provision list --limit 10 --after <cursor>
 csdk entity-type-provision find-first --where.<field>.<op> <value>
 csdk entity-type-provision get --id <UUID>
-csdk entity-type-provision create --databaseId <UUID> --name <String> --prefix <String> [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outRequirementsTableId <UUID>] [--outConfigRequirementsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
-csdk entity-type-provision update --id <UUID> [--databaseId <UUID>] [--name <String>] [--prefix <String>] [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outRequirementsTableId <UUID>] [--outConfigRequirementsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
+csdk entity-type-provision create --databaseId <UUID> --name <String> --prefix <String> [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
+csdk entity-type-provision update --id <UUID> [--databaseId <UUID>] [--name <String>] [--prefix <String>] [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
 csdk entity-type-provision delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk entity-type-provision list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a entityTypeProvision
 
 ```bash
-csdk entity-type-provision create --databaseId <UUID> --name <String> --prefix <String> [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outRequirementsTableId <UUID>] [--outConfigRequirementsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
+csdk entity-type-provision create --databaseId <UUID> --name <String> --prefix <String> [--description <String>] [--parentEntity <String>] [--tableName <String>] [--isVisible <Boolean>] [--hasLimits <Boolean>] [--hasProfiles <Boolean>] [--hasLevels <Boolean>] [--hasInvites <Boolean>] [--hasInviteAchievements <Boolean>] [--storage <JSON>] [--namespaces <JSON>] [--functions <JSON>] [--graphs <JSON>] [--agents <JSON>] [--skipEntityPolicies <Boolean>] [--tableProvision <JSON>] [--outMembershipType <Int>] [--outEntityTableId <UUID>] [--outEntityTableName <String>] [--outInstalledModules <String>] [--outStorageModuleId <UUID>] [--outBucketsTableId <UUID>] [--outFilesTableId <UUID>] [--outPathSharesTableId <UUID>] [--outInvitesModuleId <UUID>] [--outNamespaceModuleId <UUID>] [--outNamespacesTableId <UUID>] [--outNamespaceEventsTableId <UUID>] [--outFunctionModuleId <UUID>] [--outDefinitionsTableId <UUID>] [--outInvocationsTableId <UUID>] [--outExecutionLogsTableId <UUID>] [--outSecretDefinitionsTableId <UUID>] [--outGraphModuleId <UUID>] [--outGraphsTableId <UUID>] [--outAgentModuleId <UUID>]
 ```
 
 ### Get a entityTypeProvision by id
diff --git a/.agents/skills/cli-modules/references/events-module.md b/.agents/skills/cli-modules/references/events-module.md
index 684c5504a..a566f5cb6 100644
--- a/.agents/skills/cli-modules/references/events-module.md
+++ b/.agents/skills/cli-modules/references/events-module.md
@@ -12,8 +12,8 @@ csdk events-module list --where.<field>.<op> <value> --orderBy <values>
 csdk events-module list --limit 10 --after <cursor>
 csdk events-module find-first --where.<field>.<op> <value>
 csdk events-module get --id <UUID>
-csdk events-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
-csdk events-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk events-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk events-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk events-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk events-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a eventsModule
 
 ```bash
-csdk events-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk events-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--eventsTableId <UUID>] [--eventsTableName <String>] [--eventAggregatesTableId <UUID>] [--eventAggregatesTableName <String>] [--eventTypesTableId <UUID>] [--eventTypesTableName <String>] [--levelsTableId <UUID>] [--levelsTableName <String>] [--levelRequirementsTableId <UUID>] [--levelRequirementsTableName <String>] [--levelGrantsTableId <UUID>] [--levelGrantsTableName <String>] [--achievementRewardsTableId <UUID>] [--achievementRewardsTableName <String>] [--recordEvent <String>] [--removeEvent <String>] [--tgEvent <String>] [--tgEventToggle <String>] [--tgEventToggleBool <String>] [--tgEventBool <String>] [--upsertAggregate <String>] [--tgUpdateAggregates <String>] [--pruneEvents <String>] [--stepsRequired <String>] [--levelAchieved <String>] [--tgCheckAchievements <String>] [--grantAchievement <String>] [--tgAchievementReward <String>] [--interval <String>] [--retention <String>] [--premake <Int>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--actorTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a eventsModule by id
diff --git a/.agents/skills/cli-modules/references/function-module.md b/.agents/skills/cli-modules/references/function-module.md
index 96ec01539..9b84c1344 100644
--- a/.agents/skills/cli-modules/references/function-module.md
+++ b/.agents/skills/cli-modules/references/function-module.md
@@ -12,8 +12,8 @@ csdk function-module list --where.<field>.<op> <value> --orderBy <values>
 csdk function-module list --limit 10 --after <cursor>
 csdk function-module find-first --where.<field>.<op> <value>
 csdk function-module get --id <UUID>
-csdk function-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--requirementsTableId <UUID>] [--configDefinitionsTableId <UUID>] [--configRequirementsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--requirementsTableName <String>] [--configRequirementsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
-csdk function-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--requirementsTableId <UUID>] [--configDefinitionsTableId <UUID>] [--configRequirementsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--requirementsTableName <String>] [--configRequirementsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk function-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
+csdk function-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 csdk function-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk function-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a functionModule
 
 ```bash
-csdk function-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--requirementsTableId <UUID>] [--configDefinitionsTableId <UUID>] [--configRequirementsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--requirementsTableName <String>] [--configRequirementsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk function-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--definitionsTableId <UUID>] [--invocationsTableId <UUID>] [--executionLogsTableId <UUID>] [--secretDefinitionsTableId <UUID>] [--definitionsTableName <String>] [--invocationsTableName <String>] [--executionLogsTableName <String>] [--secretDefinitionsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 ```
 
 ### Get a functionModule by id
diff --git a/.agents/skills/cli-modules/references/graph-module.md b/.agents/skills/cli-modules/references/graph-module.md
index 2c783ffb3..1e3135b0b 100644
--- a/.agents/skills/cli-modules/references/graph-module.md
+++ b/.agents/skills/cli-modules/references/graph-module.md
@@ -12,8 +12,8 @@ csdk graph-module list --where.<field>.<op> <value> --orderBy <values>
 csdk graph-module list --limit 10 --after <cursor>
 csdk graph-module find-first --where.<field>.<op> <value>
 csdk graph-module get --id <UUID>
-csdk graph-module create --databaseId <UUID> --merkleStoreModuleId <UUID> [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
-csdk graph-module update --id <UUID> [--databaseId <UUID>] [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--merkleStoreModuleId <UUID>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk graph-module create --databaseId <UUID> --merkleStoreModuleId <UUID> [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
+csdk graph-module update --id <UUID> [--databaseId <UUID>] [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--merkleStoreModuleId <UUID>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 csdk graph-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk graph-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a graphModule
 
 ```bash
-csdk graph-module create --databaseId <UUID> --merkleStoreModuleId <UUID> [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk graph-module create --databaseId <UUID> --merkleStoreModuleId <UUID> [--publicSchemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--scope <String>] [--prefix <String>] [--graphsTableId <UUID>] [--executionsTableId <UUID>] [--outputsTableId <UUID>] [--apiName <String>] [--privateApiName <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 ```
 
 ### Get a graphModule by id
diff --git a/.agents/skills/cli-modules/references/hierarchy-module.md b/.agents/skills/cli-modules/references/hierarchy-module.md
index a009d516e..d3e3ed333 100644
--- a/.agents/skills/cli-modules/references/hierarchy-module.md
+++ b/.agents/skills/cli-modules/references/hierarchy-module.md
@@ -12,8 +12,8 @@ csdk hierarchy-module list --where.<field>.<op> <value> --orderBy <values>
 csdk hierarchy-module list --limit 10 --after <cursor>
 csdk hierarchy-module find-first --where.<field>.<op> <value>
 csdk hierarchy-module get --id <UUID>
-csdk hierarchy-module create --databaseId <UUID> --entityTableId <UUID> --usersTableId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>]
-csdk hierarchy-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--entityTableId <UUID>] [--usersTableId <UUID>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>]
+csdk hierarchy-module create --databaseId <UUID> --entityTableId <UUID> --usersTableId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>] [--defaultPermissions <String>]
+csdk hierarchy-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--entityTableId <UUID>] [--usersTableId <UUID>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>] [--defaultPermissions <String>]
 csdk hierarchy-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk hierarchy-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a hierarchyModule
 
 ```bash
-csdk hierarchy-module create --databaseId <UUID> --entityTableId <UUID> --usersTableId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>]
+csdk hierarchy-module create --databaseId <UUID> --entityTableId <UUID> --usersTableId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--chartEdgesTableId <UUID>] [--chartEdgesTableName <String>] [--hierarchySprtTableId <UUID>] [--hierarchySprtTableName <String>] [--chartEdgeGrantsTableId <UUID>] [--chartEdgeGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--privateSchemaName <String>] [--sprtTableName <String>] [--rebuildHierarchyFunction <String>] [--getSubordinatesFunction <String>] [--getManagersFunction <String>] [--isManagerOfFunction <String>] [--defaultPermissions <String>]
 ```
 
 ### Get a hierarchyModule by id
diff --git a/.agents/skills/cli-modules/references/memberships-module.md b/.agents/skills/cli-modules/references/memberships-module.md
index 010eb708b..595f8127e 100644
--- a/.agents/skills/cli-modules/references/memberships-module.md
+++ b/.agents/skills/cli-modules/references/memberships-module.md
@@ -12,8 +12,8 @@ csdk memberships-module list --where.<field>.<op> <value> --orderBy <values>
 csdk memberships-module list --limit 10 --after <cursor>
 csdk memberships-module find-first --where.<field>.<op> <value>
 csdk memberships-module get --id <UUID>
-csdk memberships-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
-csdk memberships-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk memberships-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--permissionDefaultPermissionsTableId <UUID>] [--permissionDefaultGrantsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk memberships-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--permissionDefaultPermissionsTableId <UUID>] [--permissionDefaultGrantsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
 csdk memberships-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk memberships-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a membershipsModule
 
 ```bash
-csdk memberships-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk memberships-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--membershipsTableId <UUID>] [--membershipsTableName <String>] [--membersTableId <UUID>] [--membersTableName <String>] [--membershipDefaultsTableId <UUID>] [--membershipDefaultsTableName <String>] [--membershipSettingsTableId <UUID>] [--membershipSettingsTableName <String>] [--grantsTableId <UUID>] [--grantsTableName <String>] [--actorTableId <UUID>] [--limitsTableId <UUID>] [--defaultLimitsTableId <UUID>] [--permissionsTableId <UUID>] [--defaultPermissionsTableId <UUID>] [--sprtTableId <UUID>] [--adminGrantsTableId <UUID>] [--adminGrantsTableName <String>] [--ownerGrantsTableId <UUID>] [--ownerGrantsTableName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--entityTableOwnerId <UUID>] [--getOrgFn <String>] [--actorMaskCheck <String>] [--actorPermCheck <String>] [--entityIdsByMask <String>] [--entityIdsByPerm <String>] [--entityIdsFunction <String>] [--memberProfilesTableId <UUID>] [--permissionDefaultPermissionsTableId <UUID>] [--permissionDefaultGrantsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a membershipsModule by id
diff --git a/.agents/skills/cli-modules/references/namespace-module.md b/.agents/skills/cli-modules/references/namespace-module.md
index 77eb1874d..0d810a3da 100644
--- a/.agents/skills/cli-modules/references/namespace-module.md
+++ b/.agents/skills/cli-modules/references/namespace-module.md
@@ -12,8 +12,8 @@ csdk namespace-module list --where.<field>.<op> <value> --orderBy <values>
 csdk namespace-module list --limit 10 --after <cursor>
 csdk namespace-module find-first --where.<field>.<op> <value>
 csdk namespace-module get --id <UUID>
-csdk namespace-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
-csdk namespace-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk namespace-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
+csdk namespace-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 csdk namespace-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk namespace-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a namespaceModule
 
 ```bash
-csdk namespace-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>]
+csdk namespace-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--publicSchemaName <String>] [--privateSchemaName <String>] [--namespacesTableId <UUID>] [--namespaceEventsTableId <UUID>] [--namespacesTableName <String>] [--namespaceEventsTableName <String>] [--apiName <String>] [--privateApiName <String>] [--scope <String>] [--prefix <String>] [--entityTableId <UUID>] [--policies <JSON>] [--provisions <JSON>] [--defaultPermissions <String>]
 ```
 
 ### Get a namespaceModule by id
diff --git a/.agents/skills/cli-modules/references/notifications-module.md b/.agents/skills/cli-modules/references/notifications-module.md
index e1b22bf2f..bab9e8c90 100644
--- a/.agents/skills/cli-modules/references/notifications-module.md
+++ b/.agents/skills/cli-modules/references/notifications-module.md
@@ -12,8 +12,8 @@ csdk notifications-module list --where.<field>.<op> <value> --orderBy <values>
 csdk notifications-module list --limit 10 --after <cursor>
 csdk notifications-module find-first --where.<field>.<op> <value>
 csdk notifications-module get --id <UUID>
-csdk notifications-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--apiName <String>] [--privateApiName <String>]
-csdk notifications-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--apiName <String>] [--privateApiName <String>]
+csdk notifications-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk notifications-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk notifications-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk notifications-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a notificationsModule
 
 ```bash
-csdk notifications-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--apiName <String>] [--privateApiName <String>]
+csdk notifications-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--notificationsTableId <UUID>] [--readStateTableId <UUID>] [--preferencesTableId <UUID>] [--channelsTableId <UUID>] [--deliveryLogTableId <UUID>] [--ownerTableId <UUID>] [--userSettingsTableId <UUID>] [--organizationSettingsTableId <UUID>] [--hasChannels <Boolean>] [--hasPreferences <Boolean>] [--hasSettingsExtension <Boolean>] [--hasDigestMetadata <Boolean>] [--hasSubscriptions <Boolean>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a notificationsModule by id
diff --git a/.agents/skills/cli-modules/references/rate-limit-meters-module.md b/.agents/skills/cli-modules/references/rate-limit-meters-module.md
index 472d3747b..a2077bbd0 100644
--- a/.agents/skills/cli-modules/references/rate-limit-meters-module.md
+++ b/.agents/skills/cli-modules/references/rate-limit-meters-module.md
@@ -12,8 +12,8 @@ csdk rate-limit-meters-module list --where.<field>.<op> <value> --orderBy <value
 csdk rate-limit-meters-module list --limit 10 --after <cursor>
 csdk rate-limit-meters-module find-first --where.<field>.<op> <value>
 csdk rate-limit-meters-module get --id <UUID>
-csdk rate-limit-meters-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
-csdk rate-limit-meters-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk rate-limit-meters-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk rate-limit-meters-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk rate-limit-meters-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk rate-limit-meters-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a rateLimitMetersModule
 
 ```bash
-csdk rate-limit-meters-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--apiName <String>] [--privateApiName <String>]
+csdk rate-limit-meters-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--rateLimitStateTableId <UUID>] [--rateLimitStateTableName <String>] [--rateLimitOverridesTableId <UUID>] [--rateLimitOverridesTableName <String>] [--rateWindowLimitsTableId <UUID>] [--rateWindowLimitsTableName <String>] [--checkRateLimitFunction <String>] [--prefix <String>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a rateLimitMetersModule by id
diff --git a/.agents/skills/cli-modules/references/storage-module.md b/.agents/skills/cli-modules/references/storage-module.md
index 31ba836e6..4b7cd0aea 100644
--- a/.agents/skills/cli-modules/references/storage-module.md
+++ b/.agents/skills/cli-modules/references/storage-module.md
@@ -12,8 +12,8 @@ csdk storage-module list --where.<field>.<op> <value> --orderBy <values>
 csdk storage-module list --limit 10 --after <cursor>
 csdk storage-module find-first --where.<field>.<op> <value>
 csdk storage-module get --id <UUID>
-csdk storage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
-csdk storage-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk storage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
+csdk storage-module update --id <UUID> [--databaseId <UUID>] [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 csdk storage-module delete --id <UUID>
 ```
 
@@ -58,7 +58,7 @@ csdk storage-module list --where.id.equalTo <value> --orderBy ID_ASC
 ### Create a storageModule
 
 ```bash
-csdk storage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--apiName <String>] [--privateApiName <String>]
+csdk storage-module create --databaseId <UUID> [--schemaId <UUID>] [--privateSchemaId <UUID>] [--bucketsTableId <UUID>] [--filesTableId <UUID>] [--bucketsTableName <String>] [--filesTableName <String>] [--scope <String>] [--prefix <String>] [--policies <JSON>] [--provisions <JSON>] [--entityTableId <UUID>] [--endpoint <String>] [--publicUrlPrefix <String>] [--provider <String>] [--allowedOrigins <String>] [--restrictReads <Boolean>] [--hasPathShares <Boolean>] [--pathSharesTableId <UUID>] [--uploadUrlExpirySeconds <Int>] [--downloadUrlExpirySeconds <Int>] [--defaultMaxFileSize <BigInt>] [--maxFilenameLength <Int>] [--cacheTtlSeconds <Int>] [--maxBulkFiles <Int>] [--maxBulkTotalSize <BigInt>] [--hasVersioning <Boolean>] [--hasContentHash <Boolean>] [--hasCustomKeys <Boolean>] [--hasAuditLog <Boolean>] [--hasConfirmUpload <Boolean>] [--confirmUploadDelay <Interval>] [--fileEventsTableId <UUID>] [--defaultPermissions <String>] [--apiName <String>] [--privateApiName <String>]
 ```
 
 ### Get a storageModule by id
diff --git a/.agents/skills/hooks-admin/SKILL.md b/.agents/skills/hooks-admin/SKILL.md
index 188682298..4d8de3667 100644
--- a/.agents/skills/hooks-admin/SKILL.md
+++ b/.agents/skills/hooks-admin/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: hooks-admin
-description: React Query hooks for the admin API — provides typed query and mutation hooks for 26 tables and 12 custom operations
+description: React Query hooks for the admin API — provides typed query and mutation hooks for 30 tables and 12 custom operations
 ---
 
 # hooks-admin
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-React Query hooks for the admin API — provides typed query and mutation hooks for 26 tables and 12 custom operations
+React Query hooks for the admin API — provides typed query and mutation hooks for 30 tables and 12 custom operations
 
 ## Usage
 
@@ -41,10 +41,14 @@ See the `references/` directory for detailed per-entity API documentation:
 - [org-get-managers-record](references/org-get-managers-record.md)
 - [org-get-subordinates-record](references/org-get-subordinates-record.md)
 - [app-permission](references/app-permission.md)
+- [app-permission-default-grant](references/app-permission-default-grant.md)
 - [org-permission](references/org-permission.md)
+- [org-permission-default-permission](references/org-permission-default-permission.md)
+- [org-permission-default-grant](references/org-permission-default-grant.md)
 - [org-member](references/org-member.md)
 - [app-permission-default](references/app-permission-default.md)
 - [org-permission-default](references/org-permission-default.md)
+- [app-permission-default-permission](references/app-permission-default-permission.md)
 - [app-admin-grant](references/app-admin-grant.md)
 - [app-owner-grant](references/app-owner-grant.md)
 - [org-admin-grant](references/org-admin-grant.md)
diff --git a/.agents/skills/hooks-admin/references/app-permission-default-grant.md b/.agents/skills/hooks-admin/references/app-permission-default-grant.md
new file mode 100644
index 000000000..4876973c1
--- /dev/null
+++ b/.agents/skills/hooks-admin/references/app-permission-default-grant.md
@@ -0,0 +1,34 @@
+# appPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Audit log of permission additions and removals from the defaults bitmask
+
+## Usage
+
+```typescript
+useAppPermissionDefaultGrantsQuery({ selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } } })
+useAppPermissionDefaultGrantQuery({ id: '<UUID>', selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } } })
+useCreateAppPermissionDefaultGrantMutation({ selection: { fields: { id: true } } })
+useUpdateAppPermissionDefaultGrantMutation({ selection: { fields: { id: true } } })
+useDeleteAppPermissionDefaultGrantMutation({})
+```
+
+## Examples
+
+### List all appPermissionDefaultGrants
+
+```typescript
+const { data, isLoading } = useAppPermissionDefaultGrantsQuery({
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } },
+});
+```
+
+### Create a appPermissionDefaultGrant
+
+```typescript
+const { mutate } = useCreateAppPermissionDefaultGrantMutation({
+  selection: { fields: { id: true } },
+});
+mutate({ permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' });
+```
diff --git a/.agents/skills/hooks-admin/references/app-permission-default-permission.md b/.agents/skills/hooks-admin/references/app-permission-default-permission.md
new file mode 100644
index 000000000..9a092e66e
--- /dev/null
+++ b/.agents/skills/hooks-admin/references/app-permission-default-permission.md
@@ -0,0 +1,34 @@
+# appPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+
+## Usage
+
+```typescript
+useAppPermissionDefaultPermissionsQuery({ selection: { fields: { id: true, permissionId: true, createdAt: true, updatedAt: true } } })
+useAppPermissionDefaultPermissionQuery({ id: '<UUID>', selection: { fields: { id: true, permissionId: true, createdAt: true, updatedAt: true } } })
+useCreateAppPermissionDefaultPermissionMutation({ selection: { fields: { id: true } } })
+useUpdateAppPermissionDefaultPermissionMutation({ selection: { fields: { id: true } } })
+useDeleteAppPermissionDefaultPermissionMutation({})
+```
+
+## Examples
+
+### List all appPermissionDefaultPermissions
+
+```typescript
+const { data, isLoading } = useAppPermissionDefaultPermissionsQuery({
+  selection: { fields: { id: true, permissionId: true, createdAt: true, updatedAt: true } },
+});
+```
+
+### Create a appPermissionDefaultPermission
+
+```typescript
+const { mutate } = useCreateAppPermissionDefaultPermissionMutation({
+  selection: { fields: { id: true } },
+});
+mutate({ permissionId: '<UUID>' });
+```
diff --git a/.agents/skills/hooks-admin/references/org-permission-default-grant.md b/.agents/skills/hooks-admin/references/org-permission-default-grant.md
new file mode 100644
index 000000000..62ea86922
--- /dev/null
+++ b/.agents/skills/hooks-admin/references/org-permission-default-grant.md
@@ -0,0 +1,34 @@
+# orgPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Audit log of permission additions and removals from the defaults bitmask
+
+## Usage
+
+```typescript
+useOrgPermissionDefaultGrantsQuery({ selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } } })
+useOrgPermissionDefaultGrantQuery({ id: '<UUID>', selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } } })
+useCreateOrgPermissionDefaultGrantMutation({ selection: { fields: { id: true } } })
+useUpdateOrgPermissionDefaultGrantMutation({ selection: { fields: { id: true } } })
+useDeleteOrgPermissionDefaultGrantMutation({})
+```
+
+## Examples
+
+### List all orgPermissionDefaultGrants
+
+```typescript
+const { data, isLoading } = useOrgPermissionDefaultGrantsQuery({
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+```
+
+### Create a orgPermissionDefaultGrant
+
+```typescript
+const { mutate } = useCreateOrgPermissionDefaultGrantMutation({
+  selection: { fields: { id: true } },
+});
+mutate({ permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' });
+```
diff --git a/.agents/skills/hooks-admin/references/org-permission-default-permission.md b/.agents/skills/hooks-admin/references/org-permission-default-permission.md
new file mode 100644
index 000000000..2a0218939
--- /dev/null
+++ b/.agents/skills/hooks-admin/references/org-permission-default-permission.md
@@ -0,0 +1,34 @@
+# orgPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+
+## Usage
+
+```typescript
+useOrgPermissionDefaultPermissionsQuery({ selection: { fields: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } } })
+useOrgPermissionDefaultPermissionQuery({ id: '<UUID>', selection: { fields: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } } })
+useCreateOrgPermissionDefaultPermissionMutation({ selection: { fields: { id: true } } })
+useUpdateOrgPermissionDefaultPermissionMutation({ selection: { fields: { id: true } } })
+useDeleteOrgPermissionDefaultPermissionMutation({})
+```
+
+## Examples
+
+### List all orgPermissionDefaultPermissions
+
+```typescript
+const { data, isLoading } = useOrgPermissionDefaultPermissionsQuery({
+  selection: { fields: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+```
+
+### Create a orgPermissionDefaultPermission
+
+```typescript
+const { mutate } = useCreateOrgPermissionDefaultPermissionMutation({
+  selection: { fields: { id: true } },
+});
+mutate({ permissionId: '<UUID>', entityId: '<UUID>' });
+```
diff --git a/.agents/skills/hooks-agent/references/agent-message.md b/.agents/skills/hooks-agent/references/agent-message.md
index 776d5de58..7bc764a65 100644
--- a/.agents/skills/hooks-agent/references/agent-message.md
+++ b/.agents/skills/hooks-agent/references/agent-message.md
@@ -7,8 +7,8 @@ Message within an agent thread with TextPart/ToolPart jsonb parts
 ## Usage
 
 ```typescript
-useAgentMessagesQuery({ selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } } })
-useAgentMessageQuery({ id: '<UUID>', selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } } })
+useAgentMessagesQuery({ selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } } })
+useAgentMessageQuery({ id: '<UUID>', selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } } })
 useCreateAgentMessageMutation({ selection: { fields: { id: true } } })
 useUpdateAgentMessageMutation({ selection: { fields: { id: true } } })
 useDeleteAgentMessageMutation({})
@@ -20,7 +20,7 @@ useDeleteAgentMessageMutation({})
 
 ```typescript
 const { data, isLoading } = useAgentMessagesQuery({
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useAgentMessagesQuery({
 const { mutate } = useCreateAgentMessageMutation({
   selection: { fields: { id: true } },
 });
-mutate({ ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' });
+mutate({ actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' });
 ```
diff --git a/.agents/skills/hooks-agent/references/agent-task.md b/.agents/skills/hooks-agent/references/agent-task.md
index d3db1b356..72763d673 100644
--- a/.agents/skills/hooks-agent/references/agent-task.md
+++ b/.agents/skills/hooks-agent/references/agent-task.md
@@ -7,8 +7,8 @@ Task within a plan, with ordering and optional approval gates
 ## Usage
 
 ```typescript
-useAgentTasksQuery({ selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } } })
-useAgentTaskQuery({ id: '<UUID>', selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } } })
+useAgentTasksQuery({ selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } } })
+useAgentTaskQuery({ id: '<UUID>', selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } } })
 useCreateAgentTaskMutation({ selection: { fields: { id: true } } })
 useUpdateAgentTaskMutation({ selection: { fields: { id: true } } })
 useDeleteAgentTaskMutation({})
@@ -20,7 +20,7 @@ useDeleteAgentTaskMutation({})
 
 ```typescript
 const { data, isLoading } = useAgentTasksQuery({
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useAgentTasksQuery({
 const { mutate } = useCreateAgentTaskMutation({
   selection: { fields: { id: true } },
 });
-mutate({ ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' });
+mutate({ actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' });
 ```
diff --git a/.agents/skills/hooks-api/SKILL.md b/.agents/skills/hooks-api/SKILL.md
index 88c842797..c6a9c147b 100644
--- a/.agents/skills/hooks-api/SKILL.md
+++ b/.agents/skills/hooks-api/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: hooks-api
-description: React Query hooks for the api API — provides typed query and mutation hooks for 45 tables and 10 custom operations
+description: React Query hooks for the api API — provides typed query and mutation hooks for 46 tables and 10 custom operations
 ---
 
 # hooks-api
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-React Query hooks for the api API — provides typed query and mutation hooks for 45 tables and 10 custom operations
+React Query hooks for the api API — provides typed query and mutation hooks for 46 tables and 10 custom operations
 
 ## Usage
 
@@ -60,6 +60,7 @@ See the `references/` directory for detailed per-entity API documentation:
 - [schema-grant](references/schema-grant.md)
 - [default-privilege](references/default-privilege.md)
 - [enum](references/enum.md)
+- [composite-type](references/composite-type.md)
 - [api-schema](references/api-schema.md)
 - [api-module](references/api-module.md)
 - [domain](references/domain.md)
diff --git a/.agents/skills/hooks-api/references/composite-type.md b/.agents/skills/hooks-api/references/composite-type.md
new file mode 100644
index 000000000..cfb8c17ea
--- /dev/null
+++ b/.agents/skills/hooks-api/references/composite-type.md
@@ -0,0 +1,34 @@
+# compositeType
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+React Query hooks for CompositeType data operations
+
+## Usage
+
+```typescript
+useCompositeTypesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } } })
+useCompositeTypeQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } } })
+useCreateCompositeTypeMutation({ selection: { fields: { id: true } } })
+useUpdateCompositeTypeMutation({ selection: { fields: { id: true } } })
+useDeleteCompositeTypeMutation({})
+```
+
+## Examples
+
+### List all compositeTypes
+
+```typescript
+const { data, isLoading } = useCompositeTypesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } },
+});
+```
+
+### Create a compositeType
+
+```typescript
+const { mutate } = useCreateCompositeTypeMutation({
+  selection: { fields: { id: true } },
+});
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' });
+```
diff --git a/.agents/skills/hooks-api/references/table.md b/.agents/skills/hooks-api/references/table.md
index e251a89a1..3d03e208e 100644
--- a/.agents/skills/hooks-api/references/table.md
+++ b/.agents/skills/hooks-api/references/table.md
@@ -7,8 +7,8 @@ React Query hooks for Table data operations
 ## Usage
 
 ```typescript
-useTablesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } } })
-useTableQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } } })
+useTablesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } } })
+useTableQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } } })
 useCreateTableMutation({ selection: { fields: { id: true } } })
 useUpdateTableMutation({ selection: { fields: { id: true } } })
 useDeleteTableMutation({})
@@ -20,7 +20,7 @@ useDeleteTableMutation({})
 
 ```typescript
 const { data, isLoading } = useTablesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } },
 });
 ```
 
diff --git a/.agents/skills/hooks-modules/SKILL.md b/.agents/skills/hooks-modules/SKILL.md
index a5e6af7e2..4533db8f1 100644
--- a/.agents/skills/hooks-modules/SKILL.md
+++ b/.agents/skills/hooks-modules/SKILL.md
@@ -62,38 +62,38 @@ See the `references/` directory for detailed per-entity API documentation:
 - [blueprint-template](references/blueprint-template.md)
 - [blueprint-construction](references/blueprint-construction.md)
 - [crypto-auth-module](references/crypto-auth-module.md)
-- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [sessions-module](references/sessions-module.md)
 - [config-secrets-module](references/config-secrets-module.md)
 - [merkle-store-module](references/merkle-store-module.md)
 - [graph-module](references/graph-module.md)
 - [secure-table-provision](references/secure-table-provision.md)
+- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [invites-module](references/invites-module.md)
 - [database-provision-module](references/database-provision-module.md)
-- [namespace-module](references/namespace-module.md)
 - [realtime-module](references/realtime-module.md)
 - [webauthn-auth-module](references/webauthn-auth-module.md)
+- [namespace-module](references/namespace-module.md)
 - [compute-log-module](references/compute-log-module.md)
 - [inference-log-module](references/inference-log-module.md)
 - [storage-log-module](references/storage-log-module.md)
 - [transfer-log-module](references/transfer-log-module.md)
+- [plans-module](references/plans-module.md)
 - [db-usage-module](references/db-usage-module.md)
 - [notifications-module](references/notifications-module.md)
-- [plans-module](references/plans-module.md)
-- [hierarchy-module](references/hierarchy-module.md)
-- [billing-module](references/billing-module.md)
 - [billing-provider-module](references/billing-provider-module.md)
+- [function-module](references/function-module.md)
+- [hierarchy-module](references/hierarchy-module.md)
 - [profiles-module](references/profiles-module.md)
 - [permissions-module](references/permissions-module.md)
+- [billing-module](references/billing-module.md)
 - [relation-provision](references/relation-provision.md)
-- [function-module](references/function-module.md)
 - [user-auth-module](references/user-auth-module.md)
 - [agent-module](references/agent-module.md)
 - [limits-module](references/limits-module.md)
 - [memberships-module](references/memberships-module.md)
 - [storage-module](references/storage-module.md)
-- [events-module](references/events-module.md)
 - [entity-type-provision](references/entity-type-provision.md)
+- [events-module](references/events-module.md)
 - [resolve-blueprint-field](references/resolve-blueprint-field.md)
 - [resolve-blueprint-table](references/resolve-blueprint-table.md)
 - [construct-blueprint](references/construct-blueprint.md)
diff --git a/.agents/skills/hooks-modules/references/agent-module.md b/.agents/skills/hooks-modules/references/agent-module.md
index 76bf2577f..b6aa9c5d0 100644
--- a/.agents/skills/hooks-modules/references/agent-module.md
+++ b/.agents/skills/hooks-modules/references/agent-module.md
@@ -7,8 +7,8 @@ React Query hooks for AgentModule data operations
 ## Usage
 
 ```typescript
-useAgentModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } } })
-useAgentModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } } })
+useAgentModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } } })
+useAgentModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } } })
 useCreateAgentModuleMutation({ selection: { fields: { id: true } } })
 useUpdateAgentModuleMutation({ selection: { fields: { id: true } } })
 useDeleteAgentModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteAgentModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useAgentModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useAgentModulesQuery({
 const { mutate } = useCreateAgentModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/billing-module.md b/.agents/skills/hooks-modules/references/billing-module.md
index ccb75ca7d..6d2226e37 100644
--- a/.agents/skills/hooks-modules/references/billing-module.md
+++ b/.agents/skills/hooks-modules/references/billing-module.md
@@ -7,8 +7,8 @@ React Query hooks for BillingModule data operations
 ## Usage
 
 ```typescript
-useBillingModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } } })
-useBillingModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } } })
+useBillingModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useBillingModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateBillingModuleMutation({ selection: { fields: { id: true } } })
 useUpdateBillingModuleMutation({ selection: { fields: { id: true } } })
 useDeleteBillingModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteBillingModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useBillingModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useBillingModulesQuery({
 const { mutate } = useCreateBillingModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/db-usage-module.md b/.agents/skills/hooks-modules/references/db-usage-module.md
index a7d2fd784..56e3e1c2e 100644
--- a/.agents/skills/hooks-modules/references/db-usage-module.md
+++ b/.agents/skills/hooks-modules/references/db-usage-module.md
@@ -7,8 +7,8 @@ React Query hooks for DbUsageModule data operations
 ## Usage
 
 ```typescript
-useDbUsageModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } } })
-useDbUsageModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } } })
+useDbUsageModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useDbUsageModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateDbUsageModuleMutation({ selection: { fields: { id: true } } })
 useUpdateDbUsageModuleMutation({ selection: { fields: { id: true } } })
 useDeleteDbUsageModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteDbUsageModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useDbUsageModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useDbUsageModulesQuery({
 const { mutate } = useCreateDbUsageModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/entity-type-provision.md b/.agents/skills/hooks-modules/references/entity-type-provision.md
index ed4222c7c..34bc5a38a 100644
--- a/.agents/skills/hooks-modules/references/entity-type-provision.md
+++ b/.agents/skills/hooks-modules/references/entity-type-provision.md
@@ -14,8 +14,8 @@ Provisions a new membership entity type. Each INSERT creates an entity table, re
 ## Usage
 
 ```typescript
-useEntityTypeProvisionsQuery({ selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } } })
-useEntityTypeProvisionQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } } })
+useEntityTypeProvisionsQuery({ selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } } })
+useEntityTypeProvisionQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } } })
 useCreateEntityTypeProvisionMutation({ selection: { fields: { id: true } } })
 useUpdateEntityTypeProvisionMutation({ selection: { fields: { id: true } } })
 useDeleteEntityTypeProvisionMutation({})
@@ -27,7 +27,7 @@ useDeleteEntityTypeProvisionMutation({})
 
 ```typescript
 const { data, isLoading } = useEntityTypeProvisionsQuery({
-  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
+  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
 });
 ```
 
@@ -37,5 +37,5 @@ const { data, isLoading } = useEntityTypeProvisionsQuery({
 const { mutate } = useCreateEntityTypeProvisionMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' });
+mutate({ databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/events-module.md b/.agents/skills/hooks-modules/references/events-module.md
index aa809df31..fcbe8661c 100644
--- a/.agents/skills/hooks-modules/references/events-module.md
+++ b/.agents/skills/hooks-modules/references/events-module.md
@@ -7,8 +7,8 @@ React Query hooks for EventsModule data operations
 ## Usage
 
 ```typescript
-useEventsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } } })
-useEventsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } } })
+useEventsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useEventsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateEventsModuleMutation({ selection: { fields: { id: true } } })
 useUpdateEventsModuleMutation({ selection: { fields: { id: true } } })
 useDeleteEventsModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteEventsModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useEventsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useEventsModulesQuery({
 const { mutate } = useCreateEventsModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/function-module.md b/.agents/skills/hooks-modules/references/function-module.md
index 0b2fc4e06..739f9c903 100644
--- a/.agents/skills/hooks-modules/references/function-module.md
+++ b/.agents/skills/hooks-modules/references/function-module.md
@@ -7,8 +7,8 @@ React Query hooks for FunctionModule data operations
 ## Usage
 
 ```typescript
-useFunctionModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } } })
-useFunctionModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } } })
+useFunctionModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } } })
+useFunctionModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } } })
 useCreateFunctionModuleMutation({ selection: { fields: { id: true } } })
 useUpdateFunctionModuleMutation({ selection: { fields: { id: true } } })
 useDeleteFunctionModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteFunctionModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useFunctionModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useFunctionModulesQuery({
 const { mutate } = useCreateFunctionModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/graph-module.md b/.agents/skills/hooks-modules/references/graph-module.md
index 1e789c6dd..def0e762c 100644
--- a/.agents/skills/hooks-modules/references/graph-module.md
+++ b/.agents/skills/hooks-modules/references/graph-module.md
@@ -7,8 +7,8 @@ React Query hooks for GraphModule data operations
 ## Usage
 
 ```typescript
-useGraphModulesQuery({ selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } } })
-useGraphModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } } })
+useGraphModulesQuery({ selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } } })
+useGraphModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } } })
 useCreateGraphModuleMutation({ selection: { fields: { id: true } } })
 useUpdateGraphModuleMutation({ selection: { fields: { id: true } } })
 useDeleteGraphModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteGraphModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useGraphModulesQuery({
-  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } },
+  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useGraphModulesQuery({
 const { mutate } = useCreateGraphModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
+mutate({ databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/hierarchy-module.md b/.agents/skills/hooks-modules/references/hierarchy-module.md
index 4cfa08b1e..648531b64 100644
--- a/.agents/skills/hooks-modules/references/hierarchy-module.md
+++ b/.agents/skills/hooks-modules/references/hierarchy-module.md
@@ -7,8 +7,8 @@ React Query hooks for HierarchyModule data operations
 ## Usage
 
 ```typescript
-useHierarchyModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } } })
-useHierarchyModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } } })
+useHierarchyModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } } })
+useHierarchyModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } } })
 useCreateHierarchyModuleMutation({ selection: { fields: { id: true } } })
 useUpdateHierarchyModuleMutation({ selection: { fields: { id: true } } })
 useDeleteHierarchyModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteHierarchyModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useHierarchyModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useHierarchyModulesQuery({
 const { mutate } = useCreateHierarchyModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/memberships-module.md b/.agents/skills/hooks-modules/references/memberships-module.md
index c58dd87bb..4eefa2f3f 100644
--- a/.agents/skills/hooks-modules/references/memberships-module.md
+++ b/.agents/skills/hooks-modules/references/memberships-module.md
@@ -7,8 +7,8 @@ React Query hooks for MembershipsModule data operations
 ## Usage
 
 ```typescript
-useMembershipsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } } })
-useMembershipsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } } })
+useMembershipsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } } })
+useMembershipsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } } })
 useCreateMembershipsModuleMutation({ selection: { fields: { id: true } } })
 useUpdateMembershipsModuleMutation({ selection: { fields: { id: true } } })
 useDeleteMembershipsModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteMembershipsModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useMembershipsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useMembershipsModulesQuery({
 const { mutate } = useCreateMembershipsModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/namespace-module.md b/.agents/skills/hooks-modules/references/namespace-module.md
index 62edf6fdd..e9b8e5405 100644
--- a/.agents/skills/hooks-modules/references/namespace-module.md
+++ b/.agents/skills/hooks-modules/references/namespace-module.md
@@ -7,8 +7,8 @@ React Query hooks for NamespaceModule data operations
 ## Usage
 
 ```typescript
-useNamespaceModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } } })
-useNamespaceModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } } })
+useNamespaceModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } } })
+useNamespaceModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } } })
 useCreateNamespaceModuleMutation({ selection: { fields: { id: true } } })
 useUpdateNamespaceModuleMutation({ selection: { fields: { id: true } } })
 useDeleteNamespaceModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteNamespaceModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useNamespaceModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useNamespaceModulesQuery({
 const { mutate } = useCreateNamespaceModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/notifications-module.md b/.agents/skills/hooks-modules/references/notifications-module.md
index 35291eac0..d9dd6a2cf 100644
--- a/.agents/skills/hooks-modules/references/notifications-module.md
+++ b/.agents/skills/hooks-modules/references/notifications-module.md
@@ -7,8 +7,8 @@ React Query hooks for NotificationsModule data operations
 ## Usage
 
 ```typescript
-useNotificationsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } } })
-useNotificationsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } } })
+useNotificationsModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useNotificationsModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateNotificationsModuleMutation({ selection: { fields: { id: true } } })
 useUpdateNotificationsModuleMutation({ selection: { fields: { id: true } } })
 useDeleteNotificationsModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteNotificationsModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useNotificationsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useNotificationsModulesQuery({
 const { mutate } = useCreateNotificationsModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/rate-limit-meters-module.md b/.agents/skills/hooks-modules/references/rate-limit-meters-module.md
index bbf4a1f6c..bee7e362c 100644
--- a/.agents/skills/hooks-modules/references/rate-limit-meters-module.md
+++ b/.agents/skills/hooks-modules/references/rate-limit-meters-module.md
@@ -7,8 +7,8 @@ React Query hooks for RateLimitMetersModule data operations
 ## Usage
 
 ```typescript
-useRateLimitMetersModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } } })
-useRateLimitMetersModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } } })
+useRateLimitMetersModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useRateLimitMetersModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateRateLimitMetersModuleMutation({ selection: { fields: { id: true } } })
 useUpdateRateLimitMetersModuleMutation({ selection: { fields: { id: true } } })
 useDeleteRateLimitMetersModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteRateLimitMetersModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useRateLimitMetersModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useRateLimitMetersModulesQuery({
 const { mutate } = useCreateRateLimitMetersModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/hooks-modules/references/storage-module.md b/.agents/skills/hooks-modules/references/storage-module.md
index 3d2e02010..668da6691 100644
--- a/.agents/skills/hooks-modules/references/storage-module.md
+++ b/.agents/skills/hooks-modules/references/storage-module.md
@@ -7,8 +7,8 @@ React Query hooks for StorageModule data operations
 ## Usage
 
 ```typescript
-useStorageModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } } })
-useStorageModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } } })
+useStorageModulesQuery({ selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
+useStorageModuleQuery({ id: '<UUID>', selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } } })
 useCreateStorageModuleMutation({ selection: { fields: { id: true } } })
 useUpdateStorageModuleMutation({ selection: { fields: { id: true } } })
 useDeleteStorageModuleMutation({})
@@ -20,7 +20,7 @@ useDeleteStorageModuleMutation({})
 
 ```typescript
 const { data, isLoading } = useStorageModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 ```
 
@@ -30,5 +30,5 @@ const { data, isLoading } = useStorageModulesQuery({
 const { mutate } = useCreateStorageModuleMutation({
   selection: { fields: { id: true } },
 });
-mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+mutate({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
diff --git a/.agents/skills/orm-admin/SKILL.md b/.agents/skills/orm-admin/SKILL.md
index 49d516efd..18f140203 100644
--- a/.agents/skills/orm-admin/SKILL.md
+++ b/.agents/skills/orm-admin/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: orm-admin
-description: ORM client for the admin API — provides typed CRUD operations for 26 tables and 12 custom operations
+description: ORM client for the admin API — provides typed CRUD operations for 30 tables and 12 custom operations
 ---
 
 # orm-admin
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-ORM client for the admin API — provides typed CRUD operations for 26 tables and 12 custom operations
+ORM client for the admin API — provides typed CRUD operations for 30 tables and 12 custom operations
 
 ## Usage
 
@@ -15,7 +15,7 @@ ORM client for the admin API — provides typed CRUD operations for 26 tables an
 // Import the ORM client
 import { db } from './orm';
 
-// Available models: orgGetManagersRecord, orgGetSubordinatesRecord, appPermission, orgPermission, orgMember, appPermissionDefault, orgPermissionDefault, appAdminGrant, ...
+// Available models: orgGetManagersRecord, orgGetSubordinatesRecord, appPermission, appPermissionDefaultGrant, orgPermission, orgPermissionDefaultPermission, orgPermissionDefaultGrant, orgMember, ...
 db.<model>.findMany({ select: { id: true } }).execute()
 db.<model>.findOne({ id: '<UUID>', select: { id: true } }).execute()
 db.<model>.create({ data: { ... }, select: { id: true } }).execute()
@@ -40,10 +40,14 @@ See the `references/` directory for detailed per-entity API documentation:
 - [org-get-managers-record](references/org-get-managers-record.md)
 - [org-get-subordinates-record](references/org-get-subordinates-record.md)
 - [app-permission](references/app-permission.md)
+- [app-permission-default-grant](references/app-permission-default-grant.md)
 - [org-permission](references/org-permission.md)
+- [org-permission-default-permission](references/org-permission-default-permission.md)
+- [org-permission-default-grant](references/org-permission-default-grant.md)
 - [org-member](references/org-member.md)
 - [app-permission-default](references/app-permission-default.md)
 - [org-permission-default](references/org-permission-default.md)
+- [app-permission-default-permission](references/app-permission-default-permission.md)
 - [app-admin-grant](references/app-admin-grant.md)
 - [app-owner-grant](references/app-owner-grant.md)
 - [org-admin-grant](references/org-admin-grant.md)
diff --git a/.agents/skills/orm-admin/references/app-permission-default-grant.md b/.agents/skills/orm-admin/references/app-permission-default-grant.md
new file mode 100644
index 000000000..34fa01b3f
--- /dev/null
+++ b/.agents/skills/orm-admin/references/app-permission-default-grant.md
@@ -0,0 +1,34 @@
+# appPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Audit log of permission additions and removals from the defaults bitmask
+
+## Usage
+
+```typescript
+db.appPermissionDefaultGrant.findMany({ select: { id: true } }).execute()
+db.appPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true } }).execute()
+db.appPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' }, select: { id: true } }).execute()
+db.appPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute()
+db.appPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute()
+```
+
+## Examples
+
+### List all appPermissionDefaultGrant records
+
+```typescript
+const items = await db.appPermissionDefaultGrant.findMany({
+  select: { id: true, permissionId: true }
+}).execute();
+```
+
+### Create a appPermissionDefaultGrant
+
+```typescript
+const item = await db.appPermissionDefaultGrant.create({
+  data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' },
+  select: { id: true }
+}).execute();
+```
diff --git a/.agents/skills/orm-admin/references/app-permission-default-permission.md b/.agents/skills/orm-admin/references/app-permission-default-permission.md
new file mode 100644
index 000000000..7d62eb36f
--- /dev/null
+++ b/.agents/skills/orm-admin/references/app-permission-default-permission.md
@@ -0,0 +1,34 @@
+# appPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+
+## Usage
+
+```typescript
+db.appPermissionDefaultPermission.findMany({ select: { id: true } }).execute()
+db.appPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true } }).execute()
+db.appPermissionDefaultPermission.create({ data: { permissionId: '<UUID>' }, select: { id: true } }).execute()
+db.appPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute()
+db.appPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute()
+```
+
+## Examples
+
+### List all appPermissionDefaultPermission records
+
+```typescript
+const items = await db.appPermissionDefaultPermission.findMany({
+  select: { id: true, permissionId: true }
+}).execute();
+```
+
+### Create a appPermissionDefaultPermission
+
+```typescript
+const item = await db.appPermissionDefaultPermission.create({
+  data: { permissionId: '<UUID>' },
+  select: { id: true }
+}).execute();
+```
diff --git a/.agents/skills/orm-admin/references/org-permission-default-grant.md b/.agents/skills/orm-admin/references/org-permission-default-grant.md
new file mode 100644
index 000000000..380c58732
--- /dev/null
+++ b/.agents/skills/orm-admin/references/org-permission-default-grant.md
@@ -0,0 +1,34 @@
+# orgPermissionDefaultGrant
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Audit log of permission additions and removals from the defaults bitmask
+
+## Usage
+
+```typescript
+db.orgPermissionDefaultGrant.findMany({ select: { id: true } }).execute()
+db.orgPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true } }).execute()
+db.orgPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute()
+db.orgPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute()
+db.orgPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute()
+```
+
+## Examples
+
+### List all orgPermissionDefaultGrant records
+
+```typescript
+const items = await db.orgPermissionDefaultGrant.findMany({
+  select: { id: true, permissionId: true }
+}).execute();
+```
+
+### Create a orgPermissionDefaultGrant
+
+```typescript
+const item = await db.orgPermissionDefaultGrant.create({
+  data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' },
+  select: { id: true }
+}).execute();
+```
diff --git a/.agents/skills/orm-admin/references/org-permission-default-permission.md b/.agents/skills/orm-admin/references/org-permission-default-permission.md
new file mode 100644
index 000000000..befdbb2cb
--- /dev/null
+++ b/.agents/skills/orm-admin/references/org-permission-default-permission.md
@@ -0,0 +1,34 @@
+# orgPermissionDefaultPermission
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+
+## Usage
+
+```typescript
+db.orgPermissionDefaultPermission.findMany({ select: { id: true } }).execute()
+db.orgPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true } }).execute()
+db.orgPermissionDefaultPermission.create({ data: { permissionId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute()
+db.orgPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute()
+db.orgPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute()
+```
+
+## Examples
+
+### List all orgPermissionDefaultPermission records
+
+```typescript
+const items = await db.orgPermissionDefaultPermission.findMany({
+  select: { id: true, permissionId: true }
+}).execute();
+```
+
+### Create a orgPermissionDefaultPermission
+
+```typescript
+const item = await db.orgPermissionDefaultPermission.create({
+  data: { permissionId: '<UUID>', entityId: '<UUID>' },
+  select: { id: true }
+}).execute();
+```
diff --git a/.agents/skills/orm-agent/references/agent-message.md b/.agents/skills/orm-agent/references/agent-message.md
index 0ed2dc2a7..d2b179734 100644
--- a/.agents/skills/orm-agent/references/agent-message.md
+++ b/.agents/skills/orm-agent/references/agent-message.md
@@ -9,8 +9,8 @@ Message within an agent thread with TextPart/ToolPart jsonb parts
 ```typescript
 db.agentMessage.findMany({ select: { id: true } }).execute()
 db.agentMessage.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.agentMessage.create({ data: { ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' }, select: { id: true } }).execute()
-db.agentMessage.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute()
+db.agentMessage.create({ data: { actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' }, select: { id: true } }).execute()
+db.agentMessage.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute()
 db.agentMessage.delete({ where: { id: '<UUID>' } }).execute()
 ```
 
@@ -20,7 +20,7 @@ db.agentMessage.delete({ where: { id: '<UUID>' } }).execute()
 
 ```typescript
 const items = await db.agentMessage.findMany({
-  select: { id: true, ownerId: true }
+  select: { id: true, actorId: true }
 }).execute();
 ```
 
@@ -28,7 +28,7 @@ const items = await db.agentMessage.findMany({
 
 ```typescript
 const item = await db.agentMessage.create({
-  data: { ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' },
+  data: { actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-agent/references/agent-task.md b/.agents/skills/orm-agent/references/agent-task.md
index 7a1aaf29c..dbbe6b5c7 100644
--- a/.agents/skills/orm-agent/references/agent-task.md
+++ b/.agents/skills/orm-agent/references/agent-task.md
@@ -9,8 +9,8 @@ Task within a plan, with ordering and optional approval gates
 ```typescript
 db.agentTask.findMany({ select: { id: true } }).execute()
 db.agentTask.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.agentTask.create({ data: { ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute()
-db.agentTask.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute()
+db.agentTask.create({ data: { actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute()
+db.agentTask.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute()
 db.agentTask.delete({ where: { id: '<UUID>' } }).execute()
 ```
 
@@ -20,7 +20,7 @@ db.agentTask.delete({ where: { id: '<UUID>' } }).execute()
 
 ```typescript
 const items = await db.agentTask.findMany({
-  select: { id: true, ownerId: true }
+  select: { id: true, actorId: true }
 }).execute();
 ```
 
@@ -28,7 +28,7 @@ const items = await db.agentTask.findMany({
 
 ```typescript
 const item = await db.agentTask.create({
-  data: { ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' },
+  data: { actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-api/SKILL.md b/.agents/skills/orm-api/SKILL.md
index 35fe0dfd6..4dbef8383 100644
--- a/.agents/skills/orm-api/SKILL.md
+++ b/.agents/skills/orm-api/SKILL.md
@@ -1,13 +1,13 @@
 ---
 name: orm-api
-description: ORM client for the api API — provides typed CRUD operations for 45 tables and 10 custom operations
+description: ORM client for the api API — provides typed CRUD operations for 46 tables and 10 custom operations
 ---
 
 # orm-api
 
 <!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
 
-ORM client for the api API — provides typed CRUD operations for 45 tables and 10 custom operations
+ORM client for the api API — provides typed CRUD operations for 46 tables and 10 custom operations
 
 ## Usage
 
@@ -59,6 +59,7 @@ See the `references/` directory for detailed per-entity API documentation:
 - [schema-grant](references/schema-grant.md)
 - [default-privilege](references/default-privilege.md)
 - [enum](references/enum.md)
+- [composite-type](references/composite-type.md)
 - [api-schema](references/api-schema.md)
 - [api-module](references/api-module.md)
 - [domain](references/domain.md)
diff --git a/.agents/skills/orm-api/references/composite-type.md b/.agents/skills/orm-api/references/composite-type.md
new file mode 100644
index 000000000..13f496801
--- /dev/null
+++ b/.agents/skills/orm-api/references/composite-type.md
@@ -0,0 +1,34 @@
+# compositeType
+
+<!-- @constructive-io/graphql-codegen - DO NOT EDIT -->
+
+ORM operations for CompositeType records
+
+## Usage
+
+```typescript
+db.compositeType.findMany({ select: { id: true } }).execute()
+db.compositeType.findOne({ id: '<UUID>', select: { id: true } }).execute()
+db.compositeType.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' }, select: { id: true } }).execute()
+db.compositeType.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
+db.compositeType.delete({ where: { id: '<UUID>' } }).execute()
+```
+
+## Examples
+
+### List all compositeType records
+
+```typescript
+const items = await db.compositeType.findMany({
+  select: { id: true, databaseId: true }
+}).execute();
+```
+
+### Create a compositeType
+
+```typescript
+const item = await db.compositeType.create({
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' },
+  select: { id: true }
+}).execute();
+```
diff --git a/.agents/skills/orm-modules/SKILL.md b/.agents/skills/orm-modules/SKILL.md
index 08238a6ae..cd2816365 100644
--- a/.agents/skills/orm-modules/SKILL.md
+++ b/.agents/skills/orm-modules/SKILL.md
@@ -61,38 +61,38 @@ See the `references/` directory for detailed per-entity API documentation:
 - [blueprint-template](references/blueprint-template.md)
 - [blueprint-construction](references/blueprint-construction.md)
 - [crypto-auth-module](references/crypto-auth-module.md)
-- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [sessions-module](references/sessions-module.md)
 - [config-secrets-module](references/config-secrets-module.md)
 - [merkle-store-module](references/merkle-store-module.md)
 - [graph-module](references/graph-module.md)
 - [secure-table-provision](references/secure-table-provision.md)
+- [rate-limit-meters-module](references/rate-limit-meters-module.md)
 - [invites-module](references/invites-module.md)
 - [database-provision-module](references/database-provision-module.md)
-- [namespace-module](references/namespace-module.md)
 - [realtime-module](references/realtime-module.md)
 - [webauthn-auth-module](references/webauthn-auth-module.md)
+- [namespace-module](references/namespace-module.md)
 - [compute-log-module](references/compute-log-module.md)
 - [inference-log-module](references/inference-log-module.md)
 - [storage-log-module](references/storage-log-module.md)
 - [transfer-log-module](references/transfer-log-module.md)
+- [plans-module](references/plans-module.md)
 - [db-usage-module](references/db-usage-module.md)
 - [notifications-module](references/notifications-module.md)
-- [plans-module](references/plans-module.md)
-- [hierarchy-module](references/hierarchy-module.md)
-- [billing-module](references/billing-module.md)
 - [billing-provider-module](references/billing-provider-module.md)
+- [function-module](references/function-module.md)
+- [hierarchy-module](references/hierarchy-module.md)
 - [profiles-module](references/profiles-module.md)
 - [permissions-module](references/permissions-module.md)
+- [billing-module](references/billing-module.md)
 - [relation-provision](references/relation-provision.md)
-- [function-module](references/function-module.md)
 - [user-auth-module](references/user-auth-module.md)
 - [agent-module](references/agent-module.md)
 - [limits-module](references/limits-module.md)
 - [memberships-module](references/memberships-module.md)
 - [storage-module](references/storage-module.md)
-- [events-module](references/events-module.md)
 - [entity-type-provision](references/entity-type-provision.md)
+- [events-module](references/events-module.md)
 - [resolve-blueprint-field](references/resolve-blueprint-field.md)
 - [resolve-blueprint-table](references/resolve-blueprint-table.md)
 - [construct-blueprint](references/construct-blueprint.md)
diff --git a/.agents/skills/orm-modules/references/agent-module.md b/.agents/skills/orm-modules/references/agent-module.md
index dd9c32ea3..493cf8eef 100644
--- a/.agents/skills/orm-modules/references/agent-module.md
+++ b/.agents/skills/orm-modules/references/agent-module.md
@@ -9,7 +9,7 @@ ORM operations for AgentModule records
 ```typescript
 db.agentModule.findMany({ select: { id: true } }).execute()
 db.agentModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute()
+db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute()
 db.agentModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.agentModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.agentModule.findMany({
 
 ```typescript
 const item = await db.agentModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/billing-module.md b/.agents/skills/orm-modules/references/billing-module.md
index 9b8026433..51912a53d 100644
--- a/.agents/skills/orm-modules/references/billing-module.md
+++ b/.agents/skills/orm-modules/references/billing-module.md
@@ -9,7 +9,7 @@ ORM operations for BillingModule records
 ```typescript
 db.billingModule.findMany({ select: { id: true } }).execute()
 db.billingModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.billingModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.billingModule.findMany({
 
 ```typescript
 const item = await db.billingModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/db-usage-module.md b/.agents/skills/orm-modules/references/db-usage-module.md
index 0e638627f..488038aa8 100644
--- a/.agents/skills/orm-modules/references/db-usage-module.md
+++ b/.agents/skills/orm-modules/references/db-usage-module.md
@@ -9,7 +9,7 @@ ORM operations for DbUsageModule records
 ```typescript
 db.dbUsageModule.findMany({ select: { id: true } }).execute()
 db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.dbUsageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.dbUsageModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.dbUsageModule.findMany({
 
 ```typescript
 const item = await db.dbUsageModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/entity-type-provision.md b/.agents/skills/orm-modules/references/entity-type-provision.md
index 4cc98c486..9d8c8736f 100644
--- a/.agents/skills/orm-modules/references/entity-type-provision.md
+++ b/.agents/skills/orm-modules/references/entity-type-provision.md
@@ -16,7 +16,7 @@ Provisions a new membership entity type. Each INSERT creates an entity table, re
 ```typescript
 db.entityTypeProvision.findMany({ select: { id: true } }).execute()
 db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute()
+db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute()
 db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -35,7 +35,7 @@ const items = await db.entityTypeProvision.findMany({
 
 ```typescript
 const item = await db.entityTypeProvision.create({
-  data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' },
+  data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/events-module.md b/.agents/skills/orm-modules/references/events-module.md
index 21582ac9d..ac8dd4d1e 100644
--- a/.agents/skills/orm-modules/references/events-module.md
+++ b/.agents/skills/orm-modules/references/events-module.md
@@ -9,7 +9,7 @@ ORM operations for EventsModule records
 ```typescript
 db.eventsModule.findMany({ select: { id: true } }).execute()
 db.eventsModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.eventsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.eventsModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.eventsModule.findMany({
 
 ```typescript
 const item = await db.eventsModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/function-module.md b/.agents/skills/orm-modules/references/function-module.md
index 2ff69254c..04d75f14f 100644
--- a/.agents/skills/orm-modules/references/function-module.md
+++ b/.agents/skills/orm-modules/references/function-module.md
@@ -9,7 +9,7 @@ ORM operations for FunctionModule records
 ```typescript
 db.functionModule.findMany({ select: { id: true } }).execute()
 db.functionModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute()
+db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute()
 db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.functionModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.functionModule.findMany({
 
 ```typescript
 const item = await db.functionModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/graph-module.md b/.agents/skills/orm-modules/references/graph-module.md
index 71240d73b..b325b3108 100644
--- a/.agents/skills/orm-modules/references/graph-module.md
+++ b/.agents/skills/orm-modules/references/graph-module.md
@@ -9,7 +9,7 @@ ORM operations for GraphModule records
 ```typescript
 db.graphModule.findMany({ select: { id: true } }).execute()
 db.graphModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute()
+db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute()
 db.graphModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.graphModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.graphModule.findMany({
 
 ```typescript
 const item = await db.graphModule.create({
-  data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' },
+  data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/hierarchy-module.md b/.agents/skills/orm-modules/references/hierarchy-module.md
index d6d344bff..c87a016fb 100644
--- a/.agents/skills/orm-modules/references/hierarchy-module.md
+++ b/.agents/skills/orm-modules/references/hierarchy-module.md
@@ -9,7 +9,7 @@ ORM operations for HierarchyModule records
 ```typescript
 db.hierarchyModule.findMany({ select: { id: true } }).execute()
 db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' }, select: { id: true } }).execute()
+db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' }, select: { id: true } }).execute()
 db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.hierarchyModule.findMany({
 
 ```typescript
 const item = await db.hierarchyModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/memberships-module.md b/.agents/skills/orm-modules/references/memberships-module.md
index 486652042..6f96a232f 100644
--- a/.agents/skills/orm-modules/references/memberships-module.md
+++ b/.agents/skills/orm-modules/references/memberships-module.md
@@ -9,7 +9,7 @@ ORM operations for MembershipsModule records
 ```typescript
 db.membershipsModule.findMany({ select: { id: true } }).execute()
 db.membershipsModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.membershipsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.membershipsModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.membershipsModule.findMany({
 
 ```typescript
 const item = await db.membershipsModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/namespace-module.md b/.agents/skills/orm-modules/references/namespace-module.md
index a9da479ee..4a0202acc 100644
--- a/.agents/skills/orm-modules/references/namespace-module.md
+++ b/.agents/skills/orm-modules/references/namespace-module.md
@@ -9,7 +9,7 @@ ORM operations for NamespaceModule records
 ```typescript
 db.namespaceModule.findMany({ select: { id: true } }).execute()
 db.namespaceModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute()
+db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute()
 db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.namespaceModule.findMany({
 
 ```typescript
 const item = await db.namespaceModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/notifications-module.md b/.agents/skills/orm-modules/references/notifications-module.md
index 5b3ddc2e1..c6454bd6a 100644
--- a/.agents/skills/orm-modules/references/notifications-module.md
+++ b/.agents/skills/orm-modules/references/notifications-module.md
@@ -9,7 +9,7 @@ ORM operations for NotificationsModule records
 ```typescript
 db.notificationsModule.findMany({ select: { id: true } }).execute()
 db.notificationsModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.notificationsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.notificationsModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.notificationsModule.findMany({
 
 ```typescript
 const item = await db.notificationsModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/rate-limit-meters-module.md b/.agents/skills/orm-modules/references/rate-limit-meters-module.md
index 244d9a8fe..3676aa581 100644
--- a/.agents/skills/orm-modules/references/rate-limit-meters-module.md
+++ b/.agents/skills/orm-modules/references/rate-limit-meters-module.md
@@ -9,7 +9,7 @@ ORM operations for RateLimitMetersModule records
 ```typescript
 db.rateLimitMetersModule.findMany({ select: { id: true } }).execute()
 db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.rateLimitMetersModule.findMany({
 
 ```typescript
 const item = await db.rateLimitMetersModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/.agents/skills/orm-modules/references/storage-module.md b/.agents/skills/orm-modules/references/storage-module.md
index ad3e5375c..d849aa974 100644
--- a/.agents/skills/orm-modules/references/storage-module.md
+++ b/.agents/skills/orm-modules/references/storage-module.md
@@ -9,7 +9,7 @@ ORM operations for StorageModule records
 ```typescript
 db.storageModule.findMany({ select: { id: true } }).execute()
 db.storageModule.findOne({ id: '<UUID>', select: { id: true } }).execute()
-db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
+db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute()
 db.storageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute()
 db.storageModule.delete({ where: { id: '<UUID>' } }).execute()
 ```
@@ -28,7 +28,7 @@ const items = await db.storageModule.findMany({
 
 ```typescript
 const item = await db.storageModule.create({
-  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' },
+  data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' },
   select: { id: true }
 }).execute();
 ```
diff --git a/sdk/constructive-cli/src/.targets b/sdk/constructive-cli/src/.targets
new file mode 100644
index 000000000..bf4de0b16
--- /dev/null
+++ b/sdk/constructive-cli/src/.targets
@@ -0,0 +1 @@
+["admin","agent","api","auth","modules","objects","usage"]
diff --git a/sdk/constructive-cli/src/admin/README.md b/sdk/constructive-cli/src/admin/README.md
index 19e780852..656c4cf33 100644
--- a/sdk/constructive-cli/src/admin/README.md
+++ b/sdk/constructive-cli/src/admin/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 26
+- **Tables:** 30
 - **Custom queries:** 9
 - **Custom mutations:** 3
 
diff --git a/sdk/constructive-cli/src/admin/cli/README.md b/sdk/constructive-cli/src/admin/cli/README.md
index b812a61b3..5915ffaa1 100644
--- a/sdk/constructive-cli/src/admin/cli/README.md
+++ b/sdk/constructive-cli/src/admin/cli/README.md
@@ -29,10 +29,14 @@ csdk auth set-token <your-token>
 | `org-get-managers-record` | orgGetManagersRecord CRUD operations |
 | `org-get-subordinates-record` | orgGetSubordinatesRecord CRUD operations |
 | `app-permission` | appPermission CRUD operations |
+| `app-permission-default-grant` | appPermissionDefaultGrant CRUD operations |
 | `org-permission` | orgPermission CRUD operations |
+| `org-permission-default-permission` | orgPermissionDefaultPermission CRUD operations |
+| `org-permission-default-grant` | orgPermissionDefaultGrant CRUD operations |
 | `org-member` | orgMember CRUD operations |
 | `app-permission-default` | appPermissionDefault CRUD operations |
 | `org-permission-default` | orgPermissionDefault CRUD operations |
+| `app-permission-default-permission` | appPermissionDefaultPermission CRUD operations |
 | `app-admin-grant` | appAdminGrant CRUD operations |
 | `app-owner-grant` | appOwnerGrant CRUD operations |
 | `org-admin-grant` | orgAdminGrant CRUD operations |
@@ -178,6 +182,33 @@ CRUD operations for AppPermission records.
 
 **Optional create fields (backend defaults):** `name`, `bitnum`, `bitstr`, `description`
 
+### `app-permission-default-grant`
+
+CRUD operations for AppPermissionDefaultGrant records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all appPermissionDefaultGrant records |
+| `find-first` | Find first matching appPermissionDefaultGrant record |
+| `get` | Get a appPermissionDefaultGrant by id |
+| `create` | Create a new appPermissionDefaultGrant |
+| `update` | Update an existing appPermissionDefaultGrant |
+| `delete` | Delete a appPermissionDefaultGrant |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `permissionId` | UUID |
+| `isGrant` | Boolean |
+| `grantorId` | UUID |
+| `createdAt` | Datetime |
+| `updatedAt` | Datetime |
+
+**Required create fields:** `permissionId`
+**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+
 ### `org-permission`
 
 CRUD operations for OrgPermission records.
@@ -203,6 +234,59 @@ CRUD operations for OrgPermission records.
 
 **Optional create fields (backend defaults):** `name`, `bitnum`, `bitstr`, `description`
 
+### `org-permission-default-permission`
+
+CRUD operations for OrgPermissionDefaultPermission records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all orgPermissionDefaultPermission records |
+| `find-first` | Find first matching orgPermissionDefaultPermission record |
+| `get` | Get a orgPermissionDefaultPermission by id |
+| `create` | Create a new orgPermissionDefaultPermission |
+| `update` | Update an existing orgPermissionDefaultPermission |
+| `delete` | Delete a orgPermissionDefaultPermission |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `permissionId` | UUID |
+| `entityId` | UUID |
+| `createdAt` | Datetime |
+| `updatedAt` | Datetime |
+
+**Required create fields:** `permissionId`, `entityId`
+
+### `org-permission-default-grant`
+
+CRUD operations for OrgPermissionDefaultGrant records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all orgPermissionDefaultGrant records |
+| `find-first` | Find first matching orgPermissionDefaultGrant record |
+| `get` | Get a orgPermissionDefaultGrant by id |
+| `create` | Create a new orgPermissionDefaultGrant |
+| `update` | Update an existing orgPermissionDefaultGrant |
+| `delete` | Delete a orgPermissionDefaultGrant |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `permissionId` | UUID |
+| `isGrant` | Boolean |
+| `grantorId` | UUID |
+| `entityId` | UUID |
+| `createdAt` | Datetime |
+| `updatedAt` | Datetime |
+
+**Required create fields:** `permissionId`, `entityId`
+**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+
 ### `org-member`
 
 CRUD operations for OrgMember records.
@@ -274,6 +358,30 @@ CRUD operations for OrgPermissionDefault records.
 **Required create fields:** `entityId`
 **Optional create fields (backend defaults):** `permissions`
 
+### `app-permission-default-permission`
+
+CRUD operations for AppPermissionDefaultPermission records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all appPermissionDefaultPermission records |
+| `find-first` | Find first matching appPermissionDefaultPermission record |
+| `get` | Get a appPermissionDefaultPermission by id |
+| `create` | Create a new appPermissionDefaultPermission |
+| `update` | Update an existing appPermissionDefaultPermission |
+| `delete` | Delete a appPermissionDefaultPermission |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `permissionId` | UUID |
+| `createdAt` | Datetime |
+| `updatedAt` | Datetime |
+
+**Required create fields:** `permissionId`
+
 ### `app-admin-grant`
 
 CRUD operations for AppAdminGrant records.
@@ -298,8 +406,7 @@ CRUD operations for AppAdminGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`
-**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+**Optional create fields (backend defaults):** `isGrant`, `actorId`, `grantorId`
 
 ### `app-owner-grant`
 
@@ -325,8 +432,7 @@ CRUD operations for AppOwnerGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`
-**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+**Optional create fields (backend defaults):** `isGrant`, `actorId`, `grantorId`
 
 ### `org-admin-grant`
 
@@ -353,8 +459,8 @@ CRUD operations for OrgAdminGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`, `entityId`
-**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+**Required create fields:** `entityId`
+**Optional create fields (backend defaults):** `isGrant`, `actorId`, `grantorId`
 
 ### `org-owner-grant`
 
@@ -381,8 +487,8 @@ CRUD operations for OrgOwnerGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`, `entityId`
-**Optional create fields (backend defaults):** `isGrant`, `grantorId`
+**Required create fields:** `entityId`
+**Optional create fields (backend defaults):** `isGrant`, `actorId`, `grantorId`
 
 ### `org-chart-edge-grant`
 
@@ -492,8 +598,7 @@ CRUD operations for AppGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`
-**Optional create fields (backend defaults):** `permissions`, `isGrant`, `grantorId`
+**Optional create fields (backend defaults):** `permissions`, `isGrant`, `actorId`, `grantorId`
 
 ### `app-membership-default`
 
@@ -604,8 +709,8 @@ CRUD operations for OrgGrant records.
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
 
-**Required create fields:** `actorId`, `entityId`
-**Optional create fields (backend defaults):** `permissions`, `isGrant`, `grantorId`
+**Required create fields:** `entityId`
+**Optional create fields (backend defaults):** `permissions`, `isGrant`, `actorId`, `grantorId`
 
 ### `org-chart-edge`
 
diff --git a/sdk/constructive-cli/src/admin/cli/commands.ts b/sdk/constructive-cli/src/admin/cli/commands.ts
index 88ab8b820..3e36372ea 100644
--- a/sdk/constructive-cli/src/admin/cli/commands.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands.ts
@@ -9,10 +9,14 @@ import authCmd from './commands/auth';
 import orgGetManagersRecordCmd from './commands/org-get-managers-record';
 import orgGetSubordinatesRecordCmd from './commands/org-get-subordinates-record';
 import appPermissionCmd from './commands/app-permission';
+import appPermissionDefaultGrantCmd from './commands/app-permission-default-grant';
 import orgPermissionCmd from './commands/org-permission';
+import orgPermissionDefaultPermissionCmd from './commands/org-permission-default-permission';
+import orgPermissionDefaultGrantCmd from './commands/org-permission-default-grant';
 import orgMemberCmd from './commands/org-member';
 import appPermissionDefaultCmd from './commands/app-permission-default';
 import orgPermissionDefaultCmd from './commands/org-permission-default';
+import appPermissionDefaultPermissionCmd from './commands/app-permission-default-permission';
 import appAdminGrantCmd from './commands/app-admin-grant';
 import appOwnerGrantCmd from './commands/app-owner-grant';
 import orgAdminGrantCmd from './commands/org-admin-grant';
@@ -57,10 +61,14 @@ const createCommandMap: () => Record<
   'org-get-managers-record': orgGetManagersRecordCmd,
   'org-get-subordinates-record': orgGetSubordinatesRecordCmd,
   'app-permission': appPermissionCmd,
+  'app-permission-default-grant': appPermissionDefaultGrantCmd,
   'org-permission': orgPermissionCmd,
+  'org-permission-default-permission': orgPermissionDefaultPermissionCmd,
+  'org-permission-default-grant': orgPermissionDefaultGrantCmd,
   'org-member': orgMemberCmd,
   'app-permission-default': appPermissionDefaultCmd,
   'org-permission-default': orgPermissionDefaultCmd,
+  'app-permission-default-permission': appPermissionDefaultPermissionCmd,
   'app-admin-grant': appAdminGrantCmd,
   'app-owner-grant': appOwnerGrantCmd,
   'org-admin-grant': orgAdminGrantCmd,
@@ -94,7 +102,7 @@ const createCommandMap: () => Record<
   'provision-bucket': provisionBucketCmd,
 });
 const usage =
-  '\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  org-get-managers-record orgGetManagersRecord CRUD operations\n  org-get-subordinates-record orgGetSubordinatesRecord CRUD operations\n  app-permission       appPermission CRUD operations\n  org-permission       orgPermission CRUD operations\n  org-member           orgMember CRUD operations\n  app-permission-default appPermissionDefault CRUD operations\n  org-permission-default orgPermissionDefault CRUD operations\n  app-admin-grant      appAdminGrant CRUD operations\n  app-owner-grant      appOwnerGrant CRUD operations\n  org-admin-grant      orgAdminGrant CRUD operations\n  org-owner-grant      orgOwnerGrant CRUD operations\n  org-chart-edge-grant orgChartEdgeGrant CRUD operations\n  app-claimed-invite   appClaimedInvite CRUD operations\n  membership-type      membershipType CRUD operations\n  app-grant            appGrant CRUD operations\n  app-membership-default appMembershipDefault CRUD operations\n  org-membership-default orgMembershipDefault CRUD operations\n  org-claimed-invite   orgClaimedInvite CRUD operations\n  org-grant            orgGrant CRUD operations\n  org-chart-edge       orgChartEdge CRUD operations\n  org-membership-setting orgMembershipSetting CRUD operations\n  app-membership       appMembership CRUD operations\n  app-invite           appInvite CRUD operations\n  org-membership       orgMembership CRUD operations\n  org-member-profile   orgMemberProfile CRUD operations\n  org-invite           orgInvite CRUD operations\n  app-permissions-get-padded-mask appPermissionsGetPaddedMask\n  org-permissions-get-padded-mask orgPermissionsGetPaddedMask\n  org-is-manager-of    orgIsManagerOf\n  app-permissions-get-mask appPermissionsGetMask\n  org-permissions-get-mask orgPermissionsGetMask\n  app-permissions-get-mask-by-names appPermissionsGetMaskByNames\n  org-permissions-get-mask-by-names orgPermissionsGetMaskByNames\n  app-permissions-get-by-mask Reads and enables pagination through a set of `AppPermission`.\n  org-permissions-get-by-mask Reads and enables pagination through a set of `OrgPermission`.\n  submit-app-invite-code submitAppInviteCode\n  submit-org-invite-code submitOrgInviteCode\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n';
+  '\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  org-get-managers-record orgGetManagersRecord CRUD operations\n  org-get-subordinates-record orgGetSubordinatesRecord CRUD operations\n  app-permission       appPermission CRUD operations\n  app-permission-default-grant appPermissionDefaultGrant CRUD operations\n  org-permission       orgPermission CRUD operations\n  org-permission-default-permission orgPermissionDefaultPermission CRUD operations\n  org-permission-default-grant orgPermissionDefaultGrant CRUD operations\n  org-member           orgMember CRUD operations\n  app-permission-default appPermissionDefault CRUD operations\n  org-permission-default orgPermissionDefault CRUD operations\n  app-permission-default-permission appPermissionDefaultPermission CRUD operations\n  app-admin-grant      appAdminGrant CRUD operations\n  app-owner-grant      appOwnerGrant CRUD operations\n  org-admin-grant      orgAdminGrant CRUD operations\n  org-owner-grant      orgOwnerGrant CRUD operations\n  org-chart-edge-grant orgChartEdgeGrant CRUD operations\n  app-claimed-invite   appClaimedInvite CRUD operations\n  membership-type      membershipType CRUD operations\n  app-grant            appGrant CRUD operations\n  app-membership-default appMembershipDefault CRUD operations\n  org-membership-default orgMembershipDefault CRUD operations\n  org-claimed-invite   orgClaimedInvite CRUD operations\n  org-grant            orgGrant CRUD operations\n  org-chart-edge       orgChartEdge CRUD operations\n  org-membership-setting orgMembershipSetting CRUD operations\n  app-membership       appMembership CRUD operations\n  app-invite           appInvite CRUD operations\n  org-membership       orgMembership CRUD operations\n  org-member-profile   orgMemberProfile CRUD operations\n  org-invite           orgInvite CRUD operations\n  app-permissions-get-padded-mask appPermissionsGetPaddedMask\n  org-permissions-get-padded-mask orgPermissionsGetPaddedMask\n  org-is-manager-of    orgIsManagerOf\n  app-permissions-get-mask appPermissionsGetMask\n  org-permissions-get-mask orgPermissionsGetMask\n  app-permissions-get-mask-by-names appPermissionsGetMaskByNames\n  org-permissions-get-mask-by-names orgPermissionsGetMaskByNames\n  app-permissions-get-by-mask Reads and enables pagination through a set of `AppPermission`.\n  org-permissions-get-by-mask Reads and enables pagination through a set of `OrgPermission`.\n  submit-app-invite-code submitAppInviteCode\n  submit-org-invite-code submitOrgInviteCode\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n';
 export const commands = async (
   argv: Partial<Record<string, unknown>>,
   prompter: Inquirerer,
diff --git a/sdk/constructive-cli/src/admin/cli/commands/app-admin-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/app-admin-grant.ts
index 3003d188c..18a5f4bc9 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/app-admin-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/app-admin-grant.ts
@@ -170,7 +170,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -233,6 +234,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/app-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/app-grant.ts
index ea2461614..0d893090f 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/app-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/app-grant.ts
@@ -181,7 +181,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -250,6 +251,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/app-owner-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/app-owner-grant.ts
index 991b3093e..cc13e8fef 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/app-owner-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/app-owner-grant.ts
@@ -170,7 +170,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -233,6 +234,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-grant.ts
new file mode 100644
index 000000000..72231f343
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-grant.ts
@@ -0,0 +1,315 @@
+/**
+ * CLI commands for AppPermissionDefaultGrant
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { CLIOptions, Inquirerer, extractFirst } from 'inquirerer';
+import { getClient } from '../executor';
+import { coerceAnswers, parseFindFirstArgs, parseFindManyArgs, stripUndefined } from '../utils';
+import type { FieldSchema } from '../utils';
+import type {
+  CreateAppPermissionDefaultGrantInput,
+  AppPermissionDefaultGrantPatch,
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+import type { FindManyArgs, FindFirstArgs } from '../../orm/select-types';
+const fieldSchema: FieldSchema = {
+  id: 'uuid',
+  permissionId: 'uuid',
+  isGrant: 'boolean',
+  grantorId: 'uuid',
+  createdAt: 'string',
+  updatedAt: 'string',
+};
+const usage =
+  '\napp-permission-default-grant <command>\n\nCommands:\n  list                  List appPermissionDefaultGrant records\n  find-first            Find first matching appPermissionDefaultGrant record\n  get                   Get a appPermissionDefaultGrant by ID\n  create                Create a new appPermissionDefaultGrant\n  update                Update an existing appPermissionDefaultGrant\n  delete                Delete a appPermissionDefaultGrant\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
+export default async (
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer,
+  _options: CLIOptions
+) => {
+  if (argv.help || argv.h) {
+    console.log(usage);
+    process.exit(0);
+  }
+  const { first: subcommand, newArgv } = extractFirst(argv);
+  if (!subcommand) {
+    const answer = await prompter.prompt(argv, [
+      {
+        type: 'autocomplete',
+        name: 'subcommand',
+        message: 'What do you want to do?',
+        options: ['list', 'find-first', 'get', 'create', 'update', 'delete'],
+      },
+    ]);
+    return handleTableSubcommand(answer.subcommand as string, newArgv, prompter);
+  }
+  return handleTableSubcommand(subcommand, newArgv, prompter);
+};
+async function handleTableSubcommand(
+  subcommand: string,
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer
+) {
+  switch (subcommand) {
+    case 'list':
+      return handleList(argv, prompter);
+    case 'find-first':
+      return handleFindFirst(argv, prompter);
+    case 'get':
+      return handleGet(argv, prompter);
+    case 'create':
+      return handleCreate(argv, prompter);
+    case 'update':
+      return handleUpdate(argv, prompter);
+    case 'delete':
+      return handleDelete(argv, prompter);
+    default:
+      console.log(usage);
+      process.exit(1);
+  }
+}
+async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      isGrant: true,
+      grantorId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findManyArgs = parseFindManyArgs<
+      FindManyArgs<
+        AppPermissionDefaultGrantSelect,
+        AppPermissionDefaultGrantFilter,
+        AppPermissionDefaultGrantOrderBy
+      > & {
+        select: AppPermissionDefaultGrantSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant.findMany(findManyArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to list records.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      isGrant: true,
+      grantorId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findFirstArgs = parseFindFirstArgs<
+      FindFirstArgs<
+        AppPermissionDefaultGrantSelect,
+        AppPermissionDefaultGrantFilter,
+        AppPermissionDefaultGrantOrderBy
+      > & {
+        select: AppPermissionDefaultGrantSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant.findFirst(findFirstArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to find record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const answers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant
+      .findOne({
+        id: answers.id as string,
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Record not found.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: true,
+      },
+      {
+        type: 'boolean',
+        name: 'isGrant',
+        message: 'isGrant',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'grantorId',
+        message: 'grantorId',
+        required: false,
+        skipPrompt: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(
+      answers,
+      fieldSchema
+    ) as CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant'];
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant
+      .create({
+        data: {
+          permissionId: cleanedData.permissionId,
+          isGrant: cleanedData.isGrant,
+          grantorId: cleanedData.grantorId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to create record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: false,
+      },
+      {
+        type: 'boolean',
+        name: 'isGrant',
+        message: 'isGrant',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'grantorId',
+        message: 'grantorId',
+        required: false,
+        skipPrompt: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(answers, fieldSchema) as AppPermissionDefaultGrantPatch;
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant
+      .update({
+        where: {
+          id: answers.id as string,
+        },
+        data: {
+          permissionId: cleanedData.permissionId,
+          isGrant: cleanedData.isGrant,
+          grantorId: cleanedData.grantorId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to update record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleDelete(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const client = getClient();
+    const result = await client.appPermissionDefaultGrant
+      .delete({
+        where: {
+          id: answers.id as string,
+        },
+        select: {
+          id: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to delete record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-permission.ts b/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-permission.ts
new file mode 100644
index 000000000..0ae4d6ef1
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/cli/commands/app-permission-default-permission.ts
@@ -0,0 +1,271 @@
+/**
+ * CLI commands for AppPermissionDefaultPermission
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { CLIOptions, Inquirerer, extractFirst } from 'inquirerer';
+import { getClient } from '../executor';
+import { coerceAnswers, parseFindFirstArgs, parseFindManyArgs, stripUndefined } from '../utils';
+import type { FieldSchema } from '../utils';
+import type {
+  CreateAppPermissionDefaultPermissionInput,
+  AppPermissionDefaultPermissionPatch,
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+import type { FindManyArgs, FindFirstArgs } from '../../orm/select-types';
+const fieldSchema: FieldSchema = {
+  id: 'uuid',
+  permissionId: 'uuid',
+  createdAt: 'string',
+  updatedAt: 'string',
+};
+const usage =
+  '\napp-permission-default-permission <command>\n\nCommands:\n  list                  List appPermissionDefaultPermission records\n  find-first            Find first matching appPermissionDefaultPermission record\n  get                   Get a appPermissionDefaultPermission by ID\n  create                Create a new appPermissionDefaultPermission\n  update                Update an existing appPermissionDefaultPermission\n  delete                Delete a appPermissionDefaultPermission\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
+export default async (
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer,
+  _options: CLIOptions
+) => {
+  if (argv.help || argv.h) {
+    console.log(usage);
+    process.exit(0);
+  }
+  const { first: subcommand, newArgv } = extractFirst(argv);
+  if (!subcommand) {
+    const answer = await prompter.prompt(argv, [
+      {
+        type: 'autocomplete',
+        name: 'subcommand',
+        message: 'What do you want to do?',
+        options: ['list', 'find-first', 'get', 'create', 'update', 'delete'],
+      },
+    ]);
+    return handleTableSubcommand(answer.subcommand as string, newArgv, prompter);
+  }
+  return handleTableSubcommand(subcommand, newArgv, prompter);
+};
+async function handleTableSubcommand(
+  subcommand: string,
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer
+) {
+  switch (subcommand) {
+    case 'list':
+      return handleList(argv, prompter);
+    case 'find-first':
+      return handleFindFirst(argv, prompter);
+    case 'get':
+      return handleGet(argv, prompter);
+    case 'create':
+      return handleCreate(argv, prompter);
+    case 'update':
+      return handleUpdate(argv, prompter);
+    case 'delete':
+      return handleDelete(argv, prompter);
+    default:
+      console.log(usage);
+      process.exit(1);
+  }
+}
+async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findManyArgs = parseFindManyArgs<
+      FindManyArgs<
+        AppPermissionDefaultPermissionSelect,
+        AppPermissionDefaultPermissionFilter,
+        AppPermissionDefaultPermissionOrderBy
+      > & {
+        select: AppPermissionDefaultPermissionSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission.findMany(findManyArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to list records.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findFirstArgs = parseFindFirstArgs<
+      FindFirstArgs<
+        AppPermissionDefaultPermissionSelect,
+        AppPermissionDefaultPermissionFilter,
+        AppPermissionDefaultPermissionOrderBy
+      > & {
+        select: AppPermissionDefaultPermissionSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission.findFirst(findFirstArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to find record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const answers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission
+      .findOne({
+        id: answers.id as string,
+        select: {
+          id: true,
+          permissionId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Record not found.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(
+      answers,
+      fieldSchema
+    ) as CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission'];
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission
+      .create({
+        data: {
+          permissionId: cleanedData.permissionId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to create record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: false,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(answers, fieldSchema) as AppPermissionDefaultPermissionPatch;
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission
+      .update({
+        where: {
+          id: answers.id as string,
+        },
+        data: {
+          permissionId: cleanedData.permissionId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to update record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleDelete(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const client = getClient();
+    const result = await client.appPermissionDefaultPermission
+      .delete({
+        where: {
+          id: answers.id as string,
+        },
+        select: {
+          id: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to delete record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/cli/commands/org-admin-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/org-admin-grant.ts
index 8f04cd1b1..587d9d2b1 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/org-admin-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/org-admin-grant.ts
@@ -174,7 +174,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -245,6 +246,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/org-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/org-grant.ts
index 2c0b87d49..770bc6391 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/org-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/org-grant.ts
@@ -185,7 +185,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -262,6 +263,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/org-owner-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/org-owner-grant.ts
index 2d7d763e3..dffc6a79d 100644
--- a/sdk/constructive-cli/src/admin/cli/commands/org-owner-grant.ts
+++ b/sdk/constructive-cli/src/admin/cli/commands/org-owner-grant.ts
@@ -174,7 +174,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         type: 'text',
         name: 'actorId',
         message: 'actorId',
-        required: true,
+        required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
@@ -245,6 +246,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         name: 'actorId',
         message: 'actorId',
         required: false,
+        skipPrompt: true,
       },
       {
         type: 'text',
diff --git a/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-grant.ts b/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-grant.ts
new file mode 100644
index 000000000..be66c356e
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-grant.ts
@@ -0,0 +1,335 @@
+/**
+ * CLI commands for OrgPermissionDefaultGrant
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { CLIOptions, Inquirerer, extractFirst } from 'inquirerer';
+import { getClient } from '../executor';
+import { coerceAnswers, parseFindFirstArgs, parseFindManyArgs, stripUndefined } from '../utils';
+import type { FieldSchema } from '../utils';
+import type {
+  CreateOrgPermissionDefaultGrantInput,
+  OrgPermissionDefaultGrantPatch,
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+import type { FindManyArgs, FindFirstArgs } from '../../orm/select-types';
+const fieldSchema: FieldSchema = {
+  id: 'uuid',
+  permissionId: 'uuid',
+  isGrant: 'boolean',
+  grantorId: 'uuid',
+  entityId: 'uuid',
+  createdAt: 'string',
+  updatedAt: 'string',
+};
+const usage =
+  '\norg-permission-default-grant <command>\n\nCommands:\n  list                  List orgPermissionDefaultGrant records\n  find-first            Find first matching orgPermissionDefaultGrant record\n  get                   Get a orgPermissionDefaultGrant by ID\n  create                Create a new orgPermissionDefaultGrant\n  update                Update an existing orgPermissionDefaultGrant\n  delete                Delete a orgPermissionDefaultGrant\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
+export default async (
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer,
+  _options: CLIOptions
+) => {
+  if (argv.help || argv.h) {
+    console.log(usage);
+    process.exit(0);
+  }
+  const { first: subcommand, newArgv } = extractFirst(argv);
+  if (!subcommand) {
+    const answer = await prompter.prompt(argv, [
+      {
+        type: 'autocomplete',
+        name: 'subcommand',
+        message: 'What do you want to do?',
+        options: ['list', 'find-first', 'get', 'create', 'update', 'delete'],
+      },
+    ]);
+    return handleTableSubcommand(answer.subcommand as string, newArgv, prompter);
+  }
+  return handleTableSubcommand(subcommand, newArgv, prompter);
+};
+async function handleTableSubcommand(
+  subcommand: string,
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer
+) {
+  switch (subcommand) {
+    case 'list':
+      return handleList(argv, prompter);
+    case 'find-first':
+      return handleFindFirst(argv, prompter);
+    case 'get':
+      return handleGet(argv, prompter);
+    case 'create':
+      return handleCreate(argv, prompter);
+    case 'update':
+      return handleUpdate(argv, prompter);
+    case 'delete':
+      return handleDelete(argv, prompter);
+    default:
+      console.log(usage);
+      process.exit(1);
+  }
+}
+async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      isGrant: true,
+      grantorId: true,
+      entityId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findManyArgs = parseFindManyArgs<
+      FindManyArgs<
+        OrgPermissionDefaultGrantSelect,
+        OrgPermissionDefaultGrantFilter,
+        OrgPermissionDefaultGrantOrderBy
+      > & {
+        select: OrgPermissionDefaultGrantSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant.findMany(findManyArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to list records.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      isGrant: true,
+      grantorId: true,
+      entityId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findFirstArgs = parseFindFirstArgs<
+      FindFirstArgs<
+        OrgPermissionDefaultGrantSelect,
+        OrgPermissionDefaultGrantFilter,
+        OrgPermissionDefaultGrantOrderBy
+      > & {
+        select: OrgPermissionDefaultGrantSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant.findFirst(findFirstArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to find record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const answers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant
+      .findOne({
+        id: answers.id as string,
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Record not found.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: true,
+      },
+      {
+        type: 'boolean',
+        name: 'isGrant',
+        message: 'isGrant',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'grantorId',
+        message: 'grantorId',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'entityId',
+        message: 'entityId',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(
+      answers,
+      fieldSchema
+    ) as CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant'];
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant
+      .create({
+        data: {
+          permissionId: cleanedData.permissionId,
+          isGrant: cleanedData.isGrant,
+          grantorId: cleanedData.grantorId,
+          entityId: cleanedData.entityId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to create record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: false,
+      },
+      {
+        type: 'boolean',
+        name: 'isGrant',
+        message: 'isGrant',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'grantorId',
+        message: 'grantorId',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'entityId',
+        message: 'entityId',
+        required: false,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(answers, fieldSchema) as OrgPermissionDefaultGrantPatch;
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant
+      .update({
+        where: {
+          id: answers.id as string,
+        },
+        data: {
+          permissionId: cleanedData.permissionId,
+          isGrant: cleanedData.isGrant,
+          grantorId: cleanedData.grantorId,
+          entityId: cleanedData.entityId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          isGrant: true,
+          grantorId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to update record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleDelete(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultGrant
+      .delete({
+        where: {
+          id: answers.id as string,
+        },
+        select: {
+          id: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to delete record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-permission.ts b/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-permission.ts
new file mode 100644
index 000000000..44ee563b6
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/cli/commands/org-permission-default-permission.ts
@@ -0,0 +1,291 @@
+/**
+ * CLI commands for OrgPermissionDefaultPermission
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { CLIOptions, Inquirerer, extractFirst } from 'inquirerer';
+import { getClient } from '../executor';
+import { coerceAnswers, parseFindFirstArgs, parseFindManyArgs, stripUndefined } from '../utils';
+import type { FieldSchema } from '../utils';
+import type {
+  CreateOrgPermissionDefaultPermissionInput,
+  OrgPermissionDefaultPermissionPatch,
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+import type { FindManyArgs, FindFirstArgs } from '../../orm/select-types';
+const fieldSchema: FieldSchema = {
+  id: 'uuid',
+  permissionId: 'uuid',
+  entityId: 'uuid',
+  createdAt: 'string',
+  updatedAt: 'string',
+};
+const usage =
+  '\norg-permission-default-permission <command>\n\nCommands:\n  list                  List orgPermissionDefaultPermission records\n  find-first            Find first matching orgPermissionDefaultPermission record\n  get                   Get a orgPermissionDefaultPermission by ID\n  create                Create a new orgPermissionDefaultPermission\n  update                Update an existing orgPermissionDefaultPermission\n  delete                Delete a orgPermissionDefaultPermission\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
+export default async (
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer,
+  _options: CLIOptions
+) => {
+  if (argv.help || argv.h) {
+    console.log(usage);
+    process.exit(0);
+  }
+  const { first: subcommand, newArgv } = extractFirst(argv);
+  if (!subcommand) {
+    const answer = await prompter.prompt(argv, [
+      {
+        type: 'autocomplete',
+        name: 'subcommand',
+        message: 'What do you want to do?',
+        options: ['list', 'find-first', 'get', 'create', 'update', 'delete'],
+      },
+    ]);
+    return handleTableSubcommand(answer.subcommand as string, newArgv, prompter);
+  }
+  return handleTableSubcommand(subcommand, newArgv, prompter);
+};
+async function handleTableSubcommand(
+  subcommand: string,
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer
+) {
+  switch (subcommand) {
+    case 'list':
+      return handleList(argv, prompter);
+    case 'find-first':
+      return handleFindFirst(argv, prompter);
+    case 'get':
+      return handleGet(argv, prompter);
+    case 'create':
+      return handleCreate(argv, prompter);
+    case 'update':
+      return handleUpdate(argv, prompter);
+    case 'delete':
+      return handleDelete(argv, prompter);
+    default:
+      console.log(usage);
+      process.exit(1);
+  }
+}
+async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      entityId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findManyArgs = parseFindManyArgs<
+      FindManyArgs<
+        OrgPermissionDefaultPermissionSelect,
+        OrgPermissionDefaultPermissionFilter,
+        OrgPermissionDefaultPermissionOrderBy
+      > & {
+        select: OrgPermissionDefaultPermissionSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission.findMany(findManyArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to list records.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      permissionId: true,
+      entityId: true,
+      createdAt: true,
+      updatedAt: true,
+    };
+    const findFirstArgs = parseFindFirstArgs<
+      FindFirstArgs<
+        OrgPermissionDefaultPermissionSelect,
+        OrgPermissionDefaultPermissionFilter,
+        OrgPermissionDefaultPermissionOrderBy
+      > & {
+        select: OrgPermissionDefaultPermissionSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission.findFirst(findFirstArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to find record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const answers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission
+      .findOne({
+        id: answers.id as string,
+        select: {
+          id: true,
+          permissionId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Record not found.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'entityId',
+        message: 'entityId',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(
+      answers,
+      fieldSchema
+    ) as CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission'];
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission
+      .create({
+        data: {
+          permissionId: cleanedData.permissionId,
+          entityId: cleanedData.entityId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to create record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionId',
+        message: 'permissionId',
+        required: false,
+      },
+      {
+        type: 'text',
+        name: 'entityId',
+        message: 'entityId',
+        required: false,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(answers, fieldSchema) as OrgPermissionDefaultPermissionPatch;
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission
+      .update({
+        where: {
+          id: answers.id as string,
+        },
+        data: {
+          permissionId: cleanedData.permissionId,
+          entityId: cleanedData.entityId,
+        },
+        select: {
+          id: true,
+          permissionId: true,
+          entityId: true,
+          createdAt: true,
+          updatedAt: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to update record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleDelete(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const client = getClient();
+    const result = await client.orgPermissionDefaultPermission
+      .delete({
+        where: {
+          id: answers.id as string,
+        },
+        select: {
+          id: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to delete record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/orm/README.md b/sdk/constructive-cli/src/admin/orm/README.md
index 027e84fff..86a46b0e3 100644
--- a/sdk/constructive-cli/src/admin/orm/README.md
+++ b/sdk/constructive-cli/src/admin/orm/README.md
@@ -24,10 +24,14 @@ const db = createClient({
 | `orgGetManagersRecord` | findMany, findOne, create, update, delete |
 | `orgGetSubordinatesRecord` | findMany, findOne, create, update, delete |
 | `appPermission` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgMember` | findMany, findOne, create, update, delete |
 | `appPermissionDefault` | findMany, findOne, create, update, delete |
 | `orgPermissionDefault` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultPermission` | findMany, findOne, create, update, delete |
 | `appAdminGrant` | findMany, findOne, create, update, delete |
 | `appOwnerGrant` | findMany, findOne, create, update, delete |
 | `orgAdminGrant` | findMany, findOne, create, update, delete |
@@ -143,6 +147,40 @@ const updated = await db.appPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.appPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultGrant`
+
+CRUD operations for AppPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultGrant records
+const items = await db.appPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgPermission`
 
 CRUD operations for OrgPermission records.
@@ -176,6 +214,74 @@ const updated = await db.orgPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.orgPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.orgPermissionDefaultPermission`
+
+CRUD operations for OrgPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultPermission records
+const items = await db.orgPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultPermission.create({ data: { permissionId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
+### `db.orgPermissionDefaultGrant`
+
+CRUD operations for OrgPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultGrant records
+const items = await db.orgPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgMember`
 
 CRUD operations for OrgMember records.
@@ -269,6 +375,38 @@ const updated = await db.orgPermissionDefault.update({ where: { id: '<UUID>' },
 const deleted = await db.orgPermissionDefault.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultPermission`
+
+CRUD operations for AppPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultPermission records
+const items = await db.appPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultPermission.create({ data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.appAdminGrant`
 
 CRUD operations for AppAdminGrant records.
diff --git a/sdk/constructive-cli/src/admin/orm/index.ts b/sdk/constructive-cli/src/admin/orm/index.ts
index 4fdc6e95e..b2e6f79b3 100644
--- a/sdk/constructive-cli/src/admin/orm/index.ts
+++ b/sdk/constructive-cli/src/admin/orm/index.ts
@@ -8,10 +8,14 @@ import type { OrmClientConfig } from './client';
 import { OrgGetManagersRecordModel } from './models/orgGetManagersRecord';
 import { OrgGetSubordinatesRecordModel } from './models/orgGetSubordinatesRecord';
 import { AppPermissionModel } from './models/appPermission';
+import { AppPermissionDefaultGrantModel } from './models/appPermissionDefaultGrant';
 import { OrgPermissionModel } from './models/orgPermission';
+import { OrgPermissionDefaultPermissionModel } from './models/orgPermissionDefaultPermission';
+import { OrgPermissionDefaultGrantModel } from './models/orgPermissionDefaultGrant';
 import { OrgMemberModel } from './models/orgMember';
 import { AppPermissionDefaultModel } from './models/appPermissionDefault';
 import { OrgPermissionDefaultModel } from './models/orgPermissionDefault';
+import { AppPermissionDefaultPermissionModel } from './models/appPermissionDefaultPermission';
 import { AppAdminGrantModel } from './models/appAdminGrant';
 import { AppOwnerGrantModel } from './models/appOwnerGrant';
 import { OrgAdminGrantModel } from './models/orgAdminGrant';
@@ -69,10 +73,14 @@ export function createClient(config: OrmClientConfig) {
     orgGetManagersRecord: new OrgGetManagersRecordModel(client),
     orgGetSubordinatesRecord: new OrgGetSubordinatesRecordModel(client),
     appPermission: new AppPermissionModel(client),
+    appPermissionDefaultGrant: new AppPermissionDefaultGrantModel(client),
     orgPermission: new OrgPermissionModel(client),
+    orgPermissionDefaultPermission: new OrgPermissionDefaultPermissionModel(client),
+    orgPermissionDefaultGrant: new OrgPermissionDefaultGrantModel(client),
     orgMember: new OrgMemberModel(client),
     appPermissionDefault: new AppPermissionDefaultModel(client),
     orgPermissionDefault: new OrgPermissionDefaultModel(client),
+    appPermissionDefaultPermission: new AppPermissionDefaultPermissionModel(client),
     appAdminGrant: new AppAdminGrantModel(client),
     appOwnerGrant: new AppOwnerGrantModel(client),
     orgAdminGrant: new OrgAdminGrantModel(client),
diff --git a/sdk/constructive-cli/src/admin/orm/input-types.ts b/sdk/constructive-cli/src/admin/orm/input-types.ts
index c06ff000a..139fbae92 100644
--- a/sdk/constructive-cli/src/admin/orm/input-types.ts
+++ b/sdk/constructive-cli/src/admin/orm/input-types.ts
@@ -254,6 +254,17 @@ export interface AppPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface AppPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Defines available permissions as named bits within a bitmask, used by the RBAC system for access control */
 export interface OrgPermission {
   id: string;
@@ -266,6 +277,29 @@ export interface OrgPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface OrgPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  /** Scopes this default permission to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface OrgPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  /** Scopes this audit entry to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Simplified view of active members in an entity, used for listing who belongs to an org or group */
 export interface OrgMember {
   id: string;
@@ -290,12 +324,20 @@ export interface OrgPermissionDefault {
   /** References the entity these default permissions apply to */
   entityId?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface AppPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Records of admin role grants and revocations between members */
 export interface AppAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -306,7 +348,7 @@ export interface AppOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -317,7 +359,7 @@ export interface OrgAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this admin grant applies to */
   entityId?: string | null;
@@ -330,7 +372,7 @@ export interface OrgOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this ownership grant applies to */
   entityId?: string | null;
@@ -392,7 +434,7 @@ export interface AppGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -442,7 +484,7 @@ export interface OrgGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this permission grant applies to */
   entityId?: string | null;
@@ -648,11 +690,29 @@ export interface PageInfo {
 // ============ Entity Relation Types ============
 export interface OrgGetManagersRecordRelations {}
 export interface OrgGetSubordinatesRecordRelations {}
-export interface AppPermissionRelations {}
-export interface OrgPermissionRelations {}
+export interface AppPermissionRelations {
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultGrantsByPermissionId?: ConnectionResult<AppPermissionDefaultGrant>;
+}
+export interface AppPermissionDefaultGrantRelations {
+  permission?: AppPermission | null;
+}
+export interface OrgPermissionRelations {
+  orgPermissionDefaultPermissionsByPermissionId?: ConnectionResult<OrgPermissionDefaultPermission>;
+  orgPermissionDefaultGrantsByPermissionId?: ConnectionResult<OrgPermissionDefaultGrant>;
+}
+export interface OrgPermissionDefaultPermissionRelations {
+  permission?: OrgPermission | null;
+}
+export interface OrgPermissionDefaultGrantRelations {
+  permission?: OrgPermission | null;
+}
 export interface OrgMemberRelations {}
 export interface AppPermissionDefaultRelations {}
 export interface OrgPermissionDefaultRelations {}
+export interface AppPermissionDefaultPermissionRelations {
+  permission?: AppPermission | null;
+}
 export interface AppAdminGrantRelations {}
 export interface AppOwnerGrantRelations {}
 export interface OrgAdminGrantRelations {}
@@ -682,12 +742,20 @@ export type OrgGetManagersRecordWithRelations = OrgGetManagersRecord &
 export type OrgGetSubordinatesRecordWithRelations = OrgGetSubordinatesRecord &
   OrgGetSubordinatesRecordRelations;
 export type AppPermissionWithRelations = AppPermission & AppPermissionRelations;
+export type AppPermissionDefaultGrantWithRelations = AppPermissionDefaultGrant &
+  AppPermissionDefaultGrantRelations;
 export type OrgPermissionWithRelations = OrgPermission & OrgPermissionRelations;
+export type OrgPermissionDefaultPermissionWithRelations = OrgPermissionDefaultPermission &
+  OrgPermissionDefaultPermissionRelations;
+export type OrgPermissionDefaultGrantWithRelations = OrgPermissionDefaultGrant &
+  OrgPermissionDefaultGrantRelations;
 export type OrgMemberWithRelations = OrgMember & OrgMemberRelations;
 export type AppPermissionDefaultWithRelations = AppPermissionDefault &
   AppPermissionDefaultRelations;
 export type OrgPermissionDefaultWithRelations = OrgPermissionDefault &
   OrgPermissionDefaultRelations;
+export type AppPermissionDefaultPermissionWithRelations = AppPermissionDefaultPermission &
+  AppPermissionDefaultPermissionRelations;
 export type AppAdminGrantWithRelations = AppAdminGrant & AppAdminGrantRelations;
 export type AppOwnerGrantWithRelations = AppOwnerGrant & AppOwnerGrantRelations;
 export type OrgAdminGrantWithRelations = OrgAdminGrant & OrgAdminGrantRelations;
@@ -725,6 +793,26 @@ export type AppPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  appPermissionDefaultPermissionByPermissionId?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultGrantsByPermissionId?: {
+    select: AppPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: AppPermissionDefaultGrantFilter;
+    orderBy?: AppPermissionDefaultGrantOrderBy[];
+  };
+};
+export type AppPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
 };
 export type OrgPermissionSelect = {
   id?: boolean;
@@ -732,6 +820,40 @@ export type OrgPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  orgPermissionDefaultPermissionsByPermissionId?: {
+    select: OrgPermissionDefaultPermissionSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultPermissionFilter;
+    orderBy?: OrgPermissionDefaultPermissionOrderBy[];
+  };
+  orgPermissionDefaultGrantsByPermissionId?: {
+    select: OrgPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultGrantFilter;
+    orderBy?: OrgPermissionDefaultGrantOrderBy[];
+  };
+};
+export type OrgPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
+};
+export type OrgPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
 };
 export type OrgMemberSelect = {
   id?: boolean;
@@ -748,6 +870,15 @@ export type OrgPermissionDefaultSelect = {
   permissions?: boolean;
   entityId?: boolean;
 };
+export type AppPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
+};
 export type AppAdminGrantSelect = {
   id?: boolean;
   isGrant?: boolean;
@@ -1003,6 +1134,36 @@ export interface AppPermissionFilter {
   or?: AppPermissionFilter[];
   /** Negates the expression. */
   not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
 export interface OrgPermissionFilter {
   /** Filter by the object’s `id` field. */
@@ -1021,6 +1182,58 @@ export interface OrgPermissionFilter {
   or?: OrgPermissionFilter[];
   /** Negates the expression. */
   not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
 }
 export interface OrgMemberFilter {
   /** Filter by the object’s `id` field. */
@@ -1064,6 +1277,24 @@ export interface OrgPermissionDefaultFilter {
   /** Negates the expression. */
   not?: OrgPermissionDefaultFilter;
 }
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
 export interface AppAdminGrantFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -1603,6 +1834,22 @@ export type AppPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type AppPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgPermissionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1617,6 +1864,38 @@ export type OrgPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type OrgPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
+export type OrgPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgMemberOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1647,6 +1926,18 @@ export type OrgPermissionDefaultOrderBy =
   | 'PERMISSIONS_DESC'
   | 'ENTITY_ID_ASC'
   | 'ENTITY_ID_DESC';
+export type AppPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type AppAdminGrantOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -2146,6 +2437,28 @@ export interface DeleteAppPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  appPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+  };
+}
+export interface AppPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+}
+export interface UpdateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+}
+export interface DeleteAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgPermissionInput {
   clientMutationId?: string;
   orgPermission: {
@@ -2170,6 +2483,50 @@ export interface DeleteOrgPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  orgPermissionDefaultPermission: {
+    permissionId: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+}
+export interface DeleteOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
+export interface CreateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  orgPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+}
+export interface DeleteOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgMemberInput {
   clientMutationId?: string;
   orgMember: {
@@ -2230,11 +2587,29 @@ export interface DeleteOrgPermissionDefaultInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  appPermissionDefaultPermission: {
+    permissionId: string;
+  };
+}
+export interface AppPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+}
+export interface UpdateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+}
+export interface DeleteAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateAppAdminGrantInput {
   clientMutationId?: string;
   appAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2256,7 +2631,7 @@ export interface CreateAppOwnerGrantInput {
   clientMutationId?: string;
   appOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2278,7 +2653,7 @@ export interface CreateOrgAdminGrantInput {
   clientMutationId?: string;
   orgAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2302,7 +2677,7 @@ export interface CreateOrgOwnerGrantInput {
   clientMutationId?: string;
   orgOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2405,7 +2780,7 @@ export interface CreateAppGrantInput {
   appGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2501,7 +2876,7 @@ export interface CreateOrgGrantInput {
   orgGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2786,7 +3161,15 @@ export interface DeleteOrgInviteInput {
   id: string;
 }
 // ============ Connection Fields Map ============
-export const connectionFieldsMap = {} as Record<string, Record<string, string>>;
+export const connectionFieldsMap = {
+  AppPermission: {
+    appPermissionDefaultGrantsByPermissionId: 'AppPermissionDefaultGrant',
+  },
+  OrgPermission: {
+    orgPermissionDefaultPermissionsByPermissionId: 'OrgPermissionDefaultPermission',
+    orgPermissionDefaultGrantsByPermissionId: 'OrgPermissionDefaultGrant',
+  },
+} as Record<string, Record<string, string>>;
 // ============ Custom Input Types (from schema) ============
 export interface SubmitAppInviteCodeInput {
   clientMutationId?: string;
@@ -2805,6 +3188,33 @@ export interface ProvisionBucketInput {
    */
   ownerId?: string;
 }
+/** A filter to be used against many `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionToManyAppPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AppPermissionDefaultGrantFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultPermissionFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultPermissionFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultGrantFilter;
+}
 /** A filter to be used against ConstructiveInternalTypeEmail fields. All fields are combined with a logical ‘and.’ */
 export interface ConstructiveInternalTypeEmailFilter {
   /** Is null (if `true` is specified) or is not null (if `false` is specified). */
@@ -2917,31 +3327,375 @@ export interface ConstructiveInternalTypeImageFilter {
   /** Contained by the specified JSON. */
   containedBy?: ConstructiveInternalTypeImage;
 }
-/** A connection to a list of `AppPermission` values. */
-// ============ Payload/Return Types (for custom operations) ============
-export interface AppPermissionConnection {
-  nodes: AppPermission[];
-  edges: AppPermissionEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
+/** A filter to be used against `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
-export type AppPermissionConnectionSelect = {
-  nodes?: {
-    select: AppPermissionSelect;
-  };
-  edges?: {
-    select: AppPermissionEdgeSelect;
-  };
-  pageInfo?: {
-    select: PageInfoSelect;
-  };
-  totalCount?: boolean;
-};
-/** A connection to a list of `OrgPermission` values. */
-export interface OrgPermissionConnection {
-  nodes: OrgPermission[];
-  edges: OrgPermissionEdge[];
-  pageInfo: PageInfo;
+/** A filter to be used against `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against UUID fields. All fields are combined with a logical ‘and.’ */
+export interface UUIDFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against Boolean fields. All fields are combined with a logical ‘and.’ */
+export interface BooleanFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: boolean;
+  /** Not equal to the specified value. */
+  notEqualTo?: boolean;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: boolean;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: boolean;
+  /** Included in the specified list. */
+  in?: boolean[];
+  /** Not included in the specified list. */
+  notIn?: boolean[];
+  /** Less than the specified value. */
+  lessThan?: boolean;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: boolean;
+  /** Greater than the specified value. */
+  greaterThan?: boolean;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: boolean;
+}
+/** A filter to be used against Datetime fields. All fields are combined with a logical ‘and.’ */
+export interface DatetimeFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against String fields. All fields are combined with a logical ‘and.’ */
+export interface StringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+  /** Contains the specified string (case-sensitive). */
+  includes?: string;
+  /** Does not contain the specified string (case-sensitive). */
+  notIncludes?: string;
+  /** Contains the specified string (case-insensitive). */
+  includesInsensitive?: string;
+  /** Does not contain the specified string (case-insensitive). */
+  notIncludesInsensitive?: string;
+  /** Starts with the specified string (case-sensitive). */
+  startsWith?: string;
+  /** Does not start with the specified string (case-sensitive). */
+  notStartsWith?: string;
+  /** Starts with the specified string (case-insensitive). */
+  startsWithInsensitive?: string;
+  /** Does not start with the specified string (case-insensitive). */
+  notStartsWithInsensitive?: string;
+  /** Ends with the specified string (case-sensitive). */
+  endsWith?: string;
+  /** Does not end with the specified string (case-sensitive). */
+  notEndsWith?: string;
+  /** Ends with the specified string (case-insensitive). */
+  endsWithInsensitive?: string;
+  /** Does not end with the specified string (case-insensitive). */
+  notEndsWithInsensitive?: string;
+  /** Matches the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  like?: string;
+  /** Does not match the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLike?: string;
+  /** Matches the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  likeInsensitive?: string;
+  /** Does not match the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLikeInsensitive?: string;
+  /** Equal to the specified value (case-insensitive). */
+  equalToInsensitive?: string;
+  /** Not equal to the specified value (case-insensitive). */
+  notEqualToInsensitive?: string;
+  /** Not equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  distinctFromInsensitive?: string;
+  /** Equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  notDistinctFromInsensitive?: string;
+  /** Included in the specified list (case-insensitive). */
+  inInsensitive?: string[];
+  /** Not included in the specified list (case-insensitive). */
+  notInInsensitive?: string[];
+  /** Less than the specified value (case-insensitive). */
+  lessThanInsensitive?: string;
+  /** Less than or equal to the specified value (case-insensitive). */
+  lessThanOrEqualToInsensitive?: string;
+  /** Greater than the specified value (case-insensitive). */
+  greaterThanInsensitive?: string;
+  /** Greater than or equal to the specified value (case-insensitive). */
+  greaterThanOrEqualToInsensitive?: string;
+}
+/** A filter to be used against Int fields. All fields are combined with a logical ‘and.’ */
+export interface IntFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: number;
+  /** Not equal to the specified value. */
+  notEqualTo?: number;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: number;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: number;
+  /** Included in the specified list. */
+  in?: number[];
+  /** Not included in the specified list. */
+  notIn?: number[];
+  /** Less than the specified value. */
+  lessThan?: number;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: number;
+  /** Greater than the specified value. */
+  greaterThan?: number;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: number;
+}
+/** A filter to be used against BitString fields. All fields are combined with a logical ‘and.’ */
+export interface BitStringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
+/** A connection to a list of `AppPermission` values. */
+// ============ Payload/Return Types (for custom operations) ============
+export interface AppPermissionConnection {
+  nodes: AppPermission[];
+  edges: AppPermissionEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+export type AppPermissionConnectionSelect = {
+  nodes?: {
+    select: AppPermissionSelect;
+  };
+  edges?: {
+    select: AppPermissionEdgeSelect;
+  };
+  pageInfo?: {
+    select: PageInfoSelect;
+  };
+  totalCount?: boolean;
+};
+/** A connection to a list of `OrgPermission` values. */
+export interface OrgPermissionConnection {
+  nodes: OrgPermission[];
+  edges: OrgPermissionEdge[];
+  pageInfo: PageInfo;
   totalCount: number;
 }
 export type OrgPermissionConnectionSelect = {
@@ -3039,6 +3793,51 @@ export type DeleteAppPermissionPayloadSelect = {
     select: AppPermissionEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was created by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type CreateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was updated by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type UpdateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was deleted by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type DeleteAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgPermissionPayload {
   clientMutationId?: string | null;
   /** The `OrgPermission` that was created by this mutation. */
@@ -3084,6 +3883,96 @@ export type DeleteOrgPermissionPayloadSelect = {
     select: OrgPermissionEdgeSelect;
   };
 };
+export interface CreateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was created by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type CreateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was updated by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type UpdateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was deleted by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type DeleteOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface CreateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was created by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type CreateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was updated by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type UpdateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was deleted by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type DeleteOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgMemberPayload {
   clientMutationId?: string | null;
   /** The `OrgMember` that was created by this mutation. */
@@ -3219,6 +4108,51 @@ export type DeleteOrgPermissionDefaultPayloadSelect = {
     select: OrgPermissionDefaultEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was created by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type CreateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was updated by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type UpdateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was deleted by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type DeleteAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
 export interface CreateAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was created by this mutation. */
@@ -4115,6 +5049,42 @@ export type OrgPermissionEdgeSelect = {
     select: OrgPermissionSelect;
   };
 };
+/** A `AppPermissionDefaultGrant` edge in the connection. */
+export interface AppPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultGrant` at the end of the edge. */
+  node?: AppPermissionDefaultGrant | null;
+}
+export type AppPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+};
+/** A `OrgPermissionDefaultPermission` edge in the connection. */
+export interface OrgPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultPermission` at the end of the edge. */
+  node?: OrgPermissionDefaultPermission | null;
+}
+export type OrgPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+};
+/** A `OrgPermissionDefaultGrant` edge in the connection. */
+export interface OrgPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultGrant` at the end of the edge. */
+  node?: OrgPermissionDefaultGrant | null;
+}
+export type OrgPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+};
 /** A `OrgMember` edge in the connection. */
 export interface OrgMemberEdge {
   cursor?: string | null;
@@ -4151,6 +5121,18 @@ export type OrgPermissionDefaultEdgeSelect = {
     select: OrgPermissionDefaultSelect;
   };
 };
+/** A `AppPermissionDefaultPermission` edge in the connection. */
+export interface AppPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultPermission` at the end of the edge. */
+  node?: AppPermissionDefaultPermission | null;
+}
+export type AppPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+};
 /** A `AppAdminGrant` edge in the connection. */
 export interface AppAdminGrantEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultGrant.ts b/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultGrant.ts
new file mode 100644
index 000000000..691561188
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * AppPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultGrant,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+  CreateAppPermissionDefaultGrantInput,
+  UpdateAppPermissionDefaultGrantInput,
+  AppPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultGrant',
+      'createAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'createAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultGrant',
+      'updateAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultGrantInput',
+      'id',
+      'appPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'updateAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultGrant',
+      'deleteAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'deleteAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultPermission.ts b/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultPermission.ts
new file mode 100644
index 000000000..eeee28fad
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/orm/models/appPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * AppPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultPermission,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+  CreateAppPermissionDefaultPermissionInput,
+  UpdateAppPermissionDefaultPermissionInput,
+  AppPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultPermission',
+      'createAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'createAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultPermission',
+      'updateAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultPermissionInput',
+      'id',
+      'appPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'updateAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultPermission',
+      'deleteAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'deleteAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/orm/models/index.ts b/sdk/constructive-cli/src/admin/orm/models/index.ts
index 3580afbca..7d2ee43b7 100644
--- a/sdk/constructive-cli/src/admin/orm/models/index.ts
+++ b/sdk/constructive-cli/src/admin/orm/models/index.ts
@@ -6,10 +6,14 @@
 export { OrgGetManagersRecordModel } from './orgGetManagersRecord';
 export { OrgGetSubordinatesRecordModel } from './orgGetSubordinatesRecord';
 export { AppPermissionModel } from './appPermission';
+export { AppPermissionDefaultGrantModel } from './appPermissionDefaultGrant';
 export { OrgPermissionModel } from './orgPermission';
+export { OrgPermissionDefaultPermissionModel } from './orgPermissionDefaultPermission';
+export { OrgPermissionDefaultGrantModel } from './orgPermissionDefaultGrant';
 export { OrgMemberModel } from './orgMember';
 export { AppPermissionDefaultModel } from './appPermissionDefault';
 export { OrgPermissionDefaultModel } from './orgPermissionDefault';
+export { AppPermissionDefaultPermissionModel } from './appPermissionDefaultPermission';
 export { AppAdminGrantModel } from './appAdminGrant';
 export { AppOwnerGrantModel } from './appOwnerGrant';
 export { OrgAdminGrantModel } from './orgAdminGrant';
diff --git a/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultGrant.ts b/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultGrant.ts
new file mode 100644
index 000000000..2f1a709be
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * OrgPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultGrant,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+  CreateOrgPermissionDefaultGrantInput,
+  UpdateOrgPermissionDefaultGrantInput,
+  OrgPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultGrant',
+      'createOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'createOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'updateOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultGrantInput',
+      'id',
+      'orgPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'updateOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'deleteOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'deleteOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultPermission.ts b/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultPermission.ts
new file mode 100644
index 000000000..7c898408d
--- /dev/null
+++ b/sdk/constructive-cli/src/admin/orm/models/orgPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * OrgPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultPermission,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+  CreateOrgPermissionDefaultPermissionInput,
+  UpdateOrgPermissionDefaultPermissionInput,
+  OrgPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultPermission',
+      'createOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'createOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'updateOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultPermissionInput',
+      'id',
+      'orgPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'updateOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'deleteOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'deleteOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-cli/src/agent/cli/README.md b/sdk/constructive-cli/src/agent/cli/README.md
index 70ef45c9a..b50c3f394 100644
--- a/sdk/constructive-cli/src/agent/cli/README.md
+++ b/sdk/constructive-cli/src/agent/cli/README.md
@@ -197,14 +197,15 @@ CRUD operations for AgentMessage records.
 | `id` | UUID |
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
-| `ownerId` | UUID |
+| `actorId` | UUID |
 | `parts` | JSON |
 | `threadId` | UUID |
 | `authorRole` | String |
 | `model` | String |
+| `agentId` | UUID |
 
 **Required create fields:** `threadId`, `authorRole`
-**Optional create fields (backend defaults):** `ownerId`, `parts`, `model`
+**Optional create fields (backend defaults):** `actorId`, `parts`, `model`, `agentId`
 
 ### `agent-task`
 
@@ -226,7 +227,7 @@ CRUD operations for AgentTask records.
 | `id` | UUID |
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
-| `ownerId` | UUID |
+| `actorId` | UUID |
 | `status` | String |
 | `planId` | UUID |
 | `description` | String |
@@ -240,7 +241,7 @@ CRUD operations for AgentTask records.
 | `approvalFeedback` | String |
 
 **Required create fields:** `planId`, `description`
-**Optional create fields (backend defaults):** `ownerId`, `status`, `source`, `error`, `orderIndex`, `requiresApproval`, `approvalStatus`, `approvedBy`, `approvedAt`, `approvalFeedback`
+**Optional create fields (backend defaults):** `actorId`, `status`, `source`, `error`, `orderIndex`, `requiresApproval`, `approvalStatus`, `approvedBy`, `approvedAt`, `approvalFeedback`
 
 ### `agent-prompt`
 
diff --git a/sdk/constructive-cli/src/agent/cli/commands/agent-message.ts b/sdk/constructive-cli/src/agent/cli/commands/agent-message.ts
index 577083696..9ad2641cd 100644
--- a/sdk/constructive-cli/src/agent/cli/commands/agent-message.ts
+++ b/sdk/constructive-cli/src/agent/cli/commands/agent-message.ts
@@ -19,11 +19,12 @@ const fieldSchema: FieldSchema = {
   id: 'uuid',
   createdAt: 'string',
   updatedAt: 'string',
-  ownerId: 'uuid',
+  actorId: 'uuid',
   parts: 'json',
   threadId: 'uuid',
   authorRole: 'string',
   model: 'string',
+  agentId: 'uuid',
 };
 const usage =
   '\nagent-message <command>\n\nCommands:\n  list                  List agentMessage records\n  find-first            Find first matching agentMessage record\n  get                   Get a agentMessage by ID\n  create                Create a new agentMessage\n  update                Update an existing agentMessage\n  delete                Delete a agentMessage\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
@@ -79,11 +80,12 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       id: true,
       createdAt: true,
       updatedAt: true,
-      ownerId: true,
+      actorId: true,
       parts: true,
       threadId: true,
       authorRole: true,
       model: true,
+      agentId: true,
     };
     const findManyArgs = parseFindManyArgs<
       FindManyArgs<AgentMessageSelect, AgentMessageFilter, AgentMessageOrderBy> & {
@@ -107,11 +109,12 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       id: true,
       createdAt: true,
       updatedAt: true,
-      ownerId: true,
+      actorId: true,
       parts: true,
       threadId: true,
       authorRole: true,
       model: true,
+      agentId: true,
     };
     const findFirstArgs = parseFindFirstArgs<
       FindFirstArgs<AgentMessageSelect, AgentMessageFilter, AgentMessageOrderBy> & {
@@ -147,11 +150,12 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           parts: true,
           threadId: true,
           authorRole: true,
           model: true,
+          agentId: true,
         },
       })
       .execute();
@@ -169,8 +173,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
     const rawAnswers = await prompter.prompt(argv, [
       {
         type: 'text',
-        name: 'ownerId',
-        message: 'ownerId',
+        name: 'actorId',
+        message: 'actorId',
         required: false,
         skipPrompt: true,
       },
@@ -200,6 +204,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'agentId',
+        message: 'agentId',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -210,21 +221,23 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
     const result = await client.agentMessage
       .create({
         data: {
-          ownerId: cleanedData.ownerId,
+          actorId: cleanedData.actorId,
           parts: cleanedData.parts,
           threadId: cleanedData.threadId,
           authorRole: cleanedData.authorRole,
           model: cleanedData.model,
+          agentId: cleanedData.agentId,
         },
         select: {
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           parts: true,
           threadId: true,
           authorRole: true,
           model: true,
+          agentId: true,
         },
       })
       .execute();
@@ -248,8 +261,8 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
       },
       {
         type: 'text',
-        name: 'ownerId',
-        message: 'ownerId',
+        name: 'actorId',
+        message: 'actorId',
         required: false,
         skipPrompt: true,
       },
@@ -279,6 +292,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'agentId',
+        message: 'agentId',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as AgentMessagePatch;
@@ -289,21 +309,23 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           id: answers.id as string,
         },
         data: {
-          ownerId: cleanedData.ownerId,
+          actorId: cleanedData.actorId,
           parts: cleanedData.parts,
           threadId: cleanedData.threadId,
           authorRole: cleanedData.authorRole,
           model: cleanedData.model,
+          agentId: cleanedData.agentId,
         },
         select: {
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           parts: true,
           threadId: true,
           authorRole: true,
           model: true,
+          agentId: true,
         },
       })
       .execute();
diff --git a/sdk/constructive-cli/src/agent/cli/commands/agent-task.ts b/sdk/constructive-cli/src/agent/cli/commands/agent-task.ts
index 1d9487250..6c5f7120e 100644
--- a/sdk/constructive-cli/src/agent/cli/commands/agent-task.ts
+++ b/sdk/constructive-cli/src/agent/cli/commands/agent-task.ts
@@ -19,7 +19,7 @@ const fieldSchema: FieldSchema = {
   id: 'uuid',
   createdAt: 'string',
   updatedAt: 'string',
-  ownerId: 'uuid',
+  actorId: 'uuid',
   status: 'string',
   planId: 'uuid',
   description: 'string',
@@ -86,7 +86,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       id: true,
       createdAt: true,
       updatedAt: true,
-      ownerId: true,
+      actorId: true,
       status: true,
       planId: true,
       description: true,
@@ -121,7 +121,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       id: true,
       createdAt: true,
       updatedAt: true,
-      ownerId: true,
+      actorId: true,
       status: true,
       planId: true,
       description: true,
@@ -168,7 +168,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           status: true,
           planId: true,
           description: true,
@@ -197,8 +197,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
     const rawAnswers = await prompter.prompt(argv, [
       {
         type: 'text',
-        name: 'ownerId',
-        message: 'ownerId',
+        name: 'actorId',
+        message: 'actorId',
         required: false,
         skipPrompt: true,
       },
@@ -284,7 +284,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
     const result = await client.agentTask
       .create({
         data: {
-          ownerId: cleanedData.ownerId,
+          actorId: cleanedData.actorId,
           status: cleanedData.status,
           planId: cleanedData.planId,
           description: cleanedData.description,
@@ -301,7 +301,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           status: true,
           planId: true,
           description: true,
@@ -336,8 +336,8 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
       },
       {
         type: 'text',
-        name: 'ownerId',
-        message: 'ownerId',
+        name: 'actorId',
+        message: 'actorId',
         required: false,
         skipPrompt: true,
       },
@@ -426,7 +426,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           id: answers.id as string,
         },
         data: {
-          ownerId: cleanedData.ownerId,
+          actorId: cleanedData.actorId,
           status: cleanedData.status,
           planId: cleanedData.planId,
           description: cleanedData.description,
@@ -443,7 +443,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           id: true,
           createdAt: true,
           updatedAt: true,
-          ownerId: true,
+          actorId: true,
           status: true,
           planId: true,
           description: true,
diff --git a/sdk/constructive-cli/src/agent/cli/embedder.ts b/sdk/constructive-cli/src/agent/cli/embedder.ts
index 71b00bf10..dfd92fb46 100644
--- a/sdk/constructive-cli/src/agent/cli/embedder.ts
+++ b/sdk/constructive-cli/src/agent/cli/embedder.ts
@@ -3,8 +3,6 @@
  * @generated by @constructive-io/graphql-codegen
  * DO NOT EDIT - changes will be overwritten
  */
-import OllamaClient from '@agentic-kit/ollama';
-
 // ─── Types ───────────────────────────────────────────────────────────────────
 
 export type EmbedderFunction = (text: string) => Promise<number[]>;
@@ -24,8 +22,22 @@ function createOllamaEmbedder(
   baseUrl: string = 'http://localhost:11434',
   model: string = 'nomic-embed-text'
 ): EmbedderFunction {
-  const client = new OllamaClient(baseUrl);
+  let clientP:
+    | Promise<{
+        generateEmbedding: (text: string, model: string) => Promise<{ embedding: number[] }>;
+      }>
+    | undefined;
   return async (text: string): Promise<number[]> => {
+    if (!clientP) {
+      clientP = import('@agentic-kit/ollama')
+        .then((m) => new m.default(baseUrl))
+        .catch(() => {
+          throw new Error(
+            'The ollama embedder requires @agentic-kit/ollama. Install it: npm i @agentic-kit/ollama'
+          );
+        });
+    }
+    const client = await clientP;
     const result = await client.generateEmbedding(text, model);
     return result.embedding;
   };
diff --git a/sdk/constructive-cli/src/agent/orm/README.md b/sdk/constructive-cli/src/agent/orm/README.md
index 61b29a99f..b8063a2d3 100644
--- a/sdk/constructive-cli/src/agent/orm/README.md
+++ b/sdk/constructive-cli/src/agent/orm/README.md
@@ -162,26 +162,27 @@ CRUD operations for AgentMessage records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `parts` | JSON | Yes |
 | `threadId` | UUID | Yes |
 | `authorRole` | String | Yes |
 | `model` | String | Yes |
+| `agentId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentMessage records
-const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Get one by id
-const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Create
-const created = await db.agentMessage.create({ data: { ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentMessage.create({ data: { actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentMessage.delete({ where: { id: '<UUID>' } }).execute();
@@ -198,7 +199,7 @@ CRUD operations for AgentTask records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `status` | String | Yes |
 | `planId` | UUID | Yes |
 | `description` | String | Yes |
@@ -215,16 +216,16 @@ CRUD operations for AgentTask records.
 
 ```typescript
 // List all agentTask records
-const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Get one by id
-const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Create
-const created = await db.agentTask.create({ data: { ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentTask.create({ data: { actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentTask.delete({ where: { id: '<UUID>' } }).execute();
diff --git a/sdk/constructive-cli/src/agent/orm/input-types.ts b/sdk/constructive-cli/src/agent/orm/input-types.ts
index 0e4fdc0c2..79b4485c9 100644
--- a/sdk/constructive-cli/src/agent/orm/input-types.ts
+++ b/sdk/constructive-cli/src/agent/orm/input-types.ts
@@ -304,8 +304,8 @@ export interface AgentMessage {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this message */
-  ownerId?: string | null;
+  /** User who authored this message */
+  actorId?: string | null;
   /** Message content: TextPart and ToolPart array */
   parts?: Record<string, unknown> | null;
   /** Foreign key to agent_thread */
@@ -314,14 +314,16 @@ export interface AgentMessage {
   authorRole?: string | null;
   /** LLM model that generated this response */
   model?: string | null;
+  /** Agent that authored this message (NULL for human messages) */
+  agentId?: string | null;
 }
 /** Task within a plan, with ordering and optional approval gates */
 export interface AgentTask {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this task */
-  ownerId?: string | null;
+  /** User who authored this task */
+  actorId?: string | null;
   /** Current status of this task */
   status?: string | null;
   /** Foreign key to agent_plan */
@@ -465,6 +467,7 @@ export interface AgentRelations {
   parent?: Agent | null;
   persona?: AgentPersona | null;
   agentThreads?: ConnectionResult<AgentThread>;
+  agentMessages?: ConnectionResult<AgentMessage>;
   childAgents?: ConnectionResult<Agent>;
 }
 export interface AgentThreadRelations {
@@ -476,6 +479,7 @@ export interface AgentThreadRelations {
   agentPlansByThreadId?: ConnectionResult<AgentPlan>;
 }
 export interface AgentMessageRelations {
+  agent?: Agent | null;
   thread?: AgentThread | null;
 }
 export interface AgentTaskRelations {
@@ -545,6 +549,12 @@ export type AgentSelect = {
     filter?: AgentThreadFilter;
     orderBy?: AgentThreadOrderBy[];
   };
+  agentMessages?: {
+    select: AgentMessageSelect;
+    first?: number;
+    filter?: AgentMessageFilter;
+    orderBy?: AgentMessageOrderBy[];
+  };
   childAgents?: {
     select: AgentSelect;
     first?: number;
@@ -600,11 +610,15 @@ export type AgentMessageSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   parts?: boolean;
   threadId?: boolean;
   authorRole?: boolean;
   model?: boolean;
+  agentId?: boolean;
+  agent?: {
+    select: AgentSelect;
+  };
   thread?: {
     select: AgentThreadSelect;
   };
@@ -613,7 +627,7 @@ export type AgentTaskSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   status?: boolean;
   planId?: boolean;
   description?: boolean;
@@ -781,6 +795,10 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
@@ -855,8 +873,8 @@ export interface AgentMessageFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `parts` field. */
   parts?: JSONFilter;
   /** Filter by the object’s `threadId` field. */
@@ -865,12 +883,18 @@ export interface AgentMessageFilter {
   authorRole?: StringFilter;
   /** Filter by the object’s `model` field. */
   model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: AgentMessageFilter[];
   /** Checks for any expressions in this list. */
   or?: AgentMessageFilter[];
   /** Negates the expression. */
   not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
   /** Filter by the object’s `thread` relation. */
   thread?: AgentThreadFilter;
 }
@@ -881,8 +905,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1164,8 +1188,8 @@ export type AgentMessageOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'PARTS_ASC'
   | 'PARTS_DESC'
   | 'THREAD_ID_ASC'
@@ -1173,7 +1197,9 @@ export type AgentMessageOrderBy =
   | 'AUTHOR_ROLE_ASC'
   | 'AUTHOR_ROLE_DESC'
   | 'MODEL_ASC'
-  | 'MODEL_DESC';
+  | 'MODEL_DESC'
+  | 'AGENT_ID_ASC'
+  | 'AGENT_ID_DESC';
 export type AgentTaskOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1184,8 +1210,8 @@ export type AgentTaskOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'STATUS_ASC'
   | 'STATUS_DESC'
   | 'PLAN_ID_ASC'
@@ -1440,19 +1466,21 @@ export interface DeleteAgentThreadInput {
 export interface CreateAgentMessageInput {
   clientMutationId?: string;
   agentMessage: {
-    ownerId?: string;
+    actorId?: string;
     parts?: Record<string, unknown>;
     threadId: string;
     authorRole: string;
     model?: string;
+    agentId?: string;
   };
 }
 export interface AgentMessagePatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   parts?: Record<string, unknown> | null;
   threadId?: string | null;
   authorRole?: string | null;
   model?: string | null;
+  agentId?: string | null;
 }
 export interface UpdateAgentMessageInput {
   clientMutationId?: string;
@@ -1466,7 +1494,7 @@ export interface DeleteAgentMessageInput {
 export interface CreateAgentTaskInput {
   clientMutationId?: string;
   agentTask: {
-    ownerId?: string;
+    actorId?: string;
     status?: string;
     planId: string;
     description: string;
@@ -1481,7 +1509,7 @@ export interface CreateAgentTaskInput {
   };
 }
 export interface AgentTaskPatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   status?: string | null;
   planId?: string | null;
   description?: string | null;
@@ -1644,6 +1672,7 @@ export const connectionFieldsMap = {
   },
   Agent: {
     agentThreads: 'AgentThread',
+    agentMessages: 'AgentMessage',
     childAgents: 'Agent',
   },
   AgentThread: {
@@ -1686,6 +1715,15 @@ export interface AgentToManyAgentThreadFilter {
   /** Filters to entities where no related entity matches. */
   none?: AgentThreadFilter;
 }
+/** A filter to be used against many `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentToManyAgentMessageFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AgentMessageFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AgentMessageFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AgentMessageFilter;
+}
 /** A filter to be used against many `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentToManyAgentFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -1847,8 +1885,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1943,6 +1981,39 @@ export interface AgentThreadFilter {
   /** `agentPlansByThreadId` exist. */
   agentPlansByThreadIdExist?: boolean;
 }
+/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentMessageFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
+  /** Filter by the object’s `parts` field. */
+  parts?: JSONFilter;
+  /** Filter by the object’s `threadId` field. */
+  threadId?: UUIDFilter;
+  /** Filter by the object’s `authorRole` field. */
+  authorRole?: StringFilter;
+  /** Filter by the object’s `model` field. */
+  model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: AgentMessageFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AgentMessageFilter[];
+  /** Negates the expression. */
+  not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
+  /** Filter by the object’s `thread` relation. */
+  thread?: AgentThreadFilter;
+}
 /** A filter to be used against `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentFilter {
   /** Filter by the object’s `id` field. */
@@ -1985,38 +2056,15 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
   childAgentsExist?: boolean;
 }
-/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
-export interface AgentMessageFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Filter by the object’s `updatedAt` field. */
-  updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
-  /** Filter by the object’s `parts` field. */
-  parts?: JSONFilter;
-  /** Filter by the object’s `threadId` field. */
-  threadId?: UUIDFilter;
-  /** Filter by the object’s `authorRole` field. */
-  authorRole?: StringFilter;
-  /** Filter by the object’s `model` field. */
-  model?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: AgentMessageFilter[];
-  /** Checks for any expressions in this list. */
-  or?: AgentMessageFilter[];
-  /** Negates the expression. */
-  not?: AgentMessageFilter;
-  /** Filter by the object’s `thread` relation. */
-  thread?: AgentThreadFilter;
-}
 /** A filter to be used against `AgentPlan` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentPlanFilter {
   /** Filter by the object’s `id` field. */
diff --git a/sdk/constructive-cli/src/api/README.md b/sdk/constructive-cli/src/api/README.md
index 0baaecb54..e6bc4e49c 100644
--- a/sdk/constructive-cli/src/api/README.md
+++ b/sdk/constructive-cli/src/api/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 45
+- **Tables:** 46
 - **Custom queries:** 1
 - **Custom mutations:** 9
 
diff --git a/sdk/constructive-cli/src/api/cli/README.md b/sdk/constructive-cli/src/api/cli/README.md
index a9cf495d3..b852e96f8 100644
--- a/sdk/constructive-cli/src/api/cli/README.md
+++ b/sdk/constructive-cli/src/api/cli/README.md
@@ -48,6 +48,7 @@ csdk auth set-token <your-token>
 | `schema-grant` | schemaGrant CRUD operations |
 | `default-privilege` | defaultPrivilege CRUD operations |
 | `enum` | enum CRUD operations |
+| `composite-type` | compositeType CRUD operations |
 | `api-schema` | apiSchema CRUD operations |
 | `api-module` | apiModule CRUD operations |
 | `domain` | domain CRUD operations |
@@ -238,9 +239,9 @@ CRUD operations for Table records.
 | `partitionStrategy` | String |
 | `partitionKeyNames` | String |
 | `partitionKeyTypes` | String |
-| `inheritsId` | UUID |
 | `createdAt` | Datetime |
 | `updatedAt` | Datetime |
+| `inheritsId` | UUID |
 
 **Required create fields:** `schemaId`, `name`
 **Optional create fields (backend defaults):** `databaseId`, `label`, `description`, `smartTags`, `category`, `module`, `scope`, `useRls`, `timestamps`, `peoplestamps`, `pluralName`, `singularName`, `tags`, `partitioned`, `partitionStrategy`, `partitionKeyNames`, `partitionKeyTypes`, `inheritsId`
@@ -888,6 +889,39 @@ CRUD operations for Enum records.
 **Required create fields:** `databaseId`, `schemaId`, `name`
 **Optional create fields (backend defaults):** `label`, `description`, `values`, `smartTags`, `category`, `module`, `scope`, `tags`
 
+### `composite-type`
+
+CRUD operations for CompositeType records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all compositeType records |
+| `find-first` | Find first matching compositeType record |
+| `get` | Get a compositeType by id |
+| `create` | Create a new compositeType |
+| `update` | Update an existing compositeType |
+| `delete` | Delete a compositeType |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `schemaId` | UUID |
+| `name` | String |
+| `label` | String |
+| `description` | String |
+| `attributes` | JSON |
+| `smartTags` | JSON |
+| `category` | ObjectCategory |
+| `module` | String |
+| `scope` | Int |
+| `tags` | String |
+
+**Required create fields:** `databaseId`, `schemaId`, `name`
+**Optional create fields (backend defaults):** `label`, `description`, `attributes`, `smartTags`, `category`, `module`, `scope`, `tags`
+
 ### `api-schema`
 
 CRUD operations for ApiSchema records.
diff --git a/sdk/constructive-cli/src/api/cli/commands.ts b/sdk/constructive-cli/src/api/cli/commands.ts
index c6caf4262..149fd8340 100644
--- a/sdk/constructive-cli/src/api/cli/commands.ts
+++ b/sdk/constructive-cli/src/api/cli/commands.ts
@@ -28,6 +28,7 @@ import embeddingChunkCmd from './commands/embedding-chunk';
 import schemaGrantCmd from './commands/schema-grant';
 import defaultPrivilegeCmd from './commands/default-privilege';
 import enumCmd from './commands/enum';
+import compositeTypeCmd from './commands/composite-type';
 import apiSchemaCmd from './commands/api-schema';
 import apiModuleCmd from './commands/api-module';
 import domainCmd from './commands/domain';
@@ -93,6 +94,7 @@ const createCommandMap: () => Record<
   'schema-grant': schemaGrantCmd,
   'default-privilege': defaultPrivilegeCmd,
   enum: enumCmd,
+  'composite-type': compositeTypeCmd,
   'api-schema': apiSchemaCmd,
   'api-module': apiModuleCmd,
   domain: domainCmd,
@@ -128,7 +130,7 @@ const createCommandMap: () => Record<
   'provision-bucket': provisionBucketCmd,
 });
 const usage =
-  "\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  function             function CRUD operations\n  schema               schema CRUD operations\n  table                table CRUD operations\n  check-constraint     checkConstraint CRUD operations\n  field                field CRUD operations\n  spatial-relation     spatialRelation CRUD operations\n  foreign-key-constraint foreignKeyConstraint CRUD operations\n  full-text-search     fullTextSearch CRUD operations\n  index                index CRUD operations\n  policy               policy CRUD operations\n  primary-key-constraint primaryKeyConstraint CRUD operations\n  table-grant          tableGrant CRUD operations\n  trigger              trigger CRUD operations\n  unique-constraint    uniqueConstraint CRUD operations\n  view                 view CRUD operations\n  view-table           viewTable CRUD operations\n  view-grant           viewGrant CRUD operations\n  view-rule            viewRule CRUD operations\n  embedding-chunk      embeddingChunk CRUD operations\n  schema-grant         schemaGrant CRUD operations\n  default-privilege    defaultPrivilege CRUD operations\n  enum                 enum CRUD operations\n  api-schema           apiSchema CRUD operations\n  api-module           apiModule CRUD operations\n  domain               domain CRUD operations\n  site-metadatum       siteMetadatum CRUD operations\n  site-module          siteModule CRUD operations\n  site-theme           siteTheme CRUD operations\n  cors-setting         corsSetting CRUD operations\n  trigger-function     triggerFunction CRUD operations\n  partition            partition CRUD operations\n  database-transfer    databaseTransfer CRUD operations\n  api                  api CRUD operations\n  site                 site CRUD operations\n  app                  app CRUD operations\n  api-setting          apiSetting CRUD operations\n  migrate-file         migrateFile CRUD operations\n  node-type-registry   nodeTypeRegistry CRUD operations\n  pubkey-setting       pubkeySetting CRUD operations\n  database             database CRUD operations\n  rls-setting          rlsSetting CRUD operations\n  sql-action           sqlAction CRUD operations\n  database-setting     databaseSetting CRUD operations\n  webauthn-setting     webauthnSetting CRUD operations\n  ast-migration        astMigration CRUD operations\n  apply-registry-defaults applyRegistryDefaults\n  accept-database-transfer acceptDatabaseTransfer\n  cancel-database-transfer cancelDatabaseTransfer\n  reject-database-transfer rejectDatabaseTransfer\n  provision-database-with-user provisionDatabaseWithUser\n  bootstrap-user       bootstrapUser\n  set-field-order      setFieldOrder\n  apply-rls            applyRls\n  create-user-database Creates a new user database with all required modules, permissions, and RLS policies.\n\nParameters:\n  - database_name: Name for the new database (required)\n  - owner_id: UUID of the owner user (required)\n  - include_invites: Include invite system (default: true)\n  - include_groups: Include group-level memberships (default: false)\n  - include_levels: Include events/analytics (default: false)\n  - bitlen: Bit length for permission masks (default: 64)\n  - tokens_expiration: Token expiration interval (default: 30 days)\n\nReturns the database_id UUID of the newly created database.\n\nExample usage:\n  SELECT metaschema_public.create_user_database('my_app', 'a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11'::uuid);\n  SELECT metaschema_public.create_user_database('my_app', 'a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11'::uuid, true, true);  -- with invites and groups\n\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n";
+  "\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  function             function CRUD operations\n  schema               schema CRUD operations\n  table                table CRUD operations\n  check-constraint     checkConstraint CRUD operations\n  field                field CRUD operations\n  spatial-relation     spatialRelation CRUD operations\n  foreign-key-constraint foreignKeyConstraint CRUD operations\n  full-text-search     fullTextSearch CRUD operations\n  index                index CRUD operations\n  policy               policy CRUD operations\n  primary-key-constraint primaryKeyConstraint CRUD operations\n  table-grant          tableGrant CRUD operations\n  trigger              trigger CRUD operations\n  unique-constraint    uniqueConstraint CRUD operations\n  view                 view CRUD operations\n  view-table           viewTable CRUD operations\n  view-grant           viewGrant CRUD operations\n  view-rule            viewRule CRUD operations\n  embedding-chunk      embeddingChunk CRUD operations\n  schema-grant         schemaGrant CRUD operations\n  default-privilege    defaultPrivilege CRUD operations\n  enum                 enum CRUD operations\n  composite-type       compositeType CRUD operations\n  api-schema           apiSchema CRUD operations\n  api-module           apiModule CRUD operations\n  domain               domain CRUD operations\n  site-metadatum       siteMetadatum CRUD operations\n  site-module          siteModule CRUD operations\n  site-theme           siteTheme CRUD operations\n  cors-setting         corsSetting CRUD operations\n  trigger-function     triggerFunction CRUD operations\n  partition            partition CRUD operations\n  database-transfer    databaseTransfer CRUD operations\n  api                  api CRUD operations\n  site                 site CRUD operations\n  app                  app CRUD operations\n  api-setting          apiSetting CRUD operations\n  migrate-file         migrateFile CRUD operations\n  node-type-registry   nodeTypeRegistry CRUD operations\n  pubkey-setting       pubkeySetting CRUD operations\n  database             database CRUD operations\n  rls-setting          rlsSetting CRUD operations\n  sql-action           sqlAction CRUD operations\n  database-setting     databaseSetting CRUD operations\n  webauthn-setting     webauthnSetting CRUD operations\n  ast-migration        astMigration CRUD operations\n  apply-registry-defaults applyRegistryDefaults\n  accept-database-transfer acceptDatabaseTransfer\n  cancel-database-transfer cancelDatabaseTransfer\n  reject-database-transfer rejectDatabaseTransfer\n  provision-database-with-user provisionDatabaseWithUser\n  bootstrap-user       bootstrapUser\n  set-field-order      setFieldOrder\n  apply-rls            applyRls\n  create-user-database Creates a new user database with all required modules, permissions, and RLS policies.\n\nParameters:\n  - database_name: Name for the new database (required)\n  - owner_id: UUID of the owner user (required)\n  - include_invites: Include invite system (default: true)\n  - include_groups: Include group-level memberships (default: false)\n  - include_levels: Include events/analytics (default: false)\n  - bitlen: Bit length for permission masks (default: 64)\n  - tokens_expiration: Token expiration interval (default: 30 days)\n\nReturns the database_id UUID of the newly created database.\n\nExample usage:\n  SELECT metaschema_public.create_user_database('my_app', 'a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11'::uuid);\n  SELECT metaschema_public.create_user_database('my_app', 'a0eebc99-9c0b-4ef8-bb6d-6bb9bd380a11'::uuid, true, true);  -- with invites and groups\n\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n";
 export const commands = async (
   argv: Partial<Record<string, unknown>>,
   prompter: Inquirerer,
diff --git a/sdk/constructive-cli/src/api/cli/commands/composite-type.ts b/sdk/constructive-cli/src/api/cli/commands/composite-type.ts
new file mode 100644
index 000000000..2a7854868
--- /dev/null
+++ b/sdk/constructive-cli/src/api/cli/commands/composite-type.ts
@@ -0,0 +1,467 @@
+/**
+ * CLI commands for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { CLIOptions, Inquirerer, extractFirst } from 'inquirerer';
+import { getClient } from '../executor';
+import { coerceAnswers, parseFindFirstArgs, parseFindManyArgs, stripUndefined } from '../utils';
+import type { FieldSchema } from '../utils';
+import type {
+  CreateCompositeTypeInput,
+  CompositeTypePatch,
+  CompositeTypeSelect,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+} from '../../orm/input-types';
+import type { FindManyArgs, FindFirstArgs } from '../../orm/select-types';
+const fieldSchema: FieldSchema = {
+  id: 'uuid',
+  databaseId: 'uuid',
+  schemaId: 'uuid',
+  name: 'string',
+  label: 'string',
+  description: 'string',
+  attributes: 'json',
+  smartTags: 'json',
+  category: 'string',
+  module: 'string',
+  scope: 'int',
+  tags: 'string',
+};
+const usage =
+  '\ncomposite-type <command>\n\nCommands:\n  list                  List compositeType records\n  find-first            Find first matching compositeType record\n  get                   Get a compositeType by ID\n  create                Create a new compositeType\n  update                Update an existing compositeType\n  delete                Delete a compositeType\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
+export default async (
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer,
+  _options: CLIOptions
+) => {
+  if (argv.help || argv.h) {
+    console.log(usage);
+    process.exit(0);
+  }
+  const { first: subcommand, newArgv } = extractFirst(argv);
+  if (!subcommand) {
+    const answer = await prompter.prompt(argv, [
+      {
+        type: 'autocomplete',
+        name: 'subcommand',
+        message: 'What do you want to do?',
+        options: ['list', 'find-first', 'get', 'create', 'update', 'delete'],
+      },
+    ]);
+    return handleTableSubcommand(answer.subcommand as string, newArgv, prompter);
+  }
+  return handleTableSubcommand(subcommand, newArgv, prompter);
+};
+async function handleTableSubcommand(
+  subcommand: string,
+  argv: Partial<Record<string, unknown>>,
+  prompter: Inquirerer
+) {
+  switch (subcommand) {
+    case 'list':
+      return handleList(argv, prompter);
+    case 'find-first':
+      return handleFindFirst(argv, prompter);
+    case 'get':
+      return handleGet(argv, prompter);
+    case 'create':
+      return handleCreate(argv, prompter);
+    case 'update':
+      return handleUpdate(argv, prompter);
+    case 'delete':
+      return handleDelete(argv, prompter);
+    default:
+      console.log(usage);
+      process.exit(1);
+  }
+}
+async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      databaseId: true,
+      schemaId: true,
+      name: true,
+      label: true,
+      description: true,
+      attributes: true,
+      smartTags: true,
+      category: true,
+      module: true,
+      scope: true,
+      tags: true,
+    };
+    const findManyArgs = parseFindManyArgs<
+      FindManyArgs<CompositeTypeSelect, CompositeTypeFilter, CompositeTypeOrderBy> & {
+        select: CompositeTypeSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.compositeType.findMany(findManyArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to list records.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter: Inquirerer) {
+  try {
+    const defaultSelect = {
+      id: true,
+      databaseId: true,
+      schemaId: true,
+      name: true,
+      label: true,
+      description: true,
+      attributes: true,
+      smartTags: true,
+      category: true,
+      module: true,
+      scope: true,
+      tags: true,
+    };
+    const findFirstArgs = parseFindFirstArgs<
+      FindFirstArgs<CompositeTypeSelect, CompositeTypeFilter, CompositeTypeOrderBy> & {
+        select: CompositeTypeSelect;
+      }
+    >(argv, defaultSelect);
+    const client = getClient();
+    const result = await client.compositeType.findFirst(findFirstArgs).execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to find record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const answers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const client = getClient();
+    const result = await client.compositeType
+      .findOne({
+        id: answers.id as string,
+        select: {
+          id: true,
+          databaseId: true,
+          schemaId: true,
+          name: true,
+          label: true,
+          description: true,
+          attributes: true,
+          smartTags: true,
+          category: true,
+          module: true,
+          scope: true,
+          tags: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Record not found.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'databaseId',
+        message: 'databaseId',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'schemaId',
+        message: 'schemaId',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'name',
+        message: 'name',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'label',
+        message: 'label',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'description',
+        message: 'description',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'json',
+        name: 'attributes',
+        message: 'attributes',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'json',
+        name: 'smartTags',
+        message: 'smartTags',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'category',
+        message: 'category',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'module',
+        message: 'module',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'scope',
+        message: 'scope',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'tags',
+        message: 'tags',
+        required: false,
+        skipPrompt: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(
+      answers,
+      fieldSchema
+    ) as CreateCompositeTypeInput['compositeType'];
+    const client = getClient();
+    const result = await client.compositeType
+      .create({
+        data: {
+          databaseId: cleanedData.databaseId,
+          schemaId: cleanedData.schemaId,
+          name: cleanedData.name,
+          label: cleanedData.label,
+          description: cleanedData.description,
+          attributes: cleanedData.attributes,
+          smartTags: cleanedData.smartTags,
+          category: cleanedData.category,
+          module: cleanedData.module,
+          scope: cleanedData.scope,
+          tags: cleanedData.tags,
+        },
+        select: {
+          id: true,
+          databaseId: true,
+          schemaId: true,
+          name: true,
+          label: true,
+          description: true,
+          attributes: true,
+          smartTags: true,
+          category: true,
+          module: true,
+          scope: true,
+          tags: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to create record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+      {
+        type: 'text',
+        name: 'databaseId',
+        message: 'databaseId',
+        required: false,
+      },
+      {
+        type: 'text',
+        name: 'schemaId',
+        message: 'schemaId',
+        required: false,
+      },
+      {
+        type: 'text',
+        name: 'name',
+        message: 'name',
+        required: false,
+      },
+      {
+        type: 'text',
+        name: 'label',
+        message: 'label',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'description',
+        message: 'description',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'json',
+        name: 'attributes',
+        message: 'attributes',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'json',
+        name: 'smartTags',
+        message: 'smartTags',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'category',
+        message: 'category',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'module',
+        message: 'module',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'scope',
+        message: 'scope',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'tags',
+        message: 'tags',
+        required: false,
+        skipPrompt: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const cleanedData = stripUndefined(answers, fieldSchema) as CompositeTypePatch;
+    const client = getClient();
+    const result = await client.compositeType
+      .update({
+        where: {
+          id: answers.id as string,
+        },
+        data: {
+          databaseId: cleanedData.databaseId,
+          schemaId: cleanedData.schemaId,
+          name: cleanedData.name,
+          label: cleanedData.label,
+          description: cleanedData.description,
+          attributes: cleanedData.attributes,
+          smartTags: cleanedData.smartTags,
+          category: cleanedData.category,
+          module: cleanedData.module,
+          scope: cleanedData.scope,
+          tags: cleanedData.tags,
+        },
+        select: {
+          id: true,
+          databaseId: true,
+          schemaId: true,
+          name: true,
+          label: true,
+          description: true,
+          attributes: true,
+          smartTags: true,
+          category: true,
+          module: true,
+          scope: true,
+          tags: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to update record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
+async function handleDelete(argv: Partial<Record<string, unknown>>, prompter: Inquirerer) {
+  try {
+    const rawAnswers = await prompter.prompt(argv, [
+      {
+        type: 'text',
+        name: 'id',
+        message: 'id',
+        required: true,
+      },
+    ]);
+    const answers = coerceAnswers(rawAnswers, fieldSchema);
+    const client = getClient();
+    const result = await client.compositeType
+      .delete({
+        where: {
+          id: answers.id as string,
+        },
+        select: {
+          id: true,
+        },
+      })
+      .execute();
+    console.log(JSON.stringify(result, null, 2));
+  } catch (error) {
+    console.error('Failed to delete record.');
+    if (error instanceof Error) {
+      console.error(error.message);
+    }
+    process.exit(1);
+  }
+}
diff --git a/sdk/constructive-cli/src/api/cli/commands/table.ts b/sdk/constructive-cli/src/api/cli/commands/table.ts
index ff29f9a0a..dbfbf1a8d 100644
--- a/sdk/constructive-cli/src/api/cli/commands/table.ts
+++ b/sdk/constructive-cli/src/api/cli/commands/table.ts
@@ -36,9 +36,9 @@ const fieldSchema: FieldSchema = {
   partitionStrategy: 'string',
   partitionKeyNames: 'string',
   partitionKeyTypes: 'string',
-  inheritsId: 'uuid',
   createdAt: 'string',
   updatedAt: 'string',
+  inheritsId: 'uuid',
 };
 const usage =
   '\ntable <command>\n\nCommands:\n  list                  List table records\n  find-first            Find first matching table record\n  get                   Get a table by ID\n  create                Create a new table\n  update                Update an existing table\n  delete                Delete a table\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
@@ -111,9 +111,9 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       partitionStrategy: true,
       partitionKeyNames: true,
       partitionKeyTypes: true,
-      inheritsId: true,
       createdAt: true,
       updatedAt: true,
+      inheritsId: true,
     };
     const findManyArgs = parseFindManyArgs<
       FindManyArgs<TableSelect, TableFilter, TableOrderBy> & {
@@ -154,9 +154,9 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       partitionStrategy: true,
       partitionKeyNames: true,
       partitionKeyTypes: true,
-      inheritsId: true,
       createdAt: true,
       updatedAt: true,
+      inheritsId: true,
     };
     const findFirstArgs = parseFindFirstArgs<
       FindFirstArgs<TableSelect, TableFilter, TableOrderBy> & {
@@ -209,9 +209,9 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           partitionStrategy: true,
           partitionKeyNames: true,
           partitionKeyTypes: true,
-          inheritsId: true,
           createdAt: true,
           updatedAt: true,
+          inheritsId: true,
         },
       })
       .execute();
@@ -414,9 +414,9 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           partitionStrategy: true,
           partitionKeyNames: true,
           partitionKeyTypes: true,
-          inheritsId: true,
           createdAt: true,
           updatedAt: true,
+          inheritsId: true,
         },
       })
       .execute();
@@ -628,9 +628,9 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           partitionStrategy: true,
           partitionKeyNames: true,
           partitionKeyTypes: true,
-          inheritsId: true,
           createdAt: true,
           updatedAt: true,
+          inheritsId: true,
         },
       })
       .execute();
diff --git a/sdk/constructive-cli/src/api/orm/README.md b/sdk/constructive-cli/src/api/orm/README.md
index 8690e7411..1801a47b3 100644
--- a/sdk/constructive-cli/src/api/orm/README.md
+++ b/sdk/constructive-cli/src/api/orm/README.md
@@ -43,6 +43,7 @@ const db = createClient({
 | `schemaGrant` | findMany, findOne, create, update, delete |
 | `defaultPrivilege` | findMany, findOne, create, update, delete |
 | `enum` | findMany, findOne, create, update, delete |
+| `compositeType` | findMany, findOne, create, update, delete |
 | `apiSchema` | findMany, findOne, create, update, delete |
 | `apiModule` | findMany, findOne, create, update, delete |
 | `domain` | findMany, findOne, create, update, delete |
@@ -171,18 +172,18 @@ CRUD operations for Table records.
 | `partitionStrategy` | String | Yes |
 | `partitionKeyNames` | String | Yes |
 | `partitionKeyTypes` | String | Yes |
-| `inheritsId` | UUID | Yes |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
+| `inheritsId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all table records
-const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Get one by id
-const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Create
 const created = await db.table.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', useRls: '<Boolean>', timestamps: '<Boolean>', peoplestamps: '<Boolean>', pluralName: '<String>', singularName: '<String>', tags: '<String>', partitioned: '<Boolean>', partitionStrategy: '<String>', partitionKeyNames: '<String>', partitionKeyTypes: '<String>', inheritsId: '<UUID>' }, select: { id: true } }).execute();
@@ -970,6 +971,46 @@ const updated = await db.enum.update({ where: { id: '<UUID>' }, data: { database
 const deleted = await db.enum.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.compositeType`
+
+CRUD operations for CompositeType records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `name` | String | Yes |
+| `label` | String | Yes |
+| `description` | String | Yes |
+| `attributes` | JSON | Yes |
+| `smartTags` | JSON | Yes |
+| `category` | ObjectCategory | Yes |
+| `module` | String | Yes |
+| `scope` | Int | Yes |
+| `tags` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all compositeType records
+const items = await db.compositeType.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Get one by id
+const item = await db.compositeType.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Create
+const created = await db.compositeType.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.compositeType.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.compositeType.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.apiSchema`
 
 CRUD operations for ApiSchema records.
diff --git a/sdk/constructive-cli/src/api/orm/index.ts b/sdk/constructive-cli/src/api/orm/index.ts
index b2161f6fd..bde4dcc04 100644
--- a/sdk/constructive-cli/src/api/orm/index.ts
+++ b/sdk/constructive-cli/src/api/orm/index.ts
@@ -27,6 +27,7 @@ import { EmbeddingChunkModel } from './models/embeddingChunk';
 import { SchemaGrantModel } from './models/schemaGrant';
 import { DefaultPrivilegeModel } from './models/defaultPrivilege';
 import { EnumModel } from './models/enum';
+import { CompositeTypeModel } from './models/compositeType';
 import { ApiSchemaModel } from './models/apiSchema';
 import { ApiModuleModel } from './models/apiModule';
 import { DomainModel } from './models/domain';
@@ -107,6 +108,7 @@ export function createClient(config: OrmClientConfig) {
     schemaGrant: new SchemaGrantModel(client),
     defaultPrivilege: new DefaultPrivilegeModel(client),
     enum: new EnumModel(client),
+    compositeType: new CompositeTypeModel(client),
     apiSchema: new ApiSchemaModel(client),
     apiModule: new ApiModuleModel(client),
     domain: new DomainModel(client),
diff --git a/sdk/constructive-cli/src/api/orm/input-types.ts b/sdk/constructive-cli/src/api/orm/input-types.ts
index 8da4e5364..fd36cf357 100644
--- a/sdk/constructive-cli/src/api/orm/input-types.ts
+++ b/sdk/constructive-cli/src/api/orm/input-types.ts
@@ -282,9 +282,9 @@ export interface Table {
   partitionStrategy?: string | null;
   partitionKeyNames?: string[] | null;
   partitionKeyTypes?: string[] | null;
-  inheritsId?: string | null;
   createdAt?: string | null;
   updatedAt?: string | null;
+  inheritsId?: string | null;
 }
 export interface CheckConstraint {
   id: string;
@@ -572,6 +572,20 @@ export interface Enum {
   scope?: number | null;
   tags?: string[] | null;
 }
+export interface CompositeType {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
 /** Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API */
 export interface ApiSchema {
   /** Unique identifier for this API-schema mapping */
@@ -989,6 +1003,7 @@ export interface SchemaRelations {
   defaultPrivileges?: ConnectionResult<DefaultPrivilege>;
   enums?: ConnectionResult<Enum>;
   functions?: ConnectionResult<Function>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   apiSchemas?: ConnectionResult<ApiSchema>;
 }
 export interface TableRelations {
@@ -1102,6 +1117,10 @@ export interface EnumRelations {
   database?: Database | null;
   schema?: Schema | null;
 }
+export interface CompositeTypeRelations {
+  database?: Database | null;
+  schema?: Schema | null;
+}
 export interface ApiSchemaRelations {
   api?: Api | null;
   database?: Database | null;
@@ -1205,6 +1224,7 @@ export interface DatabaseRelations {
   spatialRelations?: ConnectionResult<SpatialRelation>;
   functions?: ConnectionResult<Function>;
   partitions?: ConnectionResult<Partition>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   databaseTransfers?: ConnectionResult<DatabaseTransfer>;
   apis?: ConnectionResult<Api>;
   apiModules?: ConnectionResult<ApiModule>;
@@ -1271,6 +1291,7 @@ export type EmbeddingChunkWithRelations = EmbeddingChunk & EmbeddingChunkRelatio
 export type SchemaGrantWithRelations = SchemaGrant & SchemaGrantRelations;
 export type DefaultPrivilegeWithRelations = DefaultPrivilege & DefaultPrivilegeRelations;
 export type EnumWithRelations = Enum & EnumRelations;
+export type CompositeTypeWithRelations = CompositeType & CompositeTypeRelations;
 export type ApiSchemaWithRelations = ApiSchema & ApiSchemaRelations;
 export type ApiModuleWithRelations = ApiModule & ApiModuleRelations;
 export type DomainWithRelations = Domain & DomainRelations;
@@ -1361,6 +1382,12 @@ export type SchemaSelect = {
     filter?: FunctionFilter;
     orderBy?: FunctionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   apiSchemas?: {
     select: ApiSchemaSelect;
     first?: number;
@@ -1389,9 +1416,9 @@ export type TableSelect = {
   partitionStrategy?: boolean;
   partitionKeyNames?: boolean;
   partitionKeyTypes?: boolean;
-  inheritsId?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
+  inheritsId?: boolean;
   database?: {
     select: DatabaseSelect;
   };
@@ -1951,6 +1978,26 @@ export type EnumSelect = {
     select: SchemaSelect;
   };
 };
+export type CompositeTypeSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  name?: boolean;
+  label?: boolean;
+  description?: boolean;
+  attributes?: boolean;
+  smartTags?: boolean;
+  category?: boolean;
+  module?: boolean;
+  scope?: boolean;
+  tags?: boolean;
+  database?: {
+    select: DatabaseSelect;
+  };
+  schema?: {
+    select: SchemaSelect;
+  };
+};
 export type ApiSchemaSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2424,6 +2471,12 @@ export type DatabaseSelect = {
     filter?: PartitionFilter;
     orderBy?: PartitionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   databaseTransfers?: {
     select: DatabaseTransferSelect;
     first?: number;
@@ -2718,6 +2771,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -2764,12 +2821,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -3613,6 +3670,42 @@ export interface EnumFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4236,6 +4329,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -4640,12 +4737,12 @@ export type TableOrderBy =
   | 'PARTITION_KEY_NAMES_DESC'
   | 'PARTITION_KEY_TYPES_ASC'
   | 'PARTITION_KEY_TYPES_DESC'
-  | 'INHERITS_ID_ASC'
-  | 'INHERITS_ID_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
-  | 'UPDATED_AT_DESC';
+  | 'UPDATED_AT_DESC'
+  | 'INHERITS_ID_ASC'
+  | 'INHERITS_ID_DESC';
 export type CheckConstraintOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5210,6 +5307,34 @@ export type EnumOrderBy =
   | 'SCOPE_DESC'
   | 'TAGS_ASC'
   | 'TAGS_DESC';
+export type CompositeTypeOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'NAME_ASC'
+  | 'NAME_DESC'
+  | 'LABEL_ASC'
+  | 'LABEL_DESC'
+  | 'DESCRIPTION_ASC'
+  | 'DESCRIPTION_DESC'
+  | 'ATTRIBUTES_ASC'
+  | 'ATTRIBUTES_DESC'
+  | 'SMART_TAGS_ASC'
+  | 'SMART_TAGS_DESC'
+  | 'CATEGORY_ASC'
+  | 'CATEGORY_DESC'
+  | 'MODULE_ASC'
+  | 'MODULE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'TAGS_ASC'
+  | 'TAGS_DESC';
 export type ApiSchemaOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6523,6 +6648,44 @@ export interface DeleteEnumInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateCompositeTypeInput {
+  clientMutationId?: string;
+  compositeType: {
+    databaseId: string;
+    schemaId: string;
+    name: string;
+    label?: string;
+    description?: string;
+    attributes?: Record<string, unknown>;
+    smartTags?: Record<string, unknown>;
+    category?: ObjectCategory;
+    module?: string;
+    scope?: number;
+    tags?: string[];
+  };
+}
+export interface CompositeTypePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
+export interface UpdateCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+  compositeTypePatch: CompositeTypePatch;
+}
+export interface DeleteCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateApiSchemaInput {
   clientMutationId?: string;
   apiSchema: {
@@ -7250,6 +7413,7 @@ export const connectionFieldsMap = {
     defaultPrivileges: 'DefaultPrivilege',
     enums: 'Enum',
     functions: 'Function',
+    compositeTypes: 'CompositeType',
     apiSchemas: 'ApiSchema',
   },
   Table: {
@@ -7315,6 +7479,7 @@ export const connectionFieldsMap = {
     spatialRelations: 'SpatialRelation',
     functions: 'Function',
     partitions: 'Partition',
+    compositeTypes: 'CompositeType',
     databaseTransfers: 'DatabaseTransfer',
     apis: 'Api',
     apiModules: 'ApiModule',
@@ -7472,6 +7637,15 @@ export interface SchemaToManyFunctionFilter {
   /** Filters to entities where no related entity matches. */
   none?: FunctionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface SchemaToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface SchemaToManyApiSchemaFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8223,6 +8397,15 @@ export interface DatabaseToManyPartitionFilter {
   /** Filters to entities where no related entity matches. */
   none?: PartitionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface DatabaseToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `DatabaseTransfer` object types. All fields are combined with a logical ‘and.’ */
 export interface DatabaseToManyDatabaseTransferFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8392,12 +8575,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -8652,6 +8835,43 @@ export interface FunctionFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+/** A filter to be used against `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 /** A filter to be used against `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
@@ -9508,6 +9728,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -10153,6 +10377,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -11620,6 +11848,51 @@ export type DeleteEnumPayloadSelect = {
     select: EnumEdgeSelect;
   };
 };
+export interface CreateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was created by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type CreateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface UpdateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was updated by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type UpdateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface DeleteCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was deleted by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type DeleteCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
 export interface CreateApiSchemaPayload {
   clientMutationId?: string | null;
   /** The `ApiSchema` that was created by this mutation. */
@@ -12845,6 +13118,18 @@ export type EnumEdgeSelect = {
     select: EnumSelect;
   };
 };
+/** A `CompositeType` edge in the connection. */
+export interface CompositeTypeEdge {
+  cursor?: string | null;
+  /** The `CompositeType` at the end of the edge. */
+  node?: CompositeType | null;
+}
+export type CompositeTypeEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: CompositeTypeSelect;
+  };
+};
 /** A `ApiSchema` edge in the connection. */
 export interface ApiSchemaEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-cli/src/api/orm/models/compositeType.ts b/sdk/constructive-cli/src/api/orm/models/compositeType.ts
new file mode 100644
index 000000000..0f46f810e
--- /dev/null
+++ b/sdk/constructive-cli/src/api/orm/models/compositeType.ts
@@ -0,0 +1,244 @@
+/**
+ * CompositeType model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  CompositeType,
+  CompositeTypeWithRelations,
+  CompositeTypeSelect,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+  CreateCompositeTypeInput,
+  UpdateCompositeTypeInput,
+  CompositeTypePatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class CompositeTypeModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends CompositeTypeSelect>(
+    args: FindManyArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeTypes',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends CompositeTypeSelect>(
+    args: FindFirstArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends CompositeTypeSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends CompositeTypeSelect>(
+    args: CreateArgs<S, CreateCompositeTypeInput['compositeType']> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    createCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'CompositeType',
+      'createCompositeType',
+      'compositeType',
+      args.select,
+      args.data,
+      'CreateCompositeTypeInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'createCompositeType',
+      document,
+      variables,
+    });
+  }
+  update<S extends CompositeTypeSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      CompositeTypePatch
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    updateCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'CompositeType',
+      'updateCompositeType',
+      'compositeType',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateCompositeTypeInput',
+      'id',
+      'compositeTypePatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'updateCompositeType',
+      document,
+      variables,
+    });
+  }
+  delete<S extends CompositeTypeSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    deleteCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'CompositeType',
+      'deleteCompositeType',
+      'compositeType',
+      {
+        id: args.where.id,
+      },
+      'DeleteCompositeTypeInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'deleteCompositeType',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-cli/src/api/orm/models/index.ts b/sdk/constructive-cli/src/api/orm/models/index.ts
index 326c47f97..ddc91f27a 100644
--- a/sdk/constructive-cli/src/api/orm/models/index.ts
+++ b/sdk/constructive-cli/src/api/orm/models/index.ts
@@ -25,6 +25,7 @@ export { EmbeddingChunkModel } from './embeddingChunk';
 export { SchemaGrantModel } from './schemaGrant';
 export { DefaultPrivilegeModel } from './defaultPrivilege';
 export { EnumModel } from './enum';
+export { CompositeTypeModel } from './compositeType';
 export { ApiSchemaModel } from './apiSchema';
 export { ApiModuleModel } from './apiModule';
 export { DomainModel } from './domain';
diff --git a/sdk/constructive-cli/src/modules/cli/README.md b/sdk/constructive-cli/src/modules/cli/README.md
index 12f176929..439a9c1c4 100644
--- a/sdk/constructive-cli/src/modules/cli/README.md
+++ b/sdk/constructive-cli/src/modules/cli/README.md
@@ -50,38 +50,38 @@ csdk auth set-token <your-token>
 | `blueprint-template` | blueprintTemplate CRUD operations |
 | `blueprint-construction` | blueprintConstruction CRUD operations |
 | `crypto-auth-module` | cryptoAuthModule CRUD operations |
-| `rate-limit-meters-module` | rateLimitMetersModule CRUD operations |
 | `sessions-module` | sessionsModule CRUD operations |
 | `config-secrets-module` | configSecretsModule CRUD operations |
 | `merkle-store-module` | merkleStoreModule CRUD operations |
 | `graph-module` | graphModule CRUD operations |
 | `secure-table-provision` | secureTableProvision CRUD operations |
+| `rate-limit-meters-module` | rateLimitMetersModule CRUD operations |
 | `invites-module` | invitesModule CRUD operations |
 | `database-provision-module` | databaseProvisionModule CRUD operations |
-| `namespace-module` | namespaceModule CRUD operations |
 | `realtime-module` | realtimeModule CRUD operations |
 | `webauthn-auth-module` | webauthnAuthModule CRUD operations |
+| `namespace-module` | namespaceModule CRUD operations |
 | `compute-log-module` | computeLogModule CRUD operations |
 | `inference-log-module` | inferenceLogModule CRUD operations |
 | `storage-log-module` | storageLogModule CRUD operations |
 | `transfer-log-module` | transferLogModule CRUD operations |
+| `plans-module` | plansModule CRUD operations |
 | `db-usage-module` | dbUsageModule CRUD operations |
 | `notifications-module` | notificationsModule CRUD operations |
-| `plans-module` | plansModule CRUD operations |
-| `hierarchy-module` | hierarchyModule CRUD operations |
-| `billing-module` | billingModule CRUD operations |
 | `billing-provider-module` | billingProviderModule CRUD operations |
+| `function-module` | functionModule CRUD operations |
+| `hierarchy-module` | hierarchyModule CRUD operations |
 | `profiles-module` | profilesModule CRUD operations |
 | `permissions-module` | permissionsModule CRUD operations |
+| `billing-module` | billingModule CRUD operations |
 | `relation-provision` | relationProvision CRUD operations |
-| `function-module` | functionModule CRUD operations |
 | `user-auth-module` | userAuthModule CRUD operations |
 | `agent-module` | agentModule CRUD operations |
 | `limits-module` | limitsModule CRUD operations |
 | `memberships-module` | membershipsModule CRUD operations |
 | `storage-module` | storageModule CRUD operations |
-| `events-module` | eventsModule CRUD operations |
 | `entity-type-provision` | entityTypeProvision CRUD operations |
+| `events-module` | eventsModule CRUD operations |
 | `resolve-blueprint-field` | Resolves a field_name within a given table_id to a field_id. Throws if no match is found. Used by construct_blueprint to translate user-authored field names (e.g. "location") into field UUIDs for downstream provisioning procedures. table_id must already be resolved (via resolve_blueprint_table) before calling this. |
 | `resolve-blueprint-table` | Resolves a table_name (with optional schema_name) to a table_id. Resolution order: (1) if schema_name provided, exact lookup via metaschema_public.schema.name + metaschema_public.table; (2) check local table_map (tables created in current blueprint); (3) search metaschema_public.table by name across all schemas; (4) if multiple matches, throw ambiguous error asking for schema_name; (5) if no match, throw not-found error. |
 | `construct-blueprint` | Executes a blueprint definition by delegating to provision_* procedures. Creates a blueprint_construction record to track the attempt. Eight phases: (0) entity_type_provision for each membership_type entry — provisions entity tables, membership modules, and security. When a prefix already exists (e.g., 'org'), the entry extends the existing entity type instead of creating a new one; if a storage[] key is present, it provisions entity-scoped storage for that type. (0.5) scope-based storage: each storage[] entry has an optional scope ('app' or 'org' only). App-scoped storage seeds buckets at migration time. Org-scoped storage resolves the org membership type, creates org_buckets/org_files with owner_id, and seeds buckets per-entity via an AFTER INSERT trigger on the users table. When function_module is installed, a private functions bucket is auto-injected into org-scoped or entity-scoped storage entries. (1) provision_table() for each table with nodes[], fields[], policies[], and grants (table-level indexes/fts/unique_constraints/check_constraints are deferred). After provisioning, optional smart_tags (jsonb object) on the table entry are applied via metaschema.append_table_smart_tags(), and optional smart_tags on individual field entries are applied via metaschema.append_field_smart_tags(). (2) provision_relation() for each relation, (3) provision_index() for top-level + deferred indexes, (4) provision_full_text_search() for top-level + deferred FTS, (5) provision_unique_constraint() for top-level + deferred unique constraints, (6) provision_check_constraint() for top-level + deferred check constraints, (7) seed achievements from definition.achievements[] — resolves events_module by entity_prefix and creates INSERT actions for levels, level_requirements, and achievement_rewards tables. Phase 0 entity tables are added to the table_map so subsequent phases can reference them by name. Table-level entries are deferred to phases 3-6 so they can reference columns created by relations in phase 2. Returns the construction record ID on success, NULL on failure. |
@@ -860,41 +860,6 @@ CRUD operations for CryptoAuthModule records.
 **Required create fields:** `databaseId`, `userField`
 **Optional create fields (backend defaults):** `schemaId`, `usersTableId`, `secretsTableId`, `sessionsTableId`, `sessionCredentialsTableId`, `addressesTableId`, `cryptoNetwork`, `signInRequestChallenge`, `signInRecordFailure`, `signUpWithKey`, `signInWithChallenge`
 
-### `rate-limit-meters-module`
-
-CRUD operations for RateLimitMetersModule records.
-
-| Subcommand | Description |
-|------------|-------------|
-| `list` | List all rateLimitMetersModule records |
-| `find-first` | Find first matching rateLimitMetersModule record |
-| `get` | Get a rateLimitMetersModule by id |
-| `create` | Create a new rateLimitMetersModule |
-| `update` | Update an existing rateLimitMetersModule |
-| `delete` | Delete a rateLimitMetersModule |
-
-**Fields:**
-
-| Field | Type |
-|-------|------|
-| `id` | UUID |
-| `databaseId` | UUID |
-| `schemaId` | UUID |
-| `privateSchemaId` | UUID |
-| `rateLimitStateTableId` | UUID |
-| `rateLimitStateTableName` | String |
-| `rateLimitOverridesTableId` | UUID |
-| `rateLimitOverridesTableName` | String |
-| `rateWindowLimitsTableId` | UUID |
-| `rateWindowLimitsTableName` | String |
-| `checkRateLimitFunction` | String |
-| `prefix` | String |
-| `apiName` | String |
-| `privateApiName` | String |
-
-**Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `rateLimitStateTableId`, `rateLimitStateTableName`, `rateLimitOverridesTableId`, `rateLimitOverridesTableName`, `rateWindowLimitsTableId`, `rateWindowLimitsTableName`, `checkRateLimitFunction`, `prefix`, `apiName`, `privateApiName`
-
 ### `sessions-module`
 
 CRUD operations for SessionsModule records.
@@ -1033,10 +998,11 @@ CRUD operations for GraphModule records.
 | `entityTableId` | UUID |
 | `policies` | JSON |
 | `provisions` | JSON |
+| `defaultPermissions` | String |
 | `createdAt` | Datetime |
 
 **Required create fields:** `databaseId`, `merkleStoreModuleId`
-**Optional create fields (backend defaults):** `publicSchemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `scope`, `prefix`, `graphsTableId`, `executionsTableId`, `outputsTableId`, `apiName`, `privateApiName`, `entityTableId`, `policies`, `provisions`
+**Optional create fields (backend defaults):** `publicSchemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `scope`, `prefix`, `graphsTableId`, `executionsTableId`, `outputsTableId`, `apiName`, `privateApiName`, `entityTableId`, `policies`, `provisions`, `defaultPermissions`
 
 ### `secure-table-provision`
 
@@ -1070,6 +1036,42 @@ CRUD operations for SecureTableProvision records.
 **Required create fields:** `databaseId`
 **Optional create fields (backend defaults):** `schemaId`, `tableId`, `tableName`, `nodes`, `useRls`, `fields`, `grants`, `policies`, `outFields`
 
+### `rate-limit-meters-module`
+
+CRUD operations for RateLimitMetersModule records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all rateLimitMetersModule records |
+| `find-first` | Find first matching rateLimitMetersModule record |
+| `get` | Get a rateLimitMetersModule by id |
+| `create` | Create a new rateLimitMetersModule |
+| `update` | Update an existing rateLimitMetersModule |
+| `delete` | Delete a rateLimitMetersModule |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `schemaId` | UUID |
+| `privateSchemaId` | UUID |
+| `rateLimitStateTableId` | UUID |
+| `rateLimitStateTableName` | String |
+| `rateLimitOverridesTableId` | UUID |
+| `rateLimitOverridesTableName` | String |
+| `rateWindowLimitsTableId` | UUID |
+| `rateWindowLimitsTableName` | String |
+| `checkRateLimitFunction` | String |
+| `prefix` | String |
+| `defaultPermissions` | String |
+| `apiName` | String |
+| `privateApiName` | String |
+
+**Required create fields:** `databaseId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `rateLimitStateTableId`, `rateLimitStateTableName`, `rateLimitOverridesTableId`, `rateLimitOverridesTableName`, `rateWindowLimitsTableId`, `rateWindowLimitsTableName`, `checkRateLimitFunction`, `prefix`, `defaultPermissions`, `apiName`, `privateApiName`
+
 ### `invites-module`
 
 CRUD operations for InvitesModule records.
@@ -1142,44 +1144,6 @@ CRUD operations for DatabaseProvisionModule records.
 **Required create fields:** `databaseName`, `ownerId`, `domain`
 **Optional create fields (backend defaults):** `subdomain`, `modules`, `options`, `bootstrapUser`, `status`, `errorMessage`, `databaseId`, `completedAt`
 
-### `namespace-module`
-
-CRUD operations for NamespaceModule records.
-
-| Subcommand | Description |
-|------------|-------------|
-| `list` | List all namespaceModule records |
-| `find-first` | Find first matching namespaceModule record |
-| `get` | Get a namespaceModule by id |
-| `create` | Create a new namespaceModule |
-| `update` | Update an existing namespaceModule |
-| `delete` | Delete a namespaceModule |
-
-**Fields:**
-
-| Field | Type |
-|-------|------|
-| `id` | UUID |
-| `databaseId` | UUID |
-| `schemaId` | UUID |
-| `privateSchemaId` | UUID |
-| `publicSchemaName` | String |
-| `privateSchemaName` | String |
-| `namespacesTableId` | UUID |
-| `namespaceEventsTableId` | UUID |
-| `namespacesTableName` | String |
-| `namespaceEventsTableName` | String |
-| `apiName` | String |
-| `privateApiName` | String |
-| `scope` | String |
-| `prefix` | String |
-| `entityTableId` | UUID |
-| `policies` | JSON |
-| `provisions` | JSON |
-
-**Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `namespacesTableId`, `namespaceEventsTableId`, `namespacesTableName`, `namespaceEventsTableName`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `provisions`
-
 ### `realtime-module`
 
 CRUD operations for RealtimeModule records.
@@ -1252,6 +1216,45 @@ CRUD operations for WebauthnAuthModule records.
 **Required create fields:** `databaseId`
 **Optional create fields (backend defaults):** `schemaId`, `usersTableId`, `credentialsTableId`, `sessionsTableId`, `sessionCredentialsTableId`, `sessionSecretsTableId`, `authSettingsTableId`, `rpId`, `rpName`, `originAllowlist`, `attestationType`, `requireUserVerification`, `residentKey`, `challengeExpiry`
 
+### `namespace-module`
+
+CRUD operations for NamespaceModule records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all namespaceModule records |
+| `find-first` | Find first matching namespaceModule record |
+| `get` | Get a namespaceModule by id |
+| `create` | Create a new namespaceModule |
+| `update` | Update an existing namespaceModule |
+| `delete` | Delete a namespaceModule |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `schemaId` | UUID |
+| `privateSchemaId` | UUID |
+| `publicSchemaName` | String |
+| `privateSchemaName` | String |
+| `namespacesTableId` | UUID |
+| `namespaceEventsTableId` | UUID |
+| `namespacesTableName` | String |
+| `namespaceEventsTableName` | String |
+| `apiName` | String |
+| `privateApiName` | String |
+| `scope` | String |
+| `prefix` | String |
+| `entityTableId` | UUID |
+| `policies` | JSON |
+| `provisions` | JSON |
+| `defaultPermissions` | String |
+
+**Required create fields:** `databaseId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `namespacesTableId`, `namespaceEventsTableId`, `namespacesTableName`, `namespaceEventsTableName`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `provisions`, `defaultPermissions`
+
 ### `compute-log-module`
 
 CRUD operations for ComputeLogModule records.
@@ -1404,6 +1407,46 @@ CRUD operations for TransferLogModule records.
 **Required create fields:** `databaseId`
 **Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `transferLogTableId`, `transferLogTableName`, `usageDailyTableId`, `usageDailyTableName`, `interval`, `retention`, `premake`, `scope`, `actorFkTableId`, `entityFkTableId`, `prefix`, `apiName`, `privateApiName`
 
+### `plans-module`
+
+CRUD operations for PlansModule records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all plansModule records |
+| `find-first` | Find first matching plansModule record |
+| `get` | Get a plansModule by id |
+| `create` | Create a new plansModule |
+| `update` | Update an existing plansModule |
+| `delete` | Delete a plansModule |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `schemaId` | UUID |
+| `privateSchemaId` | UUID |
+| `plansTableId` | UUID |
+| `plansTableName` | String |
+| `planLimitsTableId` | UUID |
+| `planLimitsTableName` | String |
+| `planPricingTableId` | UUID |
+| `planOverridesTableId` | UUID |
+| `planMeterLimitsTableId` | UUID |
+| `planCapsTableId` | UUID |
+| `applyPlanFunction` | String |
+| `applyPlanAggregateFunction` | String |
+| `applyBillingPlanFunction` | String |
+| `applyPlanCapsFunction` | String |
+| `prefix` | String |
+| `apiName` | String |
+| `privateApiName` | String |
+
+**Required create fields:** `databaseId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `plansTableId`, `plansTableName`, `planLimitsTableId`, `planLimitsTableName`, `planPricingTableId`, `planOverridesTableId`, `planMeterLimitsTableId`, `planCapsTableId`, `applyPlanFunction`, `applyPlanAggregateFunction`, `applyBillingPlanFunction`, `applyPlanCapsFunction`, `prefix`, `apiName`, `privateApiName`
+
 ### `db-usage-module`
 
 CRUD operations for DbUsageModule records.
@@ -1438,11 +1481,12 @@ CRUD operations for DbUsageModule records.
 | `premake` | Int |
 | `scope` | String |
 | `prefix` | String |
+| `defaultPermissions` | String |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `tableStatsLogTableId`, `tableStatsLogTableName`, `tableStatsDailyTableId`, `tableStatsDailyTableName`, `queryStatsLogTableId`, `queryStatsLogTableName`, `queryStatsDailyTableId`, `queryStatsDailyTableName`, `interval`, `retention`, `premake`, `scope`, `prefix`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `tableStatsLogTableId`, `tableStatsLogTableName`, `tableStatsDailyTableId`, `tableStatsDailyTableName`, `queryStatsLogTableId`, `queryStatsLogTableName`, `queryStatsDailyTableId`, `queryStatsDailyTableName`, `interval`, `retention`, `premake`, `scope`, `prefix`, `defaultPermissions`, `apiName`, `privateApiName`
 
 ### `notifications-module`
 
@@ -1478,24 +1522,25 @@ CRUD operations for NotificationsModule records.
 | `hasSettingsExtension` | Boolean |
 | `hasDigestMetadata` | Boolean |
 | `hasSubscriptions` | Boolean |
+| `defaultPermissions` | String |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `notificationsTableId`, `readStateTableId`, `preferencesTableId`, `channelsTableId`, `deliveryLogTableId`, `ownerTableId`, `userSettingsTableId`, `organizationSettingsTableId`, `hasChannels`, `hasPreferences`, `hasSettingsExtension`, `hasDigestMetadata`, `hasSubscriptions`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `notificationsTableId`, `readStateTableId`, `preferencesTableId`, `channelsTableId`, `deliveryLogTableId`, `ownerTableId`, `userSettingsTableId`, `organizationSettingsTableId`, `hasChannels`, `hasPreferences`, `hasSettingsExtension`, `hasDigestMetadata`, `hasSubscriptions`, `defaultPermissions`, `apiName`, `privateApiName`
 
-### `plans-module`
+### `billing-provider-module`
 
-CRUD operations for PlansModule records.
+CRUD operations for BillingProviderModule records.
 
 | Subcommand | Description |
 |------------|-------------|
-| `list` | List all plansModule records |
-| `find-first` | Find first matching plansModule record |
-| `get` | Get a plansModule by id |
-| `create` | Create a new plansModule |
-| `update` | Update an existing plansModule |
-| `delete` | Delete a plansModule |
+| `list` | List all billingProviderModule records |
+| `find-first` | Find first matching billingProviderModule record |
+| `get` | Get a billingProviderModule by id |
+| `create` | Create a new billingProviderModule |
+| `update` | Update an existing billingProviderModule |
+| `delete` | Delete a billingProviderModule |
 
 **Fields:**
 
@@ -1505,79 +1550,40 @@ CRUD operations for PlansModule records.
 | `databaseId` | UUID |
 | `schemaId` | UUID |
 | `privateSchemaId` | UUID |
-| `plansTableId` | UUID |
-| `plansTableName` | String |
-| `planLimitsTableId` | UUID |
-| `planLimitsTableName` | String |
-| `planPricingTableId` | UUID |
-| `planOverridesTableId` | UUID |
-| `planMeterLimitsTableId` | UUID |
-| `planCapsTableId` | UUID |
-| `applyPlanFunction` | String |
-| `applyPlanAggregateFunction` | String |
-| `applyBillingPlanFunction` | String |
-| `applyPlanCapsFunction` | String |
+| `provider` | String |
+| `productsTableId` | UUID |
+| `pricesTableId` | UUID |
+| `subscriptionsTableId` | UUID |
+| `billingCustomersTableId` | UUID |
+| `billingCustomersTableName` | String |
+| `billingProductsTableId` | UUID |
+| `billingProductsTableName` | String |
+| `billingPricesTableId` | UUID |
+| `billingPricesTableName` | String |
+| `billingSubscriptionsTableId` | UUID |
+| `billingSubscriptionsTableName` | String |
+| `billingWebhookEventsTableId` | UUID |
+| `billingWebhookEventsTableName` | String |
+| `processBillingEventFunction` | String |
 | `prefix` | String |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `plansTableId`, `plansTableName`, `planLimitsTableId`, `planLimitsTableName`, `planPricingTableId`, `planOverridesTableId`, `planMeterLimitsTableId`, `planCapsTableId`, `applyPlanFunction`, `applyPlanAggregateFunction`, `applyBillingPlanFunction`, `applyPlanCapsFunction`, `prefix`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `provider`, `productsTableId`, `pricesTableId`, `subscriptionsTableId`, `billingCustomersTableId`, `billingCustomersTableName`, `billingProductsTableId`, `billingProductsTableName`, `billingPricesTableId`, `billingPricesTableName`, `billingSubscriptionsTableId`, `billingSubscriptionsTableName`, `billingWebhookEventsTableId`, `billingWebhookEventsTableName`, `processBillingEventFunction`, `prefix`, `apiName`, `privateApiName`
 
-### `hierarchy-module`
+### `function-module`
 
-CRUD operations for HierarchyModule records.
+CRUD operations for FunctionModule records.
 
 | Subcommand | Description |
 |------------|-------------|
-| `list` | List all hierarchyModule records |
-| `find-first` | Find first matching hierarchyModule record |
-| `get` | Get a hierarchyModule by id |
-| `create` | Create a new hierarchyModule |
-| `update` | Update an existing hierarchyModule |
-| `delete` | Delete a hierarchyModule |
-
-**Fields:**
-
-| Field | Type |
-|-------|------|
-| `id` | UUID |
-| `databaseId` | UUID |
-| `schemaId` | UUID |
-| `privateSchemaId` | UUID |
-| `chartEdgesTableId` | UUID |
-| `chartEdgesTableName` | String |
-| `hierarchySprtTableId` | UUID |
-| `hierarchySprtTableName` | String |
-| `chartEdgeGrantsTableId` | UUID |
-| `chartEdgeGrantsTableName` | String |
-| `entityTableId` | UUID |
-| `usersTableId` | UUID |
-| `scope` | String |
-| `prefix` | String |
-| `privateSchemaName` | String |
-| `sprtTableName` | String |
-| `rebuildHierarchyFunction` | String |
-| `getSubordinatesFunction` | String |
-| `getManagersFunction` | String |
-| `isManagerOfFunction` | String |
-| `createdAt` | Datetime |
-
-**Required create fields:** `databaseId`, `entityTableId`, `usersTableId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `chartEdgesTableId`, `chartEdgesTableName`, `hierarchySprtTableId`, `hierarchySprtTableName`, `chartEdgeGrantsTableId`, `chartEdgeGrantsTableName`, `scope`, `prefix`, `privateSchemaName`, `sprtTableName`, `rebuildHierarchyFunction`, `getSubordinatesFunction`, `getManagersFunction`, `isManagerOfFunction`
-
-### `billing-module`
-
-CRUD operations for BillingModule records.
-
-| Subcommand | Description |
-|------------|-------------|
-| `list` | List all billingModule records |
-| `find-first` | Find first matching billingModule record |
-| `get` | Get a billingModule by id |
-| `create` | Create a new billingModule |
-| `update` | Update an existing billingModule |
-| `delete` | Delete a billingModule |
+| `list` | List all functionModule records |
+| `find-first` | Find first matching functionModule record |
+| `get` | Get a functionModule by id |
+| `create` | Create a new functionModule |
+| `update` | Update an existing functionModule |
+| `delete` | Delete a functionModule |
 
 **Fields:**
 
@@ -1587,40 +1593,40 @@ CRUD operations for BillingModule records.
 | `databaseId` | UUID |
 | `schemaId` | UUID |
 | `privateSchemaId` | UUID |
-| `metersTableId` | UUID |
-| `metersTableName` | String |
-| `planSubscriptionsTableId` | UUID |
-| `planSubscriptionsTableName` | String |
-| `ledgerTableId` | UUID |
-| `ledgerTableName` | String |
-| `balancesTableId` | UUID |
-| `balancesTableName` | String |
-| `meterCreditsTableId` | UUID |
-| `meterCreditsTableName` | String |
-| `meterSourcesTableId` | UUID |
-| `meterSourcesTableName` | String |
-| `meterDefaultsTableId` | UUID |
-| `meterDefaultsTableName` | String |
-| `recordUsageFunction` | String |
-| `prefix` | String |
+| `publicSchemaName` | String |
+| `privateSchemaName` | String |
+| `definitionsTableId` | UUID |
+| `invocationsTableId` | UUID |
+| `executionLogsTableId` | UUID |
+| `secretDefinitionsTableId` | UUID |
+| `definitionsTableName` | String |
+| `invocationsTableName` | String |
+| `executionLogsTableName` | String |
+| `secretDefinitionsTableName` | String |
 | `apiName` | String |
 | `privateApiName` | String |
+| `scope` | String |
+| `prefix` | String |
+| `entityTableId` | UUID |
+| `policies` | JSON |
+| `provisions` | JSON |
+| `defaultPermissions` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `metersTableId`, `metersTableName`, `planSubscriptionsTableId`, `planSubscriptionsTableName`, `ledgerTableId`, `ledgerTableName`, `balancesTableId`, `balancesTableName`, `meterCreditsTableId`, `meterCreditsTableName`, `meterSourcesTableId`, `meterSourcesTableName`, `meterDefaultsTableId`, `meterDefaultsTableName`, `recordUsageFunction`, `prefix`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `definitionsTableId`, `invocationsTableId`, `executionLogsTableId`, `secretDefinitionsTableId`, `definitionsTableName`, `invocationsTableName`, `executionLogsTableName`, `secretDefinitionsTableName`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `provisions`, `defaultPermissions`
 
-### `billing-provider-module`
+### `hierarchy-module`
 
-CRUD operations for BillingProviderModule records.
+CRUD operations for HierarchyModule records.
 
 | Subcommand | Description |
 |------------|-------------|
-| `list` | List all billingProviderModule records |
-| `find-first` | Find first matching billingProviderModule record |
-| `get` | Get a billingProviderModule by id |
-| `create` | Create a new billingProviderModule |
-| `update` | Update an existing billingProviderModule |
-| `delete` | Delete a billingProviderModule |
+| `list` | List all hierarchyModule records |
+| `find-first` | Find first matching hierarchyModule record |
+| `get` | Get a hierarchyModule by id |
+| `create` | Create a new hierarchyModule |
+| `update` | Update an existing hierarchyModule |
+| `delete` | Delete a hierarchyModule |
 
 **Fields:**
 
@@ -1630,27 +1636,27 @@ CRUD operations for BillingProviderModule records.
 | `databaseId` | UUID |
 | `schemaId` | UUID |
 | `privateSchemaId` | UUID |
-| `provider` | String |
-| `productsTableId` | UUID |
-| `pricesTableId` | UUID |
-| `subscriptionsTableId` | UUID |
-| `billingCustomersTableId` | UUID |
-| `billingCustomersTableName` | String |
-| `billingProductsTableId` | UUID |
-| `billingProductsTableName` | String |
-| `billingPricesTableId` | UUID |
-| `billingPricesTableName` | String |
-| `billingSubscriptionsTableId` | UUID |
-| `billingSubscriptionsTableName` | String |
-| `billingWebhookEventsTableId` | UUID |
-| `billingWebhookEventsTableName` | String |
-| `processBillingEventFunction` | String |
+| `chartEdgesTableId` | UUID |
+| `chartEdgesTableName` | String |
+| `hierarchySprtTableId` | UUID |
+| `hierarchySprtTableName` | String |
+| `chartEdgeGrantsTableId` | UUID |
+| `chartEdgeGrantsTableName` | String |
+| `entityTableId` | UUID |
+| `usersTableId` | UUID |
+| `scope` | String |
 | `prefix` | String |
-| `apiName` | String |
-| `privateApiName` | String |
+| `privateSchemaName` | String |
+| `sprtTableName` | String |
+| `rebuildHierarchyFunction` | String |
+| `getSubordinatesFunction` | String |
+| `getManagersFunction` | String |
+| `isManagerOfFunction` | String |
+| `defaultPermissions` | String |
+| `createdAt` | Datetime |
 
-**Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `provider`, `productsTableId`, `pricesTableId`, `subscriptionsTableId`, `billingCustomersTableId`, `billingCustomersTableName`, `billingProductsTableId`, `billingProductsTableName`, `billingPricesTableId`, `billingPricesTableName`, `billingSubscriptionsTableId`, `billingSubscriptionsTableName`, `billingWebhookEventsTableId`, `billingWebhookEventsTableName`, `processBillingEventFunction`, `prefix`, `apiName`, `privateApiName`
+**Required create fields:** `databaseId`, `entityTableId`, `usersTableId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `chartEdgesTableId`, `chartEdgesTableName`, `hierarchySprtTableId`, `hierarchySprtTableName`, `chartEdgeGrantsTableId`, `chartEdgeGrantsTableName`, `scope`, `prefix`, `privateSchemaName`, `sprtTableName`, `rebuildHierarchyFunction`, `getSubordinatesFunction`, `getManagersFunction`, `isManagerOfFunction`, `defaultPermissions`
 
 ### `profiles-module`
 
@@ -1735,6 +1741,50 @@ CRUD operations for PermissionsModule records.
 **Required create fields:** `databaseId`
 **Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `tableId`, `tableName`, `defaultTableId`, `defaultTableName`, `bitlen`, `scope`, `prefix`, `entityTableId`, `actorTableId`, `getPaddedMask`, `getMask`, `getByMask`, `getMaskByName`, `apiName`, `privateApiName`
 
+### `billing-module`
+
+CRUD operations for BillingModule records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all billingModule records |
+| `find-first` | Find first matching billingModule record |
+| `get` | Get a billingModule by id |
+| `create` | Create a new billingModule |
+| `update` | Update an existing billingModule |
+| `delete` | Delete a billingModule |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `schemaId` | UUID |
+| `privateSchemaId` | UUID |
+| `metersTableId` | UUID |
+| `metersTableName` | String |
+| `planSubscriptionsTableId` | UUID |
+| `planSubscriptionsTableName` | String |
+| `ledgerTableId` | UUID |
+| `ledgerTableName` | String |
+| `balancesTableId` | UUID |
+| `balancesTableName` | String |
+| `meterCreditsTableId` | UUID |
+| `meterCreditsTableName` | String |
+| `meterSourcesTableId` | UUID |
+| `meterSourcesTableName` | String |
+| `meterDefaultsTableId` | UUID |
+| `meterDefaultsTableName` | String |
+| `recordUsageFunction` | String |
+| `prefix` | String |
+| `defaultPermissions` | String |
+| `apiName` | String |
+| `privateApiName` | String |
+
+**Required create fields:** `databaseId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `metersTableId`, `metersTableName`, `planSubscriptionsTableId`, `planSubscriptionsTableName`, `ledgerTableId`, `ledgerTableName`, `balancesTableId`, `balancesTableName`, `meterCreditsTableId`, `meterCreditsTableName`, `meterSourcesTableId`, `meterSourcesTableName`, `meterDefaultsTableId`, `meterDefaultsTableName`, `recordUsageFunction`, `prefix`, `defaultPermissions`, `apiName`, `privateApiName`
+
 ### `relation-provision`
 
 CRUD operations for RelationProvision records.
@@ -1780,53 +1830,6 @@ CRUD operations for RelationProvision records.
 **Required create fields:** `databaseId`, `relationType`, `sourceTableId`, `targetTableId`
 **Optional create fields (backend defaults):** `fieldName`, `deleteAction`, `isRequired`, `apiRequired`, `junctionTableId`, `junctionTableName`, `junctionSchemaId`, `sourceFieldName`, `targetFieldName`, `useCompositeKey`, `createIndex`, `exposeInApi`, `nodes`, `grants`, `policies`, `outFieldId`, `outJunctionTableId`, `outSourceFieldId`, `outTargetFieldId`
 
-### `function-module`
-
-CRUD operations for FunctionModule records.
-
-| Subcommand | Description |
-|------------|-------------|
-| `list` | List all functionModule records |
-| `find-first` | Find first matching functionModule record |
-| `get` | Get a functionModule by id |
-| `create` | Create a new functionModule |
-| `update` | Update an existing functionModule |
-| `delete` | Delete a functionModule |
-
-**Fields:**
-
-| Field | Type |
-|-------|------|
-| `id` | UUID |
-| `databaseId` | UUID |
-| `schemaId` | UUID |
-| `privateSchemaId` | UUID |
-| `publicSchemaName` | String |
-| `privateSchemaName` | String |
-| `definitionsTableId` | UUID |
-| `invocationsTableId` | UUID |
-| `executionLogsTableId` | UUID |
-| `secretDefinitionsTableId` | UUID |
-| `requirementsTableId` | UUID |
-| `configDefinitionsTableId` | UUID |
-| `configRequirementsTableId` | UUID |
-| `definitionsTableName` | String |
-| `invocationsTableName` | String |
-| `executionLogsTableName` | String |
-| `secretDefinitionsTableName` | String |
-| `requirementsTableName` | String |
-| `configRequirementsTableName` | String |
-| `apiName` | String |
-| `privateApiName` | String |
-| `scope` | String |
-| `prefix` | String |
-| `entityTableId` | UUID |
-| `policies` | JSON |
-| `provisions` | JSON |
-
-**Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `publicSchemaName`, `privateSchemaName`, `definitionsTableId`, `invocationsTableId`, `executionLogsTableId`, `secretDefinitionsTableId`, `requirementsTableId`, `configDefinitionsTableId`, `configRequirementsTableId`, `definitionsTableName`, `invocationsTableName`, `executionLogsTableName`, `secretDefinitionsTableName`, `requirementsTableName`, `configRequirementsTableName`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `provisions`
-
 ### `user-auth-module`
 
 CRUD operations for UserAuthModule records.
@@ -1916,6 +1919,7 @@ CRUD operations for AgentModule records.
 | `hasPlans` | Boolean |
 | `hasResources` | Boolean |
 | `hasAgents` | Boolean |
+| `shared` | Boolean |
 | `apiName` | String |
 | `privateApiName` | String |
 | `scope` | String |
@@ -1924,9 +1928,10 @@ CRUD operations for AgentModule records.
 | `policies` | JSON |
 | `resources` | JSON |
 | `provisions` | JSON |
+| `defaultPermissions` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `threadTableId`, `messageTableId`, `taskTableId`, `promptsTableId`, `planTableId`, `agentTableId`, `personaTableId`, `resourceTableId`, `threadTableName`, `messageTableName`, `taskTableName`, `promptsTableName`, `planTableName`, `agentTableName`, `personaTableName`, `resourceTableName`, `hasPlans`, `hasResources`, `hasAgents`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `resources`, `provisions`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `threadTableId`, `messageTableId`, `taskTableId`, `promptsTableId`, `planTableId`, `agentTableId`, `personaTableId`, `resourceTableId`, `threadTableName`, `messageTableName`, `taskTableName`, `promptsTableName`, `planTableName`, `agentTableName`, `personaTableName`, `resourceTableName`, `hasPlans`, `hasResources`, `hasAgents`, `shared`, `apiName`, `privateApiName`, `scope`, `prefix`, `entityTableId`, `policies`, `resources`, `provisions`, `defaultPermissions`
 
 ### `limits-module`
 
@@ -2035,11 +2040,13 @@ CRUD operations for MembershipsModule records.
 | `entityIdsByPerm` | String |
 | `entityIdsFunction` | String |
 | `memberProfilesTableId` | UUID |
+| `permissionDefaultPermissionsTableId` | UUID |
+| `permissionDefaultGrantsTableId` | UUID |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `membershipsTableId`, `membershipsTableName`, `membersTableId`, `membersTableName`, `membershipDefaultsTableId`, `membershipDefaultsTableName`, `membershipSettingsTableId`, `membershipSettingsTableName`, `grantsTableId`, `grantsTableName`, `actorTableId`, `limitsTableId`, `defaultLimitsTableId`, `permissionsTableId`, `defaultPermissionsTableId`, `sprtTableId`, `adminGrantsTableId`, `adminGrantsTableName`, `ownerGrantsTableId`, `ownerGrantsTableName`, `scope`, `prefix`, `entityTableId`, `entityTableOwnerId`, `getOrgFn`, `actorMaskCheck`, `actorPermCheck`, `entityIdsByMask`, `entityIdsByPerm`, `entityIdsFunction`, `memberProfilesTableId`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `membershipsTableId`, `membershipsTableName`, `membersTableId`, `membersTableName`, `membershipDefaultsTableId`, `membershipDefaultsTableName`, `membershipSettingsTableId`, `membershipSettingsTableName`, `grantsTableId`, `grantsTableName`, `actorTableId`, `limitsTableId`, `defaultLimitsTableId`, `permissionsTableId`, `defaultPermissionsTableId`, `sprtTableId`, `adminGrantsTableId`, `adminGrantsTableName`, `ownerGrantsTableId`, `ownerGrantsTableName`, `scope`, `prefix`, `entityTableId`, `entityTableOwnerId`, `getOrgFn`, `actorMaskCheck`, `actorPermCheck`, `entityIdsByMask`, `entityIdsByPerm`, `entityIdsFunction`, `memberProfilesTableId`, `permissionDefaultPermissionsTableId`, `permissionDefaultGrantsTableId`, `apiName`, `privateApiName`
 
 ### `storage-module`
 
@@ -2092,11 +2099,73 @@ CRUD operations for StorageModule records.
 | `hasConfirmUpload` | Boolean |
 | `confirmUploadDelay` | Interval |
 | `fileEventsTableId` | UUID |
+| `defaultPermissions` | String |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `bucketsTableId`, `filesTableId`, `bucketsTableName`, `filesTableName`, `scope`, `prefix`, `policies`, `provisions`, `entityTableId`, `endpoint`, `publicUrlPrefix`, `provider`, `allowedOrigins`, `restrictReads`, `hasPathShares`, `pathSharesTableId`, `uploadUrlExpirySeconds`, `downloadUrlExpirySeconds`, `defaultMaxFileSize`, `maxFilenameLength`, `cacheTtlSeconds`, `maxBulkFiles`, `maxBulkTotalSize`, `hasVersioning`, `hasContentHash`, `hasCustomKeys`, `hasAuditLog`, `hasConfirmUpload`, `confirmUploadDelay`, `fileEventsTableId`, `apiName`, `privateApiName`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `bucketsTableId`, `filesTableId`, `bucketsTableName`, `filesTableName`, `scope`, `prefix`, `policies`, `provisions`, `entityTableId`, `endpoint`, `publicUrlPrefix`, `provider`, `allowedOrigins`, `restrictReads`, `hasPathShares`, `pathSharesTableId`, `uploadUrlExpirySeconds`, `downloadUrlExpirySeconds`, `defaultMaxFileSize`, `maxFilenameLength`, `cacheTtlSeconds`, `maxBulkFiles`, `maxBulkTotalSize`, `hasVersioning`, `hasContentHash`, `hasCustomKeys`, `hasAuditLog`, `hasConfirmUpload`, `confirmUploadDelay`, `fileEventsTableId`, `defaultPermissions`, `apiName`, `privateApiName`
+
+### `entity-type-provision`
+
+CRUD operations for EntityTypeProvision records.
+
+| Subcommand | Description |
+|------------|-------------|
+| `list` | List all entityTypeProvision records |
+| `find-first` | Find first matching entityTypeProvision record |
+| `get` | Get a entityTypeProvision by id |
+| `create` | Create a new entityTypeProvision |
+| `update` | Update an existing entityTypeProvision |
+| `delete` | Delete a entityTypeProvision |
+
+**Fields:**
+
+| Field | Type |
+|-------|------|
+| `id` | UUID |
+| `databaseId` | UUID |
+| `name` | String |
+| `prefix` | String |
+| `description` | String |
+| `parentEntity` | String |
+| `tableName` | String |
+| `isVisible` | Boolean |
+| `hasLimits` | Boolean |
+| `hasProfiles` | Boolean |
+| `hasLevels` | Boolean |
+| `hasInvites` | Boolean |
+| `hasInviteAchievements` | Boolean |
+| `storage` | JSON |
+| `namespaces` | JSON |
+| `functions` | JSON |
+| `graphs` | JSON |
+| `agents` | JSON |
+| `skipEntityPolicies` | Boolean |
+| `tableProvision` | JSON |
+| `outMembershipType` | Int |
+| `outEntityTableId` | UUID |
+| `outEntityTableName` | String |
+| `outInstalledModules` | String |
+| `outStorageModuleId` | UUID |
+| `outBucketsTableId` | UUID |
+| `outFilesTableId` | UUID |
+| `outPathSharesTableId` | UUID |
+| `outInvitesModuleId` | UUID |
+| `outNamespaceModuleId` | UUID |
+| `outNamespacesTableId` | UUID |
+| `outNamespaceEventsTableId` | UUID |
+| `outFunctionModuleId` | UUID |
+| `outDefinitionsTableId` | UUID |
+| `outInvocationsTableId` | UUID |
+| `outExecutionLogsTableId` | UUID |
+| `outSecretDefinitionsTableId` | UUID |
+| `outGraphModuleId` | UUID |
+| `outGraphsTableId` | UUID |
+| `outAgentModuleId` | UUID |
+
+**Required create fields:** `databaseId`, `name`, `prefix`
+**Optional create fields (backend defaults):** `description`, `parentEntity`, `tableName`, `isVisible`, `hasLimits`, `hasProfiles`, `hasLevels`, `hasInvites`, `hasInviteAchievements`, `storage`, `namespaces`, `functions`, `graphs`, `agents`, `skipEntityPolicies`, `tableProvision`, `outMembershipType`, `outEntityTableId`, `outEntityTableName`, `outInstalledModules`, `outStorageModuleId`, `outBucketsTableId`, `outFilesTableId`, `outPathSharesTableId`, `outInvitesModuleId`, `outNamespaceModuleId`, `outNamespacesTableId`, `outNamespaceEventsTableId`, `outFunctionModuleId`, `outDefinitionsTableId`, `outInvocationsTableId`, `outExecutionLogsTableId`, `outSecretDefinitionsTableId`, `outGraphModuleId`, `outGraphsTableId`, `outAgentModuleId`
 
 ### `events-module`
 
@@ -2154,74 +2223,12 @@ CRUD operations for EventsModule records.
 | `prefix` | String |
 | `entityTableId` | UUID |
 | `actorTableId` | UUID |
+| `defaultPermissions` | String |
 | `apiName` | String |
 | `privateApiName` | String |
 
 **Required create fields:** `databaseId`
-**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `eventsTableId`, `eventsTableName`, `eventAggregatesTableId`, `eventAggregatesTableName`, `eventTypesTableId`, `eventTypesTableName`, `levelsTableId`, `levelsTableName`, `levelRequirementsTableId`, `levelRequirementsTableName`, `levelGrantsTableId`, `levelGrantsTableName`, `achievementRewardsTableId`, `achievementRewardsTableName`, `recordEvent`, `removeEvent`, `tgEvent`, `tgEventToggle`, `tgEventToggleBool`, `tgEventBool`, `upsertAggregate`, `tgUpdateAggregates`, `pruneEvents`, `stepsRequired`, `levelAchieved`, `tgCheckAchievements`, `grantAchievement`, `tgAchievementReward`, `interval`, `retention`, `premake`, `scope`, `prefix`, `entityTableId`, `actorTableId`, `apiName`, `privateApiName`
-
-### `entity-type-provision`
-
-CRUD operations for EntityTypeProvision records.
-
-| Subcommand | Description |
-|------------|-------------|
-| `list` | List all entityTypeProvision records |
-| `find-first` | Find first matching entityTypeProvision record |
-| `get` | Get a entityTypeProvision by id |
-| `create` | Create a new entityTypeProvision |
-| `update` | Update an existing entityTypeProvision |
-| `delete` | Delete a entityTypeProvision |
-
-**Fields:**
-
-| Field | Type |
-|-------|------|
-| `id` | UUID |
-| `databaseId` | UUID |
-| `name` | String |
-| `prefix` | String |
-| `description` | String |
-| `parentEntity` | String |
-| `tableName` | String |
-| `isVisible` | Boolean |
-| `hasLimits` | Boolean |
-| `hasProfiles` | Boolean |
-| `hasLevels` | Boolean |
-| `hasInvites` | Boolean |
-| `hasInviteAchievements` | Boolean |
-| `storage` | JSON |
-| `namespaces` | JSON |
-| `functions` | JSON |
-| `graphs` | JSON |
-| `agents` | JSON |
-| `skipEntityPolicies` | Boolean |
-| `tableProvision` | JSON |
-| `outMembershipType` | Int |
-| `outEntityTableId` | UUID |
-| `outEntityTableName` | String |
-| `outInstalledModules` | String |
-| `outStorageModuleId` | UUID |
-| `outBucketsTableId` | UUID |
-| `outFilesTableId` | UUID |
-| `outPathSharesTableId` | UUID |
-| `outInvitesModuleId` | UUID |
-| `outNamespaceModuleId` | UUID |
-| `outNamespacesTableId` | UUID |
-| `outNamespaceEventsTableId` | UUID |
-| `outFunctionModuleId` | UUID |
-| `outDefinitionsTableId` | UUID |
-| `outInvocationsTableId` | UUID |
-| `outExecutionLogsTableId` | UUID |
-| `outSecretDefinitionsTableId` | UUID |
-| `outRequirementsTableId` | UUID |
-| `outConfigRequirementsTableId` | UUID |
-| `outGraphModuleId` | UUID |
-| `outGraphsTableId` | UUID |
-| `outAgentModuleId` | UUID |
-
-**Required create fields:** `databaseId`, `name`, `prefix`
-**Optional create fields (backend defaults):** `description`, `parentEntity`, `tableName`, `isVisible`, `hasLimits`, `hasProfiles`, `hasLevels`, `hasInvites`, `hasInviteAchievements`, `storage`, `namespaces`, `functions`, `graphs`, `agents`, `skipEntityPolicies`, `tableProvision`, `outMembershipType`, `outEntityTableId`, `outEntityTableName`, `outInstalledModules`, `outStorageModuleId`, `outBucketsTableId`, `outFilesTableId`, `outPathSharesTableId`, `outInvitesModuleId`, `outNamespaceModuleId`, `outNamespacesTableId`, `outNamespaceEventsTableId`, `outFunctionModuleId`, `outDefinitionsTableId`, `outInvocationsTableId`, `outExecutionLogsTableId`, `outSecretDefinitionsTableId`, `outRequirementsTableId`, `outConfigRequirementsTableId`, `outGraphModuleId`, `outGraphsTableId`, `outAgentModuleId`
+**Optional create fields (backend defaults):** `schemaId`, `privateSchemaId`, `eventsTableId`, `eventsTableName`, `eventAggregatesTableId`, `eventAggregatesTableName`, `eventTypesTableId`, `eventTypesTableName`, `levelsTableId`, `levelsTableName`, `levelRequirementsTableId`, `levelRequirementsTableName`, `levelGrantsTableId`, `levelGrantsTableName`, `achievementRewardsTableId`, `achievementRewardsTableName`, `recordEvent`, `removeEvent`, `tgEvent`, `tgEventToggle`, `tgEventToggleBool`, `tgEventBool`, `upsertAggregate`, `tgUpdateAggregates`, `pruneEvents`, `stepsRequired`, `levelAchieved`, `tgCheckAchievements`, `grantAchievement`, `tgAchievementReward`, `interval`, `retention`, `premake`, `scope`, `prefix`, `entityTableId`, `actorTableId`, `defaultPermissions`, `apiName`, `privateApiName`
 
 ## Custom Operations
 
diff --git a/sdk/constructive-cli/src/modules/cli/commands.ts b/sdk/constructive-cli/src/modules/cli/commands.ts
index bb08796b2..f5831488a 100644
--- a/sdk/constructive-cli/src/modules/cli/commands.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands.ts
@@ -30,38 +30,38 @@ import blueprintCmd from './commands/blueprint';
 import blueprintTemplateCmd from './commands/blueprint-template';
 import blueprintConstructionCmd from './commands/blueprint-construction';
 import cryptoAuthModuleCmd from './commands/crypto-auth-module';
-import rateLimitMetersModuleCmd from './commands/rate-limit-meters-module';
 import sessionsModuleCmd from './commands/sessions-module';
 import configSecretsModuleCmd from './commands/config-secrets-module';
 import merkleStoreModuleCmd from './commands/merkle-store-module';
 import graphModuleCmd from './commands/graph-module';
 import secureTableProvisionCmd from './commands/secure-table-provision';
+import rateLimitMetersModuleCmd from './commands/rate-limit-meters-module';
 import invitesModuleCmd from './commands/invites-module';
 import databaseProvisionModuleCmd from './commands/database-provision-module';
-import namespaceModuleCmd from './commands/namespace-module';
 import realtimeModuleCmd from './commands/realtime-module';
 import webauthnAuthModuleCmd from './commands/webauthn-auth-module';
+import namespaceModuleCmd from './commands/namespace-module';
 import computeLogModuleCmd from './commands/compute-log-module';
 import inferenceLogModuleCmd from './commands/inference-log-module';
 import storageLogModuleCmd from './commands/storage-log-module';
 import transferLogModuleCmd from './commands/transfer-log-module';
+import plansModuleCmd from './commands/plans-module';
 import dbUsageModuleCmd from './commands/db-usage-module';
 import notificationsModuleCmd from './commands/notifications-module';
-import plansModuleCmd from './commands/plans-module';
-import hierarchyModuleCmd from './commands/hierarchy-module';
-import billingModuleCmd from './commands/billing-module';
 import billingProviderModuleCmd from './commands/billing-provider-module';
+import functionModuleCmd from './commands/function-module';
+import hierarchyModuleCmd from './commands/hierarchy-module';
 import profilesModuleCmd from './commands/profiles-module';
 import permissionsModuleCmd from './commands/permissions-module';
+import billingModuleCmd from './commands/billing-module';
 import relationProvisionCmd from './commands/relation-provision';
-import functionModuleCmd from './commands/function-module';
 import userAuthModuleCmd from './commands/user-auth-module';
 import agentModuleCmd from './commands/agent-module';
 import limitsModuleCmd from './commands/limits-module';
 import membershipsModuleCmd from './commands/memberships-module';
 import storageModuleCmd from './commands/storage-module';
-import eventsModuleCmd from './commands/events-module';
 import entityTypeProvisionCmd from './commands/entity-type-provision';
+import eventsModuleCmd from './commands/events-module';
 import resolveBlueprintFieldCmd from './commands/resolve-blueprint-field';
 import resolveBlueprintTableCmd from './commands/resolve-blueprint-table';
 import constructBlueprintCmd from './commands/construct-blueprint';
@@ -108,38 +108,38 @@ const createCommandMap: () => Record<
   'blueprint-template': blueprintTemplateCmd,
   'blueprint-construction': blueprintConstructionCmd,
   'crypto-auth-module': cryptoAuthModuleCmd,
-  'rate-limit-meters-module': rateLimitMetersModuleCmd,
   'sessions-module': sessionsModuleCmd,
   'config-secrets-module': configSecretsModuleCmd,
   'merkle-store-module': merkleStoreModuleCmd,
   'graph-module': graphModuleCmd,
   'secure-table-provision': secureTableProvisionCmd,
+  'rate-limit-meters-module': rateLimitMetersModuleCmd,
   'invites-module': invitesModuleCmd,
   'database-provision-module': databaseProvisionModuleCmd,
-  'namespace-module': namespaceModuleCmd,
   'realtime-module': realtimeModuleCmd,
   'webauthn-auth-module': webauthnAuthModuleCmd,
+  'namespace-module': namespaceModuleCmd,
   'compute-log-module': computeLogModuleCmd,
   'inference-log-module': inferenceLogModuleCmd,
   'storage-log-module': storageLogModuleCmd,
   'transfer-log-module': transferLogModuleCmd,
+  'plans-module': plansModuleCmd,
   'db-usage-module': dbUsageModuleCmd,
   'notifications-module': notificationsModuleCmd,
-  'plans-module': plansModuleCmd,
-  'hierarchy-module': hierarchyModuleCmd,
-  'billing-module': billingModuleCmd,
   'billing-provider-module': billingProviderModuleCmd,
+  'function-module': functionModuleCmd,
+  'hierarchy-module': hierarchyModuleCmd,
   'profiles-module': profilesModuleCmd,
   'permissions-module': permissionsModuleCmd,
+  'billing-module': billingModuleCmd,
   'relation-provision': relationProvisionCmd,
-  'function-module': functionModuleCmd,
   'user-auth-module': userAuthModuleCmd,
   'agent-module': agentModuleCmd,
   'limits-module': limitsModuleCmd,
   'memberships-module': membershipsModuleCmd,
   'storage-module': storageModuleCmd,
-  'events-module': eventsModuleCmd,
   'entity-type-provision': entityTypeProvisionCmd,
+  'events-module': eventsModuleCmd,
   'resolve-blueprint-field': resolveBlueprintFieldCmd,
   'resolve-blueprint-table': resolveBlueprintTableCmd,
   'construct-blueprint': constructBlueprintCmd,
@@ -154,7 +154,7 @@ const createCommandMap: () => Record<
   'provision-bucket': provisionBucketCmd,
 });
 const usage =
-  "\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  default-ids-module   defaultIdsModule CRUD operations\n  membership-types-module membershipTypesModule CRUD operations\n  user-state-module    userStateModule CRUD operations\n  session-secrets-module sessionSecretsModule CRUD operations\n  config-secrets-org-module configSecretsOrgModule CRUD operations\n  devices-module       devicesModule CRUD operations\n  i-18-n-module        i18NModule CRUD operations\n  user-credentials-module userCredentialsModule CRUD operations\n  user-settings-module userSettingsModule CRUD operations\n  config-secrets-user-module configSecretsUserModule CRUD operations\n  connected-accounts-module connectedAccountsModule CRUD operations\n  emails-module        emailsModule CRUD operations\n  phone-numbers-module phoneNumbersModule CRUD operations\n  rate-limits-module   rateLimitsModule CRUD operations\n  users-module         usersModule CRUD operations\n  webauthn-credentials-module webauthnCredentialsModule CRUD operations\n  crypto-addresses-module cryptoAddressesModule CRUD operations\n  identity-providers-module identityProvidersModule CRUD operations\n  denormalized-table-field denormalizedTableField CRUD operations\n  rls-module           rlsModule CRUD operations\n  blueprint            blueprint CRUD operations\n  blueprint-template   blueprintTemplate CRUD operations\n  blueprint-construction blueprintConstruction CRUD operations\n  crypto-auth-module   cryptoAuthModule CRUD operations\n  rate-limit-meters-module rateLimitMetersModule CRUD operations\n  sessions-module      sessionsModule CRUD operations\n  config-secrets-module configSecretsModule CRUD operations\n  merkle-store-module  merkleStoreModule CRUD operations\n  graph-module         graphModule CRUD operations\n  secure-table-provision secureTableProvision CRUD operations\n  invites-module       invitesModule CRUD operations\n  database-provision-module databaseProvisionModule CRUD operations\n  namespace-module     namespaceModule CRUD operations\n  realtime-module      realtimeModule CRUD operations\n  webauthn-auth-module webauthnAuthModule CRUD operations\n  compute-log-module   computeLogModule CRUD operations\n  inference-log-module inferenceLogModule CRUD operations\n  storage-log-module   storageLogModule CRUD operations\n  transfer-log-module  transferLogModule CRUD operations\n  db-usage-module      dbUsageModule CRUD operations\n  notifications-module notificationsModule CRUD operations\n  plans-module         plansModule CRUD operations\n  hierarchy-module     hierarchyModule CRUD operations\n  billing-module       billingModule CRUD operations\n  billing-provider-module billingProviderModule CRUD operations\n  profiles-module      profilesModule CRUD operations\n  permissions-module   permissionsModule CRUD operations\n  relation-provision   relationProvision CRUD operations\n  function-module      functionModule CRUD operations\n  user-auth-module     userAuthModule CRUD operations\n  agent-module         agentModule CRUD operations\n  limits-module        limitsModule CRUD operations\n  memberships-module   membershipsModule CRUD operations\n  storage-module       storageModule CRUD operations\n  events-module        eventsModule CRUD operations\n  entity-type-provision entityTypeProvision CRUD operations\n  resolve-blueprint-field Resolves a field_name within a given table_id to a field_id. Throws if no match is found. Used by construct_blueprint to translate user-authored field names (e.g. \"location\") into field UUIDs for downstream provisioning procedures. table_id must already be resolved (via resolve_blueprint_table) before calling this.\n  resolve-blueprint-table Resolves a table_name (with optional schema_name) to a table_id. Resolution order: (1) if schema_name provided, exact lookup via metaschema_public.schema.name + metaschema_public.table; (2) check local table_map (tables created in current blueprint); (3) search metaschema_public.table by name across all schemas; (4) if multiple matches, throw ambiguous error asking for schema_name; (5) if no match, throw not-found error.\n  construct-blueprint  Executes a blueprint definition by delegating to provision_* procedures. Creates a blueprint_construction record to track the attempt. Eight phases: (0) entity_type_provision for each membership_type entry \u2014 provisions entity tables, membership modules, and security. When a prefix already exists (e.g., 'org'), the entry extends the existing entity type instead of creating a new one; if a storage[] key is present, it provisions entity-scoped storage for that type. (0.5) scope-based storage: each storage[] entry has an optional scope ('app' or 'org' only). App-scoped storage seeds buckets at migration time. Org-scoped storage resolves the org membership type, creates org_buckets/org_files with owner_id, and seeds buckets per-entity via an AFTER INSERT trigger on the users table. When function_module is installed, a private functions bucket is auto-injected into org-scoped or entity-scoped storage entries. (1) provision_table() for each table with nodes[], fields[], policies[], and grants (table-level indexes/fts/unique_constraints/check_constraints are deferred). After provisioning, optional smart_tags (jsonb object) on the table entry are applied via metaschema.append_table_smart_tags(), and optional smart_tags on individual field entries are applied via metaschema.append_field_smart_tags(). (2) provision_relation() for each relation, (3) provision_index() for top-level + deferred indexes, (4) provision_full_text_search() for top-level + deferred FTS, (5) provision_unique_constraint() for top-level + deferred unique constraints, (6) provision_check_constraint() for top-level + deferred check constraints, (7) seed achievements from definition.achievements[] \u2014 resolves events_module by entity_prefix and creates INSERT actions for levels, level_requirements, and achievement_rewards tables. Phase 0 entity tables are added to the table_map so subsequent phases can reference them by name. Table-level entries are deferred to phases 3-6 so they can reference columns created by relations in phase 2. Returns the construction record ID on success, NULL on failure.\n  provision-full-text-search Creates a full-text search configuration on a table. Accepts a jsonb definition with field (tsvector column name) and sources (array of {field, weight, lang}). Graceful: skips if FTS config already exists for the same (table_id, field_id). Returns the fts_id.\n  provision-index      Creates an index on a table. Accepts a jsonb definition with columns (array of names or single column string), access_method (default BTREE), is_unique, op_classes, options, and name (auto-generated if omitted). Graceful: skips if an index with the same (table_id, field_ids, access_method) already exists. Returns the index_id.\n  provision-check-constraint Creates a check constraint on a table from a $type + data blueprint definition. Supports: CheckOneOf (enum validation via = ANY(ARRAY[...])), CheckGreaterThan (single-column > value or cross-column), CheckLessThan (single-column < value or cross-column), CheckNotEqual (cross-column inequality). Builds AST expressions via ast_helpers and inserts into metaschema_public.check_constraint. Graceful: skips if a constraint with the same name already exists.\n  provision-unique-constraint Creates a unique constraint on a table. Accepts a jsonb definition with columns (array of field names). Graceful: skips if the exact same unique constraint already exists.\n  copy-template-to-blueprint Creates a new blueprint by copying a template definition. Checks visibility: owners can always copy their own templates, others require public visibility. Increments the template copy_count. Returns the new blueprint ID.\n  provision-spatial-relation Idempotent provisioner for metaschema_public.spatial_relation. Inserts a row declaring a spatial predicate between two geometry/geography columns (owner and target). Called from construct_blueprint when a relation entry has $type=RelationSpatial. Graceful: re-running with the same (source_table_id, name) returns the existing id without modifying the row. Operator whitelist and st_dwithin \u2194 param_name pairing are enforced by the spatial_relation table CHECKs. Both fields must already exist \u2014 this is a metadata-only insert.\n  provision-table      Composable table provisioning: creates or finds a table, then creates fields (so Data* modules can reference them), applies N nodes (Data* modules), enables RLS, creates grants, creates N policies, and optionally creates table-level indexes/full_text_searches/unique_constraints. All operations are graceful (skip existing). Accepts multiple nodes and multiple policies per call, unlike secure_table_provision which is limited to one of each. Returns (out_table_id, out_fields).\n  provision-relation   Composable relation provisioning: creates FK fields, indexes, unique constraints, and junction tables depending on the relation_type. Supports RelationBelongsTo, RelationHasOne, RelationHasMany, and RelationManyToMany. ManyToMany uses provision_table() internally for junction table creation with full node/grant/policy support. All operations are graceful (skip existing). Returns (out_field_id, out_junction_table_id, out_source_field_id, out_target_field_id).\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n";
+  "\ncsdk <command>\n\nCommands:\n  context               Manage API contexts\n  auth                  Manage authentication\n  default-ids-module   defaultIdsModule CRUD operations\n  membership-types-module membershipTypesModule CRUD operations\n  user-state-module    userStateModule CRUD operations\n  session-secrets-module sessionSecretsModule CRUD operations\n  config-secrets-org-module configSecretsOrgModule CRUD operations\n  devices-module       devicesModule CRUD operations\n  i-18-n-module        i18NModule CRUD operations\n  user-credentials-module userCredentialsModule CRUD operations\n  user-settings-module userSettingsModule CRUD operations\n  config-secrets-user-module configSecretsUserModule CRUD operations\n  connected-accounts-module connectedAccountsModule CRUD operations\n  emails-module        emailsModule CRUD operations\n  phone-numbers-module phoneNumbersModule CRUD operations\n  rate-limits-module   rateLimitsModule CRUD operations\n  users-module         usersModule CRUD operations\n  webauthn-credentials-module webauthnCredentialsModule CRUD operations\n  crypto-addresses-module cryptoAddressesModule CRUD operations\n  identity-providers-module identityProvidersModule CRUD operations\n  denormalized-table-field denormalizedTableField CRUD operations\n  rls-module           rlsModule CRUD operations\n  blueprint            blueprint CRUD operations\n  blueprint-template   blueprintTemplate CRUD operations\n  blueprint-construction blueprintConstruction CRUD operations\n  crypto-auth-module   cryptoAuthModule CRUD operations\n  sessions-module      sessionsModule CRUD operations\n  config-secrets-module configSecretsModule CRUD operations\n  merkle-store-module  merkleStoreModule CRUD operations\n  graph-module         graphModule CRUD operations\n  secure-table-provision secureTableProvision CRUD operations\n  rate-limit-meters-module rateLimitMetersModule CRUD operations\n  invites-module       invitesModule CRUD operations\n  database-provision-module databaseProvisionModule CRUD operations\n  realtime-module      realtimeModule CRUD operations\n  webauthn-auth-module webauthnAuthModule CRUD operations\n  namespace-module     namespaceModule CRUD operations\n  compute-log-module   computeLogModule CRUD operations\n  inference-log-module inferenceLogModule CRUD operations\n  storage-log-module   storageLogModule CRUD operations\n  transfer-log-module  transferLogModule CRUD operations\n  plans-module         plansModule CRUD operations\n  db-usage-module      dbUsageModule CRUD operations\n  notifications-module notificationsModule CRUD operations\n  billing-provider-module billingProviderModule CRUD operations\n  function-module      functionModule CRUD operations\n  hierarchy-module     hierarchyModule CRUD operations\n  profiles-module      profilesModule CRUD operations\n  permissions-module   permissionsModule CRUD operations\n  billing-module       billingModule CRUD operations\n  relation-provision   relationProvision CRUD operations\n  user-auth-module     userAuthModule CRUD operations\n  agent-module         agentModule CRUD operations\n  limits-module        limitsModule CRUD operations\n  memberships-module   membershipsModule CRUD operations\n  storage-module       storageModule CRUD operations\n  entity-type-provision entityTypeProvision CRUD operations\n  events-module        eventsModule CRUD operations\n  resolve-blueprint-field Resolves a field_name within a given table_id to a field_id. Throws if no match is found. Used by construct_blueprint to translate user-authored field names (e.g. \"location\") into field UUIDs for downstream provisioning procedures. table_id must already be resolved (via resolve_blueprint_table) before calling this.\n  resolve-blueprint-table Resolves a table_name (with optional schema_name) to a table_id. Resolution order: (1) if schema_name provided, exact lookup via metaschema_public.schema.name + metaschema_public.table; (2) check local table_map (tables created in current blueprint); (3) search metaschema_public.table by name across all schemas; (4) if multiple matches, throw ambiguous error asking for schema_name; (5) if no match, throw not-found error.\n  construct-blueprint  Executes a blueprint definition by delegating to provision_* procedures. Creates a blueprint_construction record to track the attempt. Eight phases: (0) entity_type_provision for each membership_type entry \u2014 provisions entity tables, membership modules, and security. When a prefix already exists (e.g., 'org'), the entry extends the existing entity type instead of creating a new one; if a storage[] key is present, it provisions entity-scoped storage for that type. (0.5) scope-based storage: each storage[] entry has an optional scope ('app' or 'org' only). App-scoped storage seeds buckets at migration time. Org-scoped storage resolves the org membership type, creates org_buckets/org_files with owner_id, and seeds buckets per-entity via an AFTER INSERT trigger on the users table. When function_module is installed, a private functions bucket is auto-injected into org-scoped or entity-scoped storage entries. (1) provision_table() for each table with nodes[], fields[], policies[], and grants (table-level indexes/fts/unique_constraints/check_constraints are deferred). After provisioning, optional smart_tags (jsonb object) on the table entry are applied via metaschema.append_table_smart_tags(), and optional smart_tags on individual field entries are applied via metaschema.append_field_smart_tags(). (2) provision_relation() for each relation, (3) provision_index() for top-level + deferred indexes, (4) provision_full_text_search() for top-level + deferred FTS, (5) provision_unique_constraint() for top-level + deferred unique constraints, (6) provision_check_constraint() for top-level + deferred check constraints, (7) seed achievements from definition.achievements[] \u2014 resolves events_module by entity_prefix and creates INSERT actions for levels, level_requirements, and achievement_rewards tables. Phase 0 entity tables are added to the table_map so subsequent phases can reference them by name. Table-level entries are deferred to phases 3-6 so they can reference columns created by relations in phase 2. Returns the construction record ID on success, NULL on failure.\n  provision-full-text-search Creates a full-text search configuration on a table. Accepts a jsonb definition with field (tsvector column name) and sources (array of {field, weight, lang}). Graceful: skips if FTS config already exists for the same (table_id, field_id). Returns the fts_id.\n  provision-index      Creates an index on a table. Accepts a jsonb definition with columns (array of names or single column string), access_method (default BTREE), is_unique, op_classes, options, and name (auto-generated if omitted). Graceful: skips if an index with the same (table_id, field_ids, access_method) already exists. Returns the index_id.\n  provision-check-constraint Creates a check constraint on a table from a $type + data blueprint definition. Supports: CheckOneOf (enum validation via = ANY(ARRAY[...])), CheckGreaterThan (single-column > value or cross-column), CheckLessThan (single-column < value or cross-column), CheckNotEqual (cross-column inequality). Builds AST expressions via ast_helpers and inserts into metaschema_public.check_constraint. Graceful: skips if a constraint with the same name already exists.\n  provision-unique-constraint Creates a unique constraint on a table. Accepts a jsonb definition with columns (array of field names). Graceful: skips if the exact same unique constraint already exists.\n  copy-template-to-blueprint Creates a new blueprint by copying a template definition. Checks visibility: owners can always copy their own templates, others require public visibility. Increments the template copy_count. Returns the new blueprint ID.\n  provision-spatial-relation Idempotent provisioner for metaschema_public.spatial_relation. Inserts a row declaring a spatial predicate between two geometry/geography columns (owner and target). Called from construct_blueprint when a relation entry has $type=RelationSpatial. Graceful: re-running with the same (source_table_id, name) returns the existing id without modifying the row. Operator whitelist and st_dwithin \u2194 param_name pairing are enforced by the spatial_relation table CHECKs. Both fields must already exist \u2014 this is a metadata-only insert.\n  provision-table      Composable table provisioning: creates or finds a table, then creates fields (so Data* modules can reference them), applies N nodes (Data* modules), enables RLS, creates grants, creates N policies, and optionally creates table-level indexes/full_text_searches/unique_constraints. All operations are graceful (skip existing). Accepts multiple nodes and multiple policies per call, unlike secure_table_provision which is limited to one of each. Returns (out_table_id, out_fields).\n  provision-relation   Composable relation provisioning: creates FK fields, indexes, unique constraints, and junction tables depending on the relation_type. Supports RelationBelongsTo, RelationHasOne, RelationHasMany, and RelationManyToMany. ManyToMany uses provision_table() internally for junction table creation with full node/grant/policy support. All operations are graceful (skip existing). Returns (out_field_id, out_junction_table_id, out_source_field_id, out_target_field_id).\n  provision-bucket     Provision an S3 bucket for a logical bucket in the database.\nReads the bucket config via RLS, then creates and configures\nthe S3 bucket with the appropriate privacy policies, CORS rules,\nand lifecycle settings.\n\n  --help, -h            Show this help message\n  --version, -v         Show version\n";
 export const commands = async (
   argv: Partial<Record<string, unknown>>,
   prompter: Inquirerer,
diff --git a/sdk/constructive-cli/src/modules/cli/commands/agent-module.ts b/sdk/constructive-cli/src/modules/cli/commands/agent-module.ts
index a8bff2628..c684c86fa 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/agent-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/agent-module.ts
@@ -39,6 +39,7 @@ const fieldSchema: FieldSchema = {
   hasPlans: 'boolean',
   hasResources: 'boolean',
   hasAgents: 'boolean',
+  shared: 'boolean',
   apiName: 'string',
   privateApiName: 'string',
   scope: 'string',
@@ -47,6 +48,7 @@ const fieldSchema: FieldSchema = {
   policies: 'json',
   resources: 'json',
   provisions: 'json',
+  defaultPermissions: 'string',
 };
 const usage =
   '\nagent-module <command>\n\nCommands:\n  list                  List agentModule records\n  find-first            Find first matching agentModule record\n  get                   Get a agentModule by ID\n  create                Create a new agentModule\n  update                Update an existing agentModule\n  delete                Delete a agentModule\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
@@ -122,6 +124,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       hasPlans: true,
       hasResources: true,
       hasAgents: true,
+      shared: true,
       apiName: true,
       privateApiName: true,
       scope: true,
@@ -130,6 +133,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       policies: true,
       resources: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findManyArgs = parseFindManyArgs<
       FindManyArgs<AgentModuleSelect, AgentModuleFilter, AgentModuleOrderBy> & {
@@ -173,6 +177,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       hasPlans: true,
       hasResources: true,
       hasAgents: true,
+      shared: true,
       apiName: true,
       privateApiName: true,
       scope: true,
@@ -181,6 +186,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       policies: true,
       resources: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findFirstArgs = parseFindFirstArgs<
       FindFirstArgs<AgentModuleSelect, AgentModuleFilter, AgentModuleOrderBy> & {
@@ -236,6 +242,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           hasPlans: true,
           hasResources: true,
           hasAgents: true,
+          shared: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -244,6 +251,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           policies: true,
           resources: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -412,6 +420,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'boolean',
+        name: 'shared',
+        message: 'shared',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -468,6 +483,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -500,6 +522,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasPlans: cleanedData.hasPlans,
           hasResources: cleanedData.hasResources,
           hasAgents: cleanedData.hasAgents,
+          shared: cleanedData.shared,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
           scope: cleanedData.scope,
@@ -508,6 +531,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           policies: cleanedData.policies,
           resources: cleanedData.resources,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -533,6 +557,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasPlans: true,
           hasResources: true,
           hasAgents: true,
+          shared: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -541,6 +566,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           policies: true,
           resources: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -715,6 +741,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'boolean',
+        name: 'shared',
+        message: 'shared',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -771,6 +804,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as AgentModulePatch;
@@ -803,6 +843,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasPlans: cleanedData.hasPlans,
           hasResources: cleanedData.hasResources,
           hasAgents: cleanedData.hasAgents,
+          shared: cleanedData.shared,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
           scope: cleanedData.scope,
@@ -811,6 +852,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           policies: cleanedData.policies,
           resources: cleanedData.resources,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -836,6 +878,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasPlans: true,
           hasResources: true,
           hasAgents: true,
+          shared: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -844,6 +887,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           policies: true,
           resources: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
diff --git a/sdk/constructive-cli/src/modules/cli/commands/billing-module.ts b/sdk/constructive-cli/src/modules/cli/commands/billing-module.ts
index afc9c1e66..f68a0a529 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/billing-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/billing-module.ts
@@ -36,6 +36,7 @@ const fieldSchema: FieldSchema = {
   meterDefaultsTableName: 'string',
   recordUsageFunction: 'string',
   prefix: 'string',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -110,6 +111,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       meterDefaultsTableName: true,
       recordUsageFunction: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -152,6 +154,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       meterDefaultsTableName: true,
       recordUsageFunction: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -206,6 +209,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           meterDefaultsTableName: true,
           recordUsageFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -355,6 +359,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -398,6 +409,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           meterDefaultsTableName: cleanedData.meterDefaultsTableName,
           recordUsageFunction: cleanedData.recordUsageFunction,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -422,6 +434,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           meterDefaultsTableName: true,
           recordUsageFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -577,6 +590,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -620,6 +640,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           meterDefaultsTableName: cleanedData.meterDefaultsTableName,
           recordUsageFunction: cleanedData.recordUsageFunction,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -644,6 +665,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           meterDefaultsTableName: true,
           recordUsageFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/db-usage-module.ts b/sdk/constructive-cli/src/modules/cli/commands/db-usage-module.ts
index c20430eb8..5533d618d 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/db-usage-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/db-usage-module.ts
@@ -33,6 +33,7 @@ const fieldSchema: FieldSchema = {
   premake: 'int',
   scope: 'string',
   prefix: 'string',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -104,6 +105,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       premake: true,
       scope: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -143,6 +145,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       premake: true,
       scope: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -194,6 +197,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           premake: true,
           scope: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -322,6 +326,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -362,6 +373,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           premake: cleanedData.premake,
           scope: cleanedData.scope,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -383,6 +395,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           premake: true,
           scope: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -517,6 +530,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -557,6 +577,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           premake: cleanedData.premake,
           scope: cleanedData.scope,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -578,6 +599,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           premake: true,
           scope: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/entity-type-provision.ts b/sdk/constructive-cli/src/modules/cli/commands/entity-type-provision.ts
index b7c806ea4..db10301c2 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/entity-type-provision.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/entity-type-provision.ts
@@ -53,8 +53,6 @@ const fieldSchema: FieldSchema = {
   outInvocationsTableId: 'uuid',
   outExecutionLogsTableId: 'uuid',
   outSecretDefinitionsTableId: 'uuid',
-  outRequirementsTableId: 'uuid',
-  outConfigRequirementsTableId: 'uuid',
   outGraphModuleId: 'uuid',
   outGraphsTableId: 'uuid',
   outAgentModuleId: 'uuid',
@@ -147,8 +145,6 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       outInvocationsTableId: true,
       outExecutionLogsTableId: true,
       outSecretDefinitionsTableId: true,
-      outRequirementsTableId: true,
-      outConfigRequirementsTableId: true,
       outGraphModuleId: true,
       outGraphsTableId: true,
       outAgentModuleId: true,
@@ -213,8 +209,6 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       outInvocationsTableId: true,
       outExecutionLogsTableId: true,
       outSecretDefinitionsTableId: true,
-      outRequirementsTableId: true,
-      outConfigRequirementsTableId: true,
       outGraphModuleId: true,
       outGraphsTableId: true,
       outAgentModuleId: true,
@@ -291,8 +285,6 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           outInvocationsTableId: true,
           outExecutionLogsTableId: true,
           outSecretDefinitionsTableId: true,
-          outRequirementsTableId: true,
-          outConfigRequirementsTableId: true,
           outGraphModuleId: true,
           outGraphsTableId: true,
           outAgentModuleId: true,
@@ -560,20 +552,6 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'outRequirementsTableId',
-        message: 'outRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'outConfigRequirementsTableId',
-        message: 'outConfigRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'outGraphModuleId',
@@ -641,8 +619,6 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           outInvocationsTableId: cleanedData.outInvocationsTableId,
           outExecutionLogsTableId: cleanedData.outExecutionLogsTableId,
           outSecretDefinitionsTableId: cleanedData.outSecretDefinitionsTableId,
-          outRequirementsTableId: cleanedData.outRequirementsTableId,
-          outConfigRequirementsTableId: cleanedData.outConfigRequirementsTableId,
           outGraphModuleId: cleanedData.outGraphModuleId,
           outGraphsTableId: cleanedData.outGraphsTableId,
           outAgentModuleId: cleanedData.outAgentModuleId,
@@ -685,8 +661,6 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           outInvocationsTableId: true,
           outExecutionLogsTableId: true,
           outSecretDefinitionsTableId: true,
-          outRequirementsTableId: true,
-          outConfigRequirementsTableId: true,
           outGraphModuleId: true,
           outGraphsTableId: true,
           outAgentModuleId: true,
@@ -960,20 +934,6 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'outRequirementsTableId',
-        message: 'outRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'outConfigRequirementsTableId',
-        message: 'outConfigRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'outGraphModuleId',
@@ -1041,8 +1001,6 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           outInvocationsTableId: cleanedData.outInvocationsTableId,
           outExecutionLogsTableId: cleanedData.outExecutionLogsTableId,
           outSecretDefinitionsTableId: cleanedData.outSecretDefinitionsTableId,
-          outRequirementsTableId: cleanedData.outRequirementsTableId,
-          outConfigRequirementsTableId: cleanedData.outConfigRequirementsTableId,
           outGraphModuleId: cleanedData.outGraphModuleId,
           outGraphsTableId: cleanedData.outGraphsTableId,
           outAgentModuleId: cleanedData.outAgentModuleId,
@@ -1085,8 +1043,6 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           outInvocationsTableId: true,
           outExecutionLogsTableId: true,
           outSecretDefinitionsTableId: true,
-          outRequirementsTableId: true,
-          outConfigRequirementsTableId: true,
           outGraphModuleId: true,
           outGraphsTableId: true,
           outAgentModuleId: true,
diff --git a/sdk/constructive-cli/src/modules/cli/commands/events-module.ts b/sdk/constructive-cli/src/modules/cli/commands/events-module.ts
index 3d4852816..00392950c 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/events-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/events-module.ts
@@ -55,6 +55,7 @@ const fieldSchema: FieldSchema = {
   prefix: 'string',
   entityTableId: 'uuid',
   actorTableId: 'uuid',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -148,6 +149,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       prefix: true,
       entityTableId: true,
       actorTableId: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -209,6 +211,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       prefix: true,
       entityTableId: true,
       actorTableId: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -282,6 +285,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           prefix: true,
           entityTableId: true,
           actorTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -564,6 +568,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -626,6 +637,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           prefix: cleanedData.prefix,
           entityTableId: cleanedData.entityTableId,
           actorTableId: cleanedData.actorTableId,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -669,6 +681,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           prefix: true,
           entityTableId: true,
           actorTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -957,6 +970,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -1019,6 +1039,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           prefix: cleanedData.prefix,
           entityTableId: cleanedData.entityTableId,
           actorTableId: cleanedData.actorTableId,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -1062,6 +1083,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           prefix: true,
           entityTableId: true,
           actorTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/function-module.ts b/sdk/constructive-cli/src/modules/cli/commands/function-module.ts
index bd4969b34..52e441512 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/function-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/function-module.ts
@@ -26,15 +26,10 @@ const fieldSchema: FieldSchema = {
   invocationsTableId: 'uuid',
   executionLogsTableId: 'uuid',
   secretDefinitionsTableId: 'uuid',
-  requirementsTableId: 'uuid',
-  configDefinitionsTableId: 'uuid',
-  configRequirementsTableId: 'uuid',
   definitionsTableName: 'string',
   invocationsTableName: 'string',
   executionLogsTableName: 'string',
   secretDefinitionsTableName: 'string',
-  requirementsTableName: 'string',
-  configRequirementsTableName: 'string',
   apiName: 'string',
   privateApiName: 'string',
   scope: 'string',
@@ -42,6 +37,7 @@ const fieldSchema: FieldSchema = {
   entityTableId: 'uuid',
   policies: 'json',
   provisions: 'json',
+  defaultPermissions: 'string',
 };
 const usage =
   '\nfunction-module <command>\n\nCommands:\n  list                  List functionModule records\n  find-first            Find first matching functionModule record\n  get                   Get a functionModule by ID\n  create                Create a new functionModule\n  update                Update an existing functionModule\n  delete                Delete a functionModule\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
@@ -104,15 +100,10 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       invocationsTableId: true,
       executionLogsTableId: true,
       secretDefinitionsTableId: true,
-      requirementsTableId: true,
-      configDefinitionsTableId: true,
-      configRequirementsTableId: true,
       definitionsTableName: true,
       invocationsTableName: true,
       executionLogsTableName: true,
       secretDefinitionsTableName: true,
-      requirementsTableName: true,
-      configRequirementsTableName: true,
       apiName: true,
       privateApiName: true,
       scope: true,
@@ -120,6 +111,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findManyArgs = parseFindManyArgs<
       FindManyArgs<FunctionModuleSelect, FunctionModuleFilter, FunctionModuleOrderBy> & {
@@ -150,15 +142,10 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       invocationsTableId: true,
       executionLogsTableId: true,
       secretDefinitionsTableId: true,
-      requirementsTableId: true,
-      configDefinitionsTableId: true,
-      configRequirementsTableId: true,
       definitionsTableName: true,
       invocationsTableName: true,
       executionLogsTableName: true,
       secretDefinitionsTableName: true,
-      requirementsTableName: true,
-      configRequirementsTableName: true,
       apiName: true,
       privateApiName: true,
       scope: true,
@@ -166,6 +153,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findFirstArgs = parseFindFirstArgs<
       FindFirstArgs<FunctionModuleSelect, FunctionModuleFilter, FunctionModuleOrderBy> & {
@@ -208,15 +196,10 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           invocationsTableId: true,
           executionLogsTableId: true,
           secretDefinitionsTableId: true,
-          requirementsTableId: true,
-          configDefinitionsTableId: true,
-          configRequirementsTableId: true,
           definitionsTableName: true,
           invocationsTableName: true,
           executionLogsTableName: true,
           secretDefinitionsTableName: true,
-          requirementsTableName: true,
-          configRequirementsTableName: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -224,6 +207,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -301,27 +285,6 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'requirementsTableId',
-        message: 'requirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configDefinitionsTableId',
-        message: 'configDefinitionsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configRequirementsTableId',
-        message: 'configRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'definitionsTableName',
@@ -350,20 +313,6 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'requirementsTableName',
-        message: 'requirementsTableName',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configRequirementsTableName',
-        message: 'configRequirementsTableName',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'apiName',
@@ -413,6 +362,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -432,15 +388,10 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           invocationsTableId: cleanedData.invocationsTableId,
           executionLogsTableId: cleanedData.executionLogsTableId,
           secretDefinitionsTableId: cleanedData.secretDefinitionsTableId,
-          requirementsTableId: cleanedData.requirementsTableId,
-          configDefinitionsTableId: cleanedData.configDefinitionsTableId,
-          configRequirementsTableId: cleanedData.configRequirementsTableId,
           definitionsTableName: cleanedData.definitionsTableName,
           invocationsTableName: cleanedData.invocationsTableName,
           executionLogsTableName: cleanedData.executionLogsTableName,
           secretDefinitionsTableName: cleanedData.secretDefinitionsTableName,
-          requirementsTableName: cleanedData.requirementsTableName,
-          configRequirementsTableName: cleanedData.configRequirementsTableName,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
           scope: cleanedData.scope,
@@ -448,6 +399,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -460,15 +412,10 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           invocationsTableId: true,
           executionLogsTableId: true,
           secretDefinitionsTableId: true,
-          requirementsTableId: true,
-          configDefinitionsTableId: true,
-          configRequirementsTableId: true,
           definitionsTableName: true,
           invocationsTableName: true,
           executionLogsTableName: true,
           secretDefinitionsTableName: true,
-          requirementsTableName: true,
-          configRequirementsTableName: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -476,6 +423,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -559,27 +507,6 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'requirementsTableId',
-        message: 'requirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configDefinitionsTableId',
-        message: 'configDefinitionsTableId',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configRequirementsTableId',
-        message: 'configRequirementsTableId',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'definitionsTableName',
@@ -608,20 +535,6 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
-      {
-        type: 'text',
-        name: 'requirementsTableName',
-        message: 'requirementsTableName',
-        required: false,
-        skipPrompt: true,
-      },
-      {
-        type: 'text',
-        name: 'configRequirementsTableName',
-        message: 'configRequirementsTableName',
-        required: false,
-        skipPrompt: true,
-      },
       {
         type: 'text',
         name: 'apiName',
@@ -671,6 +584,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as FunctionModulePatch;
@@ -690,15 +610,10 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           invocationsTableId: cleanedData.invocationsTableId,
           executionLogsTableId: cleanedData.executionLogsTableId,
           secretDefinitionsTableId: cleanedData.secretDefinitionsTableId,
-          requirementsTableId: cleanedData.requirementsTableId,
-          configDefinitionsTableId: cleanedData.configDefinitionsTableId,
-          configRequirementsTableId: cleanedData.configRequirementsTableId,
           definitionsTableName: cleanedData.definitionsTableName,
           invocationsTableName: cleanedData.invocationsTableName,
           executionLogsTableName: cleanedData.executionLogsTableName,
           secretDefinitionsTableName: cleanedData.secretDefinitionsTableName,
-          requirementsTableName: cleanedData.requirementsTableName,
-          configRequirementsTableName: cleanedData.configRequirementsTableName,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
           scope: cleanedData.scope,
@@ -706,6 +621,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -718,15 +634,10 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           invocationsTableId: true,
           executionLogsTableId: true,
           secretDefinitionsTableId: true,
-          requirementsTableId: true,
-          configDefinitionsTableId: true,
-          configRequirementsTableId: true,
           definitionsTableName: true,
           invocationsTableName: true,
           executionLogsTableName: true,
           secretDefinitionsTableName: true,
-          requirementsTableName: true,
-          configRequirementsTableName: true,
           apiName: true,
           privateApiName: true,
           scope: true,
@@ -734,6 +645,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
diff --git a/sdk/constructive-cli/src/modules/cli/commands/graph-module.ts b/sdk/constructive-cli/src/modules/cli/commands/graph-module.ts
index 542beafbf..a08293a72 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/graph-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/graph-module.ts
@@ -33,6 +33,7 @@ const fieldSchema: FieldSchema = {
   entityTableId: 'uuid',
   policies: 'json',
   provisions: 'json',
+  defaultPermissions: 'string',
   createdAt: 'string',
 };
 const usage =
@@ -103,6 +104,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
       createdAt: true,
     };
     const findManyArgs = parseFindManyArgs<
@@ -141,6 +143,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
       createdAt: true,
     };
     const findFirstArgs = parseFindFirstArgs<
@@ -191,6 +194,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
@@ -317,6 +321,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -343,6 +354,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -362,6 +374,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
@@ -494,6 +507,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as GraphModulePatch;
@@ -520,6 +540,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -539,6 +560,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
diff --git a/sdk/constructive-cli/src/modules/cli/commands/hierarchy-module.ts b/sdk/constructive-cli/src/modules/cli/commands/hierarchy-module.ts
index e82465d05..c3487890d 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/hierarchy-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/hierarchy-module.ts
@@ -36,6 +36,7 @@ const fieldSchema: FieldSchema = {
   getSubordinatesFunction: 'string',
   getManagersFunction: 'string',
   isManagerOfFunction: 'string',
+  defaultPermissions: 'string',
   createdAt: 'string',
 };
 const usage =
@@ -109,6 +110,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       getSubordinatesFunction: true,
       getManagersFunction: true,
       isManagerOfFunction: true,
+      defaultPermissions: true,
       createdAt: true,
     };
     const findManyArgs = parseFindManyArgs<
@@ -150,6 +152,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       getSubordinatesFunction: true,
       getManagersFunction: true,
       isManagerOfFunction: true,
+      defaultPermissions: true,
       createdAt: true,
     };
     const findFirstArgs = parseFindFirstArgs<
@@ -203,6 +206,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           getSubordinatesFunction: true,
           getManagersFunction: true,
           isManagerOfFunction: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
@@ -349,6 +353,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -378,6 +389,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           getSubordinatesFunction: cleanedData.getSubordinatesFunction,
           getManagersFunction: cleanedData.getManagersFunction,
           isManagerOfFunction: cleanedData.isManagerOfFunction,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -400,6 +412,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           getSubordinatesFunction: true,
           getManagersFunction: true,
           isManagerOfFunction: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
@@ -552,6 +565,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as HierarchyModulePatch;
@@ -581,6 +601,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           getSubordinatesFunction: cleanedData.getSubordinatesFunction,
           getManagersFunction: cleanedData.getManagersFunction,
           isManagerOfFunction: cleanedData.isManagerOfFunction,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -603,6 +624,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           getSubordinatesFunction: true,
           getManagersFunction: true,
           isManagerOfFunction: true,
+          defaultPermissions: true,
           createdAt: true,
         },
       })
diff --git a/sdk/constructive-cli/src/modules/cli/commands/memberships-module.ts b/sdk/constructive-cli/src/modules/cli/commands/memberships-module.ts
index 66e048dc4..43479e540 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/memberships-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/memberships-module.ts
@@ -51,6 +51,8 @@ const fieldSchema: FieldSchema = {
   entityIdsByPerm: 'string',
   entityIdsFunction: 'string',
   memberProfilesTableId: 'uuid',
+  permissionDefaultPermissionsTableId: 'uuid',
+  permissionDefaultGrantsTableId: 'uuid',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -140,6 +142,8 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       entityIdsByPerm: true,
       entityIdsFunction: true,
       memberProfilesTableId: true,
+      permissionDefaultPermissionsTableId: true,
+      permissionDefaultGrantsTableId: true,
       apiName: true,
       privateApiName: true,
     };
@@ -197,6 +201,8 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       entityIdsByPerm: true,
       entityIdsFunction: true,
       memberProfilesTableId: true,
+      permissionDefaultPermissionsTableId: true,
+      permissionDefaultGrantsTableId: true,
       apiName: true,
       privateApiName: true,
     };
@@ -266,6 +272,8 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           entityIdsByPerm: true,
           entityIdsFunction: true,
           memberProfilesTableId: true,
+          permissionDefaultPermissionsTableId: true,
+          permissionDefaultGrantsTableId: true,
           apiName: true,
           privateApiName: true,
         },
@@ -520,6 +528,20 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'permissionDefaultPermissionsTableId',
+        message: 'permissionDefaultPermissionsTableId',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionDefaultGrantsTableId',
+        message: 'permissionDefaultGrantsTableId',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -578,6 +600,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityIdsByPerm: cleanedData.entityIdsByPerm,
           entityIdsFunction: cleanedData.entityIdsFunction,
           memberProfilesTableId: cleanedData.memberProfilesTableId,
+          permissionDefaultPermissionsTableId: cleanedData.permissionDefaultPermissionsTableId,
+          permissionDefaultGrantsTableId: cleanedData.permissionDefaultGrantsTableId,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -617,6 +641,8 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityIdsByPerm: true,
           entityIdsFunction: true,
           memberProfilesTableId: true,
+          permissionDefaultPermissionsTableId: true,
+          permissionDefaultGrantsTableId: true,
           apiName: true,
           privateApiName: true,
         },
@@ -877,6 +903,20 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'permissionDefaultPermissionsTableId',
+        message: 'permissionDefaultPermissionsTableId',
+        required: false,
+        skipPrompt: true,
+      },
+      {
+        type: 'text',
+        name: 'permissionDefaultGrantsTableId',
+        message: 'permissionDefaultGrantsTableId',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -935,6 +975,8 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityIdsByPerm: cleanedData.entityIdsByPerm,
           entityIdsFunction: cleanedData.entityIdsFunction,
           memberProfilesTableId: cleanedData.memberProfilesTableId,
+          permissionDefaultPermissionsTableId: cleanedData.permissionDefaultPermissionsTableId,
+          permissionDefaultGrantsTableId: cleanedData.permissionDefaultGrantsTableId,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -974,6 +1016,8 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityIdsByPerm: true,
           entityIdsFunction: true,
           memberProfilesTableId: true,
+          permissionDefaultPermissionsTableId: true,
+          permissionDefaultGrantsTableId: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/namespace-module.ts b/sdk/constructive-cli/src/modules/cli/commands/namespace-module.ts
index 8c879f17a..bb98a5628 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/namespace-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/namespace-module.ts
@@ -33,6 +33,7 @@ const fieldSchema: FieldSchema = {
   entityTableId: 'uuid',
   policies: 'json',
   provisions: 'json',
+  defaultPermissions: 'string',
 };
 const usage =
   '\nnamespace-module <command>\n\nCommands:\n  list                  List namespaceModule records\n  find-first            Find first matching namespaceModule record\n  get                   Get a namespaceModule by ID\n  create                Create a new namespaceModule\n  update                Update an existing namespaceModule\n  delete                Delete a namespaceModule\n\nList Options:\n  --limit <n>           Max number of records to return (forward pagination)\n  --last <n>            Number of records from the end (backward pagination)\n  --after <cursor>      Cursor for forward pagination\n  --before <cursor>     Cursor for backward pagination\n  --offset <n>          Number of records to skip\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.name.equalTo foo)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\nFind-First Options:\n  --select <fields>     Comma-separated list of fields to return\n  --where.<field>.<op>  Filter (dot-notation, e.g. --where.status.equalTo active)\n  --condition.<f>.<op>  Condition filter (dot-notation)\n  --orderBy <values>    Comma-separated ordering values (e.g. NAME_ASC,CREATED_AT_DESC)\n\n  --help, -h            Show this help message\n';
@@ -102,6 +103,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findManyArgs = parseFindManyArgs<
       FindManyArgs<NamespaceModuleSelect, NamespaceModuleFilter, NamespaceModuleOrderBy> & {
@@ -139,6 +141,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       entityTableId: true,
       policies: true,
       provisions: true,
+      defaultPermissions: true,
     };
     const findFirstArgs = parseFindFirstArgs<
       FindFirstArgs<NamespaceModuleSelect, NamespaceModuleFilter, NamespaceModuleOrderBy> & {
@@ -188,6 +191,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -314,6 +318,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(
@@ -340,6 +351,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -359,6 +371,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
@@ -491,6 +504,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
     ]);
     const answers = coerceAnswers(rawAnswers, fieldSchema);
     const cleanedData = stripUndefined(answers, fieldSchema) as NamespaceModulePatch;
@@ -517,6 +537,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: cleanedData.entityTableId,
           policies: cleanedData.policies,
           provisions: cleanedData.provisions,
+          defaultPermissions: cleanedData.defaultPermissions,
         },
         select: {
           id: true,
@@ -536,6 +557,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           entityTableId: true,
           policies: true,
           provisions: true,
+          defaultPermissions: true,
         },
       })
       .execute();
diff --git a/sdk/constructive-cli/src/modules/cli/commands/notifications-module.ts b/sdk/constructive-cli/src/modules/cli/commands/notifications-module.ts
index a6fa80dba..d5583905d 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/notifications-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/notifications-module.ts
@@ -33,6 +33,7 @@ const fieldSchema: FieldSchema = {
   hasSettingsExtension: 'boolean',
   hasDigestMetadata: 'boolean',
   hasSubscriptions: 'boolean',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -104,6 +105,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       hasSettingsExtension: true,
       hasDigestMetadata: true,
       hasSubscriptions: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -147,6 +149,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       hasSettingsExtension: true,
       hasDigestMetadata: true,
       hasSubscriptions: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -202,6 +205,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           hasSettingsExtension: true,
           hasDigestMetadata: true,
           hasSubscriptions: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -330,6 +334,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -370,6 +381,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasSettingsExtension: cleanedData.hasSettingsExtension,
           hasDigestMetadata: cleanedData.hasDigestMetadata,
           hasSubscriptions: cleanedData.hasSubscriptions,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -391,6 +403,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasSettingsExtension: true,
           hasDigestMetadata: true,
           hasSubscriptions: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -525,6 +538,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -565,6 +585,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasSettingsExtension: cleanedData.hasSettingsExtension,
           hasDigestMetadata: cleanedData.hasDigestMetadata,
           hasSubscriptions: cleanedData.hasSubscriptions,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -586,6 +607,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasSettingsExtension: true,
           hasDigestMetadata: true,
           hasSubscriptions: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/rate-limit-meters-module.ts b/sdk/constructive-cli/src/modules/cli/commands/rate-limit-meters-module.ts
index 83b249154..6305b60aa 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/rate-limit-meters-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/rate-limit-meters-module.ts
@@ -28,6 +28,7 @@ const fieldSchema: FieldSchema = {
   rateWindowLimitsTableName: 'string',
   checkRateLimitFunction: 'string',
   prefix: 'string',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -94,6 +95,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       rateWindowLimitsTableName: true,
       checkRateLimitFunction: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -132,6 +134,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       rateWindowLimitsTableName: true,
       checkRateLimitFunction: true,
       prefix: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -182,6 +185,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           rateWindowLimitsTableName: true,
           checkRateLimitFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -275,6 +279,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -310,6 +321,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           rateWindowLimitsTableName: cleanedData.rateWindowLimitsTableName,
           checkRateLimitFunction: cleanedData.checkRateLimitFunction,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -326,6 +338,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           rateWindowLimitsTableName: true,
           checkRateLimitFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -425,6 +438,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -460,6 +480,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           rateWindowLimitsTableName: cleanedData.rateWindowLimitsTableName,
           checkRateLimitFunction: cleanedData.checkRateLimitFunction,
           prefix: cleanedData.prefix,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -476,6 +497,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           rateWindowLimitsTableName: true,
           checkRateLimitFunction: true,
           prefix: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/cli/commands/storage-module.ts b/sdk/constructive-cli/src/modules/cli/commands/storage-module.ts
index 8c3868587..c176f112e 100644
--- a/sdk/constructive-cli/src/modules/cli/commands/storage-module.ts
+++ b/sdk/constructive-cli/src/modules/cli/commands/storage-module.ts
@@ -50,6 +50,7 @@ const fieldSchema: FieldSchema = {
   hasConfirmUpload: 'boolean',
   confirmUploadDelay: 'string',
   fileEventsTableId: 'uuid',
+  defaultPermissions: 'string',
   apiName: 'string',
   privateApiName: 'string',
 };
@@ -138,6 +139,7 @@ async function handleList(argv: Partial<Record<string, unknown>>, _prompter: Inq
       hasConfirmUpload: true,
       confirmUploadDelay: true,
       fileEventsTableId: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -194,6 +196,7 @@ async function handleFindFirst(argv: Partial<Record<string, unknown>>, _prompter
       hasConfirmUpload: true,
       confirmUploadDelay: true,
       fileEventsTableId: true,
+      defaultPermissions: true,
       apiName: true,
       privateApiName: true,
     };
@@ -262,6 +265,7 @@ async function handleGet(argv: Partial<Record<string, unknown>>, prompter: Inqui
           hasConfirmUpload: true,
           confirmUploadDelay: true,
           fileEventsTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -509,6 +513,13 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -566,6 +577,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasConfirmUpload: cleanedData.hasConfirmUpload,
           confirmUploadDelay: cleanedData.confirmUploadDelay,
           fileEventsTableId: cleanedData.fileEventsTableId,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -604,6 +616,7 @@ async function handleCreate(argv: Partial<Record<string, unknown>>, prompter: In
           hasConfirmUpload: true,
           confirmUploadDelay: true,
           fileEventsTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
@@ -857,6 +870,13 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
         required: false,
         skipPrompt: true,
       },
+      {
+        type: 'text',
+        name: 'defaultPermissions',
+        message: 'defaultPermissions',
+        required: false,
+        skipPrompt: true,
+      },
       {
         type: 'text',
         name: 'apiName',
@@ -914,6 +934,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasConfirmUpload: cleanedData.hasConfirmUpload,
           confirmUploadDelay: cleanedData.confirmUploadDelay,
           fileEventsTableId: cleanedData.fileEventsTableId,
+          defaultPermissions: cleanedData.defaultPermissions,
           apiName: cleanedData.apiName,
           privateApiName: cleanedData.privateApiName,
         },
@@ -952,6 +973,7 @@ async function handleUpdate(argv: Partial<Record<string, unknown>>, prompter: In
           hasConfirmUpload: true,
           confirmUploadDelay: true,
           fileEventsTableId: true,
+          defaultPermissions: true,
           apiName: true,
           privateApiName: true,
         },
diff --git a/sdk/constructive-cli/src/modules/orm/README.md b/sdk/constructive-cli/src/modules/orm/README.md
index 2d52e7421..3e29d250b 100644
--- a/sdk/constructive-cli/src/modules/orm/README.md
+++ b/sdk/constructive-cli/src/modules/orm/README.md
@@ -45,38 +45,38 @@ const db = createClient({
 | `blueprintTemplate` | findMany, findOne, create, update, delete |
 | `blueprintConstruction` | findMany, findOne, create, update, delete |
 | `cryptoAuthModule` | findMany, findOne, create, update, delete |
-| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `sessionsModule` | findMany, findOne, create, update, delete |
 | `configSecretsModule` | findMany, findOne, create, update, delete |
 | `merkleStoreModule` | findMany, findOne, create, update, delete |
 | `graphModule` | findMany, findOne, create, update, delete |
 | `secureTableProvision` | findMany, findOne, create, update, delete |
+| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `invitesModule` | findMany, findOne, create, update, delete |
 | `databaseProvisionModule` | findMany, findOne, create, update, delete |
-| `namespaceModule` | findMany, findOne, create, update, delete |
 | `realtimeModule` | findMany, findOne, create, update, delete |
 | `webauthnAuthModule` | findMany, findOne, create, update, delete |
+| `namespaceModule` | findMany, findOne, create, update, delete |
 | `computeLogModule` | findMany, findOne, create, update, delete |
 | `inferenceLogModule` | findMany, findOne, create, update, delete |
 | `storageLogModule` | findMany, findOne, create, update, delete |
 | `transferLogModule` | findMany, findOne, create, update, delete |
+| `plansModule` | findMany, findOne, create, update, delete |
 | `dbUsageModule` | findMany, findOne, create, update, delete |
 | `notificationsModule` | findMany, findOne, create, update, delete |
-| `plansModule` | findMany, findOne, create, update, delete |
-| `hierarchyModule` | findMany, findOne, create, update, delete |
-| `billingModule` | findMany, findOne, create, update, delete |
 | `billingProviderModule` | findMany, findOne, create, update, delete |
+| `functionModule` | findMany, findOne, create, update, delete |
+| `hierarchyModule` | findMany, findOne, create, update, delete |
 | `profilesModule` | findMany, findOne, create, update, delete |
 | `permissionsModule` | findMany, findOne, create, update, delete |
+| `billingModule` | findMany, findOne, create, update, delete |
 | `relationProvision` | findMany, findOne, create, update, delete |
-| `functionModule` | findMany, findOne, create, update, delete |
 | `userAuthModule` | findMany, findOne, create, update, delete |
 | `agentModule` | findMany, findOne, create, update, delete |
 | `limitsModule` | findMany, findOne, create, update, delete |
 | `membershipsModule` | findMany, findOne, create, update, delete |
 | `storageModule` | findMany, findOne, create, update, delete |
-| `eventsModule` | findMany, findOne, create, update, delete |
 | `entityTypeProvision` | findMany, findOne, create, update, delete |
+| `eventsModule` | findMany, findOne, create, update, delete |
 
 ## Table Operations
 
@@ -970,48 +970,6 @@ const updated = await db.cryptoAuthModule.update({ where: { id: '<UUID>' }, data
 const deleted = await db.cryptoAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.rateLimitMetersModule`
-
-CRUD operations for RateLimitMetersModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `rateLimitStateTableId` | UUID | Yes |
-| `rateLimitStateTableName` | String | Yes |
-| `rateLimitOverridesTableId` | UUID | Yes |
-| `rateLimitOverridesTableName` | String | Yes |
-| `rateWindowLimitsTableId` | UUID | Yes |
-| `rateWindowLimitsTableName` | String | Yes |
-| `checkRateLimitFunction` | String | Yes |
-| `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-
-**Operations:**
-
-```typescript
-// List all rateLimitMetersModule records
-const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Get one by id
-const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Create
-const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.sessionsModule`
 
 CRUD operations for SessionsModule records.
@@ -1162,19 +1120,20 @@ CRUD operations for GraphModule records.
 | `entityTableId` | UUID | Yes |
 | `policies` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 | `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
 // List all graphModule records
-const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.graphModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1222,6 +1181,49 @@ const updated = await db.secureTableProvision.update({ where: { id: '<UUID>' },
 const deleted = await db.secureTableProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.rateLimitMetersModule`
+
+CRUD operations for RateLimitMetersModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `rateLimitStateTableId` | UUID | Yes |
+| `rateLimitStateTableName` | String | Yes |
+| `rateLimitOverridesTableId` | UUID | Yes |
+| `rateLimitOverridesTableName` | String | Yes |
+| `rateWindowLimitsTableId` | UUID | Yes |
+| `rateWindowLimitsTableName` | String | Yes |
+| `checkRateLimitFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all rateLimitMetersModule records
+const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.invitesModule`
 
 CRUD operations for InvitesModule records.
@@ -1308,51 +1310,6 @@ const updated = await db.databaseProvisionModule.update({ where: { id: '<UUID>'
 const deleted = await db.databaseProvisionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.namespaceModule`
-
-CRUD operations for NamespaceModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `namespacesTableId` | UUID | Yes |
-| `namespaceEventsTableId` | UUID | Yes |
-| `namespacesTableName` | String | Yes |
-| `namespaceEventsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all namespaceModule records
-const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.realtimeModule`
 
 CRUD operations for RealtimeModule records.
@@ -1439,6 +1396,52 @@ const updated = await db.webauthnAuthModule.update({ where: { id: '<UUID>' }, da
 const deleted = await db.webauthnAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.namespaceModule`
+
+CRUD operations for NamespaceModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `publicSchemaName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `namespacesTableId` | UUID | Yes |
+| `namespaceEventsTableId` | UUID | Yes |
+| `namespacesTableName` | String | Yes |
+| `namespaceEventsTableName` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all namespaceModule records
+const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Get one by id
+const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Create
+const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.computeLogModule`
 
 CRUD operations for ComputeLogModule records.
@@ -1619,6 +1622,53 @@ const updated = await db.transferLogModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.transferLogModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.plansModule`
+
+CRUD operations for PlansModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `plansTableId` | UUID | Yes |
+| `plansTableName` | String | Yes |
+| `planLimitsTableId` | UUID | Yes |
+| `planLimitsTableName` | String | Yes |
+| `planPricingTableId` | UUID | Yes |
+| `planOverridesTableId` | UUID | Yes |
+| `planMeterLimitsTableId` | UUID | Yes |
+| `planCapsTableId` | UUID | Yes |
+| `applyPlanFunction` | String | Yes |
+| `applyPlanAggregateFunction` | String | Yes |
+| `applyBillingPlanFunction` | String | Yes |
+| `applyPlanCapsFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all plansModule records
+const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.dbUsageModule`
 
 CRUD operations for DbUsageModule records.
@@ -1644,6 +1694,7 @@ CRUD operations for DbUsageModule records.
 | `premake` | Int | Yes |
 | `scope` | String | Yes |
 | `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1651,13 +1702,13 @@ CRUD operations for DbUsageModule records.
 
 ```typescript
 // List all dbUsageModule records
-const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.dbUsageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1691,6 +1742,7 @@ CRUD operations for NotificationsModule records.
 | `hasSettingsExtension` | Boolean | Yes |
 | `hasDigestMetadata` | Boolean | Yes |
 | `hasSubscriptions` | Boolean | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1698,13 +1750,13 @@ CRUD operations for NotificationsModule records.
 
 ```typescript
 // List all notificationsModule records
-const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1713,9 +1765,9 @@ const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, d
 const deleted = await db.notificationsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.plansModule`
+### `db.billingProviderModule`
 
-CRUD operations for PlansModule records.
+CRUD operations for BillingProviderModule records.
 
 **Fields:**
 
@@ -1725,18 +1777,21 @@ CRUD operations for PlansModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `plansTableId` | UUID | Yes |
-| `plansTableName` | String | Yes |
-| `planLimitsTableId` | UUID | Yes |
-| `planLimitsTableName` | String | Yes |
-| `planPricingTableId` | UUID | Yes |
-| `planOverridesTableId` | UUID | Yes |
-| `planMeterLimitsTableId` | UUID | Yes |
-| `planCapsTableId` | UUID | Yes |
-| `applyPlanFunction` | String | Yes |
-| `applyPlanAggregateFunction` | String | Yes |
-| `applyBillingPlanFunction` | String | Yes |
-| `applyPlanCapsFunction` | String | Yes |
+| `provider` | String | Yes |
+| `productsTableId` | UUID | Yes |
+| `pricesTableId` | UUID | Yes |
+| `subscriptionsTableId` | UUID | Yes |
+| `billingCustomersTableId` | UUID | Yes |
+| `billingCustomersTableName` | String | Yes |
+| `billingProductsTableId` | UUID | Yes |
+| `billingProductsTableName` | String | Yes |
+| `billingPricesTableId` | UUID | Yes |
+| `billingPricesTableName` | String | Yes |
+| `billingSubscriptionsTableId` | UUID | Yes |
+| `billingSubscriptionsTableName` | String | Yes |
+| `billingWebhookEventsTableId` | UUID | Yes |
+| `billingWebhookEventsTableName` | String | Yes |
+| `processBillingEventFunction` | String | Yes |
 | `prefix` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
@@ -1744,25 +1799,25 @@ CRUD operations for PlansModule records.
 **Operations:**
 
 ```typescript
-// List all plansModule records
-const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all billingProviderModule records
+const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.hierarchyModule`
+### `db.functionModule`
 
-CRUD operations for HierarchyModule records.
+CRUD operations for FunctionModule records.
 
 **Fields:**
 
@@ -1772,96 +1827,47 @@ CRUD operations for HierarchyModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `chartEdgesTableId` | UUID | Yes |
-| `chartEdgesTableName` | String | Yes |
-| `hierarchySprtTableId` | UUID | Yes |
-| `hierarchySprtTableName` | String | Yes |
-| `chartEdgeGrantsTableId` | UUID | Yes |
-| `chartEdgeGrantsTableName` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `usersTableId` | UUID | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
+| `publicSchemaName` | String | Yes |
 | `privateSchemaName` | String | Yes |
-| `sprtTableName` | String | Yes |
-| `rebuildHierarchyFunction` | String | Yes |
-| `getSubordinatesFunction` | String | Yes |
-| `getManagersFunction` | String | Yes |
-| `isManagerOfFunction` | String | Yes |
-| `createdAt` | Datetime | No |
-
-**Operations:**
-
-```typescript
-// List all hierarchyModule records
-const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Get one by id
-const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Create
-const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
-### `db.billingModule`
-
-CRUD operations for BillingModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `metersTableId` | UUID | Yes |
-| `metersTableName` | String | Yes |
-| `planSubscriptionsTableId` | UUID | Yes |
-| `planSubscriptionsTableName` | String | Yes |
-| `ledgerTableId` | UUID | Yes |
-| `ledgerTableName` | String | Yes |
-| `balancesTableId` | UUID | Yes |
-| `balancesTableName` | String | Yes |
-| `meterCreditsTableId` | UUID | Yes |
-| `meterCreditsTableName` | String | Yes |
-| `meterSourcesTableId` | UUID | Yes |
-| `meterSourcesTableName` | String | Yes |
-| `meterDefaultsTableId` | UUID | Yes |
-| `meterDefaultsTableName` | String | Yes |
-| `recordUsageFunction` | String | Yes |
-| `prefix` | String | Yes |
+| `definitionsTableId` | UUID | Yes |
+| `invocationsTableId` | UUID | Yes |
+| `executionLogsTableId` | UUID | Yes |
+| `secretDefinitionsTableId` | UUID | Yes |
+| `definitionsTableName` | String | Yes |
+| `invocationsTableName` | String | Yes |
+| `executionLogsTableName` | String | Yes |
+| `secretDefinitionsTableName` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
-// List all billingModule records
-const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all functionModule records
+const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.billingProviderModule`
+### `db.hierarchyModule`
 
-CRUD operations for BillingProviderModule records.
+CRUD operations for HierarchyModule records.
 
 **Fields:**
 
@@ -1871,42 +1877,42 @@ CRUD operations for BillingProviderModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `provider` | String | Yes |
-| `productsTableId` | UUID | Yes |
-| `pricesTableId` | UUID | Yes |
-| `subscriptionsTableId` | UUID | Yes |
-| `billingCustomersTableId` | UUID | Yes |
-| `billingCustomersTableName` | String | Yes |
-| `billingProductsTableId` | UUID | Yes |
-| `billingProductsTableName` | String | Yes |
-| `billingPricesTableId` | UUID | Yes |
-| `billingPricesTableName` | String | Yes |
-| `billingSubscriptionsTableId` | UUID | Yes |
-| `billingSubscriptionsTableName` | String | Yes |
-| `billingWebhookEventsTableId` | UUID | Yes |
-| `billingWebhookEventsTableName` | String | Yes |
-| `processBillingEventFunction` | String | Yes |
+| `chartEdgesTableId` | UUID | Yes |
+| `chartEdgesTableName` | String | Yes |
+| `hierarchySprtTableId` | UUID | Yes |
+| `hierarchySprtTableName` | String | Yes |
+| `chartEdgeGrantsTableId` | UUID | Yes |
+| `chartEdgeGrantsTableName` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `usersTableId` | UUID | Yes |
+| `scope` | String | Yes |
 | `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `sprtTableName` | String | Yes |
+| `rebuildHierarchyFunction` | String | Yes |
+| `getSubordinatesFunction` | String | Yes |
+| `getManagersFunction` | String | Yes |
+| `isManagerOfFunction` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
-// List all billingProviderModule records
-const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all hierarchyModule records
+const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
 ### `db.profilesModule`
@@ -2006,6 +2012,57 @@ const updated = await db.permissionsModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.permissionsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.billingModule`
+
+CRUD operations for BillingModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `metersTableId` | UUID | Yes |
+| `metersTableName` | String | Yes |
+| `planSubscriptionsTableId` | UUID | Yes |
+| `planSubscriptionsTableName` | String | Yes |
+| `ledgerTableId` | UUID | Yes |
+| `ledgerTableName` | String | Yes |
+| `balancesTableId` | UUID | Yes |
+| `balancesTableName` | String | Yes |
+| `meterCreditsTableId` | UUID | Yes |
+| `meterCreditsTableName` | String | Yes |
+| `meterSourcesTableId` | UUID | Yes |
+| `meterSourcesTableName` | String | Yes |
+| `meterDefaultsTableId` | UUID | Yes |
+| `meterDefaultsTableName` | String | Yes |
+| `recordUsageFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all billingModule records
+const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.relationProvision`
 
 CRUD operations for RelationProvision records.
@@ -2058,60 +2115,6 @@ const updated = await db.relationProvision.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.relationProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.functionModule`
-
-CRUD operations for FunctionModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `definitionsTableId` | UUID | Yes |
-| `invocationsTableId` | UUID | Yes |
-| `executionLogsTableId` | UUID | Yes |
-| `secretDefinitionsTableId` | UUID | Yes |
-| `requirementsTableId` | UUID | Yes |
-| `configDefinitionsTableId` | UUID | Yes |
-| `configRequirementsTableId` | UUID | Yes |
-| `definitionsTableName` | String | Yes |
-| `invocationsTableName` | String | Yes |
-| `executionLogsTableName` | String | Yes |
-| `secretDefinitionsTableName` | String | Yes |
-| `requirementsTableName` | String | Yes |
-| `configRequirementsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all functionModule records
-const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.userAuthModule`
 
 CRUD operations for UserAuthModule records.
@@ -2199,6 +2202,7 @@ CRUD operations for AgentModule records.
 | `hasPlans` | Boolean | Yes |
 | `hasResources` | Boolean | Yes |
 | `hasAgents` | Boolean | Yes |
+| `shared` | Boolean | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 | `scope` | String | Yes |
@@ -2207,18 +2211,19 @@ CRUD operations for AgentModule records.
 | `policies` | JSON | Yes |
 | `resources` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentModule records
-const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.agentModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2332,6 +2337,8 @@ CRUD operations for MembershipsModule records.
 | `entityIdsByPerm` | String | Yes |
 | `entityIdsFunction` | String | Yes |
 | `memberProfilesTableId` | UUID | Yes |
+| `permissionDefaultPermissionsTableId` | UUID | Yes |
+| `permissionDefaultGrantsTableId` | UUID | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2339,13 +2346,13 @@ CRUD operations for MembershipsModule records.
 
 ```typescript
 // List all membershipsModule records
-const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.membershipsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2396,6 +2403,7 @@ CRUD operations for StorageModule records.
 | `hasConfirmUpload` | Boolean | Yes |
 | `confirmUploadDelay` | Interval | Yes |
 | `fileEventsTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2403,13 +2411,13 @@ CRUD operations for StorageModule records.
 
 ```typescript
 // List all storageModule records
-const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2418,6 +2426,74 @@ const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.storageModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.entityTypeProvision`
+
+CRUD operations for EntityTypeProvision records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `name` | String | Yes |
+| `prefix` | String | Yes |
+| `description` | String | Yes |
+| `parentEntity` | String | Yes |
+| `tableName` | String | Yes |
+| `isVisible` | Boolean | Yes |
+| `hasLimits` | Boolean | Yes |
+| `hasProfiles` | Boolean | Yes |
+| `hasLevels` | Boolean | Yes |
+| `hasInvites` | Boolean | Yes |
+| `hasInviteAchievements` | Boolean | Yes |
+| `storage` | JSON | Yes |
+| `namespaces` | JSON | Yes |
+| `functions` | JSON | Yes |
+| `graphs` | JSON | Yes |
+| `agents` | JSON | Yes |
+| `skipEntityPolicies` | Boolean | Yes |
+| `tableProvision` | JSON | Yes |
+| `outMembershipType` | Int | Yes |
+| `outEntityTableId` | UUID | Yes |
+| `outEntityTableName` | String | Yes |
+| `outInstalledModules` | String | Yes |
+| `outStorageModuleId` | UUID | Yes |
+| `outBucketsTableId` | UUID | Yes |
+| `outFilesTableId` | UUID | Yes |
+| `outPathSharesTableId` | UUID | Yes |
+| `outInvitesModuleId` | UUID | Yes |
+| `outNamespaceModuleId` | UUID | Yes |
+| `outNamespacesTableId` | UUID | Yes |
+| `outNamespaceEventsTableId` | UUID | Yes |
+| `outFunctionModuleId` | UUID | Yes |
+| `outDefinitionsTableId` | UUID | Yes |
+| `outInvocationsTableId` | UUID | Yes |
+| `outExecutionLogsTableId` | UUID | Yes |
+| `outSecretDefinitionsTableId` | UUID | Yes |
+| `outGraphModuleId` | UUID | Yes |
+| `outGraphsTableId` | UUID | Yes |
+| `outAgentModuleId` | UUID | Yes |
+
+**Operations:**
+
+```typescript
+// List all entityTypeProvision records
+const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Get one by id
+const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Create
+const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.eventsModule`
 
 CRUD operations for EventsModule records.
@@ -2465,6 +2541,7 @@ CRUD operations for EventsModule records.
 | `prefix` | String | Yes |
 | `entityTableId` | UUID | Yes |
 | `actorTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2472,13 +2549,13 @@ CRUD operations for EventsModule records.
 
 ```typescript
 // List all eventsModule records
-const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2487,76 +2564,6 @@ const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.eventsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.entityTypeProvision`
-
-CRUD operations for EntityTypeProvision records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `name` | String | Yes |
-| `prefix` | String | Yes |
-| `description` | String | Yes |
-| `parentEntity` | String | Yes |
-| `tableName` | String | Yes |
-| `isVisible` | Boolean | Yes |
-| `hasLimits` | Boolean | Yes |
-| `hasProfiles` | Boolean | Yes |
-| `hasLevels` | Boolean | Yes |
-| `hasInvites` | Boolean | Yes |
-| `hasInviteAchievements` | Boolean | Yes |
-| `storage` | JSON | Yes |
-| `namespaces` | JSON | Yes |
-| `functions` | JSON | Yes |
-| `graphs` | JSON | Yes |
-| `agents` | JSON | Yes |
-| `skipEntityPolicies` | Boolean | Yes |
-| `tableProvision` | JSON | Yes |
-| `outMembershipType` | Int | Yes |
-| `outEntityTableId` | UUID | Yes |
-| `outEntityTableName` | String | Yes |
-| `outInstalledModules` | String | Yes |
-| `outStorageModuleId` | UUID | Yes |
-| `outBucketsTableId` | UUID | Yes |
-| `outFilesTableId` | UUID | Yes |
-| `outPathSharesTableId` | UUID | Yes |
-| `outInvitesModuleId` | UUID | Yes |
-| `outNamespaceModuleId` | UUID | Yes |
-| `outNamespacesTableId` | UUID | Yes |
-| `outNamespaceEventsTableId` | UUID | Yes |
-| `outFunctionModuleId` | UUID | Yes |
-| `outDefinitionsTableId` | UUID | Yes |
-| `outInvocationsTableId` | UUID | Yes |
-| `outExecutionLogsTableId` | UUID | Yes |
-| `outSecretDefinitionsTableId` | UUID | Yes |
-| `outRequirementsTableId` | UUID | Yes |
-| `outConfigRequirementsTableId` | UUID | Yes |
-| `outGraphModuleId` | UUID | Yes |
-| `outGraphsTableId` | UUID | Yes |
-| `outAgentModuleId` | UUID | Yes |
-
-**Operations:**
-
-```typescript
-// List all entityTypeProvision records
-const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Get one by id
-const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Create
-const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ## Custom Operations
 
 ### `db.query.resolveBlueprintField`
diff --git a/sdk/constructive-cli/src/modules/orm/index.ts b/sdk/constructive-cli/src/modules/orm/index.ts
index c119d6f62..9a4233c90 100644
--- a/sdk/constructive-cli/src/modules/orm/index.ts
+++ b/sdk/constructive-cli/src/modules/orm/index.ts
@@ -29,38 +29,38 @@ import { BlueprintModel } from './models/blueprint';
 import { BlueprintTemplateModel } from './models/blueprintTemplate';
 import { BlueprintConstructionModel } from './models/blueprintConstruction';
 import { CryptoAuthModuleModel } from './models/cryptoAuthModule';
-import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { SessionsModuleModel } from './models/sessionsModule';
 import { ConfigSecretsModuleModel } from './models/configSecretsModule';
 import { MerkleStoreModuleModel } from './models/merkleStoreModule';
 import { GraphModuleModel } from './models/graphModule';
 import { SecureTableProvisionModel } from './models/secureTableProvision';
+import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { InvitesModuleModel } from './models/invitesModule';
 import { DatabaseProvisionModuleModel } from './models/databaseProvisionModule';
-import { NamespaceModuleModel } from './models/namespaceModule';
 import { RealtimeModuleModel } from './models/realtimeModule';
 import { WebauthnAuthModuleModel } from './models/webauthnAuthModule';
+import { NamespaceModuleModel } from './models/namespaceModule';
 import { ComputeLogModuleModel } from './models/computeLogModule';
 import { InferenceLogModuleModel } from './models/inferenceLogModule';
 import { StorageLogModuleModel } from './models/storageLogModule';
 import { TransferLogModuleModel } from './models/transferLogModule';
+import { PlansModuleModel } from './models/plansModule';
 import { DbUsageModuleModel } from './models/dbUsageModule';
 import { NotificationsModuleModel } from './models/notificationsModule';
-import { PlansModuleModel } from './models/plansModule';
-import { HierarchyModuleModel } from './models/hierarchyModule';
-import { BillingModuleModel } from './models/billingModule';
 import { BillingProviderModuleModel } from './models/billingProviderModule';
+import { FunctionModuleModel } from './models/functionModule';
+import { HierarchyModuleModel } from './models/hierarchyModule';
 import { ProfilesModuleModel } from './models/profilesModule';
 import { PermissionsModuleModel } from './models/permissionsModule';
+import { BillingModuleModel } from './models/billingModule';
 import { RelationProvisionModel } from './models/relationProvision';
-import { FunctionModuleModel } from './models/functionModule';
 import { UserAuthModuleModel } from './models/userAuthModule';
 import { AgentModuleModel } from './models/agentModule';
 import { LimitsModuleModel } from './models/limitsModule';
 import { MembershipsModuleModel } from './models/membershipsModule';
 import { StorageModuleModel } from './models/storageModule';
-import { EventsModuleModel } from './models/eventsModule';
 import { EntityTypeProvisionModel } from './models/entityTypeProvision';
+import { EventsModuleModel } from './models/eventsModule';
 import { createQueryOperations } from './query';
 import { createMutationOperations } from './mutation';
 export type { OrmClientConfig, QueryResult, GraphQLError, GraphQLAdapter } from './client';
@@ -120,38 +120,38 @@ export function createClient(config: OrmClientConfig) {
     blueprintTemplate: new BlueprintTemplateModel(client),
     blueprintConstruction: new BlueprintConstructionModel(client),
     cryptoAuthModule: new CryptoAuthModuleModel(client),
-    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     sessionsModule: new SessionsModuleModel(client),
     configSecretsModule: new ConfigSecretsModuleModel(client),
     merkleStoreModule: new MerkleStoreModuleModel(client),
     graphModule: new GraphModuleModel(client),
     secureTableProvision: new SecureTableProvisionModel(client),
+    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     invitesModule: new InvitesModuleModel(client),
     databaseProvisionModule: new DatabaseProvisionModuleModel(client),
-    namespaceModule: new NamespaceModuleModel(client),
     realtimeModule: new RealtimeModuleModel(client),
     webauthnAuthModule: new WebauthnAuthModuleModel(client),
+    namespaceModule: new NamespaceModuleModel(client),
     computeLogModule: new ComputeLogModuleModel(client),
     inferenceLogModule: new InferenceLogModuleModel(client),
     storageLogModule: new StorageLogModuleModel(client),
     transferLogModule: new TransferLogModuleModel(client),
+    plansModule: new PlansModuleModel(client),
     dbUsageModule: new DbUsageModuleModel(client),
     notificationsModule: new NotificationsModuleModel(client),
-    plansModule: new PlansModuleModel(client),
-    hierarchyModule: new HierarchyModuleModel(client),
-    billingModule: new BillingModuleModel(client),
     billingProviderModule: new BillingProviderModuleModel(client),
+    functionModule: new FunctionModuleModel(client),
+    hierarchyModule: new HierarchyModuleModel(client),
     profilesModule: new ProfilesModuleModel(client),
     permissionsModule: new PermissionsModuleModel(client),
+    billingModule: new BillingModuleModel(client),
     relationProvision: new RelationProvisionModel(client),
-    functionModule: new FunctionModuleModel(client),
     userAuthModule: new UserAuthModuleModel(client),
     agentModule: new AgentModuleModel(client),
     limitsModule: new LimitsModuleModel(client),
     membershipsModule: new MembershipsModuleModel(client),
     storageModule: new StorageModuleModel(client),
-    eventsModule: new EventsModuleModel(client),
     entityTypeProvision: new EntityTypeProvisionModel(client),
+    eventsModule: new EventsModuleModel(client),
     query: createQueryOperations(client),
     mutation: createMutationOperations(client),
   };
diff --git a/sdk/constructive-cli/src/modules/orm/input-types.ts b/sdk/constructive-cli/src/modules/orm/input-types.ts
index 75db6ada9..7c40f190b 100644
--- a/sdk/constructive-cli/src/modules/orm/input-types.ts
+++ b/sdk/constructive-cli/src/modules/orm/input-types.ts
@@ -566,22 +566,6 @@ export interface CryptoAuthModule {
   signUpWithKey?: string | null;
   signInWithChallenge?: string | null;
 }
-export interface RateLimitMetersModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface SessionsModule {
   id: string;
   databaseId?: string | null;
@@ -652,6 +636,7 @@ export interface GraphModule {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
 /** Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. */
@@ -679,6 +664,23 @@ export interface SecureTableProvision {
   /** Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly. */
   outFields?: string[] | null;
 }
+export interface RateLimitMetersModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface InvitesModule {
   id: string;
   databaseId?: string | null;
@@ -723,25 +725,6 @@ export interface DatabaseProvisionModule {
   updatedAt?: string | null;
   completedAt?: string | null;
 }
-export interface NamespaceModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface RealtimeModule {
   id: string;
   databaseId?: string | null;
@@ -776,6 +759,26 @@ export interface WebauthnAuthModule {
   residentKey?: string | null;
   challengeExpiry?: string | null;
 }
+export interface NamespaceModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface ComputeLogModule {
   id: string;
   databaseId?: string | null;
@@ -852,6 +855,27 @@ export interface TransferLogModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface PlansModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface DbUsageModule {
   id: string;
   databaseId?: string | null;
@@ -870,6 +894,7 @@ export interface DbUsageModule {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -891,30 +916,58 @@ export interface NotificationsModule {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface PlansModule {
+export interface BillingProviderModule {
   id: string;
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface FunctionModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface HierarchyModule {
   id: string;
   databaseId?: string | null;
@@ -936,56 +989,9 @@ export interface HierarchyModule {
   getSubordinatesFunction?: string | null;
   getManagersFunction?: string | null;
   isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
-export interface BillingModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface BillingProviderModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface ProfilesModule {
   id: string;
   databaseId?: string | null;
@@ -1031,6 +1037,31 @@ export interface PermissionsModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface BillingModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 /**
  * Provisions relational structure between tables. Supports four relation types:
  *      - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
@@ -1164,34 +1195,6 @@ export interface RelationProvision {
   /** Output column for RelationManyToMany: the UUID of the FK field on the junction table referencing the target table. Populated by the trigger. NULL for RelationBelongsTo/RelationHasOne. Callers should not set this directly. */
   outTargetFieldId?: string | null;
 }
-export interface FunctionModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface UserAuthModule {
   id: string;
   databaseId?: string | null;
@@ -1246,6 +1249,7 @@ export interface AgentModule {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -1254,6 +1258,7 @@ export interface AgentModule {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface LimitsModule {
   id: string;
@@ -1327,6 +1332,8 @@ export interface MembershipsModule {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -1365,66 +1372,24 @@ export interface StorageModule {
   hasConfirmUpload?: boolean | null;
   confirmUploadDelay?: string | null;
   fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface EventsModule {
+/**
+ * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
+ *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
+ *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
+ *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
+ *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
+ *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
+ *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
+ *      as an escape hatch to apply zero policies.
+ */
+export interface EntityTypeProvision {
+  /** Unique identifier for this provision row. */
   id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  actorTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-/**
- * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
- *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
- *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
- *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
- *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
- *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
- *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
- *      as an escape hatch to apply zero policies.
- */
-export interface EntityTypeProvision {
-  /** Unique identifier for this provision row. */
-  id: string;
-  /** The database to provision this entity type in. Required. */
+  /** The database to provision this entity type in. Required. */
   databaseId?: string | null;
   /**
    * Human-readable name for this entity type, e.g. 'Data Room', 'Team Channel'. Required.
@@ -1669,12 +1634,54 @@ export interface EntityTypeProvision {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
 }
+export interface EventsModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 // ============ Relation Helper Types ============
 export interface ConnectionResult<T> {
   nodes: T[];
@@ -1721,7 +1728,6 @@ export interface BlueprintConstructionRelations {
   blueprint?: Blueprint | null;
 }
 export interface CryptoAuthModuleRelations {}
-export interface RateLimitMetersModuleRelations {}
 export interface SessionsModuleRelations {}
 export interface ConfigSecretsModuleRelations {}
 export interface MerkleStoreModuleRelations {
@@ -1731,32 +1737,33 @@ export interface GraphModuleRelations {
   merkleStoreModule?: MerkleStoreModule | null;
 }
 export interface SecureTableProvisionRelations {}
+export interface RateLimitMetersModuleRelations {}
 export interface InvitesModuleRelations {}
 export interface DatabaseProvisionModuleRelations {}
-export interface NamespaceModuleRelations {}
 export interface RealtimeModuleRelations {}
 export interface WebauthnAuthModuleRelations {}
+export interface NamespaceModuleRelations {}
 export interface ComputeLogModuleRelations {}
 export interface InferenceLogModuleRelations {}
 export interface StorageLogModuleRelations {}
 export interface TransferLogModuleRelations {}
+export interface PlansModuleRelations {}
 export interface DbUsageModuleRelations {}
 export interface NotificationsModuleRelations {}
-export interface PlansModuleRelations {}
-export interface HierarchyModuleRelations {}
-export interface BillingModuleRelations {}
 export interface BillingProviderModuleRelations {}
+export interface FunctionModuleRelations {}
+export interface HierarchyModuleRelations {}
 export interface ProfilesModuleRelations {}
 export interface PermissionsModuleRelations {}
+export interface BillingModuleRelations {}
 export interface RelationProvisionRelations {}
-export interface FunctionModuleRelations {}
 export interface UserAuthModuleRelations {}
 export interface AgentModuleRelations {}
 export interface LimitsModuleRelations {}
 export interface MembershipsModuleRelations {}
 export interface StorageModuleRelations {}
-export interface EventsModuleRelations {}
 export interface EntityTypeProvisionRelations {}
+export interface EventsModuleRelations {}
 // ============ Entity Types With Relations ============
 export type DefaultIdsModuleWithRelations = DefaultIdsModule & DefaultIdsModuleRelations;
 export type MembershipTypesModuleWithRelations = MembershipTypesModule &
@@ -1793,42 +1800,42 @@ export type BlueprintTemplateWithRelations = BlueprintTemplate & BlueprintTempla
 export type BlueprintConstructionWithRelations = BlueprintConstruction &
   BlueprintConstructionRelations;
 export type CryptoAuthModuleWithRelations = CryptoAuthModule & CryptoAuthModuleRelations;
-export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
-  RateLimitMetersModuleRelations;
 export type SessionsModuleWithRelations = SessionsModule & SessionsModuleRelations;
 export type ConfigSecretsModuleWithRelations = ConfigSecretsModule & ConfigSecretsModuleRelations;
 export type MerkleStoreModuleWithRelations = MerkleStoreModule & MerkleStoreModuleRelations;
 export type GraphModuleWithRelations = GraphModule & GraphModuleRelations;
 export type SecureTableProvisionWithRelations = SecureTableProvision &
   SecureTableProvisionRelations;
+export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
+  RateLimitMetersModuleRelations;
 export type InvitesModuleWithRelations = InvitesModule & InvitesModuleRelations;
 export type DatabaseProvisionModuleWithRelations = DatabaseProvisionModule &
   DatabaseProvisionModuleRelations;
-export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type RealtimeModuleWithRelations = RealtimeModule & RealtimeModuleRelations;
 export type WebauthnAuthModuleWithRelations = WebauthnAuthModule & WebauthnAuthModuleRelations;
+export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type ComputeLogModuleWithRelations = ComputeLogModule & ComputeLogModuleRelations;
 export type InferenceLogModuleWithRelations = InferenceLogModule & InferenceLogModuleRelations;
 export type StorageLogModuleWithRelations = StorageLogModule & StorageLogModuleRelations;
 export type TransferLogModuleWithRelations = TransferLogModule & TransferLogModuleRelations;
+export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
 export type DbUsageModuleWithRelations = DbUsageModule & DbUsageModuleRelations;
 export type NotificationsModuleWithRelations = NotificationsModule & NotificationsModuleRelations;
-export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
-export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
-export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type BillingProviderModuleWithRelations = BillingProviderModule &
   BillingProviderModuleRelations;
+export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
+export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
 export type ProfilesModuleWithRelations = ProfilesModule & ProfilesModuleRelations;
 export type PermissionsModuleWithRelations = PermissionsModule & PermissionsModuleRelations;
+export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type RelationProvisionWithRelations = RelationProvision & RelationProvisionRelations;
-export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
 export type UserAuthModuleWithRelations = UserAuthModule & UserAuthModuleRelations;
 export type AgentModuleWithRelations = AgentModule & AgentModuleRelations;
 export type LimitsModuleWithRelations = LimitsModule & LimitsModuleRelations;
 export type MembershipsModuleWithRelations = MembershipsModule & MembershipsModuleRelations;
 export type StorageModuleWithRelations = StorageModule & StorageModuleRelations;
-export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 export type EntityTypeProvisionWithRelations = EntityTypeProvision & EntityTypeProvisionRelations;
+export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 // ============ Entity Select Types ============
 export type DefaultIdsModuleSelect = {
   id?: boolean;
@@ -2123,22 +2130,6 @@ export type CryptoAuthModuleSelect = {
   signUpWithKey?: boolean;
   signInWithChallenge?: boolean;
 };
-export type RateLimitMetersModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  rateLimitStateTableId?: boolean;
-  rateLimitStateTableName?: boolean;
-  rateLimitOverridesTableId?: boolean;
-  rateLimitOverridesTableName?: boolean;
-  rateWindowLimitsTableId?: boolean;
-  rateWindowLimitsTableName?: boolean;
-  checkRateLimitFunction?: boolean;
-  prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-};
 export type SessionsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2210,6 +2201,7 @@ export type GraphModuleSelect = {
   entityTableId?: boolean;
   policies?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
   createdAt?: boolean;
   merkleStoreModule?: {
     select: MerkleStoreModuleSelect;
@@ -2228,6 +2220,23 @@ export type SecureTableProvisionSelect = {
   policies?: boolean;
   outFields?: boolean;
 };
+export type RateLimitMetersModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  rateLimitStateTableId?: boolean;
+  rateLimitStateTableName?: boolean;
+  rateLimitOverridesTableId?: boolean;
+  rateLimitOverridesTableName?: boolean;
+  rateWindowLimitsTableId?: boolean;
+  rateWindowLimitsTableName?: boolean;
+  checkRateLimitFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type InvitesModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2262,25 +2271,6 @@ export type DatabaseProvisionModuleSelect = {
   updatedAt?: boolean;
   completedAt?: boolean;
 };
-export type NamespaceModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  namespacesTableId?: boolean;
-  namespaceEventsTableId?: boolean;
-  namespacesTableName?: boolean;
-  namespaceEventsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type RealtimeModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2315,6 +2305,26 @@ export type WebauthnAuthModuleSelect = {
   residentKey?: boolean;
   challengeExpiry?: boolean;
 };
+export type NamespaceModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  publicSchemaName?: boolean;
+  privateSchemaName?: boolean;
+  namespacesTableId?: boolean;
+  namespaceEventsTableId?: boolean;
+  namespacesTableName?: boolean;
+  namespaceEventsTableName?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
+};
 export type ComputeLogModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2391,6 +2401,27 @@ export type TransferLogModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type PlansModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  plansTableId?: boolean;
+  plansTableName?: boolean;
+  planLimitsTableId?: boolean;
+  planLimitsTableName?: boolean;
+  planPricingTableId?: boolean;
+  planOverridesTableId?: boolean;
+  planMeterLimitsTableId?: boolean;
+  planCapsTableId?: boolean;
+  applyPlanFunction?: boolean;
+  applyPlanAggregateFunction?: boolean;
+  applyBillingPlanFunction?: boolean;
+  applyPlanCapsFunction?: boolean;
+  prefix?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type DbUsageModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2409,6 +2440,7 @@ export type DbUsageModuleSelect = {
   premake?: boolean;
   scope?: boolean;
   prefix?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2430,100 +2462,81 @@ export type NotificationsModuleSelect = {
   hasSettingsExtension?: boolean;
   hasDigestMetadata?: boolean;
   hasSubscriptions?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type PlansModuleSelect = {
+export type BillingProviderModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  plansTableId?: boolean;
-  plansTableName?: boolean;
-  planLimitsTableId?: boolean;
-  planLimitsTableName?: boolean;
-  planPricingTableId?: boolean;
-  planOverridesTableId?: boolean;
-  planMeterLimitsTableId?: boolean;
-  planCapsTableId?: boolean;
-  applyPlanFunction?: boolean;
-  applyPlanAggregateFunction?: boolean;
-  applyBillingPlanFunction?: boolean;
-  applyPlanCapsFunction?: boolean;
+  provider?: boolean;
+  productsTableId?: boolean;
+  pricesTableId?: boolean;
+  subscriptionsTableId?: boolean;
+  billingCustomersTableId?: boolean;
+  billingCustomersTableName?: boolean;
+  billingProductsTableId?: boolean;
+  billingProductsTableName?: boolean;
+  billingPricesTableId?: boolean;
+  billingPricesTableName?: boolean;
+  billingSubscriptionsTableId?: boolean;
+  billingSubscriptionsTableName?: boolean;
+  billingWebhookEventsTableId?: boolean;
+  billingWebhookEventsTableName?: boolean;
+  processBillingEventFunction?: boolean;
   prefix?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type HierarchyModuleSelect = {
+export type FunctionModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  chartEdgesTableId?: boolean;
-  chartEdgesTableName?: boolean;
-  hierarchySprtTableId?: boolean;
-  hierarchySprtTableName?: boolean;
-  chartEdgeGrantsTableId?: boolean;
-  chartEdgeGrantsTableName?: boolean;
-  entityTableId?: boolean;
-  usersTableId?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
+  publicSchemaName?: boolean;
   privateSchemaName?: boolean;
-  sprtTableName?: boolean;
-  rebuildHierarchyFunction?: boolean;
-  getSubordinatesFunction?: boolean;
-  getManagersFunction?: boolean;
-  isManagerOfFunction?: boolean;
-  createdAt?: boolean;
-};
-export type BillingModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  metersTableId?: boolean;
-  metersTableName?: boolean;
-  planSubscriptionsTableId?: boolean;
-  planSubscriptionsTableName?: boolean;
-  ledgerTableId?: boolean;
-  ledgerTableName?: boolean;
-  balancesTableId?: boolean;
-  balancesTableName?: boolean;
-  meterCreditsTableId?: boolean;
-  meterCreditsTableName?: boolean;
-  meterSourcesTableId?: boolean;
-  meterSourcesTableName?: boolean;
-  meterDefaultsTableId?: boolean;
-  meterDefaultsTableName?: boolean;
-  recordUsageFunction?: boolean;
-  prefix?: boolean;
+  definitionsTableId?: boolean;
+  invocationsTableId?: boolean;
+  executionLogsTableId?: boolean;
+  secretDefinitionsTableId?: boolean;
+  definitionsTableName?: boolean;
+  invocationsTableName?: boolean;
+  executionLogsTableName?: boolean;
+  secretDefinitionsTableName?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
 };
-export type BillingProviderModuleSelect = {
+export type HierarchyModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  provider?: boolean;
-  productsTableId?: boolean;
-  pricesTableId?: boolean;
-  subscriptionsTableId?: boolean;
-  billingCustomersTableId?: boolean;
-  billingCustomersTableName?: boolean;
-  billingProductsTableId?: boolean;
-  billingProductsTableName?: boolean;
-  billingPricesTableId?: boolean;
-  billingPricesTableName?: boolean;
-  billingSubscriptionsTableId?: boolean;
-  billingSubscriptionsTableName?: boolean;
-  billingWebhookEventsTableId?: boolean;
-  billingWebhookEventsTableName?: boolean;
-  processBillingEventFunction?: boolean;
+  chartEdgesTableId?: boolean;
+  chartEdgesTableName?: boolean;
+  hierarchySprtTableId?: boolean;
+  hierarchySprtTableName?: boolean;
+  chartEdgeGrantsTableId?: boolean;
+  chartEdgeGrantsTableName?: boolean;
+  entityTableId?: boolean;
+  usersTableId?: boolean;
+  scope?: boolean;
   prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
+  privateSchemaName?: boolean;
+  sprtTableName?: boolean;
+  rebuildHierarchyFunction?: boolean;
+  getSubordinatesFunction?: boolean;
+  getManagersFunction?: boolean;
+  isManagerOfFunction?: boolean;
+  defaultPermissions?: boolean;
+  createdAt?: boolean;
 };
 export type ProfilesModuleSelect = {
   id?: boolean;
@@ -2570,6 +2583,31 @@ export type PermissionsModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type BillingModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  metersTableId?: boolean;
+  metersTableName?: boolean;
+  planSubscriptionsTableId?: boolean;
+  planSubscriptionsTableName?: boolean;
+  ledgerTableId?: boolean;
+  ledgerTableName?: boolean;
+  balancesTableId?: boolean;
+  balancesTableName?: boolean;
+  meterCreditsTableId?: boolean;
+  meterCreditsTableName?: boolean;
+  meterSourcesTableId?: boolean;
+  meterSourcesTableName?: boolean;
+  meterDefaultsTableId?: boolean;
+  meterDefaultsTableName?: boolean;
+  recordUsageFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type RelationProvisionSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2596,34 +2634,6 @@ export type RelationProvisionSelect = {
   outSourceFieldId?: boolean;
   outTargetFieldId?: boolean;
 };
-export type FunctionModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  definitionsTableId?: boolean;
-  invocationsTableId?: boolean;
-  executionLogsTableId?: boolean;
-  secretDefinitionsTableId?: boolean;
-  requirementsTableId?: boolean;
-  configDefinitionsTableId?: boolean;
-  configRequirementsTableId?: boolean;
-  definitionsTableName?: boolean;
-  invocationsTableName?: boolean;
-  executionLogsTableName?: boolean;
-  secretDefinitionsTableName?: boolean;
-  requirementsTableName?: boolean;
-  configRequirementsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type UserAuthModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2678,6 +2688,7 @@ export type AgentModuleSelect = {
   hasPlans?: boolean;
   hasResources?: boolean;
   hasAgents?: boolean;
+  shared?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
   scope?: boolean;
@@ -2686,6 +2697,7 @@ export type AgentModuleSelect = {
   policies?: boolean;
   resources?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
 };
 export type LimitsModuleSelect = {
   id?: boolean;
@@ -2759,6 +2771,8 @@ export type MembershipsModuleSelect = {
   entityIdsByPerm?: boolean;
   entityIdsFunction?: boolean;
   memberProfilesTableId?: boolean;
+  permissionDefaultPermissionsTableId?: boolean;
+  permissionDefaultGrantsTableId?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2797,9 +2811,52 @@ export type StorageModuleSelect = {
   hasConfirmUpload?: boolean;
   confirmUploadDelay?: boolean;
   fileEventsTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type EntityTypeProvisionSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  name?: boolean;
+  prefix?: boolean;
+  description?: boolean;
+  parentEntity?: boolean;
+  tableName?: boolean;
+  isVisible?: boolean;
+  hasLimits?: boolean;
+  hasProfiles?: boolean;
+  hasLevels?: boolean;
+  hasInvites?: boolean;
+  hasInviteAchievements?: boolean;
+  storage?: boolean;
+  namespaces?: boolean;
+  functions?: boolean;
+  graphs?: boolean;
+  agents?: boolean;
+  skipEntityPolicies?: boolean;
+  tableProvision?: boolean;
+  outMembershipType?: boolean;
+  outEntityTableId?: boolean;
+  outEntityTableName?: boolean;
+  outInstalledModules?: boolean;
+  outStorageModuleId?: boolean;
+  outBucketsTableId?: boolean;
+  outFilesTableId?: boolean;
+  outPathSharesTableId?: boolean;
+  outInvitesModuleId?: boolean;
+  outNamespaceModuleId?: boolean;
+  outNamespacesTableId?: boolean;
+  outNamespaceEventsTableId?: boolean;
+  outFunctionModuleId?: boolean;
+  outDefinitionsTableId?: boolean;
+  outInvocationsTableId?: boolean;
+  outExecutionLogsTableId?: boolean;
+  outSecretDefinitionsTableId?: boolean;
+  outGraphModuleId?: boolean;
+  outGraphsTableId?: boolean;
+  outAgentModuleId?: boolean;
+};
 export type EventsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2840,53 +2897,10 @@ export type EventsModuleSelect = {
   prefix?: boolean;
   entityTableId?: boolean;
   actorTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type EntityTypeProvisionSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  name?: boolean;
-  prefix?: boolean;
-  description?: boolean;
-  parentEntity?: boolean;
-  tableName?: boolean;
-  isVisible?: boolean;
-  hasLimits?: boolean;
-  hasProfiles?: boolean;
-  hasLevels?: boolean;
-  hasInvites?: boolean;
-  hasInviteAchievements?: boolean;
-  storage?: boolean;
-  namespaces?: boolean;
-  functions?: boolean;
-  graphs?: boolean;
-  agents?: boolean;
-  skipEntityPolicies?: boolean;
-  tableProvision?: boolean;
-  outMembershipType?: boolean;
-  outEntityTableId?: boolean;
-  outEntityTableName?: boolean;
-  outInstalledModules?: boolean;
-  outStorageModuleId?: boolean;
-  outBucketsTableId?: boolean;
-  outFilesTableId?: boolean;
-  outPathSharesTableId?: boolean;
-  outInvitesModuleId?: boolean;
-  outNamespaceModuleId?: boolean;
-  outNamespacesTableId?: boolean;
-  outNamespaceEventsTableId?: boolean;
-  outFunctionModuleId?: boolean;
-  outDefinitionsTableId?: boolean;
-  outInvocationsTableId?: boolean;
-  outExecutionLogsTableId?: boolean;
-  outSecretDefinitionsTableId?: boolean;
-  outRequirementsTableId?: boolean;
-  outConfigRequirementsTableId?: boolean;
-  outGraphModuleId?: boolean;
-  outGraphsTableId?: boolean;
-  outAgentModuleId?: boolean;
-};
 // ============ Table Filter Types ============
 export interface DefaultIdsModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3538,42 +3552,6 @@ export interface CryptoAuthModuleFilter {
   /** Negates the expression. */
   not?: CryptoAuthModuleFilter;
 }
-export interface RateLimitMetersModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableId` field. */
-  rateLimitStateTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableName` field. */
-  rateLimitStateTableName?: StringFilter;
-  /** Filter by the object’s `rateLimitOverridesTableId` field. */
-  rateLimitOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitOverridesTableName` field. */
-  rateLimitOverridesTableName?: StringFilter;
-  /** Filter by the object’s `rateWindowLimitsTableId` field. */
-  rateWindowLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `rateWindowLimitsTableName` field. */
-  rateWindowLimitsTableName?: StringFilter;
-  /** Filter by the object’s `checkRateLimitFunction` field. */
-  checkRateLimitFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: RateLimitMetersModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: RateLimitMetersModuleFilter[];
-  /** Negates the expression. */
-  not?: RateLimitMetersModuleFilter;
-}
 export interface SessionsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3719,6 +3697,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -3760,7 +3740,7 @@ export interface SecureTableProvisionFilter {
   /** Negates the expression. */
   not?: SecureTableProvisionFilter;
 }
-export interface InvitesModuleFilter {
+export interface RateLimitMetersModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -3769,14 +3749,52 @@ export interface InvitesModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `emailsTableId` field. */
-  emailsTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `invitesTableId` field. */
-  invitesTableId?: UUIDFilter;
-  /** Filter by the object’s `claimedInvitesTableId` field. */
-  claimedInvitesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableId` field. */
+  rateLimitStateTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableName` field. */
+  rateLimitStateTableName?: StringFilter;
+  /** Filter by the object’s `rateLimitOverridesTableId` field. */
+  rateLimitOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitOverridesTableName` field. */
+  rateLimitOverridesTableName?: StringFilter;
+  /** Filter by the object’s `rateWindowLimitsTableId` field. */
+  rateWindowLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `rateWindowLimitsTableName` field. */
+  rateWindowLimitsTableName?: StringFilter;
+  /** Filter by the object’s `checkRateLimitFunction` field. */
+  checkRateLimitFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: RateLimitMetersModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: RateLimitMetersModuleFilter[];
+  /** Negates the expression. */
+  not?: RateLimitMetersModuleFilter;
+}
+export interface InvitesModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `emailsTableId` field. */
+  emailsTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `invitesTableId` field. */
+  invitesTableId?: UUIDFilter;
+  /** Filter by the object’s `claimedInvitesTableId` field. */
+  claimedInvitesTableId?: UUIDFilter;
   /** Filter by the object’s `invitesTableName` field. */
   invitesTableName?: StringFilter;
   /** Filter by the object’s `claimedInvitesTableName` field. */
@@ -3836,48 +3854,6 @@ export interface DatabaseProvisionModuleFilter {
   /** Negates the expression. */
   not?: DatabaseProvisionModuleFilter;
 }
-export interface NamespaceModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `namespacesTableId` field. */
-  namespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `namespaceEventsTableId` field. */
-  namespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `namespacesTableName` field. */
-  namespacesTableName?: StringFilter;
-  /** Filter by the object’s `namespaceEventsTableName` field. */
-  namespaceEventsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: NamespaceModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: NamespaceModuleFilter[];
-  /** Negates the expression. */
-  not?: NamespaceModuleFilter;
-}
 export interface RealtimeModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3954,6 +3930,50 @@ export interface WebauthnAuthModuleFilter {
   /** Negates the expression. */
   not?: WebauthnAuthModuleFilter;
 }
+export interface NamespaceModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `namespacesTableId` field. */
+  namespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `namespaceEventsTableId` field. */
+  namespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `namespacesTableName` field. */
+  namespacesTableName?: StringFilter;
+  /** Filter by the object’s `namespaceEventsTableName` field. */
+  namespaceEventsTableName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: NamespaceModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: NamespaceModuleFilter[];
+  /** Negates the expression. */
+  not?: NamespaceModuleFilter;
+}
 export interface ComputeLogModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4122,6 +4142,52 @@ export interface TransferLogModuleFilter {
   /** Negates the expression. */
   not?: TransferLogModuleFilter;
 }
+export interface PlansModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `plansTableId` field. */
+  plansTableId?: UUIDFilter;
+  /** Filter by the object’s `plansTableName` field. */
+  plansTableName?: StringFilter;
+  /** Filter by the object’s `planLimitsTableId` field. */
+  planLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planLimitsTableName` field. */
+  planLimitsTableName?: StringFilter;
+  /** Filter by the object’s `planPricingTableId` field. */
+  planPricingTableId?: UUIDFilter;
+  /** Filter by the object’s `planOverridesTableId` field. */
+  planOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `planMeterLimitsTableId` field. */
+  planMeterLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planCapsTableId` field. */
+  planCapsTableId?: UUIDFilter;
+  /** Filter by the object’s `applyPlanFunction` field. */
+  applyPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanAggregateFunction` field. */
+  applyPlanAggregateFunction?: StringFilter;
+  /** Filter by the object’s `applyBillingPlanFunction` field. */
+  applyBillingPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanCapsFunction` field. */
+  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: PlansModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: PlansModuleFilter[];
+  /** Negates the expression. */
+  not?: PlansModuleFilter;
+}
 export interface DbUsageModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4157,6 +4223,8 @@ export interface DbUsageModuleFilter {
   scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4203,6 +4271,8 @@ export interface NotificationsModuleFilter {
   hasDigestMetadata?: BooleanFilter;
   /** Filter by the object’s `hasSubscriptions` field. */
   hasSubscriptions?: BooleanFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4214,7 +4284,7 @@ export interface NotificationsModuleFilter {
   /** Negates the expression. */
   not?: NotificationsModuleFilter;
 }
-export interface PlansModuleFilter {
+export interface BillingProviderModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4223,30 +4293,36 @@ export interface PlansModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `plansTableId` field. */
-  plansTableId?: UUIDFilter;
-  /** Filter by the object’s `plansTableName` field. */
-  plansTableName?: StringFilter;
-  /** Filter by the object’s `planLimitsTableId` field. */
-  planLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planLimitsTableName` field. */
-  planLimitsTableName?: StringFilter;
-  /** Filter by the object’s `planPricingTableId` field. */
-  planPricingTableId?: UUIDFilter;
-  /** Filter by the object’s `planOverridesTableId` field. */
-  planOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `planMeterLimitsTableId` field. */
-  planMeterLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planCapsTableId` field. */
-  planCapsTableId?: UUIDFilter;
-  /** Filter by the object’s `applyPlanFunction` field. */
-  applyPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanAggregateFunction` field. */
-  applyPlanAggregateFunction?: StringFilter;
-  /** Filter by the object’s `applyBillingPlanFunction` field. */
-  applyBillingPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanCapsFunction` field. */
-  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `provider` field. */
+  provider?: StringFilter;
+  /** Filter by the object’s `productsTableId` field. */
+  productsTableId?: UUIDFilter;
+  /** Filter by the object’s `pricesTableId` field. */
+  pricesTableId?: UUIDFilter;
+  /** Filter by the object’s `subscriptionsTableId` field. */
+  subscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableId` field. */
+  billingCustomersTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableName` field. */
+  billingCustomersTableName?: StringFilter;
+  /** Filter by the object’s `billingProductsTableId` field. */
+  billingProductsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingProductsTableName` field. */
+  billingProductsTableName?: StringFilter;
+  /** Filter by the object’s `billingPricesTableId` field. */
+  billingPricesTableId?: UUIDFilter;
+  /** Filter by the object’s `billingPricesTableName` field. */
+  billingPricesTableName?: StringFilter;
+  /** Filter by the object’s `billingSubscriptionsTableId` field. */
+  billingSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingSubscriptionsTableName` field. */
+  billingSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `billingWebhookEventsTableId` field. */
+  billingWebhookEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingWebhookEventsTableName` field. */
+  billingWebhookEventsTableName?: StringFilter;
+  /** Filter by the object’s `processBillingEventFunction` field. */
+  processBillingEventFunction?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
   /** Filter by the object’s `apiName` field. */
@@ -4254,13 +4330,13 @@ export interface PlansModuleFilter {
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
   /** Checks for all expressions in this list. */
-  and?: PlansModuleFilter[];
+  and?: BillingProviderModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: PlansModuleFilter[];
+  or?: BillingProviderModuleFilter[];
   /** Negates the expression. */
-  not?: PlansModuleFilter;
+  not?: BillingProviderModuleFilter;
 }
-export interface HierarchyModuleFilter {
+export interface FunctionModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4269,100 +4345,50 @@ export interface HierarchyModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableId` field. */
-  chartEdgesTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableName` field. */
-  chartEdgesTableName?: StringFilter;
-  /** Filter by the object’s `hierarchySprtTableId` field. */
-  hierarchySprtTableId?: UUIDFilter;
-  /** Filter by the object’s `hierarchySprtTableName` field. */
-  hierarchySprtTableName?: StringFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
-  chartEdgeGrantsTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
-  chartEdgeGrantsTableName?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
   /** Filter by the object’s `privateSchemaName` field. */
   privateSchemaName?: StringFilter;
-  /** Filter by the object’s `sprtTableName` field. */
-  sprtTableName?: StringFilter;
-  /** Filter by the object’s `rebuildHierarchyFunction` field. */
-  rebuildHierarchyFunction?: StringFilter;
-  /** Filter by the object’s `getSubordinatesFunction` field. */
-  getSubordinatesFunction?: StringFilter;
-  /** Filter by the object’s `getManagersFunction` field. */
-  getManagersFunction?: StringFilter;
-  /** Filter by the object’s `isManagerOfFunction` field. */
-  isManagerOfFunction?: StringFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Checks for all expressions in this list. */
-  and?: HierarchyModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: HierarchyModuleFilter[];
-  /** Negates the expression. */
-  not?: HierarchyModuleFilter;
-}
-export interface BillingModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `metersTableId` field. */
-  metersTableId?: UUIDFilter;
-  /** Filter by the object’s `metersTableName` field. */
-  metersTableName?: StringFilter;
-  /** Filter by the object’s `planSubscriptionsTableId` field. */
-  planSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `planSubscriptionsTableName` field. */
-  planSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `ledgerTableId` field. */
-  ledgerTableId?: UUIDFilter;
-  /** Filter by the object’s `ledgerTableName` field. */
-  ledgerTableName?: StringFilter;
-  /** Filter by the object’s `balancesTableId` field. */
-  balancesTableId?: UUIDFilter;
-  /** Filter by the object’s `balancesTableName` field. */
-  balancesTableName?: StringFilter;
-  /** Filter by the object’s `meterCreditsTableId` field. */
-  meterCreditsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterCreditsTableName` field. */
-  meterCreditsTableName?: StringFilter;
-  /** Filter by the object’s `meterSourcesTableId` field. */
-  meterSourcesTableId?: UUIDFilter;
-  /** Filter by the object’s `meterSourcesTableName` field. */
-  meterSourcesTableName?: StringFilter;
-  /** Filter by the object’s `meterDefaultsTableId` field. */
-  meterDefaultsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterDefaultsTableName` field. */
-  meterDefaultsTableName?: StringFilter;
-  /** Filter by the object’s `recordUsageFunction` field. */
-  recordUsageFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `definitionsTableId` field. */
+  definitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `invocationsTableId` field. */
+  invocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `executionLogsTableId` field. */
+  executionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `secretDefinitionsTableId` field. */
+  secretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `definitionsTableName` field. */
+  definitionsTableName?: StringFilter;
+  /** Filter by the object’s `invocationsTableName` field. */
+  invocationsTableName?: StringFilter;
+  /** Filter by the object’s `executionLogsTableName` field. */
+  executionLogsTableName?: StringFilter;
+  /** Filter by the object’s `secretDefinitionsTableName` field. */
+  secretDefinitionsTableName?: StringFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingModuleFilter[];
+  and?: FunctionModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingModuleFilter[];
+  or?: FunctionModuleFilter[];
   /** Negates the expression. */
-  not?: BillingModuleFilter;
+  not?: FunctionModuleFilter;
 }
-export interface BillingProviderModuleFilter {
+export interface HierarchyModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4371,48 +4397,48 @@ export interface BillingProviderModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `provider` field. */
-  provider?: StringFilter;
-  /** Filter by the object’s `productsTableId` field. */
-  productsTableId?: UUIDFilter;
-  /** Filter by the object’s `pricesTableId` field. */
-  pricesTableId?: UUIDFilter;
-  /** Filter by the object’s `subscriptionsTableId` field. */
-  subscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableId` field. */
-  billingCustomersTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableName` field. */
-  billingCustomersTableName?: StringFilter;
-  /** Filter by the object’s `billingProductsTableId` field. */
-  billingProductsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingProductsTableName` field. */
-  billingProductsTableName?: StringFilter;
-  /** Filter by the object’s `billingPricesTableId` field. */
-  billingPricesTableId?: UUIDFilter;
-  /** Filter by the object’s `billingPricesTableName` field. */
-  billingPricesTableName?: StringFilter;
-  /** Filter by the object’s `billingSubscriptionsTableId` field. */
-  billingSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingSubscriptionsTableName` field. */
-  billingSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `billingWebhookEventsTableId` field. */
-  billingWebhookEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingWebhookEventsTableName` field. */
-  billingWebhookEventsTableName?: StringFilter;
-  /** Filter by the object’s `processBillingEventFunction` field. */
-  processBillingEventFunction?: StringFilter;
+  /** Filter by the object’s `chartEdgesTableId` field. */
+  chartEdgesTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgesTableName` field. */
+  chartEdgesTableName?: StringFilter;
+  /** Filter by the object’s `hierarchySprtTableId` field. */
+  hierarchySprtTableId?: UUIDFilter;
+  /** Filter by the object’s `hierarchySprtTableName` field. */
+  hierarchySprtTableName?: StringFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
+  chartEdgeGrantsTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
+  chartEdgeGrantsTableName?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `sprtTableName` field. */
+  sprtTableName?: StringFilter;
+  /** Filter by the object’s `rebuildHierarchyFunction` field. */
+  rebuildHierarchyFunction?: StringFilter;
+  /** Filter by the object’s `getSubordinatesFunction` field. */
+  getSubordinatesFunction?: StringFilter;
+  /** Filter by the object’s `getManagersFunction` field. */
+  getManagersFunction?: StringFilter;
+  /** Filter by the object’s `isManagerOfFunction` field. */
+  isManagerOfFunction?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingProviderModuleFilter[];
+  and?: HierarchyModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingProviderModuleFilter[];
+  or?: HierarchyModuleFilter[];
   /** Negates the expression. */
-  not?: BillingProviderModuleFilter;
+  not?: HierarchyModuleFilter;
 }
 export interface ProfilesModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -4512,6 +4538,60 @@ export interface PermissionsModuleFilter {
   /** Negates the expression. */
   not?: PermissionsModuleFilter;
 }
+export interface BillingModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `metersTableId` field. */
+  metersTableId?: UUIDFilter;
+  /** Filter by the object’s `metersTableName` field. */
+  metersTableName?: StringFilter;
+  /** Filter by the object’s `planSubscriptionsTableId` field. */
+  planSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `planSubscriptionsTableName` field. */
+  planSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `ledgerTableId` field. */
+  ledgerTableId?: UUIDFilter;
+  /** Filter by the object’s `ledgerTableName` field. */
+  ledgerTableName?: StringFilter;
+  /** Filter by the object’s `balancesTableId` field. */
+  balancesTableId?: UUIDFilter;
+  /** Filter by the object’s `balancesTableName` field. */
+  balancesTableName?: StringFilter;
+  /** Filter by the object’s `meterCreditsTableId` field. */
+  meterCreditsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterCreditsTableName` field. */
+  meterCreditsTableName?: StringFilter;
+  /** Filter by the object’s `meterSourcesTableId` field. */
+  meterSourcesTableId?: UUIDFilter;
+  /** Filter by the object’s `meterSourcesTableName` field. */
+  meterSourcesTableName?: StringFilter;
+  /** Filter by the object’s `meterDefaultsTableId` field. */
+  meterDefaultsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterDefaultsTableName` field. */
+  meterDefaultsTableName?: StringFilter;
+  /** Filter by the object’s `recordUsageFunction` field. */
+  recordUsageFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: BillingModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: BillingModuleFilter[];
+  /** Negates the expression. */
+  not?: BillingModuleFilter;
+}
 export interface RelationProvisionFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4568,67 +4648,7 @@ export interface RelationProvisionFilter {
   /** Negates the expression. */
   not?: RelationProvisionFilter;
 }
-export interface FunctionModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `definitionsTableId` field. */
-  definitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `invocationsTableId` field. */
-  invocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `executionLogsTableId` field. */
-  executionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `secretDefinitionsTableId` field. */
-  secretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `requirementsTableId` field. */
-  requirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `configDefinitionsTableId` field. */
-  configDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `configRequirementsTableId` field. */
-  configRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `definitionsTableName` field. */
-  definitionsTableName?: StringFilter;
-  /** Filter by the object’s `invocationsTableName` field. */
-  invocationsTableName?: StringFilter;
-  /** Filter by the object’s `executionLogsTableName` field. */
-  executionLogsTableName?: StringFilter;
-  /** Filter by the object’s `secretDefinitionsTableName` field. */
-  secretDefinitionsTableName?: StringFilter;
-  /** Filter by the object’s `requirementsTableName` field. */
-  requirementsTableName?: StringFilter;
-  /** Filter by the object’s `configRequirementsTableName` field. */
-  configRequirementsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: FunctionModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: FunctionModuleFilter[];
-  /** Negates the expression. */
-  not?: FunctionModuleFilter;
-}
-export interface UserAuthModuleFilter {
+export interface UserAuthModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4739,6 +4759,8 @@ export interface AgentModuleFilter {
   hasResources?: BooleanFilter;
   /** Filter by the object’s `hasAgents` field. */
   hasAgents?: BooleanFilter;
+  /** Filter by the object’s `shared` field. */
+  shared?: BooleanFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4755,6 +4777,8 @@ export interface AgentModuleFilter {
   resources?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
   and?: AgentModuleFilter[];
   /** Checks for any expressions in this list. */
@@ -4909,6 +4933,10 @@ export interface MembershipsModuleFilter {
   entityIdsFunction?: StringFilter;
   /** Filter by the object’s `memberProfilesTableId` field. */
   memberProfilesTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultPermissionsTableId` field. */
+  permissionDefaultPermissionsTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultGrantsTableId` field. */
+  permissionDefaultGrantsTableId?: UUIDFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4989,6 +5017,8 @@ export interface StorageModuleFilter {
   confirmUploadDelay?: IntervalFilter;
   /** Filter by the object’s `fileEventsTableId` field. */
   fileEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5000,6 +5030,94 @@ export interface StorageModuleFilter {
   /** Negates the expression. */
   not?: StorageModuleFilter;
 }
+export interface EntityTypeProvisionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `parentEntity` field. */
+  parentEntity?: StringFilter;
+  /** Filter by the object’s `tableName` field. */
+  tableName?: StringFilter;
+  /** Filter by the object’s `isVisible` field. */
+  isVisible?: BooleanFilter;
+  /** Filter by the object’s `hasLimits` field. */
+  hasLimits?: BooleanFilter;
+  /** Filter by the object’s `hasProfiles` field. */
+  hasProfiles?: BooleanFilter;
+  /** Filter by the object’s `hasLevels` field. */
+  hasLevels?: BooleanFilter;
+  /** Filter by the object’s `hasInvites` field. */
+  hasInvites?: BooleanFilter;
+  /** Filter by the object’s `hasInviteAchievements` field. */
+  hasInviteAchievements?: BooleanFilter;
+  /** Filter by the object’s `storage` field. */
+  storage?: JSONFilter;
+  /** Filter by the object’s `namespaces` field. */
+  namespaces?: JSONFilter;
+  /** Filter by the object’s `functions` field. */
+  functions?: JSONFilter;
+  /** Filter by the object’s `graphs` field. */
+  graphs?: JSONFilter;
+  /** Filter by the object’s `agents` field. */
+  agents?: JSONFilter;
+  /** Filter by the object’s `skipEntityPolicies` field. */
+  skipEntityPolicies?: BooleanFilter;
+  /** Filter by the object’s `tableProvision` field. */
+  tableProvision?: JSONFilter;
+  /** Filter by the object’s `outMembershipType` field. */
+  outMembershipType?: IntFilter;
+  /** Filter by the object’s `outEntityTableId` field. */
+  outEntityTableId?: UUIDFilter;
+  /** Filter by the object’s `outEntityTableName` field. */
+  outEntityTableName?: StringFilter;
+  /** Filter by the object’s `outInstalledModules` field. */
+  outInstalledModules?: StringListFilter;
+  /** Filter by the object’s `outStorageModuleId` field. */
+  outStorageModuleId?: UUIDFilter;
+  /** Filter by the object’s `outBucketsTableId` field. */
+  outBucketsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFilesTableId` field. */
+  outFilesTableId?: UUIDFilter;
+  /** Filter by the object’s `outPathSharesTableId` field. */
+  outPathSharesTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvitesModuleId` field. */
+  outInvitesModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceModuleId` field. */
+  outNamespaceModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespacesTableId` field. */
+  outNamespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceEventsTableId` field. */
+  outNamespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFunctionModuleId` field. */
+  outFunctionModuleId?: UUIDFilter;
+  /** Filter by the object’s `outDefinitionsTableId` field. */
+  outDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvocationsTableId` field. */
+  outInvocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `outExecutionLogsTableId` field. */
+  outExecutionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
+  outSecretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outGraphModuleId` field. */
+  outGraphModuleId?: UUIDFilter;
+  /** Filter by the object’s `outGraphsTableId` field. */
+  outGraphsTableId?: UUIDFilter;
+  /** Filter by the object’s `outAgentModuleId` field. */
+  outAgentModuleId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: EntityTypeProvisionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: EntityTypeProvisionFilter[];
+  /** Negates the expression. */
+  not?: EntityTypeProvisionFilter;
+}
 export interface EventsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -5079,6 +5197,8 @@ export interface EventsModuleFilter {
   entityTableId?: UUIDFilter;
   /** Filter by the object’s `actorTableId` field. */
   actorTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5090,98 +5210,6 @@ export interface EventsModuleFilter {
   /** Negates the expression. */
   not?: EventsModuleFilter;
 }
-export interface EntityTypeProvisionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Filter by the object’s `parentEntity` field. */
-  parentEntity?: StringFilter;
-  /** Filter by the object’s `tableName` field. */
-  tableName?: StringFilter;
-  /** Filter by the object’s `isVisible` field. */
-  isVisible?: BooleanFilter;
-  /** Filter by the object’s `hasLimits` field. */
-  hasLimits?: BooleanFilter;
-  /** Filter by the object’s `hasProfiles` field. */
-  hasProfiles?: BooleanFilter;
-  /** Filter by the object’s `hasLevels` field. */
-  hasLevels?: BooleanFilter;
-  /** Filter by the object’s `hasInvites` field. */
-  hasInvites?: BooleanFilter;
-  /** Filter by the object’s `hasInviteAchievements` field. */
-  hasInviteAchievements?: BooleanFilter;
-  /** Filter by the object’s `storage` field. */
-  storage?: JSONFilter;
-  /** Filter by the object’s `namespaces` field. */
-  namespaces?: JSONFilter;
-  /** Filter by the object’s `functions` field. */
-  functions?: JSONFilter;
-  /** Filter by the object’s `graphs` field. */
-  graphs?: JSONFilter;
-  /** Filter by the object’s `agents` field. */
-  agents?: JSONFilter;
-  /** Filter by the object’s `skipEntityPolicies` field. */
-  skipEntityPolicies?: BooleanFilter;
-  /** Filter by the object’s `tableProvision` field. */
-  tableProvision?: JSONFilter;
-  /** Filter by the object’s `outMembershipType` field. */
-  outMembershipType?: IntFilter;
-  /** Filter by the object’s `outEntityTableId` field. */
-  outEntityTableId?: UUIDFilter;
-  /** Filter by the object’s `outEntityTableName` field. */
-  outEntityTableName?: StringFilter;
-  /** Filter by the object’s `outInstalledModules` field. */
-  outInstalledModules?: StringListFilter;
-  /** Filter by the object’s `outStorageModuleId` field. */
-  outStorageModuleId?: UUIDFilter;
-  /** Filter by the object’s `outBucketsTableId` field. */
-  outBucketsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFilesTableId` field. */
-  outFilesTableId?: UUIDFilter;
-  /** Filter by the object’s `outPathSharesTableId` field. */
-  outPathSharesTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvitesModuleId` field. */
-  outInvitesModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceModuleId` field. */
-  outNamespaceModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespacesTableId` field. */
-  outNamespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceEventsTableId` field. */
-  outNamespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFunctionModuleId` field. */
-  outFunctionModuleId?: UUIDFilter;
-  /** Filter by the object’s `outDefinitionsTableId` field. */
-  outDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvocationsTableId` field. */
-  outInvocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `outExecutionLogsTableId` field. */
-  outExecutionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
-  outSecretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outRequirementsTableId` field. */
-  outRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outConfigRequirementsTableId` field. */
-  outConfigRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outGraphModuleId` field. */
-  outGraphModuleId?: UUIDFilter;
-  /** Filter by the object’s `outGraphsTableId` field. */
-  outGraphsTableId?: UUIDFilter;
-  /** Filter by the object’s `outAgentModuleId` field. */
-  outAgentModuleId?: UUIDFilter;
-  /** Checks for all expressions in this list. */
-  and?: EntityTypeProvisionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: EntityTypeProvisionFilter[];
-  /** Negates the expression. */
-  not?: EntityTypeProvisionFilter;
-}
 // ============ OrderBy Types ============
 export type DefaultIdsModuleOrderBy =
   | 'NATURAL'
@@ -5715,38 +5743,6 @@ export type CryptoAuthModuleOrderBy =
   | 'SIGN_UP_WITH_KEY_DESC'
   | 'SIGN_IN_WITH_CHALLENGE_ASC'
   | 'SIGN_IN_WITH_CHALLENGE_DESC';
-export type RateLimitMetersModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
 export type SessionsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5879,6 +5875,8 @@ export type GraphModuleOrderBy =
   | 'POLICIES_DESC'
   | 'PROVISIONS_ASC'
   | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC';
 export type SecureTableProvisionOrderBy =
@@ -5907,7 +5905,7 @@ export type SecureTableProvisionOrderBy =
   | 'POLICIES_DESC'
   | 'OUT_FIELDS_ASC'
   | 'OUT_FIELDS_DESC';
-export type InvitesModuleOrderBy =
+export type RateLimitMetersModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -5919,32 +5917,66 @@ export type InvitesModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EMAILS_TABLE_ID_ASC'
-  | 'EMAILS_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'INVITES_TABLE_ID_ASC'
-  | 'INVITES_TABLE_ID_DESC'
-  | 'CLAIMED_INVITES_TABLE_ID_ASC'
-  | 'CLAIMED_INVITES_TABLE_ID_DESC'
-  | 'INVITES_TABLE_NAME_ASC'
-  | 'INVITES_TABLE_NAME_DESC'
-  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
-  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type DatabaseProvisionModuleOrderBy =
-  | 'NATURAL'
+  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type InvitesModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EMAILS_TABLE_ID_ASC'
+  | 'EMAILS_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'INVITES_TABLE_ID_ASC'
+  | 'INVITES_TABLE_ID_DESC'
+  | 'CLAIMED_INVITES_TABLE_ID_ASC'
+  | 'CLAIMED_INVITES_TABLE_ID_DESC'
+  | 'INVITES_TABLE_NAME_ASC'
+  | 'INVITES_TABLE_NAME_DESC'
+  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
+  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type DatabaseProvisionModuleOrderBy =
+  | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
   | 'ID_ASC'
@@ -5975,44 +6007,6 @@ export type DatabaseProvisionModuleOrderBy =
   | 'UPDATED_AT_DESC'
   | 'COMPLETED_AT_ASC'
   | 'COMPLETED_AT_DESC';
-export type NamespaceModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'NAMESPACES_TABLE_ID_ASC'
-  | 'NAMESPACES_TABLE_ID_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
-  | 'NAMESPACES_TABLE_NAME_ASC'
-  | 'NAMESPACES_TABLE_NAME_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type RealtimeModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6081,6 +6075,46 @@ export type WebauthnAuthModuleOrderBy =
   | 'RESIDENT_KEY_DESC'
   | 'CHALLENGE_EXPIRY_ASC'
   | 'CHALLENGE_EXPIRY_DESC';
+export type NamespaceModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'NAMESPACES_TABLE_ID_ASC'
+  | 'NAMESPACES_TABLE_ID_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
+  | 'NAMESPACES_TABLE_NAME_ASC'
+  | 'NAMESPACES_TABLE_NAME_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type ComputeLogModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6233,6 +6267,48 @@ export type TransferLogModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type PlansModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PLANS_TABLE_ID_ASC'
+  | 'PLANS_TABLE_ID_DESC'
+  | 'PLANS_TABLE_NAME_ASC'
+  | 'PLANS_TABLE_NAME_DESC'
+  | 'PLAN_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_LIMITS_TABLE_NAME_ASC'
+  | 'PLAN_LIMITS_TABLE_NAME_DESC'
+  | 'PLAN_PRICING_TABLE_ID_ASC'
+  | 'PLAN_PRICING_TABLE_ID_DESC'
+  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
+  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_CAPS_TABLE_ID_ASC'
+  | 'PLAN_CAPS_TABLE_ID_DESC'
+  | 'APPLY_PLAN_FUNCTION_ASC'
+  | 'APPLY_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type DbUsageModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6271,6 +6347,8 @@ export type DbUsageModuleOrderBy =
   | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6313,11 +6391,13 @@ export type NotificationsModuleOrderBy =
   | 'HAS_DIGEST_METADATA_DESC'
   | 'HAS_SUBSCRIPTIONS_ASC'
   | 'HAS_SUBSCRIPTIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type PlansModuleOrderBy =
+export type BillingProviderModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6329,37 +6409,43 @@ export type PlansModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PLANS_TABLE_ID_ASC'
-  | 'PLANS_TABLE_ID_DESC'
-  | 'PLANS_TABLE_NAME_ASC'
-  | 'PLANS_TABLE_NAME_DESC'
-  | 'PLAN_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_LIMITS_TABLE_NAME_ASC'
-  | 'PLAN_LIMITS_TABLE_NAME_DESC'
-  | 'PLAN_PRICING_TABLE_ID_ASC'
-  | 'PLAN_PRICING_TABLE_ID_DESC'
-  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
-  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_CAPS_TABLE_ID_ASC'
-  | 'PLAN_CAPS_TABLE_ID_DESC'
-  | 'APPLY_PLAN_FUNCTION_ASC'
-  | 'APPLY_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PROVIDER_ASC'
+  | 'PROVIDER_DESC'
+  | 'PRODUCTS_TABLE_ID_ASC'
+  | 'PRODUCTS_TABLE_ID_DESC'
+  | 'PRICES_TABLE_ID_ASC'
+  | 'PRICES_TABLE_ID_DESC'
+  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
+  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
+  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
+  | 'BILLING_PRICES_TABLE_ID_ASC'
+  | 'BILLING_PRICES_TABLE_ID_DESC'
+  | 'BILLING_PRICES_TABLE_NAME_ASC'
+  | 'BILLING_PRICES_TABLE_NAME_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type HierarchyModuleOrderBy =
+export type FunctionModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6371,89 +6457,43 @@ export type HierarchyModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'CHART_EDGES_TABLE_ID_ASC'
-  | 'CHART_EDGES_TABLE_ID_DESC'
-  | 'CHART_EDGES_TABLE_NAME_ASC'
-  | 'CHART_EDGES_TABLE_NAME_DESC'
-  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
-  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
   | 'PRIVATE_SCHEMA_NAME_ASC'
   | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'SPRT_TABLE_NAME_ASC'
-  | 'SPRT_TABLE_NAME_DESC'
-  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
-  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
-  | 'GET_SUBORDINATES_FUNCTION_ASC'
-  | 'GET_SUBORDINATES_FUNCTION_DESC'
-  | 'GET_MANAGERS_FUNCTION_ASC'
-  | 'GET_MANAGERS_FUNCTION_DESC'
-  | 'IS_MANAGER_OF_FUNCTION_ASC'
-  | 'IS_MANAGER_OF_FUNCTION_DESC'
-  | 'CREATED_AT_ASC'
-  | 'CREATED_AT_DESC';
-export type BillingModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'METERS_TABLE_ID_ASC'
-  | 'METERS_TABLE_ID_DESC'
-  | 'METERS_TABLE_NAME_ASC'
-  | 'METERS_TABLE_NAME_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'LEDGER_TABLE_ID_ASC'
-  | 'LEDGER_TABLE_ID_DESC'
-  | 'LEDGER_TABLE_NAME_ASC'
-  | 'LEDGER_TABLE_NAME_DESC'
-  | 'BALANCES_TABLE_ID_ASC'
-  | 'BALANCES_TABLE_ID_DESC'
-  | 'BALANCES_TABLE_NAME_ASC'
-  | 'BALANCES_TABLE_NAME_DESC'
-  | 'METER_CREDITS_TABLE_ID_ASC'
-  | 'METER_CREDITS_TABLE_ID_DESC'
-  | 'METER_CREDITS_TABLE_NAME_ASC'
-  | 'METER_CREDITS_TABLE_NAME_DESC'
-  | 'METER_SOURCES_TABLE_ID_ASC'
-  | 'METER_SOURCES_TABLE_ID_DESC'
-  | 'METER_SOURCES_TABLE_NAME_ASC'
-  | 'METER_SOURCES_TABLE_NAME_DESC'
-  | 'METER_DEFAULTS_TABLE_ID_ASC'
-  | 'METER_DEFAULTS_TABLE_ID_DESC'
-  | 'METER_DEFAULTS_TABLE_NAME_ASC'
-  | 'METER_DEFAULTS_TABLE_NAME_DESC'
-  | 'RECORD_USAGE_FUNCTION_ASC'
-  | 'RECORD_USAGE_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'DEFINITIONS_TABLE_ID_ASC'
+  | 'DEFINITIONS_TABLE_ID_DESC'
+  | 'INVOCATIONS_TABLE_ID_ASC'
+  | 'INVOCATIONS_TABLE_ID_DESC'
+  | 'EXECUTION_LOGS_TABLE_ID_ASC'
+  | 'EXECUTION_LOGS_TABLE_ID_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
+  | 'DEFINITIONS_TABLE_NAME_ASC'
+  | 'DEFINITIONS_TABLE_NAME_DESC'
+  | 'INVOCATIONS_TABLE_NAME_ASC'
+  | 'INVOCATIONS_TABLE_NAME_DESC'
+  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
+  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type BillingProviderModuleOrderBy =
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
+export type HierarchyModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6465,42 +6505,42 @@ export type BillingProviderModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PROVIDER_ASC'
-  | 'PROVIDER_DESC'
-  | 'PRODUCTS_TABLE_ID_ASC'
-  | 'PRODUCTS_TABLE_ID_DESC'
-  | 'PRICES_TABLE_ID_ASC'
-  | 'PRICES_TABLE_ID_DESC'
-  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
-  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
-  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
-  | 'BILLING_PRICES_TABLE_ID_ASC'
-  | 'BILLING_PRICES_TABLE_ID_DESC'
-  | 'BILLING_PRICES_TABLE_NAME_ASC'
-  | 'BILLING_PRICES_TABLE_NAME_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
+  | 'CHART_EDGES_TABLE_ID_ASC'
+  | 'CHART_EDGES_TABLE_ID_DESC'
+  | 'CHART_EDGES_TABLE_NAME_ASC'
+  | 'CHART_EDGES_TABLE_NAME_DESC'
+  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
+  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'SPRT_TABLE_NAME_ASC'
+  | 'SPRT_TABLE_NAME_DESC'
+  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
+  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
+  | 'GET_SUBORDINATES_FUNCTION_ASC'
+  | 'GET_SUBORDINATES_FUNCTION_DESC'
+  | 'GET_MANAGERS_FUNCTION_ASC'
+  | 'GET_MANAGERS_FUNCTION_DESC'
+  | 'IS_MANAGER_OF_FUNCTION_ASC'
+  | 'IS_MANAGER_OF_FUNCTION_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC';
 export type ProfilesModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6591,6 +6631,56 @@ export type PermissionsModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type BillingModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'METERS_TABLE_ID_ASC'
+  | 'METERS_TABLE_ID_DESC'
+  | 'METERS_TABLE_NAME_ASC'
+  | 'METERS_TABLE_NAME_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'LEDGER_TABLE_ID_ASC'
+  | 'LEDGER_TABLE_ID_DESC'
+  | 'LEDGER_TABLE_NAME_ASC'
+  | 'LEDGER_TABLE_NAME_DESC'
+  | 'BALANCES_TABLE_ID_ASC'
+  | 'BALANCES_TABLE_ID_DESC'
+  | 'BALANCES_TABLE_NAME_ASC'
+  | 'BALANCES_TABLE_NAME_DESC'
+  | 'METER_CREDITS_TABLE_ID_ASC'
+  | 'METER_CREDITS_TABLE_ID_DESC'
+  | 'METER_CREDITS_TABLE_NAME_ASC'
+  | 'METER_CREDITS_TABLE_NAME_DESC'
+  | 'METER_SOURCES_TABLE_ID_ASC'
+  | 'METER_SOURCES_TABLE_ID_DESC'
+  | 'METER_SOURCES_TABLE_NAME_ASC'
+  | 'METER_SOURCES_TABLE_NAME_DESC'
+  | 'METER_DEFAULTS_TABLE_ID_ASC'
+  | 'METER_DEFAULTS_TABLE_ID_DESC'
+  | 'METER_DEFAULTS_TABLE_NAME_ASC'
+  | 'METER_DEFAULTS_TABLE_NAME_DESC'
+  | 'RECORD_USAGE_FUNCTION_ASC'
+  | 'RECORD_USAGE_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type RelationProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6643,62 +6733,6 @@ export type RelationProvisionOrderBy =
   | 'OUT_SOURCE_FIELD_ID_DESC'
   | 'OUT_TARGET_FIELD_ID_ASC'
   | 'OUT_TARGET_FIELD_ID_DESC';
-export type FunctionModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'DEFINITIONS_TABLE_ID_ASC'
-  | 'DEFINITIONS_TABLE_ID_DESC'
-  | 'INVOCATIONS_TABLE_ID_ASC'
-  | 'INVOCATIONS_TABLE_ID_DESC'
-  | 'EXECUTION_LOGS_TABLE_ID_ASC'
-  | 'EXECUTION_LOGS_TABLE_ID_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'REQUIREMENTS_TABLE_ID_ASC'
-  | 'REQUIREMENTS_TABLE_ID_DESC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_ASC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_DESC'
-  | 'DEFINITIONS_TABLE_NAME_ASC'
-  | 'DEFINITIONS_TABLE_NAME_DESC'
-  | 'INVOCATIONS_TABLE_NAME_ASC'
-  | 'INVOCATIONS_TABLE_NAME_DESC'
-  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
-  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
-  | 'REQUIREMENTS_TABLE_NAME_ASC'
-  | 'REQUIREMENTS_TABLE_NAME_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type UserAuthModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6809,6 +6843,8 @@ export type AgentModuleOrderBy =
   | 'HAS_RESOURCES_DESC'
   | 'HAS_AGENTS_ASC'
   | 'HAS_AGENTS_DESC'
+  | 'SHARED_ASC'
+  | 'SHARED_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6824,7 +6860,9 @@ export type AgentModuleOrderBy =
   | 'RESOURCES_ASC'
   | 'RESOURCES_DESC'
   | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type LimitsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6971,6 +7009,10 @@ export type MembershipsModuleOrderBy =
   | 'ENTITY_IDS_FUNCTION_DESC'
   | 'MEMBER_PROFILES_TABLE_ID_ASC'
   | 'MEMBER_PROFILES_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -7047,97 +7089,13 @@ export type StorageModuleOrderBy =
   | 'CONFIRM_UPLOAD_DELAY_DESC'
   | 'FILE_EVENTS_TABLE_ID_ASC'
   | 'FILE_EVENTS_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type EventsModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EVENTS_TABLE_ID_ASC'
-  | 'EVENTS_TABLE_ID_DESC'
-  | 'EVENTS_TABLE_NAME_ASC'
-  | 'EVENTS_TABLE_NAME_DESC'
-  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
-  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
-  | 'EVENT_TYPES_TABLE_ID_ASC'
-  | 'EVENT_TYPES_TABLE_ID_DESC'
-  | 'EVENT_TYPES_TABLE_NAME_ASC'
-  | 'EVENT_TYPES_TABLE_NAME_DESC'
-  | 'LEVELS_TABLE_ID_ASC'
-  | 'LEVELS_TABLE_ID_DESC'
-  | 'LEVELS_TABLE_NAME_ASC'
-  | 'LEVELS_TABLE_NAME_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'LEVEL_GRANTS_TABLE_ID_ASC'
-  | 'LEVEL_GRANTS_TABLE_ID_DESC'
-  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
-  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
-  | 'RECORD_EVENT_ASC'
-  | 'RECORD_EVENT_DESC'
-  | 'REMOVE_EVENT_ASC'
-  | 'REMOVE_EVENT_DESC'
-  | 'TG_EVENT_ASC'
-  | 'TG_EVENT_DESC'
-  | 'TG_EVENT_TOGGLE_ASC'
-  | 'TG_EVENT_TOGGLE_DESC'
-  | 'TG_EVENT_TOGGLE_BOOL_ASC'
-  | 'TG_EVENT_TOGGLE_BOOL_DESC'
-  | 'TG_EVENT_BOOL_ASC'
-  | 'TG_EVENT_BOOL_DESC'
-  | 'UPSERT_AGGREGATE_ASC'
-  | 'UPSERT_AGGREGATE_DESC'
-  | 'TG_UPDATE_AGGREGATES_ASC'
-  | 'TG_UPDATE_AGGREGATES_DESC'
-  | 'PRUNE_EVENTS_ASC'
-  | 'PRUNE_EVENTS_DESC'
-  | 'STEPS_REQUIRED_ASC'
-  | 'STEPS_REQUIRED_DESC'
-  | 'LEVEL_ACHIEVED_ASC'
-  | 'LEVEL_ACHIEVED_DESC'
-  | 'TG_CHECK_ACHIEVEMENTS_ASC'
-  | 'TG_CHECK_ACHIEVEMENTS_DESC'
-  | 'GRANT_ACHIEVEMENT_ASC'
-  | 'GRANT_ACHIEVEMENT_DESC'
-  | 'TG_ACHIEVEMENT_REWARD_ASC'
-  | 'TG_ACHIEVEMENT_REWARD_DESC'
-  | 'INTERVAL_ASC'
-  | 'INTERVAL_DESC'
-  | 'RETENTION_ASC'
-  | 'RETENTION_DESC'
-  | 'PREMAKE_ASC'
-  | 'PREMAKE_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'ACTOR_TABLE_ID_ASC'
-  | 'ACTOR_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type EntityTypeProvisionOrderBy =
+export type EntityTypeProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -7215,16 +7173,100 @@ export type EntityTypeProvisionOrderBy =
   | 'OUT_EXECUTION_LOGS_TABLE_ID_DESC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_ASC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_DESC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_DESC'
   | 'OUT_GRAPH_MODULE_ID_ASC'
   | 'OUT_GRAPH_MODULE_ID_DESC'
   | 'OUT_GRAPHS_TABLE_ID_ASC'
   | 'OUT_GRAPHS_TABLE_ID_DESC'
   | 'OUT_AGENT_MODULE_ID_ASC'
   | 'OUT_AGENT_MODULE_ID_DESC';
+export type EventsModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EVENTS_TABLE_ID_ASC'
+  | 'EVENTS_TABLE_ID_DESC'
+  | 'EVENTS_TABLE_NAME_ASC'
+  | 'EVENTS_TABLE_NAME_DESC'
+  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
+  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
+  | 'EVENT_TYPES_TABLE_ID_ASC'
+  | 'EVENT_TYPES_TABLE_ID_DESC'
+  | 'EVENT_TYPES_TABLE_NAME_ASC'
+  | 'EVENT_TYPES_TABLE_NAME_DESC'
+  | 'LEVELS_TABLE_ID_ASC'
+  | 'LEVELS_TABLE_ID_DESC'
+  | 'LEVELS_TABLE_NAME_ASC'
+  | 'LEVELS_TABLE_NAME_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
+  | 'LEVEL_GRANTS_TABLE_ID_ASC'
+  | 'LEVEL_GRANTS_TABLE_ID_DESC'
+  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
+  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
+  | 'RECORD_EVENT_ASC'
+  | 'RECORD_EVENT_DESC'
+  | 'REMOVE_EVENT_ASC'
+  | 'REMOVE_EVENT_DESC'
+  | 'TG_EVENT_ASC'
+  | 'TG_EVENT_DESC'
+  | 'TG_EVENT_TOGGLE_ASC'
+  | 'TG_EVENT_TOGGLE_DESC'
+  | 'TG_EVENT_TOGGLE_BOOL_ASC'
+  | 'TG_EVENT_TOGGLE_BOOL_DESC'
+  | 'TG_EVENT_BOOL_ASC'
+  | 'TG_EVENT_BOOL_DESC'
+  | 'UPSERT_AGGREGATE_ASC'
+  | 'UPSERT_AGGREGATE_DESC'
+  | 'TG_UPDATE_AGGREGATES_ASC'
+  | 'TG_UPDATE_AGGREGATES_DESC'
+  | 'PRUNE_EVENTS_ASC'
+  | 'PRUNE_EVENTS_DESC'
+  | 'STEPS_REQUIRED_ASC'
+  | 'STEPS_REQUIRED_DESC'
+  | 'LEVEL_ACHIEVED_ASC'
+  | 'LEVEL_ACHIEVED_DESC'
+  | 'TG_CHECK_ACHIEVEMENTS_ASC'
+  | 'TG_CHECK_ACHIEVEMENTS_DESC'
+  | 'GRANT_ACHIEVEMENT_ASC'
+  | 'GRANT_ACHIEVEMENT_DESC'
+  | 'TG_ACHIEVEMENT_REWARD_ASC'
+  | 'TG_ACHIEVEMENT_REWARD_DESC'
+  | 'INTERVAL_ASC'
+  | 'INTERVAL_DESC'
+  | 'RETENTION_ASC'
+  | 'RETENTION_DESC'
+  | 'PREMAKE_ASC'
+  | 'PREMAKE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'ACTOR_TABLE_ID_ASC'
+  | 'ACTOR_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 // ============ CRUD Input Types ============
 export interface CreateDefaultIdsModuleInput {
   clientMutationId?: string;
@@ -7986,48 +8028,6 @@ export interface DeleteCryptoAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  rateLimitMetersModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    rateLimitStateTableId?: string;
-    rateLimitStateTableName?: string;
-    rateLimitOverridesTableId?: string;
-    rateLimitOverridesTableName?: string;
-    rateWindowLimitsTableId?: string;
-    rateWindowLimitsTableName?: string;
-    checkRateLimitFunction?: string;
-    prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface RateLimitMetersModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
-}
-export interface DeleteRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateSessionsModuleInput {
   clientMutationId?: string;
   sessionsModule: {
@@ -8169,6 +8169,7 @@ export interface CreateGraphModuleInput {
     entityTableId?: string;
     policies?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface GraphModulePatch {
@@ -8188,6 +8189,7 @@ export interface GraphModulePatch {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateGraphModuleInput {
   clientMutationId?: string;
@@ -8234,6 +8236,50 @@ export interface DeleteSecureTableProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  rateLimitMetersModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    rateLimitStateTableId?: string;
+    rateLimitStateTableName?: string;
+    rateLimitOverridesTableId?: string;
+    rateLimitOverridesTableName?: string;
+    rateWindowLimitsTableId?: string;
+    rateWindowLimitsTableName?: string;
+    checkRateLimitFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface RateLimitMetersModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
+}
+export interface DeleteRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateInvitesModuleInput {
   clientMutationId?: string;
   invitesModule: {
@@ -8318,57 +8364,9 @@ export interface DeleteDatabaseProvisionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateNamespaceModuleInput {
+export interface CreateRealtimeModuleInput {
   clientMutationId?: string;
-  namespaceModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    namespacesTableId?: string;
-    namespaceEventsTableId?: string;
-    namespacesTableName?: string;
-    namespaceEventsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface NamespaceModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-  namespaceModulePatch: NamespaceModulePatch;
-}
-export interface DeleteNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateRealtimeModuleInput {
-  clientMutationId?: string;
-  realtimeModule: {
+  realtimeModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
@@ -8454,6 +8452,56 @@ export interface DeleteWebauthnAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateNamespaceModuleInput {
+  clientMutationId?: string;
+  namespaceModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    publicSchemaName?: string;
+    privateSchemaName?: string;
+    namespacesTableId?: string;
+    namespaceEventsTableId?: string;
+    namespacesTableName?: string;
+    namespaceEventsTableName?: string;
+    apiName?: string;
+    privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
+  };
+}
+export interface NamespaceModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
+export interface UpdateNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+  namespaceModulePatch: NamespaceModulePatch;
+}
+export interface DeleteNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateComputeLogModuleInput {
   clientMutationId?: string;
   computeLogModule: {
@@ -8646,6 +8694,58 @@ export interface DeleteTransferLogModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreatePlansModuleInput {
+  clientMutationId?: string;
+  plansModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    plansTableId?: string;
+    plansTableName?: string;
+    planLimitsTableId?: string;
+    planLimitsTableName?: string;
+    planPricingTableId?: string;
+    planOverridesTableId?: string;
+    planMeterLimitsTableId?: string;
+    planCapsTableId?: string;
+    applyPlanFunction?: string;
+    applyPlanAggregateFunction?: string;
+    applyBillingPlanFunction?: string;
+    applyPlanCapsFunction?: string;
+    prefix?: string;
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface PlansModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdatePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+  plansModulePatch: PlansModulePatch;
+}
+export interface DeletePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateDbUsageModuleInput {
   clientMutationId?: string;
   dbUsageModule: {
@@ -8665,6 +8765,7 @@ export interface CreateDbUsageModuleInput {
     premake?: number;
     scope?: string;
     prefix?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8686,6 +8787,7 @@ export interface DbUsageModulePatch {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8717,6 +8819,7 @@ export interface CreateNotificationsModuleInput {
     hasSettingsExtension?: boolean;
     hasDigestMetadata?: boolean;
     hasSubscriptions?: boolean;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8738,6 +8841,7 @@ export interface NotificationsModulePatch {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8750,225 +8854,175 @@ export interface DeleteNotificationsModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreatePlansModuleInput {
+export interface CreateBillingProviderModuleInput {
   clientMutationId?: string;
-  plansModule: {
+  billingProviderModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    plansTableId?: string;
-    plansTableName?: string;
-    planLimitsTableId?: string;
-    planLimitsTableName?: string;
-    planPricingTableId?: string;
-    planOverridesTableId?: string;
-    planMeterLimitsTableId?: string;
-    planCapsTableId?: string;
-    applyPlanFunction?: string;
-    applyPlanAggregateFunction?: string;
-    applyBillingPlanFunction?: string;
-    applyPlanCapsFunction?: string;
+    provider?: string;
+    productsTableId?: string;
+    pricesTableId?: string;
+    subscriptionsTableId?: string;
+    billingCustomersTableId?: string;
+    billingCustomersTableName?: string;
+    billingProductsTableId?: string;
+    billingProductsTableName?: string;
+    billingPricesTableId?: string;
+    billingPricesTableName?: string;
+    billingSubscriptionsTableId?: string;
+    billingSubscriptionsTableName?: string;
+    billingWebhookEventsTableId?: string;
+    billingWebhookEventsTableName?: string;
+    processBillingEventFunction?: string;
     prefix?: string;
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface PlansModulePatch {
+export interface BillingProviderModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdatePlansModuleInput {
+export interface UpdateBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
-  plansModulePatch: PlansModulePatch;
+  billingProviderModulePatch: BillingProviderModulePatch;
 }
-export interface DeletePlansModuleInput {
+export interface DeleteBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateHierarchyModuleInput {
+export interface CreateFunctionModuleInput {
   clientMutationId?: string;
-  hierarchyModule: {
+  functionModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    chartEdgesTableId?: string;
-    chartEdgesTableName?: string;
-    hierarchySprtTableId?: string;
-    hierarchySprtTableName?: string;
-    chartEdgeGrantsTableId?: string;
-    chartEdgeGrantsTableName?: string;
-    entityTableId: string;
-    usersTableId: string;
-    scope?: string;
-    prefix?: string;
+    publicSchemaName?: string;
     privateSchemaName?: string;
-    sprtTableName?: string;
-    rebuildHierarchyFunction?: string;
-    getSubordinatesFunction?: string;
-    getManagersFunction?: string;
-    isManagerOfFunction?: string;
-  };
-}
-export interface HierarchyModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  chartEdgesTableId?: string | null;
-  chartEdgesTableName?: string | null;
-  hierarchySprtTableId?: string | null;
-  hierarchySprtTableName?: string | null;
-  chartEdgeGrantsTableId?: string | null;
-  chartEdgeGrantsTableName?: string | null;
-  entityTableId?: string | null;
-  usersTableId?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  privateSchemaName?: string | null;
-  sprtTableName?: string | null;
-  rebuildHierarchyFunction?: string | null;
-  getSubordinatesFunction?: string | null;
-  getManagersFunction?: string | null;
-  isManagerOfFunction?: string | null;
-}
-export interface UpdateHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-  hierarchyModulePatch: HierarchyModulePatch;
-}
-export interface DeleteHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateBillingModuleInput {
-  clientMutationId?: string;
-  billingModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    metersTableId?: string;
-    metersTableName?: string;
-    planSubscriptionsTableId?: string;
-    planSubscriptionsTableName?: string;
-    ledgerTableId?: string;
-    ledgerTableName?: string;
-    balancesTableId?: string;
-    balancesTableName?: string;
-    meterCreditsTableId?: string;
-    meterCreditsTableName?: string;
-    meterSourcesTableId?: string;
-    meterSourcesTableName?: string;
-    meterDefaultsTableId?: string;
-    meterDefaultsTableName?: string;
-    recordUsageFunction?: string;
-    prefix?: string;
+    definitionsTableId?: string;
+    invocationsTableId?: string;
+    executionLogsTableId?: string;
+    secretDefinitionsTableId?: string;
+    definitionsTableName?: string;
+    invocationsTableName?: string;
+    executionLogsTableName?: string;
+    secretDefinitionsTableName?: string;
     apiName?: string;
     privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingModulePatch {
+export interface FunctionModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingModuleInput {
+export interface UpdateFunctionModuleInput {
   clientMutationId?: string;
   id: string;
-  billingModulePatch: BillingModulePatch;
+  functionModulePatch: FunctionModulePatch;
 }
-export interface DeleteBillingModuleInput {
+export interface DeleteFunctionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateBillingProviderModuleInput {
+export interface CreateHierarchyModuleInput {
   clientMutationId?: string;
-  billingProviderModule: {
+  hierarchyModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    provider?: string;
-    productsTableId?: string;
-    pricesTableId?: string;
-    subscriptionsTableId?: string;
-    billingCustomersTableId?: string;
-    billingCustomersTableName?: string;
-    billingProductsTableId?: string;
-    billingProductsTableName?: string;
-    billingPricesTableId?: string;
-    billingPricesTableName?: string;
-    billingSubscriptionsTableId?: string;
-    billingSubscriptionsTableName?: string;
-    billingWebhookEventsTableId?: string;
-    billingWebhookEventsTableName?: string;
-    processBillingEventFunction?: string;
+    chartEdgesTableId?: string;
+    chartEdgesTableName?: string;
+    hierarchySprtTableId?: string;
+    hierarchySprtTableName?: string;
+    chartEdgeGrantsTableId?: string;
+    chartEdgeGrantsTableName?: string;
+    entityTableId: string;
+    usersTableId: string;
+    scope?: string;
     prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
+    privateSchemaName?: string;
+    sprtTableName?: string;
+    rebuildHierarchyFunction?: string;
+    getSubordinatesFunction?: string;
+    getManagersFunction?: string;
+    isManagerOfFunction?: string;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingProviderModulePatch {
+export interface HierarchyModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
+  chartEdgesTableId?: string | null;
+  chartEdgesTableName?: string | null;
+  hierarchySprtTableId?: string | null;
+  hierarchySprtTableName?: string | null;
+  chartEdgeGrantsTableId?: string | null;
+  chartEdgeGrantsTableName?: string | null;
+  entityTableId?: string | null;
+  usersTableId?: string | null;
+  scope?: string | null;
   prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
+  privateSchemaName?: string | null;
+  sprtTableName?: string | null;
+  rebuildHierarchyFunction?: string | null;
+  getSubordinatesFunction?: string | null;
+  getManagersFunction?: string | null;
+  isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingProviderModuleInput {
+export interface UpdateHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
-  billingProviderModulePatch: BillingProviderModulePatch;
+  hierarchyModulePatch: HierarchyModulePatch;
 }
-export interface DeleteBillingProviderModuleInput {
+export interface DeleteHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9082,6 +9136,66 @@ export interface DeletePermissionsModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateBillingModuleInput {
+  clientMutationId?: string;
+  billingModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    metersTableId?: string;
+    metersTableName?: string;
+    planSubscriptionsTableId?: string;
+    planSubscriptionsTableName?: string;
+    ledgerTableId?: string;
+    ledgerTableName?: string;
+    balancesTableId?: string;
+    balancesTableName?: string;
+    meterCreditsTableId?: string;
+    meterCreditsTableName?: string;
+    meterSourcesTableId?: string;
+    meterSourcesTableName?: string;
+    meterDefaultsTableId?: string;
+    meterDefaultsTableName?: string;
+    recordUsageFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface BillingModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+  billingModulePatch: BillingModulePatch;
+}
+export interface DeleteBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateRelationProvisionInput {
   clientMutationId?: string;
   relationProvision: {
@@ -9144,72 +9258,6 @@ export interface DeleteRelationProvisionInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateFunctionModuleInput {
-  clientMutationId?: string;
-  functionModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    definitionsTableId?: string;
-    invocationsTableId?: string;
-    executionLogsTableId?: string;
-    secretDefinitionsTableId?: string;
-    requirementsTableId?: string;
-    configDefinitionsTableId?: string;
-    configRequirementsTableId?: string;
-    definitionsTableName?: string;
-    invocationsTableName?: string;
-    executionLogsTableName?: string;
-    secretDefinitionsTableName?: string;
-    requirementsTableName?: string;
-    configRequirementsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface FunctionModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-  functionModulePatch: FunctionModulePatch;
-}
-export interface DeleteFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateUserAuthModuleInput {
   clientMutationId?: string;
   userAuthModule: {
@@ -9305,6 +9353,7 @@ export interface CreateAgentModuleInput {
     hasPlans?: boolean;
     hasResources?: boolean;
     hasAgents?: boolean;
+    shared?: boolean;
     apiName?: string;
     privateApiName?: string;
     scope?: string;
@@ -9313,6 +9362,7 @@ export interface CreateAgentModuleInput {
     policies?: Record<string, unknown>;
     resources?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface AgentModulePatch {
@@ -9338,6 +9388,7 @@ export interface AgentModulePatch {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -9346,6 +9397,7 @@ export interface AgentModulePatch {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateAgentModuleInput {
   clientMutationId?: string;
@@ -9475,6 +9527,8 @@ export interface CreateMembershipsModuleInput {
     entityIdsByPerm?: string;
     entityIdsFunction?: string;
     memberProfilesTableId?: string;
+    permissionDefaultPermissionsTableId?: string;
+    permissionDefaultGrantsTableId?: string;
     apiName?: string;
     privateApiName?: string;
   };
@@ -9514,6 +9568,8 @@ export interface MembershipsModulePatch {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -9559,152 +9615,58 @@ export interface CreateStorageModuleInput {
     hasContentHash?: boolean;
     hasCustomKeys?: boolean;
     hasAuditLog?: boolean;
-    hasConfirmUpload?: boolean;
-    confirmUploadDelay?: IntervalInput;
-    fileEventsTableId?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface StorageModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  bucketsTableId?: string | null;
-  filesTableId?: string | null;
-  bucketsTableName?: string | null;
-  filesTableName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-  entityTableId?: string | null;
-  endpoint?: string | null;
-  publicUrlPrefix?: string | null;
-  provider?: string | null;
-  allowedOrigins?: string[] | null;
-  restrictReads?: boolean | null;
-  hasPathShares?: boolean | null;
-  pathSharesTableId?: string | null;
-  uploadUrlExpirySeconds?: number | null;
-  downloadUrlExpirySeconds?: number | null;
-  defaultMaxFileSize?: string | null;
-  maxFilenameLength?: number | null;
-  cacheTtlSeconds?: number | null;
-  maxBulkFiles?: number | null;
-  maxBulkTotalSize?: string | null;
-  hasVersioning?: boolean | null;
-  hasContentHash?: boolean | null;
-  hasCustomKeys?: boolean | null;
-  hasAuditLog?: boolean | null;
-  hasConfirmUpload?: boolean | null;
-  confirmUploadDelay?: IntervalInput | null;
-  fileEventsTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-  storageModulePatch: StorageModulePatch;
-}
-export interface DeleteStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateEventsModuleInput {
-  clientMutationId?: string;
-  eventsModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    eventsTableId?: string;
-    eventsTableName?: string;
-    eventAggregatesTableId?: string;
-    eventAggregatesTableName?: string;
-    eventTypesTableId?: string;
-    eventTypesTableName?: string;
-    levelsTableId?: string;
-    levelsTableName?: string;
-    levelRequirementsTableId?: string;
-    levelRequirementsTableName?: string;
-    levelGrantsTableId?: string;
-    levelGrantsTableName?: string;
-    achievementRewardsTableId?: string;
-    achievementRewardsTableName?: string;
-    recordEvent?: string;
-    removeEvent?: string;
-    tgEvent?: string;
-    tgEventToggle?: string;
-    tgEventToggleBool?: string;
-    tgEventBool?: string;
-    upsertAggregate?: string;
-    tgUpdateAggregates?: string;
-    pruneEvents?: string;
-    stepsRequired?: string;
-    levelAchieved?: string;
-    tgCheckAchievements?: string;
-    grantAchievement?: string;
-    tgAchievementReward?: string;
-    interval?: string;
-    retention?: string;
-    premake?: number;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    actorTableId?: string;
+    hasConfirmUpload?: boolean;
+    confirmUploadDelay?: IntervalInput;
+    fileEventsTableId?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface EventsModulePatch {
+export interface StorageModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
+  bucketsTableId?: string | null;
+  filesTableId?: string | null;
+  bucketsTableName?: string | null;
+  filesTableName?: string | null;
   scope?: string | null;
   prefix?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
   entityTableId?: string | null;
-  actorTableId?: string | null;
+  endpoint?: string | null;
+  publicUrlPrefix?: string | null;
+  provider?: string | null;
+  allowedOrigins?: string[] | null;
+  restrictReads?: boolean | null;
+  hasPathShares?: boolean | null;
+  pathSharesTableId?: string | null;
+  uploadUrlExpirySeconds?: number | null;
+  downloadUrlExpirySeconds?: number | null;
+  defaultMaxFileSize?: string | null;
+  maxFilenameLength?: number | null;
+  cacheTtlSeconds?: number | null;
+  maxBulkFiles?: number | null;
+  maxBulkTotalSize?: string | null;
+  hasVersioning?: boolean | null;
+  hasContentHash?: boolean | null;
+  hasCustomKeys?: boolean | null;
+  hasAuditLog?: boolean | null;
+  hasConfirmUpload?: boolean | null;
+  confirmUploadDelay?: IntervalInput | null;
+  fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdateEventsModuleInput {
+export interface UpdateStorageModuleInput {
   clientMutationId?: string;
   id: string;
-  eventsModulePatch: EventsModulePatch;
+  storageModulePatch: StorageModulePatch;
 }
-export interface DeleteEventsModuleInput {
+export interface DeleteStorageModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9747,8 +9709,6 @@ export interface CreateEntityTypeProvisionInput {
     outInvocationsTableId?: string;
     outExecutionLogsTableId?: string;
     outSecretDefinitionsTableId?: string;
-    outRequirementsTableId?: string;
-    outConfigRequirementsTableId?: string;
     outGraphModuleId?: string;
     outGraphsTableId?: string;
     outAgentModuleId?: string;
@@ -9791,8 +9751,6 @@ export interface EntityTypeProvisionPatch {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
@@ -9806,6 +9764,104 @@ export interface DeleteEntityTypeProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateEventsModuleInput {
+  clientMutationId?: string;
+  eventsModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    eventsTableId?: string;
+    eventsTableName?: string;
+    eventAggregatesTableId?: string;
+    eventAggregatesTableName?: string;
+    eventTypesTableId?: string;
+    eventTypesTableName?: string;
+    levelsTableId?: string;
+    levelsTableName?: string;
+    levelRequirementsTableId?: string;
+    levelRequirementsTableName?: string;
+    levelGrantsTableId?: string;
+    levelGrantsTableName?: string;
+    achievementRewardsTableId?: string;
+    achievementRewardsTableName?: string;
+    recordEvent?: string;
+    removeEvent?: string;
+    tgEvent?: string;
+    tgEventToggle?: string;
+    tgEventToggleBool?: string;
+    tgEventBool?: string;
+    upsertAggregate?: string;
+    tgUpdateAggregates?: string;
+    pruneEvents?: string;
+    stepsRequired?: string;
+    levelAchieved?: string;
+    tgCheckAchievements?: string;
+    grantAchievement?: string;
+    tgAchievementReward?: string;
+    interval?: string;
+    retention?: string;
+    premake?: number;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    actorTableId?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface EventsModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+  eventsModulePatch: EventsModulePatch;
+}
+export interface DeleteEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 // ============ Connection Fields Map ============
 export const connectionFieldsMap = {
   Blueprint: {
@@ -10205,6 +10261,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -11660,51 +11718,6 @@ export type DeleteCryptoAuthModulePayloadSelect = {
     select: CryptoAuthModuleEdgeSelect;
   };
 };
-export interface CreateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was created by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type CreateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface UpdateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was updated by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type UpdateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface DeleteRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was deleted by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type DeleteRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
 export interface CreateSessionsModulePayload {
   clientMutationId?: string | null;
   /** The `SessionsModule` that was created by this mutation. */
@@ -11893,41 +11906,86 @@ export interface CreateSecureTableProvisionPayload {
 }
 export type CreateSecureTableProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface UpdateSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was updated by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type UpdateSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface DeleteSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was deleted by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type DeleteSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface CreateRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was created by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
+export type CreateRateLimitMetersModulePayloadSelect = {
+  clientMutationId?: boolean;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface UpdateSecureTableProvisionPayload {
+export interface UpdateRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was updated by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was updated by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type UpdateSecureTableProvisionPayloadSelect = {
+export type UpdateRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface DeleteSecureTableProvisionPayload {
+export interface DeleteRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was deleted by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was deleted by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type DeleteSecureTableProvisionPayloadSelect = {
+export type DeleteRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
 export interface CreateInvitesModulePayload {
@@ -12020,51 +12078,6 @@ export type DeleteDatabaseProvisionModulePayloadSelect = {
     select: DatabaseProvisionModuleEdgeSelect;
   };
 };
-export interface CreateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was created by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type CreateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface UpdateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was updated by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type UpdateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface DeleteNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was deleted by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type DeleteNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
 export interface CreateRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was created by this mutation. */
@@ -12155,6 +12168,51 @@ export type DeleteWebauthnAuthModulePayloadSelect = {
     select: WebauthnAuthModuleEdgeSelect;
   };
 };
+export interface CreateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was created by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type CreateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface UpdateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was updated by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type UpdateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface DeleteNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was deleted by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type DeleteNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
 export interface CreateComputeLogModulePayload {
   clientMutationId?: string | null;
   /** The `ComputeLogModule` that was created by this mutation. */
@@ -12335,96 +12393,6 @@ export type DeleteTransferLogModulePayloadSelect = {
     select: TransferLogModuleEdgeSelect;
   };
 };
-export interface CreateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was created by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type CreateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface UpdateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was updated by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type UpdateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface DeleteDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was deleted by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type DeleteDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface CreateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was created by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type CreateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface UpdateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was updated by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type UpdateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface DeleteNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was deleted by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type DeleteNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
 export interface CreatePlansModulePayload {
   clientMutationId?: string | null;
   /** The `PlansModule` that was created by this mutation. */
@@ -12470,94 +12438,94 @@ export type DeletePlansModulePayloadSelect = {
     select: PlansModuleEdgeSelect;
   };
 };
-export interface CreateHierarchyModulePayload {
+export interface CreateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was created by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was created by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type CreateHierarchyModulePayloadSelect = {
+export type CreateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface UpdateHierarchyModulePayload {
+export interface UpdateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was updated by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was updated by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type UpdateHierarchyModulePayloadSelect = {
+export type UpdateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface DeleteHierarchyModulePayload {
+export interface DeleteDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was deleted by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was deleted by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type DeleteHierarchyModulePayloadSelect = {
+export type DeleteDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface CreateBillingModulePayload {
+export interface CreateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was created by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was created by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type CreateBillingModulePayloadSelect = {
+export type CreateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface UpdateBillingModulePayload {
+export interface UpdateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was updated by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was updated by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type UpdateBillingModulePayloadSelect = {
+export type UpdateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface DeleteBillingModulePayload {
+export interface DeleteNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was deleted by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was deleted by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type DeleteBillingModulePayloadSelect = {
+export type DeleteNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
 export interface CreateBillingProviderModulePayload {
@@ -12605,6 +12573,96 @@ export type DeleteBillingProviderModulePayloadSelect = {
     select: BillingProviderModuleEdgeSelect;
   };
 };
+export interface CreateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was created by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type CreateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface UpdateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was updated by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type UpdateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface DeleteFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was deleted by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type DeleteFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface CreateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was created by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type CreateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface UpdateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was updated by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type UpdateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface DeleteHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was deleted by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type DeleteHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
 export interface CreateProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was created by this mutation. */
@@ -12695,6 +12753,51 @@ export type DeletePermissionsModulePayloadSelect = {
     select: PermissionsModuleEdgeSelect;
   };
 };
+export interface CreateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was created by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type CreateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface UpdateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was updated by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type UpdateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface DeleteBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was deleted by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type DeleteBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
 export interface CreateRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was created by this mutation. */
@@ -12731,58 +12834,13 @@ export interface DeleteRelationProvisionPayload {
   relationProvision?: RelationProvision | null;
   relationProvisionEdge?: RelationProvisionEdge | null;
 }
-export type DeleteRelationProvisionPayloadSelect = {
-  clientMutationId?: boolean;
-  relationProvision?: {
-    select: RelationProvisionSelect;
-  };
-  relationProvisionEdge?: {
-    select: RelationProvisionEdgeSelect;
-  };
-};
-export interface CreateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was created by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type CreateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface UpdateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was updated by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type UpdateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface DeleteFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was deleted by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type DeleteFunctionModulePayloadSelect = {
+export type DeleteRelationProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
+  relationProvision?: {
+    select: RelationProvisionSelect;
   };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
+  relationProvisionEdge?: {
+    select: RelationProvisionEdgeSelect;
   };
 };
 export interface CreateUserAuthModulePayload {
@@ -13010,51 +13068,6 @@ export type DeleteStorageModulePayloadSelect = {
     select: StorageModuleEdgeSelect;
   };
 };
-export interface CreateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was created by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type CreateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface UpdateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was updated by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type UpdateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface DeleteEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was deleted by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type DeleteEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
 export interface CreateEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was created by this mutation. */
@@ -13100,6 +13113,51 @@ export type DeleteEntityTypeProvisionPayloadSelect = {
     select: EntityTypeProvisionEdgeSelect;
   };
 };
+export interface CreateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was created by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type CreateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface UpdateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was updated by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type UpdateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface DeleteEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was deleted by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type DeleteEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
 export interface ProvisionTableRecord {
   outTableId?: string | null;
   outFields?: string[] | null;
@@ -13408,18 +13466,6 @@ export type CryptoAuthModuleEdgeSelect = {
     select: CryptoAuthModuleSelect;
   };
 };
-/** A `RateLimitMetersModule` edge in the connection. */
-export interface RateLimitMetersModuleEdge {
-  cursor?: string | null;
-  /** The `RateLimitMetersModule` at the end of the edge. */
-  node?: RateLimitMetersModule | null;
-}
-export type RateLimitMetersModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: RateLimitMetersModuleSelect;
-  };
-};
 /** A `SessionsModule` edge in the connection. */
 export interface SessionsModuleEdge {
   cursor?: string | null;
@@ -13480,6 +13526,18 @@ export type SecureTableProvisionEdgeSelect = {
     select: SecureTableProvisionSelect;
   };
 };
+/** A `RateLimitMetersModule` edge in the connection. */
+export interface RateLimitMetersModuleEdge {
+  cursor?: string | null;
+  /** The `RateLimitMetersModule` at the end of the edge. */
+  node?: RateLimitMetersModule | null;
+}
+export type RateLimitMetersModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: RateLimitMetersModuleSelect;
+  };
+};
 /** A `InvitesModule` edge in the connection. */
 export interface InvitesModuleEdge {
   cursor?: string | null;
@@ -13504,18 +13562,6 @@ export type DatabaseProvisionModuleEdgeSelect = {
     select: DatabaseProvisionModuleSelect;
   };
 };
-/** A `NamespaceModule` edge in the connection. */
-export interface NamespaceModuleEdge {
-  cursor?: string | null;
-  /** The `NamespaceModule` at the end of the edge. */
-  node?: NamespaceModule | null;
-}
-export type NamespaceModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: NamespaceModuleSelect;
-  };
-};
 /** A `RealtimeModule` edge in the connection. */
 export interface RealtimeModuleEdge {
   cursor?: string | null;
@@ -13540,6 +13586,18 @@ export type WebauthnAuthModuleEdgeSelect = {
     select: WebauthnAuthModuleSelect;
   };
 };
+/** A `NamespaceModule` edge in the connection. */
+export interface NamespaceModuleEdge {
+  cursor?: string | null;
+  /** The `NamespaceModule` at the end of the edge. */
+  node?: NamespaceModule | null;
+}
+export type NamespaceModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: NamespaceModuleSelect;
+  };
+};
 /** A `ComputeLogModule` edge in the connection. */
 export interface ComputeLogModuleEdge {
   cursor?: string | null;
@@ -13588,6 +13646,18 @@ export type TransferLogModuleEdgeSelect = {
     select: TransferLogModuleSelect;
   };
 };
+/** A `PlansModule` edge in the connection. */
+export interface PlansModuleEdge {
+  cursor?: string | null;
+  /** The `PlansModule` at the end of the edge. */
+  node?: PlansModule | null;
+}
+export type PlansModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: PlansModuleSelect;
+  };
+};
 /** A `DbUsageModule` edge in the connection. */
 export interface DbUsageModuleEdge {
   cursor?: string | null;
@@ -13612,52 +13682,40 @@ export type NotificationsModuleEdgeSelect = {
     select: NotificationsModuleSelect;
   };
 };
-/** A `PlansModule` edge in the connection. */
-export interface PlansModuleEdge {
-  cursor?: string | null;
-  /** The `PlansModule` at the end of the edge. */
-  node?: PlansModule | null;
-}
-export type PlansModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: PlansModuleSelect;
-  };
-};
-/** A `HierarchyModule` edge in the connection. */
-export interface HierarchyModuleEdge {
+/** A `BillingProviderModule` edge in the connection. */
+export interface BillingProviderModuleEdge {
   cursor?: string | null;
-  /** The `HierarchyModule` at the end of the edge. */
-  node?: HierarchyModule | null;
+  /** The `BillingProviderModule` at the end of the edge. */
+  node?: BillingProviderModule | null;
 }
-export type HierarchyModuleEdgeSelect = {
+export type BillingProviderModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: HierarchyModuleSelect;
+    select: BillingProviderModuleSelect;
   };
 };
-/** A `BillingModule` edge in the connection. */
-export interface BillingModuleEdge {
+/** A `FunctionModule` edge in the connection. */
+export interface FunctionModuleEdge {
   cursor?: string | null;
-  /** The `BillingModule` at the end of the edge. */
-  node?: BillingModule | null;
+  /** The `FunctionModule` at the end of the edge. */
+  node?: FunctionModule | null;
 }
-export type BillingModuleEdgeSelect = {
+export type FunctionModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingModuleSelect;
+    select: FunctionModuleSelect;
   };
 };
-/** A `BillingProviderModule` edge in the connection. */
-export interface BillingProviderModuleEdge {
+/** A `HierarchyModule` edge in the connection. */
+export interface HierarchyModuleEdge {
   cursor?: string | null;
-  /** The `BillingProviderModule` at the end of the edge. */
-  node?: BillingProviderModule | null;
+  /** The `HierarchyModule` at the end of the edge. */
+  node?: HierarchyModule | null;
 }
-export type BillingProviderModuleEdgeSelect = {
+export type HierarchyModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingProviderModuleSelect;
+    select: HierarchyModuleSelect;
   };
 };
 /** A `ProfilesModule` edge in the connection. */
@@ -13684,28 +13742,28 @@ export type PermissionsModuleEdgeSelect = {
     select: PermissionsModuleSelect;
   };
 };
-/** A `RelationProvision` edge in the connection. */
-export interface RelationProvisionEdge {
+/** A `BillingModule` edge in the connection. */
+export interface BillingModuleEdge {
   cursor?: string | null;
-  /** The `RelationProvision` at the end of the edge. */
-  node?: RelationProvision | null;
+  /** The `BillingModule` at the end of the edge. */
+  node?: BillingModule | null;
 }
-export type RelationProvisionEdgeSelect = {
+export type BillingModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: RelationProvisionSelect;
+    select: BillingModuleSelect;
   };
 };
-/** A `FunctionModule` edge in the connection. */
-export interface FunctionModuleEdge {
+/** A `RelationProvision` edge in the connection. */
+export interface RelationProvisionEdge {
   cursor?: string | null;
-  /** The `FunctionModule` at the end of the edge. */
-  node?: FunctionModule | null;
+  /** The `RelationProvision` at the end of the edge. */
+  node?: RelationProvision | null;
 }
-export type FunctionModuleEdgeSelect = {
+export type RelationProvisionEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: FunctionModuleSelect;
+    select: RelationProvisionSelect;
   };
 };
 /** A `UserAuthModule` edge in the connection. */
@@ -13768,18 +13826,6 @@ export type StorageModuleEdgeSelect = {
     select: StorageModuleSelect;
   };
 };
-/** A `EventsModule` edge in the connection. */
-export interface EventsModuleEdge {
-  cursor?: string | null;
-  /** The `EventsModule` at the end of the edge. */
-  node?: EventsModule | null;
-}
-export type EventsModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: EventsModuleSelect;
-  };
-};
 /** A `EntityTypeProvision` edge in the connection. */
 export interface EntityTypeProvisionEdge {
   cursor?: string | null;
@@ -13792,3 +13838,15 @@ export type EntityTypeProvisionEdgeSelect = {
     select: EntityTypeProvisionSelect;
   };
 };
+/** A `EventsModule` edge in the connection. */
+export interface EventsModuleEdge {
+  cursor?: string | null;
+  /** The `EventsModule` at the end of the edge. */
+  node?: EventsModule | null;
+}
+export type EventsModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: EventsModuleSelect;
+  };
+};
diff --git a/sdk/constructive-cli/src/modules/orm/models/index.ts b/sdk/constructive-cli/src/modules/orm/models/index.ts
index 7afef56c9..04d6464e6 100644
--- a/sdk/constructive-cli/src/modules/orm/models/index.ts
+++ b/sdk/constructive-cli/src/modules/orm/models/index.ts
@@ -27,35 +27,35 @@ export { BlueprintModel } from './blueprint';
 export { BlueprintTemplateModel } from './blueprintTemplate';
 export { BlueprintConstructionModel } from './blueprintConstruction';
 export { CryptoAuthModuleModel } from './cryptoAuthModule';
-export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { SessionsModuleModel } from './sessionsModule';
 export { ConfigSecretsModuleModel } from './configSecretsModule';
 export { MerkleStoreModuleModel } from './merkleStoreModule';
 export { GraphModuleModel } from './graphModule';
 export { SecureTableProvisionModel } from './secureTableProvision';
+export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { InvitesModuleModel } from './invitesModule';
 export { DatabaseProvisionModuleModel } from './databaseProvisionModule';
-export { NamespaceModuleModel } from './namespaceModule';
 export { RealtimeModuleModel } from './realtimeModule';
 export { WebauthnAuthModuleModel } from './webauthnAuthModule';
+export { NamespaceModuleModel } from './namespaceModule';
 export { ComputeLogModuleModel } from './computeLogModule';
 export { InferenceLogModuleModel } from './inferenceLogModule';
 export { StorageLogModuleModel } from './storageLogModule';
 export { TransferLogModuleModel } from './transferLogModule';
+export { PlansModuleModel } from './plansModule';
 export { DbUsageModuleModel } from './dbUsageModule';
 export { NotificationsModuleModel } from './notificationsModule';
-export { PlansModuleModel } from './plansModule';
-export { HierarchyModuleModel } from './hierarchyModule';
-export { BillingModuleModel } from './billingModule';
 export { BillingProviderModuleModel } from './billingProviderModule';
+export { FunctionModuleModel } from './functionModule';
+export { HierarchyModuleModel } from './hierarchyModule';
 export { ProfilesModuleModel } from './profilesModule';
 export { PermissionsModuleModel } from './permissionsModule';
+export { BillingModuleModel } from './billingModule';
 export { RelationProvisionModel } from './relationProvision';
-export { FunctionModuleModel } from './functionModule';
 export { UserAuthModuleModel } from './userAuthModule';
 export { AgentModuleModel } from './agentModule';
 export { LimitsModuleModel } from './limitsModule';
 export { MembershipsModuleModel } from './membershipsModule';
 export { StorageModuleModel } from './storageModule';
-export { EventsModuleModel } from './eventsModule';
 export { EntityTypeProvisionModel } from './entityTypeProvision';
+export { EventsModuleModel } from './eventsModule';
diff --git a/sdk/constructive-react/src/.targets b/sdk/constructive-react/src/.targets
new file mode 100644
index 000000000..bf4de0b16
--- /dev/null
+++ b/sdk/constructive-react/src/.targets
@@ -0,0 +1 @@
+["admin","agent","api","auth","modules","objects","usage"]
diff --git a/sdk/constructive-react/src/admin/README.md b/sdk/constructive-react/src/admin/README.md
index 7de4257ba..99dd47ec2 100644
--- a/sdk/constructive-react/src/admin/README.md
+++ b/sdk/constructive-react/src/admin/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 26
+- **Tables:** 30
 - **Custom queries:** 9
 - **Custom mutations:** 3
 
diff --git a/sdk/constructive-react/src/admin/hooks/README.md b/sdk/constructive-react/src/admin/hooks/README.md
index 0e11df1f0..974f72301 100644
--- a/sdk/constructive-react/src/admin/hooks/README.md
+++ b/sdk/constructive-react/src/admin/hooks/README.md
@@ -41,11 +41,26 @@ function App() {
 | `useCreateAppPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useUpdateAppPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useDeleteAppPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
+| `useAppPermissionDefaultGrantsQuery` | Query | Audit log of permission additions and removals from the defaults bitmask |
+| `useAppPermissionDefaultGrantQuery` | Query | Audit log of permission additions and removals from the defaults bitmask |
+| `useCreateAppPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
+| `useUpdateAppPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
+| `useDeleteAppPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
 | `useOrgPermissionsQuery` | Query | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useOrgPermissionQuery` | Query | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useCreateOrgPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useUpdateOrgPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
 | `useDeleteOrgPermissionMutation` | Mutation | Defines available permissions as named bits within a bitmask, used by the RBAC system for access control |
+| `useOrgPermissionDefaultPermissionsQuery` | Query | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useOrgPermissionDefaultPermissionQuery` | Query | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useCreateOrgPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useUpdateOrgPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useDeleteOrgPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useOrgPermissionDefaultGrantsQuery` | Query | Audit log of permission additions and removals from the defaults bitmask |
+| `useOrgPermissionDefaultGrantQuery` | Query | Audit log of permission additions and removals from the defaults bitmask |
+| `useCreateOrgPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
+| `useUpdateOrgPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
+| `useDeleteOrgPermissionDefaultGrantMutation` | Mutation | Audit log of permission additions and removals from the defaults bitmask |
 | `useOrgMembersQuery` | Query | Simplified view of active members in an entity, used for listing who belongs to an org or group |
 | `useOrgMemberQuery` | Query | Simplified view of active members in an entity, used for listing who belongs to an org or group |
 | `useCreateOrgMemberMutation` | Mutation | Simplified view of active members in an entity, used for listing who belongs to an org or group |
@@ -61,6 +76,11 @@ function App() {
 | `useCreateOrgPermissionDefaultMutation` | Mutation | Stores the default permission bitmask assigned to new members upon joining |
 | `useUpdateOrgPermissionDefaultMutation` | Mutation | Stores the default permission bitmask assigned to new members upon joining |
 | `useDeleteOrgPermissionDefaultMutation` | Mutation | Stores the default permission bitmask assigned to new members upon joining |
+| `useAppPermissionDefaultPermissionsQuery` | Query | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useAppPermissionDefaultPermissionQuery` | Query | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useCreateAppPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useUpdateAppPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
+| `useDeleteAppPermissionDefaultPermissionMutation` | Mutation | Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask |
 | `useAppAdminGrantsQuery` | Query | Records of admin role grants and revocations between members |
 | `useAppAdminGrantQuery` | Query | Records of admin role grants and revocations between members |
 | `useCreateAppAdminGrantMutation` | Mutation | Records of admin role grants and revocations between members |
@@ -225,6 +245,27 @@ const { mutate: create } = useCreateAppPermissionMutation({
 create({ name: '<String>', bitnum: '<Int>', bitstr: '<BitString>', description: '<String>' });
 ```
 
+### AppPermissionDefaultGrant
+
+```typescript
+// List all appPermissionDefaultGrants
+const { data, isLoading } = useAppPermissionDefaultGrantsQuery({
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } },
+});
+
+// Get one appPermissionDefaultGrant
+const { data: item } = useAppPermissionDefaultGrantQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } },
+});
+
+// Create a appPermissionDefaultGrant
+const { mutate: create } = useCreateAppPermissionDefaultGrantMutation({
+  selection: { fields: { id: true } },
+});
+create({ permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' });
+```
+
 ### OrgPermission
 
 ```typescript
@@ -246,6 +287,48 @@ const { mutate: create } = useCreateOrgPermissionMutation({
 create({ name: '<String>', bitnum: '<Int>', bitstr: '<BitString>', description: '<String>' });
 ```
 
+### OrgPermissionDefaultPermission
+
+```typescript
+// List all orgPermissionDefaultPermissions
+const { data, isLoading } = useOrgPermissionDefaultPermissionsQuery({
+  selection: { fields: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+
+// Get one orgPermissionDefaultPermission
+const { data: item } = useOrgPermissionDefaultPermissionQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+
+// Create a orgPermissionDefaultPermission
+const { mutate: create } = useCreateOrgPermissionDefaultPermissionMutation({
+  selection: { fields: { id: true } },
+});
+create({ permissionId: '<UUID>', entityId: '<UUID>' });
+```
+
+### OrgPermissionDefaultGrant
+
+```typescript
+// List all orgPermissionDefaultGrants
+const { data, isLoading } = useOrgPermissionDefaultGrantsQuery({
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+
+// Get one orgPermissionDefaultGrant
+const { data: item } = useOrgPermissionDefaultGrantQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } },
+});
+
+// Create a orgPermissionDefaultGrant
+const { mutate: create } = useCreateOrgPermissionDefaultGrantMutation({
+  selection: { fields: { id: true } },
+});
+create({ permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' });
+```
+
 ### OrgMember
 
 ```typescript
@@ -309,6 +392,27 @@ const { mutate: create } = useCreateOrgPermissionDefaultMutation({
 create({ permissions: '<BitString>', entityId: '<UUID>' });
 ```
 
+### AppPermissionDefaultPermission
+
+```typescript
+// List all appPermissionDefaultPermissions
+const { data, isLoading } = useAppPermissionDefaultPermissionsQuery({
+  selection: { fields: { id: true, permissionId: true, createdAt: true, updatedAt: true } },
+});
+
+// Get one appPermissionDefaultPermission
+const { data: item } = useAppPermissionDefaultPermissionQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, permissionId: true, createdAt: true, updatedAt: true } },
+});
+
+// Create a appPermissionDefaultPermission
+const { mutate: create } = useCreateAppPermissionDefaultPermissionMutation({
+  selection: { fields: { id: true } },
+});
+create({ permissionId: '<UUID>' });
+```
+
 ### AppAdminGrant
 
 ```typescript
diff --git a/sdk/constructive-react/src/admin/hooks/index.ts b/sdk/constructive-react/src/admin/hooks/index.ts
index c6a522b17..25bc1dfa9 100644
--- a/sdk/constructive-react/src/admin/hooks/index.ts
+++ b/sdk/constructive-react/src/admin/hooks/index.ts
@@ -2,7 +2,7 @@
  * GraphQL SDK
  * @generated by @constructive-io/graphql-codegen
  *
- * Tables: OrgGetManagersRecord, OrgGetSubordinatesRecord, AppPermission, OrgPermission, OrgMember, AppPermissionDefault, OrgPermissionDefault, AppAdminGrant, AppOwnerGrant, OrgAdminGrant, OrgOwnerGrant, OrgChartEdgeGrant, AppClaimedInvite, MembershipType, AppGrant, AppMembershipDefault, OrgMembershipDefault, OrgClaimedInvite, OrgGrant, OrgChartEdge, OrgMembershipSetting, AppMembership, AppInvite, OrgMembership, OrgMemberProfile, OrgInvite
+ * Tables: OrgGetManagersRecord, OrgGetSubordinatesRecord, AppPermission, AppPermissionDefaultGrant, OrgPermission, OrgPermissionDefaultPermission, OrgPermissionDefaultGrant, OrgMember, AppPermissionDefault, OrgPermissionDefault, AppPermissionDefaultPermission, AppAdminGrant, AppOwnerGrant, OrgAdminGrant, OrgOwnerGrant, OrgChartEdgeGrant, AppClaimedInvite, MembershipType, AppGrant, AppMembershipDefault, OrgMembershipDefault, OrgClaimedInvite, OrgGrant, OrgChartEdge, OrgMembershipSetting, AppMembership, AppInvite, OrgMembership, OrgMemberProfile, OrgInvite
  *
  * Usage:
  *
diff --git a/sdk/constructive-react/src/admin/hooks/invalidation.ts b/sdk/constructive-react/src/admin/hooks/invalidation.ts
index 4c823879d..c4158ab2a 100644
--- a/sdk/constructive-react/src/admin/hooks/invalidation.ts
+++ b/sdk/constructive-react/src/admin/hooks/invalidation.ts
@@ -18,10 +18,14 @@ import {
   orgGetManagersRecordKeys,
   orgGetSubordinatesRecordKeys,
   appPermissionKeys,
+  appPermissionDefaultGrantKeys,
   orgPermissionKeys,
+  orgPermissionDefaultPermissionKeys,
+  orgPermissionDefaultGrantKeys,
   orgMemberKeys,
   appPermissionDefaultKeys,
   orgPermissionDefaultKeys,
+  appPermissionDefaultPermissionKeys,
   appAdminGrantKeys,
   appOwnerGrantKeys,
   orgAdminGrantKeys,
@@ -113,6 +117,23 @@ export const invalidate = {
         queryKey: appPermissionKeys.detail(id),
       }),
   },
+  /** Invalidate appPermissionDefaultGrant queries */ appPermissionDefaultGrant: {
+    /** Invalidate all appPermissionDefaultGrant queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.all,
+      }),
+    /** Invalidate appPermissionDefaultGrant list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.lists(),
+      }),
+    /** Invalidate a specific appPermissionDefaultGrant */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.detail(id),
+      }),
+  },
   /** Invalidate orgPermission queries */ orgPermission: {
     /** Invalidate all orgPermission queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -130,6 +151,42 @@ export const invalidate = {
         queryKey: orgPermissionKeys.detail(id),
       }),
   },
+  /** Invalidate orgPermissionDefaultPermission queries */ orgPermissionDefaultPermission: {
+    /** Invalidate all orgPermissionDefaultPermission queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.all,
+      }),
+    /** Invalidate orgPermissionDefaultPermission list queries */ lists: (
+      queryClient: QueryClient
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.lists(),
+      }),
+    /** Invalidate a specific orgPermissionDefaultPermission */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.detail(id),
+      }),
+  },
+  /** Invalidate orgPermissionDefaultGrant queries */ orgPermissionDefaultGrant: {
+    /** Invalidate all orgPermissionDefaultGrant queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.all,
+      }),
+    /** Invalidate orgPermissionDefaultGrant list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.lists(),
+      }),
+    /** Invalidate a specific orgPermissionDefaultGrant */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.detail(id),
+      }),
+  },
   /** Invalidate orgMember queries */ orgMember: {
     /** Invalidate all orgMember queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -181,6 +238,25 @@ export const invalidate = {
         queryKey: orgPermissionDefaultKeys.detail(id),
       }),
   },
+  /** Invalidate appPermissionDefaultPermission queries */ appPermissionDefaultPermission: {
+    /** Invalidate all appPermissionDefaultPermission queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.all,
+      }),
+    /** Invalidate appPermissionDefaultPermission list queries */ lists: (
+      queryClient: QueryClient
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.lists(),
+      }),
+    /** Invalidate a specific appPermissionDefaultPermission */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.detail(id),
+      }),
+  },
   /** Invalidate appAdminGrant queries */ appAdminGrant: {
     /** Invalidate all appAdminGrant queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -535,6 +611,14 @@ export const remove = {
       queryKey: appPermissionKeys.detail(id),
     });
   },
+  /** Remove appPermissionDefaultGrant from cache */ appPermissionDefaultGrant: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: appPermissionDefaultGrantKeys.detail(id),
+    });
+  },
   /** Remove orgPermission from cache */ orgPermission: (
     queryClient: QueryClient,
     id: string | number
@@ -543,6 +627,22 @@ export const remove = {
       queryKey: orgPermissionKeys.detail(id),
     });
   },
+  /** Remove orgPermissionDefaultPermission from cache */ orgPermissionDefaultPermission: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: orgPermissionDefaultPermissionKeys.detail(id),
+    });
+  },
+  /** Remove orgPermissionDefaultGrant from cache */ orgPermissionDefaultGrant: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: orgPermissionDefaultGrantKeys.detail(id),
+    });
+  },
   /** Remove orgMember from cache */ orgMember: (queryClient: QueryClient, id: string | number) => {
     queryClient.removeQueries({
       queryKey: orgMemberKeys.detail(id),
@@ -564,6 +664,14 @@ export const remove = {
       queryKey: orgPermissionDefaultKeys.detail(id),
     });
   },
+  /** Remove appPermissionDefaultPermission from cache */ appPermissionDefaultPermission: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: appPermissionDefaultPermissionKeys.detail(id),
+    });
+  },
   /** Remove appAdminGrant from cache */ appAdminGrant: (
     queryClient: QueryClient,
     id: string | number
diff --git a/sdk/constructive-react/src/admin/hooks/mutation-keys.ts b/sdk/constructive-react/src/admin/hooks/mutation-keys.ts
index c5e0bb872..8477e0aba 100644
--- a/sdk/constructive-react/src/admin/hooks/mutation-keys.ts
+++ b/sdk/constructive-react/src/admin/hooks/mutation-keys.ts
@@ -48,6 +48,18 @@ export const appPermissionMutationKeys = {
   /** Delete appPermission mutation key */ delete: (id: string | number) =>
     ['mutation', 'apppermission', 'delete', id] as const,
 } as const;
+export const appPermissionDefaultGrantMutationKeys = {
+  /** All appPermissionDefaultGrant mutation keys */ all: [
+    'mutation',
+    'apppermissiondefaultgrant',
+  ] as const,
+  /** Create appPermissionDefaultGrant mutation key */ create: () =>
+    ['mutation', 'apppermissiondefaultgrant', 'create'] as const,
+  /** Update appPermissionDefaultGrant mutation key */ update: (id: string | number) =>
+    ['mutation', 'apppermissiondefaultgrant', 'update', id] as const,
+  /** Delete appPermissionDefaultGrant mutation key */ delete: (id: string | number) =>
+    ['mutation', 'apppermissiondefaultgrant', 'delete', id] as const,
+} as const;
 export const orgPermissionMutationKeys = {
   /** All orgPermission mutation keys */ all: ['mutation', 'orgpermission'] as const,
   /** Create orgPermission mutation key */ create: () =>
@@ -57,6 +69,30 @@ export const orgPermissionMutationKeys = {
   /** Delete orgPermission mutation key */ delete: (id: string | number) =>
     ['mutation', 'orgpermission', 'delete', id] as const,
 } as const;
+export const orgPermissionDefaultPermissionMutationKeys = {
+  /** All orgPermissionDefaultPermission mutation keys */ all: [
+    'mutation',
+    'orgpermissiondefaultpermission',
+  ] as const,
+  /** Create orgPermissionDefaultPermission mutation key */ create: () =>
+    ['mutation', 'orgpermissiondefaultpermission', 'create'] as const,
+  /** Update orgPermissionDefaultPermission mutation key */ update: (id: string | number) =>
+    ['mutation', 'orgpermissiondefaultpermission', 'update', id] as const,
+  /** Delete orgPermissionDefaultPermission mutation key */ delete: (id: string | number) =>
+    ['mutation', 'orgpermissiondefaultpermission', 'delete', id] as const,
+} as const;
+export const orgPermissionDefaultGrantMutationKeys = {
+  /** All orgPermissionDefaultGrant mutation keys */ all: [
+    'mutation',
+    'orgpermissiondefaultgrant',
+  ] as const,
+  /** Create orgPermissionDefaultGrant mutation key */ create: () =>
+    ['mutation', 'orgpermissiondefaultgrant', 'create'] as const,
+  /** Update orgPermissionDefaultGrant mutation key */ update: (id: string | number) =>
+    ['mutation', 'orgpermissiondefaultgrant', 'update', id] as const,
+  /** Delete orgPermissionDefaultGrant mutation key */ delete: (id: string | number) =>
+    ['mutation', 'orgpermissiondefaultgrant', 'delete', id] as const,
+} as const;
 export const orgMemberMutationKeys = {
   /** All orgMember mutation keys */ all: ['mutation', 'orgmember'] as const,
   /** Create orgMember mutation key */ create: () => ['mutation', 'orgmember', 'create'] as const,
@@ -83,6 +119,18 @@ export const orgPermissionDefaultMutationKeys = {
   /** Delete orgPermissionDefault mutation key */ delete: (id: string | number) =>
     ['mutation', 'orgpermissiondefault', 'delete', id] as const,
 } as const;
+export const appPermissionDefaultPermissionMutationKeys = {
+  /** All appPermissionDefaultPermission mutation keys */ all: [
+    'mutation',
+    'apppermissiondefaultpermission',
+  ] as const,
+  /** Create appPermissionDefaultPermission mutation key */ create: () =>
+    ['mutation', 'apppermissiondefaultpermission', 'create'] as const,
+  /** Update appPermissionDefaultPermission mutation key */ update: (id: string | number) =>
+    ['mutation', 'apppermissiondefaultpermission', 'update', id] as const,
+  /** Delete appPermissionDefaultPermission mutation key */ delete: (id: string | number) =>
+    ['mutation', 'apppermissiondefaultpermission', 'delete', id] as const,
+} as const;
 export const appAdminGrantMutationKeys = {
   /** All appAdminGrant mutation keys */ all: ['mutation', 'appadmingrant'] as const,
   /** Create appAdminGrant mutation key */ create: () =>
@@ -295,10 +343,14 @@ export const mutationKeys = {
   orgGetManagersRecord: orgGetManagersRecordMutationKeys,
   orgGetSubordinatesRecord: orgGetSubordinatesRecordMutationKeys,
   appPermission: appPermissionMutationKeys,
+  appPermissionDefaultGrant: appPermissionDefaultGrantMutationKeys,
   orgPermission: orgPermissionMutationKeys,
+  orgPermissionDefaultPermission: orgPermissionDefaultPermissionMutationKeys,
+  orgPermissionDefaultGrant: orgPermissionDefaultGrantMutationKeys,
   orgMember: orgMemberMutationKeys,
   appPermissionDefault: appPermissionDefaultMutationKeys,
   orgPermissionDefault: orgPermissionDefaultMutationKeys,
+  appPermissionDefaultPermission: appPermissionDefaultPermissionMutationKeys,
   appAdminGrant: appAdminGrantMutationKeys,
   appOwnerGrant: appOwnerGrantMutationKeys,
   orgAdminGrant: orgAdminGrantMutationKeys,
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/index.ts b/sdk/constructive-react/src/admin/hooks/mutations/index.ts
index ab1ec5d95..76a700749 100644
--- a/sdk/constructive-react/src/admin/hooks/mutations/index.ts
+++ b/sdk/constructive-react/src/admin/hooks/mutations/index.ts
@@ -8,9 +8,18 @@ export * from './useCreateOrgGetSubordinatesRecordMutation';
 export * from './useCreateAppPermissionMutation';
 export * from './useUpdateAppPermissionMutation';
 export * from './useDeleteAppPermissionMutation';
+export * from './useCreateAppPermissionDefaultGrantMutation';
+export * from './useUpdateAppPermissionDefaultGrantMutation';
+export * from './useDeleteAppPermissionDefaultGrantMutation';
 export * from './useCreateOrgPermissionMutation';
 export * from './useUpdateOrgPermissionMutation';
 export * from './useDeleteOrgPermissionMutation';
+export * from './useCreateOrgPermissionDefaultPermissionMutation';
+export * from './useUpdateOrgPermissionDefaultPermissionMutation';
+export * from './useDeleteOrgPermissionDefaultPermissionMutation';
+export * from './useCreateOrgPermissionDefaultGrantMutation';
+export * from './useUpdateOrgPermissionDefaultGrantMutation';
+export * from './useDeleteOrgPermissionDefaultGrantMutation';
 export * from './useCreateOrgMemberMutation';
 export * from './useUpdateOrgMemberMutation';
 export * from './useDeleteOrgMemberMutation';
@@ -20,6 +29,9 @@ export * from './useDeleteAppPermissionDefaultMutation';
 export * from './useCreateOrgPermissionDefaultMutation';
 export * from './useUpdateOrgPermissionDefaultMutation';
 export * from './useDeleteOrgPermissionDefaultMutation';
+export * from './useCreateAppPermissionDefaultPermissionMutation';
+export * from './useUpdateAppPermissionDefaultPermissionMutation';
+export * from './useDeleteAppPermissionDefaultPermissionMutation';
 export * from './useCreateAppAdminGrantMutation';
 export * from './useUpdateAppAdminGrantMutation';
 export * from './useDeleteAppAdminGrantMutation';
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..695d90538
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultGrantMutation.ts
@@ -0,0 +1,97 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultGrantKeys } from '../query-keys';
+import { appPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  CreateAppPermissionDefaultGrantInput,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  CreateAppPermissionDefaultGrantInput,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useCreateAppPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ name: 'New item' });
+ * ```
+ */
+export function useCreateAppPermissionDefaultGrantMutation<
+  S extends AppPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        createAppPermissionDefaultGrant: {
+          appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    createAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']
+>;
+export function useCreateAppPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultGrantMutationKeys.create(),
+    mutationFn: (data: CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']) =>
+      getClient()
+        .appPermissionDefaultGrant.create({
+          data,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: () => {
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..e95490838
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useCreateAppPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,105 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultPermissionKeys } from '../query-keys';
+import { appPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  CreateAppPermissionDefaultPermissionInput,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  CreateAppPermissionDefaultPermissionInput,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useCreateAppPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ name: 'New item' });
+ * ```
+ */
+export function useCreateAppPermissionDefaultPermissionMutation<
+  S extends AppPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        createAppPermissionDefaultPermission: {
+          appPermissionDefaultPermission: InferSelectResult<
+            AppPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    createAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+>;
+export function useCreateAppPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultPermissionMutationKeys.create(),
+    mutationFn: (
+      data: CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    ) =>
+      getClient()
+        .appPermissionDefaultPermission.create({
+          data,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: () => {
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..03eb33d2c
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultGrantMutation.ts
@@ -0,0 +1,97 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultGrantKeys } from '../query-keys';
+import { orgPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  CreateOrgPermissionDefaultGrantInput,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  CreateOrgPermissionDefaultGrantInput,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useCreateOrgPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ name: 'New item' });
+ * ```
+ */
+export function useCreateOrgPermissionDefaultGrantMutation<
+  S extends OrgPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        createOrgPermissionDefaultGrant: {
+          orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    createOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']
+>;
+export function useCreateOrgPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultGrantMutationKeys.create(),
+    mutationFn: (data: CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']) =>
+      getClient()
+        .orgPermissionDefaultGrant.create({
+          data,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: () => {
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..010f341f7
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useCreateOrgPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,105 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultPermissionKeys } from '../query-keys';
+import { orgPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  CreateOrgPermissionDefaultPermissionInput,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  CreateOrgPermissionDefaultPermissionInput,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useCreateOrgPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ name: 'New item' });
+ * ```
+ */
+export function useCreateOrgPermissionDefaultPermissionMutation<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        createOrgPermissionDefaultPermission: {
+          orgPermissionDefaultPermission: InferSelectResult<
+            OrgPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    createOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+>;
+export function useCreateOrgPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultPermissionMutationKeys.create(),
+    mutationFn: (
+      data: CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    ) =>
+      getClient()
+        .orgPermissionDefaultPermission.create({
+          data,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: () => {
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..ad38391ff
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultGrantMutation.ts
@@ -0,0 +1,106 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultGrantKeys } from '../query-keys';
+import { appPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useDeleteAppPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true } },
+ * });
+ *
+ * mutate({ id: 'value-to-delete' });
+ * ```
+ */
+export function useDeleteAppPermissionDefaultGrantMutation<
+  S extends AppPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        deleteAppPermissionDefaultGrant: {
+          appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    deleteAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+  }
+>;
+export function useDeleteAppPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultGrantMutationKeys.all,
+    mutationFn: ({ id }: { id: string }) =>
+      getClient()
+        .appPermissionDefaultGrant.delete({
+          where: {
+            id,
+          },
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.removeQueries({
+        queryKey: appPermissionDefaultGrantKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..1efbf6a93
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteAppPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,112 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultPermissionKeys } from '../query-keys';
+import { appPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useDeleteAppPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true } },
+ * });
+ *
+ * mutate({ id: 'value-to-delete' });
+ * ```
+ */
+export function useDeleteAppPermissionDefaultPermissionMutation<
+  S extends AppPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        deleteAppPermissionDefaultPermission: {
+          appPermissionDefaultPermission: InferSelectResult<
+            AppPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    deleteAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  {
+    id: string;
+  }
+>;
+export function useDeleteAppPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultPermissionMutationKeys.all,
+    mutationFn: ({ id }: { id: string }) =>
+      getClient()
+        .appPermissionDefaultPermission.delete({
+          where: {
+            id,
+          },
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.removeQueries({
+        queryKey: appPermissionDefaultPermissionKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..1b2e20d5b
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultGrantMutation.ts
@@ -0,0 +1,106 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultGrantKeys } from '../query-keys';
+import { orgPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useDeleteOrgPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true } },
+ * });
+ *
+ * mutate({ id: 'value-to-delete' });
+ * ```
+ */
+export function useDeleteOrgPermissionDefaultGrantMutation<
+  S extends OrgPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        deleteOrgPermissionDefaultGrant: {
+          orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    deleteOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+  }
+>;
+export function useDeleteOrgPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultGrantMutationKeys.all,
+    mutationFn: ({ id }: { id: string }) =>
+      getClient()
+        .orgPermissionDefaultGrant.delete({
+          where: {
+            id,
+          },
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.removeQueries({
+        queryKey: orgPermissionDefaultGrantKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..5cca83380
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useDeleteOrgPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,112 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultPermissionKeys } from '../query-keys';
+import { orgPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useDeleteOrgPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true } },
+ * });
+ *
+ * mutate({ id: 'value-to-delete' });
+ * ```
+ */
+export function useDeleteOrgPermissionDefaultPermissionMutation<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        deleteOrgPermissionDefaultPermission: {
+          orgPermissionDefaultPermission: InferSelectResult<
+            OrgPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    deleteOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  {
+    id: string;
+  }
+>;
+export function useDeleteOrgPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultPermissionMutationKeys.all,
+    mutationFn: ({ id }: { id: string }) =>
+      getClient()
+        .orgPermissionDefaultPermission.delete({
+          where: {
+            id,
+          },
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.removeQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..8977a5508
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultGrantMutation.ts
@@ -0,0 +1,118 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultGrantKeys } from '../query-keys';
+import { appPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantPatch,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantPatch,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useUpdateAppPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ id: 'value-here', appPermissionDefaultGrantPatch: { name: 'Updated' } });
+ * ```
+ */
+export function useUpdateAppPermissionDefaultGrantMutation<
+  S extends AppPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        updateAppPermissionDefaultGrant: {
+          appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+        appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    updateAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+    appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+  }
+>;
+export function useUpdateAppPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+        appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultGrantMutationKeys.all,
+    mutationFn: ({
+      id,
+      appPermissionDefaultGrantPatch,
+    }: {
+      id: string;
+      appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+    }) =>
+      getClient()
+        .appPermissionDefaultGrant.update({
+          where: {
+            id,
+          },
+          data: appPermissionDefaultGrantPatch,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..80340cd64
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateAppPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,124 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultPermissionKeys } from '../query-keys';
+import { appPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionPatch,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionPatch,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useUpdateAppPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ id: 'value-here', appPermissionDefaultPermissionPatch: { name: 'Updated' } });
+ * ```
+ */
+export function useUpdateAppPermissionDefaultPermissionMutation<
+  S extends AppPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & AppPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        updateAppPermissionDefaultPermission: {
+          appPermissionDefaultPermission: InferSelectResult<
+            AppPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      {
+        id: string;
+        appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    updateAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  {
+    id: string;
+    appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+  }
+>;
+export function useUpdateAppPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+        appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: appPermissionDefaultPermissionMutationKeys.all,
+    mutationFn: ({
+      id,
+      appPermissionDefaultPermissionPatch,
+    }: {
+      id: string;
+      appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+    }) =>
+      getClient()
+        .appPermissionDefaultPermission.update({
+          where: {
+            id,
+          },
+          data: appPermissionDefaultPermissionPatch,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: appPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultGrantMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultGrantMutation.ts
new file mode 100644
index 000000000..1f119f098
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultGrantMutation.ts
@@ -0,0 +1,118 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultGrantKeys } from '../query-keys';
+import { orgPermissionDefaultGrantMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantPatch,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantPatch,
+} from '../../orm/input-types';
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useUpdateOrgPermissionDefaultGrantMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ id: 'value-here', orgPermissionDefaultGrantPatch: { name: 'Updated' } });
+ * ```
+ */
+export function useUpdateOrgPermissionDefaultGrantMutation<
+  S extends OrgPermissionDefaultGrantSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultGrantSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        updateOrgPermissionDefaultGrant: {
+          orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+        orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    updateOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+    orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+  }
+>;
+export function useUpdateOrgPermissionDefaultGrantMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+        orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultGrantMutationKeys.all,
+    mutationFn: ({
+      id,
+      orgPermissionDefaultGrantPatch,
+    }: {
+      id: string;
+      orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+    }) =>
+      getClient()
+        .orgPermissionDefaultGrant.update({
+          where: {
+            id,
+          },
+          data: orgPermissionDefaultGrantPatch,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultGrantKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultPermissionMutation.ts b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultPermissionMutation.ts
new file mode 100644
index 000000000..b5cfa2798
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/mutations/useUpdateOrgPermissionDefaultPermissionMutation.ts
@@ -0,0 +1,124 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultPermissionKeys } from '../query-keys';
+import { orgPermissionDefaultPermissionMutationKeys } from '../mutation-keys';
+import type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionPatch,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionPatch,
+} from '../../orm/input-types';
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useUpdateOrgPermissionDefaultPermissionMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ id: 'value-here', orgPermissionDefaultPermissionPatch: { name: 'Updated' } });
+ * ```
+ */
+export function useUpdateOrgPermissionDefaultPermissionMutation<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(
+  params: {
+    selection: {
+      fields: S & OrgPermissionDefaultPermissionSelect;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        updateOrgPermissionDefaultPermission: {
+          orgPermissionDefaultPermission: InferSelectResult<
+            OrgPermissionDefaultPermissionWithRelations,
+            S
+          >;
+        };
+      },
+      Error,
+      {
+        id: string;
+        orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    updateOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  },
+  Error,
+  {
+    id: string;
+    orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+  }
+>;
+export function useUpdateOrgPermissionDefaultPermissionMutation(
+  params: {
+    selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+        orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: orgPermissionDefaultPermissionMutationKeys.all,
+    mutationFn: ({
+      id,
+      orgPermissionDefaultPermissionPatch,
+    }: {
+      id: string;
+      orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+    }) =>
+      getClient()
+        .orgPermissionDefaultPermission.update({
+          where: {
+            id,
+          },
+          data: orgPermissionDefaultPermissionPatch,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: orgPermissionDefaultPermissionKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/index.ts b/sdk/constructive-react/src/admin/hooks/queries/index.ts
index 7e4111621..328d391a2 100644
--- a/sdk/constructive-react/src/admin/hooks/queries/index.ts
+++ b/sdk/constructive-react/src/admin/hooks/queries/index.ts
@@ -7,14 +7,22 @@ export * from './useOrgGetManagersQuery';
 export * from './useOrgGetSubordinatesQuery';
 export * from './useAppPermissionsQuery';
 export * from './useAppPermissionQuery';
+export * from './useAppPermissionDefaultGrantsQuery';
+export * from './useAppPermissionDefaultGrantQuery';
 export * from './useOrgPermissionsQuery';
 export * from './useOrgPermissionQuery';
+export * from './useOrgPermissionDefaultPermissionsQuery';
+export * from './useOrgPermissionDefaultPermissionQuery';
+export * from './useOrgPermissionDefaultGrantsQuery';
+export * from './useOrgPermissionDefaultGrantQuery';
 export * from './useOrgMembersQuery';
 export * from './useOrgMemberQuery';
 export * from './useAppPermissionDefaultsQuery';
 export * from './useAppPermissionDefaultQuery';
 export * from './useOrgPermissionDefaultsQuery';
 export * from './useOrgPermissionDefaultQuery';
+export * from './useAppPermissionDefaultPermissionsQuery';
+export * from './useAppPermissionDefaultPermissionQuery';
 export * from './useAppAdminGrantsQuery';
 export * from './useAppAdminGrantQuery';
 export * from './useAppOwnerGrantsQuery';
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantQuery.ts
new file mode 100644
index 000000000..1d596eba6
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantQuery.ts
@@ -0,0 +1,151 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultGrantKeys } from '../query-keys';
+import type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const appPermissionDefaultGrantQueryKey = appPermissionDefaultGrantKeys.detail;
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useAppPermissionDefaultGrantQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ * ```
+ */
+export function useAppPermissionDefaultGrantQuery<
+  S extends AppPermissionDefaultGrantSelect,
+  TData = {
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  },
+>(
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        appPermissionDefaultGrant: InferSelectResult<
+          AppPermissionDefaultGrantWithRelations,
+          S
+        > | null;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useAppPermissionDefaultGrantQuery(
+  params: {
+    id: string;
+    selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: appPermissionDefaultGrantKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .appPermissionDefaultGrant.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchAppPermissionDefaultGrantQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true } },
+ * });
+ * ```
+ */
+export async function fetchAppPermissionDefaultGrantQuery<
+  S extends AppPermissionDefaultGrantSelect,
+>(params: {
+  id: string;
+  selection: {
+    fields: S;
+  } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+}): Promise<{
+  appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+}>;
+export async function fetchAppPermissionDefaultGrantQuery(params: {
+  id: string;
+  selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+}): Promise<any> {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  return getClient()
+    .appPermissionDefaultGrant.findOne({
+      id: params.id,
+      select: args.select,
+    })
+    .unwrap();
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchAppPermissionDefaultGrantQuery(queryClient, { id: 'some-id', selection: { fields: { id: true } } });
+ * ```
+ */
+export async function prefetchAppPermissionDefaultGrantQuery<
+  S extends AppPermissionDefaultGrantSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  }
+): Promise<void>;
+export async function prefetchAppPermissionDefaultGrantQuery(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: SelectionConfig<AppPermissionDefaultGrantSelect>;
+  }
+): Promise<void> {
+  const args = buildSelectionArgs<AppPermissionDefaultGrantSelect>(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: appPermissionDefaultGrantKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .appPermissionDefaultGrant.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantsQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantsQuery.ts
new file mode 100644
index 000000000..eeae2ad10
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultGrantsQuery.ts
@@ -0,0 +1,182 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildListSelectionArgs } from '../selection';
+import type { ListSelectionConfig } from '../selection';
+import { appPermissionDefaultGrantKeys } from '../query-keys';
+import type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+import type {
+  FindManyArgs,
+  InferSelectResult,
+  ConnectionResult,
+  HookStrictSelect,
+} from '../../orm/select-types';
+export type {
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const appPermissionDefaultGrantsQueryKey = appPermissionDefaultGrantKeys.list;
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useAppPermissionDefaultGrantsQuery({
+ *   selection: {
+ *     fields: { id: true, name: true },
+ *     where: { name: { equalTo: "example" } },
+ *     orderBy: ['CREATED_AT_DESC'],
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export function useAppPermissionDefaultGrantsQuery<
+  S extends AppPermissionDefaultGrantSelect,
+  TData = {
+    appPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+    >;
+  },
+>(
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy>,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        appPermissionDefaultGrants: ConnectionResult<
+          InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+        >;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useAppPermissionDefaultGrantsQuery(
+  params: {
+    selection: ListSelectionConfig<
+      AppPermissionDefaultGrantSelect,
+      AppPermissionDefaultGrantFilter,
+      AppPermissionDefaultGrantOrderBy
+    >;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultGrantSelect,
+    AppPermissionDefaultGrantFilter,
+    AppPermissionDefaultGrantOrderBy
+  >(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: appPermissionDefaultGrantKeys.list(args),
+    queryFn: () => getClient().appPermissionDefaultGrant.findMany(args).unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchAppPermissionDefaultGrantsQuery({
+ *   selection: {
+ *     fields: { id: true },
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export async function fetchAppPermissionDefaultGrantsQuery<
+  S extends AppPermissionDefaultGrantSelect,
+>(params: {
+  selection: {
+    fields: S;
+  } & Omit<
+    ListSelectionConfig<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy>,
+    'fields'
+  > &
+    HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+}): Promise<{
+  appPermissionDefaultGrants: ConnectionResult<
+    InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+  >;
+}>;
+export async function fetchAppPermissionDefaultGrantsQuery(params: {
+  selection: ListSelectionConfig<
+    AppPermissionDefaultGrantSelect,
+    AppPermissionDefaultGrantFilter,
+    AppPermissionDefaultGrantOrderBy
+  >;
+}) {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultGrantSelect,
+    AppPermissionDefaultGrantFilter,
+    AppPermissionDefaultGrantOrderBy
+  >(params.selection);
+  return getClient().appPermissionDefaultGrant.findMany(args).unwrap();
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchAppPermissionDefaultGrantsQuery(queryClient, { selection: { fields: { id: true }, first: 10 } });
+ * ```
+ */
+export async function prefetchAppPermissionDefaultGrantsQuery<
+  S extends AppPermissionDefaultGrantSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy>,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, AppPermissionDefaultGrantSelect>;
+  }
+): Promise<void>;
+export async function prefetchAppPermissionDefaultGrantsQuery(
+  queryClient: QueryClient,
+  params: {
+    selection: ListSelectionConfig<
+      AppPermissionDefaultGrantSelect,
+      AppPermissionDefaultGrantFilter,
+      AppPermissionDefaultGrantOrderBy
+    >;
+  }
+): Promise<void> {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultGrantSelect,
+    AppPermissionDefaultGrantFilter,
+    AppPermissionDefaultGrantOrderBy
+  >(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: appPermissionDefaultGrantKeys.list(args),
+    queryFn: () => getClient().appPermissionDefaultGrant.findMany(args).unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionQuery.ts
new file mode 100644
index 000000000..06aeafb89
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionQuery.ts
@@ -0,0 +1,157 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { appPermissionDefaultPermissionKeys } from '../query-keys';
+import type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const appPermissionDefaultPermissionQueryKey = appPermissionDefaultPermissionKeys.detail;
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useAppPermissionDefaultPermissionQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ * ```
+ */
+export function useAppPermissionDefaultPermissionQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+  TData = {
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  },
+>(
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        appPermissionDefaultPermission: InferSelectResult<
+          AppPermissionDefaultPermissionWithRelations,
+          S
+        > | null;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useAppPermissionDefaultPermissionQuery(
+  params: {
+    id: string;
+    selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: appPermissionDefaultPermissionKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .appPermissionDefaultPermission.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchAppPermissionDefaultPermissionQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true } },
+ * });
+ * ```
+ */
+export async function fetchAppPermissionDefaultPermissionQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+>(params: {
+  id: string;
+  selection: {
+    fields: S;
+  } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+}): Promise<{
+  appPermissionDefaultPermission: InferSelectResult<
+    AppPermissionDefaultPermissionWithRelations,
+    S
+  > | null;
+}>;
+export async function fetchAppPermissionDefaultPermissionQuery(params: {
+  id: string;
+  selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+}): Promise<any> {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  return getClient()
+    .appPermissionDefaultPermission.findOne({
+      id: params.id,
+      select: args.select,
+    })
+    .unwrap();
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchAppPermissionDefaultPermissionQuery(queryClient, { id: 'some-id', selection: { fields: { id: true } } });
+ * ```
+ */
+export async function prefetchAppPermissionDefaultPermissionQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  }
+): Promise<void>;
+export async function prefetchAppPermissionDefaultPermissionQuery(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: SelectionConfig<AppPermissionDefaultPermissionSelect>;
+  }
+): Promise<void> {
+  const args = buildSelectionArgs<AppPermissionDefaultPermissionSelect>(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: appPermissionDefaultPermissionKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .appPermissionDefaultPermission.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionsQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionsQuery.ts
new file mode 100644
index 000000000..c83281765
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useAppPermissionDefaultPermissionsQuery.ts
@@ -0,0 +1,194 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildListSelectionArgs } from '../selection';
+import type { ListSelectionConfig } from '../selection';
+import { appPermissionDefaultPermissionKeys } from '../query-keys';
+import type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+import type {
+  FindManyArgs,
+  InferSelectResult,
+  ConnectionResult,
+  HookStrictSelect,
+} from '../../orm/select-types';
+export type {
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const appPermissionDefaultPermissionsQueryKey = appPermissionDefaultPermissionKeys.list;
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useAppPermissionDefaultPermissionsQuery({
+ *   selection: {
+ *     fields: { id: true, name: true },
+ *     where: { name: { equalTo: "example" } },
+ *     orderBy: ['CREATED_AT_DESC'],
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export function useAppPermissionDefaultPermissionsQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+  TData = {
+    appPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+    >;
+  },
+>(
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<
+        S,
+        AppPermissionDefaultPermissionFilter,
+        AppPermissionDefaultPermissionOrderBy
+      >,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        appPermissionDefaultPermissions: ConnectionResult<
+          InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+        >;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useAppPermissionDefaultPermissionsQuery(
+  params: {
+    selection: ListSelectionConfig<
+      AppPermissionDefaultPermissionSelect,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    >;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultPermissionSelect,
+    AppPermissionDefaultPermissionFilter,
+    AppPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: appPermissionDefaultPermissionKeys.list(args),
+    queryFn: () => getClient().appPermissionDefaultPermission.findMany(args).unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchAppPermissionDefaultPermissionsQuery({
+ *   selection: {
+ *     fields: { id: true },
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export async function fetchAppPermissionDefaultPermissionsQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+>(params: {
+  selection: {
+    fields: S;
+  } & Omit<
+    ListSelectionConfig<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    >,
+    'fields'
+  > &
+    HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+}): Promise<{
+  appPermissionDefaultPermissions: ConnectionResult<
+    InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+  >;
+}>;
+export async function fetchAppPermissionDefaultPermissionsQuery(params: {
+  selection: ListSelectionConfig<
+    AppPermissionDefaultPermissionSelect,
+    AppPermissionDefaultPermissionFilter,
+    AppPermissionDefaultPermissionOrderBy
+  >;
+}) {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultPermissionSelect,
+    AppPermissionDefaultPermissionFilter,
+    AppPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  return getClient().appPermissionDefaultPermission.findMany(args).unwrap();
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchAppPermissionDefaultPermissionsQuery(queryClient, { selection: { fields: { id: true }, first: 10 } });
+ * ```
+ */
+export async function prefetchAppPermissionDefaultPermissionsQuery<
+  S extends AppPermissionDefaultPermissionSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<
+        S,
+        AppPermissionDefaultPermissionFilter,
+        AppPermissionDefaultPermissionOrderBy
+      >,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, AppPermissionDefaultPermissionSelect>;
+  }
+): Promise<void>;
+export async function prefetchAppPermissionDefaultPermissionsQuery(
+  queryClient: QueryClient,
+  params: {
+    selection: ListSelectionConfig<
+      AppPermissionDefaultPermissionSelect,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    >;
+  }
+): Promise<void> {
+  const args = buildListSelectionArgs<
+    AppPermissionDefaultPermissionSelect,
+    AppPermissionDefaultPermissionFilter,
+    AppPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: appPermissionDefaultPermissionKeys.list(args),
+    queryFn: () => getClient().appPermissionDefaultPermission.findMany(args).unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantQuery.ts
new file mode 100644
index 000000000..a2cec4a44
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantQuery.ts
@@ -0,0 +1,151 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultGrantKeys } from '../query-keys';
+import type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const orgPermissionDefaultGrantQueryKey = orgPermissionDefaultGrantKeys.detail;
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useOrgPermissionDefaultGrantQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ * ```
+ */
+export function useOrgPermissionDefaultGrantQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+  TData = {
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  },
+>(
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        orgPermissionDefaultGrant: InferSelectResult<
+          OrgPermissionDefaultGrantWithRelations,
+          S
+        > | null;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useOrgPermissionDefaultGrantQuery(
+  params: {
+    id: string;
+    selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: orgPermissionDefaultGrantKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .orgPermissionDefaultGrant.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchOrgPermissionDefaultGrantQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true } },
+ * });
+ * ```
+ */
+export async function fetchOrgPermissionDefaultGrantQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+>(params: {
+  id: string;
+  selection: {
+    fields: S;
+  } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+}): Promise<{
+  orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+}>;
+export async function fetchOrgPermissionDefaultGrantQuery(params: {
+  id: string;
+  selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+}): Promise<any> {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  return getClient()
+    .orgPermissionDefaultGrant.findOne({
+      id: params.id,
+      select: args.select,
+    })
+    .unwrap();
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchOrgPermissionDefaultGrantQuery(queryClient, { id: 'some-id', selection: { fields: { id: true } } });
+ * ```
+ */
+export async function prefetchOrgPermissionDefaultGrantQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  }
+): Promise<void>;
+export async function prefetchOrgPermissionDefaultGrantQuery(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: SelectionConfig<OrgPermissionDefaultGrantSelect>;
+  }
+): Promise<void> {
+  const args = buildSelectionArgs<OrgPermissionDefaultGrantSelect>(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: orgPermissionDefaultGrantKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .orgPermissionDefaultGrant.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantsQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantsQuery.ts
new file mode 100644
index 000000000..606103b3e
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultGrantsQuery.ts
@@ -0,0 +1,182 @@
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildListSelectionArgs } from '../selection';
+import type { ListSelectionConfig } from '../selection';
+import { orgPermissionDefaultGrantKeys } from '../query-keys';
+import type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+import type {
+  FindManyArgs,
+  InferSelectResult,
+  ConnectionResult,
+  HookStrictSelect,
+} from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const orgPermissionDefaultGrantsQueryKey = orgPermissionDefaultGrantKeys.list;
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useOrgPermissionDefaultGrantsQuery({
+ *   selection: {
+ *     fields: { id: true, name: true },
+ *     where: { name: { equalTo: "example" } },
+ *     orderBy: ['CREATED_AT_DESC'],
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export function useOrgPermissionDefaultGrantsQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+  TData = {
+    orgPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+    >;
+  },
+>(
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy>,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        orgPermissionDefaultGrants: ConnectionResult<
+          InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+        >;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useOrgPermissionDefaultGrantsQuery(
+  params: {
+    selection: ListSelectionConfig<
+      OrgPermissionDefaultGrantSelect,
+      OrgPermissionDefaultGrantFilter,
+      OrgPermissionDefaultGrantOrderBy
+    >;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultGrantSelect,
+    OrgPermissionDefaultGrantFilter,
+    OrgPermissionDefaultGrantOrderBy
+  >(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: orgPermissionDefaultGrantKeys.list(args),
+    queryFn: () => getClient().orgPermissionDefaultGrant.findMany(args).unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchOrgPermissionDefaultGrantsQuery({
+ *   selection: {
+ *     fields: { id: true },
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export async function fetchOrgPermissionDefaultGrantsQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+>(params: {
+  selection: {
+    fields: S;
+  } & Omit<
+    ListSelectionConfig<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy>,
+    'fields'
+  > &
+    HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+}): Promise<{
+  orgPermissionDefaultGrants: ConnectionResult<
+    InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+  >;
+}>;
+export async function fetchOrgPermissionDefaultGrantsQuery(params: {
+  selection: ListSelectionConfig<
+    OrgPermissionDefaultGrantSelect,
+    OrgPermissionDefaultGrantFilter,
+    OrgPermissionDefaultGrantOrderBy
+  >;
+}) {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultGrantSelect,
+    OrgPermissionDefaultGrantFilter,
+    OrgPermissionDefaultGrantOrderBy
+  >(params.selection);
+  return getClient().orgPermissionDefaultGrant.findMany(args).unwrap();
+}
+/**
+ * Audit log of permission additions and removals from the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchOrgPermissionDefaultGrantsQuery(queryClient, { selection: { fields: { id: true }, first: 10 } });
+ * ```
+ */
+export async function prefetchOrgPermissionDefaultGrantsQuery<
+  S extends OrgPermissionDefaultGrantSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy>,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, OrgPermissionDefaultGrantSelect>;
+  }
+): Promise<void>;
+export async function prefetchOrgPermissionDefaultGrantsQuery(
+  queryClient: QueryClient,
+  params: {
+    selection: ListSelectionConfig<
+      OrgPermissionDefaultGrantSelect,
+      OrgPermissionDefaultGrantFilter,
+      OrgPermissionDefaultGrantOrderBy
+    >;
+  }
+): Promise<void> {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultGrantSelect,
+    OrgPermissionDefaultGrantFilter,
+    OrgPermissionDefaultGrantOrderBy
+  >(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: orgPermissionDefaultGrantKeys.list(args),
+    queryFn: () => getClient().orgPermissionDefaultGrant.findMany(args).unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionQuery.ts
new file mode 100644
index 000000000..a8d75d814
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionQuery.ts
@@ -0,0 +1,157 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { orgPermissionDefaultPermissionKeys } from '../query-keys';
+import type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const orgPermissionDefaultPermissionQueryKey = orgPermissionDefaultPermissionKeys.detail;
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useOrgPermissionDefaultPermissionQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ * ```
+ */
+export function useOrgPermissionDefaultPermissionQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+  TData = {
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  },
+>(
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        orgPermissionDefaultPermission: InferSelectResult<
+          OrgPermissionDefaultPermissionWithRelations,
+          S
+        > | null;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useOrgPermissionDefaultPermissionQuery(
+  params: {
+    id: string;
+    selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: orgPermissionDefaultPermissionKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .orgPermissionDefaultPermission.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchOrgPermissionDefaultPermissionQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true } },
+ * });
+ * ```
+ */
+export async function fetchOrgPermissionDefaultPermissionQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(params: {
+  id: string;
+  selection: {
+    fields: S;
+  } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+}): Promise<{
+  orgPermissionDefaultPermission: InferSelectResult<
+    OrgPermissionDefaultPermissionWithRelations,
+    S
+  > | null;
+}>;
+export async function fetchOrgPermissionDefaultPermissionQuery(params: {
+  id: string;
+  selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+}): Promise<any> {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  return getClient()
+    .orgPermissionDefaultPermission.findOne({
+      id: params.id,
+      select: args.select,
+    })
+    .unwrap();
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchOrgPermissionDefaultPermissionQuery(queryClient, { id: 'some-id', selection: { fields: { id: true } } });
+ * ```
+ */
+export async function prefetchOrgPermissionDefaultPermissionQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  }
+): Promise<void>;
+export async function prefetchOrgPermissionDefaultPermissionQuery(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: SelectionConfig<OrgPermissionDefaultPermissionSelect>;
+  }
+): Promise<void> {
+  const args = buildSelectionArgs<OrgPermissionDefaultPermissionSelect>(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: orgPermissionDefaultPermissionKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .orgPermissionDefaultPermission.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionsQuery.ts b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionsQuery.ts
new file mode 100644
index 000000000..331c112c0
--- /dev/null
+++ b/sdk/constructive-react/src/admin/hooks/queries/useOrgPermissionDefaultPermissionsQuery.ts
@@ -0,0 +1,194 @@
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildListSelectionArgs } from '../selection';
+import type { ListSelectionConfig } from '../selection';
+import { orgPermissionDefaultPermissionKeys } from '../query-keys';
+import type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+import type {
+  FindManyArgs,
+  InferSelectResult,
+  ConnectionResult,
+  HookStrictSelect,
+} from '../../orm/select-types';
+export type {
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const orgPermissionDefaultPermissionsQueryKey = orgPermissionDefaultPermissionKeys.list;
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useOrgPermissionDefaultPermissionsQuery({
+ *   selection: {
+ *     fields: { id: true, name: true },
+ *     where: { name: { equalTo: "example" } },
+ *     orderBy: ['CREATED_AT_DESC'],
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export function useOrgPermissionDefaultPermissionsQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+  TData = {
+    orgPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+    >;
+  },
+>(
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<
+        S,
+        OrgPermissionDefaultPermissionFilter,
+        OrgPermissionDefaultPermissionOrderBy
+      >,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        orgPermissionDefaultPermissions: ConnectionResult<
+          InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+        >;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useOrgPermissionDefaultPermissionsQuery(
+  params: {
+    selection: ListSelectionConfig<
+      OrgPermissionDefaultPermissionSelect,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    >;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultPermissionSelect,
+    OrgPermissionDefaultPermissionFilter,
+    OrgPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: orgPermissionDefaultPermissionKeys.list(args),
+    queryFn: () => getClient().orgPermissionDefaultPermission.findMany(args).unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * const data = await fetchOrgPermissionDefaultPermissionsQuery({
+ *   selection: {
+ *     fields: { id: true },
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export async function fetchOrgPermissionDefaultPermissionsQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(params: {
+  selection: {
+    fields: S;
+  } & Omit<
+    ListSelectionConfig<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    >,
+    'fields'
+  > &
+    HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+}): Promise<{
+  orgPermissionDefaultPermissions: ConnectionResult<
+    InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+  >;
+}>;
+export async function fetchOrgPermissionDefaultPermissionsQuery(params: {
+  selection: ListSelectionConfig<
+    OrgPermissionDefaultPermissionSelect,
+    OrgPermissionDefaultPermissionFilter,
+    OrgPermissionDefaultPermissionOrderBy
+  >;
+}) {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultPermissionSelect,
+    OrgPermissionDefaultPermissionFilter,
+    OrgPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  return getClient().orgPermissionDefaultPermission.findMany(args).unwrap();
+}
+/**
+ * Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+ *
+ * @example
+ * ```ts
+ * await prefetchOrgPermissionDefaultPermissionsQuery(queryClient, { selection: { fields: { id: true }, first: 10 } });
+ * ```
+ */
+export async function prefetchOrgPermissionDefaultPermissionsQuery<
+  S extends OrgPermissionDefaultPermissionSelect,
+>(
+  queryClient: QueryClient,
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<
+      ListSelectionConfig<
+        S,
+        OrgPermissionDefaultPermissionFilter,
+        OrgPermissionDefaultPermissionOrderBy
+      >,
+      'fields'
+    > &
+      HookStrictSelect<NoInfer<S>, OrgPermissionDefaultPermissionSelect>;
+  }
+): Promise<void>;
+export async function prefetchOrgPermissionDefaultPermissionsQuery(
+  queryClient: QueryClient,
+  params: {
+    selection: ListSelectionConfig<
+      OrgPermissionDefaultPermissionSelect,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    >;
+  }
+): Promise<void> {
+  const args = buildListSelectionArgs<
+    OrgPermissionDefaultPermissionSelect,
+    OrgPermissionDefaultPermissionFilter,
+    OrgPermissionDefaultPermissionOrderBy
+  >(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: orgPermissionDefaultPermissionKeys.list(args),
+    queryFn: () => getClient().orgPermissionDefaultPermission.findMany(args).unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/admin/hooks/query-keys.ts b/sdk/constructive-react/src/admin/hooks/query-keys.ts
index b0fb1bcb2..5793cbf10 100644
--- a/sdk/constructive-react/src/admin/hooks/query-keys.ts
+++ b/sdk/constructive-react/src/admin/hooks/query-keys.ts
@@ -46,6 +46,15 @@ export const appPermissionKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...appPermissionKeys.details(), id] as const,
 } as const;
+export const appPermissionDefaultGrantKeys = {
+  /** All appPermissionDefaultGrant queries */ all: ['apppermissiondefaultgrant'] as const,
+  /** List query keys */ lists: () => [...appPermissionDefaultGrantKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...appPermissionDefaultGrantKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...appPermissionDefaultGrantKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...appPermissionDefaultGrantKeys.details(), id] as const,
+} as const;
 export const orgPermissionKeys = {
   /** All orgPermission queries */ all: ['orgpermission'] as const,
   /** List query keys */ lists: () => [...orgPermissionKeys.all, 'list'] as const,
@@ -55,6 +64,27 @@ export const orgPermissionKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...orgPermissionKeys.details(), id] as const,
 } as const;
+export const orgPermissionDefaultPermissionKeys = {
+  /** All orgPermissionDefaultPermission queries */ all: [
+    'orgpermissiondefaultpermission',
+  ] as const,
+  /** List query keys */ lists: () => [...orgPermissionDefaultPermissionKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...orgPermissionDefaultPermissionKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () =>
+    [...orgPermissionDefaultPermissionKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...orgPermissionDefaultPermissionKeys.details(), id] as const,
+} as const;
+export const orgPermissionDefaultGrantKeys = {
+  /** All orgPermissionDefaultGrant queries */ all: ['orgpermissiondefaultgrant'] as const,
+  /** List query keys */ lists: () => [...orgPermissionDefaultGrantKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...orgPermissionDefaultGrantKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...orgPermissionDefaultGrantKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...orgPermissionDefaultGrantKeys.details(), id] as const,
+} as const;
 export const orgMemberKeys = {
   /** All orgMember queries */ all: ['orgmember'] as const,
   /** List query keys */ lists: () => [...orgMemberKeys.all, 'list'] as const,
@@ -82,6 +112,18 @@ export const orgPermissionDefaultKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...orgPermissionDefaultKeys.details(), id] as const,
 } as const;
+export const appPermissionDefaultPermissionKeys = {
+  /** All appPermissionDefaultPermission queries */ all: [
+    'apppermissiondefaultpermission',
+  ] as const,
+  /** List query keys */ lists: () => [...appPermissionDefaultPermissionKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...appPermissionDefaultPermissionKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () =>
+    [...appPermissionDefaultPermissionKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...appPermissionDefaultPermissionKeys.details(), id] as const,
+} as const;
 export const appAdminGrantKeys = {
   /** All appAdminGrant queries */ all: ['appadmingrant'] as const,
   /** List query keys */ lists: () => [...appAdminGrantKeys.all, 'list'] as const,
@@ -308,10 +350,14 @@ export const queryKeys = {
   orgGetManagersRecord: orgGetManagersRecordKeys,
   orgGetSubordinatesRecord: orgGetSubordinatesRecordKeys,
   appPermission: appPermissionKeys,
+  appPermissionDefaultGrant: appPermissionDefaultGrantKeys,
   orgPermission: orgPermissionKeys,
+  orgPermissionDefaultPermission: orgPermissionDefaultPermissionKeys,
+  orgPermissionDefaultGrant: orgPermissionDefaultGrantKeys,
   orgMember: orgMemberKeys,
   appPermissionDefault: appPermissionDefaultKeys,
   orgPermissionDefault: orgPermissionDefaultKeys,
+  appPermissionDefaultPermission: appPermissionDefaultPermissionKeys,
   appAdminGrant: appAdminGrantKeys,
   appOwnerGrant: appOwnerGrantKeys,
   orgAdminGrant: orgAdminGrantKeys,
diff --git a/sdk/constructive-react/src/admin/orm/README.md b/sdk/constructive-react/src/admin/orm/README.md
index 027e84fff..86a46b0e3 100644
--- a/sdk/constructive-react/src/admin/orm/README.md
+++ b/sdk/constructive-react/src/admin/orm/README.md
@@ -24,10 +24,14 @@ const db = createClient({
 | `orgGetManagersRecord` | findMany, findOne, create, update, delete |
 | `orgGetSubordinatesRecord` | findMany, findOne, create, update, delete |
 | `appPermission` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgMember` | findMany, findOne, create, update, delete |
 | `appPermissionDefault` | findMany, findOne, create, update, delete |
 | `orgPermissionDefault` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultPermission` | findMany, findOne, create, update, delete |
 | `appAdminGrant` | findMany, findOne, create, update, delete |
 | `appOwnerGrant` | findMany, findOne, create, update, delete |
 | `orgAdminGrant` | findMany, findOne, create, update, delete |
@@ -143,6 +147,40 @@ const updated = await db.appPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.appPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultGrant`
+
+CRUD operations for AppPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultGrant records
+const items = await db.appPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgPermission`
 
 CRUD operations for OrgPermission records.
@@ -176,6 +214,74 @@ const updated = await db.orgPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.orgPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.orgPermissionDefaultPermission`
+
+CRUD operations for OrgPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultPermission records
+const items = await db.orgPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultPermission.create({ data: { permissionId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
+### `db.orgPermissionDefaultGrant`
+
+CRUD operations for OrgPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultGrant records
+const items = await db.orgPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgMember`
 
 CRUD operations for OrgMember records.
@@ -269,6 +375,38 @@ const updated = await db.orgPermissionDefault.update({ where: { id: '<UUID>' },
 const deleted = await db.orgPermissionDefault.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultPermission`
+
+CRUD operations for AppPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultPermission records
+const items = await db.appPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultPermission.create({ data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.appAdminGrant`
 
 CRUD operations for AppAdminGrant records.
diff --git a/sdk/constructive-react/src/admin/orm/index.ts b/sdk/constructive-react/src/admin/orm/index.ts
index 4fdc6e95e..b2e6f79b3 100644
--- a/sdk/constructive-react/src/admin/orm/index.ts
+++ b/sdk/constructive-react/src/admin/orm/index.ts
@@ -8,10 +8,14 @@ import type { OrmClientConfig } from './client';
 import { OrgGetManagersRecordModel } from './models/orgGetManagersRecord';
 import { OrgGetSubordinatesRecordModel } from './models/orgGetSubordinatesRecord';
 import { AppPermissionModel } from './models/appPermission';
+import { AppPermissionDefaultGrantModel } from './models/appPermissionDefaultGrant';
 import { OrgPermissionModel } from './models/orgPermission';
+import { OrgPermissionDefaultPermissionModel } from './models/orgPermissionDefaultPermission';
+import { OrgPermissionDefaultGrantModel } from './models/orgPermissionDefaultGrant';
 import { OrgMemberModel } from './models/orgMember';
 import { AppPermissionDefaultModel } from './models/appPermissionDefault';
 import { OrgPermissionDefaultModel } from './models/orgPermissionDefault';
+import { AppPermissionDefaultPermissionModel } from './models/appPermissionDefaultPermission';
 import { AppAdminGrantModel } from './models/appAdminGrant';
 import { AppOwnerGrantModel } from './models/appOwnerGrant';
 import { OrgAdminGrantModel } from './models/orgAdminGrant';
@@ -69,10 +73,14 @@ export function createClient(config: OrmClientConfig) {
     orgGetManagersRecord: new OrgGetManagersRecordModel(client),
     orgGetSubordinatesRecord: new OrgGetSubordinatesRecordModel(client),
     appPermission: new AppPermissionModel(client),
+    appPermissionDefaultGrant: new AppPermissionDefaultGrantModel(client),
     orgPermission: new OrgPermissionModel(client),
+    orgPermissionDefaultPermission: new OrgPermissionDefaultPermissionModel(client),
+    orgPermissionDefaultGrant: new OrgPermissionDefaultGrantModel(client),
     orgMember: new OrgMemberModel(client),
     appPermissionDefault: new AppPermissionDefaultModel(client),
     orgPermissionDefault: new OrgPermissionDefaultModel(client),
+    appPermissionDefaultPermission: new AppPermissionDefaultPermissionModel(client),
     appAdminGrant: new AppAdminGrantModel(client),
     appOwnerGrant: new AppOwnerGrantModel(client),
     orgAdminGrant: new OrgAdminGrantModel(client),
diff --git a/sdk/constructive-react/src/admin/orm/input-types.ts b/sdk/constructive-react/src/admin/orm/input-types.ts
index c06ff000a..139fbae92 100644
--- a/sdk/constructive-react/src/admin/orm/input-types.ts
+++ b/sdk/constructive-react/src/admin/orm/input-types.ts
@@ -254,6 +254,17 @@ export interface AppPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface AppPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Defines available permissions as named bits within a bitmask, used by the RBAC system for access control */
 export interface OrgPermission {
   id: string;
@@ -266,6 +277,29 @@ export interface OrgPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface OrgPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  /** Scopes this default permission to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface OrgPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  /** Scopes this audit entry to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Simplified view of active members in an entity, used for listing who belongs to an org or group */
 export interface OrgMember {
   id: string;
@@ -290,12 +324,20 @@ export interface OrgPermissionDefault {
   /** References the entity these default permissions apply to */
   entityId?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface AppPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Records of admin role grants and revocations between members */
 export interface AppAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -306,7 +348,7 @@ export interface AppOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -317,7 +359,7 @@ export interface OrgAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this admin grant applies to */
   entityId?: string | null;
@@ -330,7 +372,7 @@ export interface OrgOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this ownership grant applies to */
   entityId?: string | null;
@@ -392,7 +434,7 @@ export interface AppGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -442,7 +484,7 @@ export interface OrgGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this permission grant applies to */
   entityId?: string | null;
@@ -648,11 +690,29 @@ export interface PageInfo {
 // ============ Entity Relation Types ============
 export interface OrgGetManagersRecordRelations {}
 export interface OrgGetSubordinatesRecordRelations {}
-export interface AppPermissionRelations {}
-export interface OrgPermissionRelations {}
+export interface AppPermissionRelations {
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultGrantsByPermissionId?: ConnectionResult<AppPermissionDefaultGrant>;
+}
+export interface AppPermissionDefaultGrantRelations {
+  permission?: AppPermission | null;
+}
+export interface OrgPermissionRelations {
+  orgPermissionDefaultPermissionsByPermissionId?: ConnectionResult<OrgPermissionDefaultPermission>;
+  orgPermissionDefaultGrantsByPermissionId?: ConnectionResult<OrgPermissionDefaultGrant>;
+}
+export interface OrgPermissionDefaultPermissionRelations {
+  permission?: OrgPermission | null;
+}
+export interface OrgPermissionDefaultGrantRelations {
+  permission?: OrgPermission | null;
+}
 export interface OrgMemberRelations {}
 export interface AppPermissionDefaultRelations {}
 export interface OrgPermissionDefaultRelations {}
+export interface AppPermissionDefaultPermissionRelations {
+  permission?: AppPermission | null;
+}
 export interface AppAdminGrantRelations {}
 export interface AppOwnerGrantRelations {}
 export interface OrgAdminGrantRelations {}
@@ -682,12 +742,20 @@ export type OrgGetManagersRecordWithRelations = OrgGetManagersRecord &
 export type OrgGetSubordinatesRecordWithRelations = OrgGetSubordinatesRecord &
   OrgGetSubordinatesRecordRelations;
 export type AppPermissionWithRelations = AppPermission & AppPermissionRelations;
+export type AppPermissionDefaultGrantWithRelations = AppPermissionDefaultGrant &
+  AppPermissionDefaultGrantRelations;
 export type OrgPermissionWithRelations = OrgPermission & OrgPermissionRelations;
+export type OrgPermissionDefaultPermissionWithRelations = OrgPermissionDefaultPermission &
+  OrgPermissionDefaultPermissionRelations;
+export type OrgPermissionDefaultGrantWithRelations = OrgPermissionDefaultGrant &
+  OrgPermissionDefaultGrantRelations;
 export type OrgMemberWithRelations = OrgMember & OrgMemberRelations;
 export type AppPermissionDefaultWithRelations = AppPermissionDefault &
   AppPermissionDefaultRelations;
 export type OrgPermissionDefaultWithRelations = OrgPermissionDefault &
   OrgPermissionDefaultRelations;
+export type AppPermissionDefaultPermissionWithRelations = AppPermissionDefaultPermission &
+  AppPermissionDefaultPermissionRelations;
 export type AppAdminGrantWithRelations = AppAdminGrant & AppAdminGrantRelations;
 export type AppOwnerGrantWithRelations = AppOwnerGrant & AppOwnerGrantRelations;
 export type OrgAdminGrantWithRelations = OrgAdminGrant & OrgAdminGrantRelations;
@@ -725,6 +793,26 @@ export type AppPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  appPermissionDefaultPermissionByPermissionId?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultGrantsByPermissionId?: {
+    select: AppPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: AppPermissionDefaultGrantFilter;
+    orderBy?: AppPermissionDefaultGrantOrderBy[];
+  };
+};
+export type AppPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
 };
 export type OrgPermissionSelect = {
   id?: boolean;
@@ -732,6 +820,40 @@ export type OrgPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  orgPermissionDefaultPermissionsByPermissionId?: {
+    select: OrgPermissionDefaultPermissionSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultPermissionFilter;
+    orderBy?: OrgPermissionDefaultPermissionOrderBy[];
+  };
+  orgPermissionDefaultGrantsByPermissionId?: {
+    select: OrgPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultGrantFilter;
+    orderBy?: OrgPermissionDefaultGrantOrderBy[];
+  };
+};
+export type OrgPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
+};
+export type OrgPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
 };
 export type OrgMemberSelect = {
   id?: boolean;
@@ -748,6 +870,15 @@ export type OrgPermissionDefaultSelect = {
   permissions?: boolean;
   entityId?: boolean;
 };
+export type AppPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
+};
 export type AppAdminGrantSelect = {
   id?: boolean;
   isGrant?: boolean;
@@ -1003,6 +1134,36 @@ export interface AppPermissionFilter {
   or?: AppPermissionFilter[];
   /** Negates the expression. */
   not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
 export interface OrgPermissionFilter {
   /** Filter by the object’s `id` field. */
@@ -1021,6 +1182,58 @@ export interface OrgPermissionFilter {
   or?: OrgPermissionFilter[];
   /** Negates the expression. */
   not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
 }
 export interface OrgMemberFilter {
   /** Filter by the object’s `id` field. */
@@ -1064,6 +1277,24 @@ export interface OrgPermissionDefaultFilter {
   /** Negates the expression. */
   not?: OrgPermissionDefaultFilter;
 }
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
 export interface AppAdminGrantFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -1603,6 +1834,22 @@ export type AppPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type AppPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgPermissionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1617,6 +1864,38 @@ export type OrgPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type OrgPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
+export type OrgPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgMemberOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1647,6 +1926,18 @@ export type OrgPermissionDefaultOrderBy =
   | 'PERMISSIONS_DESC'
   | 'ENTITY_ID_ASC'
   | 'ENTITY_ID_DESC';
+export type AppPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type AppAdminGrantOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -2146,6 +2437,28 @@ export interface DeleteAppPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  appPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+  };
+}
+export interface AppPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+}
+export interface UpdateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+}
+export interface DeleteAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgPermissionInput {
   clientMutationId?: string;
   orgPermission: {
@@ -2170,6 +2483,50 @@ export interface DeleteOrgPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  orgPermissionDefaultPermission: {
+    permissionId: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+}
+export interface DeleteOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
+export interface CreateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  orgPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+}
+export interface DeleteOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgMemberInput {
   clientMutationId?: string;
   orgMember: {
@@ -2230,11 +2587,29 @@ export interface DeleteOrgPermissionDefaultInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  appPermissionDefaultPermission: {
+    permissionId: string;
+  };
+}
+export interface AppPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+}
+export interface UpdateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+}
+export interface DeleteAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateAppAdminGrantInput {
   clientMutationId?: string;
   appAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2256,7 +2631,7 @@ export interface CreateAppOwnerGrantInput {
   clientMutationId?: string;
   appOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2278,7 +2653,7 @@ export interface CreateOrgAdminGrantInput {
   clientMutationId?: string;
   orgAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2302,7 +2677,7 @@ export interface CreateOrgOwnerGrantInput {
   clientMutationId?: string;
   orgOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2405,7 +2780,7 @@ export interface CreateAppGrantInput {
   appGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2501,7 +2876,7 @@ export interface CreateOrgGrantInput {
   orgGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2786,7 +3161,15 @@ export interface DeleteOrgInviteInput {
   id: string;
 }
 // ============ Connection Fields Map ============
-export const connectionFieldsMap = {} as Record<string, Record<string, string>>;
+export const connectionFieldsMap = {
+  AppPermission: {
+    appPermissionDefaultGrantsByPermissionId: 'AppPermissionDefaultGrant',
+  },
+  OrgPermission: {
+    orgPermissionDefaultPermissionsByPermissionId: 'OrgPermissionDefaultPermission',
+    orgPermissionDefaultGrantsByPermissionId: 'OrgPermissionDefaultGrant',
+  },
+} as Record<string, Record<string, string>>;
 // ============ Custom Input Types (from schema) ============
 export interface SubmitAppInviteCodeInput {
   clientMutationId?: string;
@@ -2805,6 +3188,33 @@ export interface ProvisionBucketInput {
    */
   ownerId?: string;
 }
+/** A filter to be used against many `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionToManyAppPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AppPermissionDefaultGrantFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultPermissionFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultPermissionFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultGrantFilter;
+}
 /** A filter to be used against ConstructiveInternalTypeEmail fields. All fields are combined with a logical ‘and.’ */
 export interface ConstructiveInternalTypeEmailFilter {
   /** Is null (if `true` is specified) or is not null (if `false` is specified). */
@@ -2917,31 +3327,375 @@ export interface ConstructiveInternalTypeImageFilter {
   /** Contained by the specified JSON. */
   containedBy?: ConstructiveInternalTypeImage;
 }
-/** A connection to a list of `AppPermission` values. */
-// ============ Payload/Return Types (for custom operations) ============
-export interface AppPermissionConnection {
-  nodes: AppPermission[];
-  edges: AppPermissionEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
+/** A filter to be used against `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
-export type AppPermissionConnectionSelect = {
-  nodes?: {
-    select: AppPermissionSelect;
-  };
-  edges?: {
-    select: AppPermissionEdgeSelect;
-  };
-  pageInfo?: {
-    select: PageInfoSelect;
-  };
-  totalCount?: boolean;
-};
-/** A connection to a list of `OrgPermission` values. */
-export interface OrgPermissionConnection {
-  nodes: OrgPermission[];
-  edges: OrgPermissionEdge[];
-  pageInfo: PageInfo;
+/** A filter to be used against `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against UUID fields. All fields are combined with a logical ‘and.’ */
+export interface UUIDFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against Boolean fields. All fields are combined with a logical ‘and.’ */
+export interface BooleanFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: boolean;
+  /** Not equal to the specified value. */
+  notEqualTo?: boolean;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: boolean;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: boolean;
+  /** Included in the specified list. */
+  in?: boolean[];
+  /** Not included in the specified list. */
+  notIn?: boolean[];
+  /** Less than the specified value. */
+  lessThan?: boolean;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: boolean;
+  /** Greater than the specified value. */
+  greaterThan?: boolean;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: boolean;
+}
+/** A filter to be used against Datetime fields. All fields are combined with a logical ‘and.’ */
+export interface DatetimeFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against String fields. All fields are combined with a logical ‘and.’ */
+export interface StringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+  /** Contains the specified string (case-sensitive). */
+  includes?: string;
+  /** Does not contain the specified string (case-sensitive). */
+  notIncludes?: string;
+  /** Contains the specified string (case-insensitive). */
+  includesInsensitive?: string;
+  /** Does not contain the specified string (case-insensitive). */
+  notIncludesInsensitive?: string;
+  /** Starts with the specified string (case-sensitive). */
+  startsWith?: string;
+  /** Does not start with the specified string (case-sensitive). */
+  notStartsWith?: string;
+  /** Starts with the specified string (case-insensitive). */
+  startsWithInsensitive?: string;
+  /** Does not start with the specified string (case-insensitive). */
+  notStartsWithInsensitive?: string;
+  /** Ends with the specified string (case-sensitive). */
+  endsWith?: string;
+  /** Does not end with the specified string (case-sensitive). */
+  notEndsWith?: string;
+  /** Ends with the specified string (case-insensitive). */
+  endsWithInsensitive?: string;
+  /** Does not end with the specified string (case-insensitive). */
+  notEndsWithInsensitive?: string;
+  /** Matches the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  like?: string;
+  /** Does not match the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLike?: string;
+  /** Matches the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  likeInsensitive?: string;
+  /** Does not match the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLikeInsensitive?: string;
+  /** Equal to the specified value (case-insensitive). */
+  equalToInsensitive?: string;
+  /** Not equal to the specified value (case-insensitive). */
+  notEqualToInsensitive?: string;
+  /** Not equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  distinctFromInsensitive?: string;
+  /** Equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  notDistinctFromInsensitive?: string;
+  /** Included in the specified list (case-insensitive). */
+  inInsensitive?: string[];
+  /** Not included in the specified list (case-insensitive). */
+  notInInsensitive?: string[];
+  /** Less than the specified value (case-insensitive). */
+  lessThanInsensitive?: string;
+  /** Less than or equal to the specified value (case-insensitive). */
+  lessThanOrEqualToInsensitive?: string;
+  /** Greater than the specified value (case-insensitive). */
+  greaterThanInsensitive?: string;
+  /** Greater than or equal to the specified value (case-insensitive). */
+  greaterThanOrEqualToInsensitive?: string;
+}
+/** A filter to be used against Int fields. All fields are combined with a logical ‘and.’ */
+export interface IntFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: number;
+  /** Not equal to the specified value. */
+  notEqualTo?: number;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: number;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: number;
+  /** Included in the specified list. */
+  in?: number[];
+  /** Not included in the specified list. */
+  notIn?: number[];
+  /** Less than the specified value. */
+  lessThan?: number;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: number;
+  /** Greater than the specified value. */
+  greaterThan?: number;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: number;
+}
+/** A filter to be used against BitString fields. All fields are combined with a logical ‘and.’ */
+export interface BitStringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
+/** A connection to a list of `AppPermission` values. */
+// ============ Payload/Return Types (for custom operations) ============
+export interface AppPermissionConnection {
+  nodes: AppPermission[];
+  edges: AppPermissionEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+export type AppPermissionConnectionSelect = {
+  nodes?: {
+    select: AppPermissionSelect;
+  };
+  edges?: {
+    select: AppPermissionEdgeSelect;
+  };
+  pageInfo?: {
+    select: PageInfoSelect;
+  };
+  totalCount?: boolean;
+};
+/** A connection to a list of `OrgPermission` values. */
+export interface OrgPermissionConnection {
+  nodes: OrgPermission[];
+  edges: OrgPermissionEdge[];
+  pageInfo: PageInfo;
   totalCount: number;
 }
 export type OrgPermissionConnectionSelect = {
@@ -3039,6 +3793,51 @@ export type DeleteAppPermissionPayloadSelect = {
     select: AppPermissionEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was created by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type CreateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was updated by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type UpdateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was deleted by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type DeleteAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgPermissionPayload {
   clientMutationId?: string | null;
   /** The `OrgPermission` that was created by this mutation. */
@@ -3084,6 +3883,96 @@ export type DeleteOrgPermissionPayloadSelect = {
     select: OrgPermissionEdgeSelect;
   };
 };
+export interface CreateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was created by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type CreateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was updated by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type UpdateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was deleted by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type DeleteOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface CreateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was created by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type CreateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was updated by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type UpdateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was deleted by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type DeleteOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgMemberPayload {
   clientMutationId?: string | null;
   /** The `OrgMember` that was created by this mutation. */
@@ -3219,6 +4108,51 @@ export type DeleteOrgPermissionDefaultPayloadSelect = {
     select: OrgPermissionDefaultEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was created by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type CreateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was updated by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type UpdateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was deleted by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type DeleteAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
 export interface CreateAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was created by this mutation. */
@@ -4115,6 +5049,42 @@ export type OrgPermissionEdgeSelect = {
     select: OrgPermissionSelect;
   };
 };
+/** A `AppPermissionDefaultGrant` edge in the connection. */
+export interface AppPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultGrant` at the end of the edge. */
+  node?: AppPermissionDefaultGrant | null;
+}
+export type AppPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+};
+/** A `OrgPermissionDefaultPermission` edge in the connection. */
+export interface OrgPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultPermission` at the end of the edge. */
+  node?: OrgPermissionDefaultPermission | null;
+}
+export type OrgPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+};
+/** A `OrgPermissionDefaultGrant` edge in the connection. */
+export interface OrgPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultGrant` at the end of the edge. */
+  node?: OrgPermissionDefaultGrant | null;
+}
+export type OrgPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+};
 /** A `OrgMember` edge in the connection. */
 export interface OrgMemberEdge {
   cursor?: string | null;
@@ -4151,6 +5121,18 @@ export type OrgPermissionDefaultEdgeSelect = {
     select: OrgPermissionDefaultSelect;
   };
 };
+/** A `AppPermissionDefaultPermission` edge in the connection. */
+export interface AppPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultPermission` at the end of the edge. */
+  node?: AppPermissionDefaultPermission | null;
+}
+export type AppPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+};
 /** A `AppAdminGrant` edge in the connection. */
 export interface AppAdminGrantEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultGrant.ts b/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultGrant.ts
new file mode 100644
index 000000000..691561188
--- /dev/null
+++ b/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * AppPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultGrant,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+  CreateAppPermissionDefaultGrantInput,
+  UpdateAppPermissionDefaultGrantInput,
+  AppPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultGrant',
+      'createAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'createAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultGrant',
+      'updateAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultGrantInput',
+      'id',
+      'appPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'updateAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultGrant',
+      'deleteAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'deleteAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultPermission.ts b/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultPermission.ts
new file mode 100644
index 000000000..eeee28fad
--- /dev/null
+++ b/sdk/constructive-react/src/admin/orm/models/appPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * AppPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultPermission,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+  CreateAppPermissionDefaultPermissionInput,
+  UpdateAppPermissionDefaultPermissionInput,
+  AppPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultPermission',
+      'createAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'createAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultPermission',
+      'updateAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultPermissionInput',
+      'id',
+      'appPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'updateAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultPermission',
+      'deleteAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'deleteAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-react/src/admin/orm/models/index.ts b/sdk/constructive-react/src/admin/orm/models/index.ts
index 3580afbca..7d2ee43b7 100644
--- a/sdk/constructive-react/src/admin/orm/models/index.ts
+++ b/sdk/constructive-react/src/admin/orm/models/index.ts
@@ -6,10 +6,14 @@
 export { OrgGetManagersRecordModel } from './orgGetManagersRecord';
 export { OrgGetSubordinatesRecordModel } from './orgGetSubordinatesRecord';
 export { AppPermissionModel } from './appPermission';
+export { AppPermissionDefaultGrantModel } from './appPermissionDefaultGrant';
 export { OrgPermissionModel } from './orgPermission';
+export { OrgPermissionDefaultPermissionModel } from './orgPermissionDefaultPermission';
+export { OrgPermissionDefaultGrantModel } from './orgPermissionDefaultGrant';
 export { OrgMemberModel } from './orgMember';
 export { AppPermissionDefaultModel } from './appPermissionDefault';
 export { OrgPermissionDefaultModel } from './orgPermissionDefault';
+export { AppPermissionDefaultPermissionModel } from './appPermissionDefaultPermission';
 export { AppAdminGrantModel } from './appAdminGrant';
 export { AppOwnerGrantModel } from './appOwnerGrant';
 export { OrgAdminGrantModel } from './orgAdminGrant';
diff --git a/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultGrant.ts b/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultGrant.ts
new file mode 100644
index 000000000..2f1a709be
--- /dev/null
+++ b/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * OrgPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultGrant,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+  CreateOrgPermissionDefaultGrantInput,
+  UpdateOrgPermissionDefaultGrantInput,
+  OrgPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultGrant',
+      'createOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'createOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'updateOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultGrantInput',
+      'id',
+      'orgPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'updateOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'deleteOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'deleteOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultPermission.ts b/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultPermission.ts
new file mode 100644
index 000000000..7c898408d
--- /dev/null
+++ b/sdk/constructive-react/src/admin/orm/models/orgPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * OrgPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultPermission,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+  CreateOrgPermissionDefaultPermissionInput,
+  UpdateOrgPermissionDefaultPermissionInput,
+  OrgPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultPermission',
+      'createOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'createOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'updateOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultPermissionInput',
+      'id',
+      'orgPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'updateOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'deleteOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'deleteOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-react/src/admin/schema-types.ts b/sdk/constructive-react/src/admin/schema-types.ts
index 14b8f6b92..b5bf087bf 100644
--- a/sdk/constructive-react/src/admin/schema-types.ts
+++ b/sdk/constructive-react/src/admin/schema-types.ts
@@ -14,6 +14,8 @@ import type {
   AppOwnerGrant,
   AppPermission,
   AppPermissionDefault,
+  AppPermissionDefaultGrant,
+  AppPermissionDefaultPermission,
   MembershipType,
   OrgAdminGrant,
   OrgChartEdge,
@@ -31,6 +33,8 @@ import type {
   OrgOwnerGrant,
   OrgPermission,
   OrgPermissionDefault,
+  OrgPermissionDefaultGrant,
+  OrgPermissionDefaultPermission,
   BigFloatFilter,
   BigIntFilter,
   BitStringFilter,
@@ -51,6 +55,57 @@ import type {
 } from './types';
 export type ConstructiveInternalTypeEmail = unknown;
 export type ConstructiveInternalTypeImage = unknown;
+/** Methods to use when ordering `AppPermissionDefaultGrant`. */
+export type AppPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
+/** Methods to use when ordering `OrgPermissionDefaultPermission`. */
+export type OrgPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
+/** Methods to use when ordering `OrgPermissionDefaultGrant`. */
+export type OrgPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 /** Methods to use when ordering `OrgMember`. */
 export type OrgMemberOrderBy =
   | 'NATURAL'
@@ -84,6 +139,19 @@ export type OrgPermissionDefaultOrderBy =
   | 'PERMISSIONS_DESC'
   | 'ENTITY_ID_ASC'
   | 'ENTITY_ID_DESC';
+/** Methods to use when ordering `AppPermissionDefaultPermission`. */
+export type AppPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 /** Methods to use when ordering `AppAdminGrant`. */
 export type AppAdminGrantOrderBy =
   | 'NATURAL'
@@ -567,6 +635,175 @@ export type OrgInviteOrderBy =
   | 'UPDATED_AT_DESC'
   | 'ENTITY_ID_ASC'
   | 'ENTITY_ID_DESC';
+/** A filter to be used against `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
+/** A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against `AppPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
+/** A filter to be used against many `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionToManyAppPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AppPermissionDefaultGrantFilter;
+}
+/** A filter to be used against `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against many `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultPermissionFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultPermissionFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultGrantFilter;
+}
+/** A filter to be used against `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
 /** A filter to be used against `OrgMember` object types. All fields are combined with a logical ‘and.’ */
 export interface OrgMemberFilter {
   /** Filter by the object’s `id` field. */
@@ -700,44 +937,6 @@ export interface OrgOwnerGrantFilter {
   /** Negates the expression. */
   not?: OrgOwnerGrantFilter;
 }
-/** A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’ */
-export interface AppPermissionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `bitnum` field. */
-  bitnum?: IntFilter;
-  /** Filter by the object’s `bitstr` field. */
-  bitstr?: BitStringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: AppPermissionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: AppPermissionFilter[];
-  /** Negates the expression. */
-  not?: AppPermissionFilter;
-}
-/** A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’ */
-export interface OrgPermissionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `bitnum` field. */
-  bitnum?: IntFilter;
-  /** Filter by the object’s `bitstr` field. */
-  bitstr?: BitStringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: OrgPermissionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: OrgPermissionFilter[];
-  /** Negates the expression. */
-  not?: OrgPermissionFilter;
-}
 /** A filter to be used against `OrgChartEdgeGrant` object types. All fields are combined with a logical ‘and.’ */
 export interface OrgChartEdgeGrantFilter {
   /** Filter by the object’s `id` field. */
@@ -1336,6 +1535,34 @@ export interface OrgPermissionDefaultInput {
   /** References the entity these default permissions apply to */
   entityId: string;
 }
+export interface CreateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  /** The `AppPermissionDefaultPermission` to be created by this mutation. */
+  appPermissionDefaultPermission: AppPermissionDefaultPermissionInput;
+}
+/** An input for mutations affecting `AppPermissionDefaultPermission` */
+export interface AppPermissionDefaultPermissionInput {
+  id?: string;
+  /** References the permission included in the defaults bundle */
+  permissionId: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
+export interface CreateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  /** The `OrgPermissionDefaultPermission` to be created by this mutation. */
+  orgPermissionDefaultPermission: OrgPermissionDefaultPermissionInput;
+}
+/** An input for mutations affecting `OrgPermissionDefaultPermission` */
+export interface OrgPermissionDefaultPermissionInput {
+  id?: string;
+  /** References the permission included in the defaults bundle */
+  permissionId: string;
+  /** Scopes this default permission to a specific entity */
+  entityId: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
 export interface CreateAppAdminGrantInput {
   clientMutationId?: string;
   /** The `AppAdminGrant` to be created by this mutation. */
@@ -1346,8 +1573,8 @@ export interface AppAdminGrantInput {
   id?: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean;
-  /** The member receiving or losing the admin grant */
-  actorId: string;
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
+  actorId?: string;
   grantorId?: string;
   createdAt?: string;
   updatedAt?: string;
@@ -1362,8 +1589,24 @@ export interface AppOwnerGrantInput {
   id?: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean;
-  /** The member receiving or losing the ownership grant */
-  actorId: string;
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
+  actorId?: string;
+  grantorId?: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
+export interface CreateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  /** The `AppPermissionDefaultGrant` to be created by this mutation. */
+  appPermissionDefaultGrant: AppPermissionDefaultGrantInput;
+}
+/** An input for mutations affecting `AppPermissionDefaultGrant` */
+export interface AppPermissionDefaultGrantInput {
+  id?: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId: string;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean;
   grantorId?: string;
   createdAt?: string;
   updatedAt?: string;
@@ -1378,8 +1621,8 @@ export interface OrgAdminGrantInput {
   id?: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean;
-  /** The member receiving or losing the admin grant */
-  actorId: string;
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
+  actorId?: string;
   /** The entity (org or group) this admin grant applies to */
   entityId: string;
   grantorId?: string;
@@ -1396,14 +1639,32 @@ export interface OrgOwnerGrantInput {
   id?: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean;
-  /** The member receiving or losing the ownership grant */
-  actorId: string;
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
+  actorId?: string;
   /** The entity (org or group) this ownership grant applies to */
   entityId: string;
   grantorId?: string;
   createdAt?: string;
   updatedAt?: string;
 }
+export interface CreateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  /** The `OrgPermissionDefaultGrant` to be created by this mutation. */
+  orgPermissionDefaultGrant: OrgPermissionDefaultGrantInput;
+}
+/** An input for mutations affecting `OrgPermissionDefaultGrant` */
+export interface OrgPermissionDefaultGrantInput {
+  id?: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId: string;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean;
+  grantorId?: string;
+  /** Scopes this audit entry to a specific entity */
+  entityId: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
 export interface CreateAppPermissionInput {
   clientMutationId?: string;
   /** The `AppPermission` to be created by this mutation. */
@@ -1512,8 +1773,8 @@ export interface AppGrantInput {
   permissions?: string;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean;
-  /** The member receiving or losing the permission grant */
-  actorId: string;
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
+  actorId?: string;
   grantorId?: string;
   createdAt?: string;
   updatedAt?: string;
@@ -1582,8 +1843,8 @@ export interface OrgGrantInput {
   permissions?: string;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean;
-  /** The member receiving or losing the permission grant */
-  actorId: string;
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
+  actorId?: string;
   /** The entity (org or group) this permission grant applies to */
   entityId: string;
   grantorId?: string;
@@ -1850,6 +2111,36 @@ export interface OrgPermissionDefaultPatch {
   /** References the entity these default permissions apply to */
   entityId?: string;
 }
+export interface UpdateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `AppPermissionDefaultPermission` being updated. */
+  appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+}
+/** Represents an update to a `AppPermissionDefaultPermission`. Fields that are set will be updated. */
+export interface AppPermissionDefaultPermissionPatch {
+  id?: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
+export interface UpdateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `OrgPermissionDefaultPermission` being updated. */
+  orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+}
+/** Represents an update to a `OrgPermissionDefaultPermission`. Fields that are set will be updated. */
+export interface OrgPermissionDefaultPermissionPatch {
+  id?: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string;
+  /** Scopes this default permission to a specific entity */
+  entityId?: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
 export interface UpdateAppAdminGrantInput {
   clientMutationId?: string;
   id: string;
@@ -1861,7 +2152,7 @@ export interface AppAdminGrantPatch {
   id?: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string;
   grantorId?: string;
   createdAt?: string;
@@ -1878,12 +2169,29 @@ export interface AppOwnerGrantPatch {
   id?: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string;
   grantorId?: string;
   createdAt?: string;
   updatedAt?: string;
 }
+export interface UpdateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `AppPermissionDefaultGrant` being updated. */
+  appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+}
+/** Represents an update to a `AppPermissionDefaultGrant`. Fields that are set will be updated. */
+export interface AppPermissionDefaultGrantPatch {
+  id?: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean;
+  grantorId?: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
 export interface UpdateOrgAdminGrantInput {
   clientMutationId?: string;
   id: string;
@@ -1895,7 +2203,7 @@ export interface OrgAdminGrantPatch {
   id?: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string;
   /** The entity (org or group) this admin grant applies to */
   entityId?: string;
@@ -1914,7 +2222,7 @@ export interface OrgOwnerGrantPatch {
   id?: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string;
   /** The entity (org or group) this ownership grant applies to */
   entityId?: string;
@@ -1922,6 +2230,25 @@ export interface OrgOwnerGrantPatch {
   createdAt?: string;
   updatedAt?: string;
 }
+export interface UpdateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `OrgPermissionDefaultGrant` being updated. */
+  orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+}
+/** Represents an update to a `OrgPermissionDefaultGrant`. Fields that are set will be updated. */
+export interface OrgPermissionDefaultGrantPatch {
+  id?: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean;
+  grantorId?: string;
+  /** Scopes this audit entry to a specific entity */
+  entityId?: string;
+  createdAt?: string;
+  updatedAt?: string;
+}
 export interface UpdateAppPermissionInput {
   clientMutationId?: string;
   id: string;
@@ -2037,7 +2364,7 @@ export interface AppGrantPatch {
   permissions?: string;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string;
   grantorId?: string;
   createdAt?: string;
@@ -2111,7 +2438,7 @@ export interface OrgGrantPatch {
   permissions?: string;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string;
   /** The entity (org or group) this permission grant applies to */
   entityId?: string;
@@ -2358,6 +2685,14 @@ export interface DeleteOrgPermissionDefaultInput {
   clientMutationId?: string;
   id: string;
 }
+export interface DeleteAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
+export interface DeleteOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface DeleteAppAdminGrantInput {
   clientMutationId?: string;
   id: string;
@@ -2366,6 +2701,10 @@ export interface DeleteAppOwnerGrantInput {
   clientMutationId?: string;
   id: string;
 }
+export interface DeleteAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface DeleteOrgAdminGrantInput {
   clientMutationId?: string;
   id: string;
@@ -2374,6 +2713,10 @@ export interface DeleteOrgOwnerGrantInput {
   clientMutationId?: string;
   id: string;
 }
+export interface DeleteOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface DeleteAppPermissionInput {
   clientMutationId?: string;
   id: string;
@@ -2501,6 +2844,20 @@ export interface OrgPermissionDefaultConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `AppPermissionDefaultPermission` values. */
+export interface AppPermissionDefaultPermissionConnection {
+  nodes: AppPermissionDefaultPermission[];
+  edges: AppPermissionDefaultPermissionEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+/** A connection to a list of `OrgPermissionDefaultPermission` values. */
+export interface OrgPermissionDefaultPermissionConnection {
+  nodes: OrgPermissionDefaultPermission[];
+  edges: OrgPermissionDefaultPermissionEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `AppAdminGrant` values. */
 export interface AppAdminGrantConnection {
   nodes: AppAdminGrant[];
@@ -2515,6 +2872,13 @@ export interface AppOwnerGrantConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `AppPermissionDefaultGrant` values. */
+export interface AppPermissionDefaultGrantConnection {
+  nodes: AppPermissionDefaultGrant[];
+  edges: AppPermissionDefaultGrantEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `OrgAdminGrant` values. */
 export interface OrgAdminGrantConnection {
   nodes: OrgAdminGrant[];
@@ -2529,6 +2893,13 @@ export interface OrgOwnerGrantConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `OrgPermissionDefaultGrant` values. */
+export interface OrgPermissionDefaultGrantConnection {
+  nodes: OrgPermissionDefaultGrant[];
+  edges: OrgPermissionDefaultGrantEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `OrgChartEdgeGrant` values. */
 export interface OrgChartEdgeGrantConnection {
   nodes: OrgChartEdgeGrant[];
@@ -2664,6 +3035,18 @@ export interface CreateOrgPermissionDefaultPayload {
   orgPermissionDefault?: OrgPermissionDefault | null;
   orgPermissionDefaultEdge?: OrgPermissionDefaultEdge | null;
 }
+export interface CreateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was created by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export interface CreateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was created by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
 export interface CreateAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was created by this mutation. */
@@ -2676,6 +3059,12 @@ export interface CreateAppOwnerGrantPayload {
   appOwnerGrant?: AppOwnerGrant | null;
   appOwnerGrantEdge?: AppOwnerGrantEdge | null;
 }
+export interface CreateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was created by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
 export interface CreateOrgAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `OrgAdminGrant` that was created by this mutation. */
@@ -2688,6 +3077,12 @@ export interface CreateOrgOwnerGrantPayload {
   orgOwnerGrant?: OrgOwnerGrant | null;
   orgOwnerGrantEdge?: OrgOwnerGrantEdge | null;
 }
+export interface CreateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was created by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
 export interface CreateAppPermissionPayload {
   clientMutationId?: string | null;
   /** The `AppPermission` that was created by this mutation. */
@@ -2808,6 +3203,18 @@ export interface UpdateOrgPermissionDefaultPayload {
   orgPermissionDefault?: OrgPermissionDefault | null;
   orgPermissionDefaultEdge?: OrgPermissionDefaultEdge | null;
 }
+export interface UpdateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was updated by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export interface UpdateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was updated by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
 export interface UpdateAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was updated by this mutation. */
@@ -2820,6 +3227,12 @@ export interface UpdateAppOwnerGrantPayload {
   appOwnerGrant?: AppOwnerGrant | null;
   appOwnerGrantEdge?: AppOwnerGrantEdge | null;
 }
+export interface UpdateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was updated by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
 export interface UpdateOrgAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `OrgAdminGrant` that was updated by this mutation. */
@@ -2832,6 +3245,12 @@ export interface UpdateOrgOwnerGrantPayload {
   orgOwnerGrant?: OrgOwnerGrant | null;
   orgOwnerGrantEdge?: OrgOwnerGrantEdge | null;
 }
+export interface UpdateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was updated by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
 export interface UpdateAppPermissionPayload {
   clientMutationId?: string | null;
   /** The `AppPermission` that was updated by this mutation. */
@@ -2952,6 +3371,18 @@ export interface DeleteOrgPermissionDefaultPayload {
   orgPermissionDefault?: OrgPermissionDefault | null;
   orgPermissionDefaultEdge?: OrgPermissionDefaultEdge | null;
 }
+export interface DeleteAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was deleted by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export interface DeleteOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was deleted by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
 export interface DeleteAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was deleted by this mutation. */
@@ -2964,6 +3395,12 @@ export interface DeleteAppOwnerGrantPayload {
   appOwnerGrant?: AppOwnerGrant | null;
   appOwnerGrantEdge?: AppOwnerGrantEdge | null;
 }
+export interface DeleteAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was deleted by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
 export interface DeleteOrgAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `OrgAdminGrant` that was deleted by this mutation. */
@@ -2976,6 +3413,12 @@ export interface DeleteOrgOwnerGrantPayload {
   orgOwnerGrant?: OrgOwnerGrant | null;
   orgOwnerGrantEdge?: OrgOwnerGrantEdge | null;
 }
+export interface DeleteOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was deleted by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
 export interface DeleteAppPermissionPayload {
   clientMutationId?: string | null;
   /** The `AppPermission` that was deleted by this mutation. */
@@ -3145,6 +3588,18 @@ export interface OrgPermissionDefaultEdge {
   /** The `OrgPermissionDefault` at the end of the edge. */
   node?: OrgPermissionDefault | null;
 }
+/** A `AppPermissionDefaultPermission` edge in the connection. */
+export interface AppPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultPermission` at the end of the edge. */
+  node?: AppPermissionDefaultPermission | null;
+}
+/** A `OrgPermissionDefaultPermission` edge in the connection. */
+export interface OrgPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultPermission` at the end of the edge. */
+  node?: OrgPermissionDefaultPermission | null;
+}
 /** A `AppAdminGrant` edge in the connection. */
 export interface AppAdminGrantEdge {
   cursor?: string | null;
@@ -3157,6 +3612,12 @@ export interface AppOwnerGrantEdge {
   /** The `AppOwnerGrant` at the end of the edge. */
   node?: AppOwnerGrant | null;
 }
+/** A `AppPermissionDefaultGrant` edge in the connection. */
+export interface AppPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultGrant` at the end of the edge. */
+  node?: AppPermissionDefaultGrant | null;
+}
 /** A `OrgAdminGrant` edge in the connection. */
 export interface OrgAdminGrantEdge {
   cursor?: string | null;
@@ -3169,6 +3630,12 @@ export interface OrgOwnerGrantEdge {
   /** The `OrgOwnerGrant` at the end of the edge. */
   node?: OrgOwnerGrant | null;
 }
+/** A `OrgPermissionDefaultGrant` edge in the connection. */
+export interface OrgPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultGrant` at the end of the edge. */
+  node?: OrgPermissionDefaultGrant | null;
+}
 /** A `OrgChartEdgeGrant` edge in the connection. */
 export interface OrgChartEdgeGrantEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-react/src/admin/types.ts b/sdk/constructive-react/src/admin/types.ts
index 8b2bdd059..5810979fe 100644
--- a/sdk/constructive-react/src/admin/types.ts
+++ b/sdk/constructive-react/src/admin/types.ts
@@ -20,6 +20,14 @@ export interface AppPermission {
   bitstr: string | null;
   description: string | null;
 }
+export interface AppPermissionDefaultGrant {
+  id: string | null;
+  permissionId: string | null;
+  isGrant: boolean | null;
+  grantorId: string | null;
+  createdAt: string | null;
+  updatedAt: string | null;
+}
 export interface OrgPermission {
   id: string | null;
   name: string | null;
@@ -27,6 +35,22 @@ export interface OrgPermission {
   bitstr: string | null;
   description: string | null;
 }
+export interface OrgPermissionDefaultPermission {
+  id: string | null;
+  permissionId: string | null;
+  entityId: string | null;
+  createdAt: string | null;
+  updatedAt: string | null;
+}
+export interface OrgPermissionDefaultGrant {
+  id: string | null;
+  permissionId: string | null;
+  isGrant: boolean | null;
+  grantorId: string | null;
+  entityId: string | null;
+  createdAt: string | null;
+  updatedAt: string | null;
+}
 export interface OrgMember {
   id: string | null;
   isAdmin: boolean | null;
@@ -42,6 +66,12 @@ export interface OrgPermissionDefault {
   permissions: string | null;
   entityId: string | null;
 }
+export interface AppPermissionDefaultPermission {
+  id: string | null;
+  permissionId: string | null;
+  createdAt: string | null;
+  updatedAt: string | null;
+}
 export interface AppAdminGrant {
   id: string | null;
   isGrant: boolean | null;
diff --git a/sdk/constructive-react/src/agent/hooks/README.md b/sdk/constructive-react/src/agent/hooks/README.md
index 05a878be7..d60fb2792 100644
--- a/sdk/constructive-react/src/agent/hooks/README.md
+++ b/sdk/constructive-react/src/agent/hooks/README.md
@@ -152,20 +152,20 @@ create({ ownerId: '<UUID>', status: '<String>', isArchived: '<Boolean>', archive
 ```typescript
 // List all agentMessages
 const { data, isLoading } = useAgentMessagesQuery({
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } },
 });
 
 // Get one agentMessage
 const { data: item } = useAgentMessageQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } },
 });
 
 // Create a agentMessage
 const { mutate: create } = useCreateAgentMessageMutation({
   selection: { fields: { id: true } },
 });
-create({ ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' });
+create({ actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' });
 ```
 
 ### AgentTask
@@ -173,20 +173,20 @@ create({ ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<S
 ```typescript
 // List all agentTasks
 const { data, isLoading } = useAgentTasksQuery({
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
 });
 
 // Get one agentTask
 const { data: item } = useAgentTaskQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
+  selection: { fields: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } },
 });
 
 // Create a agentTask
 const { mutate: create } = useCreateAgentTaskMutation({
   selection: { fields: { id: true } },
 });
-create({ ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' });
+create({ actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' });
 ```
 
 ### AgentPrompt
diff --git a/sdk/constructive-react/src/agent/orm/README.md b/sdk/constructive-react/src/agent/orm/README.md
index 61b29a99f..b8063a2d3 100644
--- a/sdk/constructive-react/src/agent/orm/README.md
+++ b/sdk/constructive-react/src/agent/orm/README.md
@@ -162,26 +162,27 @@ CRUD operations for AgentMessage records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `parts` | JSON | Yes |
 | `threadId` | UUID | Yes |
 | `authorRole` | String | Yes |
 | `model` | String | Yes |
+| `agentId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentMessage records
-const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Get one by id
-const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Create
-const created = await db.agentMessage.create({ data: { ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentMessage.create({ data: { actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentMessage.delete({ where: { id: '<UUID>' } }).execute();
@@ -198,7 +199,7 @@ CRUD operations for AgentTask records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `status` | String | Yes |
 | `planId` | UUID | Yes |
 | `description` | String | Yes |
@@ -215,16 +216,16 @@ CRUD operations for AgentTask records.
 
 ```typescript
 // List all agentTask records
-const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Get one by id
-const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Create
-const created = await db.agentTask.create({ data: { ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentTask.create({ data: { actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentTask.delete({ where: { id: '<UUID>' } }).execute();
diff --git a/sdk/constructive-react/src/agent/orm/input-types.ts b/sdk/constructive-react/src/agent/orm/input-types.ts
index 0e4fdc0c2..79b4485c9 100644
--- a/sdk/constructive-react/src/agent/orm/input-types.ts
+++ b/sdk/constructive-react/src/agent/orm/input-types.ts
@@ -304,8 +304,8 @@ export interface AgentMessage {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this message */
-  ownerId?: string | null;
+  /** User who authored this message */
+  actorId?: string | null;
   /** Message content: TextPart and ToolPart array */
   parts?: Record<string, unknown> | null;
   /** Foreign key to agent_thread */
@@ -314,14 +314,16 @@ export interface AgentMessage {
   authorRole?: string | null;
   /** LLM model that generated this response */
   model?: string | null;
+  /** Agent that authored this message (NULL for human messages) */
+  agentId?: string | null;
 }
 /** Task within a plan, with ordering and optional approval gates */
 export interface AgentTask {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this task */
-  ownerId?: string | null;
+  /** User who authored this task */
+  actorId?: string | null;
   /** Current status of this task */
   status?: string | null;
   /** Foreign key to agent_plan */
@@ -465,6 +467,7 @@ export interface AgentRelations {
   parent?: Agent | null;
   persona?: AgentPersona | null;
   agentThreads?: ConnectionResult<AgentThread>;
+  agentMessages?: ConnectionResult<AgentMessage>;
   childAgents?: ConnectionResult<Agent>;
 }
 export interface AgentThreadRelations {
@@ -476,6 +479,7 @@ export interface AgentThreadRelations {
   agentPlansByThreadId?: ConnectionResult<AgentPlan>;
 }
 export interface AgentMessageRelations {
+  agent?: Agent | null;
   thread?: AgentThread | null;
 }
 export interface AgentTaskRelations {
@@ -545,6 +549,12 @@ export type AgentSelect = {
     filter?: AgentThreadFilter;
     orderBy?: AgentThreadOrderBy[];
   };
+  agentMessages?: {
+    select: AgentMessageSelect;
+    first?: number;
+    filter?: AgentMessageFilter;
+    orderBy?: AgentMessageOrderBy[];
+  };
   childAgents?: {
     select: AgentSelect;
     first?: number;
@@ -600,11 +610,15 @@ export type AgentMessageSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   parts?: boolean;
   threadId?: boolean;
   authorRole?: boolean;
   model?: boolean;
+  agentId?: boolean;
+  agent?: {
+    select: AgentSelect;
+  };
   thread?: {
     select: AgentThreadSelect;
   };
@@ -613,7 +627,7 @@ export type AgentTaskSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   status?: boolean;
   planId?: boolean;
   description?: boolean;
@@ -781,6 +795,10 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
@@ -855,8 +873,8 @@ export interface AgentMessageFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `parts` field. */
   parts?: JSONFilter;
   /** Filter by the object’s `threadId` field. */
@@ -865,12 +883,18 @@ export interface AgentMessageFilter {
   authorRole?: StringFilter;
   /** Filter by the object’s `model` field. */
   model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: AgentMessageFilter[];
   /** Checks for any expressions in this list. */
   or?: AgentMessageFilter[];
   /** Negates the expression. */
   not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
   /** Filter by the object’s `thread` relation. */
   thread?: AgentThreadFilter;
 }
@@ -881,8 +905,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1164,8 +1188,8 @@ export type AgentMessageOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'PARTS_ASC'
   | 'PARTS_DESC'
   | 'THREAD_ID_ASC'
@@ -1173,7 +1197,9 @@ export type AgentMessageOrderBy =
   | 'AUTHOR_ROLE_ASC'
   | 'AUTHOR_ROLE_DESC'
   | 'MODEL_ASC'
-  | 'MODEL_DESC';
+  | 'MODEL_DESC'
+  | 'AGENT_ID_ASC'
+  | 'AGENT_ID_DESC';
 export type AgentTaskOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1184,8 +1210,8 @@ export type AgentTaskOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'STATUS_ASC'
   | 'STATUS_DESC'
   | 'PLAN_ID_ASC'
@@ -1440,19 +1466,21 @@ export interface DeleteAgentThreadInput {
 export interface CreateAgentMessageInput {
   clientMutationId?: string;
   agentMessage: {
-    ownerId?: string;
+    actorId?: string;
     parts?: Record<string, unknown>;
     threadId: string;
     authorRole: string;
     model?: string;
+    agentId?: string;
   };
 }
 export interface AgentMessagePatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   parts?: Record<string, unknown> | null;
   threadId?: string | null;
   authorRole?: string | null;
   model?: string | null;
+  agentId?: string | null;
 }
 export interface UpdateAgentMessageInput {
   clientMutationId?: string;
@@ -1466,7 +1494,7 @@ export interface DeleteAgentMessageInput {
 export interface CreateAgentTaskInput {
   clientMutationId?: string;
   agentTask: {
-    ownerId?: string;
+    actorId?: string;
     status?: string;
     planId: string;
     description: string;
@@ -1481,7 +1509,7 @@ export interface CreateAgentTaskInput {
   };
 }
 export interface AgentTaskPatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   status?: string | null;
   planId?: string | null;
   description?: string | null;
@@ -1644,6 +1672,7 @@ export const connectionFieldsMap = {
   },
   Agent: {
     agentThreads: 'AgentThread',
+    agentMessages: 'AgentMessage',
     childAgents: 'Agent',
   },
   AgentThread: {
@@ -1686,6 +1715,15 @@ export interface AgentToManyAgentThreadFilter {
   /** Filters to entities where no related entity matches. */
   none?: AgentThreadFilter;
 }
+/** A filter to be used against many `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentToManyAgentMessageFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AgentMessageFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AgentMessageFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AgentMessageFilter;
+}
 /** A filter to be used against many `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentToManyAgentFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -1847,8 +1885,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1943,6 +1981,39 @@ export interface AgentThreadFilter {
   /** `agentPlansByThreadId` exist. */
   agentPlansByThreadIdExist?: boolean;
 }
+/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentMessageFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
+  /** Filter by the object’s `parts` field. */
+  parts?: JSONFilter;
+  /** Filter by the object’s `threadId` field. */
+  threadId?: UUIDFilter;
+  /** Filter by the object’s `authorRole` field. */
+  authorRole?: StringFilter;
+  /** Filter by the object’s `model` field. */
+  model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: AgentMessageFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AgentMessageFilter[];
+  /** Negates the expression. */
+  not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
+  /** Filter by the object’s `thread` relation. */
+  thread?: AgentThreadFilter;
+}
 /** A filter to be used against `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentFilter {
   /** Filter by the object’s `id` field. */
@@ -1985,38 +2056,15 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
   childAgentsExist?: boolean;
 }
-/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
-export interface AgentMessageFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Filter by the object’s `updatedAt` field. */
-  updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
-  /** Filter by the object’s `parts` field. */
-  parts?: JSONFilter;
-  /** Filter by the object’s `threadId` field. */
-  threadId?: UUIDFilter;
-  /** Filter by the object’s `authorRole` field. */
-  authorRole?: StringFilter;
-  /** Filter by the object’s `model` field. */
-  model?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: AgentMessageFilter[];
-  /** Checks for any expressions in this list. */
-  or?: AgentMessageFilter[];
-  /** Negates the expression. */
-  not?: AgentMessageFilter;
-  /** Filter by the object’s `thread` relation. */
-  thread?: AgentThreadFilter;
-}
 /** A filter to be used against `AgentPlan` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentPlanFilter {
   /** Filter by the object’s `id` field. */
diff --git a/sdk/constructive-react/src/agent/schema-types.ts b/sdk/constructive-react/src/agent/schema-types.ts
index 92d9f586b..8f37da96d 100644
--- a/sdk/constructive-react/src/agent/schema-types.ts
+++ b/sdk/constructive-react/src/agent/schema-types.ts
@@ -105,8 +105,8 @@ export type AgentMessageOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'PARTS_ASC'
   | 'PARTS_DESC'
   | 'THREAD_ID_ASC'
@@ -114,7 +114,9 @@ export type AgentMessageOrderBy =
   | 'AUTHOR_ROLE_ASC'
   | 'AUTHOR_ROLE_DESC'
   | 'MODEL_ASC'
-  | 'MODEL_DESC';
+  | 'MODEL_DESC'
+  | 'AGENT_ID_ASC'
+  | 'AGENT_ID_DESC';
 /** Methods to use when ordering `AgentPlan`. */
 export type AgentPlanOrderBy =
   | 'NATURAL'
@@ -147,8 +149,8 @@ export type AgentTaskOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'STATUS_ASC'
   | 'STATUS_DESC'
   | 'PLAN_ID_ASC'
@@ -349,6 +351,10 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
@@ -527,8 +533,8 @@ export interface AgentMessageFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `parts` field. */
   parts?: JSONFilter;
   /** Filter by the object’s `threadId` field. */
@@ -537,12 +543,18 @@ export interface AgentMessageFilter {
   authorRole?: StringFilter;
   /** Filter by the object’s `model` field. */
   model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: AgentMessageFilter[];
   /** Checks for any expressions in this list. */
   or?: AgentMessageFilter[];
   /** Negates the expression. */
   not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
   /** Filter by the object’s `thread` relation. */
   thread?: AgentThreadFilter;
 }
@@ -603,8 +615,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -636,6 +648,15 @@ export interface AgentTaskFilter {
   /** Filter by the object’s `plan` relation. */
   plan?: AgentPlanFilter;
 }
+/** A filter to be used against many `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentToManyAgentMessageFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AgentMessageFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AgentMessageFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AgentMessageFilter;
+}
 /** A filter to be used against many `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentToManyAgentFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -931,8 +952,8 @@ export interface AgentMessageInput {
   id?: string;
   createdAt?: string;
   updatedAt?: string;
-  /** User who owns this message */
-  ownerId?: string;
+  /** User who authored this message */
+  actorId?: string;
   /** Message content: TextPart and ToolPart array */
   parts?: unknown;
   /** Foreign key to agent_thread */
@@ -941,6 +962,8 @@ export interface AgentMessageInput {
   authorRole: string;
   /** LLM model that generated this response */
   model?: string;
+  /** Agent that authored this message (NULL for human messages) */
+  agentId?: string;
 }
 export interface CreateAgentTaskInput {
   clientMutationId?: string;
@@ -952,8 +975,8 @@ export interface AgentTaskInput {
   id?: string;
   createdAt?: string;
   updatedAt?: string;
-  /** User who owns this task */
-  ownerId?: string;
+  /** User who authored this task */
+  actorId?: string;
   /** Current status of this task */
   status?: string;
   /** Foreign key to agent_plan */
@@ -1175,8 +1198,8 @@ export interface AgentMessagePatch {
   id?: string;
   createdAt?: string;
   updatedAt?: string;
-  /** User who owns this message */
-  ownerId?: string;
+  /** User who authored this message */
+  actorId?: string;
   /** Message content: TextPart and ToolPart array */
   parts?: unknown;
   /** Foreign key to agent_thread */
@@ -1185,6 +1208,8 @@ export interface AgentMessagePatch {
   authorRole?: string;
   /** LLM model that generated this response */
   model?: string;
+  /** Agent that authored this message (NULL for human messages) */
+  agentId?: string;
 }
 export interface UpdateAgentTaskInput {
   clientMutationId?: string;
@@ -1197,8 +1222,8 @@ export interface AgentTaskPatch {
   id?: string;
   createdAt?: string;
   updatedAt?: string;
-  /** User who owns this task */
-  ownerId?: string;
+  /** User who authored this task */
+  actorId?: string;
   /** Current status of this task */
   status?: string;
   /** Foreign key to agent_plan */
diff --git a/sdk/constructive-react/src/agent/types.ts b/sdk/constructive-react/src/agent/types.ts
index 33bc9b613..f1dbeb4ae 100644
--- a/sdk/constructive-react/src/agent/types.ts
+++ b/sdk/constructive-react/src/agent/types.ts
@@ -47,17 +47,18 @@ export interface AgentMessage {
   id: string | null;
   createdAt: string | null;
   updatedAt: string | null;
-  ownerId: string | null;
+  actorId: string | null;
   parts: unknown | null;
   threadId: string | null;
   authorRole: string | null;
   model: string | null;
+  agentId: string | null;
 }
 export interface AgentTask {
   id: string | null;
   createdAt: string | null;
   updatedAt: string | null;
-  ownerId: string | null;
+  actorId: string | null;
   status: string | null;
   planId: string | null;
   description: string | null;
diff --git a/sdk/constructive-react/src/api/README.md b/sdk/constructive-react/src/api/README.md
index ab51dbdac..f05a02117 100644
--- a/sdk/constructive-react/src/api/README.md
+++ b/sdk/constructive-react/src/api/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 45
+- **Tables:** 46
 - **Custom queries:** 1
 - **Custom mutations:** 9
 
diff --git a/sdk/constructive-react/src/api/hooks/README.md b/sdk/constructive-react/src/api/hooks/README.md
index 84e75c72f..04186b062 100644
--- a/sdk/constructive-react/src/api/hooks/README.md
+++ b/sdk/constructive-react/src/api/hooks/README.md
@@ -142,6 +142,11 @@ function App() {
 | `useCreateEnumMutation` | Mutation | Create a enum |
 | `useUpdateEnumMutation` | Mutation | Update a enum |
 | `useDeleteEnumMutation` | Mutation | Delete a enum |
+| `useCompositeTypesQuery` | Query | List all compositeTypes |
+| `useCompositeTypeQuery` | Query | Get one compositeType |
+| `useCreateCompositeTypeMutation` | Mutation | Create a compositeType |
+| `useUpdateCompositeTypeMutation` | Mutation | Update a compositeType |
+| `useDeleteCompositeTypeMutation` | Mutation | Delete a compositeType |
 | `useApiSchemasQuery` | Query | Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API |
 | `useApiSchemaQuery` | Query | Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API |
 | `useCreateApiSchemaMutation` | Mutation | Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API |
@@ -336,13 +341,13 @@ create({ databaseId: '<UUID>', name: '<String>', schemaName: '<String>', label:
 ```typescript
 // List all tables
 const { data, isLoading } = useTablesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } },
 });
 
 // Get one table
 const { data: item } = useTableQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } },
 });
 
 // Create a table
@@ -751,6 +756,27 @@ const { mutate: create } = useCreateEnumMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', values: '<String>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' });
 ```
 
+### CompositeType
+
+```typescript
+// List all compositeTypes
+const { data, isLoading } = useCompositeTypesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } },
+});
+
+// Get one compositeType
+const { data: item } = useCompositeTypeQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } },
+});
+
+// Create a compositeType
+const { mutate: create } = useCreateCompositeTypeMutation({
+  selection: { fields: { id: true } },
+});
+create({ databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' });
+```
+
 ### ApiSchema
 
 ```typescript
diff --git a/sdk/constructive-react/src/api/hooks/index.ts b/sdk/constructive-react/src/api/hooks/index.ts
index 0f22d9f35..ab71c8287 100644
--- a/sdk/constructive-react/src/api/hooks/index.ts
+++ b/sdk/constructive-react/src/api/hooks/index.ts
@@ -2,7 +2,7 @@
  * GraphQL SDK
  * @generated by @constructive-io/graphql-codegen
  *
- * Tables: Function, Schema, Table, CheckConstraint, Field, SpatialRelation, ForeignKeyConstraint, FullTextSearch, Index, Policy, PrimaryKeyConstraint, TableGrant, Trigger, UniqueConstraint, View, ViewTable, ViewGrant, ViewRule, EmbeddingChunk, SchemaGrant, DefaultPrivilege, Enum, ApiSchema, ApiModule, Domain, SiteMetadatum, SiteModule, SiteTheme, CorsSetting, TriggerFunction, Partition, DatabaseTransfer, Api, Site, App, ApiSetting, MigrateFile, NodeTypeRegistry, PubkeySetting, Database, RlsSetting, SqlAction, DatabaseSetting, WebauthnSetting, AstMigration
+ * Tables: Function, Schema, Table, CheckConstraint, Field, SpatialRelation, ForeignKeyConstraint, FullTextSearch, Index, Policy, PrimaryKeyConstraint, TableGrant, Trigger, UniqueConstraint, View, ViewTable, ViewGrant, ViewRule, EmbeddingChunk, SchemaGrant, DefaultPrivilege, Enum, CompositeType, ApiSchema, ApiModule, Domain, SiteMetadatum, SiteModule, SiteTheme, CorsSetting, TriggerFunction, Partition, DatabaseTransfer, Api, Site, App, ApiSetting, MigrateFile, NodeTypeRegistry, PubkeySetting, Database, RlsSetting, SqlAction, DatabaseSetting, WebauthnSetting, AstMigration
  *
  * Usage:
  *
diff --git a/sdk/constructive-react/src/api/hooks/invalidation.ts b/sdk/constructive-react/src/api/hooks/invalidation.ts
index 82f3c4cda..a4d7fde7f 100644
--- a/sdk/constructive-react/src/api/hooks/invalidation.ts
+++ b/sdk/constructive-react/src/api/hooks/invalidation.ts
@@ -37,6 +37,7 @@ import {
   schemaGrantKeys,
   defaultPrivilegeKeys,
   enumKeys,
+  compositeTypeKeys,
   apiSchemaKeys,
   apiModuleKeys,
   domainKeys,
@@ -425,6 +426,23 @@ export const invalidate = {
         queryKey: enumKeys.detail(id),
       }),
   },
+  /** Invalidate compositeType queries */ compositeType: {
+    /** Invalidate all compositeType queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.all,
+      }),
+    /** Invalidate compositeType list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.lists(),
+      }),
+    /** Invalidate a specific compositeType */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.detail(id),
+      }),
+  },
   /** Invalidate apiSchema queries */ apiSchema: {
     /** Invalidate all apiSchema queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -954,6 +972,14 @@ export const remove = {
       queryKey: enumKeys.detail(id),
     });
   },
+  /** Remove compositeType from cache */ compositeType: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: compositeTypeKeys.detail(id),
+    });
+  },
   /** Remove apiSchema from cache */ apiSchema: (queryClient: QueryClient, id: string | number) => {
     queryClient.removeQueries({
       queryKey: apiSchemaKeys.detail(id),
diff --git a/sdk/constructive-react/src/api/hooks/mutation-keys.ts b/sdk/constructive-react/src/api/hooks/mutation-keys.ts
index 3d83c2b09..c8b6437ba 100644
--- a/sdk/constructive-react/src/api/hooks/mutation-keys.ts
+++ b/sdk/constructive-react/src/api/hooks/mutation-keys.ts
@@ -203,6 +203,15 @@ export const enumMutationKeys = {
   /** Delete enum mutation key */ delete: (id: string | number) =>
     ['mutation', 'enum', 'delete', id] as const,
 } as const;
+export const compositeTypeMutationKeys = {
+  /** All compositeType mutation keys */ all: ['mutation', 'compositetype'] as const,
+  /** Create compositeType mutation key */ create: () =>
+    ['mutation', 'compositetype', 'create'] as const,
+  /** Update compositeType mutation key */ update: (id: string | number) =>
+    ['mutation', 'compositetype', 'update', id] as const,
+  /** Delete compositeType mutation key */ delete: (id: string | number) =>
+    ['mutation', 'compositetype', 'delete', id] as const,
+} as const;
 export const apiSchemaMutationKeys = {
   /** All apiSchema mutation keys */ all: ['mutation', 'apischema'] as const,
   /** Create apiSchema mutation key */ create: () => ['mutation', 'apischema', 'create'] as const,
@@ -487,6 +496,7 @@ export const mutationKeys = {
   schemaGrant: schemaGrantMutationKeys,
   defaultPrivilege: defaultPrivilegeMutationKeys,
   enum: enumMutationKeys,
+  compositeType: compositeTypeMutationKeys,
   apiSchema: apiSchemaMutationKeys,
   apiModule: apiModuleMutationKeys,
   domain: domainMutationKeys,
diff --git a/sdk/constructive-react/src/api/hooks/mutations/index.ts b/sdk/constructive-react/src/api/hooks/mutations/index.ts
index fef44ee08..7c4b5b2e5 100644
--- a/sdk/constructive-react/src/api/hooks/mutations/index.ts
+++ b/sdk/constructive-react/src/api/hooks/mutations/index.ts
@@ -69,6 +69,9 @@ export * from './useDeleteDefaultPrivilegeMutation';
 export * from './useCreateEnumMutation';
 export * from './useUpdateEnumMutation';
 export * from './useDeleteEnumMutation';
+export * from './useCreateCompositeTypeMutation';
+export * from './useUpdateCompositeTypeMutation';
+export * from './useDeleteCompositeTypeMutation';
 export * from './useCreateApiSchemaMutation';
 export * from './useUpdateApiSchemaMutation';
 export * from './useDeleteApiSchemaMutation';
diff --git a/sdk/constructive-react/src/api/hooks/mutations/useCreateCompositeTypeMutation.ts b/sdk/constructive-react/src/api/hooks/mutations/useCreateCompositeTypeMutation.ts
new file mode 100644
index 000000000..732077fc8
--- /dev/null
+++ b/sdk/constructive-react/src/api/hooks/mutations/useCreateCompositeTypeMutation.ts
@@ -0,0 +1,88 @@
+/**
+ * Create mutation hook for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { compositeTypeKeys } from '../query-keys';
+import { compositeTypeMutationKeys } from '../mutation-keys';
+import type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CreateCompositeTypeInput,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CreateCompositeTypeInput,
+} from '../../orm/input-types';
+/**
+ * Mutation hook for creating a CompositeType
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useCreateCompositeTypeMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ name: 'New item' });
+ * ```
+ */
+export function useCreateCompositeTypeMutation<S extends CompositeTypeSelect>(
+  params: {
+    selection: {
+      fields: S & CompositeTypeSelect;
+    } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        createCompositeType: {
+          compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+        };
+      },
+      Error,
+      CreateCompositeTypeInput['compositeType']
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    createCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  },
+  Error,
+  CreateCompositeTypeInput['compositeType']
+>;
+export function useCreateCompositeTypeMutation(
+  params: {
+    selection: SelectionConfig<CompositeTypeSelect>;
+  } & Omit<UseMutationOptions<any, Error, CreateCompositeTypeInput['compositeType']>, 'mutationFn'>
+) {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: compositeTypeMutationKeys.create(),
+    mutationFn: (data: CreateCompositeTypeInput['compositeType']) =>
+      getClient()
+        .compositeType.create({
+          data,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: () => {
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/api/hooks/mutations/useDeleteCompositeTypeMutation.ts b/sdk/constructive-react/src/api/hooks/mutations/useDeleteCompositeTypeMutation.ts
new file mode 100644
index 000000000..661e08ff3
--- /dev/null
+++ b/sdk/constructive-react/src/api/hooks/mutations/useDeleteCompositeTypeMutation.ts
@@ -0,0 +1,98 @@
+/**
+ * Delete mutation hook for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { compositeTypeKeys } from '../query-keys';
+import { compositeTypeMutationKeys } from '../mutation-keys';
+import type { CompositeTypeSelect, CompositeTypeWithRelations } from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type { CompositeTypeSelect, CompositeTypeWithRelations } from '../../orm/input-types';
+/**
+ * Mutation hook for deleting a CompositeType with typed selection
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useDeleteCompositeTypeMutation({
+ *   selection: { fields: { id: true } },
+ * });
+ *
+ * mutate({ id: 'value-to-delete' });
+ * ```
+ */
+export function useDeleteCompositeTypeMutation<S extends CompositeTypeSelect>(
+  params: {
+    selection: {
+      fields: S & CompositeTypeSelect;
+    } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        deleteCompositeType: {
+          compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    deleteCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+  }
+>;
+export function useDeleteCompositeTypeMutation(
+  params: {
+    selection: SelectionConfig<CompositeTypeSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: compositeTypeMutationKeys.all,
+    mutationFn: ({ id }: { id: string }) =>
+      getClient()
+        .compositeType.delete({
+          where: {
+            id,
+          },
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.removeQueries({
+        queryKey: compositeTypeKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/api/hooks/mutations/useUpdateCompositeTypeMutation.ts b/sdk/constructive-react/src/api/hooks/mutations/useUpdateCompositeTypeMutation.ts
new file mode 100644
index 000000000..a1ccc3706
--- /dev/null
+++ b/sdk/constructive-react/src/api/hooks/mutations/useUpdateCompositeTypeMutation.ts
@@ -0,0 +1,116 @@
+/**
+ * Update mutation hook for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useMutation, useQueryClient } from '@tanstack/react-query';
+import type { UseMutationOptions, UseMutationResult } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { compositeTypeKeys } from '../query-keys';
+import { compositeTypeMutationKeys } from '../mutation-keys';
+import type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CompositeTypePatch,
+} from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CompositeTypePatch,
+} from '../../orm/input-types';
+/**
+ * Mutation hook for updating a CompositeType
+ *
+ * @example
+ * ```tsx
+ * const { mutate, isPending } = useUpdateCompositeTypeMutation({
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ *
+ * mutate({ id: 'value-here', compositeTypePatch: { name: 'Updated' } });
+ * ```
+ */
+export function useUpdateCompositeTypeMutation<S extends CompositeTypeSelect>(
+  params: {
+    selection: {
+      fields: S & CompositeTypeSelect;
+    } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  } & Omit<
+    UseMutationOptions<
+      {
+        updateCompositeType: {
+          compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+        };
+      },
+      Error,
+      {
+        id: string;
+        compositeTypePatch: CompositeTypePatch;
+      }
+    >,
+    'mutationFn'
+  >
+): UseMutationResult<
+  {
+    updateCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  },
+  Error,
+  {
+    id: string;
+    compositeTypePatch: CompositeTypePatch;
+  }
+>;
+export function useUpdateCompositeTypeMutation(
+  params: {
+    selection: SelectionConfig<CompositeTypeSelect>;
+  } & Omit<
+    UseMutationOptions<
+      any,
+      Error,
+      {
+        id: string;
+        compositeTypePatch: CompositeTypePatch;
+      }
+    >,
+    'mutationFn'
+  >
+) {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  const { selection: _selection, ...mutationOptions } = params ?? {};
+  void _selection;
+  const queryClient = useQueryClient();
+  return useMutation({
+    mutationKey: compositeTypeMutationKeys.all,
+    mutationFn: ({
+      id,
+      compositeTypePatch,
+    }: {
+      id: string;
+      compositeTypePatch: CompositeTypePatch;
+    }) =>
+      getClient()
+        .compositeType.update({
+          where: {
+            id,
+          },
+          data: compositeTypePatch,
+          select: args.select,
+        })
+        .unwrap(),
+    onSuccess: (_, variables) => {
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.detail(variables.id),
+      });
+      queryClient.invalidateQueries({
+        queryKey: compositeTypeKeys.lists(),
+      });
+    },
+    ...mutationOptions,
+  });
+}
diff --git a/sdk/constructive-react/src/api/hooks/queries/index.ts b/sdk/constructive-react/src/api/hooks/queries/index.ts
index 809a0536e..811c6a182 100644
--- a/sdk/constructive-react/src/api/hooks/queries/index.ts
+++ b/sdk/constructive-react/src/api/hooks/queries/index.ts
@@ -47,6 +47,8 @@ export * from './useDefaultPrivilegesQuery';
 export * from './useDefaultPrivilegeQuery';
 export * from './useEnumsQuery';
 export * from './useEnumQuery';
+export * from './useCompositeTypesQuery';
+export * from './useCompositeTypeQuery';
 export * from './useApiSchemasQuery';
 export * from './useApiSchemaQuery';
 export * from './useApiModulesQuery';
diff --git a/sdk/constructive-react/src/api/hooks/queries/useCompositeTypeQuery.ts b/sdk/constructive-react/src/api/hooks/queries/useCompositeTypeQuery.ts
new file mode 100644
index 000000000..363f50d8a
--- /dev/null
+++ b/sdk/constructive-react/src/api/hooks/queries/useCompositeTypeQuery.ts
@@ -0,0 +1,138 @@
+/**
+ * Single item query hook for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildSelectionArgs } from '../selection';
+import type { SelectionConfig } from '../selection';
+import { compositeTypeKeys } from '../query-keys';
+import type { CompositeTypeSelect, CompositeTypeWithRelations } from '../../orm/input-types';
+import type { InferSelectResult, HookStrictSelect } from '../../orm/select-types';
+export type { CompositeTypeSelect, CompositeTypeWithRelations } from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const compositeTypeQueryKey = compositeTypeKeys.detail;
+/**
+ * Query hook for fetching a single CompositeType
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useCompositeTypeQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true, name: true } },
+ * });
+ * ```
+ */
+export function useCompositeTypeQuery<
+  S extends CompositeTypeSelect,
+  TData = {
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  },
+>(
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useCompositeTypeQuery(
+  params: {
+    id: string;
+    selection: SelectionConfig<CompositeTypeSelect>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: compositeTypeKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .compositeType.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Fetch a single CompositeType without React hooks
+ *
+ * @example
+ * ```ts
+ * const data = await fetchCompositeTypeQuery({
+ *   id: 'some-id',
+ *   selection: { fields: { id: true } },
+ * });
+ * ```
+ */
+export async function fetchCompositeTypeQuery<S extends CompositeTypeSelect>(params: {
+  id: string;
+  selection: {
+    fields: S;
+  } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+}): Promise<{
+  compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+}>;
+export async function fetchCompositeTypeQuery(params: {
+  id: string;
+  selection: SelectionConfig<CompositeTypeSelect>;
+}): Promise<any> {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  return getClient()
+    .compositeType.findOne({
+      id: params.id,
+      select: args.select,
+    })
+    .unwrap();
+}
+/**
+ * Prefetch a single CompositeType for SSR or cache warming
+ *
+ * @example
+ * ```ts
+ * await prefetchCompositeTypeQuery(queryClient, { id: 'some-id', selection: { fields: { id: true } } });
+ * ```
+ */
+export async function prefetchCompositeTypeQuery<S extends CompositeTypeSelect>(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: {
+      fields: S;
+    } & HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  }
+): Promise<void>;
+export async function prefetchCompositeTypeQuery(
+  queryClient: QueryClient,
+  params: {
+    id: string;
+    selection: SelectionConfig<CompositeTypeSelect>;
+  }
+): Promise<void> {
+  const args = buildSelectionArgs<CompositeTypeSelect>(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: compositeTypeKeys.detail(params.id),
+    queryFn: () =>
+      getClient()
+        .compositeType.findOne({
+          id: params.id,
+          select: args.select,
+        })
+        .unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/api/hooks/queries/useCompositeTypesQuery.ts b/sdk/constructive-react/src/api/hooks/queries/useCompositeTypesQuery.ts
new file mode 100644
index 000000000..5916d7ad2
--- /dev/null
+++ b/sdk/constructive-react/src/api/hooks/queries/useCompositeTypesQuery.ts
@@ -0,0 +1,151 @@
+/**
+ * List query hook for CompositeType
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+
+import { useQuery } from '@tanstack/react-query';
+import type { UseQueryOptions, UseQueryResult, QueryClient } from '@tanstack/react-query';
+import { getClient } from '../client';
+import { buildListSelectionArgs } from '../selection';
+import type { ListSelectionConfig } from '../selection';
+import { compositeTypeKeys } from '../query-keys';
+import type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+} from '../../orm/input-types';
+import type {
+  FindManyArgs,
+  InferSelectResult,
+  ConnectionResult,
+  HookStrictSelect,
+} from '../../orm/select-types';
+export type {
+  CompositeTypeSelect,
+  CompositeTypeWithRelations,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+} from '../../orm/input-types';
+/** Query key factory - re-exported from query-keys.ts */
+export const compositeTypesQueryKey = compositeTypeKeys.list;
+/**
+ * Query hook for fetching CompositeType list
+ *
+ * @example
+ * ```tsx
+ * const { data, isLoading } = useCompositeTypesQuery({
+ *   selection: {
+ *     fields: { id: true, name: true },
+ *     where: { name: { equalTo: "example" } },
+ *     orderBy: ['CREATED_AT_DESC'],
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export function useCompositeTypesQuery<
+  S extends CompositeTypeSelect,
+  TData = {
+    compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+  },
+>(
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<ListSelectionConfig<S, CompositeTypeFilter, CompositeTypeOrderBy>, 'fields'> &
+      HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  } & Omit<
+    UseQueryOptions<
+      {
+        compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+      },
+      Error,
+      TData
+    >,
+    'queryKey' | 'queryFn'
+  >
+): UseQueryResult<TData>;
+export function useCompositeTypesQuery(
+  params: {
+    selection: ListSelectionConfig<CompositeTypeSelect, CompositeTypeFilter, CompositeTypeOrderBy>;
+  } & Omit<UseQueryOptions<any, Error, any, any>, 'queryKey' | 'queryFn'>
+) {
+  const args = buildListSelectionArgs<
+    CompositeTypeSelect,
+    CompositeTypeFilter,
+    CompositeTypeOrderBy
+  >(params.selection);
+  const { selection: _selection, ...queryOptions } = params ?? {};
+  void _selection;
+  return useQuery({
+    queryKey: compositeTypeKeys.list(args),
+    queryFn: () => getClient().compositeType.findMany(args).unwrap(),
+    ...queryOptions,
+  });
+}
+/**
+ * Fetch CompositeType list without React hooks
+ *
+ * @example
+ * ```ts
+ * const data = await fetchCompositeTypesQuery({
+ *   selection: {
+ *     fields: { id: true },
+ *     first: 10,
+ *   },
+ * });
+ * ```
+ */
+export async function fetchCompositeTypesQuery<S extends CompositeTypeSelect>(params: {
+  selection: {
+    fields: S;
+  } & Omit<ListSelectionConfig<S, CompositeTypeFilter, CompositeTypeOrderBy>, 'fields'> &
+    HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+}): Promise<{
+  compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+}>;
+export async function fetchCompositeTypesQuery(params: {
+  selection: ListSelectionConfig<CompositeTypeSelect, CompositeTypeFilter, CompositeTypeOrderBy>;
+}) {
+  const args = buildListSelectionArgs<
+    CompositeTypeSelect,
+    CompositeTypeFilter,
+    CompositeTypeOrderBy
+  >(params.selection);
+  return getClient().compositeType.findMany(args).unwrap();
+}
+/**
+ * Prefetch CompositeType list for SSR or cache warming
+ *
+ * @example
+ * ```ts
+ * await prefetchCompositeTypesQuery(queryClient, { selection: { fields: { id: true }, first: 10 } });
+ * ```
+ */
+export async function prefetchCompositeTypesQuery<S extends CompositeTypeSelect>(
+  queryClient: QueryClient,
+  params: {
+    selection: {
+      fields: S;
+    } & Omit<ListSelectionConfig<S, CompositeTypeFilter, CompositeTypeOrderBy>, 'fields'> &
+      HookStrictSelect<NoInfer<S>, CompositeTypeSelect>;
+  }
+): Promise<void>;
+export async function prefetchCompositeTypesQuery(
+  queryClient: QueryClient,
+  params: {
+    selection: ListSelectionConfig<CompositeTypeSelect, CompositeTypeFilter, CompositeTypeOrderBy>;
+  }
+): Promise<void> {
+  const args = buildListSelectionArgs<
+    CompositeTypeSelect,
+    CompositeTypeFilter,
+    CompositeTypeOrderBy
+  >(params.selection);
+  await queryClient.prefetchQuery({
+    queryKey: compositeTypeKeys.list(args),
+    queryFn: () => getClient().compositeType.findMany(args).unwrap(),
+  });
+}
diff --git a/sdk/constructive-react/src/api/hooks/query-keys.ts b/sdk/constructive-react/src/api/hooks/query-keys.ts
index 459e39cdb..d198cb7b1 100644
--- a/sdk/constructive-react/src/api/hooks/query-keys.ts
+++ b/sdk/constructive-react/src/api/hooks/query-keys.ts
@@ -217,6 +217,15 @@ export const enumKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...enumKeys.details(), id] as const,
 } as const;
+export const compositeTypeKeys = {
+  /** All compositeType queries */ all: ['compositetype'] as const,
+  /** List query keys */ lists: () => [...compositeTypeKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...compositeTypeKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...compositeTypeKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...compositeTypeKeys.details(), id] as const,
+} as const;
 export const apiSchemaKeys = {
   /** All apiSchema queries */ all: ['apischema'] as const,
   /** List query keys */ lists: () => [...apiSchemaKeys.all, 'list'] as const,
@@ -478,6 +487,7 @@ export const queryKeys = {
   schemaGrant: schemaGrantKeys,
   defaultPrivilege: defaultPrivilegeKeys,
   enum: enumKeys,
+  compositeType: compositeTypeKeys,
   apiSchema: apiSchemaKeys,
   apiModule: apiModuleKeys,
   domain: domainKeys,
diff --git a/sdk/constructive-react/src/api/orm/README.md b/sdk/constructive-react/src/api/orm/README.md
index 8690e7411..1801a47b3 100644
--- a/sdk/constructive-react/src/api/orm/README.md
+++ b/sdk/constructive-react/src/api/orm/README.md
@@ -43,6 +43,7 @@ const db = createClient({
 | `schemaGrant` | findMany, findOne, create, update, delete |
 | `defaultPrivilege` | findMany, findOne, create, update, delete |
 | `enum` | findMany, findOne, create, update, delete |
+| `compositeType` | findMany, findOne, create, update, delete |
 | `apiSchema` | findMany, findOne, create, update, delete |
 | `apiModule` | findMany, findOne, create, update, delete |
 | `domain` | findMany, findOne, create, update, delete |
@@ -171,18 +172,18 @@ CRUD operations for Table records.
 | `partitionStrategy` | String | Yes |
 | `partitionKeyNames` | String | Yes |
 | `partitionKeyTypes` | String | Yes |
-| `inheritsId` | UUID | Yes |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
+| `inheritsId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all table records
-const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Get one by id
-const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Create
 const created = await db.table.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', useRls: '<Boolean>', timestamps: '<Boolean>', peoplestamps: '<Boolean>', pluralName: '<String>', singularName: '<String>', tags: '<String>', partitioned: '<Boolean>', partitionStrategy: '<String>', partitionKeyNames: '<String>', partitionKeyTypes: '<String>', inheritsId: '<UUID>' }, select: { id: true } }).execute();
@@ -970,6 +971,46 @@ const updated = await db.enum.update({ where: { id: '<UUID>' }, data: { database
 const deleted = await db.enum.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.compositeType`
+
+CRUD operations for CompositeType records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `name` | String | Yes |
+| `label` | String | Yes |
+| `description` | String | Yes |
+| `attributes` | JSON | Yes |
+| `smartTags` | JSON | Yes |
+| `category` | ObjectCategory | Yes |
+| `module` | String | Yes |
+| `scope` | Int | Yes |
+| `tags` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all compositeType records
+const items = await db.compositeType.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Get one by id
+const item = await db.compositeType.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Create
+const created = await db.compositeType.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.compositeType.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.compositeType.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.apiSchema`
 
 CRUD operations for ApiSchema records.
diff --git a/sdk/constructive-react/src/api/orm/index.ts b/sdk/constructive-react/src/api/orm/index.ts
index b2161f6fd..bde4dcc04 100644
--- a/sdk/constructive-react/src/api/orm/index.ts
+++ b/sdk/constructive-react/src/api/orm/index.ts
@@ -27,6 +27,7 @@ import { EmbeddingChunkModel } from './models/embeddingChunk';
 import { SchemaGrantModel } from './models/schemaGrant';
 import { DefaultPrivilegeModel } from './models/defaultPrivilege';
 import { EnumModel } from './models/enum';
+import { CompositeTypeModel } from './models/compositeType';
 import { ApiSchemaModel } from './models/apiSchema';
 import { ApiModuleModel } from './models/apiModule';
 import { DomainModel } from './models/domain';
@@ -107,6 +108,7 @@ export function createClient(config: OrmClientConfig) {
     schemaGrant: new SchemaGrantModel(client),
     defaultPrivilege: new DefaultPrivilegeModel(client),
     enum: new EnumModel(client),
+    compositeType: new CompositeTypeModel(client),
     apiSchema: new ApiSchemaModel(client),
     apiModule: new ApiModuleModel(client),
     domain: new DomainModel(client),
diff --git a/sdk/constructive-react/src/api/orm/input-types.ts b/sdk/constructive-react/src/api/orm/input-types.ts
index 8da4e5364..fd36cf357 100644
--- a/sdk/constructive-react/src/api/orm/input-types.ts
+++ b/sdk/constructive-react/src/api/orm/input-types.ts
@@ -282,9 +282,9 @@ export interface Table {
   partitionStrategy?: string | null;
   partitionKeyNames?: string[] | null;
   partitionKeyTypes?: string[] | null;
-  inheritsId?: string | null;
   createdAt?: string | null;
   updatedAt?: string | null;
+  inheritsId?: string | null;
 }
 export interface CheckConstraint {
   id: string;
@@ -572,6 +572,20 @@ export interface Enum {
   scope?: number | null;
   tags?: string[] | null;
 }
+export interface CompositeType {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
 /** Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API */
 export interface ApiSchema {
   /** Unique identifier for this API-schema mapping */
@@ -989,6 +1003,7 @@ export interface SchemaRelations {
   defaultPrivileges?: ConnectionResult<DefaultPrivilege>;
   enums?: ConnectionResult<Enum>;
   functions?: ConnectionResult<Function>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   apiSchemas?: ConnectionResult<ApiSchema>;
 }
 export interface TableRelations {
@@ -1102,6 +1117,10 @@ export interface EnumRelations {
   database?: Database | null;
   schema?: Schema | null;
 }
+export interface CompositeTypeRelations {
+  database?: Database | null;
+  schema?: Schema | null;
+}
 export interface ApiSchemaRelations {
   api?: Api | null;
   database?: Database | null;
@@ -1205,6 +1224,7 @@ export interface DatabaseRelations {
   spatialRelations?: ConnectionResult<SpatialRelation>;
   functions?: ConnectionResult<Function>;
   partitions?: ConnectionResult<Partition>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   databaseTransfers?: ConnectionResult<DatabaseTransfer>;
   apis?: ConnectionResult<Api>;
   apiModules?: ConnectionResult<ApiModule>;
@@ -1271,6 +1291,7 @@ export type EmbeddingChunkWithRelations = EmbeddingChunk & EmbeddingChunkRelatio
 export type SchemaGrantWithRelations = SchemaGrant & SchemaGrantRelations;
 export type DefaultPrivilegeWithRelations = DefaultPrivilege & DefaultPrivilegeRelations;
 export type EnumWithRelations = Enum & EnumRelations;
+export type CompositeTypeWithRelations = CompositeType & CompositeTypeRelations;
 export type ApiSchemaWithRelations = ApiSchema & ApiSchemaRelations;
 export type ApiModuleWithRelations = ApiModule & ApiModuleRelations;
 export type DomainWithRelations = Domain & DomainRelations;
@@ -1361,6 +1382,12 @@ export type SchemaSelect = {
     filter?: FunctionFilter;
     orderBy?: FunctionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   apiSchemas?: {
     select: ApiSchemaSelect;
     first?: number;
@@ -1389,9 +1416,9 @@ export type TableSelect = {
   partitionStrategy?: boolean;
   partitionKeyNames?: boolean;
   partitionKeyTypes?: boolean;
-  inheritsId?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
+  inheritsId?: boolean;
   database?: {
     select: DatabaseSelect;
   };
@@ -1951,6 +1978,26 @@ export type EnumSelect = {
     select: SchemaSelect;
   };
 };
+export type CompositeTypeSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  name?: boolean;
+  label?: boolean;
+  description?: boolean;
+  attributes?: boolean;
+  smartTags?: boolean;
+  category?: boolean;
+  module?: boolean;
+  scope?: boolean;
+  tags?: boolean;
+  database?: {
+    select: DatabaseSelect;
+  };
+  schema?: {
+    select: SchemaSelect;
+  };
+};
 export type ApiSchemaSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2424,6 +2471,12 @@ export type DatabaseSelect = {
     filter?: PartitionFilter;
     orderBy?: PartitionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   databaseTransfers?: {
     select: DatabaseTransferSelect;
     first?: number;
@@ -2718,6 +2771,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -2764,12 +2821,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -3613,6 +3670,42 @@ export interface EnumFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4236,6 +4329,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -4640,12 +4737,12 @@ export type TableOrderBy =
   | 'PARTITION_KEY_NAMES_DESC'
   | 'PARTITION_KEY_TYPES_ASC'
   | 'PARTITION_KEY_TYPES_DESC'
-  | 'INHERITS_ID_ASC'
-  | 'INHERITS_ID_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
-  | 'UPDATED_AT_DESC';
+  | 'UPDATED_AT_DESC'
+  | 'INHERITS_ID_ASC'
+  | 'INHERITS_ID_DESC';
 export type CheckConstraintOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5210,6 +5307,34 @@ export type EnumOrderBy =
   | 'SCOPE_DESC'
   | 'TAGS_ASC'
   | 'TAGS_DESC';
+export type CompositeTypeOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'NAME_ASC'
+  | 'NAME_DESC'
+  | 'LABEL_ASC'
+  | 'LABEL_DESC'
+  | 'DESCRIPTION_ASC'
+  | 'DESCRIPTION_DESC'
+  | 'ATTRIBUTES_ASC'
+  | 'ATTRIBUTES_DESC'
+  | 'SMART_TAGS_ASC'
+  | 'SMART_TAGS_DESC'
+  | 'CATEGORY_ASC'
+  | 'CATEGORY_DESC'
+  | 'MODULE_ASC'
+  | 'MODULE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'TAGS_ASC'
+  | 'TAGS_DESC';
 export type ApiSchemaOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6523,6 +6648,44 @@ export interface DeleteEnumInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateCompositeTypeInput {
+  clientMutationId?: string;
+  compositeType: {
+    databaseId: string;
+    schemaId: string;
+    name: string;
+    label?: string;
+    description?: string;
+    attributes?: Record<string, unknown>;
+    smartTags?: Record<string, unknown>;
+    category?: ObjectCategory;
+    module?: string;
+    scope?: number;
+    tags?: string[];
+  };
+}
+export interface CompositeTypePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
+export interface UpdateCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+  compositeTypePatch: CompositeTypePatch;
+}
+export interface DeleteCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateApiSchemaInput {
   clientMutationId?: string;
   apiSchema: {
@@ -7250,6 +7413,7 @@ export const connectionFieldsMap = {
     defaultPrivileges: 'DefaultPrivilege',
     enums: 'Enum',
     functions: 'Function',
+    compositeTypes: 'CompositeType',
     apiSchemas: 'ApiSchema',
   },
   Table: {
@@ -7315,6 +7479,7 @@ export const connectionFieldsMap = {
     spatialRelations: 'SpatialRelation',
     functions: 'Function',
     partitions: 'Partition',
+    compositeTypes: 'CompositeType',
     databaseTransfers: 'DatabaseTransfer',
     apis: 'Api',
     apiModules: 'ApiModule',
@@ -7472,6 +7637,15 @@ export interface SchemaToManyFunctionFilter {
   /** Filters to entities where no related entity matches. */
   none?: FunctionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface SchemaToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface SchemaToManyApiSchemaFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8223,6 +8397,15 @@ export interface DatabaseToManyPartitionFilter {
   /** Filters to entities where no related entity matches. */
   none?: PartitionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface DatabaseToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `DatabaseTransfer` object types. All fields are combined with a logical ‘and.’ */
 export interface DatabaseToManyDatabaseTransferFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8392,12 +8575,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -8652,6 +8835,43 @@ export interface FunctionFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+/** A filter to be used against `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 /** A filter to be used against `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
@@ -9508,6 +9728,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -10153,6 +10377,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -11620,6 +11848,51 @@ export type DeleteEnumPayloadSelect = {
     select: EnumEdgeSelect;
   };
 };
+export interface CreateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was created by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type CreateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface UpdateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was updated by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type UpdateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface DeleteCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was deleted by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type DeleteCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
 export interface CreateApiSchemaPayload {
   clientMutationId?: string | null;
   /** The `ApiSchema` that was created by this mutation. */
@@ -12845,6 +13118,18 @@ export type EnumEdgeSelect = {
     select: EnumSelect;
   };
 };
+/** A `CompositeType` edge in the connection. */
+export interface CompositeTypeEdge {
+  cursor?: string | null;
+  /** The `CompositeType` at the end of the edge. */
+  node?: CompositeType | null;
+}
+export type CompositeTypeEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: CompositeTypeSelect;
+  };
+};
 /** A `ApiSchema` edge in the connection. */
 export interface ApiSchemaEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-react/src/api/orm/models/compositeType.ts b/sdk/constructive-react/src/api/orm/models/compositeType.ts
new file mode 100644
index 000000000..0f46f810e
--- /dev/null
+++ b/sdk/constructive-react/src/api/orm/models/compositeType.ts
@@ -0,0 +1,244 @@
+/**
+ * CompositeType model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  CompositeType,
+  CompositeTypeWithRelations,
+  CompositeTypeSelect,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+  CreateCompositeTypeInput,
+  UpdateCompositeTypeInput,
+  CompositeTypePatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class CompositeTypeModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends CompositeTypeSelect>(
+    args: FindManyArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeTypes',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends CompositeTypeSelect>(
+    args: FindFirstArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends CompositeTypeSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends CompositeTypeSelect>(
+    args: CreateArgs<S, CreateCompositeTypeInput['compositeType']> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    createCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'CompositeType',
+      'createCompositeType',
+      'compositeType',
+      args.select,
+      args.data,
+      'CreateCompositeTypeInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'createCompositeType',
+      document,
+      variables,
+    });
+  }
+  update<S extends CompositeTypeSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      CompositeTypePatch
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    updateCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'CompositeType',
+      'updateCompositeType',
+      'compositeType',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateCompositeTypeInput',
+      'id',
+      'compositeTypePatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'updateCompositeType',
+      document,
+      variables,
+    });
+  }
+  delete<S extends CompositeTypeSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    deleteCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'CompositeType',
+      'deleteCompositeType',
+      'compositeType',
+      {
+        id: args.where.id,
+      },
+      'DeleteCompositeTypeInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'deleteCompositeType',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-react/src/api/orm/models/index.ts b/sdk/constructive-react/src/api/orm/models/index.ts
index 326c47f97..ddc91f27a 100644
--- a/sdk/constructive-react/src/api/orm/models/index.ts
+++ b/sdk/constructive-react/src/api/orm/models/index.ts
@@ -25,6 +25,7 @@ export { EmbeddingChunkModel } from './embeddingChunk';
 export { SchemaGrantModel } from './schemaGrant';
 export { DefaultPrivilegeModel } from './defaultPrivilege';
 export { EnumModel } from './enum';
+export { CompositeTypeModel } from './compositeType';
 export { ApiSchemaModel } from './apiSchema';
 export { ApiModuleModel } from './apiModule';
 export { DomainModel } from './domain';
diff --git a/sdk/constructive-react/src/api/schema-types.ts b/sdk/constructive-react/src/api/schema-types.ts
index 60b0aa781..06e83d887 100644
--- a/sdk/constructive-react/src/api/schema-types.ts
+++ b/sdk/constructive-react/src/api/schema-types.ts
@@ -12,6 +12,7 @@ import type {
   App,
   AstMigration,
   CheckConstraint,
+  CompositeType,
   CorsSetting,
   Database,
   DatabaseSetting,
@@ -637,12 +638,12 @@ export type TableOrderBy =
   | 'PARTITION_KEY_NAMES_DESC'
   | 'PARTITION_KEY_TYPES_ASC'
   | 'PARTITION_KEY_TYPES_DESC'
-  | 'INHERITS_ID_ASC'
-  | 'INHERITS_ID_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
-  | 'UPDATED_AT_DESC';
+  | 'UPDATED_AT_DESC'
+  | 'INHERITS_ID_ASC'
+  | 'INHERITS_ID_DESC';
 /** Methods to use when ordering `SchemaGrant`. */
 export type SchemaGrantOrderBy =
   | 'NATURAL'
@@ -721,6 +722,35 @@ export type FunctionOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'NAME_ASC'
   | 'NAME_DESC';
+/** Methods to use when ordering `CompositeType`. */
+export type CompositeTypeOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'NAME_ASC'
+  | 'NAME_DESC'
+  | 'LABEL_ASC'
+  | 'LABEL_DESC'
+  | 'DESCRIPTION_ASC'
+  | 'DESCRIPTION_DESC'
+  | 'ATTRIBUTES_ASC'
+  | 'ATTRIBUTES_DESC'
+  | 'SMART_TAGS_ASC'
+  | 'SMART_TAGS_DESC'
+  | 'CATEGORY_ASC'
+  | 'CATEGORY_DESC'
+  | 'MODULE_ASC'
+  | 'MODULE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'TAGS_ASC'
+  | 'TAGS_DESC';
 /** Methods to use when ordering `ApiModule`. */
 export type ApiModuleOrderBy =
   | 'NATURAL'
@@ -1453,6 +1483,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -1589,6 +1623,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -1645,12 +1683,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -2741,6 +2779,52 @@ export interface FunctionFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface SchemaToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
+/** A filter to be used against `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 /** A filter to be used against many `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface SchemaToManyApiSchemaFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -3644,6 +3728,15 @@ export interface DatabaseToManyPartitionFilter {
   /** Filters to entities where no related entity matches. */
   none?: PartitionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface DatabaseToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `DatabaseTransfer` object types. All fields are combined with a logical ‘and.’ */
 export interface DatabaseToManyDatabaseTransferFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -4696,6 +4789,26 @@ export interface DatabaseSettingInput {
   /** Extensible JSON for additional settings that do not have dedicated columns */
   options?: unknown;
 }
+export interface CreateCompositeTypeInput {
+  clientMutationId?: string;
+  /** The `CompositeType` to be created by this mutation. */
+  compositeType: CompositeTypeInput;
+}
+/** An input for mutations affecting `CompositeType` */
+export interface CompositeTypeInput {
+  id?: string;
+  databaseId: string;
+  schemaId: string;
+  name: string;
+  label?: string;
+  description?: string;
+  attributes?: unknown;
+  smartTags?: unknown;
+  category?: ObjectCategory;
+  module?: string;
+  scope?: number;
+  tags?: string[];
+}
 export interface CreateEnumInput {
   clientMutationId?: string;
   /** The `Enum` to be created by this mutation. */
@@ -5215,9 +5328,9 @@ export interface TableInput {
   partitionStrategy?: string;
   partitionKeyNames?: string[];
   partitionKeyTypes?: string[];
-  inheritsId?: string;
   createdAt?: string;
   updatedAt?: string;
+  inheritsId?: string;
 }
 export interface UpdateFunctionInput {
   clientMutationId?: string;
@@ -5678,6 +5791,27 @@ export interface DatabaseSettingPatch {
   /** Extensible JSON for additional settings that do not have dedicated columns */
   options?: unknown;
 }
+export interface UpdateCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `CompositeType` being updated. */
+  compositeTypePatch: CompositeTypePatch;
+}
+/** Represents an update to a `CompositeType`. Fields that are set will be updated. */
+export interface CompositeTypePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  name?: string;
+  label?: string;
+  description?: string;
+  attributes?: unknown;
+  smartTags?: unknown;
+  category?: ObjectCategory;
+  module?: string;
+  scope?: number;
+  tags?: string[];
+}
 export interface UpdateEnumInput {
   clientMutationId?: string;
   id: string;
@@ -6209,9 +6343,9 @@ export interface TablePatch {
   partitionStrategy?: string;
   partitionKeyNames?: string[];
   partitionKeyTypes?: string[];
-  inheritsId?: string;
   createdAt?: string;
   updatedAt?: string;
+  inheritsId?: string;
 }
 export interface DeleteFunctionInput {
   clientMutationId?: string;
@@ -6316,6 +6450,10 @@ export interface DeleteDatabaseSettingInput {
   /** Unique identifier for this settings record */
   id: string;
 }
+export interface DeleteCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface DeleteEnumInput {
   clientMutationId?: string;
   id: string;
@@ -6580,6 +6718,13 @@ export interface DatabaseSettingConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `CompositeType` values. */
+export interface CompositeTypeConnection {
+  nodes: CompositeType[];
+  edges: CompositeTypeEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `Enum` values. */
 export interface EnumConnection {
   nodes: Enum[];
@@ -6902,6 +7047,12 @@ export interface CreateDatabaseSettingPayload {
   databaseSetting?: DatabaseSetting | null;
   databaseSettingEdge?: DatabaseSettingEdge | null;
 }
+export interface CreateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was created by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
 export interface CreateEnumPayload {
   clientMutationId?: string | null;
   /** The `Enum` that was created by this mutation. */
@@ -7159,6 +7310,12 @@ export interface UpdateDatabaseSettingPayload {
   databaseSetting?: DatabaseSetting | null;
   databaseSettingEdge?: DatabaseSettingEdge | null;
 }
+export interface UpdateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was updated by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
 export interface UpdateEnumPayload {
   clientMutationId?: string | null;
   /** The `Enum` that was updated by this mutation. */
@@ -7411,6 +7568,12 @@ export interface DeleteDatabaseSettingPayload {
   databaseSetting?: DatabaseSetting | null;
   databaseSettingEdge?: DatabaseSettingEdge | null;
 }
+export interface DeleteCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was deleted by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
 export interface DeleteEnumPayload {
   clientMutationId?: string | null;
   /** The `Enum` that was deleted by this mutation. */
@@ -7700,6 +7863,12 @@ export interface DatabaseSettingEdge {
   /** The `DatabaseSetting` at the end of the edge. */
   node?: DatabaseSetting | null;
 }
+/** A `CompositeType` edge in the connection. */
+export interface CompositeTypeEdge {
+  cursor?: string | null;
+  /** The `CompositeType` at the end of the edge. */
+  node?: CompositeType | null;
+}
 /** A `Enum` edge in the connection. */
 export interface EnumEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-react/src/api/types.ts b/sdk/constructive-react/src/api/types.ts
index 80f613995..b1b96f3e6 100644
--- a/sdk/constructive-react/src/api/types.ts
+++ b/sdk/constructive-react/src/api/types.ts
@@ -52,9 +52,9 @@ export interface Table {
   partitionStrategy: string | null;
   partitionKeyNames: string[] | null;
   partitionKeyTypes: string[] | null;
-  inheritsId: string | null;
   createdAt: string | null;
   updatedAt: string | null;
+  inheritsId: string | null;
 }
 export interface CheckConstraint {
   id: string | null;
@@ -338,6 +338,20 @@ export interface Enum {
   scope: number | null;
   tags: string[] | null;
 }
+export interface CompositeType {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  name: string | null;
+  label: string | null;
+  description: string | null;
+  attributes: unknown | null;
+  smartTags: unknown | null;
+  category: ObjectCategory | null;
+  module: string | null;
+  scope: number | null;
+  tags: string[] | null;
+}
 export interface ApiSchema {
   id: string | null;
   databaseId: string | null;
diff --git a/sdk/constructive-react/src/modules/hooks/README.md b/sdk/constructive-react/src/modules/hooks/README.md
index 934e0e879..3bdb33d27 100644
--- a/sdk/constructive-react/src/modules/hooks/README.md
+++ b/sdk/constructive-react/src/modules/hooks/README.md
@@ -207,11 +207,6 @@ function App() {
 | `useCreateCryptoAuthModuleMutation` | Mutation | Create a cryptoAuthModule |
 | `useUpdateCryptoAuthModuleMutation` | Mutation | Update a cryptoAuthModule |
 | `useDeleteCryptoAuthModuleMutation` | Mutation | Delete a cryptoAuthModule |
-| `useRateLimitMetersModulesQuery` | Query | List all rateLimitMetersModules |
-| `useRateLimitMetersModuleQuery` | Query | Get one rateLimitMetersModule |
-| `useCreateRateLimitMetersModuleMutation` | Mutation | Create a rateLimitMetersModule |
-| `useUpdateRateLimitMetersModuleMutation` | Mutation | Update a rateLimitMetersModule |
-| `useDeleteRateLimitMetersModuleMutation` | Mutation | Delete a rateLimitMetersModule |
 | `useSessionsModulesQuery` | Query | List all sessionsModules |
 | `useSessionsModuleQuery` | Query | Get one sessionsModule |
 | `useCreateSessionsModuleMutation` | Mutation | Create a sessionsModule |
@@ -247,6 +242,11 @@ function App() {
 | `useCreateSecureTableProvisionMutation` | Mutation | Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. |
 | `useUpdateSecureTableProvisionMutation` | Mutation | Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. |
 | `useDeleteSecureTableProvisionMutation` | Mutation | Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. |
+| `useRateLimitMetersModulesQuery` | Query | List all rateLimitMetersModules |
+| `useRateLimitMetersModuleQuery` | Query | Get one rateLimitMetersModule |
+| `useCreateRateLimitMetersModuleMutation` | Mutation | Create a rateLimitMetersModule |
+| `useUpdateRateLimitMetersModuleMutation` | Mutation | Update a rateLimitMetersModule |
+| `useDeleteRateLimitMetersModuleMutation` | Mutation | Delete a rateLimitMetersModule |
 | `useInvitesModulesQuery` | Query | List all invitesModules |
 | `useInvitesModuleQuery` | Query | Get one invitesModule |
 | `useCreateInvitesModuleMutation` | Mutation | Create a invitesModule |
@@ -257,11 +257,6 @@ function App() {
 | `useCreateDatabaseProvisionModuleMutation` | Mutation | Tracks database provisioning requests and their status. The BEFORE INSERT trigger creates the database and sets database_id before RLS policies are evaluated. |
 | `useUpdateDatabaseProvisionModuleMutation` | Mutation | Tracks database provisioning requests and their status. The BEFORE INSERT trigger creates the database and sets database_id before RLS policies are evaluated. |
 | `useDeleteDatabaseProvisionModuleMutation` | Mutation | Tracks database provisioning requests and their status. The BEFORE INSERT trigger creates the database and sets database_id before RLS policies are evaluated. |
-| `useNamespaceModulesQuery` | Query | List all namespaceModules |
-| `useNamespaceModuleQuery` | Query | Get one namespaceModule |
-| `useCreateNamespaceModuleMutation` | Mutation | Create a namespaceModule |
-| `useUpdateNamespaceModuleMutation` | Mutation | Update a namespaceModule |
-| `useDeleteNamespaceModuleMutation` | Mutation | Delete a namespaceModule |
 | `useRealtimeModulesQuery` | Query | List all realtimeModules |
 | `useRealtimeModuleQuery` | Query | Get one realtimeModule |
 | `useCreateRealtimeModuleMutation` | Mutation | Create a realtimeModule |
@@ -272,6 +267,11 @@ function App() {
 | `useCreateWebauthnAuthModuleMutation` | Mutation | Create a webauthnAuthModule |
 | `useUpdateWebauthnAuthModuleMutation` | Mutation | Update a webauthnAuthModule |
 | `useDeleteWebauthnAuthModuleMutation` | Mutation | Delete a webauthnAuthModule |
+| `useNamespaceModulesQuery` | Query | List all namespaceModules |
+| `useNamespaceModuleQuery` | Query | Get one namespaceModule |
+| `useCreateNamespaceModuleMutation` | Mutation | Create a namespaceModule |
+| `useUpdateNamespaceModuleMutation` | Mutation | Update a namespaceModule |
+| `useDeleteNamespaceModuleMutation` | Mutation | Delete a namespaceModule |
 | `useComputeLogModulesQuery` | Query | List all computeLogModules |
 | `useComputeLogModuleQuery` | Query | Get one computeLogModule |
 | `useCreateComputeLogModuleMutation` | Mutation | Create a computeLogModule |
@@ -292,6 +292,11 @@ function App() {
 | `useCreateTransferLogModuleMutation` | Mutation | Create a transferLogModule |
 | `useUpdateTransferLogModuleMutation` | Mutation | Update a transferLogModule |
 | `useDeleteTransferLogModuleMutation` | Mutation | Delete a transferLogModule |
+| `usePlansModulesQuery` | Query | List all plansModules |
+| `usePlansModuleQuery` | Query | Get one plansModule |
+| `useCreatePlansModuleMutation` | Mutation | Create a plansModule |
+| `useUpdatePlansModuleMutation` | Mutation | Update a plansModule |
+| `useDeletePlansModuleMutation` | Mutation | Delete a plansModule |
 | `useDbUsageModulesQuery` | Query | List all dbUsageModules |
 | `useDbUsageModuleQuery` | Query | Get one dbUsageModule |
 | `useCreateDbUsageModuleMutation` | Mutation | Create a dbUsageModule |
@@ -302,26 +307,21 @@ function App() {
 | `useCreateNotificationsModuleMutation` | Mutation | Create a notificationsModule |
 | `useUpdateNotificationsModuleMutation` | Mutation | Update a notificationsModule |
 | `useDeleteNotificationsModuleMutation` | Mutation | Delete a notificationsModule |
-| `usePlansModulesQuery` | Query | List all plansModules |
-| `usePlansModuleQuery` | Query | Get one plansModule |
-| `useCreatePlansModuleMutation` | Mutation | Create a plansModule |
-| `useUpdatePlansModuleMutation` | Mutation | Update a plansModule |
-| `useDeletePlansModuleMutation` | Mutation | Delete a plansModule |
-| `useHierarchyModulesQuery` | Query | List all hierarchyModules |
-| `useHierarchyModuleQuery` | Query | Get one hierarchyModule |
-| `useCreateHierarchyModuleMutation` | Mutation | Create a hierarchyModule |
-| `useUpdateHierarchyModuleMutation` | Mutation | Update a hierarchyModule |
-| `useDeleteHierarchyModuleMutation` | Mutation | Delete a hierarchyModule |
-| `useBillingModulesQuery` | Query | List all billingModules |
-| `useBillingModuleQuery` | Query | Get one billingModule |
-| `useCreateBillingModuleMutation` | Mutation | Create a billingModule |
-| `useUpdateBillingModuleMutation` | Mutation | Update a billingModule |
-| `useDeleteBillingModuleMutation` | Mutation | Delete a billingModule |
 | `useBillingProviderModulesQuery` | Query | List all billingProviderModules |
 | `useBillingProviderModuleQuery` | Query | Get one billingProviderModule |
 | `useCreateBillingProviderModuleMutation` | Mutation | Create a billingProviderModule |
 | `useUpdateBillingProviderModuleMutation` | Mutation | Update a billingProviderModule |
 | `useDeleteBillingProviderModuleMutation` | Mutation | Delete a billingProviderModule |
+| `useFunctionModulesQuery` | Query | List all functionModules |
+| `useFunctionModuleQuery` | Query | Get one functionModule |
+| `useCreateFunctionModuleMutation` | Mutation | Create a functionModule |
+| `useUpdateFunctionModuleMutation` | Mutation | Update a functionModule |
+| `useDeleteFunctionModuleMutation` | Mutation | Delete a functionModule |
+| `useHierarchyModulesQuery` | Query | List all hierarchyModules |
+| `useHierarchyModuleQuery` | Query | Get one hierarchyModule |
+| `useCreateHierarchyModuleMutation` | Mutation | Create a hierarchyModule |
+| `useUpdateHierarchyModuleMutation` | Mutation | Update a hierarchyModule |
+| `useDeleteHierarchyModuleMutation` | Mutation | Delete a hierarchyModule |
 | `useProfilesModulesQuery` | Query | List all profilesModules |
 | `useProfilesModuleQuery` | Query | Get one profilesModule |
 | `useCreateProfilesModuleMutation` | Mutation | Create a profilesModule |
@@ -332,6 +332,11 @@ function App() {
 | `useCreatePermissionsModuleMutation` | Mutation | Create a permissionsModule |
 | `useUpdatePermissionsModuleMutation` | Mutation | Update a permissionsModule |
 | `useDeletePermissionsModuleMutation` | Mutation | Delete a permissionsModule |
+| `useBillingModulesQuery` | Query | List all billingModules |
+| `useBillingModuleQuery` | Query | Get one billingModule |
+| `useCreateBillingModuleMutation` | Mutation | Create a billingModule |
+| `useUpdateBillingModuleMutation` | Mutation | Update a billingModule |
+| `useDeleteBillingModuleMutation` | Mutation | Delete a billingModule |
 | `useRelationProvisionsQuery` | Query | Provisions relational structure between tables. Supports four relation types:
      - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
      - RelationHasMany: adds a FK field on the target table referencing the source table (parent perspective: "projects has many tasks" -> tasks.project_id). Inverse of BelongsTo.
@@ -372,11 +377,6 @@ function App() {
      This is a one-and-done structural provisioner. To layer additional security onto junction tables after creation, use secure_table_provision directly.
      All operations are graceful: existing fields, FK constraints, and unique constraints are reused if found.
      The trigger never injects values the caller did not provide. All security config is forwarded to secure_table_provision as-is. |
-| `useFunctionModulesQuery` | Query | List all functionModules |
-| `useFunctionModuleQuery` | Query | Get one functionModule |
-| `useCreateFunctionModuleMutation` | Mutation | Create a functionModule |
-| `useUpdateFunctionModuleMutation` | Mutation | Update a functionModule |
-| `useDeleteFunctionModuleMutation` | Mutation | Delete a functionModule |
 | `useUserAuthModulesQuery` | Query | List all userAuthModules |
 | `useUserAuthModuleQuery` | Query | Get one userAuthModule |
 | `useCreateUserAuthModuleMutation` | Mutation | Create a userAuthModule |
@@ -402,11 +402,6 @@ function App() {
 | `useCreateStorageModuleMutation` | Mutation | Create a storageModule |
 | `useUpdateStorageModuleMutation` | Mutation | Update a storageModule |
 | `useDeleteStorageModuleMutation` | Mutation | Delete a storageModule |
-| `useEventsModulesQuery` | Query | List all eventsModules |
-| `useEventsModuleQuery` | Query | Get one eventsModule |
-| `useCreateEventsModuleMutation` | Mutation | Create a eventsModule |
-| `useUpdateEventsModuleMutation` | Mutation | Update a eventsModule |
-| `useDeleteEventsModuleMutation` | Mutation | Delete a eventsModule |
 | `useEntityTypeProvisionsQuery` | Query | Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
@@ -447,6 +442,11 @@ function App() {
      Set table_provision to a single jsonb object (using the same shape as provision_table() /
      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
      as an escape hatch to apply zero policies. |
+| `useEventsModulesQuery` | Query | List all eventsModules |
+| `useEventsModuleQuery` | Query | Get one eventsModule |
+| `useCreateEventsModuleMutation` | Mutation | Create a eventsModule |
+| `useUpdateEventsModuleMutation` | Mutation | Update a eventsModule |
+| `useDeleteEventsModuleMutation` | Mutation | Delete a eventsModule |
 | `useResolveBlueprintFieldQuery` | Query | Resolves a field_name within a given table_id to a field_id. Throws if no match is found. Used by construct_blueprint to translate user-authored field names (e.g. "location") into field UUIDs for downstream provisioning procedures. table_id must already be resolved (via resolve_blueprint_table) before calling this. |
 | `useResolveBlueprintTableQuery` | Query | Resolves a table_name (with optional schema_name) to a table_id. Resolution order: (1) if schema_name provided, exact lookup via metaschema_public.schema.name + metaschema_public.table; (2) check local table_map (tables created in current blueprint); (3) search metaschema_public.table by name across all schemas; (4) if multiple matches, throw ambiguous error asking for schema_name; (5) if no match, throw not-found error. |
 | `useConstructBlueprintMutation` | Mutation | Executes a blueprint definition by delegating to provision_* procedures. Creates a blueprint_construction record to track the attempt. Eight phases: (0) entity_type_provision for each membership_type entry — provisions entity tables, membership modules, and security. When a prefix already exists (e.g., 'org'), the entry extends the existing entity type instead of creating a new one; if a storage[] key is present, it provisions entity-scoped storage for that type. (0.5) scope-based storage: each storage[] entry has an optional scope ('app' or 'org' only). App-scoped storage seeds buckets at migration time. Org-scoped storage resolves the org membership type, creates org_buckets/org_files with owner_id, and seeds buckets per-entity via an AFTER INSERT trigger on the users table. When function_module is installed, a private functions bucket is auto-injected into org-scoped or entity-scoped storage entries. (1) provision_table() for each table with nodes[], fields[], policies[], and grants (table-level indexes/fts/unique_constraints/check_constraints are deferred). After provisioning, optional smart_tags (jsonb object) on the table entry are applied via metaschema.append_table_smart_tags(), and optional smart_tags on individual field entries are applied via metaschema.append_field_smart_tags(). (2) provision_relation() for each relation, (3) provision_index() for top-level + deferred indexes, (4) provision_full_text_search() for top-level + deferred FTS, (5) provision_unique_constraint() for top-level + deferred unique constraints, (6) provision_check_constraint() for top-level + deferred check constraints, (7) seed achievements from definition.achievements[] — resolves events_module by entity_prefix and creates INSERT actions for levels, level_requirements, and achievement_rewards tables. Phase 0 entity tables are added to the table_map so subsequent phases can reference them by name. Table-level entries are deferred to phases 3-6 so they can reference columns created by relations in phase 2. Returns the construction record ID on success, NULL on failure. |
@@ -969,27 +969,6 @@ const { mutate: create } = useCreateCryptoAuthModuleMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', usersTableId: '<UUID>', secretsTableId: '<UUID>', sessionsTableId: '<UUID>', sessionCredentialsTableId: '<UUID>', addressesTableId: '<UUID>', userField: '<String>', cryptoNetwork: '<String>', signInRequestChallenge: '<String>', signInRecordFailure: '<String>', signUpWithKey: '<String>', signInWithChallenge: '<String>' });
 ```
 
-### RateLimitMetersModule
-
-```typescript
-// List all rateLimitMetersModules
-const { data, isLoading } = useRateLimitMetersModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } },
-});
-
-// Get one rateLimitMetersModule
-const { data: item } = useRateLimitMetersModuleQuery({
-  id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } },
-});
-
-// Create a rateLimitMetersModule
-const { mutate: create } = useCreateRateLimitMetersModuleMutation({
-  selection: { fields: { id: true } },
-});
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
-```
-
 ### SessionsModule
 
 ```typescript
@@ -1058,20 +1037,20 @@ create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', pu
 ```typescript
 // List all graphModules
 const { data, isLoading } = useGraphModulesQuery({
-  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } },
+  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } },
 });
 
 // Get one graphModule
 const { data: item } = useGraphModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } },
+  selection: { fields: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } },
 });
 
 // Create a graphModule
 const { mutate: create } = useCreateGraphModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
+create({ databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
 
 ### SecureTableProvision
@@ -1095,6 +1074,27 @@ const { mutate: create } = useCreateSecureTableProvisionMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', tableId: '<UUID>', tableName: '<String>', nodes: '<JSON>', useRls: '<Boolean>', fields: '<JSON>', grants: '<JSON>', policies: '<JSON>', outFields: '<UUID>' });
 ```
 
+### RateLimitMetersModule
+
+```typescript
+// List all rateLimitMetersModules
+const { data, isLoading } = useRateLimitMetersModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
+});
+
+// Get one rateLimitMetersModule
+const { data: item } = useRateLimitMetersModuleQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
+});
+
+// Create a rateLimitMetersModule
+const { mutate: create } = useCreateRateLimitMetersModuleMutation({
+  selection: { fields: { id: true } },
+});
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
+```
+
 ### InvitesModule
 
 ```typescript
@@ -1137,27 +1137,6 @@ const { mutate: create } = useCreateDatabaseProvisionModuleMutation({
 create({ databaseName: '<String>', ownerId: '<UUID>', subdomain: '<String>', domain: '<String>', modules: '<JSON>', options: '<JSON>', bootstrapUser: '<Boolean>', status: '<String>', errorMessage: '<String>', databaseId: '<UUID>', completedAt: '<Datetime>' });
 ```
 
-### NamespaceModule
-
-```typescript
-// List all namespaceModules
-const { data, isLoading } = useNamespaceModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
-});
-
-// Get one namespaceModule
-const { data: item } = useNamespaceModuleQuery({
-  id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
-});
-
-// Create a namespaceModule
-const { mutate: create } = useCreateNamespaceModuleMutation({
-  selection: { fields: { id: true } },
-});
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
-```
-
 ### RealtimeModule
 
 ```typescript
@@ -1200,6 +1179,27 @@ const { mutate: create } = useCreateWebauthnAuthModuleMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', usersTableId: '<UUID>', credentialsTableId: '<UUID>', sessionsTableId: '<UUID>', sessionCredentialsTableId: '<UUID>', sessionSecretsTableId: '<UUID>', authSettingsTableId: '<UUID>', rpId: '<String>', rpName: '<String>', originAllowlist: '<String>', attestationType: '<String>', requireUserVerification: '<Boolean>', residentKey: '<String>', challengeExpiry: '<Interval>' });
 ```
 
+### NamespaceModule
+
+```typescript
+// List all namespaceModules
+const { data, isLoading } = useNamespaceModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
+});
+
+// Get one namespaceModule
+const { data: item } = useNamespaceModuleQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
+});
+
+// Create a namespaceModule
+const { mutate: create } = useCreateNamespaceModuleMutation({
+  selection: { fields: { id: true } },
+});
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
+```
+
 ### ComputeLogModule
 
 ```typescript
@@ -1284,25 +1284,46 @@ const { mutate: create } = useCreateTransferLogModuleMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', transferLogTableId: '<UUID>', transferLogTableName: '<String>', usageDailyTableId: '<UUID>', usageDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', actorFkTableId: '<UUID>', entityFkTableId: '<UUID>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
+### PlansModule
+
+```typescript
+// List all plansModules
+const { data, isLoading } = usePlansModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } },
+});
+
+// Get one plansModule
+const { data: item } = usePlansModuleQuery({
+  id: '<UUID>',
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } },
+});
+
+// Create a plansModule
+const { mutate: create } = useCreatePlansModuleMutation({
+  selection: { fields: { id: true } },
+});
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+```
+
 ### DbUsageModule
 
 ```typescript
 // List all dbUsageModules
 const { data, isLoading } = useDbUsageModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Get one dbUsageModule
 const { data: item } = useDbUsageModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Create a dbUsageModule
 const { mutate: create } = useCreateDbUsageModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
 ### NotificationsModule
@@ -1310,104 +1331,83 @@ create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', ta
 ```typescript
 // List all notificationsModules
 const { data, isLoading } = useNotificationsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Get one notificationsModule
 const { data: item } = useNotificationsModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Create a notificationsModule
 const { mutate: create } = useCreateNotificationsModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' });
-```
-
-### PlansModule
-
-```typescript
-// List all plansModules
-const { data, isLoading } = usePlansModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } },
-});
-
-// Get one plansModule
-const { data: item } = usePlansModuleQuery({
-  id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } },
-});
-
-// Create a plansModule
-const { mutate: create } = useCreatePlansModuleMutation({
-  selection: { fields: { id: true } },
-});
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
-### HierarchyModule
+### BillingProviderModule
 
 ```typescript
-// List all hierarchyModules
-const { data, isLoading } = useHierarchyModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } },
+// List all billingProviderModules
+const { data, isLoading } = useBillingProviderModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } },
 });
 
-// Get one hierarchyModule
-const { data: item } = useHierarchyModuleQuery({
+// Get one billingProviderModule
+const { data: item } = useBillingProviderModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } },
 });
 
-// Create a hierarchyModule
-const { mutate: create } = useCreateHierarchyModuleMutation({
+// Create a billingProviderModule
+const { mutate: create } = useCreateBillingProviderModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
-### BillingModule
+### FunctionModule
 
 ```typescript
-// List all billingModules
-const { data, isLoading } = useBillingModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } },
+// List all functionModules
+const { data, isLoading } = useFunctionModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
 });
 
-// Get one billingModule
-const { data: item } = useBillingModuleQuery({
+// Get one functionModule
+const { data: item } = useFunctionModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } },
 });
 
-// Create a billingModule
-const { mutate: create } = useCreateBillingModuleMutation({
+// Create a functionModule
+const { mutate: create } = useCreateFunctionModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
 
-### BillingProviderModule
+### HierarchyModule
 
 ```typescript
-// List all billingProviderModules
-const { data, isLoading } = useBillingProviderModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } },
+// List all hierarchyModules
+const { data, isLoading } = useHierarchyModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } },
 });
 
-// Get one billingProviderModule
-const { data: item } = useBillingProviderModuleQuery({
+// Get one hierarchyModule
+const { data: item } = useHierarchyModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } },
 });
 
-// Create a billingProviderModule
-const { mutate: create } = useCreateBillingProviderModuleMutation({
+// Create a hierarchyModule
+const { mutate: create } = useCreateHierarchyModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' });
 ```
 
 ### ProfilesModule
@@ -1452,46 +1452,46 @@ const { mutate: create } = useCreatePermissionsModuleMutation({
 create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableId: '<UUID>', tableName: '<String>', defaultTableId: '<UUID>', defaultTableName: '<String>', bitlen: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', getPaddedMask: '<String>', getMask: '<String>', getByMask: '<String>', getMaskByName: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
-### RelationProvision
+### BillingModule
 
 ```typescript
-// List all relationProvisions
-const { data, isLoading } = useRelationProvisionsQuery({
-  selection: { fields: { id: true, databaseId: true, relationType: true, sourceTableId: true, targetTableId: true, fieldName: true, deleteAction: true, isRequired: true, apiRequired: true, junctionTableId: true, junctionTableName: true, junctionSchemaId: true, sourceFieldName: true, targetFieldName: true, useCompositeKey: true, createIndex: true, exposeInApi: true, nodes: true, grants: true, policies: true, outFieldId: true, outJunctionTableId: true, outSourceFieldId: true, outTargetFieldId: true } },
+// List all billingModules
+const { data, isLoading } = useBillingModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
-// Get one relationProvision
-const { data: item } = useRelationProvisionQuery({
+// Get one billingModule
+const { data: item } = useBillingModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, relationType: true, sourceTableId: true, targetTableId: true, fieldName: true, deleteAction: true, isRequired: true, apiRequired: true, junctionTableId: true, junctionTableName: true, junctionSchemaId: true, sourceFieldName: true, targetFieldName: true, useCompositeKey: true, createIndex: true, exposeInApi: true, nodes: true, grants: true, policies: true, outFieldId: true, outJunctionTableId: true, outSourceFieldId: true, outTargetFieldId: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
-// Create a relationProvision
-const { mutate: create } = useCreateRelationProvisionMutation({
+// Create a billingModule
+const { mutate: create } = useCreateBillingModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', relationType: '<String>', sourceTableId: '<UUID>', targetTableId: '<UUID>', fieldName: '<String>', deleteAction: '<String>', isRequired: '<Boolean>', apiRequired: '<Boolean>', junctionTableId: '<UUID>', junctionTableName: '<String>', junctionSchemaId: '<UUID>', sourceFieldName: '<String>', targetFieldName: '<String>', useCompositeKey: '<Boolean>', createIndex: '<Boolean>', exposeInApi: '<Boolean>', nodes: '<JSON>', grants: '<JSON>', policies: '<JSON>', outFieldId: '<UUID>', outJunctionTableId: '<UUID>', outSourceFieldId: '<UUID>', outTargetFieldId: '<UUID>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
-### FunctionModule
+### RelationProvision
 
 ```typescript
-// List all functionModules
-const { data, isLoading } = useFunctionModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
+// List all relationProvisions
+const { data, isLoading } = useRelationProvisionsQuery({
+  selection: { fields: { id: true, databaseId: true, relationType: true, sourceTableId: true, targetTableId: true, fieldName: true, deleteAction: true, isRequired: true, apiRequired: true, junctionTableId: true, junctionTableName: true, junctionSchemaId: true, sourceFieldName: true, targetFieldName: true, useCompositeKey: true, createIndex: true, exposeInApi: true, nodes: true, grants: true, policies: true, outFieldId: true, outJunctionTableId: true, outSourceFieldId: true, outTargetFieldId: true } },
 });
 
-// Get one functionModule
-const { data: item } = useFunctionModuleQuery({
+// Get one relationProvision
+const { data: item } = useRelationProvisionQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, relationType: true, sourceTableId: true, targetTableId: true, fieldName: true, deleteAction: true, isRequired: true, apiRequired: true, junctionTableId: true, junctionTableName: true, junctionSchemaId: true, sourceFieldName: true, targetFieldName: true, useCompositeKey: true, createIndex: true, exposeInApi: true, nodes: true, grants: true, policies: true, outFieldId: true, outJunctionTableId: true, outSourceFieldId: true, outTargetFieldId: true } },
 });
 
-// Create a functionModule
-const { mutate: create } = useCreateFunctionModuleMutation({
+// Create a relationProvision
+const { mutate: create } = useCreateRelationProvisionMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' });
+create({ databaseId: '<UUID>', relationType: '<String>', sourceTableId: '<UUID>', targetTableId: '<UUID>', fieldName: '<String>', deleteAction: '<String>', isRequired: '<Boolean>', apiRequired: '<Boolean>', junctionTableId: '<UUID>', junctionTableName: '<String>', junctionSchemaId: '<UUID>', sourceFieldName: '<String>', targetFieldName: '<String>', useCompositeKey: '<Boolean>', createIndex: '<Boolean>', exposeInApi: '<Boolean>', nodes: '<JSON>', grants: '<JSON>', policies: '<JSON>', outFieldId: '<UUID>', outJunctionTableId: '<UUID>', outSourceFieldId: '<UUID>', outTargetFieldId: '<UUID>' });
 ```
 
 ### UserAuthModule
@@ -1520,20 +1520,20 @@ create({ databaseId: '<UUID>', schemaId: '<UUID>', emailsTableId: '<UUID>', user
 ```typescript
 // List all agentModules
 const { data, isLoading } = useAgentModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } },
 });
 
 // Get one agentModule
 const { data: item } = useAgentModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } },
 });
 
 // Create a agentModule
 const { mutate: create } = useCreateAgentModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' });
 ```
 
 ### LimitsModule
@@ -1562,20 +1562,20 @@ create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', ta
 ```typescript
 // List all membershipsModules
 const { data, isLoading } = useMembershipsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } },
 });
 
 // Get one membershipsModule
 const { data: item } = useMembershipsModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } },
 });
 
 // Create a membershipsModule
 const { mutate: create } = useCreateMembershipsModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
 ### StorageModule
@@ -1583,62 +1583,62 @@ create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', me
 ```typescript
 // List all storageModules
 const { data, isLoading } = useStorageModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Get one storageModule
 const { data: item } = useStorageModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
 // Create a storageModule
 const { mutate: create } = useCreateStorageModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
-### EventsModule
+### EntityTypeProvision
 
 ```typescript
-// List all eventsModules
-const { data, isLoading } = useEventsModulesQuery({
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } },
+// List all entityTypeProvisions
+const { data, isLoading } = useEntityTypeProvisionsQuery({
+  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
 });
 
-// Get one eventsModule
-const { data: item } = useEventsModuleQuery({
+// Get one entityTypeProvision
+const { data: item } = useEntityTypeProvisionQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } },
+  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
 });
 
-// Create a eventsModule
-const { mutate: create } = useCreateEventsModuleMutation({
+// Create a entityTypeProvision
+const { mutate: create } = useCreateEntityTypeProvisionMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' });
+create({ databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' });
 ```
 
-### EntityTypeProvision
+### EventsModule
 
 ```typescript
-// List all entityTypeProvisions
-const { data, isLoading } = useEntityTypeProvisionsQuery({
-  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
+// List all eventsModules
+const { data, isLoading } = useEventsModulesQuery({
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
-// Get one entityTypeProvision
-const { data: item } = useEntityTypeProvisionQuery({
+// Get one eventsModule
+const { data: item } = useEventsModuleQuery({
   id: '<UUID>',
-  selection: { fields: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } },
+  selection: { fields: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } },
 });
 
-// Create a entityTypeProvision
-const { mutate: create } = useCreateEntityTypeProvisionMutation({
+// Create a eventsModule
+const { mutate: create } = useCreateEventsModuleMutation({
   selection: { fields: { id: true } },
 });
-create({ databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' });
+create({ databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' });
 ```
 
 ## Custom Operation Hooks
diff --git a/sdk/constructive-react/src/modules/hooks/index.ts b/sdk/constructive-react/src/modules/hooks/index.ts
index bc329617b..7c331d78d 100644
--- a/sdk/constructive-react/src/modules/hooks/index.ts
+++ b/sdk/constructive-react/src/modules/hooks/index.ts
@@ -2,7 +2,7 @@
  * GraphQL SDK
  * @generated by @constructive-io/graphql-codegen
  *
- * Tables: DefaultIdsModule, MembershipTypesModule, UserStateModule, SessionSecretsModule, ConfigSecretsOrgModule, DevicesModule, I18NModule, UserCredentialsModule, UserSettingsModule, ConfigSecretsUserModule, ConnectedAccountsModule, EmailsModule, PhoneNumbersModule, RateLimitsModule, UsersModule, WebauthnCredentialsModule, CryptoAddressesModule, IdentityProvidersModule, DenormalizedTableField, RlsModule, Blueprint, BlueprintTemplate, BlueprintConstruction, CryptoAuthModule, RateLimitMetersModule, SessionsModule, ConfigSecretsModule, MerkleStoreModule, GraphModule, SecureTableProvision, InvitesModule, DatabaseProvisionModule, NamespaceModule, RealtimeModule, WebauthnAuthModule, ComputeLogModule, InferenceLogModule, StorageLogModule, TransferLogModule, DbUsageModule, NotificationsModule, PlansModule, HierarchyModule, BillingModule, BillingProviderModule, ProfilesModule, PermissionsModule, RelationProvision, FunctionModule, UserAuthModule, AgentModule, LimitsModule, MembershipsModule, StorageModule, EventsModule, EntityTypeProvision
+ * Tables: DefaultIdsModule, MembershipTypesModule, UserStateModule, SessionSecretsModule, ConfigSecretsOrgModule, DevicesModule, I18NModule, UserCredentialsModule, UserSettingsModule, ConfigSecretsUserModule, ConnectedAccountsModule, EmailsModule, PhoneNumbersModule, RateLimitsModule, UsersModule, WebauthnCredentialsModule, CryptoAddressesModule, IdentityProvidersModule, DenormalizedTableField, RlsModule, Blueprint, BlueprintTemplate, BlueprintConstruction, CryptoAuthModule, SessionsModule, ConfigSecretsModule, MerkleStoreModule, GraphModule, SecureTableProvision, RateLimitMetersModule, InvitesModule, DatabaseProvisionModule, RealtimeModule, WebauthnAuthModule, NamespaceModule, ComputeLogModule, InferenceLogModule, StorageLogModule, TransferLogModule, PlansModule, DbUsageModule, NotificationsModule, BillingProviderModule, FunctionModule, HierarchyModule, ProfilesModule, PermissionsModule, BillingModule, RelationProvision, UserAuthModule, AgentModule, LimitsModule, MembershipsModule, StorageModule, EntityTypeProvision, EventsModule
  *
  * Usage:
  *
diff --git a/sdk/constructive-react/src/modules/hooks/invalidation.ts b/sdk/constructive-react/src/modules/hooks/invalidation.ts
index 73db5d073..ebc73ad7c 100644
--- a/sdk/constructive-react/src/modules/hooks/invalidation.ts
+++ b/sdk/constructive-react/src/modules/hooks/invalidation.ts
@@ -39,38 +39,38 @@ import {
   blueprintTemplateKeys,
   blueprintConstructionKeys,
   cryptoAuthModuleKeys,
-  rateLimitMetersModuleKeys,
   sessionsModuleKeys,
   configSecretsModuleKeys,
   merkleStoreModuleKeys,
   graphModuleKeys,
   secureTableProvisionKeys,
+  rateLimitMetersModuleKeys,
   invitesModuleKeys,
   databaseProvisionModuleKeys,
-  namespaceModuleKeys,
   realtimeModuleKeys,
   webauthnAuthModuleKeys,
+  namespaceModuleKeys,
   computeLogModuleKeys,
   inferenceLogModuleKeys,
   storageLogModuleKeys,
   transferLogModuleKeys,
+  plansModuleKeys,
   dbUsageModuleKeys,
   notificationsModuleKeys,
-  plansModuleKeys,
-  hierarchyModuleKeys,
-  billingModuleKeys,
   billingProviderModuleKeys,
+  functionModuleKeys,
+  hierarchyModuleKeys,
   profilesModuleKeys,
   permissionsModuleKeys,
+  billingModuleKeys,
   relationProvisionKeys,
-  functionModuleKeys,
   userAuthModuleKeys,
   agentModuleKeys,
   limitsModuleKeys,
   membershipsModuleKeys,
   storageModuleKeys,
-  eventsModuleKeys,
   entityTypeProvisionKeys,
+  eventsModuleKeys,
 } from './query-keys';
 /**
 // ============================================================================
@@ -500,23 +500,6 @@ export const invalidate = {
         queryKey: cryptoAuthModuleKeys.detail(id),
       }),
   },
-  /** Invalidate rateLimitMetersModule queries */ rateLimitMetersModule: {
-    /** Invalidate all rateLimitMetersModule queries */ all: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: rateLimitMetersModuleKeys.all,
-      }),
-    /** Invalidate rateLimitMetersModule list queries */ lists: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: rateLimitMetersModuleKeys.lists(),
-      }),
-    /** Invalidate a specific rateLimitMetersModule */ detail: (
-      queryClient: QueryClient,
-      id: string | number
-    ) =>
-      queryClient.invalidateQueries({
-        queryKey: rateLimitMetersModuleKeys.detail(id),
-      }),
-  },
   /** Invalidate sessionsModule queries */ sessionsModule: {
     /** Invalidate all sessionsModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -602,6 +585,23 @@ export const invalidate = {
         queryKey: secureTableProvisionKeys.detail(id),
       }),
   },
+  /** Invalidate rateLimitMetersModule queries */ rateLimitMetersModule: {
+    /** Invalidate all rateLimitMetersModule queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: rateLimitMetersModuleKeys.all,
+      }),
+    /** Invalidate rateLimitMetersModule list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: rateLimitMetersModuleKeys.lists(),
+      }),
+    /** Invalidate a specific rateLimitMetersModule */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: rateLimitMetersModuleKeys.detail(id),
+      }),
+  },
   /** Invalidate invitesModule queries */ invitesModule: {
     /** Invalidate all invitesModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -636,23 +636,6 @@ export const invalidate = {
         queryKey: databaseProvisionModuleKeys.detail(id),
       }),
   },
-  /** Invalidate namespaceModule queries */ namespaceModule: {
-    /** Invalidate all namespaceModule queries */ all: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: namespaceModuleKeys.all,
-      }),
-    /** Invalidate namespaceModule list queries */ lists: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: namespaceModuleKeys.lists(),
-      }),
-    /** Invalidate a specific namespaceModule */ detail: (
-      queryClient: QueryClient,
-      id: string | number
-    ) =>
-      queryClient.invalidateQueries({
-        queryKey: namespaceModuleKeys.detail(id),
-      }),
-  },
   /** Invalidate realtimeModule queries */ realtimeModule: {
     /** Invalidate all realtimeModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -687,6 +670,23 @@ export const invalidate = {
         queryKey: webauthnAuthModuleKeys.detail(id),
       }),
   },
+  /** Invalidate namespaceModule queries */ namespaceModule: {
+    /** Invalidate all namespaceModule queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: namespaceModuleKeys.all,
+      }),
+    /** Invalidate namespaceModule list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: namespaceModuleKeys.lists(),
+      }),
+    /** Invalidate a specific namespaceModule */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: namespaceModuleKeys.detail(id),
+      }),
+  },
   /** Invalidate computeLogModule queries */ computeLogModule: {
     /** Invalidate all computeLogModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -755,6 +755,23 @@ export const invalidate = {
         queryKey: transferLogModuleKeys.detail(id),
       }),
   },
+  /** Invalidate plansModule queries */ plansModule: {
+    /** Invalidate all plansModule queries */ all: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: plansModuleKeys.all,
+      }),
+    /** Invalidate plansModule list queries */ lists: (queryClient: QueryClient) =>
+      queryClient.invalidateQueries({
+        queryKey: plansModuleKeys.lists(),
+      }),
+    /** Invalidate a specific plansModule */ detail: (
+      queryClient: QueryClient,
+      id: string | number
+    ) =>
+      queryClient.invalidateQueries({
+        queryKey: plansModuleKeys.detail(id),
+      }),
+  },
   /** Invalidate dbUsageModule queries */ dbUsageModule: {
     /** Invalidate all dbUsageModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
@@ -789,72 +806,55 @@ export const invalidate = {
         queryKey: notificationsModuleKeys.detail(id),
       }),
   },
-  /** Invalidate plansModule queries */ plansModule: {
-    /** Invalidate all plansModule queries */ all: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: plansModuleKeys.all,
-      }),
-    /** Invalidate plansModule list queries */ lists: (queryClient: QueryClient) =>
-      queryClient.invalidateQueries({
-        queryKey: plansModuleKeys.lists(),
-      }),
-    /** Invalidate a specific plansModule */ detail: (
-      queryClient: QueryClient,
-      id: string | number
-    ) =>
-      queryClient.invalidateQueries({
-        queryKey: plansModuleKeys.detail(id),
-      }),
-  },
-  /** Invalidate hierarchyModule queries */ hierarchyModule: {
-    /** Invalidate all hierarchyModule queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate billingProviderModule queries */ billingProviderModule: {
+    /** Invalidate all billingProviderModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: hierarchyModuleKeys.all,
+        queryKey: billingProviderModuleKeys.all,
       }),
-    /** Invalidate hierarchyModule list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate billingProviderModule list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: hierarchyModuleKeys.lists(),
+        queryKey: billingProviderModuleKeys.lists(),
       }),
-    /** Invalidate a specific hierarchyModule */ detail: (
+    /** Invalidate a specific billingProviderModule */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: hierarchyModuleKeys.detail(id),
+        queryKey: billingProviderModuleKeys.detail(id),
       }),
   },
-  /** Invalidate billingModule queries */ billingModule: {
-    /** Invalidate all billingModule queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate functionModule queries */ functionModule: {
+    /** Invalidate all functionModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: billingModuleKeys.all,
+        queryKey: functionModuleKeys.all,
       }),
-    /** Invalidate billingModule list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate functionModule list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: billingModuleKeys.lists(),
+        queryKey: functionModuleKeys.lists(),
       }),
-    /** Invalidate a specific billingModule */ detail: (
+    /** Invalidate a specific functionModule */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: billingModuleKeys.detail(id),
+        queryKey: functionModuleKeys.detail(id),
       }),
   },
-  /** Invalidate billingProviderModule queries */ billingProviderModule: {
-    /** Invalidate all billingProviderModule queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate hierarchyModule queries */ hierarchyModule: {
+    /** Invalidate all hierarchyModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: billingProviderModuleKeys.all,
+        queryKey: hierarchyModuleKeys.all,
       }),
-    /** Invalidate billingProviderModule list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate hierarchyModule list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: billingProviderModuleKeys.lists(),
+        queryKey: hierarchyModuleKeys.lists(),
       }),
-    /** Invalidate a specific billingProviderModule */ detail: (
+    /** Invalidate a specific hierarchyModule */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: billingProviderModuleKeys.detail(id),
+        queryKey: hierarchyModuleKeys.detail(id),
       }),
   },
   /** Invalidate profilesModule queries */ profilesModule: {
@@ -891,38 +891,38 @@ export const invalidate = {
         queryKey: permissionsModuleKeys.detail(id),
       }),
   },
-  /** Invalidate relationProvision queries */ relationProvision: {
-    /** Invalidate all relationProvision queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate billingModule queries */ billingModule: {
+    /** Invalidate all billingModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: relationProvisionKeys.all,
+        queryKey: billingModuleKeys.all,
       }),
-    /** Invalidate relationProvision list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate billingModule list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: relationProvisionKeys.lists(),
+        queryKey: billingModuleKeys.lists(),
       }),
-    /** Invalidate a specific relationProvision */ detail: (
+    /** Invalidate a specific billingModule */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: relationProvisionKeys.detail(id),
+        queryKey: billingModuleKeys.detail(id),
       }),
   },
-  /** Invalidate functionModule queries */ functionModule: {
-    /** Invalidate all functionModule queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate relationProvision queries */ relationProvision: {
+    /** Invalidate all relationProvision queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: functionModuleKeys.all,
+        queryKey: relationProvisionKeys.all,
       }),
-    /** Invalidate functionModule list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate relationProvision list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: functionModuleKeys.lists(),
+        queryKey: relationProvisionKeys.lists(),
       }),
-    /** Invalidate a specific functionModule */ detail: (
+    /** Invalidate a specific relationProvision */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: functionModuleKeys.detail(id),
+        queryKey: relationProvisionKeys.detail(id),
       }),
   },
   /** Invalidate userAuthModule queries */ userAuthModule: {
@@ -1010,38 +1010,38 @@ export const invalidate = {
         queryKey: storageModuleKeys.detail(id),
       }),
   },
-  /** Invalidate eventsModule queries */ eventsModule: {
-    /** Invalidate all eventsModule queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate entityTypeProvision queries */ entityTypeProvision: {
+    /** Invalidate all entityTypeProvision queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: eventsModuleKeys.all,
+        queryKey: entityTypeProvisionKeys.all,
       }),
-    /** Invalidate eventsModule list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate entityTypeProvision list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: eventsModuleKeys.lists(),
+        queryKey: entityTypeProvisionKeys.lists(),
       }),
-    /** Invalidate a specific eventsModule */ detail: (
+    /** Invalidate a specific entityTypeProvision */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: eventsModuleKeys.detail(id),
+        queryKey: entityTypeProvisionKeys.detail(id),
       }),
   },
-  /** Invalidate entityTypeProvision queries */ entityTypeProvision: {
-    /** Invalidate all entityTypeProvision queries */ all: (queryClient: QueryClient) =>
+  /** Invalidate eventsModule queries */ eventsModule: {
+    /** Invalidate all eventsModule queries */ all: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: entityTypeProvisionKeys.all,
+        queryKey: eventsModuleKeys.all,
       }),
-    /** Invalidate entityTypeProvision list queries */ lists: (queryClient: QueryClient) =>
+    /** Invalidate eventsModule list queries */ lists: (queryClient: QueryClient) =>
       queryClient.invalidateQueries({
-        queryKey: entityTypeProvisionKeys.lists(),
+        queryKey: eventsModuleKeys.lists(),
       }),
-    /** Invalidate a specific entityTypeProvision */ detail: (
+    /** Invalidate a specific eventsModule */ detail: (
       queryClient: QueryClient,
       id: string | number
     ) =>
       queryClient.invalidateQueries({
-        queryKey: entityTypeProvisionKeys.detail(id),
+        queryKey: eventsModuleKeys.detail(id),
       }),
   },
 } as const;
@@ -1243,14 +1243,6 @@ export const remove = {
       queryKey: cryptoAuthModuleKeys.detail(id),
     });
   },
-  /** Remove rateLimitMetersModule from cache */ rateLimitMetersModule: (
-    queryClient: QueryClient,
-    id: string | number
-  ) => {
-    queryClient.removeQueries({
-      queryKey: rateLimitMetersModuleKeys.detail(id),
-    });
-  },
   /** Remove sessionsModule from cache */ sessionsModule: (
     queryClient: QueryClient,
     id: string | number
@@ -1291,28 +1283,28 @@ export const remove = {
       queryKey: secureTableProvisionKeys.detail(id),
     });
   },
-  /** Remove invitesModule from cache */ invitesModule: (
+  /** Remove rateLimitMetersModule from cache */ rateLimitMetersModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: invitesModuleKeys.detail(id),
+      queryKey: rateLimitMetersModuleKeys.detail(id),
     });
   },
-  /** Remove databaseProvisionModule from cache */ databaseProvisionModule: (
+  /** Remove invitesModule from cache */ invitesModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: databaseProvisionModuleKeys.detail(id),
+      queryKey: invitesModuleKeys.detail(id),
     });
   },
-  /** Remove namespaceModule from cache */ namespaceModule: (
+  /** Remove databaseProvisionModule from cache */ databaseProvisionModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: namespaceModuleKeys.detail(id),
+      queryKey: databaseProvisionModuleKeys.detail(id),
     });
   },
   /** Remove realtimeModule from cache */ realtimeModule: (
@@ -1331,6 +1323,14 @@ export const remove = {
       queryKey: webauthnAuthModuleKeys.detail(id),
     });
   },
+  /** Remove namespaceModule from cache */ namespaceModule: (
+    queryClient: QueryClient,
+    id: string | number
+  ) => {
+    queryClient.removeQueries({
+      queryKey: namespaceModuleKeys.detail(id),
+    });
+  },
   /** Remove computeLogModule from cache */ computeLogModule: (
     queryClient: QueryClient,
     id: string | number
@@ -1363,52 +1363,52 @@ export const remove = {
       queryKey: transferLogModuleKeys.detail(id),
     });
   },
-  /** Remove dbUsageModule from cache */ dbUsageModule: (
+  /** Remove plansModule from cache */ plansModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: dbUsageModuleKeys.detail(id),
+      queryKey: plansModuleKeys.detail(id),
     });
   },
-  /** Remove notificationsModule from cache */ notificationsModule: (
+  /** Remove dbUsageModule from cache */ dbUsageModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: notificationsModuleKeys.detail(id),
+      queryKey: dbUsageModuleKeys.detail(id),
     });
   },
-  /** Remove plansModule from cache */ plansModule: (
+  /** Remove notificationsModule from cache */ notificationsModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: plansModuleKeys.detail(id),
+      queryKey: notificationsModuleKeys.detail(id),
     });
   },
-  /** Remove hierarchyModule from cache */ hierarchyModule: (
+  /** Remove billingProviderModule from cache */ billingProviderModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: hierarchyModuleKeys.detail(id),
+      queryKey: billingProviderModuleKeys.detail(id),
     });
   },
-  /** Remove billingModule from cache */ billingModule: (
+  /** Remove functionModule from cache */ functionModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: billingModuleKeys.detail(id),
+      queryKey: functionModuleKeys.detail(id),
     });
   },
-  /** Remove billingProviderModule from cache */ billingProviderModule: (
+  /** Remove hierarchyModule from cache */ hierarchyModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: billingProviderModuleKeys.detail(id),
+      queryKey: hierarchyModuleKeys.detail(id),
     });
   },
   /** Remove profilesModule from cache */ profilesModule: (
@@ -1427,20 +1427,20 @@ export const remove = {
       queryKey: permissionsModuleKeys.detail(id),
     });
   },
-  /** Remove relationProvision from cache */ relationProvision: (
+  /** Remove billingModule from cache */ billingModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: relationProvisionKeys.detail(id),
+      queryKey: billingModuleKeys.detail(id),
     });
   },
-  /** Remove functionModule from cache */ functionModule: (
+  /** Remove relationProvision from cache */ relationProvision: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: functionModuleKeys.detail(id),
+      queryKey: relationProvisionKeys.detail(id),
     });
   },
   /** Remove userAuthModule from cache */ userAuthModule: (
@@ -1483,20 +1483,20 @@ export const remove = {
       queryKey: storageModuleKeys.detail(id),
     });
   },
-  /** Remove eventsModule from cache */ eventsModule: (
+  /** Remove entityTypeProvision from cache */ entityTypeProvision: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: eventsModuleKeys.detail(id),
+      queryKey: entityTypeProvisionKeys.detail(id),
     });
   },
-  /** Remove entityTypeProvision from cache */ entityTypeProvision: (
+  /** Remove eventsModule from cache */ eventsModule: (
     queryClient: QueryClient,
     id: string | number
   ) => {
     queryClient.removeQueries({
-      queryKey: entityTypeProvisionKeys.detail(id),
+      queryKey: eventsModuleKeys.detail(id),
     });
   },
 } as const;
diff --git a/sdk/constructive-react/src/modules/hooks/mutation-keys.ts b/sdk/constructive-react/src/modules/hooks/mutation-keys.ts
index 7c1a1f3bc..6eb91b5c9 100644
--- a/sdk/constructive-react/src/modules/hooks/mutation-keys.ts
+++ b/sdk/constructive-react/src/modules/hooks/mutation-keys.ts
@@ -261,18 +261,6 @@ export const cryptoAuthModuleMutationKeys = {
   /** Delete cryptoAuthModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'cryptoauthmodule', 'delete', id] as const,
 } as const;
-export const rateLimitMetersModuleMutationKeys = {
-  /** All rateLimitMetersModule mutation keys */ all: [
-    'mutation',
-    'ratelimitmetersmodule',
-  ] as const,
-  /** Create rateLimitMetersModule mutation key */ create: () =>
-    ['mutation', 'ratelimitmetersmodule', 'create'] as const,
-  /** Update rateLimitMetersModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'ratelimitmetersmodule', 'update', id] as const,
-  /** Delete rateLimitMetersModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'ratelimitmetersmodule', 'delete', id] as const,
-} as const;
 export const sessionsModuleMutationKeys = {
   /** All sessionsModule mutation keys */ all: ['mutation', 'sessionsmodule'] as const,
   /** Create sessionsModule mutation key */ create: () =>
@@ -318,6 +306,18 @@ export const secureTableProvisionMutationKeys = {
   /** Delete secureTableProvision mutation key */ delete: (id: string | number) =>
     ['mutation', 'securetableprovision', 'delete', id] as const,
 } as const;
+export const rateLimitMetersModuleMutationKeys = {
+  /** All rateLimitMetersModule mutation keys */ all: [
+    'mutation',
+    'ratelimitmetersmodule',
+  ] as const,
+  /** Create rateLimitMetersModule mutation key */ create: () =>
+    ['mutation', 'ratelimitmetersmodule', 'create'] as const,
+  /** Update rateLimitMetersModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'ratelimitmetersmodule', 'update', id] as const,
+  /** Delete rateLimitMetersModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'ratelimitmetersmodule', 'delete', id] as const,
+} as const;
 export const invitesModuleMutationKeys = {
   /** All invitesModule mutation keys */ all: ['mutation', 'invitesmodule'] as const,
   /** Create invitesModule mutation key */ create: () =>
@@ -339,15 +339,6 @@ export const databaseProvisionModuleMutationKeys = {
   /** Delete databaseProvisionModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'databaseprovisionmodule', 'delete', id] as const,
 } as const;
-export const namespaceModuleMutationKeys = {
-  /** All namespaceModule mutation keys */ all: ['mutation', 'namespacemodule'] as const,
-  /** Create namespaceModule mutation key */ create: () =>
-    ['mutation', 'namespacemodule', 'create'] as const,
-  /** Update namespaceModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'namespacemodule', 'update', id] as const,
-  /** Delete namespaceModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'namespacemodule', 'delete', id] as const,
-} as const;
 export const realtimeModuleMutationKeys = {
   /** All realtimeModule mutation keys */ all: ['mutation', 'realtimemodule'] as const,
   /** Create realtimeModule mutation key */ create: () =>
@@ -366,6 +357,15 @@ export const webauthnAuthModuleMutationKeys = {
   /** Delete webauthnAuthModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'webauthnauthmodule', 'delete', id] as const,
 } as const;
+export const namespaceModuleMutationKeys = {
+  /** All namespaceModule mutation keys */ all: ['mutation', 'namespacemodule'] as const,
+  /** Create namespaceModule mutation key */ create: () =>
+    ['mutation', 'namespacemodule', 'create'] as const,
+  /** Update namespaceModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'namespacemodule', 'update', id] as const,
+  /** Delete namespaceModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'namespacemodule', 'delete', id] as const,
+} as const;
 export const computeLogModuleMutationKeys = {
   /** All computeLogModule mutation keys */ all: ['mutation', 'computelogmodule'] as const,
   /** Create computeLogModule mutation key */ create: () =>
@@ -402,6 +402,15 @@ export const transferLogModuleMutationKeys = {
   /** Delete transferLogModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'transferlogmodule', 'delete', id] as const,
 } as const;
+export const plansModuleMutationKeys = {
+  /** All plansModule mutation keys */ all: ['mutation', 'plansmodule'] as const,
+  /** Create plansModule mutation key */ create: () =>
+    ['mutation', 'plansmodule', 'create'] as const,
+  /** Update plansModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'plansmodule', 'update', id] as const,
+  /** Delete plansModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'plansmodule', 'delete', id] as const,
+} as const;
 export const dbUsageModuleMutationKeys = {
   /** All dbUsageModule mutation keys */ all: ['mutation', 'dbusagemodule'] as const,
   /** Create dbUsageModule mutation key */ create: () =>
@@ -420,33 +429,6 @@ export const notificationsModuleMutationKeys = {
   /** Delete notificationsModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'notificationsmodule', 'delete', id] as const,
 } as const;
-export const plansModuleMutationKeys = {
-  /** All plansModule mutation keys */ all: ['mutation', 'plansmodule'] as const,
-  /** Create plansModule mutation key */ create: () =>
-    ['mutation', 'plansmodule', 'create'] as const,
-  /** Update plansModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'plansmodule', 'update', id] as const,
-  /** Delete plansModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'plansmodule', 'delete', id] as const,
-} as const;
-export const hierarchyModuleMutationKeys = {
-  /** All hierarchyModule mutation keys */ all: ['mutation', 'hierarchymodule'] as const,
-  /** Create hierarchyModule mutation key */ create: () =>
-    ['mutation', 'hierarchymodule', 'create'] as const,
-  /** Update hierarchyModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'hierarchymodule', 'update', id] as const,
-  /** Delete hierarchyModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'hierarchymodule', 'delete', id] as const,
-} as const;
-export const billingModuleMutationKeys = {
-  /** All billingModule mutation keys */ all: ['mutation', 'billingmodule'] as const,
-  /** Create billingModule mutation key */ create: () =>
-    ['mutation', 'billingmodule', 'create'] as const,
-  /** Update billingModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'billingmodule', 'update', id] as const,
-  /** Delete billingModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'billingmodule', 'delete', id] as const,
-} as const;
 export const billingProviderModuleMutationKeys = {
   /** All billingProviderModule mutation keys */ all: [
     'mutation',
@@ -459,6 +441,24 @@ export const billingProviderModuleMutationKeys = {
   /** Delete billingProviderModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'billingprovidermodule', 'delete', id] as const,
 } as const;
+export const functionModuleMutationKeys = {
+  /** All functionModule mutation keys */ all: ['mutation', 'functionmodule'] as const,
+  /** Create functionModule mutation key */ create: () =>
+    ['mutation', 'functionmodule', 'create'] as const,
+  /** Update functionModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'functionmodule', 'update', id] as const,
+  /** Delete functionModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'functionmodule', 'delete', id] as const,
+} as const;
+export const hierarchyModuleMutationKeys = {
+  /** All hierarchyModule mutation keys */ all: ['mutation', 'hierarchymodule'] as const,
+  /** Create hierarchyModule mutation key */ create: () =>
+    ['mutation', 'hierarchymodule', 'create'] as const,
+  /** Update hierarchyModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'hierarchymodule', 'update', id] as const,
+  /** Delete hierarchyModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'hierarchymodule', 'delete', id] as const,
+} as const;
 export const profilesModuleMutationKeys = {
   /** All profilesModule mutation keys */ all: ['mutation', 'profilesmodule'] as const,
   /** Create profilesModule mutation key */ create: () =>
@@ -477,6 +477,15 @@ export const permissionsModuleMutationKeys = {
   /** Delete permissionsModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'permissionsmodule', 'delete', id] as const,
 } as const;
+export const billingModuleMutationKeys = {
+  /** All billingModule mutation keys */ all: ['mutation', 'billingmodule'] as const,
+  /** Create billingModule mutation key */ create: () =>
+    ['mutation', 'billingmodule', 'create'] as const,
+  /** Update billingModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'billingmodule', 'update', id] as const,
+  /** Delete billingModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'billingmodule', 'delete', id] as const,
+} as const;
 export const relationProvisionMutationKeys = {
   /** All relationProvision mutation keys */ all: ['mutation', 'relationprovision'] as const,
   /** Create relationProvision mutation key */ create: () =>
@@ -486,15 +495,6 @@ export const relationProvisionMutationKeys = {
   /** Delete relationProvision mutation key */ delete: (id: string | number) =>
     ['mutation', 'relationprovision', 'delete', id] as const,
 } as const;
-export const functionModuleMutationKeys = {
-  /** All functionModule mutation keys */ all: ['mutation', 'functionmodule'] as const,
-  /** Create functionModule mutation key */ create: () =>
-    ['mutation', 'functionmodule', 'create'] as const,
-  /** Update functionModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'functionmodule', 'update', id] as const,
-  /** Delete functionModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'functionmodule', 'delete', id] as const,
-} as const;
 export const userAuthModuleMutationKeys = {
   /** All userAuthModule mutation keys */ all: ['mutation', 'userauthmodule'] as const,
   /** Create userAuthModule mutation key */ create: () =>
@@ -540,15 +540,6 @@ export const storageModuleMutationKeys = {
   /** Delete storageModule mutation key */ delete: (id: string | number) =>
     ['mutation', 'storagemodule', 'delete', id] as const,
 } as const;
-export const eventsModuleMutationKeys = {
-  /** All eventsModule mutation keys */ all: ['mutation', 'eventsmodule'] as const,
-  /** Create eventsModule mutation key */ create: () =>
-    ['mutation', 'eventsmodule', 'create'] as const,
-  /** Update eventsModule mutation key */ update: (id: string | number) =>
-    ['mutation', 'eventsmodule', 'update', id] as const,
-  /** Delete eventsModule mutation key */ delete: (id: string | number) =>
-    ['mutation', 'eventsmodule', 'delete', id] as const,
-} as const;
 export const entityTypeProvisionMutationKeys = {
   /** All entityTypeProvision mutation keys */ all: ['mutation', 'entitytypeprovision'] as const,
   /** Create entityTypeProvision mutation key */ create: () =>
@@ -558,6 +549,15 @@ export const entityTypeProvisionMutationKeys = {
   /** Delete entityTypeProvision mutation key */ delete: (id: string | number) =>
     ['mutation', 'entitytypeprovision', 'delete', id] as const,
 } as const;
+export const eventsModuleMutationKeys = {
+  /** All eventsModule mutation keys */ all: ['mutation', 'eventsmodule'] as const,
+  /** Create eventsModule mutation key */ create: () =>
+    ['mutation', 'eventsmodule', 'create'] as const,
+  /** Update eventsModule mutation key */ update: (id: string | number) =>
+    ['mutation', 'eventsmodule', 'update', id] as const,
+  /** Delete eventsModule mutation key */ delete: (id: string | number) =>
+    ['mutation', 'eventsmodule', 'delete', id] as const,
+} as const;
 
 // ============================================================================
 // Custom Mutation Keys
@@ -658,37 +658,37 @@ export const mutationKeys = {
   blueprintTemplate: blueprintTemplateMutationKeys,
   blueprintConstruction: blueprintConstructionMutationKeys,
   cryptoAuthModule: cryptoAuthModuleMutationKeys,
-  rateLimitMetersModule: rateLimitMetersModuleMutationKeys,
   sessionsModule: sessionsModuleMutationKeys,
   configSecretsModule: configSecretsModuleMutationKeys,
   merkleStoreModule: merkleStoreModuleMutationKeys,
   graphModule: graphModuleMutationKeys,
   secureTableProvision: secureTableProvisionMutationKeys,
+  rateLimitMetersModule: rateLimitMetersModuleMutationKeys,
   invitesModule: invitesModuleMutationKeys,
   databaseProvisionModule: databaseProvisionModuleMutationKeys,
-  namespaceModule: namespaceModuleMutationKeys,
   realtimeModule: realtimeModuleMutationKeys,
   webauthnAuthModule: webauthnAuthModuleMutationKeys,
+  namespaceModule: namespaceModuleMutationKeys,
   computeLogModule: computeLogModuleMutationKeys,
   inferenceLogModule: inferenceLogModuleMutationKeys,
   storageLogModule: storageLogModuleMutationKeys,
   transferLogModule: transferLogModuleMutationKeys,
+  plansModule: plansModuleMutationKeys,
   dbUsageModule: dbUsageModuleMutationKeys,
   notificationsModule: notificationsModuleMutationKeys,
-  plansModule: plansModuleMutationKeys,
-  hierarchyModule: hierarchyModuleMutationKeys,
-  billingModule: billingModuleMutationKeys,
   billingProviderModule: billingProviderModuleMutationKeys,
+  functionModule: functionModuleMutationKeys,
+  hierarchyModule: hierarchyModuleMutationKeys,
   profilesModule: profilesModuleMutationKeys,
   permissionsModule: permissionsModuleMutationKeys,
+  billingModule: billingModuleMutationKeys,
   relationProvision: relationProvisionMutationKeys,
-  functionModule: functionModuleMutationKeys,
   userAuthModule: userAuthModuleMutationKeys,
   agentModule: agentModuleMutationKeys,
   limitsModule: limitsModuleMutationKeys,
   membershipsModule: membershipsModuleMutationKeys,
   storageModule: storageModuleMutationKeys,
-  eventsModule: eventsModuleMutationKeys,
   entityTypeProvision: entityTypeProvisionMutationKeys,
+  eventsModule: eventsModuleMutationKeys,
   custom: customMutationKeys,
 } as const;
diff --git a/sdk/constructive-react/src/modules/hooks/mutations/index.ts b/sdk/constructive-react/src/modules/hooks/mutations/index.ts
index 1c16e1468..585505d44 100644
--- a/sdk/constructive-react/src/modules/hooks/mutations/index.ts
+++ b/sdk/constructive-react/src/modules/hooks/mutations/index.ts
@@ -75,9 +75,6 @@ export * from './useDeleteBlueprintConstructionMutation';
 export * from './useCreateCryptoAuthModuleMutation';
 export * from './useUpdateCryptoAuthModuleMutation';
 export * from './useDeleteCryptoAuthModuleMutation';
-export * from './useCreateRateLimitMetersModuleMutation';
-export * from './useUpdateRateLimitMetersModuleMutation';
-export * from './useDeleteRateLimitMetersModuleMutation';
 export * from './useCreateSessionsModuleMutation';
 export * from './useUpdateSessionsModuleMutation';
 export * from './useDeleteSessionsModuleMutation';
@@ -93,21 +90,24 @@ export * from './useDeleteGraphModuleMutation';
 export * from './useCreateSecureTableProvisionMutation';
 export * from './useUpdateSecureTableProvisionMutation';
 export * from './useDeleteSecureTableProvisionMutation';
+export * from './useCreateRateLimitMetersModuleMutation';
+export * from './useUpdateRateLimitMetersModuleMutation';
+export * from './useDeleteRateLimitMetersModuleMutation';
 export * from './useCreateInvitesModuleMutation';
 export * from './useUpdateInvitesModuleMutation';
 export * from './useDeleteInvitesModuleMutation';
 export * from './useCreateDatabaseProvisionModuleMutation';
 export * from './useUpdateDatabaseProvisionModuleMutation';
 export * from './useDeleteDatabaseProvisionModuleMutation';
-export * from './useCreateNamespaceModuleMutation';
-export * from './useUpdateNamespaceModuleMutation';
-export * from './useDeleteNamespaceModuleMutation';
 export * from './useCreateRealtimeModuleMutation';
 export * from './useUpdateRealtimeModuleMutation';
 export * from './useDeleteRealtimeModuleMutation';
 export * from './useCreateWebauthnAuthModuleMutation';
 export * from './useUpdateWebauthnAuthModuleMutation';
 export * from './useDeleteWebauthnAuthModuleMutation';
+export * from './useCreateNamespaceModuleMutation';
+export * from './useUpdateNamespaceModuleMutation';
+export * from './useDeleteNamespaceModuleMutation';
 export * from './useCreateComputeLogModuleMutation';
 export * from './useUpdateComputeLogModuleMutation';
 export * from './useDeleteComputeLogModuleMutation';
@@ -120,36 +120,36 @@ export * from './useDeleteStorageLogModuleMutation';
 export * from './useCreateTransferLogModuleMutation';
 export * from './useUpdateTransferLogModuleMutation';
 export * from './useDeleteTransferLogModuleMutation';
+export * from './useCreatePlansModuleMutation';
+export * from './useUpdatePlansModuleMutation';
+export * from './useDeletePlansModuleMutation';
 export * from './useCreateDbUsageModuleMutation';
 export * from './useUpdateDbUsageModuleMutation';
 export * from './useDeleteDbUsageModuleMutation';
 export * from './useCreateNotificationsModuleMutation';
 export * from './useUpdateNotificationsModuleMutation';
 export * from './useDeleteNotificationsModuleMutation';
-export * from './useCreatePlansModuleMutation';
-export * from './useUpdatePlansModuleMutation';
-export * from './useDeletePlansModuleMutation';
-export * from './useCreateHierarchyModuleMutation';
-export * from './useUpdateHierarchyModuleMutation';
-export * from './useDeleteHierarchyModuleMutation';
-export * from './useCreateBillingModuleMutation';
-export * from './useUpdateBillingModuleMutation';
-export * from './useDeleteBillingModuleMutation';
 export * from './useCreateBillingProviderModuleMutation';
 export * from './useUpdateBillingProviderModuleMutation';
 export * from './useDeleteBillingProviderModuleMutation';
+export * from './useCreateFunctionModuleMutation';
+export * from './useUpdateFunctionModuleMutation';
+export * from './useDeleteFunctionModuleMutation';
+export * from './useCreateHierarchyModuleMutation';
+export * from './useUpdateHierarchyModuleMutation';
+export * from './useDeleteHierarchyModuleMutation';
 export * from './useCreateProfilesModuleMutation';
 export * from './useUpdateProfilesModuleMutation';
 export * from './useDeleteProfilesModuleMutation';
 export * from './useCreatePermissionsModuleMutation';
 export * from './useUpdatePermissionsModuleMutation';
 export * from './useDeletePermissionsModuleMutation';
+export * from './useCreateBillingModuleMutation';
+export * from './useUpdateBillingModuleMutation';
+export * from './useDeleteBillingModuleMutation';
 export * from './useCreateRelationProvisionMutation';
 export * from './useUpdateRelationProvisionMutation';
 export * from './useDeleteRelationProvisionMutation';
-export * from './useCreateFunctionModuleMutation';
-export * from './useUpdateFunctionModuleMutation';
-export * from './useDeleteFunctionModuleMutation';
 export * from './useCreateUserAuthModuleMutation';
 export * from './useUpdateUserAuthModuleMutation';
 export * from './useDeleteUserAuthModuleMutation';
@@ -165,12 +165,12 @@ export * from './useDeleteMembershipsModuleMutation';
 export * from './useCreateStorageModuleMutation';
 export * from './useUpdateStorageModuleMutation';
 export * from './useDeleteStorageModuleMutation';
-export * from './useCreateEventsModuleMutation';
-export * from './useUpdateEventsModuleMutation';
-export * from './useDeleteEventsModuleMutation';
 export * from './useCreateEntityTypeProvisionMutation';
 export * from './useUpdateEntityTypeProvisionMutation';
 export * from './useDeleteEntityTypeProvisionMutation';
+export * from './useCreateEventsModuleMutation';
+export * from './useUpdateEventsModuleMutation';
+export * from './useDeleteEventsModuleMutation';
 export * from './useConstructBlueprintMutation';
 export * from './useProvisionFullTextSearchMutation';
 export * from './useProvisionIndexMutation';
diff --git a/sdk/constructive-react/src/modules/hooks/queries/index.ts b/sdk/constructive-react/src/modules/hooks/queries/index.ts
index 07ebba194..ac1c07ba7 100644
--- a/sdk/constructive-react/src/modules/hooks/queries/index.ts
+++ b/sdk/constructive-react/src/modules/hooks/queries/index.ts
@@ -51,8 +51,6 @@ export * from './useBlueprintConstructionsQuery';
 export * from './useBlueprintConstructionQuery';
 export * from './useCryptoAuthModulesQuery';
 export * from './useCryptoAuthModuleQuery';
-export * from './useRateLimitMetersModulesQuery';
-export * from './useRateLimitMetersModuleQuery';
 export * from './useSessionsModulesQuery';
 export * from './useSessionsModuleQuery';
 export * from './useConfigSecretsModulesQuery';
@@ -63,16 +61,18 @@ export * from './useGraphModulesQuery';
 export * from './useGraphModuleQuery';
 export * from './useSecureTableProvisionsQuery';
 export * from './useSecureTableProvisionQuery';
+export * from './useRateLimitMetersModulesQuery';
+export * from './useRateLimitMetersModuleQuery';
 export * from './useInvitesModulesQuery';
 export * from './useInvitesModuleQuery';
 export * from './useDatabaseProvisionModulesQuery';
 export * from './useDatabaseProvisionModuleQuery';
-export * from './useNamespaceModulesQuery';
-export * from './useNamespaceModuleQuery';
 export * from './useRealtimeModulesQuery';
 export * from './useRealtimeModuleQuery';
 export * from './useWebauthnAuthModulesQuery';
 export * from './useWebauthnAuthModuleQuery';
+export * from './useNamespaceModulesQuery';
+export * from './useNamespaceModuleQuery';
 export * from './useComputeLogModulesQuery';
 export * from './useComputeLogModuleQuery';
 export * from './useInferenceLogModulesQuery';
@@ -81,26 +81,26 @@ export * from './useStorageLogModulesQuery';
 export * from './useStorageLogModuleQuery';
 export * from './useTransferLogModulesQuery';
 export * from './useTransferLogModuleQuery';
+export * from './usePlansModulesQuery';
+export * from './usePlansModuleQuery';
 export * from './useDbUsageModulesQuery';
 export * from './useDbUsageModuleQuery';
 export * from './useNotificationsModulesQuery';
 export * from './useNotificationsModuleQuery';
-export * from './usePlansModulesQuery';
-export * from './usePlansModuleQuery';
-export * from './useHierarchyModulesQuery';
-export * from './useHierarchyModuleQuery';
-export * from './useBillingModulesQuery';
-export * from './useBillingModuleQuery';
 export * from './useBillingProviderModulesQuery';
 export * from './useBillingProviderModuleQuery';
+export * from './useFunctionModulesQuery';
+export * from './useFunctionModuleQuery';
+export * from './useHierarchyModulesQuery';
+export * from './useHierarchyModuleQuery';
 export * from './useProfilesModulesQuery';
 export * from './useProfilesModuleQuery';
 export * from './usePermissionsModulesQuery';
 export * from './usePermissionsModuleQuery';
+export * from './useBillingModulesQuery';
+export * from './useBillingModuleQuery';
 export * from './useRelationProvisionsQuery';
 export * from './useRelationProvisionQuery';
-export * from './useFunctionModulesQuery';
-export * from './useFunctionModuleQuery';
 export * from './useUserAuthModulesQuery';
 export * from './useUserAuthModuleQuery';
 export * from './useAgentModulesQuery';
@@ -111,9 +111,9 @@ export * from './useMembershipsModulesQuery';
 export * from './useMembershipsModuleQuery';
 export * from './useStorageModulesQuery';
 export * from './useStorageModuleQuery';
-export * from './useEventsModulesQuery';
-export * from './useEventsModuleQuery';
 export * from './useEntityTypeProvisionsQuery';
 export * from './useEntityTypeProvisionQuery';
+export * from './useEventsModulesQuery';
+export * from './useEventsModuleQuery';
 export * from './useResolveBlueprintFieldQuery';
 export * from './useResolveBlueprintTableQuery';
diff --git a/sdk/constructive-react/src/modules/hooks/query-keys.ts b/sdk/constructive-react/src/modules/hooks/query-keys.ts
index 3ba759a44..ea8f60987 100644
--- a/sdk/constructive-react/src/modules/hooks/query-keys.ts
+++ b/sdk/constructive-react/src/modules/hooks/query-keys.ts
@@ -235,15 +235,6 @@ export const cryptoAuthModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...cryptoAuthModuleKeys.details(), id] as const,
 } as const;
-export const rateLimitMetersModuleKeys = {
-  /** All rateLimitMetersModule queries */ all: ['ratelimitmetersmodule'] as const,
-  /** List query keys */ lists: () => [...rateLimitMetersModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...rateLimitMetersModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...rateLimitMetersModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...rateLimitMetersModuleKeys.details(), id] as const,
-} as const;
 export const sessionsModuleKeys = {
   /** All sessionsModule queries */ all: ['sessionsmodule'] as const,
   /** List query keys */ lists: () => [...sessionsModuleKeys.all, 'list'] as const,
@@ -289,6 +280,15 @@ export const secureTableProvisionKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...secureTableProvisionKeys.details(), id] as const,
 } as const;
+export const rateLimitMetersModuleKeys = {
+  /** All rateLimitMetersModule queries */ all: ['ratelimitmetersmodule'] as const,
+  /** List query keys */ lists: () => [...rateLimitMetersModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...rateLimitMetersModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...rateLimitMetersModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...rateLimitMetersModuleKeys.details(), id] as const,
+} as const;
 export const invitesModuleKeys = {
   /** All invitesModule queries */ all: ['invitesmodule'] as const,
   /** List query keys */ lists: () => [...invitesModuleKeys.all, 'list'] as const,
@@ -307,15 +307,6 @@ export const databaseProvisionModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...databaseProvisionModuleKeys.details(), id] as const,
 } as const;
-export const namespaceModuleKeys = {
-  /** All namespaceModule queries */ all: ['namespacemodule'] as const,
-  /** List query keys */ lists: () => [...namespaceModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...namespaceModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...namespaceModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...namespaceModuleKeys.details(), id] as const,
-} as const;
 export const realtimeModuleKeys = {
   /** All realtimeModule queries */ all: ['realtimemodule'] as const,
   /** List query keys */ lists: () => [...realtimeModuleKeys.all, 'list'] as const,
@@ -334,6 +325,15 @@ export const webauthnAuthModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...webauthnAuthModuleKeys.details(), id] as const,
 } as const;
+export const namespaceModuleKeys = {
+  /** All namespaceModule queries */ all: ['namespacemodule'] as const,
+  /** List query keys */ lists: () => [...namespaceModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...namespaceModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...namespaceModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...namespaceModuleKeys.details(), id] as const,
+} as const;
 export const computeLogModuleKeys = {
   /** All computeLogModule queries */ all: ['computelogmodule'] as const,
   /** List query keys */ lists: () => [...computeLogModuleKeys.all, 'list'] as const,
@@ -370,6 +370,15 @@ export const transferLogModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...transferLogModuleKeys.details(), id] as const,
 } as const;
+export const plansModuleKeys = {
+  /** All plansModule queries */ all: ['plansmodule'] as const,
+  /** List query keys */ lists: () => [...plansModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...plansModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...plansModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...plansModuleKeys.details(), id] as const,
+} as const;
 export const dbUsageModuleKeys = {
   /** All dbUsageModule queries */ all: ['dbusagemodule'] as const,
   /** List query keys */ lists: () => [...dbUsageModuleKeys.all, 'list'] as const,
@@ -388,14 +397,23 @@ export const notificationsModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...notificationsModuleKeys.details(), id] as const,
 } as const;
-export const plansModuleKeys = {
-  /** All plansModule queries */ all: ['plansmodule'] as const,
-  /** List query keys */ lists: () => [...plansModuleKeys.all, 'list'] as const,
+export const billingProviderModuleKeys = {
+  /** All billingProviderModule queries */ all: ['billingprovidermodule'] as const,
+  /** List query keys */ lists: () => [...billingProviderModuleKeys.all, 'list'] as const,
   /** List query key with variables */ list: (variables?: object) =>
-    [...plansModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...plansModuleKeys.all, 'detail'] as const,
+    [...billingProviderModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...billingProviderModuleKeys.all, 'detail'] as const,
   /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...plansModuleKeys.details(), id] as const,
+    [...billingProviderModuleKeys.details(), id] as const,
+} as const;
+export const functionModuleKeys = {
+  /** All functionModule queries */ all: ['functionmodule'] as const,
+  /** List query keys */ lists: () => [...functionModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...functionModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...functionModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...functionModuleKeys.details(), id] as const,
 } as const;
 export const hierarchyModuleKeys = {
   /** All hierarchyModule queries */ all: ['hierarchymodule'] as const,
@@ -406,24 +424,6 @@ export const hierarchyModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...hierarchyModuleKeys.details(), id] as const,
 } as const;
-export const billingModuleKeys = {
-  /** All billingModule queries */ all: ['billingmodule'] as const,
-  /** List query keys */ lists: () => [...billingModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...billingModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...billingModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...billingModuleKeys.details(), id] as const,
-} as const;
-export const billingProviderModuleKeys = {
-  /** All billingProviderModule queries */ all: ['billingprovidermodule'] as const,
-  /** List query keys */ lists: () => [...billingProviderModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...billingProviderModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...billingProviderModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...billingProviderModuleKeys.details(), id] as const,
-} as const;
 export const profilesModuleKeys = {
   /** All profilesModule queries */ all: ['profilesmodule'] as const,
   /** List query keys */ lists: () => [...profilesModuleKeys.all, 'list'] as const,
@@ -442,6 +442,15 @@ export const permissionsModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...permissionsModuleKeys.details(), id] as const,
 } as const;
+export const billingModuleKeys = {
+  /** All billingModule queries */ all: ['billingmodule'] as const,
+  /** List query keys */ lists: () => [...billingModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...billingModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...billingModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...billingModuleKeys.details(), id] as const,
+} as const;
 export const relationProvisionKeys = {
   /** All relationProvision queries */ all: ['relationprovision'] as const,
   /** List query keys */ lists: () => [...relationProvisionKeys.all, 'list'] as const,
@@ -451,15 +460,6 @@ export const relationProvisionKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...relationProvisionKeys.details(), id] as const,
 } as const;
-export const functionModuleKeys = {
-  /** All functionModule queries */ all: ['functionmodule'] as const,
-  /** List query keys */ lists: () => [...functionModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...functionModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...functionModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...functionModuleKeys.details(), id] as const,
-} as const;
 export const userAuthModuleKeys = {
   /** All userAuthModule queries */ all: ['userauthmodule'] as const,
   /** List query keys */ lists: () => [...userAuthModuleKeys.all, 'list'] as const,
@@ -505,15 +505,6 @@ export const storageModuleKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...storageModuleKeys.details(), id] as const,
 } as const;
-export const eventsModuleKeys = {
-  /** All eventsModule queries */ all: ['eventsmodule'] as const,
-  /** List query keys */ lists: () => [...eventsModuleKeys.all, 'list'] as const,
-  /** List query key with variables */ list: (variables?: object) =>
-    [...eventsModuleKeys.lists(), variables] as const,
-  /** Detail query keys */ details: () => [...eventsModuleKeys.all, 'detail'] as const,
-  /** Detail query key for specific item */ detail: (id: string | number) =>
-    [...eventsModuleKeys.details(), id] as const,
-} as const;
 export const entityTypeProvisionKeys = {
   /** All entityTypeProvision queries */ all: ['entitytypeprovision'] as const,
   /** List query keys */ lists: () => [...entityTypeProvisionKeys.all, 'list'] as const,
@@ -523,6 +514,15 @@ export const entityTypeProvisionKeys = {
   /** Detail query key for specific item */ detail: (id: string | number) =>
     [...entityTypeProvisionKeys.details(), id] as const,
 } as const;
+export const eventsModuleKeys = {
+  /** All eventsModule queries */ all: ['eventsmodule'] as const,
+  /** List query keys */ lists: () => [...eventsModuleKeys.all, 'list'] as const,
+  /** List query key with variables */ list: (variables?: object) =>
+    [...eventsModuleKeys.lists(), variables] as const,
+  /** Detail query keys */ details: () => [...eventsModuleKeys.all, 'detail'] as const,
+  /** Detail query key for specific item */ detail: (id: string | number) =>
+    [...eventsModuleKeys.details(), id] as const,
+} as const;
 
 // ============================================================================
 // Custom Query Keys
@@ -581,38 +581,38 @@ export const queryKeys = {
   blueprintTemplate: blueprintTemplateKeys,
   blueprintConstruction: blueprintConstructionKeys,
   cryptoAuthModule: cryptoAuthModuleKeys,
-  rateLimitMetersModule: rateLimitMetersModuleKeys,
   sessionsModule: sessionsModuleKeys,
   configSecretsModule: configSecretsModuleKeys,
   merkleStoreModule: merkleStoreModuleKeys,
   graphModule: graphModuleKeys,
   secureTableProvision: secureTableProvisionKeys,
+  rateLimitMetersModule: rateLimitMetersModuleKeys,
   invitesModule: invitesModuleKeys,
   databaseProvisionModule: databaseProvisionModuleKeys,
-  namespaceModule: namespaceModuleKeys,
   realtimeModule: realtimeModuleKeys,
   webauthnAuthModule: webauthnAuthModuleKeys,
+  namespaceModule: namespaceModuleKeys,
   computeLogModule: computeLogModuleKeys,
   inferenceLogModule: inferenceLogModuleKeys,
   storageLogModule: storageLogModuleKeys,
   transferLogModule: transferLogModuleKeys,
+  plansModule: plansModuleKeys,
   dbUsageModule: dbUsageModuleKeys,
   notificationsModule: notificationsModuleKeys,
-  plansModule: plansModuleKeys,
-  hierarchyModule: hierarchyModuleKeys,
-  billingModule: billingModuleKeys,
   billingProviderModule: billingProviderModuleKeys,
+  functionModule: functionModuleKeys,
+  hierarchyModule: hierarchyModuleKeys,
   profilesModule: profilesModuleKeys,
   permissionsModule: permissionsModuleKeys,
+  billingModule: billingModuleKeys,
   relationProvision: relationProvisionKeys,
-  functionModule: functionModuleKeys,
   userAuthModule: userAuthModuleKeys,
   agentModule: agentModuleKeys,
   limitsModule: limitsModuleKeys,
   membershipsModule: membershipsModuleKeys,
   storageModule: storageModuleKeys,
-  eventsModule: eventsModuleKeys,
   entityTypeProvision: entityTypeProvisionKeys,
+  eventsModule: eventsModuleKeys,
   custom: customQueryKeys,
 } as const;
 /** Type representing all available query key scopes */
diff --git a/sdk/constructive-react/src/modules/orm/README.md b/sdk/constructive-react/src/modules/orm/README.md
index 2d52e7421..3e29d250b 100644
--- a/sdk/constructive-react/src/modules/orm/README.md
+++ b/sdk/constructive-react/src/modules/orm/README.md
@@ -45,38 +45,38 @@ const db = createClient({
 | `blueprintTemplate` | findMany, findOne, create, update, delete |
 | `blueprintConstruction` | findMany, findOne, create, update, delete |
 | `cryptoAuthModule` | findMany, findOne, create, update, delete |
-| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `sessionsModule` | findMany, findOne, create, update, delete |
 | `configSecretsModule` | findMany, findOne, create, update, delete |
 | `merkleStoreModule` | findMany, findOne, create, update, delete |
 | `graphModule` | findMany, findOne, create, update, delete |
 | `secureTableProvision` | findMany, findOne, create, update, delete |
+| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `invitesModule` | findMany, findOne, create, update, delete |
 | `databaseProvisionModule` | findMany, findOne, create, update, delete |
-| `namespaceModule` | findMany, findOne, create, update, delete |
 | `realtimeModule` | findMany, findOne, create, update, delete |
 | `webauthnAuthModule` | findMany, findOne, create, update, delete |
+| `namespaceModule` | findMany, findOne, create, update, delete |
 | `computeLogModule` | findMany, findOne, create, update, delete |
 | `inferenceLogModule` | findMany, findOne, create, update, delete |
 | `storageLogModule` | findMany, findOne, create, update, delete |
 | `transferLogModule` | findMany, findOne, create, update, delete |
+| `plansModule` | findMany, findOne, create, update, delete |
 | `dbUsageModule` | findMany, findOne, create, update, delete |
 | `notificationsModule` | findMany, findOne, create, update, delete |
-| `plansModule` | findMany, findOne, create, update, delete |
-| `hierarchyModule` | findMany, findOne, create, update, delete |
-| `billingModule` | findMany, findOne, create, update, delete |
 | `billingProviderModule` | findMany, findOne, create, update, delete |
+| `functionModule` | findMany, findOne, create, update, delete |
+| `hierarchyModule` | findMany, findOne, create, update, delete |
 | `profilesModule` | findMany, findOne, create, update, delete |
 | `permissionsModule` | findMany, findOne, create, update, delete |
+| `billingModule` | findMany, findOne, create, update, delete |
 | `relationProvision` | findMany, findOne, create, update, delete |
-| `functionModule` | findMany, findOne, create, update, delete |
 | `userAuthModule` | findMany, findOne, create, update, delete |
 | `agentModule` | findMany, findOne, create, update, delete |
 | `limitsModule` | findMany, findOne, create, update, delete |
 | `membershipsModule` | findMany, findOne, create, update, delete |
 | `storageModule` | findMany, findOne, create, update, delete |
-| `eventsModule` | findMany, findOne, create, update, delete |
 | `entityTypeProvision` | findMany, findOne, create, update, delete |
+| `eventsModule` | findMany, findOne, create, update, delete |
 
 ## Table Operations
 
@@ -970,48 +970,6 @@ const updated = await db.cryptoAuthModule.update({ where: { id: '<UUID>' }, data
 const deleted = await db.cryptoAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.rateLimitMetersModule`
-
-CRUD operations for RateLimitMetersModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `rateLimitStateTableId` | UUID | Yes |
-| `rateLimitStateTableName` | String | Yes |
-| `rateLimitOverridesTableId` | UUID | Yes |
-| `rateLimitOverridesTableName` | String | Yes |
-| `rateWindowLimitsTableId` | UUID | Yes |
-| `rateWindowLimitsTableName` | String | Yes |
-| `checkRateLimitFunction` | String | Yes |
-| `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-
-**Operations:**
-
-```typescript
-// List all rateLimitMetersModule records
-const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Get one by id
-const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Create
-const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.sessionsModule`
 
 CRUD operations for SessionsModule records.
@@ -1162,19 +1120,20 @@ CRUD operations for GraphModule records.
 | `entityTableId` | UUID | Yes |
 | `policies` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 | `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
 // List all graphModule records
-const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.graphModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1222,6 +1181,49 @@ const updated = await db.secureTableProvision.update({ where: { id: '<UUID>' },
 const deleted = await db.secureTableProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.rateLimitMetersModule`
+
+CRUD operations for RateLimitMetersModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `rateLimitStateTableId` | UUID | Yes |
+| `rateLimitStateTableName` | String | Yes |
+| `rateLimitOverridesTableId` | UUID | Yes |
+| `rateLimitOverridesTableName` | String | Yes |
+| `rateWindowLimitsTableId` | UUID | Yes |
+| `rateWindowLimitsTableName` | String | Yes |
+| `checkRateLimitFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all rateLimitMetersModule records
+const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.invitesModule`
 
 CRUD operations for InvitesModule records.
@@ -1308,51 +1310,6 @@ const updated = await db.databaseProvisionModule.update({ where: { id: '<UUID>'
 const deleted = await db.databaseProvisionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.namespaceModule`
-
-CRUD operations for NamespaceModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `namespacesTableId` | UUID | Yes |
-| `namespaceEventsTableId` | UUID | Yes |
-| `namespacesTableName` | String | Yes |
-| `namespaceEventsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all namespaceModule records
-const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.realtimeModule`
 
 CRUD operations for RealtimeModule records.
@@ -1439,6 +1396,52 @@ const updated = await db.webauthnAuthModule.update({ where: { id: '<UUID>' }, da
 const deleted = await db.webauthnAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.namespaceModule`
+
+CRUD operations for NamespaceModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `publicSchemaName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `namespacesTableId` | UUID | Yes |
+| `namespaceEventsTableId` | UUID | Yes |
+| `namespacesTableName` | String | Yes |
+| `namespaceEventsTableName` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all namespaceModule records
+const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Get one by id
+const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Create
+const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.computeLogModule`
 
 CRUD operations for ComputeLogModule records.
@@ -1619,6 +1622,53 @@ const updated = await db.transferLogModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.transferLogModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.plansModule`
+
+CRUD operations for PlansModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `plansTableId` | UUID | Yes |
+| `plansTableName` | String | Yes |
+| `planLimitsTableId` | UUID | Yes |
+| `planLimitsTableName` | String | Yes |
+| `planPricingTableId` | UUID | Yes |
+| `planOverridesTableId` | UUID | Yes |
+| `planMeterLimitsTableId` | UUID | Yes |
+| `planCapsTableId` | UUID | Yes |
+| `applyPlanFunction` | String | Yes |
+| `applyPlanAggregateFunction` | String | Yes |
+| `applyBillingPlanFunction` | String | Yes |
+| `applyPlanCapsFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all plansModule records
+const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.dbUsageModule`
 
 CRUD operations for DbUsageModule records.
@@ -1644,6 +1694,7 @@ CRUD operations for DbUsageModule records.
 | `premake` | Int | Yes |
 | `scope` | String | Yes |
 | `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1651,13 +1702,13 @@ CRUD operations for DbUsageModule records.
 
 ```typescript
 // List all dbUsageModule records
-const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.dbUsageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1691,6 +1742,7 @@ CRUD operations for NotificationsModule records.
 | `hasSettingsExtension` | Boolean | Yes |
 | `hasDigestMetadata` | Boolean | Yes |
 | `hasSubscriptions` | Boolean | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1698,13 +1750,13 @@ CRUD operations for NotificationsModule records.
 
 ```typescript
 // List all notificationsModule records
-const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1713,9 +1765,9 @@ const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, d
 const deleted = await db.notificationsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.plansModule`
+### `db.billingProviderModule`
 
-CRUD operations for PlansModule records.
+CRUD operations for BillingProviderModule records.
 
 **Fields:**
 
@@ -1725,18 +1777,21 @@ CRUD operations for PlansModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `plansTableId` | UUID | Yes |
-| `plansTableName` | String | Yes |
-| `planLimitsTableId` | UUID | Yes |
-| `planLimitsTableName` | String | Yes |
-| `planPricingTableId` | UUID | Yes |
-| `planOverridesTableId` | UUID | Yes |
-| `planMeterLimitsTableId` | UUID | Yes |
-| `planCapsTableId` | UUID | Yes |
-| `applyPlanFunction` | String | Yes |
-| `applyPlanAggregateFunction` | String | Yes |
-| `applyBillingPlanFunction` | String | Yes |
-| `applyPlanCapsFunction` | String | Yes |
+| `provider` | String | Yes |
+| `productsTableId` | UUID | Yes |
+| `pricesTableId` | UUID | Yes |
+| `subscriptionsTableId` | UUID | Yes |
+| `billingCustomersTableId` | UUID | Yes |
+| `billingCustomersTableName` | String | Yes |
+| `billingProductsTableId` | UUID | Yes |
+| `billingProductsTableName` | String | Yes |
+| `billingPricesTableId` | UUID | Yes |
+| `billingPricesTableName` | String | Yes |
+| `billingSubscriptionsTableId` | UUID | Yes |
+| `billingSubscriptionsTableName` | String | Yes |
+| `billingWebhookEventsTableId` | UUID | Yes |
+| `billingWebhookEventsTableName` | String | Yes |
+| `processBillingEventFunction` | String | Yes |
 | `prefix` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
@@ -1744,25 +1799,25 @@ CRUD operations for PlansModule records.
 **Operations:**
 
 ```typescript
-// List all plansModule records
-const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all billingProviderModule records
+const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.hierarchyModule`
+### `db.functionModule`
 
-CRUD operations for HierarchyModule records.
+CRUD operations for FunctionModule records.
 
 **Fields:**
 
@@ -1772,96 +1827,47 @@ CRUD operations for HierarchyModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `chartEdgesTableId` | UUID | Yes |
-| `chartEdgesTableName` | String | Yes |
-| `hierarchySprtTableId` | UUID | Yes |
-| `hierarchySprtTableName` | String | Yes |
-| `chartEdgeGrantsTableId` | UUID | Yes |
-| `chartEdgeGrantsTableName` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `usersTableId` | UUID | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
+| `publicSchemaName` | String | Yes |
 | `privateSchemaName` | String | Yes |
-| `sprtTableName` | String | Yes |
-| `rebuildHierarchyFunction` | String | Yes |
-| `getSubordinatesFunction` | String | Yes |
-| `getManagersFunction` | String | Yes |
-| `isManagerOfFunction` | String | Yes |
-| `createdAt` | Datetime | No |
-
-**Operations:**
-
-```typescript
-// List all hierarchyModule records
-const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Get one by id
-const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Create
-const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
-### `db.billingModule`
-
-CRUD operations for BillingModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `metersTableId` | UUID | Yes |
-| `metersTableName` | String | Yes |
-| `planSubscriptionsTableId` | UUID | Yes |
-| `planSubscriptionsTableName` | String | Yes |
-| `ledgerTableId` | UUID | Yes |
-| `ledgerTableName` | String | Yes |
-| `balancesTableId` | UUID | Yes |
-| `balancesTableName` | String | Yes |
-| `meterCreditsTableId` | UUID | Yes |
-| `meterCreditsTableName` | String | Yes |
-| `meterSourcesTableId` | UUID | Yes |
-| `meterSourcesTableName` | String | Yes |
-| `meterDefaultsTableId` | UUID | Yes |
-| `meterDefaultsTableName` | String | Yes |
-| `recordUsageFunction` | String | Yes |
-| `prefix` | String | Yes |
+| `definitionsTableId` | UUID | Yes |
+| `invocationsTableId` | UUID | Yes |
+| `executionLogsTableId` | UUID | Yes |
+| `secretDefinitionsTableId` | UUID | Yes |
+| `definitionsTableName` | String | Yes |
+| `invocationsTableName` | String | Yes |
+| `executionLogsTableName` | String | Yes |
+| `secretDefinitionsTableName` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
-// List all billingModule records
-const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all functionModule records
+const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.billingProviderModule`
+### `db.hierarchyModule`
 
-CRUD operations for BillingProviderModule records.
+CRUD operations for HierarchyModule records.
 
 **Fields:**
 
@@ -1871,42 +1877,42 @@ CRUD operations for BillingProviderModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `provider` | String | Yes |
-| `productsTableId` | UUID | Yes |
-| `pricesTableId` | UUID | Yes |
-| `subscriptionsTableId` | UUID | Yes |
-| `billingCustomersTableId` | UUID | Yes |
-| `billingCustomersTableName` | String | Yes |
-| `billingProductsTableId` | UUID | Yes |
-| `billingProductsTableName` | String | Yes |
-| `billingPricesTableId` | UUID | Yes |
-| `billingPricesTableName` | String | Yes |
-| `billingSubscriptionsTableId` | UUID | Yes |
-| `billingSubscriptionsTableName` | String | Yes |
-| `billingWebhookEventsTableId` | UUID | Yes |
-| `billingWebhookEventsTableName` | String | Yes |
-| `processBillingEventFunction` | String | Yes |
+| `chartEdgesTableId` | UUID | Yes |
+| `chartEdgesTableName` | String | Yes |
+| `hierarchySprtTableId` | UUID | Yes |
+| `hierarchySprtTableName` | String | Yes |
+| `chartEdgeGrantsTableId` | UUID | Yes |
+| `chartEdgeGrantsTableName` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `usersTableId` | UUID | Yes |
+| `scope` | String | Yes |
 | `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `sprtTableName` | String | Yes |
+| `rebuildHierarchyFunction` | String | Yes |
+| `getSubordinatesFunction` | String | Yes |
+| `getManagersFunction` | String | Yes |
+| `isManagerOfFunction` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
-// List all billingProviderModule records
-const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all hierarchyModule records
+const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
 ### `db.profilesModule`
@@ -2006,6 +2012,57 @@ const updated = await db.permissionsModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.permissionsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.billingModule`
+
+CRUD operations for BillingModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `metersTableId` | UUID | Yes |
+| `metersTableName` | String | Yes |
+| `planSubscriptionsTableId` | UUID | Yes |
+| `planSubscriptionsTableName` | String | Yes |
+| `ledgerTableId` | UUID | Yes |
+| `ledgerTableName` | String | Yes |
+| `balancesTableId` | UUID | Yes |
+| `balancesTableName` | String | Yes |
+| `meterCreditsTableId` | UUID | Yes |
+| `meterCreditsTableName` | String | Yes |
+| `meterSourcesTableId` | UUID | Yes |
+| `meterSourcesTableName` | String | Yes |
+| `meterDefaultsTableId` | UUID | Yes |
+| `meterDefaultsTableName` | String | Yes |
+| `recordUsageFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all billingModule records
+const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.relationProvision`
 
 CRUD operations for RelationProvision records.
@@ -2058,60 +2115,6 @@ const updated = await db.relationProvision.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.relationProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.functionModule`
-
-CRUD operations for FunctionModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `definitionsTableId` | UUID | Yes |
-| `invocationsTableId` | UUID | Yes |
-| `executionLogsTableId` | UUID | Yes |
-| `secretDefinitionsTableId` | UUID | Yes |
-| `requirementsTableId` | UUID | Yes |
-| `configDefinitionsTableId` | UUID | Yes |
-| `configRequirementsTableId` | UUID | Yes |
-| `definitionsTableName` | String | Yes |
-| `invocationsTableName` | String | Yes |
-| `executionLogsTableName` | String | Yes |
-| `secretDefinitionsTableName` | String | Yes |
-| `requirementsTableName` | String | Yes |
-| `configRequirementsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all functionModule records
-const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.userAuthModule`
 
 CRUD operations for UserAuthModule records.
@@ -2199,6 +2202,7 @@ CRUD operations for AgentModule records.
 | `hasPlans` | Boolean | Yes |
 | `hasResources` | Boolean | Yes |
 | `hasAgents` | Boolean | Yes |
+| `shared` | Boolean | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 | `scope` | String | Yes |
@@ -2207,18 +2211,19 @@ CRUD operations for AgentModule records.
 | `policies` | JSON | Yes |
 | `resources` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentModule records
-const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.agentModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2332,6 +2337,8 @@ CRUD operations for MembershipsModule records.
 | `entityIdsByPerm` | String | Yes |
 | `entityIdsFunction` | String | Yes |
 | `memberProfilesTableId` | UUID | Yes |
+| `permissionDefaultPermissionsTableId` | UUID | Yes |
+| `permissionDefaultGrantsTableId` | UUID | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2339,13 +2346,13 @@ CRUD operations for MembershipsModule records.
 
 ```typescript
 // List all membershipsModule records
-const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.membershipsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2396,6 +2403,7 @@ CRUD operations for StorageModule records.
 | `hasConfirmUpload` | Boolean | Yes |
 | `confirmUploadDelay` | Interval | Yes |
 | `fileEventsTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2403,13 +2411,13 @@ CRUD operations for StorageModule records.
 
 ```typescript
 // List all storageModule records
-const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2418,6 +2426,74 @@ const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.storageModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.entityTypeProvision`
+
+CRUD operations for EntityTypeProvision records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `name` | String | Yes |
+| `prefix` | String | Yes |
+| `description` | String | Yes |
+| `parentEntity` | String | Yes |
+| `tableName` | String | Yes |
+| `isVisible` | Boolean | Yes |
+| `hasLimits` | Boolean | Yes |
+| `hasProfiles` | Boolean | Yes |
+| `hasLevels` | Boolean | Yes |
+| `hasInvites` | Boolean | Yes |
+| `hasInviteAchievements` | Boolean | Yes |
+| `storage` | JSON | Yes |
+| `namespaces` | JSON | Yes |
+| `functions` | JSON | Yes |
+| `graphs` | JSON | Yes |
+| `agents` | JSON | Yes |
+| `skipEntityPolicies` | Boolean | Yes |
+| `tableProvision` | JSON | Yes |
+| `outMembershipType` | Int | Yes |
+| `outEntityTableId` | UUID | Yes |
+| `outEntityTableName` | String | Yes |
+| `outInstalledModules` | String | Yes |
+| `outStorageModuleId` | UUID | Yes |
+| `outBucketsTableId` | UUID | Yes |
+| `outFilesTableId` | UUID | Yes |
+| `outPathSharesTableId` | UUID | Yes |
+| `outInvitesModuleId` | UUID | Yes |
+| `outNamespaceModuleId` | UUID | Yes |
+| `outNamespacesTableId` | UUID | Yes |
+| `outNamespaceEventsTableId` | UUID | Yes |
+| `outFunctionModuleId` | UUID | Yes |
+| `outDefinitionsTableId` | UUID | Yes |
+| `outInvocationsTableId` | UUID | Yes |
+| `outExecutionLogsTableId` | UUID | Yes |
+| `outSecretDefinitionsTableId` | UUID | Yes |
+| `outGraphModuleId` | UUID | Yes |
+| `outGraphsTableId` | UUID | Yes |
+| `outAgentModuleId` | UUID | Yes |
+
+**Operations:**
+
+```typescript
+// List all entityTypeProvision records
+const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Get one by id
+const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Create
+const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.eventsModule`
 
 CRUD operations for EventsModule records.
@@ -2465,6 +2541,7 @@ CRUD operations for EventsModule records.
 | `prefix` | String | Yes |
 | `entityTableId` | UUID | Yes |
 | `actorTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2472,13 +2549,13 @@ CRUD operations for EventsModule records.
 
 ```typescript
 // List all eventsModule records
-const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2487,76 +2564,6 @@ const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.eventsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.entityTypeProvision`
-
-CRUD operations for EntityTypeProvision records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `name` | String | Yes |
-| `prefix` | String | Yes |
-| `description` | String | Yes |
-| `parentEntity` | String | Yes |
-| `tableName` | String | Yes |
-| `isVisible` | Boolean | Yes |
-| `hasLimits` | Boolean | Yes |
-| `hasProfiles` | Boolean | Yes |
-| `hasLevels` | Boolean | Yes |
-| `hasInvites` | Boolean | Yes |
-| `hasInviteAchievements` | Boolean | Yes |
-| `storage` | JSON | Yes |
-| `namespaces` | JSON | Yes |
-| `functions` | JSON | Yes |
-| `graphs` | JSON | Yes |
-| `agents` | JSON | Yes |
-| `skipEntityPolicies` | Boolean | Yes |
-| `tableProvision` | JSON | Yes |
-| `outMembershipType` | Int | Yes |
-| `outEntityTableId` | UUID | Yes |
-| `outEntityTableName` | String | Yes |
-| `outInstalledModules` | String | Yes |
-| `outStorageModuleId` | UUID | Yes |
-| `outBucketsTableId` | UUID | Yes |
-| `outFilesTableId` | UUID | Yes |
-| `outPathSharesTableId` | UUID | Yes |
-| `outInvitesModuleId` | UUID | Yes |
-| `outNamespaceModuleId` | UUID | Yes |
-| `outNamespacesTableId` | UUID | Yes |
-| `outNamespaceEventsTableId` | UUID | Yes |
-| `outFunctionModuleId` | UUID | Yes |
-| `outDefinitionsTableId` | UUID | Yes |
-| `outInvocationsTableId` | UUID | Yes |
-| `outExecutionLogsTableId` | UUID | Yes |
-| `outSecretDefinitionsTableId` | UUID | Yes |
-| `outRequirementsTableId` | UUID | Yes |
-| `outConfigRequirementsTableId` | UUID | Yes |
-| `outGraphModuleId` | UUID | Yes |
-| `outGraphsTableId` | UUID | Yes |
-| `outAgentModuleId` | UUID | Yes |
-
-**Operations:**
-
-```typescript
-// List all entityTypeProvision records
-const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Get one by id
-const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Create
-const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ## Custom Operations
 
 ### `db.query.resolveBlueprintField`
diff --git a/sdk/constructive-react/src/modules/orm/index.ts b/sdk/constructive-react/src/modules/orm/index.ts
index c119d6f62..9a4233c90 100644
--- a/sdk/constructive-react/src/modules/orm/index.ts
+++ b/sdk/constructive-react/src/modules/orm/index.ts
@@ -29,38 +29,38 @@ import { BlueprintModel } from './models/blueprint';
 import { BlueprintTemplateModel } from './models/blueprintTemplate';
 import { BlueprintConstructionModel } from './models/blueprintConstruction';
 import { CryptoAuthModuleModel } from './models/cryptoAuthModule';
-import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { SessionsModuleModel } from './models/sessionsModule';
 import { ConfigSecretsModuleModel } from './models/configSecretsModule';
 import { MerkleStoreModuleModel } from './models/merkleStoreModule';
 import { GraphModuleModel } from './models/graphModule';
 import { SecureTableProvisionModel } from './models/secureTableProvision';
+import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { InvitesModuleModel } from './models/invitesModule';
 import { DatabaseProvisionModuleModel } from './models/databaseProvisionModule';
-import { NamespaceModuleModel } from './models/namespaceModule';
 import { RealtimeModuleModel } from './models/realtimeModule';
 import { WebauthnAuthModuleModel } from './models/webauthnAuthModule';
+import { NamespaceModuleModel } from './models/namespaceModule';
 import { ComputeLogModuleModel } from './models/computeLogModule';
 import { InferenceLogModuleModel } from './models/inferenceLogModule';
 import { StorageLogModuleModel } from './models/storageLogModule';
 import { TransferLogModuleModel } from './models/transferLogModule';
+import { PlansModuleModel } from './models/plansModule';
 import { DbUsageModuleModel } from './models/dbUsageModule';
 import { NotificationsModuleModel } from './models/notificationsModule';
-import { PlansModuleModel } from './models/plansModule';
-import { HierarchyModuleModel } from './models/hierarchyModule';
-import { BillingModuleModel } from './models/billingModule';
 import { BillingProviderModuleModel } from './models/billingProviderModule';
+import { FunctionModuleModel } from './models/functionModule';
+import { HierarchyModuleModel } from './models/hierarchyModule';
 import { ProfilesModuleModel } from './models/profilesModule';
 import { PermissionsModuleModel } from './models/permissionsModule';
+import { BillingModuleModel } from './models/billingModule';
 import { RelationProvisionModel } from './models/relationProvision';
-import { FunctionModuleModel } from './models/functionModule';
 import { UserAuthModuleModel } from './models/userAuthModule';
 import { AgentModuleModel } from './models/agentModule';
 import { LimitsModuleModel } from './models/limitsModule';
 import { MembershipsModuleModel } from './models/membershipsModule';
 import { StorageModuleModel } from './models/storageModule';
-import { EventsModuleModel } from './models/eventsModule';
 import { EntityTypeProvisionModel } from './models/entityTypeProvision';
+import { EventsModuleModel } from './models/eventsModule';
 import { createQueryOperations } from './query';
 import { createMutationOperations } from './mutation';
 export type { OrmClientConfig, QueryResult, GraphQLError, GraphQLAdapter } from './client';
@@ -120,38 +120,38 @@ export function createClient(config: OrmClientConfig) {
     blueprintTemplate: new BlueprintTemplateModel(client),
     blueprintConstruction: new BlueprintConstructionModel(client),
     cryptoAuthModule: new CryptoAuthModuleModel(client),
-    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     sessionsModule: new SessionsModuleModel(client),
     configSecretsModule: new ConfigSecretsModuleModel(client),
     merkleStoreModule: new MerkleStoreModuleModel(client),
     graphModule: new GraphModuleModel(client),
     secureTableProvision: new SecureTableProvisionModel(client),
+    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     invitesModule: new InvitesModuleModel(client),
     databaseProvisionModule: new DatabaseProvisionModuleModel(client),
-    namespaceModule: new NamespaceModuleModel(client),
     realtimeModule: new RealtimeModuleModel(client),
     webauthnAuthModule: new WebauthnAuthModuleModel(client),
+    namespaceModule: new NamespaceModuleModel(client),
     computeLogModule: new ComputeLogModuleModel(client),
     inferenceLogModule: new InferenceLogModuleModel(client),
     storageLogModule: new StorageLogModuleModel(client),
     transferLogModule: new TransferLogModuleModel(client),
+    plansModule: new PlansModuleModel(client),
     dbUsageModule: new DbUsageModuleModel(client),
     notificationsModule: new NotificationsModuleModel(client),
-    plansModule: new PlansModuleModel(client),
-    hierarchyModule: new HierarchyModuleModel(client),
-    billingModule: new BillingModuleModel(client),
     billingProviderModule: new BillingProviderModuleModel(client),
+    functionModule: new FunctionModuleModel(client),
+    hierarchyModule: new HierarchyModuleModel(client),
     profilesModule: new ProfilesModuleModel(client),
     permissionsModule: new PermissionsModuleModel(client),
+    billingModule: new BillingModuleModel(client),
     relationProvision: new RelationProvisionModel(client),
-    functionModule: new FunctionModuleModel(client),
     userAuthModule: new UserAuthModuleModel(client),
     agentModule: new AgentModuleModel(client),
     limitsModule: new LimitsModuleModel(client),
     membershipsModule: new MembershipsModuleModel(client),
     storageModule: new StorageModuleModel(client),
-    eventsModule: new EventsModuleModel(client),
     entityTypeProvision: new EntityTypeProvisionModel(client),
+    eventsModule: new EventsModuleModel(client),
     query: createQueryOperations(client),
     mutation: createMutationOperations(client),
   };
diff --git a/sdk/constructive-react/src/modules/orm/input-types.ts b/sdk/constructive-react/src/modules/orm/input-types.ts
index 75db6ada9..7c40f190b 100644
--- a/sdk/constructive-react/src/modules/orm/input-types.ts
+++ b/sdk/constructive-react/src/modules/orm/input-types.ts
@@ -566,22 +566,6 @@ export interface CryptoAuthModule {
   signUpWithKey?: string | null;
   signInWithChallenge?: string | null;
 }
-export interface RateLimitMetersModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface SessionsModule {
   id: string;
   databaseId?: string | null;
@@ -652,6 +636,7 @@ export interface GraphModule {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
 /** Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. */
@@ -679,6 +664,23 @@ export interface SecureTableProvision {
   /** Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly. */
   outFields?: string[] | null;
 }
+export interface RateLimitMetersModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface InvitesModule {
   id: string;
   databaseId?: string | null;
@@ -723,25 +725,6 @@ export interface DatabaseProvisionModule {
   updatedAt?: string | null;
   completedAt?: string | null;
 }
-export interface NamespaceModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface RealtimeModule {
   id: string;
   databaseId?: string | null;
@@ -776,6 +759,26 @@ export interface WebauthnAuthModule {
   residentKey?: string | null;
   challengeExpiry?: string | null;
 }
+export interface NamespaceModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface ComputeLogModule {
   id: string;
   databaseId?: string | null;
@@ -852,6 +855,27 @@ export interface TransferLogModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface PlansModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface DbUsageModule {
   id: string;
   databaseId?: string | null;
@@ -870,6 +894,7 @@ export interface DbUsageModule {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -891,30 +916,58 @@ export interface NotificationsModule {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface PlansModule {
+export interface BillingProviderModule {
   id: string;
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface FunctionModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface HierarchyModule {
   id: string;
   databaseId?: string | null;
@@ -936,56 +989,9 @@ export interface HierarchyModule {
   getSubordinatesFunction?: string | null;
   getManagersFunction?: string | null;
   isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
-export interface BillingModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface BillingProviderModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface ProfilesModule {
   id: string;
   databaseId?: string | null;
@@ -1031,6 +1037,31 @@ export interface PermissionsModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface BillingModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 /**
  * Provisions relational structure between tables. Supports four relation types:
  *      - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
@@ -1164,34 +1195,6 @@ export interface RelationProvision {
   /** Output column for RelationManyToMany: the UUID of the FK field on the junction table referencing the target table. Populated by the trigger. NULL for RelationBelongsTo/RelationHasOne. Callers should not set this directly. */
   outTargetFieldId?: string | null;
 }
-export interface FunctionModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface UserAuthModule {
   id: string;
   databaseId?: string | null;
@@ -1246,6 +1249,7 @@ export interface AgentModule {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -1254,6 +1258,7 @@ export interface AgentModule {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface LimitsModule {
   id: string;
@@ -1327,6 +1332,8 @@ export interface MembershipsModule {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -1365,66 +1372,24 @@ export interface StorageModule {
   hasConfirmUpload?: boolean | null;
   confirmUploadDelay?: string | null;
   fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface EventsModule {
+/**
+ * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
+ *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
+ *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
+ *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
+ *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
+ *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
+ *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
+ *      as an escape hatch to apply zero policies.
+ */
+export interface EntityTypeProvision {
+  /** Unique identifier for this provision row. */
   id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  actorTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-/**
- * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
- *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
- *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
- *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
- *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
- *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
- *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
- *      as an escape hatch to apply zero policies.
- */
-export interface EntityTypeProvision {
-  /** Unique identifier for this provision row. */
-  id: string;
-  /** The database to provision this entity type in. Required. */
+  /** The database to provision this entity type in. Required. */
   databaseId?: string | null;
   /**
    * Human-readable name for this entity type, e.g. 'Data Room', 'Team Channel'. Required.
@@ -1669,12 +1634,54 @@ export interface EntityTypeProvision {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
 }
+export interface EventsModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 // ============ Relation Helper Types ============
 export interface ConnectionResult<T> {
   nodes: T[];
@@ -1721,7 +1728,6 @@ export interface BlueprintConstructionRelations {
   blueprint?: Blueprint | null;
 }
 export interface CryptoAuthModuleRelations {}
-export interface RateLimitMetersModuleRelations {}
 export interface SessionsModuleRelations {}
 export interface ConfigSecretsModuleRelations {}
 export interface MerkleStoreModuleRelations {
@@ -1731,32 +1737,33 @@ export interface GraphModuleRelations {
   merkleStoreModule?: MerkleStoreModule | null;
 }
 export interface SecureTableProvisionRelations {}
+export interface RateLimitMetersModuleRelations {}
 export interface InvitesModuleRelations {}
 export interface DatabaseProvisionModuleRelations {}
-export interface NamespaceModuleRelations {}
 export interface RealtimeModuleRelations {}
 export interface WebauthnAuthModuleRelations {}
+export interface NamespaceModuleRelations {}
 export interface ComputeLogModuleRelations {}
 export interface InferenceLogModuleRelations {}
 export interface StorageLogModuleRelations {}
 export interface TransferLogModuleRelations {}
+export interface PlansModuleRelations {}
 export interface DbUsageModuleRelations {}
 export interface NotificationsModuleRelations {}
-export interface PlansModuleRelations {}
-export interface HierarchyModuleRelations {}
-export interface BillingModuleRelations {}
 export interface BillingProviderModuleRelations {}
+export interface FunctionModuleRelations {}
+export interface HierarchyModuleRelations {}
 export interface ProfilesModuleRelations {}
 export interface PermissionsModuleRelations {}
+export interface BillingModuleRelations {}
 export interface RelationProvisionRelations {}
-export interface FunctionModuleRelations {}
 export interface UserAuthModuleRelations {}
 export interface AgentModuleRelations {}
 export interface LimitsModuleRelations {}
 export interface MembershipsModuleRelations {}
 export interface StorageModuleRelations {}
-export interface EventsModuleRelations {}
 export interface EntityTypeProvisionRelations {}
+export interface EventsModuleRelations {}
 // ============ Entity Types With Relations ============
 export type DefaultIdsModuleWithRelations = DefaultIdsModule & DefaultIdsModuleRelations;
 export type MembershipTypesModuleWithRelations = MembershipTypesModule &
@@ -1793,42 +1800,42 @@ export type BlueprintTemplateWithRelations = BlueprintTemplate & BlueprintTempla
 export type BlueprintConstructionWithRelations = BlueprintConstruction &
   BlueprintConstructionRelations;
 export type CryptoAuthModuleWithRelations = CryptoAuthModule & CryptoAuthModuleRelations;
-export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
-  RateLimitMetersModuleRelations;
 export type SessionsModuleWithRelations = SessionsModule & SessionsModuleRelations;
 export type ConfigSecretsModuleWithRelations = ConfigSecretsModule & ConfigSecretsModuleRelations;
 export type MerkleStoreModuleWithRelations = MerkleStoreModule & MerkleStoreModuleRelations;
 export type GraphModuleWithRelations = GraphModule & GraphModuleRelations;
 export type SecureTableProvisionWithRelations = SecureTableProvision &
   SecureTableProvisionRelations;
+export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
+  RateLimitMetersModuleRelations;
 export type InvitesModuleWithRelations = InvitesModule & InvitesModuleRelations;
 export type DatabaseProvisionModuleWithRelations = DatabaseProvisionModule &
   DatabaseProvisionModuleRelations;
-export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type RealtimeModuleWithRelations = RealtimeModule & RealtimeModuleRelations;
 export type WebauthnAuthModuleWithRelations = WebauthnAuthModule & WebauthnAuthModuleRelations;
+export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type ComputeLogModuleWithRelations = ComputeLogModule & ComputeLogModuleRelations;
 export type InferenceLogModuleWithRelations = InferenceLogModule & InferenceLogModuleRelations;
 export type StorageLogModuleWithRelations = StorageLogModule & StorageLogModuleRelations;
 export type TransferLogModuleWithRelations = TransferLogModule & TransferLogModuleRelations;
+export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
 export type DbUsageModuleWithRelations = DbUsageModule & DbUsageModuleRelations;
 export type NotificationsModuleWithRelations = NotificationsModule & NotificationsModuleRelations;
-export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
-export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
-export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type BillingProviderModuleWithRelations = BillingProviderModule &
   BillingProviderModuleRelations;
+export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
+export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
 export type ProfilesModuleWithRelations = ProfilesModule & ProfilesModuleRelations;
 export type PermissionsModuleWithRelations = PermissionsModule & PermissionsModuleRelations;
+export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type RelationProvisionWithRelations = RelationProvision & RelationProvisionRelations;
-export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
 export type UserAuthModuleWithRelations = UserAuthModule & UserAuthModuleRelations;
 export type AgentModuleWithRelations = AgentModule & AgentModuleRelations;
 export type LimitsModuleWithRelations = LimitsModule & LimitsModuleRelations;
 export type MembershipsModuleWithRelations = MembershipsModule & MembershipsModuleRelations;
 export type StorageModuleWithRelations = StorageModule & StorageModuleRelations;
-export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 export type EntityTypeProvisionWithRelations = EntityTypeProvision & EntityTypeProvisionRelations;
+export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 // ============ Entity Select Types ============
 export type DefaultIdsModuleSelect = {
   id?: boolean;
@@ -2123,22 +2130,6 @@ export type CryptoAuthModuleSelect = {
   signUpWithKey?: boolean;
   signInWithChallenge?: boolean;
 };
-export type RateLimitMetersModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  rateLimitStateTableId?: boolean;
-  rateLimitStateTableName?: boolean;
-  rateLimitOverridesTableId?: boolean;
-  rateLimitOverridesTableName?: boolean;
-  rateWindowLimitsTableId?: boolean;
-  rateWindowLimitsTableName?: boolean;
-  checkRateLimitFunction?: boolean;
-  prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-};
 export type SessionsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2210,6 +2201,7 @@ export type GraphModuleSelect = {
   entityTableId?: boolean;
   policies?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
   createdAt?: boolean;
   merkleStoreModule?: {
     select: MerkleStoreModuleSelect;
@@ -2228,6 +2220,23 @@ export type SecureTableProvisionSelect = {
   policies?: boolean;
   outFields?: boolean;
 };
+export type RateLimitMetersModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  rateLimitStateTableId?: boolean;
+  rateLimitStateTableName?: boolean;
+  rateLimitOverridesTableId?: boolean;
+  rateLimitOverridesTableName?: boolean;
+  rateWindowLimitsTableId?: boolean;
+  rateWindowLimitsTableName?: boolean;
+  checkRateLimitFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type InvitesModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2262,25 +2271,6 @@ export type DatabaseProvisionModuleSelect = {
   updatedAt?: boolean;
   completedAt?: boolean;
 };
-export type NamespaceModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  namespacesTableId?: boolean;
-  namespaceEventsTableId?: boolean;
-  namespacesTableName?: boolean;
-  namespaceEventsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type RealtimeModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2315,6 +2305,26 @@ export type WebauthnAuthModuleSelect = {
   residentKey?: boolean;
   challengeExpiry?: boolean;
 };
+export type NamespaceModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  publicSchemaName?: boolean;
+  privateSchemaName?: boolean;
+  namespacesTableId?: boolean;
+  namespaceEventsTableId?: boolean;
+  namespacesTableName?: boolean;
+  namespaceEventsTableName?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
+};
 export type ComputeLogModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2391,6 +2401,27 @@ export type TransferLogModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type PlansModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  plansTableId?: boolean;
+  plansTableName?: boolean;
+  planLimitsTableId?: boolean;
+  planLimitsTableName?: boolean;
+  planPricingTableId?: boolean;
+  planOverridesTableId?: boolean;
+  planMeterLimitsTableId?: boolean;
+  planCapsTableId?: boolean;
+  applyPlanFunction?: boolean;
+  applyPlanAggregateFunction?: boolean;
+  applyBillingPlanFunction?: boolean;
+  applyPlanCapsFunction?: boolean;
+  prefix?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type DbUsageModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2409,6 +2440,7 @@ export type DbUsageModuleSelect = {
   premake?: boolean;
   scope?: boolean;
   prefix?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2430,100 +2462,81 @@ export type NotificationsModuleSelect = {
   hasSettingsExtension?: boolean;
   hasDigestMetadata?: boolean;
   hasSubscriptions?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type PlansModuleSelect = {
+export type BillingProviderModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  plansTableId?: boolean;
-  plansTableName?: boolean;
-  planLimitsTableId?: boolean;
-  planLimitsTableName?: boolean;
-  planPricingTableId?: boolean;
-  planOverridesTableId?: boolean;
-  planMeterLimitsTableId?: boolean;
-  planCapsTableId?: boolean;
-  applyPlanFunction?: boolean;
-  applyPlanAggregateFunction?: boolean;
-  applyBillingPlanFunction?: boolean;
-  applyPlanCapsFunction?: boolean;
+  provider?: boolean;
+  productsTableId?: boolean;
+  pricesTableId?: boolean;
+  subscriptionsTableId?: boolean;
+  billingCustomersTableId?: boolean;
+  billingCustomersTableName?: boolean;
+  billingProductsTableId?: boolean;
+  billingProductsTableName?: boolean;
+  billingPricesTableId?: boolean;
+  billingPricesTableName?: boolean;
+  billingSubscriptionsTableId?: boolean;
+  billingSubscriptionsTableName?: boolean;
+  billingWebhookEventsTableId?: boolean;
+  billingWebhookEventsTableName?: boolean;
+  processBillingEventFunction?: boolean;
   prefix?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type HierarchyModuleSelect = {
+export type FunctionModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  chartEdgesTableId?: boolean;
-  chartEdgesTableName?: boolean;
-  hierarchySprtTableId?: boolean;
-  hierarchySprtTableName?: boolean;
-  chartEdgeGrantsTableId?: boolean;
-  chartEdgeGrantsTableName?: boolean;
-  entityTableId?: boolean;
-  usersTableId?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
+  publicSchemaName?: boolean;
   privateSchemaName?: boolean;
-  sprtTableName?: boolean;
-  rebuildHierarchyFunction?: boolean;
-  getSubordinatesFunction?: boolean;
-  getManagersFunction?: boolean;
-  isManagerOfFunction?: boolean;
-  createdAt?: boolean;
-};
-export type BillingModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  metersTableId?: boolean;
-  metersTableName?: boolean;
-  planSubscriptionsTableId?: boolean;
-  planSubscriptionsTableName?: boolean;
-  ledgerTableId?: boolean;
-  ledgerTableName?: boolean;
-  balancesTableId?: boolean;
-  balancesTableName?: boolean;
-  meterCreditsTableId?: boolean;
-  meterCreditsTableName?: boolean;
-  meterSourcesTableId?: boolean;
-  meterSourcesTableName?: boolean;
-  meterDefaultsTableId?: boolean;
-  meterDefaultsTableName?: boolean;
-  recordUsageFunction?: boolean;
-  prefix?: boolean;
+  definitionsTableId?: boolean;
+  invocationsTableId?: boolean;
+  executionLogsTableId?: boolean;
+  secretDefinitionsTableId?: boolean;
+  definitionsTableName?: boolean;
+  invocationsTableName?: boolean;
+  executionLogsTableName?: boolean;
+  secretDefinitionsTableName?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
 };
-export type BillingProviderModuleSelect = {
+export type HierarchyModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  provider?: boolean;
-  productsTableId?: boolean;
-  pricesTableId?: boolean;
-  subscriptionsTableId?: boolean;
-  billingCustomersTableId?: boolean;
-  billingCustomersTableName?: boolean;
-  billingProductsTableId?: boolean;
-  billingProductsTableName?: boolean;
-  billingPricesTableId?: boolean;
-  billingPricesTableName?: boolean;
-  billingSubscriptionsTableId?: boolean;
-  billingSubscriptionsTableName?: boolean;
-  billingWebhookEventsTableId?: boolean;
-  billingWebhookEventsTableName?: boolean;
-  processBillingEventFunction?: boolean;
+  chartEdgesTableId?: boolean;
+  chartEdgesTableName?: boolean;
+  hierarchySprtTableId?: boolean;
+  hierarchySprtTableName?: boolean;
+  chartEdgeGrantsTableId?: boolean;
+  chartEdgeGrantsTableName?: boolean;
+  entityTableId?: boolean;
+  usersTableId?: boolean;
+  scope?: boolean;
   prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
+  privateSchemaName?: boolean;
+  sprtTableName?: boolean;
+  rebuildHierarchyFunction?: boolean;
+  getSubordinatesFunction?: boolean;
+  getManagersFunction?: boolean;
+  isManagerOfFunction?: boolean;
+  defaultPermissions?: boolean;
+  createdAt?: boolean;
 };
 export type ProfilesModuleSelect = {
   id?: boolean;
@@ -2570,6 +2583,31 @@ export type PermissionsModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type BillingModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  metersTableId?: boolean;
+  metersTableName?: boolean;
+  planSubscriptionsTableId?: boolean;
+  planSubscriptionsTableName?: boolean;
+  ledgerTableId?: boolean;
+  ledgerTableName?: boolean;
+  balancesTableId?: boolean;
+  balancesTableName?: boolean;
+  meterCreditsTableId?: boolean;
+  meterCreditsTableName?: boolean;
+  meterSourcesTableId?: boolean;
+  meterSourcesTableName?: boolean;
+  meterDefaultsTableId?: boolean;
+  meterDefaultsTableName?: boolean;
+  recordUsageFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type RelationProvisionSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2596,34 +2634,6 @@ export type RelationProvisionSelect = {
   outSourceFieldId?: boolean;
   outTargetFieldId?: boolean;
 };
-export type FunctionModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  definitionsTableId?: boolean;
-  invocationsTableId?: boolean;
-  executionLogsTableId?: boolean;
-  secretDefinitionsTableId?: boolean;
-  requirementsTableId?: boolean;
-  configDefinitionsTableId?: boolean;
-  configRequirementsTableId?: boolean;
-  definitionsTableName?: boolean;
-  invocationsTableName?: boolean;
-  executionLogsTableName?: boolean;
-  secretDefinitionsTableName?: boolean;
-  requirementsTableName?: boolean;
-  configRequirementsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type UserAuthModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2678,6 +2688,7 @@ export type AgentModuleSelect = {
   hasPlans?: boolean;
   hasResources?: boolean;
   hasAgents?: boolean;
+  shared?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
   scope?: boolean;
@@ -2686,6 +2697,7 @@ export type AgentModuleSelect = {
   policies?: boolean;
   resources?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
 };
 export type LimitsModuleSelect = {
   id?: boolean;
@@ -2759,6 +2771,8 @@ export type MembershipsModuleSelect = {
   entityIdsByPerm?: boolean;
   entityIdsFunction?: boolean;
   memberProfilesTableId?: boolean;
+  permissionDefaultPermissionsTableId?: boolean;
+  permissionDefaultGrantsTableId?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2797,9 +2811,52 @@ export type StorageModuleSelect = {
   hasConfirmUpload?: boolean;
   confirmUploadDelay?: boolean;
   fileEventsTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type EntityTypeProvisionSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  name?: boolean;
+  prefix?: boolean;
+  description?: boolean;
+  parentEntity?: boolean;
+  tableName?: boolean;
+  isVisible?: boolean;
+  hasLimits?: boolean;
+  hasProfiles?: boolean;
+  hasLevels?: boolean;
+  hasInvites?: boolean;
+  hasInviteAchievements?: boolean;
+  storage?: boolean;
+  namespaces?: boolean;
+  functions?: boolean;
+  graphs?: boolean;
+  agents?: boolean;
+  skipEntityPolicies?: boolean;
+  tableProvision?: boolean;
+  outMembershipType?: boolean;
+  outEntityTableId?: boolean;
+  outEntityTableName?: boolean;
+  outInstalledModules?: boolean;
+  outStorageModuleId?: boolean;
+  outBucketsTableId?: boolean;
+  outFilesTableId?: boolean;
+  outPathSharesTableId?: boolean;
+  outInvitesModuleId?: boolean;
+  outNamespaceModuleId?: boolean;
+  outNamespacesTableId?: boolean;
+  outNamespaceEventsTableId?: boolean;
+  outFunctionModuleId?: boolean;
+  outDefinitionsTableId?: boolean;
+  outInvocationsTableId?: boolean;
+  outExecutionLogsTableId?: boolean;
+  outSecretDefinitionsTableId?: boolean;
+  outGraphModuleId?: boolean;
+  outGraphsTableId?: boolean;
+  outAgentModuleId?: boolean;
+};
 export type EventsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2840,53 +2897,10 @@ export type EventsModuleSelect = {
   prefix?: boolean;
   entityTableId?: boolean;
   actorTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type EntityTypeProvisionSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  name?: boolean;
-  prefix?: boolean;
-  description?: boolean;
-  parentEntity?: boolean;
-  tableName?: boolean;
-  isVisible?: boolean;
-  hasLimits?: boolean;
-  hasProfiles?: boolean;
-  hasLevels?: boolean;
-  hasInvites?: boolean;
-  hasInviteAchievements?: boolean;
-  storage?: boolean;
-  namespaces?: boolean;
-  functions?: boolean;
-  graphs?: boolean;
-  agents?: boolean;
-  skipEntityPolicies?: boolean;
-  tableProvision?: boolean;
-  outMembershipType?: boolean;
-  outEntityTableId?: boolean;
-  outEntityTableName?: boolean;
-  outInstalledModules?: boolean;
-  outStorageModuleId?: boolean;
-  outBucketsTableId?: boolean;
-  outFilesTableId?: boolean;
-  outPathSharesTableId?: boolean;
-  outInvitesModuleId?: boolean;
-  outNamespaceModuleId?: boolean;
-  outNamespacesTableId?: boolean;
-  outNamespaceEventsTableId?: boolean;
-  outFunctionModuleId?: boolean;
-  outDefinitionsTableId?: boolean;
-  outInvocationsTableId?: boolean;
-  outExecutionLogsTableId?: boolean;
-  outSecretDefinitionsTableId?: boolean;
-  outRequirementsTableId?: boolean;
-  outConfigRequirementsTableId?: boolean;
-  outGraphModuleId?: boolean;
-  outGraphsTableId?: boolean;
-  outAgentModuleId?: boolean;
-};
 // ============ Table Filter Types ============
 export interface DefaultIdsModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3538,42 +3552,6 @@ export interface CryptoAuthModuleFilter {
   /** Negates the expression. */
   not?: CryptoAuthModuleFilter;
 }
-export interface RateLimitMetersModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableId` field. */
-  rateLimitStateTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableName` field. */
-  rateLimitStateTableName?: StringFilter;
-  /** Filter by the object’s `rateLimitOverridesTableId` field. */
-  rateLimitOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitOverridesTableName` field. */
-  rateLimitOverridesTableName?: StringFilter;
-  /** Filter by the object’s `rateWindowLimitsTableId` field. */
-  rateWindowLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `rateWindowLimitsTableName` field. */
-  rateWindowLimitsTableName?: StringFilter;
-  /** Filter by the object’s `checkRateLimitFunction` field. */
-  checkRateLimitFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: RateLimitMetersModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: RateLimitMetersModuleFilter[];
-  /** Negates the expression. */
-  not?: RateLimitMetersModuleFilter;
-}
 export interface SessionsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3719,6 +3697,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -3760,7 +3740,7 @@ export interface SecureTableProvisionFilter {
   /** Negates the expression. */
   not?: SecureTableProvisionFilter;
 }
-export interface InvitesModuleFilter {
+export interface RateLimitMetersModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -3769,14 +3749,52 @@ export interface InvitesModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `emailsTableId` field. */
-  emailsTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `invitesTableId` field. */
-  invitesTableId?: UUIDFilter;
-  /** Filter by the object’s `claimedInvitesTableId` field. */
-  claimedInvitesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableId` field. */
+  rateLimitStateTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableName` field. */
+  rateLimitStateTableName?: StringFilter;
+  /** Filter by the object’s `rateLimitOverridesTableId` field. */
+  rateLimitOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitOverridesTableName` field. */
+  rateLimitOverridesTableName?: StringFilter;
+  /** Filter by the object’s `rateWindowLimitsTableId` field. */
+  rateWindowLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `rateWindowLimitsTableName` field. */
+  rateWindowLimitsTableName?: StringFilter;
+  /** Filter by the object’s `checkRateLimitFunction` field. */
+  checkRateLimitFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: RateLimitMetersModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: RateLimitMetersModuleFilter[];
+  /** Negates the expression. */
+  not?: RateLimitMetersModuleFilter;
+}
+export interface InvitesModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `emailsTableId` field. */
+  emailsTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `invitesTableId` field. */
+  invitesTableId?: UUIDFilter;
+  /** Filter by the object’s `claimedInvitesTableId` field. */
+  claimedInvitesTableId?: UUIDFilter;
   /** Filter by the object’s `invitesTableName` field. */
   invitesTableName?: StringFilter;
   /** Filter by the object’s `claimedInvitesTableName` field. */
@@ -3836,48 +3854,6 @@ export interface DatabaseProvisionModuleFilter {
   /** Negates the expression. */
   not?: DatabaseProvisionModuleFilter;
 }
-export interface NamespaceModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `namespacesTableId` field. */
-  namespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `namespaceEventsTableId` field. */
-  namespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `namespacesTableName` field. */
-  namespacesTableName?: StringFilter;
-  /** Filter by the object’s `namespaceEventsTableName` field. */
-  namespaceEventsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: NamespaceModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: NamespaceModuleFilter[];
-  /** Negates the expression. */
-  not?: NamespaceModuleFilter;
-}
 export interface RealtimeModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3954,6 +3930,50 @@ export interface WebauthnAuthModuleFilter {
   /** Negates the expression. */
   not?: WebauthnAuthModuleFilter;
 }
+export interface NamespaceModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `namespacesTableId` field. */
+  namespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `namespaceEventsTableId` field. */
+  namespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `namespacesTableName` field. */
+  namespacesTableName?: StringFilter;
+  /** Filter by the object’s `namespaceEventsTableName` field. */
+  namespaceEventsTableName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: NamespaceModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: NamespaceModuleFilter[];
+  /** Negates the expression. */
+  not?: NamespaceModuleFilter;
+}
 export interface ComputeLogModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4122,6 +4142,52 @@ export interface TransferLogModuleFilter {
   /** Negates the expression. */
   not?: TransferLogModuleFilter;
 }
+export interface PlansModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `plansTableId` field. */
+  plansTableId?: UUIDFilter;
+  /** Filter by the object’s `plansTableName` field. */
+  plansTableName?: StringFilter;
+  /** Filter by the object’s `planLimitsTableId` field. */
+  planLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planLimitsTableName` field. */
+  planLimitsTableName?: StringFilter;
+  /** Filter by the object’s `planPricingTableId` field. */
+  planPricingTableId?: UUIDFilter;
+  /** Filter by the object’s `planOverridesTableId` field. */
+  planOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `planMeterLimitsTableId` field. */
+  planMeterLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planCapsTableId` field. */
+  planCapsTableId?: UUIDFilter;
+  /** Filter by the object’s `applyPlanFunction` field. */
+  applyPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanAggregateFunction` field. */
+  applyPlanAggregateFunction?: StringFilter;
+  /** Filter by the object’s `applyBillingPlanFunction` field. */
+  applyBillingPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanCapsFunction` field. */
+  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: PlansModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: PlansModuleFilter[];
+  /** Negates the expression. */
+  not?: PlansModuleFilter;
+}
 export interface DbUsageModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4157,6 +4223,8 @@ export interface DbUsageModuleFilter {
   scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4203,6 +4271,8 @@ export interface NotificationsModuleFilter {
   hasDigestMetadata?: BooleanFilter;
   /** Filter by the object’s `hasSubscriptions` field. */
   hasSubscriptions?: BooleanFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4214,7 +4284,7 @@ export interface NotificationsModuleFilter {
   /** Negates the expression. */
   not?: NotificationsModuleFilter;
 }
-export interface PlansModuleFilter {
+export interface BillingProviderModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4223,30 +4293,36 @@ export interface PlansModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `plansTableId` field. */
-  plansTableId?: UUIDFilter;
-  /** Filter by the object’s `plansTableName` field. */
-  plansTableName?: StringFilter;
-  /** Filter by the object’s `planLimitsTableId` field. */
-  planLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planLimitsTableName` field. */
-  planLimitsTableName?: StringFilter;
-  /** Filter by the object’s `planPricingTableId` field. */
-  planPricingTableId?: UUIDFilter;
-  /** Filter by the object’s `planOverridesTableId` field. */
-  planOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `planMeterLimitsTableId` field. */
-  planMeterLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planCapsTableId` field. */
-  planCapsTableId?: UUIDFilter;
-  /** Filter by the object’s `applyPlanFunction` field. */
-  applyPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanAggregateFunction` field. */
-  applyPlanAggregateFunction?: StringFilter;
-  /** Filter by the object’s `applyBillingPlanFunction` field. */
-  applyBillingPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanCapsFunction` field. */
-  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `provider` field. */
+  provider?: StringFilter;
+  /** Filter by the object’s `productsTableId` field. */
+  productsTableId?: UUIDFilter;
+  /** Filter by the object’s `pricesTableId` field. */
+  pricesTableId?: UUIDFilter;
+  /** Filter by the object’s `subscriptionsTableId` field. */
+  subscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableId` field. */
+  billingCustomersTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableName` field. */
+  billingCustomersTableName?: StringFilter;
+  /** Filter by the object’s `billingProductsTableId` field. */
+  billingProductsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingProductsTableName` field. */
+  billingProductsTableName?: StringFilter;
+  /** Filter by the object’s `billingPricesTableId` field. */
+  billingPricesTableId?: UUIDFilter;
+  /** Filter by the object’s `billingPricesTableName` field. */
+  billingPricesTableName?: StringFilter;
+  /** Filter by the object’s `billingSubscriptionsTableId` field. */
+  billingSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingSubscriptionsTableName` field. */
+  billingSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `billingWebhookEventsTableId` field. */
+  billingWebhookEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingWebhookEventsTableName` field. */
+  billingWebhookEventsTableName?: StringFilter;
+  /** Filter by the object’s `processBillingEventFunction` field. */
+  processBillingEventFunction?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
   /** Filter by the object’s `apiName` field. */
@@ -4254,13 +4330,13 @@ export interface PlansModuleFilter {
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
   /** Checks for all expressions in this list. */
-  and?: PlansModuleFilter[];
+  and?: BillingProviderModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: PlansModuleFilter[];
+  or?: BillingProviderModuleFilter[];
   /** Negates the expression. */
-  not?: PlansModuleFilter;
+  not?: BillingProviderModuleFilter;
 }
-export interface HierarchyModuleFilter {
+export interface FunctionModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4269,100 +4345,50 @@ export interface HierarchyModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableId` field. */
-  chartEdgesTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableName` field. */
-  chartEdgesTableName?: StringFilter;
-  /** Filter by the object’s `hierarchySprtTableId` field. */
-  hierarchySprtTableId?: UUIDFilter;
-  /** Filter by the object’s `hierarchySprtTableName` field. */
-  hierarchySprtTableName?: StringFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
-  chartEdgeGrantsTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
-  chartEdgeGrantsTableName?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
   /** Filter by the object’s `privateSchemaName` field. */
   privateSchemaName?: StringFilter;
-  /** Filter by the object’s `sprtTableName` field. */
-  sprtTableName?: StringFilter;
-  /** Filter by the object’s `rebuildHierarchyFunction` field. */
-  rebuildHierarchyFunction?: StringFilter;
-  /** Filter by the object’s `getSubordinatesFunction` field. */
-  getSubordinatesFunction?: StringFilter;
-  /** Filter by the object’s `getManagersFunction` field. */
-  getManagersFunction?: StringFilter;
-  /** Filter by the object’s `isManagerOfFunction` field. */
-  isManagerOfFunction?: StringFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Checks for all expressions in this list. */
-  and?: HierarchyModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: HierarchyModuleFilter[];
-  /** Negates the expression. */
-  not?: HierarchyModuleFilter;
-}
-export interface BillingModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `metersTableId` field. */
-  metersTableId?: UUIDFilter;
-  /** Filter by the object’s `metersTableName` field. */
-  metersTableName?: StringFilter;
-  /** Filter by the object’s `planSubscriptionsTableId` field. */
-  planSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `planSubscriptionsTableName` field. */
-  planSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `ledgerTableId` field. */
-  ledgerTableId?: UUIDFilter;
-  /** Filter by the object’s `ledgerTableName` field. */
-  ledgerTableName?: StringFilter;
-  /** Filter by the object’s `balancesTableId` field. */
-  balancesTableId?: UUIDFilter;
-  /** Filter by the object’s `balancesTableName` field. */
-  balancesTableName?: StringFilter;
-  /** Filter by the object’s `meterCreditsTableId` field. */
-  meterCreditsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterCreditsTableName` field. */
-  meterCreditsTableName?: StringFilter;
-  /** Filter by the object’s `meterSourcesTableId` field. */
-  meterSourcesTableId?: UUIDFilter;
-  /** Filter by the object’s `meterSourcesTableName` field. */
-  meterSourcesTableName?: StringFilter;
-  /** Filter by the object’s `meterDefaultsTableId` field. */
-  meterDefaultsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterDefaultsTableName` field. */
-  meterDefaultsTableName?: StringFilter;
-  /** Filter by the object’s `recordUsageFunction` field. */
-  recordUsageFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `definitionsTableId` field. */
+  definitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `invocationsTableId` field. */
+  invocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `executionLogsTableId` field. */
+  executionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `secretDefinitionsTableId` field. */
+  secretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `definitionsTableName` field. */
+  definitionsTableName?: StringFilter;
+  /** Filter by the object’s `invocationsTableName` field. */
+  invocationsTableName?: StringFilter;
+  /** Filter by the object’s `executionLogsTableName` field. */
+  executionLogsTableName?: StringFilter;
+  /** Filter by the object’s `secretDefinitionsTableName` field. */
+  secretDefinitionsTableName?: StringFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingModuleFilter[];
+  and?: FunctionModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingModuleFilter[];
+  or?: FunctionModuleFilter[];
   /** Negates the expression. */
-  not?: BillingModuleFilter;
+  not?: FunctionModuleFilter;
 }
-export interface BillingProviderModuleFilter {
+export interface HierarchyModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4371,48 +4397,48 @@ export interface BillingProviderModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `provider` field. */
-  provider?: StringFilter;
-  /** Filter by the object’s `productsTableId` field. */
-  productsTableId?: UUIDFilter;
-  /** Filter by the object’s `pricesTableId` field. */
-  pricesTableId?: UUIDFilter;
-  /** Filter by the object’s `subscriptionsTableId` field. */
-  subscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableId` field. */
-  billingCustomersTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableName` field. */
-  billingCustomersTableName?: StringFilter;
-  /** Filter by the object’s `billingProductsTableId` field. */
-  billingProductsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingProductsTableName` field. */
-  billingProductsTableName?: StringFilter;
-  /** Filter by the object’s `billingPricesTableId` field. */
-  billingPricesTableId?: UUIDFilter;
-  /** Filter by the object’s `billingPricesTableName` field. */
-  billingPricesTableName?: StringFilter;
-  /** Filter by the object’s `billingSubscriptionsTableId` field. */
-  billingSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingSubscriptionsTableName` field. */
-  billingSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `billingWebhookEventsTableId` field. */
-  billingWebhookEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingWebhookEventsTableName` field. */
-  billingWebhookEventsTableName?: StringFilter;
-  /** Filter by the object’s `processBillingEventFunction` field. */
-  processBillingEventFunction?: StringFilter;
+  /** Filter by the object’s `chartEdgesTableId` field. */
+  chartEdgesTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgesTableName` field. */
+  chartEdgesTableName?: StringFilter;
+  /** Filter by the object’s `hierarchySprtTableId` field. */
+  hierarchySprtTableId?: UUIDFilter;
+  /** Filter by the object’s `hierarchySprtTableName` field. */
+  hierarchySprtTableName?: StringFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
+  chartEdgeGrantsTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
+  chartEdgeGrantsTableName?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `sprtTableName` field. */
+  sprtTableName?: StringFilter;
+  /** Filter by the object’s `rebuildHierarchyFunction` field. */
+  rebuildHierarchyFunction?: StringFilter;
+  /** Filter by the object’s `getSubordinatesFunction` field. */
+  getSubordinatesFunction?: StringFilter;
+  /** Filter by the object’s `getManagersFunction` field. */
+  getManagersFunction?: StringFilter;
+  /** Filter by the object’s `isManagerOfFunction` field. */
+  isManagerOfFunction?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingProviderModuleFilter[];
+  and?: HierarchyModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingProviderModuleFilter[];
+  or?: HierarchyModuleFilter[];
   /** Negates the expression. */
-  not?: BillingProviderModuleFilter;
+  not?: HierarchyModuleFilter;
 }
 export interface ProfilesModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -4512,6 +4538,60 @@ export interface PermissionsModuleFilter {
   /** Negates the expression. */
   not?: PermissionsModuleFilter;
 }
+export interface BillingModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `metersTableId` field. */
+  metersTableId?: UUIDFilter;
+  /** Filter by the object’s `metersTableName` field. */
+  metersTableName?: StringFilter;
+  /** Filter by the object’s `planSubscriptionsTableId` field. */
+  planSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `planSubscriptionsTableName` field. */
+  planSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `ledgerTableId` field. */
+  ledgerTableId?: UUIDFilter;
+  /** Filter by the object’s `ledgerTableName` field. */
+  ledgerTableName?: StringFilter;
+  /** Filter by the object’s `balancesTableId` field. */
+  balancesTableId?: UUIDFilter;
+  /** Filter by the object’s `balancesTableName` field. */
+  balancesTableName?: StringFilter;
+  /** Filter by the object’s `meterCreditsTableId` field. */
+  meterCreditsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterCreditsTableName` field. */
+  meterCreditsTableName?: StringFilter;
+  /** Filter by the object’s `meterSourcesTableId` field. */
+  meterSourcesTableId?: UUIDFilter;
+  /** Filter by the object’s `meterSourcesTableName` field. */
+  meterSourcesTableName?: StringFilter;
+  /** Filter by the object’s `meterDefaultsTableId` field. */
+  meterDefaultsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterDefaultsTableName` field. */
+  meterDefaultsTableName?: StringFilter;
+  /** Filter by the object’s `recordUsageFunction` field. */
+  recordUsageFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: BillingModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: BillingModuleFilter[];
+  /** Negates the expression. */
+  not?: BillingModuleFilter;
+}
 export interface RelationProvisionFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4568,67 +4648,7 @@ export interface RelationProvisionFilter {
   /** Negates the expression. */
   not?: RelationProvisionFilter;
 }
-export interface FunctionModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `definitionsTableId` field. */
-  definitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `invocationsTableId` field. */
-  invocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `executionLogsTableId` field. */
-  executionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `secretDefinitionsTableId` field. */
-  secretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `requirementsTableId` field. */
-  requirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `configDefinitionsTableId` field. */
-  configDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `configRequirementsTableId` field. */
-  configRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `definitionsTableName` field. */
-  definitionsTableName?: StringFilter;
-  /** Filter by the object’s `invocationsTableName` field. */
-  invocationsTableName?: StringFilter;
-  /** Filter by the object’s `executionLogsTableName` field. */
-  executionLogsTableName?: StringFilter;
-  /** Filter by the object’s `secretDefinitionsTableName` field. */
-  secretDefinitionsTableName?: StringFilter;
-  /** Filter by the object’s `requirementsTableName` field. */
-  requirementsTableName?: StringFilter;
-  /** Filter by the object’s `configRequirementsTableName` field. */
-  configRequirementsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: FunctionModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: FunctionModuleFilter[];
-  /** Negates the expression. */
-  not?: FunctionModuleFilter;
-}
-export interface UserAuthModuleFilter {
+export interface UserAuthModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4739,6 +4759,8 @@ export interface AgentModuleFilter {
   hasResources?: BooleanFilter;
   /** Filter by the object’s `hasAgents` field. */
   hasAgents?: BooleanFilter;
+  /** Filter by the object’s `shared` field. */
+  shared?: BooleanFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4755,6 +4777,8 @@ export interface AgentModuleFilter {
   resources?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
   and?: AgentModuleFilter[];
   /** Checks for any expressions in this list. */
@@ -4909,6 +4933,10 @@ export interface MembershipsModuleFilter {
   entityIdsFunction?: StringFilter;
   /** Filter by the object’s `memberProfilesTableId` field. */
   memberProfilesTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultPermissionsTableId` field. */
+  permissionDefaultPermissionsTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultGrantsTableId` field. */
+  permissionDefaultGrantsTableId?: UUIDFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4989,6 +5017,8 @@ export interface StorageModuleFilter {
   confirmUploadDelay?: IntervalFilter;
   /** Filter by the object’s `fileEventsTableId` field. */
   fileEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5000,6 +5030,94 @@ export interface StorageModuleFilter {
   /** Negates the expression. */
   not?: StorageModuleFilter;
 }
+export interface EntityTypeProvisionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `parentEntity` field. */
+  parentEntity?: StringFilter;
+  /** Filter by the object’s `tableName` field. */
+  tableName?: StringFilter;
+  /** Filter by the object’s `isVisible` field. */
+  isVisible?: BooleanFilter;
+  /** Filter by the object’s `hasLimits` field. */
+  hasLimits?: BooleanFilter;
+  /** Filter by the object’s `hasProfiles` field. */
+  hasProfiles?: BooleanFilter;
+  /** Filter by the object’s `hasLevels` field. */
+  hasLevels?: BooleanFilter;
+  /** Filter by the object’s `hasInvites` field. */
+  hasInvites?: BooleanFilter;
+  /** Filter by the object’s `hasInviteAchievements` field. */
+  hasInviteAchievements?: BooleanFilter;
+  /** Filter by the object’s `storage` field. */
+  storage?: JSONFilter;
+  /** Filter by the object’s `namespaces` field. */
+  namespaces?: JSONFilter;
+  /** Filter by the object’s `functions` field. */
+  functions?: JSONFilter;
+  /** Filter by the object’s `graphs` field. */
+  graphs?: JSONFilter;
+  /** Filter by the object’s `agents` field. */
+  agents?: JSONFilter;
+  /** Filter by the object’s `skipEntityPolicies` field. */
+  skipEntityPolicies?: BooleanFilter;
+  /** Filter by the object’s `tableProvision` field. */
+  tableProvision?: JSONFilter;
+  /** Filter by the object’s `outMembershipType` field. */
+  outMembershipType?: IntFilter;
+  /** Filter by the object’s `outEntityTableId` field. */
+  outEntityTableId?: UUIDFilter;
+  /** Filter by the object’s `outEntityTableName` field. */
+  outEntityTableName?: StringFilter;
+  /** Filter by the object’s `outInstalledModules` field. */
+  outInstalledModules?: StringListFilter;
+  /** Filter by the object’s `outStorageModuleId` field. */
+  outStorageModuleId?: UUIDFilter;
+  /** Filter by the object’s `outBucketsTableId` field. */
+  outBucketsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFilesTableId` field. */
+  outFilesTableId?: UUIDFilter;
+  /** Filter by the object’s `outPathSharesTableId` field. */
+  outPathSharesTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvitesModuleId` field. */
+  outInvitesModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceModuleId` field. */
+  outNamespaceModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespacesTableId` field. */
+  outNamespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceEventsTableId` field. */
+  outNamespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFunctionModuleId` field. */
+  outFunctionModuleId?: UUIDFilter;
+  /** Filter by the object’s `outDefinitionsTableId` field. */
+  outDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvocationsTableId` field. */
+  outInvocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `outExecutionLogsTableId` field. */
+  outExecutionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
+  outSecretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outGraphModuleId` field. */
+  outGraphModuleId?: UUIDFilter;
+  /** Filter by the object’s `outGraphsTableId` field. */
+  outGraphsTableId?: UUIDFilter;
+  /** Filter by the object’s `outAgentModuleId` field. */
+  outAgentModuleId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: EntityTypeProvisionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: EntityTypeProvisionFilter[];
+  /** Negates the expression. */
+  not?: EntityTypeProvisionFilter;
+}
 export interface EventsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -5079,6 +5197,8 @@ export interface EventsModuleFilter {
   entityTableId?: UUIDFilter;
   /** Filter by the object’s `actorTableId` field. */
   actorTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5090,98 +5210,6 @@ export interface EventsModuleFilter {
   /** Negates the expression. */
   not?: EventsModuleFilter;
 }
-export interface EntityTypeProvisionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Filter by the object’s `parentEntity` field. */
-  parentEntity?: StringFilter;
-  /** Filter by the object’s `tableName` field. */
-  tableName?: StringFilter;
-  /** Filter by the object’s `isVisible` field. */
-  isVisible?: BooleanFilter;
-  /** Filter by the object’s `hasLimits` field. */
-  hasLimits?: BooleanFilter;
-  /** Filter by the object’s `hasProfiles` field. */
-  hasProfiles?: BooleanFilter;
-  /** Filter by the object’s `hasLevels` field. */
-  hasLevels?: BooleanFilter;
-  /** Filter by the object’s `hasInvites` field. */
-  hasInvites?: BooleanFilter;
-  /** Filter by the object’s `hasInviteAchievements` field. */
-  hasInviteAchievements?: BooleanFilter;
-  /** Filter by the object’s `storage` field. */
-  storage?: JSONFilter;
-  /** Filter by the object’s `namespaces` field. */
-  namespaces?: JSONFilter;
-  /** Filter by the object’s `functions` field. */
-  functions?: JSONFilter;
-  /** Filter by the object’s `graphs` field. */
-  graphs?: JSONFilter;
-  /** Filter by the object’s `agents` field. */
-  agents?: JSONFilter;
-  /** Filter by the object’s `skipEntityPolicies` field. */
-  skipEntityPolicies?: BooleanFilter;
-  /** Filter by the object’s `tableProvision` field. */
-  tableProvision?: JSONFilter;
-  /** Filter by the object’s `outMembershipType` field. */
-  outMembershipType?: IntFilter;
-  /** Filter by the object’s `outEntityTableId` field. */
-  outEntityTableId?: UUIDFilter;
-  /** Filter by the object’s `outEntityTableName` field. */
-  outEntityTableName?: StringFilter;
-  /** Filter by the object’s `outInstalledModules` field. */
-  outInstalledModules?: StringListFilter;
-  /** Filter by the object’s `outStorageModuleId` field. */
-  outStorageModuleId?: UUIDFilter;
-  /** Filter by the object’s `outBucketsTableId` field. */
-  outBucketsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFilesTableId` field. */
-  outFilesTableId?: UUIDFilter;
-  /** Filter by the object’s `outPathSharesTableId` field. */
-  outPathSharesTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvitesModuleId` field. */
-  outInvitesModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceModuleId` field. */
-  outNamespaceModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespacesTableId` field. */
-  outNamespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceEventsTableId` field. */
-  outNamespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFunctionModuleId` field. */
-  outFunctionModuleId?: UUIDFilter;
-  /** Filter by the object’s `outDefinitionsTableId` field. */
-  outDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvocationsTableId` field. */
-  outInvocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `outExecutionLogsTableId` field. */
-  outExecutionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
-  outSecretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outRequirementsTableId` field. */
-  outRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outConfigRequirementsTableId` field. */
-  outConfigRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outGraphModuleId` field. */
-  outGraphModuleId?: UUIDFilter;
-  /** Filter by the object’s `outGraphsTableId` field. */
-  outGraphsTableId?: UUIDFilter;
-  /** Filter by the object’s `outAgentModuleId` field. */
-  outAgentModuleId?: UUIDFilter;
-  /** Checks for all expressions in this list. */
-  and?: EntityTypeProvisionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: EntityTypeProvisionFilter[];
-  /** Negates the expression. */
-  not?: EntityTypeProvisionFilter;
-}
 // ============ OrderBy Types ============
 export type DefaultIdsModuleOrderBy =
   | 'NATURAL'
@@ -5715,38 +5743,6 @@ export type CryptoAuthModuleOrderBy =
   | 'SIGN_UP_WITH_KEY_DESC'
   | 'SIGN_IN_WITH_CHALLENGE_ASC'
   | 'SIGN_IN_WITH_CHALLENGE_DESC';
-export type RateLimitMetersModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
 export type SessionsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5879,6 +5875,8 @@ export type GraphModuleOrderBy =
   | 'POLICIES_DESC'
   | 'PROVISIONS_ASC'
   | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC';
 export type SecureTableProvisionOrderBy =
@@ -5907,7 +5905,7 @@ export type SecureTableProvisionOrderBy =
   | 'POLICIES_DESC'
   | 'OUT_FIELDS_ASC'
   | 'OUT_FIELDS_DESC';
-export type InvitesModuleOrderBy =
+export type RateLimitMetersModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -5919,32 +5917,66 @@ export type InvitesModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EMAILS_TABLE_ID_ASC'
-  | 'EMAILS_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'INVITES_TABLE_ID_ASC'
-  | 'INVITES_TABLE_ID_DESC'
-  | 'CLAIMED_INVITES_TABLE_ID_ASC'
-  | 'CLAIMED_INVITES_TABLE_ID_DESC'
-  | 'INVITES_TABLE_NAME_ASC'
-  | 'INVITES_TABLE_NAME_DESC'
-  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
-  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type DatabaseProvisionModuleOrderBy =
-  | 'NATURAL'
+  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type InvitesModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EMAILS_TABLE_ID_ASC'
+  | 'EMAILS_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'INVITES_TABLE_ID_ASC'
+  | 'INVITES_TABLE_ID_DESC'
+  | 'CLAIMED_INVITES_TABLE_ID_ASC'
+  | 'CLAIMED_INVITES_TABLE_ID_DESC'
+  | 'INVITES_TABLE_NAME_ASC'
+  | 'INVITES_TABLE_NAME_DESC'
+  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
+  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type DatabaseProvisionModuleOrderBy =
+  | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
   | 'ID_ASC'
@@ -5975,44 +6007,6 @@ export type DatabaseProvisionModuleOrderBy =
   | 'UPDATED_AT_DESC'
   | 'COMPLETED_AT_ASC'
   | 'COMPLETED_AT_DESC';
-export type NamespaceModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'NAMESPACES_TABLE_ID_ASC'
-  | 'NAMESPACES_TABLE_ID_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
-  | 'NAMESPACES_TABLE_NAME_ASC'
-  | 'NAMESPACES_TABLE_NAME_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type RealtimeModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6081,6 +6075,46 @@ export type WebauthnAuthModuleOrderBy =
   | 'RESIDENT_KEY_DESC'
   | 'CHALLENGE_EXPIRY_ASC'
   | 'CHALLENGE_EXPIRY_DESC';
+export type NamespaceModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'NAMESPACES_TABLE_ID_ASC'
+  | 'NAMESPACES_TABLE_ID_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
+  | 'NAMESPACES_TABLE_NAME_ASC'
+  | 'NAMESPACES_TABLE_NAME_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type ComputeLogModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6233,6 +6267,48 @@ export type TransferLogModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type PlansModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PLANS_TABLE_ID_ASC'
+  | 'PLANS_TABLE_ID_DESC'
+  | 'PLANS_TABLE_NAME_ASC'
+  | 'PLANS_TABLE_NAME_DESC'
+  | 'PLAN_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_LIMITS_TABLE_NAME_ASC'
+  | 'PLAN_LIMITS_TABLE_NAME_DESC'
+  | 'PLAN_PRICING_TABLE_ID_ASC'
+  | 'PLAN_PRICING_TABLE_ID_DESC'
+  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
+  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_CAPS_TABLE_ID_ASC'
+  | 'PLAN_CAPS_TABLE_ID_DESC'
+  | 'APPLY_PLAN_FUNCTION_ASC'
+  | 'APPLY_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type DbUsageModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6271,6 +6347,8 @@ export type DbUsageModuleOrderBy =
   | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6313,11 +6391,13 @@ export type NotificationsModuleOrderBy =
   | 'HAS_DIGEST_METADATA_DESC'
   | 'HAS_SUBSCRIPTIONS_ASC'
   | 'HAS_SUBSCRIPTIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type PlansModuleOrderBy =
+export type BillingProviderModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6329,37 +6409,43 @@ export type PlansModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PLANS_TABLE_ID_ASC'
-  | 'PLANS_TABLE_ID_DESC'
-  | 'PLANS_TABLE_NAME_ASC'
-  | 'PLANS_TABLE_NAME_DESC'
-  | 'PLAN_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_LIMITS_TABLE_NAME_ASC'
-  | 'PLAN_LIMITS_TABLE_NAME_DESC'
-  | 'PLAN_PRICING_TABLE_ID_ASC'
-  | 'PLAN_PRICING_TABLE_ID_DESC'
-  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
-  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_CAPS_TABLE_ID_ASC'
-  | 'PLAN_CAPS_TABLE_ID_DESC'
-  | 'APPLY_PLAN_FUNCTION_ASC'
-  | 'APPLY_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PROVIDER_ASC'
+  | 'PROVIDER_DESC'
+  | 'PRODUCTS_TABLE_ID_ASC'
+  | 'PRODUCTS_TABLE_ID_DESC'
+  | 'PRICES_TABLE_ID_ASC'
+  | 'PRICES_TABLE_ID_DESC'
+  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
+  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
+  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
+  | 'BILLING_PRICES_TABLE_ID_ASC'
+  | 'BILLING_PRICES_TABLE_ID_DESC'
+  | 'BILLING_PRICES_TABLE_NAME_ASC'
+  | 'BILLING_PRICES_TABLE_NAME_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type HierarchyModuleOrderBy =
+export type FunctionModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6371,89 +6457,43 @@ export type HierarchyModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'CHART_EDGES_TABLE_ID_ASC'
-  | 'CHART_EDGES_TABLE_ID_DESC'
-  | 'CHART_EDGES_TABLE_NAME_ASC'
-  | 'CHART_EDGES_TABLE_NAME_DESC'
-  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
-  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
   | 'PRIVATE_SCHEMA_NAME_ASC'
   | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'SPRT_TABLE_NAME_ASC'
-  | 'SPRT_TABLE_NAME_DESC'
-  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
-  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
-  | 'GET_SUBORDINATES_FUNCTION_ASC'
-  | 'GET_SUBORDINATES_FUNCTION_DESC'
-  | 'GET_MANAGERS_FUNCTION_ASC'
-  | 'GET_MANAGERS_FUNCTION_DESC'
-  | 'IS_MANAGER_OF_FUNCTION_ASC'
-  | 'IS_MANAGER_OF_FUNCTION_DESC'
-  | 'CREATED_AT_ASC'
-  | 'CREATED_AT_DESC';
-export type BillingModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'METERS_TABLE_ID_ASC'
-  | 'METERS_TABLE_ID_DESC'
-  | 'METERS_TABLE_NAME_ASC'
-  | 'METERS_TABLE_NAME_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'LEDGER_TABLE_ID_ASC'
-  | 'LEDGER_TABLE_ID_DESC'
-  | 'LEDGER_TABLE_NAME_ASC'
-  | 'LEDGER_TABLE_NAME_DESC'
-  | 'BALANCES_TABLE_ID_ASC'
-  | 'BALANCES_TABLE_ID_DESC'
-  | 'BALANCES_TABLE_NAME_ASC'
-  | 'BALANCES_TABLE_NAME_DESC'
-  | 'METER_CREDITS_TABLE_ID_ASC'
-  | 'METER_CREDITS_TABLE_ID_DESC'
-  | 'METER_CREDITS_TABLE_NAME_ASC'
-  | 'METER_CREDITS_TABLE_NAME_DESC'
-  | 'METER_SOURCES_TABLE_ID_ASC'
-  | 'METER_SOURCES_TABLE_ID_DESC'
-  | 'METER_SOURCES_TABLE_NAME_ASC'
-  | 'METER_SOURCES_TABLE_NAME_DESC'
-  | 'METER_DEFAULTS_TABLE_ID_ASC'
-  | 'METER_DEFAULTS_TABLE_ID_DESC'
-  | 'METER_DEFAULTS_TABLE_NAME_ASC'
-  | 'METER_DEFAULTS_TABLE_NAME_DESC'
-  | 'RECORD_USAGE_FUNCTION_ASC'
-  | 'RECORD_USAGE_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'DEFINITIONS_TABLE_ID_ASC'
+  | 'DEFINITIONS_TABLE_ID_DESC'
+  | 'INVOCATIONS_TABLE_ID_ASC'
+  | 'INVOCATIONS_TABLE_ID_DESC'
+  | 'EXECUTION_LOGS_TABLE_ID_ASC'
+  | 'EXECUTION_LOGS_TABLE_ID_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
+  | 'DEFINITIONS_TABLE_NAME_ASC'
+  | 'DEFINITIONS_TABLE_NAME_DESC'
+  | 'INVOCATIONS_TABLE_NAME_ASC'
+  | 'INVOCATIONS_TABLE_NAME_DESC'
+  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
+  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type BillingProviderModuleOrderBy =
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
+export type HierarchyModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6465,42 +6505,42 @@ export type BillingProviderModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PROVIDER_ASC'
-  | 'PROVIDER_DESC'
-  | 'PRODUCTS_TABLE_ID_ASC'
-  | 'PRODUCTS_TABLE_ID_DESC'
-  | 'PRICES_TABLE_ID_ASC'
-  | 'PRICES_TABLE_ID_DESC'
-  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
-  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
-  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
-  | 'BILLING_PRICES_TABLE_ID_ASC'
-  | 'BILLING_PRICES_TABLE_ID_DESC'
-  | 'BILLING_PRICES_TABLE_NAME_ASC'
-  | 'BILLING_PRICES_TABLE_NAME_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
+  | 'CHART_EDGES_TABLE_ID_ASC'
+  | 'CHART_EDGES_TABLE_ID_DESC'
+  | 'CHART_EDGES_TABLE_NAME_ASC'
+  | 'CHART_EDGES_TABLE_NAME_DESC'
+  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
+  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'SPRT_TABLE_NAME_ASC'
+  | 'SPRT_TABLE_NAME_DESC'
+  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
+  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
+  | 'GET_SUBORDINATES_FUNCTION_ASC'
+  | 'GET_SUBORDINATES_FUNCTION_DESC'
+  | 'GET_MANAGERS_FUNCTION_ASC'
+  | 'GET_MANAGERS_FUNCTION_DESC'
+  | 'IS_MANAGER_OF_FUNCTION_ASC'
+  | 'IS_MANAGER_OF_FUNCTION_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC';
 export type ProfilesModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6591,6 +6631,56 @@ export type PermissionsModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type BillingModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'METERS_TABLE_ID_ASC'
+  | 'METERS_TABLE_ID_DESC'
+  | 'METERS_TABLE_NAME_ASC'
+  | 'METERS_TABLE_NAME_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'LEDGER_TABLE_ID_ASC'
+  | 'LEDGER_TABLE_ID_DESC'
+  | 'LEDGER_TABLE_NAME_ASC'
+  | 'LEDGER_TABLE_NAME_DESC'
+  | 'BALANCES_TABLE_ID_ASC'
+  | 'BALANCES_TABLE_ID_DESC'
+  | 'BALANCES_TABLE_NAME_ASC'
+  | 'BALANCES_TABLE_NAME_DESC'
+  | 'METER_CREDITS_TABLE_ID_ASC'
+  | 'METER_CREDITS_TABLE_ID_DESC'
+  | 'METER_CREDITS_TABLE_NAME_ASC'
+  | 'METER_CREDITS_TABLE_NAME_DESC'
+  | 'METER_SOURCES_TABLE_ID_ASC'
+  | 'METER_SOURCES_TABLE_ID_DESC'
+  | 'METER_SOURCES_TABLE_NAME_ASC'
+  | 'METER_SOURCES_TABLE_NAME_DESC'
+  | 'METER_DEFAULTS_TABLE_ID_ASC'
+  | 'METER_DEFAULTS_TABLE_ID_DESC'
+  | 'METER_DEFAULTS_TABLE_NAME_ASC'
+  | 'METER_DEFAULTS_TABLE_NAME_DESC'
+  | 'RECORD_USAGE_FUNCTION_ASC'
+  | 'RECORD_USAGE_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type RelationProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6643,62 +6733,6 @@ export type RelationProvisionOrderBy =
   | 'OUT_SOURCE_FIELD_ID_DESC'
   | 'OUT_TARGET_FIELD_ID_ASC'
   | 'OUT_TARGET_FIELD_ID_DESC';
-export type FunctionModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'DEFINITIONS_TABLE_ID_ASC'
-  | 'DEFINITIONS_TABLE_ID_DESC'
-  | 'INVOCATIONS_TABLE_ID_ASC'
-  | 'INVOCATIONS_TABLE_ID_DESC'
-  | 'EXECUTION_LOGS_TABLE_ID_ASC'
-  | 'EXECUTION_LOGS_TABLE_ID_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'REQUIREMENTS_TABLE_ID_ASC'
-  | 'REQUIREMENTS_TABLE_ID_DESC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_ASC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_DESC'
-  | 'DEFINITIONS_TABLE_NAME_ASC'
-  | 'DEFINITIONS_TABLE_NAME_DESC'
-  | 'INVOCATIONS_TABLE_NAME_ASC'
-  | 'INVOCATIONS_TABLE_NAME_DESC'
-  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
-  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
-  | 'REQUIREMENTS_TABLE_NAME_ASC'
-  | 'REQUIREMENTS_TABLE_NAME_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type UserAuthModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6809,6 +6843,8 @@ export type AgentModuleOrderBy =
   | 'HAS_RESOURCES_DESC'
   | 'HAS_AGENTS_ASC'
   | 'HAS_AGENTS_DESC'
+  | 'SHARED_ASC'
+  | 'SHARED_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6824,7 +6860,9 @@ export type AgentModuleOrderBy =
   | 'RESOURCES_ASC'
   | 'RESOURCES_DESC'
   | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type LimitsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6971,6 +7009,10 @@ export type MembershipsModuleOrderBy =
   | 'ENTITY_IDS_FUNCTION_DESC'
   | 'MEMBER_PROFILES_TABLE_ID_ASC'
   | 'MEMBER_PROFILES_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -7047,97 +7089,13 @@ export type StorageModuleOrderBy =
   | 'CONFIRM_UPLOAD_DELAY_DESC'
   | 'FILE_EVENTS_TABLE_ID_ASC'
   | 'FILE_EVENTS_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type EventsModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EVENTS_TABLE_ID_ASC'
-  | 'EVENTS_TABLE_ID_DESC'
-  | 'EVENTS_TABLE_NAME_ASC'
-  | 'EVENTS_TABLE_NAME_DESC'
-  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
-  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
-  | 'EVENT_TYPES_TABLE_ID_ASC'
-  | 'EVENT_TYPES_TABLE_ID_DESC'
-  | 'EVENT_TYPES_TABLE_NAME_ASC'
-  | 'EVENT_TYPES_TABLE_NAME_DESC'
-  | 'LEVELS_TABLE_ID_ASC'
-  | 'LEVELS_TABLE_ID_DESC'
-  | 'LEVELS_TABLE_NAME_ASC'
-  | 'LEVELS_TABLE_NAME_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'LEVEL_GRANTS_TABLE_ID_ASC'
-  | 'LEVEL_GRANTS_TABLE_ID_DESC'
-  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
-  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
-  | 'RECORD_EVENT_ASC'
-  | 'RECORD_EVENT_DESC'
-  | 'REMOVE_EVENT_ASC'
-  | 'REMOVE_EVENT_DESC'
-  | 'TG_EVENT_ASC'
-  | 'TG_EVENT_DESC'
-  | 'TG_EVENT_TOGGLE_ASC'
-  | 'TG_EVENT_TOGGLE_DESC'
-  | 'TG_EVENT_TOGGLE_BOOL_ASC'
-  | 'TG_EVENT_TOGGLE_BOOL_DESC'
-  | 'TG_EVENT_BOOL_ASC'
-  | 'TG_EVENT_BOOL_DESC'
-  | 'UPSERT_AGGREGATE_ASC'
-  | 'UPSERT_AGGREGATE_DESC'
-  | 'TG_UPDATE_AGGREGATES_ASC'
-  | 'TG_UPDATE_AGGREGATES_DESC'
-  | 'PRUNE_EVENTS_ASC'
-  | 'PRUNE_EVENTS_DESC'
-  | 'STEPS_REQUIRED_ASC'
-  | 'STEPS_REQUIRED_DESC'
-  | 'LEVEL_ACHIEVED_ASC'
-  | 'LEVEL_ACHIEVED_DESC'
-  | 'TG_CHECK_ACHIEVEMENTS_ASC'
-  | 'TG_CHECK_ACHIEVEMENTS_DESC'
-  | 'GRANT_ACHIEVEMENT_ASC'
-  | 'GRANT_ACHIEVEMENT_DESC'
-  | 'TG_ACHIEVEMENT_REWARD_ASC'
-  | 'TG_ACHIEVEMENT_REWARD_DESC'
-  | 'INTERVAL_ASC'
-  | 'INTERVAL_DESC'
-  | 'RETENTION_ASC'
-  | 'RETENTION_DESC'
-  | 'PREMAKE_ASC'
-  | 'PREMAKE_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'ACTOR_TABLE_ID_ASC'
-  | 'ACTOR_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type EntityTypeProvisionOrderBy =
+export type EntityTypeProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -7215,16 +7173,100 @@ export type EntityTypeProvisionOrderBy =
   | 'OUT_EXECUTION_LOGS_TABLE_ID_DESC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_ASC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_DESC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_DESC'
   | 'OUT_GRAPH_MODULE_ID_ASC'
   | 'OUT_GRAPH_MODULE_ID_DESC'
   | 'OUT_GRAPHS_TABLE_ID_ASC'
   | 'OUT_GRAPHS_TABLE_ID_DESC'
   | 'OUT_AGENT_MODULE_ID_ASC'
   | 'OUT_AGENT_MODULE_ID_DESC';
+export type EventsModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EVENTS_TABLE_ID_ASC'
+  | 'EVENTS_TABLE_ID_DESC'
+  | 'EVENTS_TABLE_NAME_ASC'
+  | 'EVENTS_TABLE_NAME_DESC'
+  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
+  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
+  | 'EVENT_TYPES_TABLE_ID_ASC'
+  | 'EVENT_TYPES_TABLE_ID_DESC'
+  | 'EVENT_TYPES_TABLE_NAME_ASC'
+  | 'EVENT_TYPES_TABLE_NAME_DESC'
+  | 'LEVELS_TABLE_ID_ASC'
+  | 'LEVELS_TABLE_ID_DESC'
+  | 'LEVELS_TABLE_NAME_ASC'
+  | 'LEVELS_TABLE_NAME_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
+  | 'LEVEL_GRANTS_TABLE_ID_ASC'
+  | 'LEVEL_GRANTS_TABLE_ID_DESC'
+  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
+  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
+  | 'RECORD_EVENT_ASC'
+  | 'RECORD_EVENT_DESC'
+  | 'REMOVE_EVENT_ASC'
+  | 'REMOVE_EVENT_DESC'
+  | 'TG_EVENT_ASC'
+  | 'TG_EVENT_DESC'
+  | 'TG_EVENT_TOGGLE_ASC'
+  | 'TG_EVENT_TOGGLE_DESC'
+  | 'TG_EVENT_TOGGLE_BOOL_ASC'
+  | 'TG_EVENT_TOGGLE_BOOL_DESC'
+  | 'TG_EVENT_BOOL_ASC'
+  | 'TG_EVENT_BOOL_DESC'
+  | 'UPSERT_AGGREGATE_ASC'
+  | 'UPSERT_AGGREGATE_DESC'
+  | 'TG_UPDATE_AGGREGATES_ASC'
+  | 'TG_UPDATE_AGGREGATES_DESC'
+  | 'PRUNE_EVENTS_ASC'
+  | 'PRUNE_EVENTS_DESC'
+  | 'STEPS_REQUIRED_ASC'
+  | 'STEPS_REQUIRED_DESC'
+  | 'LEVEL_ACHIEVED_ASC'
+  | 'LEVEL_ACHIEVED_DESC'
+  | 'TG_CHECK_ACHIEVEMENTS_ASC'
+  | 'TG_CHECK_ACHIEVEMENTS_DESC'
+  | 'GRANT_ACHIEVEMENT_ASC'
+  | 'GRANT_ACHIEVEMENT_DESC'
+  | 'TG_ACHIEVEMENT_REWARD_ASC'
+  | 'TG_ACHIEVEMENT_REWARD_DESC'
+  | 'INTERVAL_ASC'
+  | 'INTERVAL_DESC'
+  | 'RETENTION_ASC'
+  | 'RETENTION_DESC'
+  | 'PREMAKE_ASC'
+  | 'PREMAKE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'ACTOR_TABLE_ID_ASC'
+  | 'ACTOR_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 // ============ CRUD Input Types ============
 export interface CreateDefaultIdsModuleInput {
   clientMutationId?: string;
@@ -7986,48 +8028,6 @@ export interface DeleteCryptoAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  rateLimitMetersModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    rateLimitStateTableId?: string;
-    rateLimitStateTableName?: string;
-    rateLimitOverridesTableId?: string;
-    rateLimitOverridesTableName?: string;
-    rateWindowLimitsTableId?: string;
-    rateWindowLimitsTableName?: string;
-    checkRateLimitFunction?: string;
-    prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface RateLimitMetersModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
-}
-export interface DeleteRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateSessionsModuleInput {
   clientMutationId?: string;
   sessionsModule: {
@@ -8169,6 +8169,7 @@ export interface CreateGraphModuleInput {
     entityTableId?: string;
     policies?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface GraphModulePatch {
@@ -8188,6 +8189,7 @@ export interface GraphModulePatch {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateGraphModuleInput {
   clientMutationId?: string;
@@ -8234,6 +8236,50 @@ export interface DeleteSecureTableProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  rateLimitMetersModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    rateLimitStateTableId?: string;
+    rateLimitStateTableName?: string;
+    rateLimitOverridesTableId?: string;
+    rateLimitOverridesTableName?: string;
+    rateWindowLimitsTableId?: string;
+    rateWindowLimitsTableName?: string;
+    checkRateLimitFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface RateLimitMetersModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
+}
+export interface DeleteRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateInvitesModuleInput {
   clientMutationId?: string;
   invitesModule: {
@@ -8318,57 +8364,9 @@ export interface DeleteDatabaseProvisionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateNamespaceModuleInput {
+export interface CreateRealtimeModuleInput {
   clientMutationId?: string;
-  namespaceModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    namespacesTableId?: string;
-    namespaceEventsTableId?: string;
-    namespacesTableName?: string;
-    namespaceEventsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface NamespaceModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-  namespaceModulePatch: NamespaceModulePatch;
-}
-export interface DeleteNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateRealtimeModuleInput {
-  clientMutationId?: string;
-  realtimeModule: {
+  realtimeModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
@@ -8454,6 +8452,56 @@ export interface DeleteWebauthnAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateNamespaceModuleInput {
+  clientMutationId?: string;
+  namespaceModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    publicSchemaName?: string;
+    privateSchemaName?: string;
+    namespacesTableId?: string;
+    namespaceEventsTableId?: string;
+    namespacesTableName?: string;
+    namespaceEventsTableName?: string;
+    apiName?: string;
+    privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
+  };
+}
+export interface NamespaceModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
+export interface UpdateNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+  namespaceModulePatch: NamespaceModulePatch;
+}
+export interface DeleteNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateComputeLogModuleInput {
   clientMutationId?: string;
   computeLogModule: {
@@ -8646,6 +8694,58 @@ export interface DeleteTransferLogModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreatePlansModuleInput {
+  clientMutationId?: string;
+  plansModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    plansTableId?: string;
+    plansTableName?: string;
+    planLimitsTableId?: string;
+    planLimitsTableName?: string;
+    planPricingTableId?: string;
+    planOverridesTableId?: string;
+    planMeterLimitsTableId?: string;
+    planCapsTableId?: string;
+    applyPlanFunction?: string;
+    applyPlanAggregateFunction?: string;
+    applyBillingPlanFunction?: string;
+    applyPlanCapsFunction?: string;
+    prefix?: string;
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface PlansModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdatePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+  plansModulePatch: PlansModulePatch;
+}
+export interface DeletePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateDbUsageModuleInput {
   clientMutationId?: string;
   dbUsageModule: {
@@ -8665,6 +8765,7 @@ export interface CreateDbUsageModuleInput {
     premake?: number;
     scope?: string;
     prefix?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8686,6 +8787,7 @@ export interface DbUsageModulePatch {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8717,6 +8819,7 @@ export interface CreateNotificationsModuleInput {
     hasSettingsExtension?: boolean;
     hasDigestMetadata?: boolean;
     hasSubscriptions?: boolean;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8738,6 +8841,7 @@ export interface NotificationsModulePatch {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8750,225 +8854,175 @@ export interface DeleteNotificationsModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreatePlansModuleInput {
+export interface CreateBillingProviderModuleInput {
   clientMutationId?: string;
-  plansModule: {
+  billingProviderModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    plansTableId?: string;
-    plansTableName?: string;
-    planLimitsTableId?: string;
-    planLimitsTableName?: string;
-    planPricingTableId?: string;
-    planOverridesTableId?: string;
-    planMeterLimitsTableId?: string;
-    planCapsTableId?: string;
-    applyPlanFunction?: string;
-    applyPlanAggregateFunction?: string;
-    applyBillingPlanFunction?: string;
-    applyPlanCapsFunction?: string;
+    provider?: string;
+    productsTableId?: string;
+    pricesTableId?: string;
+    subscriptionsTableId?: string;
+    billingCustomersTableId?: string;
+    billingCustomersTableName?: string;
+    billingProductsTableId?: string;
+    billingProductsTableName?: string;
+    billingPricesTableId?: string;
+    billingPricesTableName?: string;
+    billingSubscriptionsTableId?: string;
+    billingSubscriptionsTableName?: string;
+    billingWebhookEventsTableId?: string;
+    billingWebhookEventsTableName?: string;
+    processBillingEventFunction?: string;
     prefix?: string;
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface PlansModulePatch {
+export interface BillingProviderModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdatePlansModuleInput {
+export interface UpdateBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
-  plansModulePatch: PlansModulePatch;
+  billingProviderModulePatch: BillingProviderModulePatch;
 }
-export interface DeletePlansModuleInput {
+export interface DeleteBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateHierarchyModuleInput {
+export interface CreateFunctionModuleInput {
   clientMutationId?: string;
-  hierarchyModule: {
+  functionModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    chartEdgesTableId?: string;
-    chartEdgesTableName?: string;
-    hierarchySprtTableId?: string;
-    hierarchySprtTableName?: string;
-    chartEdgeGrantsTableId?: string;
-    chartEdgeGrantsTableName?: string;
-    entityTableId: string;
-    usersTableId: string;
-    scope?: string;
-    prefix?: string;
+    publicSchemaName?: string;
     privateSchemaName?: string;
-    sprtTableName?: string;
-    rebuildHierarchyFunction?: string;
-    getSubordinatesFunction?: string;
-    getManagersFunction?: string;
-    isManagerOfFunction?: string;
-  };
-}
-export interface HierarchyModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  chartEdgesTableId?: string | null;
-  chartEdgesTableName?: string | null;
-  hierarchySprtTableId?: string | null;
-  hierarchySprtTableName?: string | null;
-  chartEdgeGrantsTableId?: string | null;
-  chartEdgeGrantsTableName?: string | null;
-  entityTableId?: string | null;
-  usersTableId?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  privateSchemaName?: string | null;
-  sprtTableName?: string | null;
-  rebuildHierarchyFunction?: string | null;
-  getSubordinatesFunction?: string | null;
-  getManagersFunction?: string | null;
-  isManagerOfFunction?: string | null;
-}
-export interface UpdateHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-  hierarchyModulePatch: HierarchyModulePatch;
-}
-export interface DeleteHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateBillingModuleInput {
-  clientMutationId?: string;
-  billingModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    metersTableId?: string;
-    metersTableName?: string;
-    planSubscriptionsTableId?: string;
-    planSubscriptionsTableName?: string;
-    ledgerTableId?: string;
-    ledgerTableName?: string;
-    balancesTableId?: string;
-    balancesTableName?: string;
-    meterCreditsTableId?: string;
-    meterCreditsTableName?: string;
-    meterSourcesTableId?: string;
-    meterSourcesTableName?: string;
-    meterDefaultsTableId?: string;
-    meterDefaultsTableName?: string;
-    recordUsageFunction?: string;
-    prefix?: string;
+    definitionsTableId?: string;
+    invocationsTableId?: string;
+    executionLogsTableId?: string;
+    secretDefinitionsTableId?: string;
+    definitionsTableName?: string;
+    invocationsTableName?: string;
+    executionLogsTableName?: string;
+    secretDefinitionsTableName?: string;
     apiName?: string;
     privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingModulePatch {
+export interface FunctionModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingModuleInput {
+export interface UpdateFunctionModuleInput {
   clientMutationId?: string;
   id: string;
-  billingModulePatch: BillingModulePatch;
+  functionModulePatch: FunctionModulePatch;
 }
-export interface DeleteBillingModuleInput {
+export interface DeleteFunctionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateBillingProviderModuleInput {
+export interface CreateHierarchyModuleInput {
   clientMutationId?: string;
-  billingProviderModule: {
+  hierarchyModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    provider?: string;
-    productsTableId?: string;
-    pricesTableId?: string;
-    subscriptionsTableId?: string;
-    billingCustomersTableId?: string;
-    billingCustomersTableName?: string;
-    billingProductsTableId?: string;
-    billingProductsTableName?: string;
-    billingPricesTableId?: string;
-    billingPricesTableName?: string;
-    billingSubscriptionsTableId?: string;
-    billingSubscriptionsTableName?: string;
-    billingWebhookEventsTableId?: string;
-    billingWebhookEventsTableName?: string;
-    processBillingEventFunction?: string;
+    chartEdgesTableId?: string;
+    chartEdgesTableName?: string;
+    hierarchySprtTableId?: string;
+    hierarchySprtTableName?: string;
+    chartEdgeGrantsTableId?: string;
+    chartEdgeGrantsTableName?: string;
+    entityTableId: string;
+    usersTableId: string;
+    scope?: string;
     prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
+    privateSchemaName?: string;
+    sprtTableName?: string;
+    rebuildHierarchyFunction?: string;
+    getSubordinatesFunction?: string;
+    getManagersFunction?: string;
+    isManagerOfFunction?: string;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingProviderModulePatch {
+export interface HierarchyModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
+  chartEdgesTableId?: string | null;
+  chartEdgesTableName?: string | null;
+  hierarchySprtTableId?: string | null;
+  hierarchySprtTableName?: string | null;
+  chartEdgeGrantsTableId?: string | null;
+  chartEdgeGrantsTableName?: string | null;
+  entityTableId?: string | null;
+  usersTableId?: string | null;
+  scope?: string | null;
   prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
+  privateSchemaName?: string | null;
+  sprtTableName?: string | null;
+  rebuildHierarchyFunction?: string | null;
+  getSubordinatesFunction?: string | null;
+  getManagersFunction?: string | null;
+  isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingProviderModuleInput {
+export interface UpdateHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
-  billingProviderModulePatch: BillingProviderModulePatch;
+  hierarchyModulePatch: HierarchyModulePatch;
 }
-export interface DeleteBillingProviderModuleInput {
+export interface DeleteHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9082,6 +9136,66 @@ export interface DeletePermissionsModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateBillingModuleInput {
+  clientMutationId?: string;
+  billingModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    metersTableId?: string;
+    metersTableName?: string;
+    planSubscriptionsTableId?: string;
+    planSubscriptionsTableName?: string;
+    ledgerTableId?: string;
+    ledgerTableName?: string;
+    balancesTableId?: string;
+    balancesTableName?: string;
+    meterCreditsTableId?: string;
+    meterCreditsTableName?: string;
+    meterSourcesTableId?: string;
+    meterSourcesTableName?: string;
+    meterDefaultsTableId?: string;
+    meterDefaultsTableName?: string;
+    recordUsageFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface BillingModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+  billingModulePatch: BillingModulePatch;
+}
+export interface DeleteBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateRelationProvisionInput {
   clientMutationId?: string;
   relationProvision: {
@@ -9144,72 +9258,6 @@ export interface DeleteRelationProvisionInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateFunctionModuleInput {
-  clientMutationId?: string;
-  functionModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    definitionsTableId?: string;
-    invocationsTableId?: string;
-    executionLogsTableId?: string;
-    secretDefinitionsTableId?: string;
-    requirementsTableId?: string;
-    configDefinitionsTableId?: string;
-    configRequirementsTableId?: string;
-    definitionsTableName?: string;
-    invocationsTableName?: string;
-    executionLogsTableName?: string;
-    secretDefinitionsTableName?: string;
-    requirementsTableName?: string;
-    configRequirementsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface FunctionModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-  functionModulePatch: FunctionModulePatch;
-}
-export interface DeleteFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateUserAuthModuleInput {
   clientMutationId?: string;
   userAuthModule: {
@@ -9305,6 +9353,7 @@ export interface CreateAgentModuleInput {
     hasPlans?: boolean;
     hasResources?: boolean;
     hasAgents?: boolean;
+    shared?: boolean;
     apiName?: string;
     privateApiName?: string;
     scope?: string;
@@ -9313,6 +9362,7 @@ export interface CreateAgentModuleInput {
     policies?: Record<string, unknown>;
     resources?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface AgentModulePatch {
@@ -9338,6 +9388,7 @@ export interface AgentModulePatch {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -9346,6 +9397,7 @@ export interface AgentModulePatch {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateAgentModuleInput {
   clientMutationId?: string;
@@ -9475,6 +9527,8 @@ export interface CreateMembershipsModuleInput {
     entityIdsByPerm?: string;
     entityIdsFunction?: string;
     memberProfilesTableId?: string;
+    permissionDefaultPermissionsTableId?: string;
+    permissionDefaultGrantsTableId?: string;
     apiName?: string;
     privateApiName?: string;
   };
@@ -9514,6 +9568,8 @@ export interface MembershipsModulePatch {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -9559,152 +9615,58 @@ export interface CreateStorageModuleInput {
     hasContentHash?: boolean;
     hasCustomKeys?: boolean;
     hasAuditLog?: boolean;
-    hasConfirmUpload?: boolean;
-    confirmUploadDelay?: IntervalInput;
-    fileEventsTableId?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface StorageModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  bucketsTableId?: string | null;
-  filesTableId?: string | null;
-  bucketsTableName?: string | null;
-  filesTableName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-  entityTableId?: string | null;
-  endpoint?: string | null;
-  publicUrlPrefix?: string | null;
-  provider?: string | null;
-  allowedOrigins?: string[] | null;
-  restrictReads?: boolean | null;
-  hasPathShares?: boolean | null;
-  pathSharesTableId?: string | null;
-  uploadUrlExpirySeconds?: number | null;
-  downloadUrlExpirySeconds?: number | null;
-  defaultMaxFileSize?: string | null;
-  maxFilenameLength?: number | null;
-  cacheTtlSeconds?: number | null;
-  maxBulkFiles?: number | null;
-  maxBulkTotalSize?: string | null;
-  hasVersioning?: boolean | null;
-  hasContentHash?: boolean | null;
-  hasCustomKeys?: boolean | null;
-  hasAuditLog?: boolean | null;
-  hasConfirmUpload?: boolean | null;
-  confirmUploadDelay?: IntervalInput | null;
-  fileEventsTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-  storageModulePatch: StorageModulePatch;
-}
-export interface DeleteStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateEventsModuleInput {
-  clientMutationId?: string;
-  eventsModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    eventsTableId?: string;
-    eventsTableName?: string;
-    eventAggregatesTableId?: string;
-    eventAggregatesTableName?: string;
-    eventTypesTableId?: string;
-    eventTypesTableName?: string;
-    levelsTableId?: string;
-    levelsTableName?: string;
-    levelRequirementsTableId?: string;
-    levelRequirementsTableName?: string;
-    levelGrantsTableId?: string;
-    levelGrantsTableName?: string;
-    achievementRewardsTableId?: string;
-    achievementRewardsTableName?: string;
-    recordEvent?: string;
-    removeEvent?: string;
-    tgEvent?: string;
-    tgEventToggle?: string;
-    tgEventToggleBool?: string;
-    tgEventBool?: string;
-    upsertAggregate?: string;
-    tgUpdateAggregates?: string;
-    pruneEvents?: string;
-    stepsRequired?: string;
-    levelAchieved?: string;
-    tgCheckAchievements?: string;
-    grantAchievement?: string;
-    tgAchievementReward?: string;
-    interval?: string;
-    retention?: string;
-    premake?: number;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    actorTableId?: string;
+    hasConfirmUpload?: boolean;
+    confirmUploadDelay?: IntervalInput;
+    fileEventsTableId?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface EventsModulePatch {
+export interface StorageModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
+  bucketsTableId?: string | null;
+  filesTableId?: string | null;
+  bucketsTableName?: string | null;
+  filesTableName?: string | null;
   scope?: string | null;
   prefix?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
   entityTableId?: string | null;
-  actorTableId?: string | null;
+  endpoint?: string | null;
+  publicUrlPrefix?: string | null;
+  provider?: string | null;
+  allowedOrigins?: string[] | null;
+  restrictReads?: boolean | null;
+  hasPathShares?: boolean | null;
+  pathSharesTableId?: string | null;
+  uploadUrlExpirySeconds?: number | null;
+  downloadUrlExpirySeconds?: number | null;
+  defaultMaxFileSize?: string | null;
+  maxFilenameLength?: number | null;
+  cacheTtlSeconds?: number | null;
+  maxBulkFiles?: number | null;
+  maxBulkTotalSize?: string | null;
+  hasVersioning?: boolean | null;
+  hasContentHash?: boolean | null;
+  hasCustomKeys?: boolean | null;
+  hasAuditLog?: boolean | null;
+  hasConfirmUpload?: boolean | null;
+  confirmUploadDelay?: IntervalInput | null;
+  fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdateEventsModuleInput {
+export interface UpdateStorageModuleInput {
   clientMutationId?: string;
   id: string;
-  eventsModulePatch: EventsModulePatch;
+  storageModulePatch: StorageModulePatch;
 }
-export interface DeleteEventsModuleInput {
+export interface DeleteStorageModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9747,8 +9709,6 @@ export interface CreateEntityTypeProvisionInput {
     outInvocationsTableId?: string;
     outExecutionLogsTableId?: string;
     outSecretDefinitionsTableId?: string;
-    outRequirementsTableId?: string;
-    outConfigRequirementsTableId?: string;
     outGraphModuleId?: string;
     outGraphsTableId?: string;
     outAgentModuleId?: string;
@@ -9791,8 +9751,6 @@ export interface EntityTypeProvisionPatch {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
@@ -9806,6 +9764,104 @@ export interface DeleteEntityTypeProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateEventsModuleInput {
+  clientMutationId?: string;
+  eventsModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    eventsTableId?: string;
+    eventsTableName?: string;
+    eventAggregatesTableId?: string;
+    eventAggregatesTableName?: string;
+    eventTypesTableId?: string;
+    eventTypesTableName?: string;
+    levelsTableId?: string;
+    levelsTableName?: string;
+    levelRequirementsTableId?: string;
+    levelRequirementsTableName?: string;
+    levelGrantsTableId?: string;
+    levelGrantsTableName?: string;
+    achievementRewardsTableId?: string;
+    achievementRewardsTableName?: string;
+    recordEvent?: string;
+    removeEvent?: string;
+    tgEvent?: string;
+    tgEventToggle?: string;
+    tgEventToggleBool?: string;
+    tgEventBool?: string;
+    upsertAggregate?: string;
+    tgUpdateAggregates?: string;
+    pruneEvents?: string;
+    stepsRequired?: string;
+    levelAchieved?: string;
+    tgCheckAchievements?: string;
+    grantAchievement?: string;
+    tgAchievementReward?: string;
+    interval?: string;
+    retention?: string;
+    premake?: number;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    actorTableId?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface EventsModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+  eventsModulePatch: EventsModulePatch;
+}
+export interface DeleteEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 // ============ Connection Fields Map ============
 export const connectionFieldsMap = {
   Blueprint: {
@@ -10205,6 +10261,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -11660,51 +11718,6 @@ export type DeleteCryptoAuthModulePayloadSelect = {
     select: CryptoAuthModuleEdgeSelect;
   };
 };
-export interface CreateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was created by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type CreateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface UpdateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was updated by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type UpdateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface DeleteRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was deleted by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type DeleteRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
 export interface CreateSessionsModulePayload {
   clientMutationId?: string | null;
   /** The `SessionsModule` that was created by this mutation. */
@@ -11893,41 +11906,86 @@ export interface CreateSecureTableProvisionPayload {
 }
 export type CreateSecureTableProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface UpdateSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was updated by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type UpdateSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface DeleteSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was deleted by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type DeleteSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface CreateRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was created by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
+export type CreateRateLimitMetersModulePayloadSelect = {
+  clientMutationId?: boolean;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface UpdateSecureTableProvisionPayload {
+export interface UpdateRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was updated by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was updated by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type UpdateSecureTableProvisionPayloadSelect = {
+export type UpdateRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface DeleteSecureTableProvisionPayload {
+export interface DeleteRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was deleted by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was deleted by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type DeleteSecureTableProvisionPayloadSelect = {
+export type DeleteRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
 export interface CreateInvitesModulePayload {
@@ -12020,51 +12078,6 @@ export type DeleteDatabaseProvisionModulePayloadSelect = {
     select: DatabaseProvisionModuleEdgeSelect;
   };
 };
-export interface CreateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was created by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type CreateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface UpdateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was updated by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type UpdateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface DeleteNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was deleted by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type DeleteNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
 export interface CreateRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was created by this mutation. */
@@ -12155,6 +12168,51 @@ export type DeleteWebauthnAuthModulePayloadSelect = {
     select: WebauthnAuthModuleEdgeSelect;
   };
 };
+export interface CreateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was created by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type CreateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface UpdateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was updated by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type UpdateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface DeleteNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was deleted by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type DeleteNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
 export interface CreateComputeLogModulePayload {
   clientMutationId?: string | null;
   /** The `ComputeLogModule` that was created by this mutation. */
@@ -12335,96 +12393,6 @@ export type DeleteTransferLogModulePayloadSelect = {
     select: TransferLogModuleEdgeSelect;
   };
 };
-export interface CreateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was created by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type CreateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface UpdateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was updated by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type UpdateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface DeleteDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was deleted by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type DeleteDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface CreateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was created by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type CreateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface UpdateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was updated by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type UpdateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface DeleteNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was deleted by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type DeleteNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
 export interface CreatePlansModulePayload {
   clientMutationId?: string | null;
   /** The `PlansModule` that was created by this mutation. */
@@ -12470,94 +12438,94 @@ export type DeletePlansModulePayloadSelect = {
     select: PlansModuleEdgeSelect;
   };
 };
-export interface CreateHierarchyModulePayload {
+export interface CreateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was created by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was created by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type CreateHierarchyModulePayloadSelect = {
+export type CreateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface UpdateHierarchyModulePayload {
+export interface UpdateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was updated by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was updated by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type UpdateHierarchyModulePayloadSelect = {
+export type UpdateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface DeleteHierarchyModulePayload {
+export interface DeleteDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was deleted by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was deleted by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type DeleteHierarchyModulePayloadSelect = {
+export type DeleteDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface CreateBillingModulePayload {
+export interface CreateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was created by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was created by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type CreateBillingModulePayloadSelect = {
+export type CreateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface UpdateBillingModulePayload {
+export interface UpdateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was updated by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was updated by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type UpdateBillingModulePayloadSelect = {
+export type UpdateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface DeleteBillingModulePayload {
+export interface DeleteNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was deleted by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was deleted by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type DeleteBillingModulePayloadSelect = {
+export type DeleteNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
 export interface CreateBillingProviderModulePayload {
@@ -12605,6 +12573,96 @@ export type DeleteBillingProviderModulePayloadSelect = {
     select: BillingProviderModuleEdgeSelect;
   };
 };
+export interface CreateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was created by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type CreateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface UpdateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was updated by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type UpdateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface DeleteFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was deleted by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type DeleteFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface CreateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was created by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type CreateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface UpdateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was updated by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type UpdateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface DeleteHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was deleted by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type DeleteHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
 export interface CreateProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was created by this mutation. */
@@ -12695,6 +12753,51 @@ export type DeletePermissionsModulePayloadSelect = {
     select: PermissionsModuleEdgeSelect;
   };
 };
+export interface CreateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was created by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type CreateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface UpdateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was updated by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type UpdateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface DeleteBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was deleted by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type DeleteBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
 export interface CreateRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was created by this mutation. */
@@ -12731,58 +12834,13 @@ export interface DeleteRelationProvisionPayload {
   relationProvision?: RelationProvision | null;
   relationProvisionEdge?: RelationProvisionEdge | null;
 }
-export type DeleteRelationProvisionPayloadSelect = {
-  clientMutationId?: boolean;
-  relationProvision?: {
-    select: RelationProvisionSelect;
-  };
-  relationProvisionEdge?: {
-    select: RelationProvisionEdgeSelect;
-  };
-};
-export interface CreateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was created by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type CreateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface UpdateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was updated by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type UpdateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface DeleteFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was deleted by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type DeleteFunctionModulePayloadSelect = {
+export type DeleteRelationProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
+  relationProvision?: {
+    select: RelationProvisionSelect;
   };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
+  relationProvisionEdge?: {
+    select: RelationProvisionEdgeSelect;
   };
 };
 export interface CreateUserAuthModulePayload {
@@ -13010,51 +13068,6 @@ export type DeleteStorageModulePayloadSelect = {
     select: StorageModuleEdgeSelect;
   };
 };
-export interface CreateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was created by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type CreateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface UpdateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was updated by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type UpdateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface DeleteEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was deleted by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type DeleteEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
 export interface CreateEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was created by this mutation. */
@@ -13100,6 +13113,51 @@ export type DeleteEntityTypeProvisionPayloadSelect = {
     select: EntityTypeProvisionEdgeSelect;
   };
 };
+export interface CreateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was created by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type CreateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface UpdateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was updated by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type UpdateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface DeleteEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was deleted by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type DeleteEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
 export interface ProvisionTableRecord {
   outTableId?: string | null;
   outFields?: string[] | null;
@@ -13408,18 +13466,6 @@ export type CryptoAuthModuleEdgeSelect = {
     select: CryptoAuthModuleSelect;
   };
 };
-/** A `RateLimitMetersModule` edge in the connection. */
-export interface RateLimitMetersModuleEdge {
-  cursor?: string | null;
-  /** The `RateLimitMetersModule` at the end of the edge. */
-  node?: RateLimitMetersModule | null;
-}
-export type RateLimitMetersModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: RateLimitMetersModuleSelect;
-  };
-};
 /** A `SessionsModule` edge in the connection. */
 export interface SessionsModuleEdge {
   cursor?: string | null;
@@ -13480,6 +13526,18 @@ export type SecureTableProvisionEdgeSelect = {
     select: SecureTableProvisionSelect;
   };
 };
+/** A `RateLimitMetersModule` edge in the connection. */
+export interface RateLimitMetersModuleEdge {
+  cursor?: string | null;
+  /** The `RateLimitMetersModule` at the end of the edge. */
+  node?: RateLimitMetersModule | null;
+}
+export type RateLimitMetersModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: RateLimitMetersModuleSelect;
+  };
+};
 /** A `InvitesModule` edge in the connection. */
 export interface InvitesModuleEdge {
   cursor?: string | null;
@@ -13504,18 +13562,6 @@ export type DatabaseProvisionModuleEdgeSelect = {
     select: DatabaseProvisionModuleSelect;
   };
 };
-/** A `NamespaceModule` edge in the connection. */
-export interface NamespaceModuleEdge {
-  cursor?: string | null;
-  /** The `NamespaceModule` at the end of the edge. */
-  node?: NamespaceModule | null;
-}
-export type NamespaceModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: NamespaceModuleSelect;
-  };
-};
 /** A `RealtimeModule` edge in the connection. */
 export interface RealtimeModuleEdge {
   cursor?: string | null;
@@ -13540,6 +13586,18 @@ export type WebauthnAuthModuleEdgeSelect = {
     select: WebauthnAuthModuleSelect;
   };
 };
+/** A `NamespaceModule` edge in the connection. */
+export interface NamespaceModuleEdge {
+  cursor?: string | null;
+  /** The `NamespaceModule` at the end of the edge. */
+  node?: NamespaceModule | null;
+}
+export type NamespaceModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: NamespaceModuleSelect;
+  };
+};
 /** A `ComputeLogModule` edge in the connection. */
 export interface ComputeLogModuleEdge {
   cursor?: string | null;
@@ -13588,6 +13646,18 @@ export type TransferLogModuleEdgeSelect = {
     select: TransferLogModuleSelect;
   };
 };
+/** A `PlansModule` edge in the connection. */
+export interface PlansModuleEdge {
+  cursor?: string | null;
+  /** The `PlansModule` at the end of the edge. */
+  node?: PlansModule | null;
+}
+export type PlansModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: PlansModuleSelect;
+  };
+};
 /** A `DbUsageModule` edge in the connection. */
 export interface DbUsageModuleEdge {
   cursor?: string | null;
@@ -13612,52 +13682,40 @@ export type NotificationsModuleEdgeSelect = {
     select: NotificationsModuleSelect;
   };
 };
-/** A `PlansModule` edge in the connection. */
-export interface PlansModuleEdge {
-  cursor?: string | null;
-  /** The `PlansModule` at the end of the edge. */
-  node?: PlansModule | null;
-}
-export type PlansModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: PlansModuleSelect;
-  };
-};
-/** A `HierarchyModule` edge in the connection. */
-export interface HierarchyModuleEdge {
+/** A `BillingProviderModule` edge in the connection. */
+export interface BillingProviderModuleEdge {
   cursor?: string | null;
-  /** The `HierarchyModule` at the end of the edge. */
-  node?: HierarchyModule | null;
+  /** The `BillingProviderModule` at the end of the edge. */
+  node?: BillingProviderModule | null;
 }
-export type HierarchyModuleEdgeSelect = {
+export type BillingProviderModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: HierarchyModuleSelect;
+    select: BillingProviderModuleSelect;
   };
 };
-/** A `BillingModule` edge in the connection. */
-export interface BillingModuleEdge {
+/** A `FunctionModule` edge in the connection. */
+export interface FunctionModuleEdge {
   cursor?: string | null;
-  /** The `BillingModule` at the end of the edge. */
-  node?: BillingModule | null;
+  /** The `FunctionModule` at the end of the edge. */
+  node?: FunctionModule | null;
 }
-export type BillingModuleEdgeSelect = {
+export type FunctionModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingModuleSelect;
+    select: FunctionModuleSelect;
   };
 };
-/** A `BillingProviderModule` edge in the connection. */
-export interface BillingProviderModuleEdge {
+/** A `HierarchyModule` edge in the connection. */
+export interface HierarchyModuleEdge {
   cursor?: string | null;
-  /** The `BillingProviderModule` at the end of the edge. */
-  node?: BillingProviderModule | null;
+  /** The `HierarchyModule` at the end of the edge. */
+  node?: HierarchyModule | null;
 }
-export type BillingProviderModuleEdgeSelect = {
+export type HierarchyModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingProviderModuleSelect;
+    select: HierarchyModuleSelect;
   };
 };
 /** A `ProfilesModule` edge in the connection. */
@@ -13684,28 +13742,28 @@ export type PermissionsModuleEdgeSelect = {
     select: PermissionsModuleSelect;
   };
 };
-/** A `RelationProvision` edge in the connection. */
-export interface RelationProvisionEdge {
+/** A `BillingModule` edge in the connection. */
+export interface BillingModuleEdge {
   cursor?: string | null;
-  /** The `RelationProvision` at the end of the edge. */
-  node?: RelationProvision | null;
+  /** The `BillingModule` at the end of the edge. */
+  node?: BillingModule | null;
 }
-export type RelationProvisionEdgeSelect = {
+export type BillingModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: RelationProvisionSelect;
+    select: BillingModuleSelect;
   };
 };
-/** A `FunctionModule` edge in the connection. */
-export interface FunctionModuleEdge {
+/** A `RelationProvision` edge in the connection. */
+export interface RelationProvisionEdge {
   cursor?: string | null;
-  /** The `FunctionModule` at the end of the edge. */
-  node?: FunctionModule | null;
+  /** The `RelationProvision` at the end of the edge. */
+  node?: RelationProvision | null;
 }
-export type FunctionModuleEdgeSelect = {
+export type RelationProvisionEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: FunctionModuleSelect;
+    select: RelationProvisionSelect;
   };
 };
 /** A `UserAuthModule` edge in the connection. */
@@ -13768,18 +13826,6 @@ export type StorageModuleEdgeSelect = {
     select: StorageModuleSelect;
   };
 };
-/** A `EventsModule` edge in the connection. */
-export interface EventsModuleEdge {
-  cursor?: string | null;
-  /** The `EventsModule` at the end of the edge. */
-  node?: EventsModule | null;
-}
-export type EventsModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: EventsModuleSelect;
-  };
-};
 /** A `EntityTypeProvision` edge in the connection. */
 export interface EntityTypeProvisionEdge {
   cursor?: string | null;
@@ -13792,3 +13838,15 @@ export type EntityTypeProvisionEdgeSelect = {
     select: EntityTypeProvisionSelect;
   };
 };
+/** A `EventsModule` edge in the connection. */
+export interface EventsModuleEdge {
+  cursor?: string | null;
+  /** The `EventsModule` at the end of the edge. */
+  node?: EventsModule | null;
+}
+export type EventsModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: EventsModuleSelect;
+  };
+};
diff --git a/sdk/constructive-react/src/modules/orm/models/index.ts b/sdk/constructive-react/src/modules/orm/models/index.ts
index 7afef56c9..04d6464e6 100644
--- a/sdk/constructive-react/src/modules/orm/models/index.ts
+++ b/sdk/constructive-react/src/modules/orm/models/index.ts
@@ -27,35 +27,35 @@ export { BlueprintModel } from './blueprint';
 export { BlueprintTemplateModel } from './blueprintTemplate';
 export { BlueprintConstructionModel } from './blueprintConstruction';
 export { CryptoAuthModuleModel } from './cryptoAuthModule';
-export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { SessionsModuleModel } from './sessionsModule';
 export { ConfigSecretsModuleModel } from './configSecretsModule';
 export { MerkleStoreModuleModel } from './merkleStoreModule';
 export { GraphModuleModel } from './graphModule';
 export { SecureTableProvisionModel } from './secureTableProvision';
+export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { InvitesModuleModel } from './invitesModule';
 export { DatabaseProvisionModuleModel } from './databaseProvisionModule';
-export { NamespaceModuleModel } from './namespaceModule';
 export { RealtimeModuleModel } from './realtimeModule';
 export { WebauthnAuthModuleModel } from './webauthnAuthModule';
+export { NamespaceModuleModel } from './namespaceModule';
 export { ComputeLogModuleModel } from './computeLogModule';
 export { InferenceLogModuleModel } from './inferenceLogModule';
 export { StorageLogModuleModel } from './storageLogModule';
 export { TransferLogModuleModel } from './transferLogModule';
+export { PlansModuleModel } from './plansModule';
 export { DbUsageModuleModel } from './dbUsageModule';
 export { NotificationsModuleModel } from './notificationsModule';
-export { PlansModuleModel } from './plansModule';
-export { HierarchyModuleModel } from './hierarchyModule';
-export { BillingModuleModel } from './billingModule';
 export { BillingProviderModuleModel } from './billingProviderModule';
+export { FunctionModuleModel } from './functionModule';
+export { HierarchyModuleModel } from './hierarchyModule';
 export { ProfilesModuleModel } from './profilesModule';
 export { PermissionsModuleModel } from './permissionsModule';
+export { BillingModuleModel } from './billingModule';
 export { RelationProvisionModel } from './relationProvision';
-export { FunctionModuleModel } from './functionModule';
 export { UserAuthModuleModel } from './userAuthModule';
 export { AgentModuleModel } from './agentModule';
 export { LimitsModuleModel } from './limitsModule';
 export { MembershipsModuleModel } from './membershipsModule';
 export { StorageModuleModel } from './storageModule';
-export { EventsModuleModel } from './eventsModule';
 export { EntityTypeProvisionModel } from './entityTypeProvision';
+export { EventsModuleModel } from './eventsModule';
diff --git a/sdk/constructive-react/src/modules/schema-types.ts b/sdk/constructive-react/src/modules/schema-types.ts
index 12b6fac7c..fd8a15ba4 100644
--- a/sdk/constructive-react/src/modules/schema-types.ts
+++ b/sdk/constructive-react/src/modules/schema-types.ts
@@ -635,39 +635,6 @@ export type CryptoAuthModuleOrderBy =
   | 'SIGN_UP_WITH_KEY_DESC'
   | 'SIGN_IN_WITH_CHALLENGE_ASC'
   | 'SIGN_IN_WITH_CHALLENGE_DESC';
-/** Methods to use when ordering `RateLimitMetersModule`. */
-export type RateLimitMetersModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
 /** Methods to use when ordering `SessionsModule`. */
 export type SessionsModuleOrderBy =
   | 'NATURAL'
@@ -769,6 +736,8 @@ export type GraphModuleOrderBy =
   | 'POLICIES_DESC'
   | 'PROVISIONS_ASC'
   | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC';
 /** Methods to use when ordering `MerkleStoreModule`. */
@@ -833,6 +802,41 @@ export type SecureTableProvisionOrderBy =
   | 'POLICIES_DESC'
   | 'OUT_FIELDS_ASC'
   | 'OUT_FIELDS_DESC';
+/** Methods to use when ordering `RateLimitMetersModule`. */
+export type RateLimitMetersModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 /** Methods to use when ordering `InvitesModule`. */
 export type InvitesModuleOrderBy =
   | 'NATURAL'
@@ -903,45 +907,6 @@ export type DatabaseProvisionModuleOrderBy =
   | 'UPDATED_AT_DESC'
   | 'COMPLETED_AT_ASC'
   | 'COMPLETED_AT_DESC';
-/** Methods to use when ordering `NamespaceModule`. */
-export type NamespaceModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'NAMESPACES_TABLE_ID_ASC'
-  | 'NAMESPACES_TABLE_ID_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
-  | 'NAMESPACES_TABLE_NAME_ASC'
-  | 'NAMESPACES_TABLE_NAME_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 /** Methods to use when ordering `RealtimeModule`. */
 export type RealtimeModuleOrderBy =
   | 'NATURAL'
@@ -1012,6 +977,47 @@ export type WebauthnAuthModuleOrderBy =
   | 'RESIDENT_KEY_DESC'
   | 'CHALLENGE_EXPIRY_ASC'
   | 'CHALLENGE_EXPIRY_DESC';
+/** Methods to use when ordering `NamespaceModule`. */
+export type NamespaceModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'NAMESPACES_TABLE_ID_ASC'
+  | 'NAMESPACES_TABLE_ID_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
+  | 'NAMESPACES_TABLE_NAME_ASC'
+  | 'NAMESPACES_TABLE_NAME_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 /** Methods to use when ordering `ComputeLogModule`. */
 export type ComputeLogModuleOrderBy =
   | 'NATURAL'
@@ -1168,6 +1174,49 @@ export type TransferLogModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+/** Methods to use when ordering `PlansModule`. */
+export type PlansModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PLANS_TABLE_ID_ASC'
+  | 'PLANS_TABLE_ID_DESC'
+  | 'PLANS_TABLE_NAME_ASC'
+  | 'PLANS_TABLE_NAME_DESC'
+  | 'PLAN_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_LIMITS_TABLE_NAME_ASC'
+  | 'PLAN_LIMITS_TABLE_NAME_DESC'
+  | 'PLAN_PRICING_TABLE_ID_ASC'
+  | 'PLAN_PRICING_TABLE_ID_DESC'
+  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
+  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_CAPS_TABLE_ID_ASC'
+  | 'PLAN_CAPS_TABLE_ID_DESC'
+  | 'APPLY_PLAN_FUNCTION_ASC'
+  | 'APPLY_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 /** Methods to use when ordering `DbUsageModule`. */
 export type DbUsageModuleOrderBy =
   | 'NATURAL'
@@ -1207,6 +1256,8 @@ export type DbUsageModuleOrderBy =
   | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -1250,12 +1301,14 @@ export type NotificationsModuleOrderBy =
   | 'HAS_DIGEST_METADATA_DESC'
   | 'HAS_SUBSCRIPTIONS_ASC'
   | 'HAS_SUBSCRIPTIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-/** Methods to use when ordering `PlansModule`. */
-export type PlansModuleOrderBy =
+/** Methods to use when ordering `BillingProviderModule`. */
+export type BillingProviderModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -1267,38 +1320,44 @@ export type PlansModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PLANS_TABLE_ID_ASC'
-  | 'PLANS_TABLE_ID_DESC'
-  | 'PLANS_TABLE_NAME_ASC'
-  | 'PLANS_TABLE_NAME_DESC'
-  | 'PLAN_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_LIMITS_TABLE_NAME_ASC'
-  | 'PLAN_LIMITS_TABLE_NAME_DESC'
-  | 'PLAN_PRICING_TABLE_ID_ASC'
-  | 'PLAN_PRICING_TABLE_ID_DESC'
-  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
-  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_CAPS_TABLE_ID_ASC'
-  | 'PLAN_CAPS_TABLE_ID_DESC'
-  | 'APPLY_PLAN_FUNCTION_ASC'
-  | 'APPLY_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PROVIDER_ASC'
+  | 'PROVIDER_DESC'
+  | 'PRODUCTS_TABLE_ID_ASC'
+  | 'PRODUCTS_TABLE_ID_DESC'
+  | 'PRICES_TABLE_ID_ASC'
+  | 'PRICES_TABLE_ID_DESC'
+  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
+  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
+  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
+  | 'BILLING_PRICES_TABLE_ID_ASC'
+  | 'BILLING_PRICES_TABLE_ID_DESC'
+  | 'BILLING_PRICES_TABLE_NAME_ASC'
+  | 'BILLING_PRICES_TABLE_NAME_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-/** Methods to use when ordering `HierarchyModule`. */
-export type HierarchyModuleOrderBy =
+/** Methods to use when ordering `FunctionModule`. */
+export type FunctionModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -1310,14 +1369,63 @@ export type HierarchyModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'CHART_EDGES_TABLE_ID_ASC'
-  | 'CHART_EDGES_TABLE_ID_DESC'
-  | 'CHART_EDGES_TABLE_NAME_ASC'
-  | 'CHART_EDGES_TABLE_NAME_DESC'
-  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
-  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'DEFINITIONS_TABLE_ID_ASC'
+  | 'DEFINITIONS_TABLE_ID_DESC'
+  | 'INVOCATIONS_TABLE_ID_ASC'
+  | 'INVOCATIONS_TABLE_ID_DESC'
+  | 'EXECUTION_LOGS_TABLE_ID_ASC'
+  | 'EXECUTION_LOGS_TABLE_ID_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
+  | 'DEFINITIONS_TABLE_NAME_ASC'
+  | 'DEFINITIONS_TABLE_NAME_DESC'
+  | 'INVOCATIONS_TABLE_NAME_ASC'
+  | 'INVOCATIONS_TABLE_NAME_DESC'
+  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
+  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
+/** Methods to use when ordering `HierarchyModule`. */
+export type HierarchyModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'CHART_EDGES_TABLE_ID_ASC'
+  | 'CHART_EDGES_TABLE_ID_DESC'
+  | 'CHART_EDGES_TABLE_NAME_ASC'
+  | 'CHART_EDGES_TABLE_NAME_DESC'
+  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
+  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
   | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
   | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
   | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
@@ -1342,106 +1450,10 @@ export type HierarchyModuleOrderBy =
   | 'GET_MANAGERS_FUNCTION_DESC'
   | 'IS_MANAGER_OF_FUNCTION_ASC'
   | 'IS_MANAGER_OF_FUNCTION_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC';
-/** Methods to use when ordering `BillingModule`. */
-export type BillingModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'METERS_TABLE_ID_ASC'
-  | 'METERS_TABLE_ID_DESC'
-  | 'METERS_TABLE_NAME_ASC'
-  | 'METERS_TABLE_NAME_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'LEDGER_TABLE_ID_ASC'
-  | 'LEDGER_TABLE_ID_DESC'
-  | 'LEDGER_TABLE_NAME_ASC'
-  | 'LEDGER_TABLE_NAME_DESC'
-  | 'BALANCES_TABLE_ID_ASC'
-  | 'BALANCES_TABLE_ID_DESC'
-  | 'BALANCES_TABLE_NAME_ASC'
-  | 'BALANCES_TABLE_NAME_DESC'
-  | 'METER_CREDITS_TABLE_ID_ASC'
-  | 'METER_CREDITS_TABLE_ID_DESC'
-  | 'METER_CREDITS_TABLE_NAME_ASC'
-  | 'METER_CREDITS_TABLE_NAME_DESC'
-  | 'METER_SOURCES_TABLE_ID_ASC'
-  | 'METER_SOURCES_TABLE_ID_DESC'
-  | 'METER_SOURCES_TABLE_NAME_ASC'
-  | 'METER_SOURCES_TABLE_NAME_DESC'
-  | 'METER_DEFAULTS_TABLE_ID_ASC'
-  | 'METER_DEFAULTS_TABLE_ID_DESC'
-  | 'METER_DEFAULTS_TABLE_NAME_ASC'
-  | 'METER_DEFAULTS_TABLE_NAME_DESC'
-  | 'RECORD_USAGE_FUNCTION_ASC'
-  | 'RECORD_USAGE_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-/** Methods to use when ordering `BillingProviderModule`. */
-export type BillingProviderModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PROVIDER_ASC'
-  | 'PROVIDER_DESC'
-  | 'PRODUCTS_TABLE_ID_ASC'
-  | 'PRODUCTS_TABLE_ID_DESC'
-  | 'PRICES_TABLE_ID_ASC'
-  | 'PRICES_TABLE_ID_DESC'
-  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
-  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
-  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
-  | 'BILLING_PRICES_TABLE_ID_ASC'
-  | 'BILLING_PRICES_TABLE_ID_DESC'
-  | 'BILLING_PRICES_TABLE_NAME_ASC'
-  | 'BILLING_PRICES_TABLE_NAME_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
 /** Methods to use when ordering `ProfilesModule`. */
 export type ProfilesModuleOrderBy =
   | 'NATURAL'
@@ -1534,6 +1546,57 @@ export type PermissionsModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+/** Methods to use when ordering `BillingModule`. */
+export type BillingModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'METERS_TABLE_ID_ASC'
+  | 'METERS_TABLE_ID_DESC'
+  | 'METERS_TABLE_NAME_ASC'
+  | 'METERS_TABLE_NAME_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'LEDGER_TABLE_ID_ASC'
+  | 'LEDGER_TABLE_ID_DESC'
+  | 'LEDGER_TABLE_NAME_ASC'
+  | 'LEDGER_TABLE_NAME_DESC'
+  | 'BALANCES_TABLE_ID_ASC'
+  | 'BALANCES_TABLE_ID_DESC'
+  | 'BALANCES_TABLE_NAME_ASC'
+  | 'BALANCES_TABLE_NAME_DESC'
+  | 'METER_CREDITS_TABLE_ID_ASC'
+  | 'METER_CREDITS_TABLE_ID_DESC'
+  | 'METER_CREDITS_TABLE_NAME_ASC'
+  | 'METER_CREDITS_TABLE_NAME_DESC'
+  | 'METER_SOURCES_TABLE_ID_ASC'
+  | 'METER_SOURCES_TABLE_ID_DESC'
+  | 'METER_SOURCES_TABLE_NAME_ASC'
+  | 'METER_SOURCES_TABLE_NAME_DESC'
+  | 'METER_DEFAULTS_TABLE_ID_ASC'
+  | 'METER_DEFAULTS_TABLE_ID_DESC'
+  | 'METER_DEFAULTS_TABLE_NAME_ASC'
+  | 'METER_DEFAULTS_TABLE_NAME_DESC'
+  | 'RECORD_USAGE_FUNCTION_ASC'
+  | 'RECORD_USAGE_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 /** Methods to use when ordering `RelationProvision`. */
 export type RelationProvisionOrderBy =
   | 'NATURAL'
@@ -1587,63 +1650,6 @@ export type RelationProvisionOrderBy =
   | 'OUT_SOURCE_FIELD_ID_DESC'
   | 'OUT_TARGET_FIELD_ID_ASC'
   | 'OUT_TARGET_FIELD_ID_DESC';
-/** Methods to use when ordering `FunctionModule`. */
-export type FunctionModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'DEFINITIONS_TABLE_ID_ASC'
-  | 'DEFINITIONS_TABLE_ID_DESC'
-  | 'INVOCATIONS_TABLE_ID_ASC'
-  | 'INVOCATIONS_TABLE_ID_DESC'
-  | 'EXECUTION_LOGS_TABLE_ID_ASC'
-  | 'EXECUTION_LOGS_TABLE_ID_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'REQUIREMENTS_TABLE_ID_ASC'
-  | 'REQUIREMENTS_TABLE_ID_DESC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_ASC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_DESC'
-  | 'DEFINITIONS_TABLE_NAME_ASC'
-  | 'DEFINITIONS_TABLE_NAME_DESC'
-  | 'INVOCATIONS_TABLE_NAME_ASC'
-  | 'INVOCATIONS_TABLE_NAME_DESC'
-  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
-  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
-  | 'REQUIREMENTS_TABLE_NAME_ASC'
-  | 'REQUIREMENTS_TABLE_NAME_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 /** Methods to use when ordering `UserAuthModule`. */
 export type UserAuthModuleOrderBy =
   | 'NATURAL'
@@ -1756,6 +1762,8 @@ export type AgentModuleOrderBy =
   | 'HAS_RESOURCES_DESC'
   | 'HAS_AGENTS_ASC'
   | 'HAS_AGENTS_DESC'
+  | 'SHARED_ASC'
+  | 'SHARED_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -1771,7 +1779,9 @@ export type AgentModuleOrderBy =
   | 'RESOURCES_ASC'
   | 'RESOURCES_DESC'
   | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 /** Methods to use when ordering `LimitsModule`. */
 export type LimitsModuleOrderBy =
   | 'NATURAL'
@@ -1920,6 +1930,10 @@ export type MembershipsModuleOrderBy =
   | 'ENTITY_IDS_FUNCTION_DESC'
   | 'MEMBER_PROFILES_TABLE_ID_ASC'
   | 'MEMBER_PROFILES_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -1997,12 +2011,14 @@ export type StorageModuleOrderBy =
   | 'CONFIRM_UPLOAD_DELAY_DESC'
   | 'FILE_EVENTS_TABLE_ID_ASC'
   | 'FILE_EVENTS_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-/** Methods to use when ordering `EventsModule`. */
-export type EventsModuleOrderBy =
+/** Methods to use when ordering `EntityTypeProvision`. */
+export type EntityTypeProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -2010,7 +2026,92 @@ export type EventsModuleOrderBy =
   | 'ID_DESC'
   | 'DATABASE_ID_ASC'
   | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
+  | 'NAME_ASC'
+  | 'NAME_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DESCRIPTION_ASC'
+  | 'DESCRIPTION_DESC'
+  | 'PARENT_ENTITY_ASC'
+  | 'PARENT_ENTITY_DESC'
+  | 'TABLE_NAME_ASC'
+  | 'TABLE_NAME_DESC'
+  | 'IS_VISIBLE_ASC'
+  | 'IS_VISIBLE_DESC'
+  | 'HAS_LIMITS_ASC'
+  | 'HAS_LIMITS_DESC'
+  | 'HAS_PROFILES_ASC'
+  | 'HAS_PROFILES_DESC'
+  | 'HAS_LEVELS_ASC'
+  | 'HAS_LEVELS_DESC'
+  | 'HAS_INVITES_ASC'
+  | 'HAS_INVITES_DESC'
+  | 'HAS_INVITE_ACHIEVEMENTS_ASC'
+  | 'HAS_INVITE_ACHIEVEMENTS_DESC'
+  | 'STORAGE_ASC'
+  | 'STORAGE_DESC'
+  | 'NAMESPACES_ASC'
+  | 'NAMESPACES_DESC'
+  | 'FUNCTIONS_ASC'
+  | 'FUNCTIONS_DESC'
+  | 'GRAPHS_ASC'
+  | 'GRAPHS_DESC'
+  | 'AGENTS_ASC'
+  | 'AGENTS_DESC'
+  | 'SKIP_ENTITY_POLICIES_ASC'
+  | 'SKIP_ENTITY_POLICIES_DESC'
+  | 'TABLE_PROVISION_ASC'
+  | 'TABLE_PROVISION_DESC'
+  | 'OUT_MEMBERSHIP_TYPE_ASC'
+  | 'OUT_MEMBERSHIP_TYPE_DESC'
+  | 'OUT_ENTITY_TABLE_ID_ASC'
+  | 'OUT_ENTITY_TABLE_ID_DESC'
+  | 'OUT_ENTITY_TABLE_NAME_ASC'
+  | 'OUT_ENTITY_TABLE_NAME_DESC'
+  | 'OUT_INSTALLED_MODULES_ASC'
+  | 'OUT_INSTALLED_MODULES_DESC'
+  | 'OUT_STORAGE_MODULE_ID_ASC'
+  | 'OUT_STORAGE_MODULE_ID_DESC'
+  | 'OUT_BUCKETS_TABLE_ID_ASC'
+  | 'OUT_BUCKETS_TABLE_ID_DESC'
+  | 'OUT_FILES_TABLE_ID_ASC'
+  | 'OUT_FILES_TABLE_ID_DESC'
+  | 'OUT_PATH_SHARES_TABLE_ID_ASC'
+  | 'OUT_PATH_SHARES_TABLE_ID_DESC'
+  | 'OUT_INVITES_MODULE_ID_ASC'
+  | 'OUT_INVITES_MODULE_ID_DESC'
+  | 'OUT_NAMESPACE_MODULE_ID_ASC'
+  | 'OUT_NAMESPACE_MODULE_ID_DESC'
+  | 'OUT_NAMESPACES_TABLE_ID_ASC'
+  | 'OUT_NAMESPACES_TABLE_ID_DESC'
+  | 'OUT_NAMESPACE_EVENTS_TABLE_ID_ASC'
+  | 'OUT_NAMESPACE_EVENTS_TABLE_ID_DESC'
+  | 'OUT_FUNCTION_MODULE_ID_ASC'
+  | 'OUT_FUNCTION_MODULE_ID_DESC'
+  | 'OUT_DEFINITIONS_TABLE_ID_ASC'
+  | 'OUT_DEFINITIONS_TABLE_ID_DESC'
+  | 'OUT_INVOCATIONS_TABLE_ID_ASC'
+  | 'OUT_INVOCATIONS_TABLE_ID_DESC'
+  | 'OUT_EXECUTION_LOGS_TABLE_ID_ASC'
+  | 'OUT_EXECUTION_LOGS_TABLE_ID_DESC'
+  | 'OUT_SECRET_DEFINITIONS_TABLE_ID_ASC'
+  | 'OUT_SECRET_DEFINITIONS_TABLE_ID_DESC'
+  | 'OUT_GRAPH_MODULE_ID_ASC'
+  | 'OUT_GRAPH_MODULE_ID_DESC'
+  | 'OUT_GRAPHS_TABLE_ID_ASC'
+  | 'OUT_GRAPHS_TABLE_ID_DESC'
+  | 'OUT_AGENT_MODULE_ID_ASC'
+  | 'OUT_AGENT_MODULE_ID_DESC';
+/** Methods to use when ordering `EventsModule`. */
+export type EventsModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
@@ -2084,99 +2185,12 @@ export type EventsModuleOrderBy =
   | 'ENTITY_TABLE_ID_DESC'
   | 'ACTOR_TABLE_ID_ASC'
   | 'ACTOR_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-/** Methods to use when ordering `EntityTypeProvision`. */
-export type EntityTypeProvisionOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'NAME_ASC'
-  | 'NAME_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'DESCRIPTION_ASC'
-  | 'DESCRIPTION_DESC'
-  | 'PARENT_ENTITY_ASC'
-  | 'PARENT_ENTITY_DESC'
-  | 'TABLE_NAME_ASC'
-  | 'TABLE_NAME_DESC'
-  | 'IS_VISIBLE_ASC'
-  | 'IS_VISIBLE_DESC'
-  | 'HAS_LIMITS_ASC'
-  | 'HAS_LIMITS_DESC'
-  | 'HAS_PROFILES_ASC'
-  | 'HAS_PROFILES_DESC'
-  | 'HAS_LEVELS_ASC'
-  | 'HAS_LEVELS_DESC'
-  | 'HAS_INVITES_ASC'
-  | 'HAS_INVITES_DESC'
-  | 'HAS_INVITE_ACHIEVEMENTS_ASC'
-  | 'HAS_INVITE_ACHIEVEMENTS_DESC'
-  | 'STORAGE_ASC'
-  | 'STORAGE_DESC'
-  | 'NAMESPACES_ASC'
-  | 'NAMESPACES_DESC'
-  | 'FUNCTIONS_ASC'
-  | 'FUNCTIONS_DESC'
-  | 'GRAPHS_ASC'
-  | 'GRAPHS_DESC'
-  | 'AGENTS_ASC'
-  | 'AGENTS_DESC'
-  | 'SKIP_ENTITY_POLICIES_ASC'
-  | 'SKIP_ENTITY_POLICIES_DESC'
-  | 'TABLE_PROVISION_ASC'
-  | 'TABLE_PROVISION_DESC'
-  | 'OUT_MEMBERSHIP_TYPE_ASC'
-  | 'OUT_MEMBERSHIP_TYPE_DESC'
-  | 'OUT_ENTITY_TABLE_ID_ASC'
-  | 'OUT_ENTITY_TABLE_ID_DESC'
-  | 'OUT_ENTITY_TABLE_NAME_ASC'
-  | 'OUT_ENTITY_TABLE_NAME_DESC'
-  | 'OUT_INSTALLED_MODULES_ASC'
-  | 'OUT_INSTALLED_MODULES_DESC'
-  | 'OUT_STORAGE_MODULE_ID_ASC'
-  | 'OUT_STORAGE_MODULE_ID_DESC'
-  | 'OUT_BUCKETS_TABLE_ID_ASC'
-  | 'OUT_BUCKETS_TABLE_ID_DESC'
-  | 'OUT_FILES_TABLE_ID_ASC'
-  | 'OUT_FILES_TABLE_ID_DESC'
-  | 'OUT_PATH_SHARES_TABLE_ID_ASC'
-  | 'OUT_PATH_SHARES_TABLE_ID_DESC'
-  | 'OUT_INVITES_MODULE_ID_ASC'
-  | 'OUT_INVITES_MODULE_ID_DESC'
-  | 'OUT_NAMESPACE_MODULE_ID_ASC'
-  | 'OUT_NAMESPACE_MODULE_ID_DESC'
-  | 'OUT_NAMESPACES_TABLE_ID_ASC'
-  | 'OUT_NAMESPACES_TABLE_ID_DESC'
-  | 'OUT_NAMESPACE_EVENTS_TABLE_ID_ASC'
-  | 'OUT_NAMESPACE_EVENTS_TABLE_ID_DESC'
-  | 'OUT_FUNCTION_MODULE_ID_ASC'
-  | 'OUT_FUNCTION_MODULE_ID_DESC'
-  | 'OUT_DEFINITIONS_TABLE_ID_ASC'
-  | 'OUT_DEFINITIONS_TABLE_ID_DESC'
-  | 'OUT_INVOCATIONS_TABLE_ID_ASC'
-  | 'OUT_INVOCATIONS_TABLE_ID_DESC'
-  | 'OUT_EXECUTION_LOGS_TABLE_ID_ASC'
-  | 'OUT_EXECUTION_LOGS_TABLE_ID_DESC'
-  | 'OUT_SECRET_DEFINITIONS_TABLE_ID_ASC'
-  | 'OUT_SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_DESC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_DESC'
-  | 'OUT_GRAPH_MODULE_ID_ASC'
-  | 'OUT_GRAPH_MODULE_ID_DESC'
-  | 'OUT_GRAPHS_TABLE_ID_ASC'
-  | 'OUT_GRAPHS_TABLE_ID_DESC'
-  | 'OUT_AGENT_MODULE_ID_ASC'
-  | 'OUT_AGENT_MODULE_ID_DESC';
 /** A filter to be used against `DefaultIdsModule` object types. All fields are combined with a logical ‘and.’ */
 export interface DefaultIdsModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -2878,43 +2892,6 @@ export interface CryptoAuthModuleFilter {
   /** Negates the expression. */
   not?: CryptoAuthModuleFilter;
 }
-/** A filter to be used against `RateLimitMetersModule` object types. All fields are combined with a logical ‘and.’ */
-export interface RateLimitMetersModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableId` field. */
-  rateLimitStateTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableName` field. */
-  rateLimitStateTableName?: StringFilter;
-  /** Filter by the object’s `rateLimitOverridesTableId` field. */
-  rateLimitOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitOverridesTableName` field. */
-  rateLimitOverridesTableName?: StringFilter;
-  /** Filter by the object’s `rateWindowLimitsTableId` field. */
-  rateWindowLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `rateWindowLimitsTableName` field. */
-  rateWindowLimitsTableName?: StringFilter;
-  /** Filter by the object’s `checkRateLimitFunction` field. */
-  checkRateLimitFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: RateLimitMetersModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: RateLimitMetersModuleFilter[];
-  /** Negates the expression. */
-  not?: RateLimitMetersModuleFilter;
-}
 /** A filter to be used against `SessionsModule` object types. All fields are combined with a logical ‘and.’ */
 export interface SessionsModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3065,6 +3042,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -3198,6 +3177,45 @@ export interface JSONListFilter {
   /** Any array item is greater than or equal to the specified value. */
   anyGreaterThanOrEqualTo?: unknown;
 }
+/** A filter to be used against `RateLimitMetersModule` object types. All fields are combined with a logical ‘and.’ */
+export interface RateLimitMetersModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableId` field. */
+  rateLimitStateTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableName` field. */
+  rateLimitStateTableName?: StringFilter;
+  /** Filter by the object’s `rateLimitOverridesTableId` field. */
+  rateLimitOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitOverridesTableName` field. */
+  rateLimitOverridesTableName?: StringFilter;
+  /** Filter by the object’s `rateWindowLimitsTableId` field. */
+  rateWindowLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `rateWindowLimitsTableName` field. */
+  rateWindowLimitsTableName?: StringFilter;
+  /** Filter by the object’s `checkRateLimitFunction` field. */
+  checkRateLimitFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: RateLimitMetersModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: RateLimitMetersModuleFilter[];
+  /** Negates the expression. */
+  not?: RateLimitMetersModuleFilter;
+}
 /** A filter to be used against `InvitesModule` object types. All fields are combined with a logical ‘and.’ */
 export interface InvitesModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3276,51 +3294,8 @@ export interface DatabaseProvisionModuleFilter {
   /** Negates the expression. */
   not?: DatabaseProvisionModuleFilter;
 }
-/** A filter to be used against `NamespaceModule` object types. All fields are combined with a logical ‘and.’ */
-export interface NamespaceModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `namespacesTableId` field. */
-  namespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `namespaceEventsTableId` field. */
-  namespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `namespacesTableName` field. */
-  namespacesTableName?: StringFilter;
-  /** Filter by the object’s `namespaceEventsTableName` field. */
-  namespaceEventsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: NamespaceModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: NamespaceModuleFilter[];
-  /** Negates the expression. */
-  not?: NamespaceModuleFilter;
-}
-/** A filter to be used against `RealtimeModule` object types. All fields are combined with a logical ‘and.’ */
-export interface RealtimeModuleFilter {
+/** A filter to be used against `RealtimeModule` object types. All fields are combined with a logical ‘and.’ */
+export interface RealtimeModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -3397,6 +3372,51 @@ export interface WebauthnAuthModuleFilter {
   /** Negates the expression. */
   not?: WebauthnAuthModuleFilter;
 }
+/** A filter to be used against `NamespaceModule` object types. All fields are combined with a logical ‘and.’ */
+export interface NamespaceModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `namespacesTableId` field. */
+  namespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `namespaceEventsTableId` field. */
+  namespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `namespacesTableName` field. */
+  namespacesTableName?: StringFilter;
+  /** Filter by the object’s `namespaceEventsTableName` field. */
+  namespaceEventsTableName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: NamespaceModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: NamespaceModuleFilter[];
+  /** Negates the expression. */
+  not?: NamespaceModuleFilter;
+}
 /** A filter to be used against `ComputeLogModule` object types. All fields are combined with a logical ‘and.’ */
 export interface ComputeLogModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3569,6 +3589,53 @@ export interface TransferLogModuleFilter {
   /** Negates the expression. */
   not?: TransferLogModuleFilter;
 }
+/** A filter to be used against `PlansModule` object types. All fields are combined with a logical ‘and.’ */
+export interface PlansModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `plansTableId` field. */
+  plansTableId?: UUIDFilter;
+  /** Filter by the object’s `plansTableName` field. */
+  plansTableName?: StringFilter;
+  /** Filter by the object’s `planLimitsTableId` field. */
+  planLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planLimitsTableName` field. */
+  planLimitsTableName?: StringFilter;
+  /** Filter by the object’s `planPricingTableId` field. */
+  planPricingTableId?: UUIDFilter;
+  /** Filter by the object’s `planOverridesTableId` field. */
+  planOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `planMeterLimitsTableId` field. */
+  planMeterLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planCapsTableId` field. */
+  planCapsTableId?: UUIDFilter;
+  /** Filter by the object’s `applyPlanFunction` field. */
+  applyPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanAggregateFunction` field. */
+  applyPlanAggregateFunction?: StringFilter;
+  /** Filter by the object’s `applyBillingPlanFunction` field. */
+  applyBillingPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanCapsFunction` field. */
+  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: PlansModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: PlansModuleFilter[];
+  /** Negates the expression. */
+  not?: PlansModuleFilter;
+}
 /** A filter to be used against `DbUsageModule` object types. All fields are combined with a logical ‘and.’ */
 export interface DbUsageModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3605,6 +3672,8 @@ export interface DbUsageModuleFilter {
   scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -3652,6 +3721,8 @@ export interface NotificationsModuleFilter {
   hasDigestMetadata?: BooleanFilter;
   /** Filter by the object’s `hasSubscriptions` field. */
   hasSubscriptions?: BooleanFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -3663,157 +3734,6 @@ export interface NotificationsModuleFilter {
   /** Negates the expression. */
   not?: NotificationsModuleFilter;
 }
-/** A filter to be used against `PlansModule` object types. All fields are combined with a logical ‘and.’ */
-export interface PlansModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `plansTableId` field. */
-  plansTableId?: UUIDFilter;
-  /** Filter by the object’s `plansTableName` field. */
-  plansTableName?: StringFilter;
-  /** Filter by the object’s `planLimitsTableId` field. */
-  planLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planLimitsTableName` field. */
-  planLimitsTableName?: StringFilter;
-  /** Filter by the object’s `planPricingTableId` field. */
-  planPricingTableId?: UUIDFilter;
-  /** Filter by the object’s `planOverridesTableId` field. */
-  planOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `planMeterLimitsTableId` field. */
-  planMeterLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planCapsTableId` field. */
-  planCapsTableId?: UUIDFilter;
-  /** Filter by the object’s `applyPlanFunction` field. */
-  applyPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanAggregateFunction` field. */
-  applyPlanAggregateFunction?: StringFilter;
-  /** Filter by the object’s `applyBillingPlanFunction` field. */
-  applyBillingPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanCapsFunction` field. */
-  applyPlanCapsFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: PlansModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: PlansModuleFilter[];
-  /** Negates the expression. */
-  not?: PlansModuleFilter;
-}
-/** A filter to be used against `HierarchyModule` object types. All fields are combined with a logical ‘and.’ */
-export interface HierarchyModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableId` field. */
-  chartEdgesTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableName` field. */
-  chartEdgesTableName?: StringFilter;
-  /** Filter by the object’s `hierarchySprtTableId` field. */
-  hierarchySprtTableId?: UUIDFilter;
-  /** Filter by the object’s `hierarchySprtTableName` field. */
-  hierarchySprtTableName?: StringFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
-  chartEdgeGrantsTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
-  chartEdgeGrantsTableName?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `sprtTableName` field. */
-  sprtTableName?: StringFilter;
-  /** Filter by the object’s `rebuildHierarchyFunction` field. */
-  rebuildHierarchyFunction?: StringFilter;
-  /** Filter by the object’s `getSubordinatesFunction` field. */
-  getSubordinatesFunction?: StringFilter;
-  /** Filter by the object’s `getManagersFunction` field. */
-  getManagersFunction?: StringFilter;
-  /** Filter by the object’s `isManagerOfFunction` field. */
-  isManagerOfFunction?: StringFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Checks for all expressions in this list. */
-  and?: HierarchyModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: HierarchyModuleFilter[];
-  /** Negates the expression. */
-  not?: HierarchyModuleFilter;
-}
-/** A filter to be used against `BillingModule` object types. All fields are combined with a logical ‘and.’ */
-export interface BillingModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `metersTableId` field. */
-  metersTableId?: UUIDFilter;
-  /** Filter by the object’s `metersTableName` field. */
-  metersTableName?: StringFilter;
-  /** Filter by the object’s `planSubscriptionsTableId` field. */
-  planSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `planSubscriptionsTableName` field. */
-  planSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `ledgerTableId` field. */
-  ledgerTableId?: UUIDFilter;
-  /** Filter by the object’s `ledgerTableName` field. */
-  ledgerTableName?: StringFilter;
-  /** Filter by the object’s `balancesTableId` field. */
-  balancesTableId?: UUIDFilter;
-  /** Filter by the object’s `balancesTableName` field. */
-  balancesTableName?: StringFilter;
-  /** Filter by the object’s `meterCreditsTableId` field. */
-  meterCreditsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterCreditsTableName` field. */
-  meterCreditsTableName?: StringFilter;
-  /** Filter by the object’s `meterSourcesTableId` field. */
-  meterSourcesTableId?: UUIDFilter;
-  /** Filter by the object’s `meterSourcesTableName` field. */
-  meterSourcesTableName?: StringFilter;
-  /** Filter by the object’s `meterDefaultsTableId` field. */
-  meterDefaultsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterDefaultsTableName` field. */
-  meterDefaultsTableName?: StringFilter;
-  /** Filter by the object’s `recordUsageFunction` field. */
-  recordUsageFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: BillingModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: BillingModuleFilter[];
-  /** Negates the expression. */
-  not?: BillingModuleFilter;
-}
 /** A filter to be used against `BillingProviderModule` object types. All fields are combined with a logical ‘and.’ */
 export interface BillingProviderModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3856,16 +3776,122 @@ export interface BillingProviderModuleFilter {
   processBillingEventFunction?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: BillingProviderModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: BillingProviderModuleFilter[];
+  /** Negates the expression. */
+  not?: BillingProviderModuleFilter;
+}
+/** A filter to be used against `FunctionModule` object types. All fields are combined with a logical ‘and.’ */
+export interface FunctionModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `definitionsTableId` field. */
+  definitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `invocationsTableId` field. */
+  invocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `executionLogsTableId` field. */
+  executionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `secretDefinitionsTableId` field. */
+  secretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `definitionsTableName` field. */
+  definitionsTableName?: StringFilter;
+  /** Filter by the object’s `invocationsTableName` field. */
+  invocationsTableName?: StringFilter;
+  /** Filter by the object’s `executionLogsTableName` field. */
+  executionLogsTableName?: StringFilter;
+  /** Filter by the object’s `secretDefinitionsTableName` field. */
+  secretDefinitionsTableName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: FunctionModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: FunctionModuleFilter[];
+  /** Negates the expression. */
+  not?: FunctionModuleFilter;
+}
+/** A filter to be used against `HierarchyModule` object types. All fields are combined with a logical ‘and.’ */
+export interface HierarchyModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgesTableId` field. */
+  chartEdgesTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgesTableName` field. */
+  chartEdgesTableName?: StringFilter;
+  /** Filter by the object’s `hierarchySprtTableId` field. */
+  hierarchySprtTableId?: UUIDFilter;
+  /** Filter by the object’s `hierarchySprtTableName` field. */
+  hierarchySprtTableName?: StringFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
+  chartEdgeGrantsTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
+  chartEdgeGrantsTableName?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `sprtTableName` field. */
+  sprtTableName?: StringFilter;
+  /** Filter by the object’s `rebuildHierarchyFunction` field. */
+  rebuildHierarchyFunction?: StringFilter;
+  /** Filter by the object’s `getSubordinatesFunction` field. */
+  getSubordinatesFunction?: StringFilter;
+  /** Filter by the object’s `getManagersFunction` field. */
+  getManagersFunction?: StringFilter;
+  /** Filter by the object’s `isManagerOfFunction` field. */
+  isManagerOfFunction?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingProviderModuleFilter[];
+  and?: HierarchyModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingProviderModuleFilter[];
+  or?: HierarchyModuleFilter[];
   /** Negates the expression. */
-  not?: BillingProviderModuleFilter;
+  not?: HierarchyModuleFilter;
 }
 /** A filter to be used against `ProfilesModule` object types. All fields are combined with a logical ‘and.’ */
 export interface ProfilesModuleFilter {
@@ -3967,6 +3993,61 @@ export interface PermissionsModuleFilter {
   /** Negates the expression. */
   not?: PermissionsModuleFilter;
 }
+/** A filter to be used against `BillingModule` object types. All fields are combined with a logical ‘and.’ */
+export interface BillingModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `metersTableId` field. */
+  metersTableId?: UUIDFilter;
+  /** Filter by the object’s `metersTableName` field. */
+  metersTableName?: StringFilter;
+  /** Filter by the object’s `planSubscriptionsTableId` field. */
+  planSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `planSubscriptionsTableName` field. */
+  planSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `ledgerTableId` field. */
+  ledgerTableId?: UUIDFilter;
+  /** Filter by the object’s `ledgerTableName` field. */
+  ledgerTableName?: StringFilter;
+  /** Filter by the object’s `balancesTableId` field. */
+  balancesTableId?: UUIDFilter;
+  /** Filter by the object’s `balancesTableName` field. */
+  balancesTableName?: StringFilter;
+  /** Filter by the object’s `meterCreditsTableId` field. */
+  meterCreditsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterCreditsTableName` field. */
+  meterCreditsTableName?: StringFilter;
+  /** Filter by the object’s `meterSourcesTableId` field. */
+  meterSourcesTableId?: UUIDFilter;
+  /** Filter by the object’s `meterSourcesTableName` field. */
+  meterSourcesTableName?: StringFilter;
+  /** Filter by the object’s `meterDefaultsTableId` field. */
+  meterDefaultsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterDefaultsTableName` field. */
+  meterDefaultsTableName?: StringFilter;
+  /** Filter by the object’s `recordUsageFunction` field. */
+  recordUsageFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: BillingModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: BillingModuleFilter[];
+  /** Negates the expression. */
+  not?: BillingModuleFilter;
+}
 /** A filter to be used against `RelationProvision` object types. All fields are combined with a logical ‘and.’ */
 export interface RelationProvisionFilter {
   /** Filter by the object’s `id` field. */
@@ -4024,67 +4105,6 @@ export interface RelationProvisionFilter {
   /** Negates the expression. */
   not?: RelationProvisionFilter;
 }
-/** A filter to be used against `FunctionModule` object types. All fields are combined with a logical ‘and.’ */
-export interface FunctionModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `definitionsTableId` field. */
-  definitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `invocationsTableId` field. */
-  invocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `executionLogsTableId` field. */
-  executionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `secretDefinitionsTableId` field. */
-  secretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `requirementsTableId` field. */
-  requirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `configDefinitionsTableId` field. */
-  configDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `configRequirementsTableId` field. */
-  configRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `definitionsTableName` field. */
-  definitionsTableName?: StringFilter;
-  /** Filter by the object’s `invocationsTableName` field. */
-  invocationsTableName?: StringFilter;
-  /** Filter by the object’s `executionLogsTableName` field. */
-  executionLogsTableName?: StringFilter;
-  /** Filter by the object’s `secretDefinitionsTableName` field. */
-  secretDefinitionsTableName?: StringFilter;
-  /** Filter by the object’s `requirementsTableName` field. */
-  requirementsTableName?: StringFilter;
-  /** Filter by the object’s `configRequirementsTableName` field. */
-  configRequirementsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: FunctionModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: FunctionModuleFilter[];
-  /** Negates the expression. */
-  not?: FunctionModuleFilter;
-}
 /** A filter to be used against `UserAuthModule` object types. All fields are combined with a logical ‘and.’ */
 export interface UserAuthModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -4198,6 +4218,8 @@ export interface AgentModuleFilter {
   hasResources?: BooleanFilter;
   /** Filter by the object’s `hasAgents` field. */
   hasAgents?: BooleanFilter;
+  /** Filter by the object’s `shared` field. */
+  shared?: BooleanFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4214,6 +4236,8 @@ export interface AgentModuleFilter {
   resources?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
   and?: AgentModuleFilter[];
   /** Checks for any expressions in this list. */
@@ -4370,6 +4394,10 @@ export interface MembershipsModuleFilter {
   entityIdsFunction?: StringFilter;
   /** Filter by the object’s `memberProfilesTableId` field. */
   memberProfilesTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultPermissionsTableId` field. */
+  permissionDefaultPermissionsTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultGrantsTableId` field. */
+  permissionDefaultGrantsTableId?: UUIDFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4451,6 +4479,8 @@ export interface StorageModuleFilter {
   confirmUploadDelay?: IntervalFilter;
   /** Filter by the object’s `fileEventsTableId` field. */
   fileEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4460,7 +4490,96 @@ export interface StorageModuleFilter {
   /** Checks for any expressions in this list. */
   or?: StorageModuleFilter[];
   /** Negates the expression. */
-  not?: StorageModuleFilter;
+  not?: StorageModuleFilter;
+}
+/** A filter to be used against `EntityTypeProvision` object types. All fields are combined with a logical ‘and.’ */
+export interface EntityTypeProvisionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `parentEntity` field. */
+  parentEntity?: StringFilter;
+  /** Filter by the object’s `tableName` field. */
+  tableName?: StringFilter;
+  /** Filter by the object’s `isVisible` field. */
+  isVisible?: BooleanFilter;
+  /** Filter by the object’s `hasLimits` field. */
+  hasLimits?: BooleanFilter;
+  /** Filter by the object’s `hasProfiles` field. */
+  hasProfiles?: BooleanFilter;
+  /** Filter by the object’s `hasLevels` field. */
+  hasLevels?: BooleanFilter;
+  /** Filter by the object’s `hasInvites` field. */
+  hasInvites?: BooleanFilter;
+  /** Filter by the object’s `hasInviteAchievements` field. */
+  hasInviteAchievements?: BooleanFilter;
+  /** Filter by the object’s `storage` field. */
+  storage?: JSONFilter;
+  /** Filter by the object’s `namespaces` field. */
+  namespaces?: JSONFilter;
+  /** Filter by the object’s `functions` field. */
+  functions?: JSONFilter;
+  /** Filter by the object’s `graphs` field. */
+  graphs?: JSONFilter;
+  /** Filter by the object’s `agents` field. */
+  agents?: JSONFilter;
+  /** Filter by the object’s `skipEntityPolicies` field. */
+  skipEntityPolicies?: BooleanFilter;
+  /** Filter by the object’s `tableProvision` field. */
+  tableProvision?: JSONFilter;
+  /** Filter by the object’s `outMembershipType` field. */
+  outMembershipType?: IntFilter;
+  /** Filter by the object’s `outEntityTableId` field. */
+  outEntityTableId?: UUIDFilter;
+  /** Filter by the object’s `outEntityTableName` field. */
+  outEntityTableName?: StringFilter;
+  /** Filter by the object’s `outInstalledModules` field. */
+  outInstalledModules?: StringListFilter;
+  /** Filter by the object’s `outStorageModuleId` field. */
+  outStorageModuleId?: UUIDFilter;
+  /** Filter by the object’s `outBucketsTableId` field. */
+  outBucketsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFilesTableId` field. */
+  outFilesTableId?: UUIDFilter;
+  /** Filter by the object’s `outPathSharesTableId` field. */
+  outPathSharesTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvitesModuleId` field. */
+  outInvitesModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceModuleId` field. */
+  outNamespaceModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespacesTableId` field. */
+  outNamespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceEventsTableId` field. */
+  outNamespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFunctionModuleId` field. */
+  outFunctionModuleId?: UUIDFilter;
+  /** Filter by the object’s `outDefinitionsTableId` field. */
+  outDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvocationsTableId` field. */
+  outInvocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `outExecutionLogsTableId` field. */
+  outExecutionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
+  outSecretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outGraphModuleId` field. */
+  outGraphModuleId?: UUIDFilter;
+  /** Filter by the object’s `outGraphsTableId` field. */
+  outGraphsTableId?: UUIDFilter;
+  /** Filter by the object’s `outAgentModuleId` field. */
+  outAgentModuleId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: EntityTypeProvisionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: EntityTypeProvisionFilter[];
+  /** Negates the expression. */
+  not?: EntityTypeProvisionFilter;
 }
 /** A filter to be used against `EventsModule` object types. All fields are combined with a logical ‘and.’ */
 export interface EventsModuleFilter {
@@ -4542,6 +4661,8 @@ export interface EventsModuleFilter {
   entityTableId?: UUIDFilter;
   /** Filter by the object’s `actorTableId` field. */
   actorTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4553,99 +4674,6 @@ export interface EventsModuleFilter {
   /** Negates the expression. */
   not?: EventsModuleFilter;
 }
-/** A filter to be used against `EntityTypeProvision` object types. All fields are combined with a logical ‘and.’ */
-export interface EntityTypeProvisionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Filter by the object’s `parentEntity` field. */
-  parentEntity?: StringFilter;
-  /** Filter by the object’s `tableName` field. */
-  tableName?: StringFilter;
-  /** Filter by the object’s `isVisible` field. */
-  isVisible?: BooleanFilter;
-  /** Filter by the object’s `hasLimits` field. */
-  hasLimits?: BooleanFilter;
-  /** Filter by the object’s `hasProfiles` field. */
-  hasProfiles?: BooleanFilter;
-  /** Filter by the object’s `hasLevels` field. */
-  hasLevels?: BooleanFilter;
-  /** Filter by the object’s `hasInvites` field. */
-  hasInvites?: BooleanFilter;
-  /** Filter by the object’s `hasInviteAchievements` field. */
-  hasInviteAchievements?: BooleanFilter;
-  /** Filter by the object’s `storage` field. */
-  storage?: JSONFilter;
-  /** Filter by the object’s `namespaces` field. */
-  namespaces?: JSONFilter;
-  /** Filter by the object’s `functions` field. */
-  functions?: JSONFilter;
-  /** Filter by the object’s `graphs` field. */
-  graphs?: JSONFilter;
-  /** Filter by the object’s `agents` field. */
-  agents?: JSONFilter;
-  /** Filter by the object’s `skipEntityPolicies` field. */
-  skipEntityPolicies?: BooleanFilter;
-  /** Filter by the object’s `tableProvision` field. */
-  tableProvision?: JSONFilter;
-  /** Filter by the object’s `outMembershipType` field. */
-  outMembershipType?: IntFilter;
-  /** Filter by the object’s `outEntityTableId` field. */
-  outEntityTableId?: UUIDFilter;
-  /** Filter by the object’s `outEntityTableName` field. */
-  outEntityTableName?: StringFilter;
-  /** Filter by the object’s `outInstalledModules` field. */
-  outInstalledModules?: StringListFilter;
-  /** Filter by the object’s `outStorageModuleId` field. */
-  outStorageModuleId?: UUIDFilter;
-  /** Filter by the object’s `outBucketsTableId` field. */
-  outBucketsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFilesTableId` field. */
-  outFilesTableId?: UUIDFilter;
-  /** Filter by the object’s `outPathSharesTableId` field. */
-  outPathSharesTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvitesModuleId` field. */
-  outInvitesModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceModuleId` field. */
-  outNamespaceModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespacesTableId` field. */
-  outNamespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceEventsTableId` field. */
-  outNamespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFunctionModuleId` field. */
-  outFunctionModuleId?: UUIDFilter;
-  /** Filter by the object’s `outDefinitionsTableId` field. */
-  outDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvocationsTableId` field. */
-  outInvocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `outExecutionLogsTableId` field. */
-  outExecutionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
-  outSecretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outRequirementsTableId` field. */
-  outRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outConfigRequirementsTableId` field. */
-  outConfigRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outGraphModuleId` field. */
-  outGraphModuleId?: UUIDFilter;
-  /** Filter by the object’s `outGraphsTableId` field. */
-  outGraphsTableId?: UUIDFilter;
-  /** Filter by the object’s `outAgentModuleId` field. */
-  outAgentModuleId?: UUIDFilter;
-  /** Checks for all expressions in this list. */
-  and?: EntityTypeProvisionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: EntityTypeProvisionFilter[];
-  /** Negates the expression. */
-  not?: EntityTypeProvisionFilter;
-}
 export interface ConstructBlueprintInput {
   clientMutationId?: string;
   blueprintId?: string;
@@ -5110,28 +5138,6 @@ export interface CryptoAuthModuleInput {
   signUpWithKey?: string;
   signInWithChallenge?: string;
 }
-export interface CreateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  /** The `RateLimitMetersModule` to be created by this mutation. */
-  rateLimitMetersModule: RateLimitMetersModuleInput;
-}
-/** An input for mutations affecting `RateLimitMetersModule` */
-export interface RateLimitMetersModuleInput {
-  id?: string;
-  databaseId: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  rateLimitStateTableId?: string;
-  rateLimitStateTableName?: string;
-  rateLimitOverridesTableId?: string;
-  rateLimitOverridesTableName?: string;
-  rateWindowLimitsTableId?: string;
-  rateWindowLimitsTableName?: string;
-  checkRateLimitFunction?: string;
-  prefix?: string;
-  apiName?: string;
-  privateApiName?: string;
-}
 export interface CreateBlueprintConstructionInput {
   clientMutationId?: string;
   /** The `BlueprintConstruction` to be created by this mutation. */
@@ -5257,6 +5263,29 @@ export interface SecureTableProvisionInput {
   /** Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly. */
   outFields?: string[];
 }
+export interface CreateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  /** The `RateLimitMetersModule` to be created by this mutation. */
+  rateLimitMetersModule: RateLimitMetersModuleInput;
+}
+/** An input for mutations affecting `RateLimitMetersModule` */
+export interface RateLimitMetersModuleInput {
+  id?: string;
+  databaseId: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  rateLimitStateTableId?: string;
+  rateLimitStateTableName?: string;
+  rateLimitOverridesTableId?: string;
+  rateLimitOverridesTableName?: string;
+  rateWindowLimitsTableId?: string;
+  rateWindowLimitsTableName?: string;
+  checkRateLimitFunction?: string;
+  prefix?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface CreateInvitesModuleInput {
   clientMutationId?: string;
   /** The `InvitesModule` to be created by this mutation. */
@@ -5312,31 +5341,6 @@ export interface DatabaseProvisionModuleInput {
   updatedAt?: string;
   completedAt?: string;
 }
-export interface CreateNamespaceModuleInput {
-  clientMutationId?: string;
-  /** The `NamespaceModule` to be created by this mutation. */
-  namespaceModule: NamespaceModuleInput;
-}
-/** An input for mutations affecting `NamespaceModule` */
-export interface NamespaceModuleInput {
-  id?: string;
-  databaseId: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  publicSchemaName?: string;
-  privateSchemaName?: string;
-  namespacesTableId?: string;
-  namespaceEventsTableId?: string;
-  namespacesTableName?: string;
-  namespaceEventsTableName?: string;
-  apiName?: string;
-  privateApiName?: string;
-  scope?: string;
-  prefix?: string;
-  entityTableId?: string;
-  policies?: unknown;
-  provisions?: unknown;
-}
 export interface CreateRealtimeModuleInput {
   clientMutationId?: string;
   /** The `RealtimeModule` to be created by this mutation. */
@@ -5383,31 +5387,31 @@ export interface WebauthnAuthModuleInput {
   residentKey?: string;
   challengeExpiry?: IntervalInput;
 }
-export interface CreateGraphModuleInput {
+export interface CreateNamespaceModuleInput {
   clientMutationId?: string;
-  /** The `GraphModule` to be created by this mutation. */
-  graphModule: GraphModuleInput;
+  /** The `NamespaceModule` to be created by this mutation. */
+  namespaceModule: NamespaceModuleInput;
 }
-/** An input for mutations affecting `GraphModule` */
-export interface GraphModuleInput {
+/** An input for mutations affecting `NamespaceModule` */
+export interface NamespaceModuleInput {
   id?: string;
   databaseId: string;
-  publicSchemaId?: string;
+  schemaId?: string;
   privateSchemaId?: string;
   publicSchemaName?: string;
   privateSchemaName?: string;
-  scope?: string;
-  prefix?: string;
-  merkleStoreModuleId: string;
-  graphsTableId?: string;
-  executionsTableId?: string;
-  outputsTableId?: string;
+  namespacesTableId?: string;
+  namespaceEventsTableId?: string;
+  namespacesTableName?: string;
+  namespaceEventsTableName?: string;
   apiName?: string;
   privateApiName?: string;
+  scope?: string;
+  prefix?: string;
   entityTableId?: string;
   policies?: unknown;
   provisions?: unknown;
-  createdAt?: string;
+  defaultPermissions?: string[];
 }
 export interface CreateComputeLogModuleInput {
   clientMutationId?: string;
@@ -5509,59 +5513,32 @@ export interface TransferLogModuleInput {
   apiName?: string;
   privateApiName?: string;
 }
-export interface CreateDbUsageModuleInput {
+export interface CreateGraphModuleInput {
   clientMutationId?: string;
-  /** The `DbUsageModule` to be created by this mutation. */
-  dbUsageModule: DbUsageModuleInput;
+  /** The `GraphModule` to be created by this mutation. */
+  graphModule: GraphModuleInput;
 }
-/** An input for mutations affecting `DbUsageModule` */
-export interface DbUsageModuleInput {
+/** An input for mutations affecting `GraphModule` */
+export interface GraphModuleInput {
   id?: string;
   databaseId: string;
-  schemaId?: string;
+  publicSchemaId?: string;
   privateSchemaId?: string;
-  tableStatsLogTableId?: string;
-  tableStatsLogTableName?: string;
-  tableStatsDailyTableId?: string;
-  tableStatsDailyTableName?: string;
-  queryStatsLogTableId?: string;
-  queryStatsLogTableName?: string;
-  queryStatsDailyTableId?: string;
-  queryStatsDailyTableName?: string;
-  interval?: string;
-  retention?: string;
-  premake?: number;
+  publicSchemaName?: string;
+  privateSchemaName?: string;
   scope?: string;
   prefix?: string;
+  merkleStoreModuleId: string;
+  graphsTableId?: string;
+  executionsTableId?: string;
+  outputsTableId?: string;
   apiName?: string;
   privateApiName?: string;
-}
-export interface CreateNotificationsModuleInput {
-  clientMutationId?: string;
-  /** The `NotificationsModule` to be created by this mutation. */
-  notificationsModule: NotificationsModuleInput;
-}
-/** An input for mutations affecting `NotificationsModule` */
-export interface NotificationsModuleInput {
-  id?: string;
-  databaseId: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  notificationsTableId?: string;
-  readStateTableId?: string;
-  preferencesTableId?: string;
-  channelsTableId?: string;
-  deliveryLogTableId?: string;
-  ownerTableId?: string;
-  userSettingsTableId?: string;
-  organizationSettingsTableId?: string;
-  hasChannels?: boolean;
-  hasPreferences?: boolean;
-  hasSettingsExtension?: boolean;
-  hasDigestMetadata?: boolean;
-  hasSubscriptions?: boolean;
-  apiName?: string;
-  privateApiName?: string;
+  entityTableId?: string;
+  policies?: unknown;
+  provisions?: unknown;
+  defaultPermissions?: string[];
+  createdAt?: string;
 }
 export interface CreatePlansModuleInput {
   clientMutationId?: string;
@@ -5590,62 +5567,59 @@ export interface PlansModuleInput {
   apiName?: string;
   privateApiName?: string;
 }
-export interface CreateHierarchyModuleInput {
+export interface CreateDbUsageModuleInput {
   clientMutationId?: string;
-  /** The `HierarchyModule` to be created by this mutation. */
-  hierarchyModule: HierarchyModuleInput;
+  /** The `DbUsageModule` to be created by this mutation. */
+  dbUsageModule: DbUsageModuleInput;
 }
-/** An input for mutations affecting `HierarchyModule` */
-export interface HierarchyModuleInput {
+/** An input for mutations affecting `DbUsageModule` */
+export interface DbUsageModuleInput {
   id?: string;
   databaseId: string;
   schemaId?: string;
   privateSchemaId?: string;
-  chartEdgesTableId?: string;
-  chartEdgesTableName?: string;
-  hierarchySprtTableId?: string;
-  hierarchySprtTableName?: string;
-  chartEdgeGrantsTableId?: string;
-  chartEdgeGrantsTableName?: string;
-  entityTableId: string;
-  usersTableId: string;
+  tableStatsLogTableId?: string;
+  tableStatsLogTableName?: string;
+  tableStatsDailyTableId?: string;
+  tableStatsDailyTableName?: string;
+  queryStatsLogTableId?: string;
+  queryStatsLogTableName?: string;
+  queryStatsDailyTableId?: string;
+  queryStatsDailyTableName?: string;
+  interval?: string;
+  retention?: string;
+  premake?: number;
   scope?: string;
   prefix?: string;
-  privateSchemaName?: string;
-  sprtTableName?: string;
-  rebuildHierarchyFunction?: string;
-  getSubordinatesFunction?: string;
-  getManagersFunction?: string;
-  isManagerOfFunction?: string;
-  createdAt?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
 }
-export interface CreateBillingModuleInput {
+export interface CreateNotificationsModuleInput {
   clientMutationId?: string;
-  /** The `BillingModule` to be created by this mutation. */
-  billingModule: BillingModuleInput;
+  /** The `NotificationsModule` to be created by this mutation. */
+  notificationsModule: NotificationsModuleInput;
 }
-/** An input for mutations affecting `BillingModule` */
-export interface BillingModuleInput {
+/** An input for mutations affecting `NotificationsModule` */
+export interface NotificationsModuleInput {
   id?: string;
   databaseId: string;
   schemaId?: string;
   privateSchemaId?: string;
-  metersTableId?: string;
-  metersTableName?: string;
-  planSubscriptionsTableId?: string;
-  planSubscriptionsTableName?: string;
-  ledgerTableId?: string;
-  ledgerTableName?: string;
-  balancesTableId?: string;
-  balancesTableName?: string;
-  meterCreditsTableId?: string;
-  meterCreditsTableName?: string;
-  meterSourcesTableId?: string;
-  meterSourcesTableName?: string;
-  meterDefaultsTableId?: string;
-  meterDefaultsTableName?: string;
-  recordUsageFunction?: string;
-  prefix?: string;
+  notificationsTableId?: string;
+  readStateTableId?: string;
+  preferencesTableId?: string;
+  channelsTableId?: string;
+  deliveryLogTableId?: string;
+  ownerTableId?: string;
+  userSettingsTableId?: string;
+  organizationSettingsTableId?: string;
+  hasChannels?: boolean;
+  hasPreferences?: boolean;
+  hasSettingsExtension?: boolean;
+  hasDigestMetadata?: boolean;
+  hasSubscriptions?: boolean;
+  defaultPermissions?: string[];
   apiName?: string;
   privateApiName?: string;
 }
@@ -5679,6 +5653,66 @@ export interface BillingProviderModuleInput {
   apiName?: string;
   privateApiName?: string;
 }
+export interface CreateFunctionModuleInput {
+  clientMutationId?: string;
+  /** The `FunctionModule` to be created by this mutation. */
+  functionModule: FunctionModuleInput;
+}
+/** An input for mutations affecting `FunctionModule` */
+export interface FunctionModuleInput {
+  id?: string;
+  databaseId: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  publicSchemaName?: string;
+  privateSchemaName?: string;
+  definitionsTableId?: string;
+  invocationsTableId?: string;
+  executionLogsTableId?: string;
+  secretDefinitionsTableId?: string;
+  definitionsTableName?: string;
+  invocationsTableName?: string;
+  executionLogsTableName?: string;
+  secretDefinitionsTableName?: string;
+  apiName?: string;
+  privateApiName?: string;
+  scope?: string;
+  prefix?: string;
+  entityTableId?: string;
+  policies?: unknown;
+  provisions?: unknown;
+  defaultPermissions?: string[];
+}
+export interface CreateHierarchyModuleInput {
+  clientMutationId?: string;
+  /** The `HierarchyModule` to be created by this mutation. */
+  hierarchyModule: HierarchyModuleInput;
+}
+/** An input for mutations affecting `HierarchyModule` */
+export interface HierarchyModuleInput {
+  id?: string;
+  databaseId: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  chartEdgesTableId?: string;
+  chartEdgesTableName?: string;
+  hierarchySprtTableId?: string;
+  hierarchySprtTableName?: string;
+  chartEdgeGrantsTableId?: string;
+  chartEdgeGrantsTableName?: string;
+  entityTableId: string;
+  usersTableId: string;
+  scope?: string;
+  prefix?: string;
+  privateSchemaName?: string;
+  sprtTableName?: string;
+  rebuildHierarchyFunction?: string;
+  getSubordinatesFunction?: string;
+  getManagersFunction?: string;
+  isManagerOfFunction?: string;
+  defaultPermissions?: string[];
+  createdAt?: string;
+}
 export interface CreateProfilesModuleInput {
   clientMutationId?: string;
   /** The `ProfilesModule` to be created by this mutation. */
@@ -5736,6 +5770,37 @@ export interface PermissionsModuleInput {
   apiName?: string;
   privateApiName?: string;
 }
+export interface CreateBillingModuleInput {
+  clientMutationId?: string;
+  /** The `BillingModule` to be created by this mutation. */
+  billingModule: BillingModuleInput;
+}
+/** An input for mutations affecting `BillingModule` */
+export interface BillingModuleInput {
+  id?: string;
+  databaseId: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  metersTableId?: string;
+  metersTableName?: string;
+  planSubscriptionsTableId?: string;
+  planSubscriptionsTableName?: string;
+  ledgerTableId?: string;
+  ledgerTableName?: string;
+  balancesTableId?: string;
+  balancesTableName?: string;
+  meterCreditsTableId?: string;
+  meterCreditsTableName?: string;
+  meterSourcesTableId?: string;
+  meterSourcesTableName?: string;
+  meterDefaultsTableId?: string;
+  meterDefaultsTableName?: string;
+  recordUsageFunction?: string;
+  prefix?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface CreateRelationProvisionInput {
   clientMutationId?: string;
   /** The `RelationProvision` to be created by this mutation. */
@@ -5913,40 +5978,6 @@ export interface BlueprintTemplateInput {
   /** Timestamp when this template was last modified. */
   updatedAt?: string;
 }
-export interface CreateFunctionModuleInput {
-  clientMutationId?: string;
-  /** The `FunctionModule` to be created by this mutation. */
-  functionModule: FunctionModuleInput;
-}
-/** An input for mutations affecting `FunctionModule` */
-export interface FunctionModuleInput {
-  id?: string;
-  databaseId: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  publicSchemaName?: string;
-  privateSchemaName?: string;
-  definitionsTableId?: string;
-  invocationsTableId?: string;
-  executionLogsTableId?: string;
-  secretDefinitionsTableId?: string;
-  requirementsTableId?: string;
-  configDefinitionsTableId?: string;
-  configRequirementsTableId?: string;
-  definitionsTableName?: string;
-  invocationsTableName?: string;
-  executionLogsTableName?: string;
-  secretDefinitionsTableName?: string;
-  requirementsTableName?: string;
-  configRequirementsTableName?: string;
-  apiName?: string;
-  privateApiName?: string;
-  scope?: string;
-  prefix?: string;
-  entityTableId?: string;
-  policies?: unknown;
-  provisions?: unknown;
-}
 export interface CreateUserAuthModuleInput {
   clientMutationId?: string;
   /** The `UserAuthModule` to be created by this mutation. */
@@ -6013,6 +6044,7 @@ export interface AgentModuleInput {
   hasPlans?: boolean;
   hasResources?: boolean;
   hasAgents?: boolean;
+  shared?: boolean;
   apiName?: string;
   privateApiName?: string;
   scope?: string;
@@ -6021,6 +6053,7 @@ export interface AgentModuleInput {
   policies?: unknown;
   resources?: unknown;
   provisions?: unknown;
+  defaultPermissions?: string[];
 }
 export interface CreateLimitsModuleInput {
   clientMutationId?: string;
@@ -6106,6 +6139,8 @@ export interface MembershipsModuleInput {
   entityIdsByPerm?: string;
   entityIdsFunction?: string;
   memberProfilesTableId?: string;
+  permissionDefaultPermissionsTableId?: string;
+  permissionDefaultGrantsTableId?: string;
   apiName?: string;
   privateApiName?: string;
 }
@@ -6126,79 +6161,31 @@ export interface StorageModuleInput {
   filesTableName?: string;
   scope?: string;
   prefix?: string;
-  policies?: unknown;
-  provisions?: unknown;
-  entityTableId?: string;
-  endpoint?: string;
-  publicUrlPrefix?: string;
-  provider?: string;
-  allowedOrigins?: string[];
-  restrictReads?: boolean;
-  hasPathShares?: boolean;
-  pathSharesTableId?: string;
-  uploadUrlExpirySeconds?: number;
-  downloadUrlExpirySeconds?: number;
-  defaultMaxFileSize?: string;
-  maxFilenameLength?: number;
-  cacheTtlSeconds?: number;
-  maxBulkFiles?: number;
-  maxBulkTotalSize?: string;
-  hasVersioning?: boolean;
-  hasContentHash?: boolean;
-  hasCustomKeys?: boolean;
-  hasAuditLog?: boolean;
-  hasConfirmUpload?: boolean;
-  confirmUploadDelay?: IntervalInput;
-  fileEventsTableId?: string;
-  apiName?: string;
-  privateApiName?: string;
-}
-export interface CreateEventsModuleInput {
-  clientMutationId?: string;
-  /** The `EventsModule` to be created by this mutation. */
-  eventsModule: EventsModuleInput;
-}
-/** An input for mutations affecting `EventsModule` */
-export interface EventsModuleInput {
-  id?: string;
-  databaseId: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  eventsTableId?: string;
-  eventsTableName?: string;
-  eventAggregatesTableId?: string;
-  eventAggregatesTableName?: string;
-  eventTypesTableId?: string;
-  eventTypesTableName?: string;
-  levelsTableId?: string;
-  levelsTableName?: string;
-  levelRequirementsTableId?: string;
-  levelRequirementsTableName?: string;
-  levelGrantsTableId?: string;
-  levelGrantsTableName?: string;
-  achievementRewardsTableId?: string;
-  achievementRewardsTableName?: string;
-  recordEvent?: string;
-  removeEvent?: string;
-  tgEvent?: string;
-  tgEventToggle?: string;
-  tgEventToggleBool?: string;
-  tgEventBool?: string;
-  upsertAggregate?: string;
-  tgUpdateAggregates?: string;
-  pruneEvents?: string;
-  stepsRequired?: string;
-  levelAchieved?: string;
-  tgCheckAchievements?: string;
-  grantAchievement?: string;
-  tgAchievementReward?: string;
-  interval?: string;
-  retention?: string;
-  premake?: number;
-  scope?: string;
-  prefix?: string;
+  policies?: unknown;
+  provisions?: unknown;
   entityTableId?: string;
-  actorTableId?: string;
+  endpoint?: string;
+  publicUrlPrefix?: string;
+  provider?: string;
+  allowedOrigins?: string[];
+  restrictReads?: boolean;
+  hasPathShares?: boolean;
+  pathSharesTableId?: string;
+  uploadUrlExpirySeconds?: number;
+  downloadUrlExpirySeconds?: number;
+  defaultMaxFileSize?: string;
+  maxFilenameLength?: number;
+  cacheTtlSeconds?: number;
+  maxBulkFiles?: number;
+  maxBulkTotalSize?: string;
+  hasVersioning?: boolean;
+  hasContentHash?: boolean;
+  hasCustomKeys?: boolean;
+  hasAuditLog?: boolean;
+  hasConfirmUpload?: boolean;
+  confirmUploadDelay?: IntervalInput;
+  fileEventsTableId?: string;
+  defaultPermissions?: string[];
   apiName?: string;
   privateApiName?: string;
 }
@@ -6456,12 +6443,60 @@ export interface EntityTypeProvisionInput {
   outInvocationsTableId?: string;
   outExecutionLogsTableId?: string;
   outSecretDefinitionsTableId?: string;
-  outRequirementsTableId?: string;
-  outConfigRequirementsTableId?: string;
   outGraphModuleId?: string;
   outGraphsTableId?: string;
   outAgentModuleId?: string;
 }
+export interface CreateEventsModuleInput {
+  clientMutationId?: string;
+  /** The `EventsModule` to be created by this mutation. */
+  eventsModule: EventsModuleInput;
+}
+/** An input for mutations affecting `EventsModule` */
+export interface EventsModuleInput {
+  id?: string;
+  databaseId: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  eventsTableId?: string;
+  eventsTableName?: string;
+  eventAggregatesTableId?: string;
+  eventAggregatesTableName?: string;
+  eventTypesTableId?: string;
+  eventTypesTableName?: string;
+  levelsTableId?: string;
+  levelsTableName?: string;
+  levelRequirementsTableId?: string;
+  levelRequirementsTableName?: string;
+  levelGrantsTableId?: string;
+  levelGrantsTableName?: string;
+  achievementRewardsTableId?: string;
+  achievementRewardsTableName?: string;
+  recordEvent?: string;
+  removeEvent?: string;
+  tgEvent?: string;
+  tgEventToggle?: string;
+  tgEventToggleBool?: string;
+  tgEventBool?: string;
+  upsertAggregate?: string;
+  tgUpdateAggregates?: string;
+  pruneEvents?: string;
+  stepsRequired?: string;
+  levelAchieved?: string;
+  tgCheckAchievements?: string;
+  grantAchievement?: string;
+  tgAchievementReward?: string;
+  interval?: string;
+  retention?: string;
+  premake?: number;
+  scope?: string;
+  prefix?: string;
+  entityTableId?: string;
+  actorTableId?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface UpdateDefaultIdsModuleInput {
   clientMutationId?: string;
   id: string;
@@ -6863,29 +6898,6 @@ export interface CryptoAuthModulePatch {
   signUpWithKey?: string;
   signInWithChallenge?: string;
 }
-export interface UpdateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-  /** An object where the defined keys will be set on the `RateLimitMetersModule` being updated. */
-  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
-}
-/** Represents an update to a `RateLimitMetersModule`. Fields that are set will be updated. */
-export interface RateLimitMetersModulePatch {
-  id?: string;
-  databaseId?: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  rateLimitStateTableId?: string;
-  rateLimitStateTableName?: string;
-  rateLimitOverridesTableId?: string;
-  rateLimitOverridesTableName?: string;
-  rateWindowLimitsTableId?: string;
-  rateWindowLimitsTableName?: string;
-  checkRateLimitFunction?: string;
-  prefix?: string;
-  apiName?: string;
-  privateApiName?: string;
-}
 export interface UpdateBlueprintConstructionInput {
   clientMutationId?: string;
   /** Unique identifier for this construction attempt. */
@@ -7018,6 +7030,30 @@ export interface SecureTableProvisionPatch {
   /** Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly. */
   outFields?: string[];
 }
+export interface UpdateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `RateLimitMetersModule` being updated. */
+  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
+}
+/** Represents an update to a `RateLimitMetersModule`. Fields that are set will be updated. */
+export interface RateLimitMetersModulePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  rateLimitStateTableId?: string;
+  rateLimitStateTableName?: string;
+  rateLimitOverridesTableId?: string;
+  rateLimitOverridesTableName?: string;
+  rateWindowLimitsTableId?: string;
+  rateWindowLimitsTableName?: string;
+  checkRateLimitFunction?: string;
+  prefix?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface UpdateInvitesModuleInput {
   clientMutationId?: string;
   id: string;
@@ -7075,32 +7111,6 @@ export interface DatabaseProvisionModulePatch {
   updatedAt?: string;
   completedAt?: string;
 }
-export interface UpdateNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-  /** An object where the defined keys will be set on the `NamespaceModule` being updated. */
-  namespaceModulePatch: NamespaceModulePatch;
-}
-/** Represents an update to a `NamespaceModule`. Fields that are set will be updated. */
-export interface NamespaceModulePatch {
-  id?: string;
-  databaseId?: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  publicSchemaName?: string;
-  privateSchemaName?: string;
-  namespacesTableId?: string;
-  namespaceEventsTableId?: string;
-  namespacesTableName?: string;
-  namespaceEventsTableName?: string;
-  apiName?: string;
-  privateApiName?: string;
-  scope?: string;
-  prefix?: string;
-  entityTableId?: string;
-  policies?: unknown;
-  provisions?: unknown;
-}
 export interface UpdateRealtimeModuleInput {
   clientMutationId?: string;
   id: string;
@@ -7149,32 +7159,32 @@ export interface WebauthnAuthModulePatch {
   residentKey?: string;
   challengeExpiry?: IntervalInput;
 }
-export interface UpdateGraphModuleInput {
+export interface UpdateNamespaceModuleInput {
   clientMutationId?: string;
   id: string;
-  /** An object where the defined keys will be set on the `GraphModule` being updated. */
-  graphModulePatch: GraphModulePatch;
+  /** An object where the defined keys will be set on the `NamespaceModule` being updated. */
+  namespaceModulePatch: NamespaceModulePatch;
 }
-/** Represents an update to a `GraphModule`. Fields that are set will be updated. */
-export interface GraphModulePatch {
+/** Represents an update to a `NamespaceModule`. Fields that are set will be updated. */
+export interface NamespaceModulePatch {
   id?: string;
   databaseId?: string;
-  publicSchemaId?: string;
+  schemaId?: string;
   privateSchemaId?: string;
   publicSchemaName?: string;
   privateSchemaName?: string;
-  scope?: string;
-  prefix?: string;
-  merkleStoreModuleId?: string;
-  graphsTableId?: string;
-  executionsTableId?: string;
-  outputsTableId?: string;
+  namespacesTableId?: string;
+  namespaceEventsTableId?: string;
+  namespacesTableName?: string;
+  namespaceEventsTableName?: string;
   apiName?: string;
   privateApiName?: string;
+  scope?: string;
+  prefix?: string;
   entityTableId?: string;
   policies?: unknown;
   provisions?: unknown;
-  createdAt?: string;
+  defaultPermissions?: string[];
 }
 export interface UpdateComputeLogModuleInput {
   clientMutationId?: string;
@@ -7280,61 +7290,33 @@ export interface TransferLogModulePatch {
   apiName?: string;
   privateApiName?: string;
 }
-export interface UpdateDbUsageModuleInput {
+export interface UpdateGraphModuleInput {
   clientMutationId?: string;
   id: string;
-  /** An object where the defined keys will be set on the `DbUsageModule` being updated. */
-  dbUsageModulePatch: DbUsageModulePatch;
+  /** An object where the defined keys will be set on the `GraphModule` being updated. */
+  graphModulePatch: GraphModulePatch;
 }
-/** Represents an update to a `DbUsageModule`. Fields that are set will be updated. */
-export interface DbUsageModulePatch {
+/** Represents an update to a `GraphModule`. Fields that are set will be updated. */
+export interface GraphModulePatch {
   id?: string;
   databaseId?: string;
-  schemaId?: string;
+  publicSchemaId?: string;
   privateSchemaId?: string;
-  tableStatsLogTableId?: string;
-  tableStatsLogTableName?: string;
-  tableStatsDailyTableId?: string;
-  tableStatsDailyTableName?: string;
-  queryStatsLogTableId?: string;
-  queryStatsLogTableName?: string;
-  queryStatsDailyTableId?: string;
-  queryStatsDailyTableName?: string;
-  interval?: string;
-  retention?: string;
-  premake?: number;
+  publicSchemaName?: string;
+  privateSchemaName?: string;
   scope?: string;
   prefix?: string;
+  merkleStoreModuleId?: string;
+  graphsTableId?: string;
+  executionsTableId?: string;
+  outputsTableId?: string;
   apiName?: string;
   privateApiName?: string;
-}
-export interface UpdateNotificationsModuleInput {
-  clientMutationId?: string;
-  id: string;
-  /** An object where the defined keys will be set on the `NotificationsModule` being updated. */
-  notificationsModulePatch: NotificationsModulePatch;
-}
-/** Represents an update to a `NotificationsModule`. Fields that are set will be updated. */
-export interface NotificationsModulePatch {
-  id?: string;
-  databaseId?: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  notificationsTableId?: string;
-  readStateTableId?: string;
-  preferencesTableId?: string;
-  channelsTableId?: string;
-  deliveryLogTableId?: string;
-  ownerTableId?: string;
-  userSettingsTableId?: string;
-  organizationSettingsTableId?: string;
-  hasChannels?: boolean;
-  hasPreferences?: boolean;
-  hasSettingsExtension?: boolean;
-  hasDigestMetadata?: boolean;
-  hasSubscriptions?: boolean;
-  apiName?: string;
-  privateApiName?: string;
+  entityTableId?: string;
+  policies?: unknown;
+  provisions?: unknown;
+  defaultPermissions?: string[];
+  createdAt?: string;
 }
 export interface UpdatePlansModuleInput {
   clientMutationId?: string;
@@ -7364,64 +7346,61 @@ export interface PlansModulePatch {
   apiName?: string;
   privateApiName?: string;
 }
-export interface UpdateHierarchyModuleInput {
+export interface UpdateDbUsageModuleInput {
   clientMutationId?: string;
   id: string;
-  /** An object where the defined keys will be set on the `HierarchyModule` being updated. */
-  hierarchyModulePatch: HierarchyModulePatch;
+  /** An object where the defined keys will be set on the `DbUsageModule` being updated. */
+  dbUsageModulePatch: DbUsageModulePatch;
 }
-/** Represents an update to a `HierarchyModule`. Fields that are set will be updated. */
-export interface HierarchyModulePatch {
+/** Represents an update to a `DbUsageModule`. Fields that are set will be updated. */
+export interface DbUsageModulePatch {
   id?: string;
   databaseId?: string;
   schemaId?: string;
   privateSchemaId?: string;
-  chartEdgesTableId?: string;
-  chartEdgesTableName?: string;
-  hierarchySprtTableId?: string;
-  hierarchySprtTableName?: string;
-  chartEdgeGrantsTableId?: string;
-  chartEdgeGrantsTableName?: string;
-  entityTableId?: string;
-  usersTableId?: string;
+  tableStatsLogTableId?: string;
+  tableStatsLogTableName?: string;
+  tableStatsDailyTableId?: string;
+  tableStatsDailyTableName?: string;
+  queryStatsLogTableId?: string;
+  queryStatsLogTableName?: string;
+  queryStatsDailyTableId?: string;
+  queryStatsDailyTableName?: string;
+  interval?: string;
+  retention?: string;
+  premake?: number;
   scope?: string;
   prefix?: string;
-  privateSchemaName?: string;
-  sprtTableName?: string;
-  rebuildHierarchyFunction?: string;
-  getSubordinatesFunction?: string;
-  getManagersFunction?: string;
-  isManagerOfFunction?: string;
-  createdAt?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
 }
-export interface UpdateBillingModuleInput {
+export interface UpdateNotificationsModuleInput {
   clientMutationId?: string;
   id: string;
-  /** An object where the defined keys will be set on the `BillingModule` being updated. */
-  billingModulePatch: BillingModulePatch;
+  /** An object where the defined keys will be set on the `NotificationsModule` being updated. */
+  notificationsModulePatch: NotificationsModulePatch;
 }
-/** Represents an update to a `BillingModule`. Fields that are set will be updated. */
-export interface BillingModulePatch {
+/** Represents an update to a `NotificationsModule`. Fields that are set will be updated. */
+export interface NotificationsModulePatch {
   id?: string;
   databaseId?: string;
   schemaId?: string;
   privateSchemaId?: string;
-  metersTableId?: string;
-  metersTableName?: string;
-  planSubscriptionsTableId?: string;
-  planSubscriptionsTableName?: string;
-  ledgerTableId?: string;
-  ledgerTableName?: string;
-  balancesTableId?: string;
-  balancesTableName?: string;
-  meterCreditsTableId?: string;
-  meterCreditsTableName?: string;
-  meterSourcesTableId?: string;
-  meterSourcesTableName?: string;
-  meterDefaultsTableId?: string;
-  meterDefaultsTableName?: string;
-  recordUsageFunction?: string;
-  prefix?: string;
+  notificationsTableId?: string;
+  readStateTableId?: string;
+  preferencesTableId?: string;
+  channelsTableId?: string;
+  deliveryLogTableId?: string;
+  ownerTableId?: string;
+  userSettingsTableId?: string;
+  organizationSettingsTableId?: string;
+  hasChannels?: boolean;
+  hasPreferences?: boolean;
+  hasSettingsExtension?: boolean;
+  hasDigestMetadata?: boolean;
+  hasSubscriptions?: boolean;
+  defaultPermissions?: string[];
   apiName?: string;
   privateApiName?: string;
 }
@@ -7456,6 +7435,68 @@ export interface BillingProviderModulePatch {
   apiName?: string;
   privateApiName?: string;
 }
+export interface UpdateFunctionModuleInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `FunctionModule` being updated. */
+  functionModulePatch: FunctionModulePatch;
+}
+/** Represents an update to a `FunctionModule`. Fields that are set will be updated. */
+export interface FunctionModulePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  publicSchemaName?: string;
+  privateSchemaName?: string;
+  definitionsTableId?: string;
+  invocationsTableId?: string;
+  executionLogsTableId?: string;
+  secretDefinitionsTableId?: string;
+  definitionsTableName?: string;
+  invocationsTableName?: string;
+  executionLogsTableName?: string;
+  secretDefinitionsTableName?: string;
+  apiName?: string;
+  privateApiName?: string;
+  scope?: string;
+  prefix?: string;
+  entityTableId?: string;
+  policies?: unknown;
+  provisions?: unknown;
+  defaultPermissions?: string[];
+}
+export interface UpdateHierarchyModuleInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `HierarchyModule` being updated. */
+  hierarchyModulePatch: HierarchyModulePatch;
+}
+/** Represents an update to a `HierarchyModule`. Fields that are set will be updated. */
+export interface HierarchyModulePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  chartEdgesTableId?: string;
+  chartEdgesTableName?: string;
+  hierarchySprtTableId?: string;
+  hierarchySprtTableName?: string;
+  chartEdgeGrantsTableId?: string;
+  chartEdgeGrantsTableName?: string;
+  entityTableId?: string;
+  usersTableId?: string;
+  scope?: string;
+  prefix?: string;
+  privateSchemaName?: string;
+  sprtTableName?: string;
+  rebuildHierarchyFunction?: string;
+  getSubordinatesFunction?: string;
+  getManagersFunction?: string;
+  isManagerOfFunction?: string;
+  defaultPermissions?: string[];
+  createdAt?: string;
+}
 export interface UpdateProfilesModuleInput {
   clientMutationId?: string;
   id: string;
@@ -7515,6 +7556,38 @@ export interface PermissionsModulePatch {
   apiName?: string;
   privateApiName?: string;
 }
+export interface UpdateBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `BillingModule` being updated. */
+  billingModulePatch: BillingModulePatch;
+}
+/** Represents an update to a `BillingModule`. Fields that are set will be updated. */
+export interface BillingModulePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  metersTableId?: string;
+  metersTableName?: string;
+  planSubscriptionsTableId?: string;
+  planSubscriptionsTableName?: string;
+  ledgerTableId?: string;
+  ledgerTableName?: string;
+  balancesTableId?: string;
+  balancesTableName?: string;
+  meterCreditsTableId?: string;
+  meterCreditsTableName?: string;
+  meterSourcesTableId?: string;
+  meterSourcesTableName?: string;
+  meterDefaultsTableId?: string;
+  meterDefaultsTableName?: string;
+  recordUsageFunction?: string;
+  prefix?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface UpdateRelationProvisionInput {
   clientMutationId?: string;
   /** Unique identifier for this relation provision row. */
@@ -7696,41 +7769,6 @@ export interface BlueprintTemplatePatch {
   /** Timestamp when this template was last modified. */
   updatedAt?: string;
 }
-export interface UpdateFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-  /** An object where the defined keys will be set on the `FunctionModule` being updated. */
-  functionModulePatch: FunctionModulePatch;
-}
-/** Represents an update to a `FunctionModule`. Fields that are set will be updated. */
-export interface FunctionModulePatch {
-  id?: string;
-  databaseId?: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  publicSchemaName?: string;
-  privateSchemaName?: string;
-  definitionsTableId?: string;
-  invocationsTableId?: string;
-  executionLogsTableId?: string;
-  secretDefinitionsTableId?: string;
-  requirementsTableId?: string;
-  configDefinitionsTableId?: string;
-  configRequirementsTableId?: string;
-  definitionsTableName?: string;
-  invocationsTableName?: string;
-  executionLogsTableName?: string;
-  secretDefinitionsTableName?: string;
-  requirementsTableName?: string;
-  configRequirementsTableName?: string;
-  apiName?: string;
-  privateApiName?: string;
-  scope?: string;
-  prefix?: string;
-  entityTableId?: string;
-  policies?: unknown;
-  provisions?: unknown;
-}
 export interface UpdateUserAuthModuleInput {
   clientMutationId?: string;
   id: string;
@@ -7799,6 +7837,7 @@ export interface AgentModulePatch {
   hasPlans?: boolean;
   hasResources?: boolean;
   hasAgents?: boolean;
+  shared?: boolean;
   apiName?: string;
   privateApiName?: string;
   scope?: string;
@@ -7807,6 +7846,7 @@ export interface AgentModulePatch {
   policies?: unknown;
   resources?: unknown;
   provisions?: unknown;
+  defaultPermissions?: string[];
 }
 export interface UpdateLimitsModuleInput {
   clientMutationId?: string;
@@ -7894,6 +7934,8 @@ export interface MembershipsModulePatch {
   entityIdsByPerm?: string;
   entityIdsFunction?: string;
   memberProfilesTableId?: string;
+  permissionDefaultPermissionsTableId?: string;
+  permissionDefaultGrantsTableId?: string;
   apiName?: string;
   privateApiName?: string;
 }
@@ -7939,56 +7981,7 @@ export interface StorageModulePatch {
   hasConfirmUpload?: boolean;
   confirmUploadDelay?: IntervalInput;
   fileEventsTableId?: string;
-  apiName?: string;
-  privateApiName?: string;
-}
-export interface UpdateEventsModuleInput {
-  clientMutationId?: string;
-  id: string;
-  /** An object where the defined keys will be set on the `EventsModule` being updated. */
-  eventsModulePatch: EventsModulePatch;
-}
-/** Represents an update to a `EventsModule`. Fields that are set will be updated. */
-export interface EventsModulePatch {
-  id?: string;
-  databaseId?: string;
-  schemaId?: string;
-  privateSchemaId?: string;
-  eventsTableId?: string;
-  eventsTableName?: string;
-  eventAggregatesTableId?: string;
-  eventAggregatesTableName?: string;
-  eventTypesTableId?: string;
-  eventTypesTableName?: string;
-  levelsTableId?: string;
-  levelsTableName?: string;
-  levelRequirementsTableId?: string;
-  levelRequirementsTableName?: string;
-  levelGrantsTableId?: string;
-  levelGrantsTableName?: string;
-  achievementRewardsTableId?: string;
-  achievementRewardsTableName?: string;
-  recordEvent?: string;
-  removeEvent?: string;
-  tgEvent?: string;
-  tgEventToggle?: string;
-  tgEventToggleBool?: string;
-  tgEventBool?: string;
-  upsertAggregate?: string;
-  tgUpdateAggregates?: string;
-  pruneEvents?: string;
-  stepsRequired?: string;
-  levelAchieved?: string;
-  tgCheckAchievements?: string;
-  grantAchievement?: string;
-  tgAchievementReward?: string;
-  interval?: string;
-  retention?: string;
-  premake?: number;
-  scope?: string;
-  prefix?: string;
-  entityTableId?: string;
-  actorTableId?: string;
+  defaultPermissions?: string[];
   apiName?: string;
   privateApiName?: string;
 }
@@ -8248,12 +8241,61 @@ export interface EntityTypeProvisionPatch {
   outInvocationsTableId?: string;
   outExecutionLogsTableId?: string;
   outSecretDefinitionsTableId?: string;
-  outRequirementsTableId?: string;
-  outConfigRequirementsTableId?: string;
   outGraphModuleId?: string;
   outGraphsTableId?: string;
   outAgentModuleId?: string;
 }
+export interface UpdateEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+  /** An object where the defined keys will be set on the `EventsModule` being updated. */
+  eventsModulePatch: EventsModulePatch;
+}
+/** Represents an update to a `EventsModule`. Fields that are set will be updated. */
+export interface EventsModulePatch {
+  id?: string;
+  databaseId?: string;
+  schemaId?: string;
+  privateSchemaId?: string;
+  eventsTableId?: string;
+  eventsTableName?: string;
+  eventAggregatesTableId?: string;
+  eventAggregatesTableName?: string;
+  eventTypesTableId?: string;
+  eventTypesTableName?: string;
+  levelsTableId?: string;
+  levelsTableName?: string;
+  levelRequirementsTableId?: string;
+  levelRequirementsTableName?: string;
+  levelGrantsTableId?: string;
+  levelGrantsTableName?: string;
+  achievementRewardsTableId?: string;
+  achievementRewardsTableName?: string;
+  recordEvent?: string;
+  removeEvent?: string;
+  tgEvent?: string;
+  tgEventToggle?: string;
+  tgEventToggleBool?: string;
+  tgEventBool?: string;
+  upsertAggregate?: string;
+  tgUpdateAggregates?: string;
+  pruneEvents?: string;
+  stepsRequired?: string;
+  levelAchieved?: string;
+  tgCheckAchievements?: string;
+  grantAchievement?: string;
+  tgAchievementReward?: string;
+  interval?: string;
+  retention?: string;
+  premake?: number;
+  scope?: string;
+  prefix?: string;
+  entityTableId?: string;
+  actorTableId?: string;
+  defaultPermissions?: string[];
+  apiName?: string;
+  privateApiName?: string;
+}
 export interface DeleteDefaultIdsModuleInput {
   clientMutationId?: string;
   id: string;
@@ -8343,10 +8385,6 @@ export interface DeleteCryptoAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface DeleteBlueprintConstructionInput {
   clientMutationId?: string;
   /** Unique identifier for this construction attempt. */
@@ -8369,15 +8407,15 @@ export interface DeleteSecureTableProvisionInput {
   /** Unique identifier for this provision row. */
   id: string;
 }
-export interface DeleteInvitesModuleInput {
+export interface DeleteRateLimitMetersModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteDatabaseProvisionModuleInput {
+export interface DeleteInvitesModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteNamespaceModuleInput {
+export interface DeleteDatabaseProvisionModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -8389,7 +8427,7 @@ export interface DeleteWebauthnAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteGraphModuleInput {
+export interface DeleteNamespaceModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -8409,27 +8447,31 @@ export interface DeleteTransferLogModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteDbUsageModuleInput {
+export interface DeleteGraphModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteNotificationsModuleInput {
+export interface DeletePlansModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeletePlansModuleInput {
+export interface DeleteDbUsageModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteHierarchyModuleInput {
+export interface DeleteNotificationsModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteBillingModuleInput {
+export interface DeleteBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteBillingProviderModuleInput {
+export interface DeleteFunctionModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
+export interface DeleteHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -8441,6 +8483,10 @@ export interface DeletePermissionsModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface DeleteBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface DeleteRelationProvisionInput {
   clientMutationId?: string;
   /** Unique identifier for this relation provision row. */
@@ -8451,10 +8497,6 @@ export interface DeleteBlueprintTemplateInput {
   /** Unique identifier for this template. */
   id: string;
 }
-export interface DeleteFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface DeleteUserAuthModuleInput {
   clientMutationId?: string;
   id: string;
@@ -8475,13 +8517,13 @@ export interface DeleteStorageModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface DeleteEventsModuleInput {
+export interface DeleteEntityTypeProvisionInput {
   clientMutationId?: string;
+  /** Unique identifier for this provision row. */
   id: string;
 }
-export interface DeleteEntityTypeProvisionInput {
+export interface DeleteEventsModuleInput {
   clientMutationId?: string;
-  /** Unique identifier for this provision row. */
   id: string;
 }
 export interface ProvisionBucketInput {
@@ -8647,13 +8689,6 @@ export interface CryptoAuthModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `RateLimitMetersModule` values. */
-export interface RateLimitMetersModuleConnection {
-  nodes: RateLimitMetersModule[];
-  edges: RateLimitMetersModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
 /** A connection to a list of `BlueprintConstruction` values. */
 export interface BlueprintConstructionConnection {
   nodes: BlueprintConstruction[];
@@ -8689,6 +8724,13 @@ export interface SecureTableProvisionConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `RateLimitMetersModule` values. */
+export interface RateLimitMetersModuleConnection {
+  nodes: RateLimitMetersModule[];
+  edges: RateLimitMetersModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `InvitesModule` values. */
 export interface InvitesModuleConnection {
   nodes: InvitesModule[];
@@ -8703,13 +8745,6 @@ export interface DatabaseProvisionModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `NamespaceModule` values. */
-export interface NamespaceModuleConnection {
-  nodes: NamespaceModule[];
-  edges: NamespaceModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
 /** A connection to a list of `RealtimeModule` values. */
 export interface RealtimeModuleConnection {
   nodes: RealtimeModule[];
@@ -8724,10 +8759,10 @@ export interface WebauthnAuthModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `GraphModule` values. */
-export interface GraphModuleConnection {
-  nodes: GraphModule[];
-  edges: GraphModuleEdge[];
+/** A connection to a list of `NamespaceModule` values. */
+export interface NamespaceModuleConnection {
+  nodes: NamespaceModule[];
+  edges: NamespaceModuleEdge[];
   pageInfo: PageInfo;
   totalCount: number;
 }
@@ -8759,6 +8794,20 @@ export interface TransferLogModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `GraphModule` values. */
+export interface GraphModuleConnection {
+  nodes: GraphModule[];
+  edges: GraphModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+/** A connection to a list of `PlansModule` values. */
+export interface PlansModuleConnection {
+  nodes: PlansModule[];
+  edges: PlansModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `DbUsageModule` values. */
 export interface DbUsageModuleConnection {
   nodes: DbUsageModule[];
@@ -8773,10 +8822,17 @@ export interface NotificationsModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `PlansModule` values. */
-export interface PlansModuleConnection {
-  nodes: PlansModule[];
-  edges: PlansModuleEdge[];
+/** A connection to a list of `BillingProviderModule` values. */
+export interface BillingProviderModuleConnection {
+  nodes: BillingProviderModule[];
+  edges: BillingProviderModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+/** A connection to a list of `FunctionModule` values. */
+export interface FunctionModuleConnection {
+  nodes: FunctionModule[];
+  edges: FunctionModuleEdge[];
   pageInfo: PageInfo;
   totalCount: number;
 }
@@ -8787,20 +8843,6 @@ export interface HierarchyModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `BillingModule` values. */
-export interface BillingModuleConnection {
-  nodes: BillingModule[];
-  edges: BillingModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
-/** A connection to a list of `BillingProviderModule` values. */
-export interface BillingProviderModuleConnection {
-  nodes: BillingProviderModule[];
-  edges: BillingProviderModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
 /** A connection to a list of `ProfilesModule` values. */
 export interface ProfilesModuleConnection {
   nodes: ProfilesModule[];
@@ -8815,6 +8857,13 @@ export interface PermissionsModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `BillingModule` values. */
+export interface BillingModuleConnection {
+  nodes: BillingModule[];
+  edges: BillingModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** A connection to a list of `RelationProvision` values. */
 export interface RelationProvisionConnection {
   nodes: RelationProvision[];
@@ -8829,13 +8878,6 @@ export interface BlueprintTemplateConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `FunctionModule` values. */
-export interface FunctionModuleConnection {
-  nodes: FunctionModule[];
-  edges: FunctionModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
 /** A connection to a list of `UserAuthModule` values. */
 export interface UserAuthModuleConnection {
   nodes: UserAuthModule[];
@@ -8871,13 +8913,6 @@ export interface StorageModuleConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
-/** A connection to a list of `EventsModule` values. */
-export interface EventsModuleConnection {
-  nodes: EventsModule[];
-  edges: EventsModuleEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
-}
 /** A connection to a list of `EntityTypeProvision` values. */
 export interface EntityTypeProvisionConnection {
   nodes: EntityTypeProvision[];
@@ -8885,6 +8920,13 @@ export interface EntityTypeProvisionConnection {
   pageInfo: PageInfo;
   totalCount: number;
 }
+/** A connection to a list of `EventsModule` values. */
+export interface EventsModuleConnection {
+  nodes: EventsModule[];
+  edges: EventsModuleEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
 /** Root meta schema type */
 export interface MetaSchema {
   tables: MetaTable[];
@@ -9055,12 +9097,6 @@ export interface CreateCryptoAuthModulePayload {
   cryptoAuthModule?: CryptoAuthModule | null;
   cryptoAuthModuleEdge?: CryptoAuthModuleEdge | null;
 }
-export interface CreateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was created by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
 export interface CreateBlueprintConstructionPayload {
   clientMutationId?: string | null;
   /** The `BlueprintConstruction` that was created by this mutation. */
@@ -9091,6 +9127,12 @@ export interface CreateSecureTableProvisionPayload {
   secureTableProvision?: SecureTableProvision | null;
   secureTableProvisionEdge?: SecureTableProvisionEdge | null;
 }
+export interface CreateRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was created by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
 export interface CreateInvitesModulePayload {
   clientMutationId?: string | null;
   /** The `InvitesModule` that was created by this mutation. */
@@ -9103,12 +9145,6 @@ export interface CreateDatabaseProvisionModulePayload {
   databaseProvisionModule?: DatabaseProvisionModule | null;
   databaseProvisionModuleEdge?: DatabaseProvisionModuleEdge | null;
 }
-export interface CreateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was created by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
 export interface CreateRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was created by this mutation. */
@@ -9121,11 +9157,11 @@ export interface CreateWebauthnAuthModulePayload {
   webauthnAuthModule?: WebauthnAuthModule | null;
   webauthnAuthModuleEdge?: WebauthnAuthModuleEdge | null;
 }
-export interface CreateGraphModulePayload {
+export interface CreateNamespaceModulePayload {
   clientMutationId?: string | null;
-  /** The `GraphModule` that was created by this mutation. */
-  graphModule?: GraphModule | null;
-  graphModuleEdge?: GraphModuleEdge | null;
+  /** The `NamespaceModule` that was created by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
 }
 export interface CreateComputeLogModulePayload {
   clientMutationId?: string | null;
@@ -9151,6 +9187,18 @@ export interface CreateTransferLogModulePayload {
   transferLogModule?: TransferLogModule | null;
   transferLogModuleEdge?: TransferLogModuleEdge | null;
 }
+export interface CreateGraphModulePayload {
+  clientMutationId?: string | null;
+  /** The `GraphModule` that was created by this mutation. */
+  graphModule?: GraphModule | null;
+  graphModuleEdge?: GraphModuleEdge | null;
+}
+export interface CreatePlansModulePayload {
+  clientMutationId?: string | null;
+  /** The `PlansModule` that was created by this mutation. */
+  plansModule?: PlansModule | null;
+  plansModuleEdge?: PlansModuleEdge | null;
+}
 export interface CreateDbUsageModulePayload {
   clientMutationId?: string | null;
   /** The `DbUsageModule` that was created by this mutation. */
@@ -9163,11 +9211,17 @@ export interface CreateNotificationsModulePayload {
   notificationsModule?: NotificationsModule | null;
   notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export interface CreatePlansModulePayload {
+export interface CreateBillingProviderModulePayload {
   clientMutationId?: string | null;
-  /** The `PlansModule` that was created by this mutation. */
-  plansModule?: PlansModule | null;
-  plansModuleEdge?: PlansModuleEdge | null;
+  /** The `BillingProviderModule` that was created by this mutation. */
+  billingProviderModule?: BillingProviderModule | null;
+  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
+}
+export interface CreateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was created by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
 }
 export interface CreateHierarchyModulePayload {
   clientMutationId?: string | null;
@@ -9175,18 +9229,6 @@ export interface CreateHierarchyModulePayload {
   hierarchyModule?: HierarchyModule | null;
   hierarchyModuleEdge?: HierarchyModuleEdge | null;
 }
-export interface CreateBillingModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingModule` that was created by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
-}
-export interface CreateBillingProviderModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingProviderModule` that was created by this mutation. */
-  billingProviderModule?: BillingProviderModule | null;
-  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
-}
 export interface CreateProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was created by this mutation. */
@@ -9199,6 +9241,12 @@ export interface CreatePermissionsModulePayload {
   permissionsModule?: PermissionsModule | null;
   permissionsModuleEdge?: PermissionsModuleEdge | null;
 }
+export interface CreateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was created by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
 export interface CreateRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was created by this mutation. */
@@ -9211,12 +9259,6 @@ export interface CreateBlueprintTemplatePayload {
   blueprintTemplate?: BlueprintTemplate | null;
   blueprintTemplateEdge?: BlueprintTemplateEdge | null;
 }
-export interface CreateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was created by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
 export interface CreateUserAuthModulePayload {
   clientMutationId?: string | null;
   /** The `UserAuthModule` that was created by this mutation. */
@@ -9247,18 +9289,18 @@ export interface CreateStorageModulePayload {
   storageModule?: StorageModule | null;
   storageModuleEdge?: StorageModuleEdge | null;
 }
-export interface CreateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was created by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
 export interface CreateEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was created by this mutation. */
   entityTypeProvision?: EntityTypeProvision | null;
   entityTypeProvisionEdge?: EntityTypeProvisionEdge | null;
 }
+export interface CreateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was created by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
 export interface UpdateDefaultIdsModulePayload {
   clientMutationId?: string | null;
   /** The `DefaultIdsModule` that was updated by this mutation. */
@@ -9391,12 +9433,6 @@ export interface UpdateCryptoAuthModulePayload {
   cryptoAuthModule?: CryptoAuthModule | null;
   cryptoAuthModuleEdge?: CryptoAuthModuleEdge | null;
 }
-export interface UpdateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was updated by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
 export interface UpdateBlueprintConstructionPayload {
   clientMutationId?: string | null;
   /** The `BlueprintConstruction` that was updated by this mutation. */
@@ -9427,6 +9463,12 @@ export interface UpdateSecureTableProvisionPayload {
   secureTableProvision?: SecureTableProvision | null;
   secureTableProvisionEdge?: SecureTableProvisionEdge | null;
 }
+export interface UpdateRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was updated by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
 export interface UpdateInvitesModulePayload {
   clientMutationId?: string | null;
   /** The `InvitesModule` that was updated by this mutation. */
@@ -9439,12 +9481,6 @@ export interface UpdateDatabaseProvisionModulePayload {
   databaseProvisionModule?: DatabaseProvisionModule | null;
   databaseProvisionModuleEdge?: DatabaseProvisionModuleEdge | null;
 }
-export interface UpdateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was updated by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
 export interface UpdateRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was updated by this mutation. */
@@ -9457,11 +9493,11 @@ export interface UpdateWebauthnAuthModulePayload {
   webauthnAuthModule?: WebauthnAuthModule | null;
   webauthnAuthModuleEdge?: WebauthnAuthModuleEdge | null;
 }
-export interface UpdateGraphModulePayload {
+export interface UpdateNamespaceModulePayload {
   clientMutationId?: string | null;
-  /** The `GraphModule` that was updated by this mutation. */
-  graphModule?: GraphModule | null;
-  graphModuleEdge?: GraphModuleEdge | null;
+  /** The `NamespaceModule` that was updated by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
 }
 export interface UpdateComputeLogModulePayload {
   clientMutationId?: string | null;
@@ -9487,6 +9523,18 @@ export interface UpdateTransferLogModulePayload {
   transferLogModule?: TransferLogModule | null;
   transferLogModuleEdge?: TransferLogModuleEdge | null;
 }
+export interface UpdateGraphModulePayload {
+  clientMutationId?: string | null;
+  /** The `GraphModule` that was updated by this mutation. */
+  graphModule?: GraphModule | null;
+  graphModuleEdge?: GraphModuleEdge | null;
+}
+export interface UpdatePlansModulePayload {
+  clientMutationId?: string | null;
+  /** The `PlansModule` that was updated by this mutation. */
+  plansModule?: PlansModule | null;
+  plansModuleEdge?: PlansModuleEdge | null;
+}
 export interface UpdateDbUsageModulePayload {
   clientMutationId?: string | null;
   /** The `DbUsageModule` that was updated by this mutation. */
@@ -9499,11 +9547,17 @@ export interface UpdateNotificationsModulePayload {
   notificationsModule?: NotificationsModule | null;
   notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export interface UpdatePlansModulePayload {
+export interface UpdateBillingProviderModulePayload {
   clientMutationId?: string | null;
-  /** The `PlansModule` that was updated by this mutation. */
-  plansModule?: PlansModule | null;
-  plansModuleEdge?: PlansModuleEdge | null;
+  /** The `BillingProviderModule` that was updated by this mutation. */
+  billingProviderModule?: BillingProviderModule | null;
+  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
+}
+export interface UpdateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was updated by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
 }
 export interface UpdateHierarchyModulePayload {
   clientMutationId?: string | null;
@@ -9511,18 +9565,6 @@ export interface UpdateHierarchyModulePayload {
   hierarchyModule?: HierarchyModule | null;
   hierarchyModuleEdge?: HierarchyModuleEdge | null;
 }
-export interface UpdateBillingModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingModule` that was updated by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
-}
-export interface UpdateBillingProviderModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingProviderModule` that was updated by this mutation. */
-  billingProviderModule?: BillingProviderModule | null;
-  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
-}
 export interface UpdateProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was updated by this mutation. */
@@ -9535,6 +9577,12 @@ export interface UpdatePermissionsModulePayload {
   permissionsModule?: PermissionsModule | null;
   permissionsModuleEdge?: PermissionsModuleEdge | null;
 }
+export interface UpdateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was updated by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
 export interface UpdateRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was updated by this mutation. */
@@ -9547,12 +9595,6 @@ export interface UpdateBlueprintTemplatePayload {
   blueprintTemplate?: BlueprintTemplate | null;
   blueprintTemplateEdge?: BlueprintTemplateEdge | null;
 }
-export interface UpdateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was updated by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
 export interface UpdateUserAuthModulePayload {
   clientMutationId?: string | null;
   /** The `UserAuthModule` that was updated by this mutation. */
@@ -9583,18 +9625,18 @@ export interface UpdateStorageModulePayload {
   storageModule?: StorageModule | null;
   storageModuleEdge?: StorageModuleEdge | null;
 }
-export interface UpdateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was updated by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
 export interface UpdateEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was updated by this mutation. */
   entityTypeProvision?: EntityTypeProvision | null;
   entityTypeProvisionEdge?: EntityTypeProvisionEdge | null;
 }
+export interface UpdateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was updated by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
 export interface DeleteDefaultIdsModulePayload {
   clientMutationId?: string | null;
   /** The `DefaultIdsModule` that was deleted by this mutation. */
@@ -9727,12 +9769,6 @@ export interface DeleteCryptoAuthModulePayload {
   cryptoAuthModule?: CryptoAuthModule | null;
   cryptoAuthModuleEdge?: CryptoAuthModuleEdge | null;
 }
-export interface DeleteRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was deleted by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
 export interface DeleteBlueprintConstructionPayload {
   clientMutationId?: string | null;
   /** The `BlueprintConstruction` that was deleted by this mutation. */
@@ -9763,6 +9799,12 @@ export interface DeleteSecureTableProvisionPayload {
   secureTableProvision?: SecureTableProvision | null;
   secureTableProvisionEdge?: SecureTableProvisionEdge | null;
 }
+export interface DeleteRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was deleted by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
 export interface DeleteInvitesModulePayload {
   clientMutationId?: string | null;
   /** The `InvitesModule` that was deleted by this mutation. */
@@ -9775,12 +9817,6 @@ export interface DeleteDatabaseProvisionModulePayload {
   databaseProvisionModule?: DatabaseProvisionModule | null;
   databaseProvisionModuleEdge?: DatabaseProvisionModuleEdge | null;
 }
-export interface DeleteNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was deleted by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
 export interface DeleteRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was deleted by this mutation. */
@@ -9793,11 +9829,11 @@ export interface DeleteWebauthnAuthModulePayload {
   webauthnAuthModule?: WebauthnAuthModule | null;
   webauthnAuthModuleEdge?: WebauthnAuthModuleEdge | null;
 }
-export interface DeleteGraphModulePayload {
+export interface DeleteNamespaceModulePayload {
   clientMutationId?: string | null;
-  /** The `GraphModule` that was deleted by this mutation. */
-  graphModule?: GraphModule | null;
-  graphModuleEdge?: GraphModuleEdge | null;
+  /** The `NamespaceModule` that was deleted by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
 }
 export interface DeleteComputeLogModulePayload {
   clientMutationId?: string | null;
@@ -9823,6 +9859,18 @@ export interface DeleteTransferLogModulePayload {
   transferLogModule?: TransferLogModule | null;
   transferLogModuleEdge?: TransferLogModuleEdge | null;
 }
+export interface DeleteGraphModulePayload {
+  clientMutationId?: string | null;
+  /** The `GraphModule` that was deleted by this mutation. */
+  graphModule?: GraphModule | null;
+  graphModuleEdge?: GraphModuleEdge | null;
+}
+export interface DeletePlansModulePayload {
+  clientMutationId?: string | null;
+  /** The `PlansModule` that was deleted by this mutation. */
+  plansModule?: PlansModule | null;
+  plansModuleEdge?: PlansModuleEdge | null;
+}
 export interface DeleteDbUsageModulePayload {
   clientMutationId?: string | null;
   /** The `DbUsageModule` that was deleted by this mutation. */
@@ -9835,11 +9883,17 @@ export interface DeleteNotificationsModulePayload {
   notificationsModule?: NotificationsModule | null;
   notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export interface DeletePlansModulePayload {
+export interface DeleteBillingProviderModulePayload {
   clientMutationId?: string | null;
-  /** The `PlansModule` that was deleted by this mutation. */
-  plansModule?: PlansModule | null;
-  plansModuleEdge?: PlansModuleEdge | null;
+  /** The `BillingProviderModule` that was deleted by this mutation. */
+  billingProviderModule?: BillingProviderModule | null;
+  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
+}
+export interface DeleteFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was deleted by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
 }
 export interface DeleteHierarchyModulePayload {
   clientMutationId?: string | null;
@@ -9847,18 +9901,6 @@ export interface DeleteHierarchyModulePayload {
   hierarchyModule?: HierarchyModule | null;
   hierarchyModuleEdge?: HierarchyModuleEdge | null;
 }
-export interface DeleteBillingModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingModule` that was deleted by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
-}
-export interface DeleteBillingProviderModulePayload {
-  clientMutationId?: string | null;
-  /** The `BillingProviderModule` that was deleted by this mutation. */
-  billingProviderModule?: BillingProviderModule | null;
-  billingProviderModuleEdge?: BillingProviderModuleEdge | null;
-}
 export interface DeleteProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was deleted by this mutation. */
@@ -9871,6 +9913,12 @@ export interface DeletePermissionsModulePayload {
   permissionsModule?: PermissionsModule | null;
   permissionsModuleEdge?: PermissionsModuleEdge | null;
 }
+export interface DeleteBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was deleted by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
 export interface DeleteRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was deleted by this mutation. */
@@ -9883,12 +9931,6 @@ export interface DeleteBlueprintTemplatePayload {
   blueprintTemplate?: BlueprintTemplate | null;
   blueprintTemplateEdge?: BlueprintTemplateEdge | null;
 }
-export interface DeleteFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was deleted by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
 export interface DeleteUserAuthModulePayload {
   clientMutationId?: string | null;
   /** The `UserAuthModule` that was deleted by this mutation. */
@@ -9919,18 +9961,18 @@ export interface DeleteStorageModulePayload {
   storageModule?: StorageModule | null;
   storageModuleEdge?: StorageModuleEdge | null;
 }
-export interface DeleteEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was deleted by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
 export interface DeleteEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was deleted by this mutation. */
   entityTypeProvision?: EntityTypeProvision | null;
   entityTypeProvisionEdge?: EntityTypeProvisionEdge | null;
 }
+export interface DeleteEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was deleted by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
 export interface ProvisionBucketPayload {
   /** Whether provisioning succeeded */
   success: boolean;
@@ -10088,12 +10130,6 @@ export interface CryptoAuthModuleEdge {
   /** The `CryptoAuthModule` at the end of the edge. */
   node?: CryptoAuthModule | null;
 }
-/** A `RateLimitMetersModule` edge in the connection. */
-export interface RateLimitMetersModuleEdge {
-  cursor?: string | null;
-  /** The `RateLimitMetersModule` at the end of the edge. */
-  node?: RateLimitMetersModule | null;
-}
 /** A `BlueprintConstruction` edge in the connection. */
 export interface BlueprintConstructionEdge {
   cursor?: string | null;
@@ -10124,6 +10160,12 @@ export interface SecureTableProvisionEdge {
   /** The `SecureTableProvision` at the end of the edge. */
   node?: SecureTableProvision | null;
 }
+/** A `RateLimitMetersModule` edge in the connection. */
+export interface RateLimitMetersModuleEdge {
+  cursor?: string | null;
+  /** The `RateLimitMetersModule` at the end of the edge. */
+  node?: RateLimitMetersModule | null;
+}
 /** A `InvitesModule` edge in the connection. */
 export interface InvitesModuleEdge {
   cursor?: string | null;
@@ -10136,12 +10178,6 @@ export interface DatabaseProvisionModuleEdge {
   /** The `DatabaseProvisionModule` at the end of the edge. */
   node?: DatabaseProvisionModule | null;
 }
-/** A `NamespaceModule` edge in the connection. */
-export interface NamespaceModuleEdge {
-  cursor?: string | null;
-  /** The `NamespaceModule` at the end of the edge. */
-  node?: NamespaceModule | null;
-}
 /** A `RealtimeModule` edge in the connection. */
 export interface RealtimeModuleEdge {
   cursor?: string | null;
@@ -10154,11 +10190,11 @@ export interface WebauthnAuthModuleEdge {
   /** The `WebauthnAuthModule` at the end of the edge. */
   node?: WebauthnAuthModule | null;
 }
-/** A `GraphModule` edge in the connection. */
-export interface GraphModuleEdge {
+/** A `NamespaceModule` edge in the connection. */
+export interface NamespaceModuleEdge {
   cursor?: string | null;
-  /** The `GraphModule` at the end of the edge. */
-  node?: GraphModule | null;
+  /** The `NamespaceModule` at the end of the edge. */
+  node?: NamespaceModule | null;
 }
 /** A `ComputeLogModule` edge in the connection. */
 export interface ComputeLogModuleEdge {
@@ -10184,6 +10220,18 @@ export interface TransferLogModuleEdge {
   /** The `TransferLogModule` at the end of the edge. */
   node?: TransferLogModule | null;
 }
+/** A `GraphModule` edge in the connection. */
+export interface GraphModuleEdge {
+  cursor?: string | null;
+  /** The `GraphModule` at the end of the edge. */
+  node?: GraphModule | null;
+}
+/** A `PlansModule` edge in the connection. */
+export interface PlansModuleEdge {
+  cursor?: string | null;
+  /** The `PlansModule` at the end of the edge. */
+  node?: PlansModule | null;
+}
 /** A `DbUsageModule` edge in the connection. */
 export interface DbUsageModuleEdge {
   cursor?: string | null;
@@ -10196,11 +10244,17 @@ export interface NotificationsModuleEdge {
   /** The `NotificationsModule` at the end of the edge. */
   node?: NotificationsModule | null;
 }
-/** A `PlansModule` edge in the connection. */
-export interface PlansModuleEdge {
+/** A `BillingProviderModule` edge in the connection. */
+export interface BillingProviderModuleEdge {
   cursor?: string | null;
-  /** The `PlansModule` at the end of the edge. */
-  node?: PlansModule | null;
+  /** The `BillingProviderModule` at the end of the edge. */
+  node?: BillingProviderModule | null;
+}
+/** A `FunctionModule` edge in the connection. */
+export interface FunctionModuleEdge {
+  cursor?: string | null;
+  /** The `FunctionModule` at the end of the edge. */
+  node?: FunctionModule | null;
 }
 /** A `HierarchyModule` edge in the connection. */
 export interface HierarchyModuleEdge {
@@ -10208,18 +10262,6 @@ export interface HierarchyModuleEdge {
   /** The `HierarchyModule` at the end of the edge. */
   node?: HierarchyModule | null;
 }
-/** A `BillingModule` edge in the connection. */
-export interface BillingModuleEdge {
-  cursor?: string | null;
-  /** The `BillingModule` at the end of the edge. */
-  node?: BillingModule | null;
-}
-/** A `BillingProviderModule` edge in the connection. */
-export interface BillingProviderModuleEdge {
-  cursor?: string | null;
-  /** The `BillingProviderModule` at the end of the edge. */
-  node?: BillingProviderModule | null;
-}
 /** A `ProfilesModule` edge in the connection. */
 export interface ProfilesModuleEdge {
   cursor?: string | null;
@@ -10232,6 +10274,12 @@ export interface PermissionsModuleEdge {
   /** The `PermissionsModule` at the end of the edge. */
   node?: PermissionsModule | null;
 }
+/** A `BillingModule` edge in the connection. */
+export interface BillingModuleEdge {
+  cursor?: string | null;
+  /** The `BillingModule` at the end of the edge. */
+  node?: BillingModule | null;
+}
 /** A `RelationProvision` edge in the connection. */
 export interface RelationProvisionEdge {
   cursor?: string | null;
@@ -10244,12 +10292,6 @@ export interface BlueprintTemplateEdge {
   /** The `BlueprintTemplate` at the end of the edge. */
   node?: BlueprintTemplate | null;
 }
-/** A `FunctionModule` edge in the connection. */
-export interface FunctionModuleEdge {
-  cursor?: string | null;
-  /** The `FunctionModule` at the end of the edge. */
-  node?: FunctionModule | null;
-}
 /** A `UserAuthModule` edge in the connection. */
 export interface UserAuthModuleEdge {
   cursor?: string | null;
@@ -10280,18 +10322,18 @@ export interface StorageModuleEdge {
   /** The `StorageModule` at the end of the edge. */
   node?: StorageModule | null;
 }
-/** A `EventsModule` edge in the connection. */
-export interface EventsModuleEdge {
-  cursor?: string | null;
-  /** The `EventsModule` at the end of the edge. */
-  node?: EventsModule | null;
-}
 /** A `EntityTypeProvision` edge in the connection. */
 export interface EntityTypeProvisionEdge {
   cursor?: string | null;
   /** The `EntityTypeProvision` at the end of the edge. */
   node?: EntityTypeProvision | null;
 }
+/** A `EventsModule` edge in the connection. */
+export interface EventsModuleEdge {
+  cursor?: string | null;
+  /** The `EventsModule` at the end of the edge. */
+  node?: EventsModule | null;
+}
 /** Information about a database table */
 export interface MetaTable {
   name: string;
diff --git a/sdk/constructive-react/src/modules/types.ts b/sdk/constructive-react/src/modules/types.ts
index b9537cfe3..53304b512 100644
--- a/sdk/constructive-react/src/modules/types.ts
+++ b/sdk/constructive-react/src/modules/types.ts
@@ -269,22 +269,6 @@ export interface CryptoAuthModule {
   signUpWithKey: string | null;
   signInWithChallenge: string | null;
 }
-export interface RateLimitMetersModule {
-  id: string | null;
-  databaseId: string | null;
-  schemaId: string | null;
-  privateSchemaId: string | null;
-  rateLimitStateTableId: string | null;
-  rateLimitStateTableName: string | null;
-  rateLimitOverridesTableId: string | null;
-  rateLimitOverridesTableName: string | null;
-  rateWindowLimitsTableId: string | null;
-  rateWindowLimitsTableName: string | null;
-  checkRateLimitFunction: string | null;
-  prefix: string | null;
-  apiName: string | null;
-  privateApiName: string | null;
-}
 export interface SessionsModule {
   id: string | null;
   databaseId: string | null;
@@ -350,6 +334,7 @@ export interface GraphModule {
   entityTableId: string | null;
   policies: unknown | null;
   provisions: unknown | null;
+  defaultPermissions: string[] | null;
   createdAt: string | null;
 }
 export interface SecureTableProvision {
@@ -365,6 +350,23 @@ export interface SecureTableProvision {
   policies: unknown | null;
   outFields: string[] | null;
 }
+export interface RateLimitMetersModule {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  privateSchemaId: string | null;
+  rateLimitStateTableId: string | null;
+  rateLimitStateTableName: string | null;
+  rateLimitOverridesTableId: string | null;
+  rateLimitOverridesTableName: string | null;
+  rateWindowLimitsTableId: string | null;
+  rateWindowLimitsTableName: string | null;
+  checkRateLimitFunction: string | null;
+  prefix: string | null;
+  defaultPermissions: string[] | null;
+  apiName: string | null;
+  privateApiName: string | null;
+}
 export interface InvitesModule {
   id: string | null;
   databaseId: string | null;
@@ -399,25 +401,6 @@ export interface DatabaseProvisionModule {
   updatedAt: string | null;
   completedAt: string | null;
 }
-export interface NamespaceModule {
-  id: string | null;
-  databaseId: string | null;
-  schemaId: string | null;
-  privateSchemaId: string | null;
-  publicSchemaName: string | null;
-  privateSchemaName: string | null;
-  namespacesTableId: string | null;
-  namespaceEventsTableId: string | null;
-  namespacesTableName: string | null;
-  namespaceEventsTableName: string | null;
-  apiName: string | null;
-  privateApiName: string | null;
-  scope: string | null;
-  prefix: string | null;
-  entityTableId: string | null;
-  policies: unknown | null;
-  provisions: unknown | null;
-}
 export interface RealtimeModule {
   id: string | null;
   databaseId: string | null;
@@ -452,6 +435,26 @@ export interface WebauthnAuthModule {
   residentKey: string | null;
   challengeExpiry: string | null;
 }
+export interface NamespaceModule {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  privateSchemaId: string | null;
+  publicSchemaName: string | null;
+  privateSchemaName: string | null;
+  namespacesTableId: string | null;
+  namespaceEventsTableId: string | null;
+  namespacesTableName: string | null;
+  namespaceEventsTableName: string | null;
+  apiName: string | null;
+  privateApiName: string | null;
+  scope: string | null;
+  prefix: string | null;
+  entityTableId: string | null;
+  policies: unknown | null;
+  provisions: unknown | null;
+  defaultPermissions: string[] | null;
+}
 export interface ComputeLogModule {
   id: string | null;
   databaseId: string | null;
@@ -528,6 +531,27 @@ export interface TransferLogModule {
   apiName: string | null;
   privateApiName: string | null;
 }
+export interface PlansModule {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  privateSchemaId: string | null;
+  plansTableId: string | null;
+  plansTableName: string | null;
+  planLimitsTableId: string | null;
+  planLimitsTableName: string | null;
+  planPricingTableId: string | null;
+  planOverridesTableId: string | null;
+  planMeterLimitsTableId: string | null;
+  planCapsTableId: string | null;
+  applyPlanFunction: string | null;
+  applyPlanAggregateFunction: string | null;
+  applyBillingPlanFunction: string | null;
+  applyPlanCapsFunction: string | null;
+  prefix: string | null;
+  apiName: string | null;
+  privateApiName: string | null;
+}
 export interface DbUsageModule {
   id: string | null;
   databaseId: string | null;
@@ -546,6 +570,7 @@ export interface DbUsageModule {
   premake: number | null;
   scope: string | null;
   prefix: string | null;
+  defaultPermissions: string[] | null;
   apiName: string | null;
   privateApiName: string | null;
 }
@@ -567,30 +592,58 @@ export interface NotificationsModule {
   hasSettingsExtension: boolean | null;
   hasDigestMetadata: boolean | null;
   hasSubscriptions: boolean | null;
+  defaultPermissions: string[] | null;
   apiName: string | null;
   privateApiName: string | null;
 }
-export interface PlansModule {
+export interface BillingProviderModule {
   id: string | null;
   databaseId: string | null;
   schemaId: string | null;
   privateSchemaId: string | null;
-  plansTableId: string | null;
-  plansTableName: string | null;
-  planLimitsTableId: string | null;
-  planLimitsTableName: string | null;
-  planPricingTableId: string | null;
-  planOverridesTableId: string | null;
-  planMeterLimitsTableId: string | null;
-  planCapsTableId: string | null;
-  applyPlanFunction: string | null;
-  applyPlanAggregateFunction: string | null;
-  applyBillingPlanFunction: string | null;
-  applyPlanCapsFunction: string | null;
+  provider: string | null;
+  productsTableId: string | null;
+  pricesTableId: string | null;
+  subscriptionsTableId: string | null;
+  billingCustomersTableId: string | null;
+  billingCustomersTableName: string | null;
+  billingProductsTableId: string | null;
+  billingProductsTableName: string | null;
+  billingPricesTableId: string | null;
+  billingPricesTableName: string | null;
+  billingSubscriptionsTableId: string | null;
+  billingSubscriptionsTableName: string | null;
+  billingWebhookEventsTableId: string | null;
+  billingWebhookEventsTableName: string | null;
+  processBillingEventFunction: string | null;
   prefix: string | null;
   apiName: string | null;
   privateApiName: string | null;
 }
+export interface FunctionModule {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  privateSchemaId: string | null;
+  publicSchemaName: string | null;
+  privateSchemaName: string | null;
+  definitionsTableId: string | null;
+  invocationsTableId: string | null;
+  executionLogsTableId: string | null;
+  secretDefinitionsTableId: string | null;
+  definitionsTableName: string | null;
+  invocationsTableName: string | null;
+  executionLogsTableName: string | null;
+  secretDefinitionsTableName: string | null;
+  apiName: string | null;
+  privateApiName: string | null;
+  scope: string | null;
+  prefix: string | null;
+  entityTableId: string | null;
+  policies: unknown | null;
+  provisions: unknown | null;
+  defaultPermissions: string[] | null;
+}
 export interface HierarchyModule {
   id: string | null;
   databaseId: string | null;
@@ -612,56 +665,9 @@ export interface HierarchyModule {
   getSubordinatesFunction: string | null;
   getManagersFunction: string | null;
   isManagerOfFunction: string | null;
+  defaultPermissions: string[] | null;
   createdAt: string | null;
 }
-export interface BillingModule {
-  id: string | null;
-  databaseId: string | null;
-  schemaId: string | null;
-  privateSchemaId: string | null;
-  metersTableId: string | null;
-  metersTableName: string | null;
-  planSubscriptionsTableId: string | null;
-  planSubscriptionsTableName: string | null;
-  ledgerTableId: string | null;
-  ledgerTableName: string | null;
-  balancesTableId: string | null;
-  balancesTableName: string | null;
-  meterCreditsTableId: string | null;
-  meterCreditsTableName: string | null;
-  meterSourcesTableId: string | null;
-  meterSourcesTableName: string | null;
-  meterDefaultsTableId: string | null;
-  meterDefaultsTableName: string | null;
-  recordUsageFunction: string | null;
-  prefix: string | null;
-  apiName: string | null;
-  privateApiName: string | null;
-}
-export interface BillingProviderModule {
-  id: string | null;
-  databaseId: string | null;
-  schemaId: string | null;
-  privateSchemaId: string | null;
-  provider: string | null;
-  productsTableId: string | null;
-  pricesTableId: string | null;
-  subscriptionsTableId: string | null;
-  billingCustomersTableId: string | null;
-  billingCustomersTableName: string | null;
-  billingProductsTableId: string | null;
-  billingProductsTableName: string | null;
-  billingPricesTableId: string | null;
-  billingPricesTableName: string | null;
-  billingSubscriptionsTableId: string | null;
-  billingSubscriptionsTableName: string | null;
-  billingWebhookEventsTableId: string | null;
-  billingWebhookEventsTableName: string | null;
-  processBillingEventFunction: string | null;
-  prefix: string | null;
-  apiName: string | null;
-  privateApiName: string | null;
-}
 export interface ProfilesModule {
   id: string | null;
   databaseId: string | null;
@@ -707,6 +713,31 @@ export interface PermissionsModule {
   apiName: string | null;
   privateApiName: string | null;
 }
+export interface BillingModule {
+  id: string | null;
+  databaseId: string | null;
+  schemaId: string | null;
+  privateSchemaId: string | null;
+  metersTableId: string | null;
+  metersTableName: string | null;
+  planSubscriptionsTableId: string | null;
+  planSubscriptionsTableName: string | null;
+  ledgerTableId: string | null;
+  ledgerTableName: string | null;
+  balancesTableId: string | null;
+  balancesTableName: string | null;
+  meterCreditsTableId: string | null;
+  meterCreditsTableName: string | null;
+  meterSourcesTableId: string | null;
+  meterSourcesTableName: string | null;
+  meterDefaultsTableId: string | null;
+  meterDefaultsTableName: string | null;
+  recordUsageFunction: string | null;
+  prefix: string | null;
+  defaultPermissions: string[] | null;
+  apiName: string | null;
+  privateApiName: string | null;
+}
 export interface RelationProvision {
   id: string | null;
   databaseId: string | null;
@@ -733,34 +764,6 @@ export interface RelationProvision {
   outSourceFieldId: string | null;
   outTargetFieldId: string | null;
 }
-export interface FunctionModule {
-  id: string | null;
-  databaseId: string | null;
-  schemaId: string | null;
-  privateSchemaId: string | null;
-  publicSchemaName: string | null;
-  privateSchemaName: string | null;
-  definitionsTableId: string | null;
-  invocationsTableId: string | null;
-  executionLogsTableId: string | null;
-  secretDefinitionsTableId: string | null;
-  requirementsTableId: string | null;
-  configDefinitionsTableId: string | null;
-  configRequirementsTableId: string | null;
-  definitionsTableName: string | null;
-  invocationsTableName: string | null;
-  executionLogsTableName: string | null;
-  secretDefinitionsTableName: string | null;
-  requirementsTableName: string | null;
-  configRequirementsTableName: string | null;
-  apiName: string | null;
-  privateApiName: string | null;
-  scope: string | null;
-  prefix: string | null;
-  entityTableId: string | null;
-  policies: unknown | null;
-  provisions: unknown | null;
-}
 export interface UserAuthModule {
   id: string | null;
   databaseId: string | null;
@@ -815,6 +818,7 @@ export interface AgentModule {
   hasPlans: boolean | null;
   hasResources: boolean | null;
   hasAgents: boolean | null;
+  shared: boolean | null;
   apiName: string | null;
   privateApiName: string | null;
   scope: string | null;
@@ -823,6 +827,7 @@ export interface AgentModule {
   policies: unknown | null;
   resources: unknown | null;
   provisions: unknown | null;
+  defaultPermissions: string[] | null;
 }
 export interface LimitsModule {
   id: string | null;
@@ -896,6 +901,8 @@ export interface MembershipsModule {
   entityIdsByPerm: string | null;
   entityIdsFunction: string | null;
   memberProfilesTableId: string | null;
+  permissionDefaultPermissionsTableId: string | null;
+  permissionDefaultGrantsTableId: string | null;
   apiName: string | null;
   privateApiName: string | null;
 }
@@ -934,9 +941,52 @@ export interface StorageModule {
   hasConfirmUpload: boolean | null;
   confirmUploadDelay: string | null;
   fileEventsTableId: string | null;
+  defaultPermissions: string[] | null;
   apiName: string | null;
   privateApiName: string | null;
 }
+export interface EntityTypeProvision {
+  id: string | null;
+  databaseId: string | null;
+  name: string | null;
+  prefix: string | null;
+  description: string | null;
+  parentEntity: string | null;
+  tableName: string | null;
+  isVisible: boolean | null;
+  hasLimits: boolean | null;
+  hasProfiles: boolean | null;
+  hasLevels: boolean | null;
+  hasInvites: boolean | null;
+  hasInviteAchievements: boolean | null;
+  storage: unknown | null;
+  namespaces: unknown | null;
+  functions: unknown | null;
+  graphs: unknown | null;
+  agents: unknown | null;
+  skipEntityPolicies: boolean | null;
+  tableProvision: unknown | null;
+  outMembershipType: number | null;
+  outEntityTableId: string | null;
+  outEntityTableName: string | null;
+  outInstalledModules: string[] | null;
+  outStorageModuleId: string | null;
+  outBucketsTableId: string | null;
+  outFilesTableId: string | null;
+  outPathSharesTableId: string | null;
+  outInvitesModuleId: string | null;
+  outNamespaceModuleId: string | null;
+  outNamespacesTableId: string | null;
+  outNamespaceEventsTableId: string | null;
+  outFunctionModuleId: string | null;
+  outDefinitionsTableId: string | null;
+  outInvocationsTableId: string | null;
+  outExecutionLogsTableId: string | null;
+  outSecretDefinitionsTableId: string | null;
+  outGraphModuleId: string | null;
+  outGraphsTableId: string | null;
+  outAgentModuleId: string | null;
+}
 export interface EventsModule {
   id: string | null;
   databaseId: string | null;
@@ -977,53 +1027,10 @@ export interface EventsModule {
   prefix: string | null;
   entityTableId: string | null;
   actorTableId: string | null;
+  defaultPermissions: string[] | null;
   apiName: string | null;
   privateApiName: string | null;
 }
-export interface EntityTypeProvision {
-  id: string | null;
-  databaseId: string | null;
-  name: string | null;
-  prefix: string | null;
-  description: string | null;
-  parentEntity: string | null;
-  tableName: string | null;
-  isVisible: boolean | null;
-  hasLimits: boolean | null;
-  hasProfiles: boolean | null;
-  hasLevels: boolean | null;
-  hasInvites: boolean | null;
-  hasInviteAchievements: boolean | null;
-  storage: unknown | null;
-  namespaces: unknown | null;
-  functions: unknown | null;
-  graphs: unknown | null;
-  agents: unknown | null;
-  skipEntityPolicies: boolean | null;
-  tableProvision: unknown | null;
-  outMembershipType: number | null;
-  outEntityTableId: string | null;
-  outEntityTableName: string | null;
-  outInstalledModules: string[] | null;
-  outStorageModuleId: string | null;
-  outBucketsTableId: string | null;
-  outFilesTableId: string | null;
-  outPathSharesTableId: string | null;
-  outInvitesModuleId: string | null;
-  outNamespaceModuleId: string | null;
-  outNamespacesTableId: string | null;
-  outNamespaceEventsTableId: string | null;
-  outFunctionModuleId: string | null;
-  outDefinitionsTableId: string | null;
-  outInvocationsTableId: string | null;
-  outExecutionLogsTableId: string | null;
-  outSecretDefinitionsTableId: string | null;
-  outRequirementsTableId: string | null;
-  outConfigRequirementsTableId: string | null;
-  outGraphModuleId: string | null;
-  outGraphsTableId: string | null;
-  outAgentModuleId: string | null;
-}
 export interface StringFilter {
   isNull?: boolean;
   equalTo?: string;
diff --git a/sdk/constructive-sdk/schemas/admin.graphql b/sdk/constructive-sdk/schemas/admin.graphql
index b2a8bba9a..6df1fa68a 100644
--- a/sdk/constructive-sdk/schemas/admin.graphql
+++ b/sdk/constructive-sdk/schemas/admin.graphql
@@ -169,6 +169,68 @@ type Query {
     orderBy: [OrgPermissionDefaultOrderBy!] = [PRIMARY_KEY_ASC]
   ): OrgPermissionDefaultConnection
 
+  """
+  Reads and enables pagination through a set of `AppPermissionDefaultPermission`.
+  """
+  appPermissionDefaultPermissions(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: AppPermissionDefaultPermissionFilter
+
+    """The method to use when ordering `AppPermissionDefaultPermission`."""
+    orderBy: [AppPermissionDefaultPermissionOrderBy!] = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultPermissionConnection
+
+  """
+  Reads and enables pagination through a set of `OrgPermissionDefaultPermission`.
+  """
+  orgPermissionDefaultPermissions(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: OrgPermissionDefaultPermissionFilter
+
+    """The method to use when ordering `OrgPermissionDefaultPermission`."""
+    orderBy: [OrgPermissionDefaultPermissionOrderBy!] = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultPermissionConnection
+
   """Reads and enables pagination through a set of `AppAdminGrant`."""
   appAdminGrants(
     """Only read the first `n` values of the set."""
@@ -227,6 +289,37 @@ type Query {
     orderBy: [AppOwnerGrantOrderBy!] = [PRIMARY_KEY_ASC]
   ): AppOwnerGrantConnection
 
+  """
+  Reads and enables pagination through a set of `AppPermissionDefaultGrant`.
+  """
+  appPermissionDefaultGrants(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: AppPermissionDefaultGrantFilter
+
+    """The method to use when ordering `AppPermissionDefaultGrant`."""
+    orderBy: [AppPermissionDefaultGrantOrderBy!] = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultGrantConnection
+
   """Reads and enables pagination through a set of `OrgAdminGrant`."""
   orgAdminGrants(
     """Only read the first `n` values of the set."""
@@ -285,6 +378,37 @@ type Query {
     orderBy: [OrgOwnerGrantOrderBy!] = [PRIMARY_KEY_ASC]
   ): OrgOwnerGrantConnection
 
+  """
+  Reads and enables pagination through a set of `OrgPermissionDefaultGrant`.
+  """
+  orgPermissionDefaultGrants(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: OrgPermissionDefaultGrantFilter
+
+    """The method to use when ordering `OrgPermissionDefaultGrant`."""
+    orderBy: [OrgPermissionDefaultGrantOrderBy!] = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultGrantConnection
+
   """Reads and enables pagination through a set of `AppPermission`."""
   appPermissions(
     """Only read the first `n` values of the set."""
@@ -914,132 +1038,152 @@ type AppPermission {
 
   """Human-readable description of what this permission allows"""
   description: String
-}
-
-"""A `AppPermission` edge in the connection."""
-type AppPermissionEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `AppPermission` at the end of the edge."""
-  node: AppPermission
-}
 
-"""A connection to a list of `OrgPermission` values."""
-type OrgPermissionConnection {
-  """A list of `OrgPermission` objects."""
-  nodes: [OrgPermission]!
+  """
+  Reads a single `AppPermissionDefaultPermission` that is related to this `AppPermission`.
+  """
+  appPermissionDefaultPermissionByPermissionId: AppPermissionDefaultPermission
 
   """
-  A list of edges which contains the `OrgPermission` and cursor to aid in pagination.
+  Reads and enables pagination through a set of `AppPermissionDefaultGrant`.
   """
-  edges: [OrgPermissionEdge]!
+  appPermissionDefaultGrantsByPermissionId(
+    """Only read the first `n` values of the set."""
+    first: Int
 
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
+    """Only read the last `n` values of the set."""
+    last: Int
 
-  """The count of *all* `OrgPermission` you could get from the connection."""
-  totalCount: Int!
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: AppPermissionDefaultGrantFilter
+
+    """The method to use when ordering `AppPermissionDefaultGrant`."""
+    orderBy: [AppPermissionDefaultGrantOrderBy!] = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultGrantConnection!
 }
 
 """
-Defines available permissions as named bits within a bitmask, used by the RBAC system for access control
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
 """
-type OrgPermission {
+type AppPermissionDefaultPermission {
   id: UUID!
 
-  """Human-readable permission name (e.g. read, write, manage)"""
-  name: String
-
-  """
-  Position of this permission in the bitmask (1-indexed), must be unique per permission set
-  """
-  bitnum: Int
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
 
   """
-  Pre-computed bitmask with only this permission bit set, used for bitwise OR/AND operations
+  Reads a single `AppPermission` that is related to this `AppPermissionDefaultPermission`.
   """
-  bitstr: BitString!
-
-  """Human-readable description of what this permission allows"""
-  description: String
+  permission: AppPermission
 }
 
-"""A `OrgPermission` edge in the connection."""
-type OrgPermissionEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `OrgPermission` at the end of the edge."""
-  node: OrgPermission
-}
+"""
+A point in time as described by the [ISO
+8601](https://en.wikipedia.org/wiki/ISO_8601) and, if it has a timezone, [RFC
+3339](https://datatracker.ietf.org/doc/html/rfc3339) standards. Input values
+that do not conform to both ISO 8601 and RFC 3339 may be coerced, which may lead
+to unexpected results.
+"""
+scalar Datetime
 
-"""A connection to a list of `OrgMember` values."""
-type OrgMemberConnection {
-  """A list of `OrgMember` objects."""
-  nodes: [OrgMember]!
+"""A connection to a list of `AppPermissionDefaultGrant` values."""
+type AppPermissionDefaultGrantConnection {
+  """A list of `AppPermissionDefaultGrant` objects."""
+  nodes: [AppPermissionDefaultGrant]!
 
   """
-  A list of edges which contains the `OrgMember` and cursor to aid in pagination.
+  A list of edges which contains the `AppPermissionDefaultGrant` and cursor to aid in pagination.
   """
-  edges: [OrgMemberEdge]!
+  edges: [AppPermissionDefaultGrantEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `OrgMember` you could get from the connection."""
+  """
+  The count of *all* `AppPermissionDefaultGrant` you could get from the connection.
+  """
   totalCount: Int!
 }
 
 """
-Simplified view of active members in an entity, used for listing who belongs to an org or group
+Audit log of permission additions and removals from the defaults bitmask
 """
-type OrgMember {
+type AppPermissionDefaultGrant {
   id: UUID!
 
-  """Whether this member has admin privileges"""
-  isAdmin: Boolean!
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID!
 
-  """References the user who is a member"""
-  actorId: UUID!
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean!
+  grantorId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
 
-  """References the entity (org or group) this member belongs to"""
-  entityId: UUID!
+  """
+  Reads a single `AppPermission` that is related to this `AppPermissionDefaultGrant`.
+  """
+  permission: AppPermission
 }
 
-"""A `OrgMember` edge in the connection."""
-type OrgMemberEdge {
+"""A `AppPermissionDefaultGrant` edge in the connection."""
+type AppPermissionDefaultGrantEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `OrgMember` at the end of the edge."""
-  node: OrgMember
+  """The `AppPermissionDefaultGrant` at the end of the edge."""
+  node: AppPermissionDefaultGrant
 }
 
 """
-A filter to be used against `OrgMember` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’
 """
-input OrgMemberFilter {
+input AppPermissionDefaultGrantFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
-  """Filter by the object’s `isAdmin` field."""
-  isAdmin: BooleanFilter
+  """Filter by the object’s `permissionId` field."""
+  permissionId: UUIDFilter
 
-  """Filter by the object’s `actorId` field."""
-  actorId: UUIDFilter
+  """Filter by the object’s `isGrant` field."""
+  isGrant: BooleanFilter
 
-  """Filter by the object’s `entityId` field."""
-  entityId: UUIDFilter
+  """Filter by the object’s `grantorId` field."""
+  grantorId: UUIDFilter
+
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
+
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
 
   """Checks for all expressions in this list."""
-  and: [OrgMemberFilter!]
+  and: [AppPermissionDefaultGrantFilter!]
 
   """Checks for any expressions in this list."""
-  or: [OrgMemberFilter!]
+  or: [AppPermissionDefaultGrantFilter!]
 
   """Negates the expression."""
-  not: OrgMemberFilter
+  not: AppPermissionDefaultGrantFilter
+
+  """Filter by the object’s `permission` relation."""
+  permission: AppPermissionFilter
 }
 
 """
@@ -1126,35 +1270,869 @@ input BooleanFilter {
   greaterThanOrEqualTo: Boolean
 }
 
-"""Methods to use when ordering `OrgMember`."""
-enum OrgMemberOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  IS_ADMIN_ASC
-  IS_ADMIN_DESC
-  ACTOR_ID_ASC
-  ACTOR_ID_DESC
-  ENTITY_ID_ASC
-  ENTITY_ID_DESC
-}
-
-"""A connection to a list of `AppPermissionDefault` values."""
-type AppPermissionDefaultConnection {
-  """A list of `AppPermissionDefault` objects."""
-  nodes: [AppPermissionDefault]!
-
+"""
+A filter to be used against Datetime fields. All fields are combined with a logical ‘and.’
+"""
+input DatetimeFilter {
   """
-  A list of edges which contains the `AppPermissionDefault` and cursor to aid in pagination.
+  Is null (if `true` is specified) or is not null (if `false` is specified).
   """
-  edges: [AppPermissionDefaultEdge]!
+  isNull: Boolean
 
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
+  """Equal to the specified value."""
+  equalTo: Datetime
 
-  """
+  """Not equal to the specified value."""
+  notEqualTo: Datetime
+
+  """
+  Not equal to the specified value, treating null like an ordinary value.
+  """
+  distinctFrom: Datetime
+
+  """Equal to the specified value, treating null like an ordinary value."""
+  notDistinctFrom: Datetime
+
+  """Included in the specified list."""
+  in: [Datetime!]
+
+  """Not included in the specified list."""
+  notIn: [Datetime!]
+
+  """Less than the specified value."""
+  lessThan: Datetime
+
+  """Less than or equal to the specified value."""
+  lessThanOrEqualTo: Datetime
+
+  """Greater than the specified value."""
+  greaterThan: Datetime
+
+  """Greater than or equal to the specified value."""
+  greaterThanOrEqualTo: Datetime
+}
+
+"""
+A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’
+"""
+input AppPermissionFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `name` field."""
+  name: StringFilter
+
+  """Filter by the object’s `bitnum` field."""
+  bitnum: IntFilter
+
+  """Filter by the object’s `bitstr` field."""
+  bitstr: BitStringFilter
+
+  """Filter by the object’s `description` field."""
+  description: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [AppPermissionFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [AppPermissionFilter!]
+
+  """Negates the expression."""
+  not: AppPermissionFilter
+
+  """
+  Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation.
+  """
+  appPermissionDefaultPermissionByPermissionId: AppPermissionDefaultPermissionFilter
+
+  """A related `appPermissionDefaultPermissionByPermissionId` exists."""
+  appPermissionDefaultPermissionByPermissionIdExists: Boolean
+
+  """
+  Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation.
+  """
+  appPermissionDefaultGrantsByPermissionId: AppPermissionToManyAppPermissionDefaultGrantFilter
+
+  """`appPermissionDefaultGrantsByPermissionId` exist."""
+  appPermissionDefaultGrantsByPermissionIdExist: Boolean
+}
+
+"""
+A filter to be used against String fields. All fields are combined with a logical ‘and.’
+"""
+input StringFilter {
+  """
+  Is null (if `true` is specified) or is not null (if `false` is specified).
+  """
+  isNull: Boolean
+
+  """Equal to the specified value."""
+  equalTo: String
+
+  """Not equal to the specified value."""
+  notEqualTo: String
+
+  """
+  Not equal to the specified value, treating null like an ordinary value.
+  """
+  distinctFrom: String
+
+  """Equal to the specified value, treating null like an ordinary value."""
+  notDistinctFrom: String
+
+  """Included in the specified list."""
+  in: [String!]
+
+  """Not included in the specified list."""
+  notIn: [String!]
+
+  """Less than the specified value."""
+  lessThan: String
+
+  """Less than or equal to the specified value."""
+  lessThanOrEqualTo: String
+
+  """Greater than the specified value."""
+  greaterThan: String
+
+  """Greater than or equal to the specified value."""
+  greaterThanOrEqualTo: String
+
+  """Contains the specified string (case-sensitive)."""
+  includes: String
+
+  """Does not contain the specified string (case-sensitive)."""
+  notIncludes: String
+
+  """Contains the specified string (case-insensitive)."""
+  includesInsensitive: String
+
+  """Does not contain the specified string (case-insensitive)."""
+  notIncludesInsensitive: String
+
+  """Starts with the specified string (case-sensitive)."""
+  startsWith: String
+
+  """Does not start with the specified string (case-sensitive)."""
+  notStartsWith: String
+
+  """Starts with the specified string (case-insensitive)."""
+  startsWithInsensitive: String
+
+  """Does not start with the specified string (case-insensitive)."""
+  notStartsWithInsensitive: String
+
+  """Ends with the specified string (case-sensitive)."""
+  endsWith: String
+
+  """Does not end with the specified string (case-sensitive)."""
+  notEndsWith: String
+
+  """Ends with the specified string (case-insensitive)."""
+  endsWithInsensitive: String
+
+  """Does not end with the specified string (case-insensitive)."""
+  notEndsWithInsensitive: String
+
+  """
+  Matches the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
+  """
+  like: String
+
+  """
+  Does not match the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
+  """
+  notLike: String
+
+  """
+  Matches the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
+  """
+  likeInsensitive: String
+
+  """
+  Does not match the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
+  """
+  notLikeInsensitive: String
+
+  """Equal to the specified value (case-insensitive)."""
+  equalToInsensitive: String
+
+  """Not equal to the specified value (case-insensitive)."""
+  notEqualToInsensitive: String
+
+  """
+  Not equal to the specified value, treating null like an ordinary value (case-insensitive).
+  """
+  distinctFromInsensitive: String
+
+  """
+  Equal to the specified value, treating null like an ordinary value (case-insensitive).
+  """
+  notDistinctFromInsensitive: String
+
+  """Included in the specified list (case-insensitive)."""
+  inInsensitive: [String!]
+
+  """Not included in the specified list (case-insensitive)."""
+  notInInsensitive: [String!]
+
+  """Less than the specified value (case-insensitive)."""
+  lessThanInsensitive: String
+
+  """Less than or equal to the specified value (case-insensitive)."""
+  lessThanOrEqualToInsensitive: String
+
+  """Greater than the specified value (case-insensitive)."""
+  greaterThanInsensitive: String
+
+  """Greater than or equal to the specified value (case-insensitive)."""
+  greaterThanOrEqualToInsensitive: String
+}
+
+"""
+A filter to be used against Int fields. All fields are combined with a logical ‘and.’
+"""
+input IntFilter {
+  """
+  Is null (if `true` is specified) or is not null (if `false` is specified).
+  """
+  isNull: Boolean
+
+  """Equal to the specified value."""
+  equalTo: Int
+
+  """Not equal to the specified value."""
+  notEqualTo: Int
+
+  """
+  Not equal to the specified value, treating null like an ordinary value.
+  """
+  distinctFrom: Int
+
+  """Equal to the specified value, treating null like an ordinary value."""
+  notDistinctFrom: Int
+
+  """Included in the specified list."""
+  in: [Int!]
+
+  """Not included in the specified list."""
+  notIn: [Int!]
+
+  """Less than the specified value."""
+  lessThan: Int
+
+  """Less than or equal to the specified value."""
+  lessThanOrEqualTo: Int
+
+  """Greater than the specified value."""
+  greaterThan: Int
+
+  """Greater than or equal to the specified value."""
+  greaterThanOrEqualTo: Int
+}
+
+"""
+A filter to be used against BitString fields. All fields are combined with a logical ‘and.’
+"""
+input BitStringFilter {
+  """
+  Is null (if `true` is specified) or is not null (if `false` is specified).
+  """
+  isNull: Boolean
+
+  """Equal to the specified value."""
+  equalTo: BitString
+
+  """Not equal to the specified value."""
+  notEqualTo: BitString
+
+  """
+  Not equal to the specified value, treating null like an ordinary value.
+  """
+  distinctFrom: BitString
+
+  """Equal to the specified value, treating null like an ordinary value."""
+  notDistinctFrom: BitString
+
+  """Included in the specified list."""
+  in: [BitString!]
+
+  """Not included in the specified list."""
+  notIn: [BitString!]
+
+  """Less than the specified value."""
+  lessThan: BitString
+
+  """Less than or equal to the specified value."""
+  lessThanOrEqualTo: BitString
+
+  """Greater than the specified value."""
+  greaterThan: BitString
+
+  """Greater than or equal to the specified value."""
+  greaterThanOrEqualTo: BitString
+}
+
+"""
+A filter to be used against `AppPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’
+"""
+input AppPermissionDefaultPermissionFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `permissionId` field."""
+  permissionId: UUIDFilter
+
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
+
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
+
+  """Checks for all expressions in this list."""
+  and: [AppPermissionDefaultPermissionFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [AppPermissionDefaultPermissionFilter!]
+
+  """Negates the expression."""
+  not: AppPermissionDefaultPermissionFilter
+
+  """Filter by the object’s `permission` relation."""
+  permission: AppPermissionFilter
+}
+
+"""
+A filter to be used against many `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’
+"""
+input AppPermissionToManyAppPermissionDefaultGrantFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: AppPermissionDefaultGrantFilter
+
+  """Filters to entities where every related entity matches."""
+  every: AppPermissionDefaultGrantFilter
+
+  """Filters to entities where no related entity matches."""
+  none: AppPermissionDefaultGrantFilter
+}
+
+"""Methods to use when ordering `AppPermissionDefaultGrant`."""
+enum AppPermissionDefaultGrantOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  PERMISSION_ID_ASC
+  PERMISSION_ID_DESC
+  IS_GRANT_ASC
+  IS_GRANT_DESC
+  GRANTOR_ID_ASC
+  GRANTOR_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
+}
+
+"""A `AppPermission` edge in the connection."""
+type AppPermissionEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `AppPermission` at the end of the edge."""
+  node: AppPermission
+}
+
+"""A connection to a list of `OrgPermission` values."""
+type OrgPermissionConnection {
+  """A list of `OrgPermission` objects."""
+  nodes: [OrgPermission]!
+
+  """
+  A list of edges which contains the `OrgPermission` and cursor to aid in pagination.
+  """
+  edges: [OrgPermissionEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """The count of *all* `OrgPermission` you could get from the connection."""
+  totalCount: Int!
+}
+
+"""
+Defines available permissions as named bits within a bitmask, used by the RBAC system for access control
+"""
+type OrgPermission {
+  id: UUID!
+
+  """Human-readable permission name (e.g. read, write, manage)"""
+  name: String
+
+  """
+  Position of this permission in the bitmask (1-indexed), must be unique per permission set
+  """
+  bitnum: Int
+
+  """
+  Pre-computed bitmask with only this permission bit set, used for bitwise OR/AND operations
+  """
+  bitstr: BitString!
+
+  """Human-readable description of what this permission allows"""
+  description: String
+
+  """
+  Reads and enables pagination through a set of `OrgPermissionDefaultPermission`.
+  """
+  orgPermissionDefaultPermissionsByPermissionId(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: OrgPermissionDefaultPermissionFilter
+
+    """The method to use when ordering `OrgPermissionDefaultPermission`."""
+    orderBy: [OrgPermissionDefaultPermissionOrderBy!] = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultPermissionConnection!
+
+  """
+  Reads and enables pagination through a set of `OrgPermissionDefaultGrant`.
+  """
+  orgPermissionDefaultGrantsByPermissionId(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: OrgPermissionDefaultGrantFilter
+
+    """The method to use when ordering `OrgPermissionDefaultGrant`."""
+    orderBy: [OrgPermissionDefaultGrantOrderBy!] = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultGrantConnection!
+}
+
+"""A connection to a list of `OrgPermissionDefaultPermission` values."""
+type OrgPermissionDefaultPermissionConnection {
+  """A list of `OrgPermissionDefaultPermission` objects."""
+  nodes: [OrgPermissionDefaultPermission]!
+
+  """
+  A list of edges which contains the `OrgPermissionDefaultPermission` and cursor to aid in pagination.
+  """
+  edges: [OrgPermissionDefaultPermissionEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
+  The count of *all* `OrgPermissionDefaultPermission` you could get from the connection.
+  """
+  totalCount: Int!
+}
+
+"""
+Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask
+"""
+type OrgPermissionDefaultPermission {
+  id: UUID!
+
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID!
+
+  """Scopes this default permission to a specific entity"""
+  entityId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+
+  """
+  Reads a single `OrgPermission` that is related to this `OrgPermissionDefaultPermission`.
+  """
+  permission: OrgPermission
+}
+
+"""A `OrgPermissionDefaultPermission` edge in the connection."""
+type OrgPermissionDefaultPermissionEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `OrgPermissionDefaultPermission` at the end of the edge."""
+  node: OrgPermissionDefaultPermission
+}
+
+"""
+A filter to be used against `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgPermissionDefaultPermissionFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `permissionId` field."""
+  permissionId: UUIDFilter
+
+  """Filter by the object’s `entityId` field."""
+  entityId: UUIDFilter
+
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
+
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
+
+  """Checks for all expressions in this list."""
+  and: [OrgPermissionDefaultPermissionFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [OrgPermissionDefaultPermissionFilter!]
+
+  """Negates the expression."""
+  not: OrgPermissionDefaultPermissionFilter
+
+  """Filter by the object’s `permission` relation."""
+  permission: OrgPermissionFilter
+}
+
+"""
+A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgPermissionFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `name` field."""
+  name: StringFilter
+
+  """Filter by the object’s `bitnum` field."""
+  bitnum: IntFilter
+
+  """Filter by the object’s `bitstr` field."""
+  bitstr: BitStringFilter
+
+  """Filter by the object’s `description` field."""
+  description: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [OrgPermissionFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [OrgPermissionFilter!]
+
+  """Negates the expression."""
+  not: OrgPermissionFilter
+
+  """
+  Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation.
+  """
+  orgPermissionDefaultPermissionsByPermissionId: OrgPermissionToManyOrgPermissionDefaultPermissionFilter
+
+  """`orgPermissionDefaultPermissionsByPermissionId` exist."""
+  orgPermissionDefaultPermissionsByPermissionIdExist: Boolean
+
+  """
+  Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation.
+  """
+  orgPermissionDefaultGrantsByPermissionId: OrgPermissionToManyOrgPermissionDefaultGrantFilter
+
+  """`orgPermissionDefaultGrantsByPermissionId` exist."""
+  orgPermissionDefaultGrantsByPermissionIdExist: Boolean
+}
+
+"""
+A filter to be used against many `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgPermissionToManyOrgPermissionDefaultPermissionFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: OrgPermissionDefaultPermissionFilter
+
+  """Filters to entities where every related entity matches."""
+  every: OrgPermissionDefaultPermissionFilter
+
+  """Filters to entities where no related entity matches."""
+  none: OrgPermissionDefaultPermissionFilter
+}
+
+"""
+A filter to be used against many `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgPermissionToManyOrgPermissionDefaultGrantFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: OrgPermissionDefaultGrantFilter
+
+  """Filters to entities where every related entity matches."""
+  every: OrgPermissionDefaultGrantFilter
+
+  """Filters to entities where no related entity matches."""
+  none: OrgPermissionDefaultGrantFilter
+}
+
+"""
+A filter to be used against `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgPermissionDefaultGrantFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `permissionId` field."""
+  permissionId: UUIDFilter
+
+  """Filter by the object’s `isGrant` field."""
+  isGrant: BooleanFilter
+
+  """Filter by the object’s `grantorId` field."""
+  grantorId: UUIDFilter
+
+  """Filter by the object’s `entityId` field."""
+  entityId: UUIDFilter
+
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
+
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
+
+  """Checks for all expressions in this list."""
+  and: [OrgPermissionDefaultGrantFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [OrgPermissionDefaultGrantFilter!]
+
+  """Negates the expression."""
+  not: OrgPermissionDefaultGrantFilter
+
+  """Filter by the object’s `permission` relation."""
+  permission: OrgPermissionFilter
+}
+
+"""Methods to use when ordering `OrgPermissionDefaultPermission`."""
+enum OrgPermissionDefaultPermissionOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  PERMISSION_ID_ASC
+  PERMISSION_ID_DESC
+  ENTITY_ID_ASC
+  ENTITY_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
+}
+
+"""A connection to a list of `OrgPermissionDefaultGrant` values."""
+type OrgPermissionDefaultGrantConnection {
+  """A list of `OrgPermissionDefaultGrant` objects."""
+  nodes: [OrgPermissionDefaultGrant]!
+
+  """
+  A list of edges which contains the `OrgPermissionDefaultGrant` and cursor to aid in pagination.
+  """
+  edges: [OrgPermissionDefaultGrantEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
+  The count of *all* `OrgPermissionDefaultGrant` you could get from the connection.
+  """
+  totalCount: Int!
+}
+
+"""
+Audit log of permission additions and removals from the defaults bitmask
+"""
+type OrgPermissionDefaultGrant {
+  id: UUID!
+
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID!
+
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean!
+  grantorId: UUID
+
+  """Scopes this audit entry to a specific entity"""
+  entityId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+
+  """
+  Reads a single `OrgPermission` that is related to this `OrgPermissionDefaultGrant`.
+  """
+  permission: OrgPermission
+}
+
+"""A `OrgPermissionDefaultGrant` edge in the connection."""
+type OrgPermissionDefaultGrantEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `OrgPermissionDefaultGrant` at the end of the edge."""
+  node: OrgPermissionDefaultGrant
+}
+
+"""Methods to use when ordering `OrgPermissionDefaultGrant`."""
+enum OrgPermissionDefaultGrantOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  PERMISSION_ID_ASC
+  PERMISSION_ID_DESC
+  IS_GRANT_ASC
+  IS_GRANT_DESC
+  GRANTOR_ID_ASC
+  GRANTOR_ID_DESC
+  ENTITY_ID_ASC
+  ENTITY_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
+}
+
+"""A `OrgPermission` edge in the connection."""
+type OrgPermissionEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `OrgPermission` at the end of the edge."""
+  node: OrgPermission
+}
+
+"""A connection to a list of `OrgMember` values."""
+type OrgMemberConnection {
+  """A list of `OrgMember` objects."""
+  nodes: [OrgMember]!
+
+  """
+  A list of edges which contains the `OrgMember` and cursor to aid in pagination.
+  """
+  edges: [OrgMemberEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """The count of *all* `OrgMember` you could get from the connection."""
+  totalCount: Int!
+}
+
+"""
+Simplified view of active members in an entity, used for listing who belongs to an org or group
+"""
+type OrgMember {
+  id: UUID!
+
+  """Whether this member has admin privileges"""
+  isAdmin: Boolean!
+
+  """References the user who is a member"""
+  actorId: UUID!
+
+  """References the entity (org or group) this member belongs to"""
+  entityId: UUID!
+}
+
+"""A `OrgMember` edge in the connection."""
+type OrgMemberEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `OrgMember` at the end of the edge."""
+  node: OrgMember
+}
+
+"""
+A filter to be used against `OrgMember` object types. All fields are combined with a logical ‘and.’
+"""
+input OrgMemberFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `isAdmin` field."""
+  isAdmin: BooleanFilter
+
+  """Filter by the object’s `actorId` field."""
+  actorId: UUIDFilter
+
+  """Filter by the object’s `entityId` field."""
+  entityId: UUIDFilter
+
+  """Checks for all expressions in this list."""
+  and: [OrgMemberFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [OrgMemberFilter!]
+
+  """Negates the expression."""
+  not: OrgMemberFilter
+}
+
+"""Methods to use when ordering `OrgMember`."""
+enum OrgMemberOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  IS_ADMIN_ASC
+  IS_ADMIN_DESC
+  ACTOR_ID_ASC
+  ACTOR_ID_DESC
+  ENTITY_ID_ASC
+  ENTITY_ID_DESC
+}
+
+"""A connection to a list of `AppPermissionDefault` values."""
+type AppPermissionDefaultConnection {
+  """A list of `AppPermissionDefault` objects."""
+  nodes: [AppPermissionDefault]!
+
+  """
+  A list of edges which contains the `AppPermissionDefault` and cursor to aid in pagination.
+  """
+  edges: [AppPermissionDefaultEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
   The count of *all* `AppPermissionDefault` you could get from the connection.
   """
   totalCount: Int!
@@ -1199,48 +2177,6 @@ input AppPermissionDefaultFilter {
   not: AppPermissionDefaultFilter
 }
 
-"""
-A filter to be used against BitString fields. All fields are combined with a logical ‘and.’
-"""
-input BitStringFilter {
-  """
-  Is null (if `true` is specified) or is not null (if `false` is specified).
-  """
-  isNull: Boolean
-
-  """Equal to the specified value."""
-  equalTo: BitString
-
-  """Not equal to the specified value."""
-  notEqualTo: BitString
-
-  """
-  Not equal to the specified value, treating null like an ordinary value.
-  """
-  distinctFrom: BitString
-
-  """Equal to the specified value, treating null like an ordinary value."""
-  notDistinctFrom: BitString
-
-  """Included in the specified list."""
-  in: [BitString!]
-
-  """Not included in the specified list."""
-  notIn: [BitString!]
-
-  """Less than the specified value."""
-  lessThan: BitString
-
-  """Less than or equal to the specified value."""
-  lessThanOrEqualTo: BitString
-
-  """Greater than the specified value."""
-  greaterThan: BitString
-
-  """Greater than or equal to the specified value."""
-  greaterThanOrEqualTo: BitString
-}
-
 """Methods to use when ordering `AppPermissionDefault`."""
 enum AppPermissionDefaultOrderBy {
   NATURAL
@@ -1329,6 +2265,49 @@ enum OrgPermissionDefaultOrderBy {
   ENTITY_ID_DESC
 }
 
+"""A connection to a list of `AppPermissionDefaultPermission` values."""
+type AppPermissionDefaultPermissionConnection {
+  """A list of `AppPermissionDefaultPermission` objects."""
+  nodes: [AppPermissionDefaultPermission]!
+
+  """
+  A list of edges which contains the `AppPermissionDefaultPermission` and cursor to aid in pagination.
+  """
+  edges: [AppPermissionDefaultPermissionEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
+  The count of *all* `AppPermissionDefaultPermission` you could get from the connection.
+  """
+  totalCount: Int!
+}
+
+"""A `AppPermissionDefaultPermission` edge in the connection."""
+type AppPermissionDefaultPermissionEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `AppPermissionDefaultPermission` at the end of the edge."""
+  node: AppPermissionDefaultPermission
+}
+
+"""Methods to use when ordering `AppPermissionDefaultPermission`."""
+enum AppPermissionDefaultPermissionOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  PERMISSION_ID_ASC
+  PERMISSION_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
+}
+
 """A connection to a list of `AppAdminGrant` values."""
 type AppAdminGrantConnection {
   """A list of `AppAdminGrant` objects."""
@@ -1353,22 +2332,15 @@ type AppAdminGrant {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean!
 
-  """The member receiving or losing the admin grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
+  actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
 }
 
-"""
-A point in time as described by the [ISO
-8601](https://en.wikipedia.org/wiki/ISO_8601) and, if it has a timezone, [RFC
-3339](https://datatracker.ietf.org/doc/html/rfc3339) standards. Input values
-that do not conform to both ISO 8601 and RFC 3339 may be coerced, which may lead
-to unexpected results.
-"""
-scalar Datetime
-
 """A `AppAdminGrant` edge in the connection."""
 type AppAdminGrantEdge {
   """A cursor for use in pagination."""
@@ -1394,62 +2366,20 @@ input AppAdminGrantFilter {
   """Filter by the object’s `grantorId` field."""
   grantorId: UUIDFilter
 
-  """Filter by the object’s `createdAt` field."""
-  createdAt: DatetimeFilter
-
-  """Filter by the object’s `updatedAt` field."""
-  updatedAt: DatetimeFilter
-
-  """Checks for all expressions in this list."""
-  and: [AppAdminGrantFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [AppAdminGrantFilter!]
-
-  """Negates the expression."""
-  not: AppAdminGrantFilter
-}
-
-"""
-A filter to be used against Datetime fields. All fields are combined with a logical ‘and.’
-"""
-input DatetimeFilter {
-  """
-  Is null (if `true` is specified) or is not null (if `false` is specified).
-  """
-  isNull: Boolean
-
-  """Equal to the specified value."""
-  equalTo: Datetime
-
-  """Not equal to the specified value."""
-  notEqualTo: Datetime
-
-  """
-  Not equal to the specified value, treating null like an ordinary value.
-  """
-  distinctFrom: Datetime
-
-  """Equal to the specified value, treating null like an ordinary value."""
-  notDistinctFrom: Datetime
-
-  """Included in the specified list."""
-  in: [Datetime!]
-
-  """Not included in the specified list."""
-  notIn: [Datetime!]
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
 
-  """Less than the specified value."""
-  lessThan: Datetime
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
 
-  """Less than or equal to the specified value."""
-  lessThanOrEqualTo: Datetime
+  """Checks for all expressions in this list."""
+  and: [AppAdminGrantFilter!]
 
-  """Greater than the specified value."""
-  greaterThan: Datetime
+  """Checks for any expressions in this list."""
+  or: [AppAdminGrantFilter!]
 
-  """Greater than or equal to the specified value."""
-  greaterThanOrEqualTo: Datetime
+  """Negates the expression."""
+  not: AppAdminGrantFilter
 }
 
 """Methods to use when ordering `AppAdminGrant`."""
@@ -1495,8 +2425,10 @@ type AppOwnerGrant {
   """True to grant ownership, false to revoke ownership"""
   isGrant: Boolean!
 
-  """The member receiving or losing the ownership grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the ownership grant; NULL if user was deleted
+  """
+  actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
@@ -1586,8 +2518,10 @@ type OrgAdminGrant {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean!
 
-  """The member receiving or losing the admin grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
+  actorId: UUID
 
   """The entity (org or group) this admin grant applies to"""
   entityId: UUID!
@@ -1633,334 +2567,133 @@ input OrgAdminGrantFilter {
   """Checks for all expressions in this list."""
   and: [OrgAdminGrantFilter!]
 
-  """Checks for any expressions in this list."""
-  or: [OrgAdminGrantFilter!]
-
-  """Negates the expression."""
-  not: OrgAdminGrantFilter
-}
-
-"""Methods to use when ordering `OrgAdminGrant`."""
-enum OrgAdminGrantOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  IS_GRANT_ASC
-  IS_GRANT_DESC
-  ACTOR_ID_ASC
-  ACTOR_ID_DESC
-  ENTITY_ID_ASC
-  ENTITY_ID_DESC
-  GRANTOR_ID_ASC
-  GRANTOR_ID_DESC
-  CREATED_AT_ASC
-  CREATED_AT_DESC
-  UPDATED_AT_ASC
-  UPDATED_AT_DESC
-}
-
-"""A connection to a list of `OrgOwnerGrant` values."""
-type OrgOwnerGrantConnection {
-  """A list of `OrgOwnerGrant` objects."""
-  nodes: [OrgOwnerGrant]!
-
-  """
-  A list of edges which contains the `OrgOwnerGrant` and cursor to aid in pagination.
-  """
-  edges: [OrgOwnerGrantEdge]!
-
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
-
-  """The count of *all* `OrgOwnerGrant` you could get from the connection."""
-  totalCount: Int!
-}
-
-"""Records of ownership transfers and grants between members"""
-type OrgOwnerGrant {
-  id: UUID!
-
-  """True to grant ownership, false to revoke ownership"""
-  isGrant: Boolean!
-
-  """The member receiving or losing the ownership grant"""
-  actorId: UUID!
-
-  """The entity (org or group) this ownership grant applies to"""
-  entityId: UUID!
-  grantorId: UUID
-  createdAt: Datetime
-  updatedAt: Datetime
-}
-
-"""A `OrgOwnerGrant` edge in the connection."""
-type OrgOwnerGrantEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `OrgOwnerGrant` at the end of the edge."""
-  node: OrgOwnerGrant
-}
-
-"""
-A filter to be used against `OrgOwnerGrant` object types. All fields are combined with a logical ‘and.’
-"""
-input OrgOwnerGrantFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `isGrant` field."""
-  isGrant: BooleanFilter
-
-  """Filter by the object’s `actorId` field."""
-  actorId: UUIDFilter
-
-  """Filter by the object’s `entityId` field."""
-  entityId: UUIDFilter
-
-  """Filter by the object’s `grantorId` field."""
-  grantorId: UUIDFilter
-
-  """Filter by the object’s `createdAt` field."""
-  createdAt: DatetimeFilter
-
-  """Filter by the object’s `updatedAt` field."""
-  updatedAt: DatetimeFilter
-
-  """Checks for all expressions in this list."""
-  and: [OrgOwnerGrantFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [OrgOwnerGrantFilter!]
-
-  """Negates the expression."""
-  not: OrgOwnerGrantFilter
-}
-
-"""Methods to use when ordering `OrgOwnerGrant`."""
-enum OrgOwnerGrantOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  IS_GRANT_ASC
-  IS_GRANT_DESC
-  ACTOR_ID_ASC
-  ACTOR_ID_DESC
-  ENTITY_ID_ASC
-  ENTITY_ID_DESC
-  GRANTOR_ID_ASC
-  GRANTOR_ID_DESC
-  CREATED_AT_ASC
-  CREATED_AT_DESC
-  UPDATED_AT_ASC
-  UPDATED_AT_DESC
-}
-
-"""
-A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’
-"""
-input AppPermissionFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `name` field."""
-  name: StringFilter
-
-  """Filter by the object’s `bitnum` field."""
-  bitnum: IntFilter
-
-  """Filter by the object’s `bitstr` field."""
-  bitstr: BitStringFilter
-
-  """Filter by the object’s `description` field."""
-  description: StringFilter
-
-  """Checks for all expressions in this list."""
-  and: [AppPermissionFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [AppPermissionFilter!]
-
-  """Negates the expression."""
-  not: AppPermissionFilter
-}
-
-"""
-A filter to be used against String fields. All fields are combined with a logical ‘and.’
-"""
-input StringFilter {
-  """
-  Is null (if `true` is specified) or is not null (if `false` is specified).
-  """
-  isNull: Boolean
-
-  """Equal to the specified value."""
-  equalTo: String
-
-  """Not equal to the specified value."""
-  notEqualTo: String
-
-  """
-  Not equal to the specified value, treating null like an ordinary value.
-  """
-  distinctFrom: String
-
-  """Equal to the specified value, treating null like an ordinary value."""
-  notDistinctFrom: String
-
-  """Included in the specified list."""
-  in: [String!]
-
-  """Not included in the specified list."""
-  notIn: [String!]
-
-  """Less than the specified value."""
-  lessThan: String
-
-  """Less than or equal to the specified value."""
-  lessThanOrEqualTo: String
-
-  """Greater than the specified value."""
-  greaterThan: String
-
-  """Greater than or equal to the specified value."""
-  greaterThanOrEqualTo: String
-
-  """Contains the specified string (case-sensitive)."""
-  includes: String
-
-  """Does not contain the specified string (case-sensitive)."""
-  notIncludes: String
-
-  """Contains the specified string (case-insensitive)."""
-  includesInsensitive: String
-
-  """Does not contain the specified string (case-insensitive)."""
-  notIncludesInsensitive: String
-
-  """Starts with the specified string (case-sensitive)."""
-  startsWith: String
-
-  """Does not start with the specified string (case-sensitive)."""
-  notStartsWith: String
-
-  """Starts with the specified string (case-insensitive)."""
-  startsWithInsensitive: String
-
-  """Does not start with the specified string (case-insensitive)."""
-  notStartsWithInsensitive: String
-
-  """Ends with the specified string (case-sensitive)."""
-  endsWith: String
-
-  """Does not end with the specified string (case-sensitive)."""
-  notEndsWith: String
-
-  """Ends with the specified string (case-insensitive)."""
-  endsWithInsensitive: String
+  """Checks for any expressions in this list."""
+  or: [OrgAdminGrantFilter!]
 
-  """Does not end with the specified string (case-insensitive)."""
-  notEndsWithInsensitive: String
+  """Negates the expression."""
+  not: OrgAdminGrantFilter
+}
 
-  """
-  Matches the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
-  """
-  like: String
+"""Methods to use when ordering `OrgAdminGrant`."""
+enum OrgAdminGrantOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  IS_GRANT_ASC
+  IS_GRANT_DESC
+  ACTOR_ID_ASC
+  ACTOR_ID_DESC
+  ENTITY_ID_ASC
+  ENTITY_ID_DESC
+  GRANTOR_ID_ASC
+  GRANTOR_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
+}
 
-  """
-  Does not match the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
-  """
-  notLike: String
+"""A connection to a list of `OrgOwnerGrant` values."""
+type OrgOwnerGrantConnection {
+  """A list of `OrgOwnerGrant` objects."""
+  nodes: [OrgOwnerGrant]!
 
   """
-  Matches the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
+  A list of edges which contains the `OrgOwnerGrant` and cursor to aid in pagination.
   """
-  likeInsensitive: String
+  edges: [OrgOwnerGrantEdge]!
 
-  """
-  Does not match the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters.
-  """
-  notLikeInsensitive: String
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
 
-  """Equal to the specified value (case-insensitive)."""
-  equalToInsensitive: String
+  """The count of *all* `OrgOwnerGrant` you could get from the connection."""
+  totalCount: Int!
+}
 
-  """Not equal to the specified value (case-insensitive)."""
-  notEqualToInsensitive: String
+"""Records of ownership transfers and grants between members"""
+type OrgOwnerGrant {
+  id: UUID!
 
-  """
-  Not equal to the specified value, treating null like an ordinary value (case-insensitive).
-  """
-  distinctFromInsensitive: String
+  """True to grant ownership, false to revoke ownership"""
+  isGrant: Boolean!
 
   """
-  Equal to the specified value, treating null like an ordinary value (case-insensitive).
+  The member receiving or losing the ownership grant; NULL if user was deleted
   """
-  notDistinctFromInsensitive: String
-
-  """Included in the specified list (case-insensitive)."""
-  inInsensitive: [String!]
-
-  """Not included in the specified list (case-insensitive)."""
-  notInInsensitive: [String!]
-
-  """Less than the specified value (case-insensitive)."""
-  lessThanInsensitive: String
+  actorId: UUID
 
-  """Less than or equal to the specified value (case-insensitive)."""
-  lessThanOrEqualToInsensitive: String
+  """The entity (org or group) this ownership grant applies to"""
+  entityId: UUID!
+  grantorId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
+}
 
-  """Greater than the specified value (case-insensitive)."""
-  greaterThanInsensitive: String
+"""A `OrgOwnerGrant` edge in the connection."""
+type OrgOwnerGrantEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
 
-  """Greater than or equal to the specified value (case-insensitive)."""
-  greaterThanOrEqualToInsensitive: String
+  """The `OrgOwnerGrant` at the end of the edge."""
+  node: OrgOwnerGrant
 }
 
 """
-A filter to be used against Int fields. All fields are combined with a logical ‘and.’
+A filter to be used against `OrgOwnerGrant` object types. All fields are combined with a logical ‘and.’
 """
-input IntFilter {
-  """
-  Is null (if `true` is specified) or is not null (if `false` is specified).
-  """
-  isNull: Boolean
+input OrgOwnerGrantFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
 
-  """Equal to the specified value."""
-  equalTo: Int
+  """Filter by the object’s `isGrant` field."""
+  isGrant: BooleanFilter
 
-  """Not equal to the specified value."""
-  notEqualTo: Int
+  """Filter by the object’s `actorId` field."""
+  actorId: UUIDFilter
 
-  """
-  Not equal to the specified value, treating null like an ordinary value.
-  """
-  distinctFrom: Int
+  """Filter by the object’s `entityId` field."""
+  entityId: UUIDFilter
 
-  """Equal to the specified value, treating null like an ordinary value."""
-  notDistinctFrom: Int
+  """Filter by the object’s `grantorId` field."""
+  grantorId: UUIDFilter
 
-  """Included in the specified list."""
-  in: [Int!]
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
 
-  """Not included in the specified list."""
-  notIn: [Int!]
+  """Filter by the object’s `updatedAt` field."""
+  updatedAt: DatetimeFilter
 
-  """Less than the specified value."""
-  lessThan: Int
+  """Checks for all expressions in this list."""
+  and: [OrgOwnerGrantFilter!]
 
-  """Less than or equal to the specified value."""
-  lessThanOrEqualTo: Int
+  """Checks for any expressions in this list."""
+  or: [OrgOwnerGrantFilter!]
 
-  """Greater than the specified value."""
-  greaterThan: Int
+  """Negates the expression."""
+  not: OrgOwnerGrantFilter
+}
 
-  """Greater than or equal to the specified value."""
-  greaterThanOrEqualTo: Int
+"""Methods to use when ordering `OrgOwnerGrant`."""
+enum OrgOwnerGrantOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  IS_GRANT_ASC
+  IS_GRANT_DESC
+  ACTOR_ID_ASC
+  ACTOR_ID_DESC
+  ENTITY_ID_ASC
+  ENTITY_ID_DESC
+  GRANTOR_ID_ASC
+  GRANTOR_ID_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
+  UPDATED_AT_ASC
+  UPDATED_AT_DESC
 }
 
 """Methods to use when ordering `AppPermission`."""
@@ -1980,35 +2713,6 @@ enum AppPermissionOrderBy {
   DESCRIPTION_DESC
 }
 
-"""
-A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’
-"""
-input OrgPermissionFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `name` field."""
-  name: StringFilter
-
-  """Filter by the object’s `bitnum` field."""
-  bitnum: IntFilter
-
-  """Filter by the object’s `bitstr` field."""
-  bitstr: BitStringFilter
-
-  """Filter by the object’s `description` field."""
-  description: StringFilter
-
-  """Checks for all expressions in this list."""
-  and: [OrgPermissionFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [OrgPermissionFilter!]
-
-  """Negates the expression."""
-  not: OrgPermissionFilter
-}
-
 """Methods to use when ordering `OrgPermission`."""
 enum OrgPermissionOrderBy {
   NATURAL
@@ -2389,8 +3093,10 @@ type AppGrant {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean!
 
-  """The member receiving or losing the permission grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
+  actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
@@ -2792,8 +3498,10 @@ type OrgGrant {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean!
 
-  """The member receiving or losing the permission grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
+  actorId: UUID
 
   """The entity (org or group) this permission grant applies to"""
   entityId: UUID!
@@ -4390,6 +5098,22 @@ type Mutation {
     input: CreateOrgPermissionDefaultInput!
   ): CreateOrgPermissionDefaultPayload
 
+  """Creates a single `AppPermissionDefaultPermission`."""
+  createAppPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateAppPermissionDefaultPermissionInput!
+  ): CreateAppPermissionDefaultPermissionPayload
+
+  """Creates a single `OrgPermissionDefaultPermission`."""
+  createOrgPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateOrgPermissionDefaultPermissionInput!
+  ): CreateOrgPermissionDefaultPermissionPayload
+
   """Creates a single `AppAdminGrant`."""
   createAppAdminGrant(
     """
@@ -4406,6 +5130,14 @@ type Mutation {
     input: CreateAppOwnerGrantInput!
   ): CreateAppOwnerGrantPayload
 
+  """Creates a single `AppPermissionDefaultGrant`."""
+  createAppPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateAppPermissionDefaultGrantInput!
+  ): CreateAppPermissionDefaultGrantPayload
+
   """Creates a single `OrgAdminGrant`."""
   createOrgAdminGrant(
     """
@@ -4422,6 +5154,14 @@ type Mutation {
     input: CreateOrgOwnerGrantInput!
   ): CreateOrgOwnerGrantPayload
 
+  """Creates a single `OrgPermissionDefaultGrant`."""
+  createOrgPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateOrgPermissionDefaultGrantInput!
+  ): CreateOrgPermissionDefaultGrantPayload
+
   """Creates a single `AppPermission`."""
   createAppPermission(
     """
@@ -4586,6 +5326,26 @@ type Mutation {
     input: UpdateOrgPermissionDefaultInput!
   ): UpdateOrgPermissionDefaultPayload
 
+  """
+  Updates a single `AppPermissionDefaultPermission` using a unique key and a patch.
+  """
+  updateAppPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateAppPermissionDefaultPermissionInput!
+  ): UpdateAppPermissionDefaultPermissionPayload
+
+  """
+  Updates a single `OrgPermissionDefaultPermission` using a unique key and a patch.
+  """
+  updateOrgPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateOrgPermissionDefaultPermissionInput!
+  ): UpdateOrgPermissionDefaultPermissionPayload
+
   """Updates a single `AppAdminGrant` using a unique key and a patch."""
   updateAppAdminGrant(
     """
@@ -4602,6 +5362,16 @@ type Mutation {
     input: UpdateAppOwnerGrantInput!
   ): UpdateAppOwnerGrantPayload
 
+  """
+  Updates a single `AppPermissionDefaultGrant` using a unique key and a patch.
+  """
+  updateAppPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateAppPermissionDefaultGrantInput!
+  ): UpdateAppPermissionDefaultGrantPayload
+
   """Updates a single `OrgAdminGrant` using a unique key and a patch."""
   updateOrgAdminGrant(
     """
@@ -4618,6 +5388,16 @@ type Mutation {
     input: UpdateOrgOwnerGrantInput!
   ): UpdateOrgOwnerGrantPayload
 
+  """
+  Updates a single `OrgPermissionDefaultGrant` using a unique key and a patch.
+  """
+  updateOrgPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateOrgPermissionDefaultGrantInput!
+  ): UpdateOrgPermissionDefaultGrantPayload
+
   """Updates a single `AppPermission` using a unique key and a patch."""
   updateAppPermission(
     """
@@ -4784,6 +5564,22 @@ type Mutation {
     input: DeleteOrgPermissionDefaultInput!
   ): DeleteOrgPermissionDefaultPayload
 
+  """Deletes a single `AppPermissionDefaultPermission` using a unique key."""
+  deleteAppPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteAppPermissionDefaultPermissionInput!
+  ): DeleteAppPermissionDefaultPermissionPayload
+
+  """Deletes a single `OrgPermissionDefaultPermission` using a unique key."""
+  deleteOrgPermissionDefaultPermission(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteOrgPermissionDefaultPermissionInput!
+  ): DeleteOrgPermissionDefaultPermissionPayload
+
   """Deletes a single `AppAdminGrant` using a unique key."""
   deleteAppAdminGrant(
     """
@@ -4797,8 +5593,16 @@ type Mutation {
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: DeleteAppOwnerGrantInput!
-  ): DeleteAppOwnerGrantPayload
+    input: DeleteAppOwnerGrantInput!
+  ): DeleteAppOwnerGrantPayload
+
+  """Deletes a single `AppPermissionDefaultGrant` using a unique key."""
+  deleteAppPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteAppPermissionDefaultGrantInput!
+  ): DeleteAppPermissionDefaultGrantPayload
 
   """Deletes a single `OrgAdminGrant` using a unique key."""
   deleteOrgAdminGrant(
@@ -4816,6 +5620,14 @@ type Mutation {
     input: DeleteOrgOwnerGrantInput!
   ): DeleteOrgOwnerGrantPayload
 
+  """Deletes a single `OrgPermissionDefaultGrant` using a unique key."""
+  deleteOrgPermissionDefaultGrant(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteOrgPermissionDefaultGrantInput!
+  ): DeleteOrgPermissionDefaultGrantPayload
+
   """Deletes a single `AppPermission` using a unique key."""
   deleteAppPermission(
     """
@@ -5154,6 +5966,107 @@ input OrgPermissionDefaultInput {
   entityId: UUID!
 }
 
+"""The output of our create `AppPermissionDefaultPermission` mutation."""
+type CreateAppPermissionDefaultPermissionPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """
+  The `AppPermissionDefaultPermission` that was created by this mutation.
+  """
+  appPermissionDefaultPermission: AppPermissionDefaultPermission
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """
+  An edge for our `AppPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  appPermissionDefaultPermissionEdge(
+    """The method to use when ordering `AppPermissionDefaultPermission`."""
+    orderBy: [AppPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultPermissionEdge
+}
+
+"""All input for the create `AppPermissionDefaultPermission` mutation."""
+input CreateAppPermissionDefaultPermissionInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefaultPermission` to be created by this mutation."""
+  appPermissionDefaultPermission: AppPermissionDefaultPermissionInput!
+}
+
+"""An input for mutations affecting `AppPermissionDefaultPermission`"""
+input AppPermissionDefaultPermissionInput {
+  id: UUID
+
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
+"""The output of our create `OrgPermissionDefaultPermission` mutation."""
+type CreateOrgPermissionDefaultPermissionPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """
+  The `OrgPermissionDefaultPermission` that was created by this mutation.
+  """
+  orgPermissionDefaultPermission: OrgPermissionDefaultPermission
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """
+  An edge for our `OrgPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  orgPermissionDefaultPermissionEdge(
+    """The method to use when ordering `OrgPermissionDefaultPermission`."""
+    orderBy: [OrgPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultPermissionEdge
+}
+
+"""All input for the create `OrgPermissionDefaultPermission` mutation."""
+input CreateOrgPermissionDefaultPermissionInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefaultPermission` to be created by this mutation."""
+  orgPermissionDefaultPermission: OrgPermissionDefaultPermissionInput!
+}
+
+"""An input for mutations affecting `OrgPermissionDefaultPermission`"""
+input OrgPermissionDefaultPermissionInput {
+  id: UUID
+
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID!
+
+  """Scopes this default permission to a specific entity"""
+  entityId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
 """The output of our create `AppAdminGrant` mutation."""
 type CreateAppAdminGrantPayload {
   """
@@ -5196,8 +6109,10 @@ input AppAdminGrantInput {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean
 
-  """The member receiving or losing the admin grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
+  actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
@@ -5245,8 +6160,59 @@ input AppOwnerGrantInput {
   """True to grant ownership, false to revoke ownership"""
   isGrant: Boolean
 
-  """The member receiving or losing the ownership grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the ownership grant; NULL if user was deleted
+  """
+  actorId: UUID
+  grantorId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
+"""The output of our create `AppPermissionDefaultGrant` mutation."""
+type CreateAppPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefaultGrant` that was created by this mutation."""
+  appPermissionDefaultGrant: AppPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `AppPermissionDefaultGrant`. May be used by Relay 1."""
+  appPermissionDefaultGrantEdge(
+    """The method to use when ordering `AppPermissionDefaultGrant`."""
+    orderBy: [AppPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultGrantEdge
+}
+
+"""All input for the create `AppPermissionDefaultGrant` mutation."""
+input CreateAppPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefaultGrant` to be created by this mutation."""
+  appPermissionDefaultGrant: AppPermissionDefaultGrantInput!
+}
+
+"""An input for mutations affecting `AppPermissionDefaultGrant`"""
+input AppPermissionDefaultGrantInput {
+  id: UUID
+
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID!
+
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
@@ -5294,8 +6260,10 @@ input OrgAdminGrantInput {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean
 
-  """The member receiving or losing the admin grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
+  actorId: UUID
 
   """The entity (org or group) this admin grant applies to"""
   entityId: UUID!
@@ -5346,8 +6314,10 @@ input OrgOwnerGrantInput {
   """True to grant ownership, false to revoke ownership"""
   isGrant: Boolean
 
-  """The member receiving or losing the ownership grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the ownership grant; NULL if user was deleted
+  """
+  actorId: UUID
 
   """The entity (org or group) this ownership grant applies to"""
   entityId: UUID!
@@ -5356,6 +6326,58 @@ input OrgOwnerGrantInput {
   updatedAt: Datetime
 }
 
+"""The output of our create `OrgPermissionDefaultGrant` mutation."""
+type CreateOrgPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefaultGrant` that was created by this mutation."""
+  orgPermissionDefaultGrant: OrgPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `OrgPermissionDefaultGrant`. May be used by Relay 1."""
+  orgPermissionDefaultGrantEdge(
+    """The method to use when ordering `OrgPermissionDefaultGrant`."""
+    orderBy: [OrgPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultGrantEdge
+}
+
+"""All input for the create `OrgPermissionDefaultGrant` mutation."""
+input CreateOrgPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefaultGrant` to be created by this mutation."""
+  orgPermissionDefaultGrant: OrgPermissionDefaultGrantInput!
+}
+
+"""An input for mutations affecting `OrgPermissionDefaultGrant`"""
+input OrgPermissionDefaultGrantInput {
+  id: UUID
+
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID!
+
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean
+  grantorId: UUID
+
+  """Scopes this audit entry to a specific entity"""
+  entityId: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
 """The output of our create `AppPermission` mutation."""
 type CreateAppPermissionPayload {
   """
@@ -5694,8 +6716,10 @@ input AppGrantInput {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean
 
-  """The member receiving or losing the permission grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
+  actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
@@ -5898,8 +6922,10 @@ input OrgGrantInput {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean
 
-  """The member receiving or losing the permission grant"""
-  actorId: UUID!
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
+  actorId: UUID
 
   """The entity (org or group) this permission grant applies to"""
   entityId: UUID!
@@ -6472,8 +7498,110 @@ type UpdateOrgMemberPayload {
   ): OrgMemberEdge
 }
 
-"""All input for the `updateOrgMember` mutation."""
-input UpdateOrgMemberInput {
+"""All input for the `updateOrgMember` mutation."""
+input UpdateOrgMemberInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `OrgMember` being updated.
+  """
+  orgMemberPatch: OrgMemberPatch!
+}
+
+"""
+Represents an update to a `OrgMember`. Fields that are set will be updated.
+"""
+input OrgMemberPatch {
+  id: UUID
+
+  """Whether this member has admin privileges"""
+  isAdmin: Boolean
+
+  """References the user who is a member"""
+  actorId: UUID
+
+  """References the entity (org or group) this member belongs to"""
+  entityId: UUID
+}
+
+"""The output of our update `AppPermissionDefault` mutation."""
+type UpdateAppPermissionDefaultPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefault` that was updated by this mutation."""
+  appPermissionDefault: AppPermissionDefault
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `AppPermissionDefault`. May be used by Relay 1."""
+  appPermissionDefaultEdge(
+    """The method to use when ordering `AppPermissionDefault`."""
+    orderBy: [AppPermissionDefaultOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultEdge
+}
+
+"""All input for the `updateAppPermissionDefault` mutation."""
+input UpdateAppPermissionDefaultInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `AppPermissionDefault` being updated.
+  """
+  appPermissionDefaultPatch: AppPermissionDefaultPatch!
+}
+
+"""
+Represents an update to a `AppPermissionDefault`. Fields that are set will be updated.
+"""
+input AppPermissionDefaultPatch {
+  id: UUID
+
+  """Default permission bitmask applied to new members"""
+  permissions: BitString
+}
+
+"""The output of our update `OrgPermissionDefault` mutation."""
+type UpdateOrgPermissionDefaultPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefault` that was updated by this mutation."""
+  orgPermissionDefault: OrgPermissionDefault
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `OrgPermissionDefault`. May be used by Relay 1."""
+  orgPermissionDefaultEdge(
+    """The method to use when ordering `OrgPermissionDefault`."""
+    orderBy: [OrgPermissionDefaultOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultEdge
+}
+
+"""All input for the `updateOrgPermissionDefault` mutation."""
+input UpdateOrgPermissionDefaultInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -6482,52 +7610,53 @@ input UpdateOrgMemberInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `OrgMember` being updated.
+  An object where the defined keys will be set on the `OrgPermissionDefault` being updated.
   """
-  orgMemberPatch: OrgMemberPatch!
+  orgPermissionDefaultPatch: OrgPermissionDefaultPatch!
 }
 
 """
-Represents an update to a `OrgMember`. Fields that are set will be updated.
+Represents an update to a `OrgPermissionDefault`. Fields that are set will be updated.
 """
-input OrgMemberPatch {
+input OrgPermissionDefaultPatch {
   id: UUID
 
-  """Whether this member has admin privileges"""
-  isAdmin: Boolean
-
-  """References the user who is a member"""
-  actorId: UUID
+  """Default permission bitmask applied to new members"""
+  permissions: BitString
 
-  """References the entity (org or group) this member belongs to"""
+  """References the entity these default permissions apply to"""
   entityId: UUID
 }
 
-"""The output of our update `AppPermissionDefault` mutation."""
-type UpdateAppPermissionDefaultPayload {
+"""The output of our update `AppPermissionDefaultPermission` mutation."""
+type UpdateAppPermissionDefaultPermissionPayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `AppPermissionDefault` that was updated by this mutation."""
-  appPermissionDefault: AppPermissionDefault
+  """
+  The `AppPermissionDefaultPermission` that was updated by this mutation.
+  """
+  appPermissionDefaultPermission: AppPermissionDefaultPermission
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `AppPermissionDefault`. May be used by Relay 1."""
-  appPermissionDefaultEdge(
-    """The method to use when ordering `AppPermissionDefault`."""
-    orderBy: [AppPermissionDefaultOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): AppPermissionDefaultEdge
+  """
+  An edge for our `AppPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  appPermissionDefaultPermissionEdge(
+    """The method to use when ordering `AppPermissionDefaultPermission`."""
+    orderBy: [AppPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultPermissionEdge
 }
 
-"""All input for the `updateAppPermissionDefault` mutation."""
-input UpdateAppPermissionDefaultInput {
+"""All input for the `updateAppPermissionDefaultPermission` mutation."""
+input UpdateAppPermissionDefaultPermissionInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -6536,46 +7665,52 @@ input UpdateAppPermissionDefaultInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `AppPermissionDefault` being updated.
+  An object where the defined keys will be set on the `AppPermissionDefaultPermission` being updated.
   """
-  appPermissionDefaultPatch: AppPermissionDefaultPatch!
+  appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch!
 }
 
 """
-Represents an update to a `AppPermissionDefault`. Fields that are set will be updated.
+Represents an update to a `AppPermissionDefaultPermission`. Fields that are set will be updated.
 """
-input AppPermissionDefaultPatch {
+input AppPermissionDefaultPermissionPatch {
   id: UUID
 
-  """Default permission bitmask applied to new members"""
-  permissions: BitString
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
 }
 
-"""The output of our update `OrgPermissionDefault` mutation."""
-type UpdateOrgPermissionDefaultPayload {
+"""The output of our update `OrgPermissionDefaultPermission` mutation."""
+type UpdateOrgPermissionDefaultPermissionPayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `OrgPermissionDefault` that was updated by this mutation."""
-  orgPermissionDefault: OrgPermissionDefault
+  """
+  The `OrgPermissionDefaultPermission` that was updated by this mutation.
+  """
+  orgPermissionDefaultPermission: OrgPermissionDefaultPermission
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `OrgPermissionDefault`. May be used by Relay 1."""
-  orgPermissionDefaultEdge(
-    """The method to use when ordering `OrgPermissionDefault`."""
-    orderBy: [OrgPermissionDefaultOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): OrgPermissionDefaultEdge
+  """
+  An edge for our `OrgPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  orgPermissionDefaultPermissionEdge(
+    """The method to use when ordering `OrgPermissionDefaultPermission`."""
+    orderBy: [OrgPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultPermissionEdge
 }
 
-"""All input for the `updateOrgPermissionDefault` mutation."""
-input UpdateOrgPermissionDefaultInput {
+"""All input for the `updateOrgPermissionDefaultPermission` mutation."""
+input UpdateOrgPermissionDefaultPermissionInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -6584,22 +7719,24 @@ input UpdateOrgPermissionDefaultInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `OrgPermissionDefault` being updated.
+  An object where the defined keys will be set on the `OrgPermissionDefaultPermission` being updated.
   """
-  orgPermissionDefaultPatch: OrgPermissionDefaultPatch!
+  orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch!
 }
 
 """
-Represents an update to a `OrgPermissionDefault`. Fields that are set will be updated.
+Represents an update to a `OrgPermissionDefaultPermission`. Fields that are set will be updated.
 """
-input OrgPermissionDefaultPatch {
+input OrgPermissionDefaultPermissionPatch {
   id: UUID
 
-  """Default permission bitmask applied to new members"""
-  permissions: BitString
+  """References the permission included in the defaults bundle"""
+  permissionId: UUID
 
-  """References the entity these default permissions apply to"""
+  """Scopes this default permission to a specific entity"""
   entityId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
 }
 
 """The output of our update `AppAdminGrant` mutation."""
@@ -6649,7 +7786,9 @@ input AppAdminGrantPatch {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean
 
-  """The member receiving or losing the admin grant"""
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
   actorId: UUID
   grantorId: UUID
   createdAt: Datetime
@@ -6703,13 +7842,69 @@ input AppOwnerGrantPatch {
   """True to grant ownership, false to revoke ownership"""
   isGrant: Boolean
 
-  """The member receiving or losing the ownership grant"""
+  """
+  The member receiving or losing the ownership grant; NULL if user was deleted
+  """
   actorId: UUID
   grantorId: UUID
   createdAt: Datetime
   updatedAt: Datetime
 }
 
+"""The output of our update `AppPermissionDefaultGrant` mutation."""
+type UpdateAppPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefaultGrant` that was updated by this mutation."""
+  appPermissionDefaultGrant: AppPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `AppPermissionDefaultGrant`. May be used by Relay 1."""
+  appPermissionDefaultGrantEdge(
+    """The method to use when ordering `AppPermissionDefaultGrant`."""
+    orderBy: [AppPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultGrantEdge
+}
+
+"""All input for the `updateAppPermissionDefaultGrant` mutation."""
+input UpdateAppPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `AppPermissionDefaultGrant` being updated.
+  """
+  appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch!
+}
+
+"""
+Represents an update to a `AppPermissionDefaultGrant`. Fields that are set will be updated.
+"""
+input AppPermissionDefaultGrantPatch {
+  id: UUID
+
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID
+
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean
+  grantorId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
 """The output of our update `OrgAdminGrant` mutation."""
 type UpdateOrgAdminGrantPayload {
   """
@@ -6757,7 +7952,9 @@ input OrgAdminGrantPatch {
   """True to grant admin, false to revoke admin"""
   isGrant: Boolean
 
-  """The member receiving or losing the admin grant"""
+  """
+  The member receiving or losing the admin grant; NULL if user was deleted
+  """
   actorId: UUID
 
   """The entity (org or group) this admin grant applies to"""
@@ -6814,7 +8011,9 @@ input OrgOwnerGrantPatch {
   """True to grant ownership, false to revoke ownership"""
   isGrant: Boolean
 
-  """The member receiving or losing the ownership grant"""
+  """
+  The member receiving or losing the ownership grant; NULL if user was deleted
+  """
   actorId: UUID
 
   """The entity (org or group) this ownership grant applies to"""
@@ -6824,6 +8023,63 @@ input OrgOwnerGrantPatch {
   updatedAt: Datetime
 }
 
+"""The output of our update `OrgPermissionDefaultGrant` mutation."""
+type UpdateOrgPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefaultGrant` that was updated by this mutation."""
+  orgPermissionDefaultGrant: OrgPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `OrgPermissionDefaultGrant`. May be used by Relay 1."""
+  orgPermissionDefaultGrantEdge(
+    """The method to use when ordering `OrgPermissionDefaultGrant`."""
+    orderBy: [OrgPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultGrantEdge
+}
+
+"""All input for the `updateOrgPermissionDefaultGrant` mutation."""
+input UpdateOrgPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `OrgPermissionDefaultGrant` being updated.
+  """
+  orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch!
+}
+
+"""
+Represents an update to a `OrgPermissionDefaultGrant`. Fields that are set will be updated.
+"""
+input OrgPermissionDefaultGrantPatch {
+  id: UUID
+
+  """References the permission being added to or removed from defaults"""
+  permissionId: UUID
+
+  """True to add the permission to defaults, false to remove it"""
+  isGrant: Boolean
+  grantorId: UUID
+
+  """Scopes this audit entry to a specific entity"""
+  entityId: UUID
+  createdAt: Datetime
+  updatedAt: Datetime
+}
+
 """The output of our update `AppPermission` mutation."""
 type UpdateAppPermissionPayload {
   """
@@ -7196,7 +8452,9 @@ input AppGrantPatch {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean
 
-  """The member receiving or losing the permission grant"""
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
   actorId: UUID
   grantorId: UUID
   createdAt: Datetime
@@ -7420,7 +8678,9 @@ input OrgGrantPatch {
   """True to grant the permissions, false to revoke them"""
   isGrant: Boolean
 
-  """The member receiving or losing the permission grant"""
+  """
+  The member receiving or losing the permission grant; NULL if user was deleted
+  """
   actorId: UUID
 
   """The entity (org or group) this permission grant applies to"""
@@ -8111,6 +9371,80 @@ input DeleteOrgPermissionDefaultInput {
   id: UUID!
 }
 
+"""The output of our delete `AppPermissionDefaultPermission` mutation."""
+type DeleteAppPermissionDefaultPermissionPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """
+  The `AppPermissionDefaultPermission` that was deleted by this mutation.
+  """
+  appPermissionDefaultPermission: AppPermissionDefaultPermission
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """
+  An edge for our `AppPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  appPermissionDefaultPermissionEdge(
+    """The method to use when ordering `AppPermissionDefaultPermission`."""
+    orderBy: [AppPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultPermissionEdge
+}
+
+"""All input for the `deleteAppPermissionDefaultPermission` mutation."""
+input DeleteAppPermissionDefaultPermissionInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
+"""The output of our delete `OrgPermissionDefaultPermission` mutation."""
+type DeleteOrgPermissionDefaultPermissionPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """
+  The `OrgPermissionDefaultPermission` that was deleted by this mutation.
+  """
+  orgPermissionDefaultPermission: OrgPermissionDefaultPermission
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """
+  An edge for our `OrgPermissionDefaultPermission`. May be used by Relay 1.
+  """
+  orgPermissionDefaultPermissionEdge(
+    """The method to use when ordering `OrgPermissionDefaultPermission`."""
+    orderBy: [OrgPermissionDefaultPermissionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultPermissionEdge
+}
+
+"""All input for the `deleteOrgPermissionDefaultPermission` mutation."""
+input DeleteOrgPermissionDefaultPermissionInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
 """The output of our delete `AppAdminGrant` mutation."""
 type DeleteAppAdminGrantPayload {
   """
@@ -8177,6 +9511,39 @@ input DeleteAppOwnerGrantInput {
   id: UUID!
 }
 
+"""The output of our delete `AppPermissionDefaultGrant` mutation."""
+type DeleteAppPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `AppPermissionDefaultGrant` that was deleted by this mutation."""
+  appPermissionDefaultGrant: AppPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `AppPermissionDefaultGrant`. May be used by Relay 1."""
+  appPermissionDefaultGrantEdge(
+    """The method to use when ordering `AppPermissionDefaultGrant`."""
+    orderBy: [AppPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): AppPermissionDefaultGrantEdge
+}
+
+"""All input for the `deleteAppPermissionDefaultGrant` mutation."""
+input DeleteAppPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
 """The output of our delete `OrgAdminGrant` mutation."""
 type DeleteOrgAdminGrantPayload {
   """
@@ -8243,6 +9610,39 @@ input DeleteOrgOwnerGrantInput {
   id: UUID!
 }
 
+"""The output of our delete `OrgPermissionDefaultGrant` mutation."""
+type DeleteOrgPermissionDefaultGrantPayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `OrgPermissionDefaultGrant` that was deleted by this mutation."""
+  orgPermissionDefaultGrant: OrgPermissionDefaultGrant
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `OrgPermissionDefaultGrant`. May be used by Relay 1."""
+  orgPermissionDefaultGrantEdge(
+    """The method to use when ordering `OrgPermissionDefaultGrant`."""
+    orderBy: [OrgPermissionDefaultGrantOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): OrgPermissionDefaultGrantEdge
+}
+
+"""All input for the `deleteOrgPermissionDefaultGrant` mutation."""
+input DeleteOrgPermissionDefaultGrantInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
 """The output of our delete `AppPermission` mutation."""
 type DeleteAppPermissionPayload {
   """
diff --git a/sdk/constructive-sdk/schemas/agent.graphql b/sdk/constructive-sdk/schemas/agent.graphql
index 6b631981d..6481664b5 100644
--- a/sdk/constructive-sdk/schemas/agent.graphql
+++ b/sdk/constructive-sdk/schemas/agent.graphql
@@ -558,6 +558,35 @@ type Agent {
     orderBy: [AgentThreadOrderBy!] = [PRIMARY_KEY_ASC]
   ): AgentThreadConnection!
 
+  """Reads and enables pagination through a set of `AgentMessage`."""
+  agentMessages(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: AgentMessageFilter
+
+    """The method to use when ordering `AgentMessage`."""
+    orderBy: [AgentMessageOrderBy!] = [PRIMARY_KEY_ASC]
+  ): AgentMessageConnection!
+
   """Reads and enables pagination through a set of `Agent`."""
   childAgents(
     """Only read the first `n` values of the set."""
@@ -762,6 +791,12 @@ input AgentFilter {
   """`agentThreads` exist."""
   agentThreadsExist: Boolean
 
+  """Filter by the object’s `agentMessages` relation."""
+  agentMessages: AgentToManyAgentMessageFilter
+
+  """`agentMessages` exist."""
+  agentMessagesExist: Boolean
+
   """Filter by the object’s `childAgents` relation."""
   childAgents: AgentToManyAgentFilter
 
@@ -1411,8 +1446,8 @@ input AgentMessageFilter {
   """Filter by the object’s `updatedAt` field."""
   updatedAt: DatetimeFilter
 
-  """Filter by the object’s `ownerId` field."""
-  ownerId: UUIDFilter
+  """Filter by the object’s `actorId` field."""
+  actorId: UUIDFilter
 
   """Filter by the object’s `parts` field."""
   parts: JSONFilter
@@ -1426,6 +1461,9 @@ input AgentMessageFilter {
   """Filter by the object’s `model` field."""
   model: StringFilter
 
+  """Filter by the object’s `agentId` field."""
+  agentId: UUIDFilter
+
   """Checks for all expressions in this list."""
   and: [AgentMessageFilter!]
 
@@ -1435,6 +1473,12 @@ input AgentMessageFilter {
   """Negates the expression."""
   not: AgentMessageFilter
 
+  """Filter by the object’s `agent` relation."""
+  agent: AgentFilter
+
+  """A related `agent` exists."""
+  agentExists: Boolean
+
   """Filter by the object’s `thread` relation."""
   thread: AgentThreadFilter
 }
@@ -1527,8 +1571,8 @@ input AgentTaskFilter {
   """Filter by the object’s `updatedAt` field."""
   updatedAt: DatetimeFilter
 
-  """Filter by the object’s `ownerId` field."""
-  ownerId: UUIDFilter
+  """Filter by the object’s `actorId` field."""
+  actorId: UUIDFilter
 
   """Filter by the object’s `status` field."""
   status: StringFilter
@@ -1618,6 +1662,20 @@ input IntFilter {
   greaterThanOrEqualTo: Int
 }
 
+"""
+A filter to be used against many `AgentMessage` object types. All fields are combined with a logical ‘and.’
+"""
+input AgentToManyAgentMessageFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: AgentMessageFilter
+
+  """Filters to entities where every related entity matches."""
+  every: AgentMessageFilter
+
+  """Filters to entities where no related entity matches."""
+  none: AgentMessageFilter
+}
+
 """
 A filter to be used against many `Agent` object types. All fields are combined with a logical ‘and.’
 """
@@ -1724,30 +1782,6 @@ enum AgentThreadOrderBy {
   PARENT_THREAD_ID_DESC
 }
 
-"""Shared system prompt templates for agent conversations"""
-type AgentPrompt {
-  id: UUID!
-  createdAt: Datetime
-  updatedAt: Datetime
-  createdBy: UUID
-  updatedBy: UUID
-
-  """Unique name for lookup (e.g. default, code-review, sales-assistant)"""
-  name: String!
-
-  """The system prompt template content"""
-  content: String!
-
-  """What this prompt template is for"""
-  description: String
-
-  """Whether this is the default prompt for the entity/app"""
-  isDefault: Boolean!
-
-  """Variables, tags, category metadata"""
-  metadata: JSON
-}
-
 """A connection to a list of `AgentMessage` values."""
 type AgentMessageConnection {
   """A list of `AgentMessage` objects."""
@@ -1771,8 +1805,8 @@ type AgentMessage {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this message"""
-  ownerId: UUID!
+  """User who authored this message"""
+  actorId: UUID!
 
   """Message content: TextPart and ToolPart array"""
   parts: JSON
@@ -1786,6 +1820,12 @@ type AgentMessage {
   """LLM model that generated this response"""
   model: String
 
+  """Agent that authored this message (NULL for human messages)"""
+  agentId: UUID
+
+  """Reads a single `Agent` that is related to this `AgentMessage`."""
+  agent: Agent
+
   """Reads a single `AgentThread` that is related to this `AgentMessage`."""
   thread: AgentThread
 }
@@ -1810,8 +1850,8 @@ enum AgentMessageOrderBy {
   CREATED_AT_DESC
   UPDATED_AT_ASC
   UPDATED_AT_DESC
-  OWNER_ID_ASC
-  OWNER_ID_DESC
+  ACTOR_ID_ASC
+  ACTOR_ID_DESC
   PARTS_ASC
   PARTS_DESC
   THREAD_ID_ASC
@@ -1820,6 +1860,32 @@ enum AgentMessageOrderBy {
   AUTHOR_ROLE_DESC
   MODEL_ASC
   MODEL_DESC
+  AGENT_ID_ASC
+  AGENT_ID_DESC
+}
+
+"""Shared system prompt templates for agent conversations"""
+type AgentPrompt {
+  id: UUID!
+  createdAt: Datetime
+  updatedAt: Datetime
+  createdBy: UUID
+  updatedBy: UUID
+
+  """Unique name for lookup (e.g. default, code-review, sales-assistant)"""
+  name: String!
+
+  """The system prompt template content"""
+  content: String!
+
+  """What this prompt template is for"""
+  description: String
+
+  """Whether this is the default prompt for the entity/app"""
+  isDefault: Boolean!
+
+  """Variables, tags, category metadata"""
+  metadata: JSON
 }
 
 """Methods to use when ordering `AgentPlan`."""
@@ -1868,8 +1934,8 @@ type AgentTask {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this task"""
-  ownerId: UUID!
+  """User who authored this task"""
+  actorId: UUID!
 
   """Current status of this task"""
   status: String!
@@ -1930,8 +1996,8 @@ enum AgentTaskOrderBy {
   CREATED_AT_DESC
   UPDATED_AT_ASC
   UPDATED_AT_DESC
-  OWNER_ID_ASC
-  OWNER_ID_DESC
+  ACTOR_ID_ASC
+  ACTOR_ID_DESC
   STATUS_ASC
   STATUS_DESC
   PLAN_ID_ASC
@@ -3380,8 +3446,8 @@ input AgentMessageInput {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this message"""
-  ownerId: UUID
+  """User who authored this message"""
+  actorId: UUID
 
   """Message content: TextPart and ToolPart array"""
   parts: JSON
@@ -3394,6 +3460,9 @@ input AgentMessageInput {
 
   """LLM model that generated this response"""
   model: String
+
+  """Agent that authored this message (NULL for human messages)"""
+  agentId: UUID
 }
 
 """The output of our create `AgentTask` mutation."""
@@ -3437,8 +3506,8 @@ input AgentTaskInput {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this task"""
-  ownerId: UUID
+  """User who authored this task"""
+  actorId: UUID
 
   """Current status of this task"""
   status: String
@@ -3987,8 +4056,8 @@ input AgentMessagePatch {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this message"""
-  ownerId: UUID
+  """User who authored this message"""
+  actorId: UUID
 
   """Message content: TextPart and ToolPart array"""
   parts: JSON
@@ -4001,6 +4070,9 @@ input AgentMessagePatch {
 
   """LLM model that generated this response"""
   model: String
+
+  """Agent that authored this message (NULL for human messages)"""
+  agentId: UUID
 }
 
 """The output of our update `AgentTask` mutation."""
@@ -4049,8 +4121,8 @@ input AgentTaskPatch {
   createdAt: Datetime
   updatedAt: Datetime
 
-  """User who owns this task"""
-  ownerId: UUID
+  """User who authored this task"""
+  actorId: UUID
 
   """Current status of this task"""
   status: String
diff --git a/sdk/constructive-sdk/schemas/api.graphql b/sdk/constructive-sdk/schemas/api.graphql
index 33de4d0fc..ac1826305 100644
--- a/sdk/constructive-sdk/schemas/api.graphql
+++ b/sdk/constructive-sdk/schemas/api.graphql
@@ -727,6 +727,35 @@ type Query {
     orderBy: [DatabaseSettingOrderBy!] = [PRIMARY_KEY_ASC]
   ): DatabaseSettingConnection
 
+  """Reads and enables pagination through a set of `CompositeType`."""
+  compositeTypes(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: CompositeTypeFilter
+
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!] = [PRIMARY_KEY_ASC]
+  ): CompositeTypeConnection
+
   """Reads and enables pagination through a set of `Enum`."""
   enums(
     """Only read the first `n` values of the set."""
@@ -2030,6 +2059,35 @@ type Database {
     orderBy: [PartitionOrderBy!] = [PRIMARY_KEY_ASC]
   ): PartitionConnection!
 
+  """Reads and enables pagination through a set of `CompositeType`."""
+  compositeTypes(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: CompositeTypeFilter
+
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!] = [PRIMARY_KEY_ASC]
+  ): CompositeTypeConnection!
+
   """Reads and enables pagination through a set of `DatabaseTransfer`."""
   databaseTransfers(
     """Only read the first `n` values of the set."""
@@ -2610,6 +2668,35 @@ type Schema {
     orderBy: [FunctionOrderBy!] = [PRIMARY_KEY_ASC]
   ): FunctionConnection!
 
+  """Reads and enables pagination through a set of `CompositeType`."""
+  compositeTypes(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: CompositeTypeFilter
+
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!] = [PRIMARY_KEY_ASC]
+  ): CompositeTypeConnection!
+
   """Reads and enables pagination through a set of `ApiSchema`."""
   apiSchemas(
     """Only read the first `n` values of the set."""
@@ -2684,9 +2771,9 @@ type Table {
   partitionStrategy: String
   partitionKeyNames: [String]
   partitionKeyTypes: [String]
-  inheritsId: UUID
   createdAt: Datetime
   updatedAt: Datetime
+  inheritsId: UUID
 
   """Reads a single `Database` that is related to this `Table`."""
   database: Database
@@ -3954,6 +4041,12 @@ input DatabaseFilter {
   """`partitions` exist."""
   partitionsExist: Boolean
 
+  """Filter by the object’s `compositeTypes` relation."""
+  compositeTypes: DatabaseToManyCompositeTypeFilter
+
+  """`compositeTypes` exist."""
+  compositeTypesExist: Boolean
+
   """Filter by the object’s `databaseTransfers` relation."""
   databaseTransfers: DatabaseToManyDatabaseTransferFilter
 
@@ -4159,6 +4252,12 @@ input SchemaFilter {
   """`functions` exist."""
   functionsExist: Boolean
 
+  """Filter by the object’s `compositeTypes` relation."""
+  compositeTypes: SchemaToManyCompositeTypeFilter
+
+  """`compositeTypes` exist."""
+  compositeTypesExist: Boolean
+
   """Filter by the object’s `apiSchemas` relation."""
   apiSchemas: SchemaToManyApiSchemaFilter
 
@@ -4286,15 +4385,15 @@ input TableFilter {
   """Filter by the object’s `partitionKeyTypes` field."""
   partitionKeyTypes: StringListFilter
 
-  """Filter by the object’s `inheritsId` field."""
-  inheritsId: UUIDFilter
-
   """Filter by the object’s `createdAt` field."""
   createdAt: DatetimeFilter
 
   """Filter by the object’s `updatedAt` field."""
   updatedAt: DatetimeFilter
 
+  """Filter by the object’s `inheritsId` field."""
+  inheritsId: UUIDFilter
+
   """Checks for all expressions in this list."""
   and: [TableFilter!]
 
@@ -5993,6 +6092,76 @@ input FunctionFilter {
   schema: SchemaFilter
 }
 
+"""
+A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’
+"""
+input SchemaToManyCompositeTypeFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: CompositeTypeFilter
+
+  """Filters to entities where every related entity matches."""
+  every: CompositeTypeFilter
+
+  """Filters to entities where no related entity matches."""
+  none: CompositeTypeFilter
+}
+
+"""
+A filter to be used against `CompositeType` object types. All fields are combined with a logical ‘and.’
+"""
+input CompositeTypeFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
+
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
+
+  """Filter by the object’s `name` field."""
+  name: StringFilter
+
+  """Filter by the object’s `label` field."""
+  label: StringFilter
+
+  """Filter by the object’s `description` field."""
+  description: StringFilter
+
+  """Filter by the object’s `attributes` field."""
+  attributes: JSONFilter
+
+  """Filter by the object’s `smartTags` field."""
+  smartTags: JSONFilter
+
+  """Filter by the object’s `category` field."""
+  category: ObjectCategoryFilter
+
+  """Filter by the object’s `module` field."""
+  module: StringFilter
+
+  """Filter by the object’s `scope` field."""
+  scope: IntFilter
+
+  """Filter by the object’s `tags` field."""
+  tags: StringListFilter
+
+  """Checks for all expressions in this list."""
+  and: [CompositeTypeFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [CompositeTypeFilter!]
+
+  """Negates the expression."""
+  not: CompositeTypeFilter
+
+  """Filter by the object’s `database` relation."""
+  database: DatabaseFilter
+
+  """Filter by the object’s `schema` relation."""
+  schema: SchemaFilter
+}
+
 """
 A filter to be used against many `ApiSchema` object types. All fields are combined with a logical ‘and.’
 """
@@ -7431,6 +7600,20 @@ input DatabaseToManyPartitionFilter {
   none: PartitionFilter
 }
 
+"""
+A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’
+"""
+input DatabaseToManyCompositeTypeFilter {
+  """Filters to entities where at least one related entity matches."""
+  some: CompositeTypeFilter
+
+  """Filters to entities where every related entity matches."""
+  every: CompositeTypeFilter
+
+  """Filters to entities where no related entity matches."""
+  none: CompositeTypeFilter
+}
+
 """
 A filter to be used against many `DatabaseTransfer` object types. All fields are combined with a logical ‘and.’
 """
@@ -9611,12 +9794,12 @@ enum TableOrderBy {
   PARTITION_KEY_NAMES_DESC
   PARTITION_KEY_TYPES_ASC
   PARTITION_KEY_TYPES_DESC
-  INHERITS_ID_ASC
-  INHERITS_ID_DESC
   CREATED_AT_ASC
   CREATED_AT_DESC
   UPDATED_AT_ASC
   UPDATED_AT_DESC
+  INHERITS_ID_ASC
+  INHERITS_ID_DESC
 }
 
 """A connection to a list of `SchemaGrant` values."""
@@ -9837,6 +10020,84 @@ enum FunctionOrderBy {
   NAME_DESC
 }
 
+"""A connection to a list of `CompositeType` values."""
+type CompositeTypeConnection {
+  """A list of `CompositeType` objects."""
+  nodes: [CompositeType]!
+
+  """
+  A list of edges which contains the `CompositeType` and cursor to aid in pagination.
+  """
+  edges: [CompositeTypeEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """The count of *all* `CompositeType` you could get from the connection."""
+  totalCount: Int!
+}
+
+type CompositeType {
+  id: UUID!
+  databaseId: UUID!
+  schemaId: UUID!
+  name: String!
+  label: String
+  description: String
+  attributes: JSON!
+  smartTags: JSON
+  category: ObjectCategory!
+  module: String
+  scope: Int
+  tags: [String]!
+
+  """Reads a single `Database` that is related to this `CompositeType`."""
+  database: Database
+
+  """Reads a single `Schema` that is related to this `CompositeType`."""
+  schema: Schema
+}
+
+"""A `CompositeType` edge in the connection."""
+type CompositeTypeEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `CompositeType` at the end of the edge."""
+  node: CompositeType
+}
+
+"""Methods to use when ordering `CompositeType`."""
+enum CompositeTypeOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  DATABASE_ID_ASC
+  DATABASE_ID_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  NAME_ASC
+  NAME_DESC
+  LABEL_ASC
+  LABEL_DESC
+  DESCRIPTION_ASC
+  DESCRIPTION_DESC
+  ATTRIBUTES_ASC
+  ATTRIBUTES_DESC
+  SMART_TAGS_ASC
+  SMART_TAGS_DESC
+  CATEGORY_ASC
+  CATEGORY_DESC
+  MODULE_ASC
+  MODULE_DESC
+  SCOPE_ASC
+  SCOPE_DESC
+  TAGS_ASC
+  TAGS_DESC
+}
+
 """A connection to a list of `ApiSchema` values."""
 type ApiSchemaConnection {
   """A list of `ApiSchema` objects."""
@@ -12680,6 +12941,14 @@ type Mutation {
     input: CreateDatabaseSettingInput!
   ): CreateDatabaseSettingPayload
 
+  """Creates a single `CompositeType`."""
+  createCompositeType(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateCompositeTypeInput!
+  ): CreateCompositeTypePayload
+
   """Creates a single `Enum`."""
   createEnum(
     """
@@ -13024,6 +13293,14 @@ type Mutation {
     input: UpdateDatabaseSettingInput!
   ): UpdateDatabaseSettingPayload
 
+  """Updates a single `CompositeType` using a unique key and a patch."""
+  updateCompositeType(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateCompositeTypeInput!
+  ): UpdateCompositeTypePayload
+
   """Updates a single `Enum` using a unique key and a patch."""
   updateEnum(
     """
@@ -13364,6 +13641,14 @@ type Mutation {
     input: DeleteDatabaseSettingInput!
   ): DeleteDatabaseSettingPayload
 
+  """Deletes a single `CompositeType` using a unique key."""
+  deleteCompositeType(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteCompositeTypeInput!
+  ): DeleteCompositeTypePayload
+
   """Deletes a single `Enum` using a unique key."""
   deleteEnum(
     """
@@ -15115,6 +15400,57 @@ input DatabaseSettingInput {
   options: JSON
 }
 
+"""The output of our create `CompositeType` mutation."""
+type CreateCompositeTypePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `CompositeType` that was created by this mutation."""
+  compositeType: CompositeType
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `CompositeType`. May be used by Relay 1."""
+  compositeTypeEdge(
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): CompositeTypeEdge
+}
+
+"""All input for the create `CompositeType` mutation."""
+input CreateCompositeTypeInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `CompositeType` to be created by this mutation."""
+  compositeType: CompositeTypeInput!
+}
+
+"""An input for mutations affecting `CompositeType`"""
+input CompositeTypeInput {
+  id: UUID
+  databaseId: UUID!
+  schemaId: UUID!
+  name: String!
+  label: String
+  description: String
+  attributes: JSON
+  smartTags: JSON
+  category: ObjectCategory
+  module: String
+  scope: Int
+  tags: [String]
+}
+
 """The output of our create `Enum` mutation."""
 type CreateEnumPayload {
   """
@@ -16333,9 +16669,9 @@ input TableInput {
   partitionStrategy: String
   partitionKeyNames: [String]
   partitionKeyTypes: [String]
-  inheritsId: UUID
   createdAt: Datetime
   updatedAt: Datetime
+  inheritsId: UUID
 }
 
 """The output of our update `Function` mutation."""
@@ -17719,6 +18055,62 @@ input DatabaseSettingPatch {
   options: JSON
 }
 
+"""The output of our update `CompositeType` mutation."""
+type UpdateCompositeTypePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `CompositeType` that was updated by this mutation."""
+  compositeType: CompositeType
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `CompositeType`. May be used by Relay 1."""
+  compositeTypeEdge(
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): CompositeTypeEdge
+}
+
+"""All input for the `updateCompositeType` mutation."""
+input UpdateCompositeTypeInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `CompositeType` being updated.
+  """
+  compositeTypePatch: CompositeTypePatch!
+}
+
+"""
+Represents an update to a `CompositeType`. Fields that are set will be updated.
+"""
+input CompositeTypePatch {
+  id: UUID
+  databaseId: UUID
+  schemaId: UUID
+  name: String
+  label: String
+  description: String
+  attributes: JSON
+  smartTags: JSON
+  category: ObjectCategory
+  module: String
+  scope: Int
+  tags: [String]
+}
+
 """The output of our update `Enum` mutation."""
 type UpdateEnumPayload {
   """
@@ -19001,9 +19393,9 @@ input TablePatch {
   partitionStrategy: String
   partitionKeyNames: [String]
   partitionKeyTypes: [String]
-  inheritsId: UUID
   createdAt: Datetime
   updatedAt: Datetime
+  inheritsId: UUID
 }
 
 """The output of our delete `Function` mutation."""
@@ -19787,6 +20179,39 @@ input DeleteDatabaseSettingInput {
   id: UUID!
 }
 
+"""The output of our delete `CompositeType` mutation."""
+type DeleteCompositeTypePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `CompositeType` that was deleted by this mutation."""
+  compositeType: CompositeType
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `CompositeType`. May be used by Relay 1."""
+  compositeTypeEdge(
+    """The method to use when ordering `CompositeType`."""
+    orderBy: [CompositeTypeOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): CompositeTypeEdge
+}
+
+"""All input for the `deleteCompositeType` mutation."""
+input DeleteCompositeTypeInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
 """The output of our delete `Enum` mutation."""
 type DeleteEnumPayload {
   """
diff --git a/sdk/constructive-sdk/schemas/modules.graphql b/sdk/constructive-sdk/schemas/modules.graphql
index 84efc4df4..bdb80e43c 100644
--- a/sdk/constructive-sdk/schemas/modules.graphql
+++ b/sdk/constructive-sdk/schemas/modules.graphql
@@ -660,35 +660,6 @@ type Query {
     orderBy: [CryptoAuthModuleOrderBy!] = [PRIMARY_KEY_ASC]
   ): CryptoAuthModuleConnection
 
-  """Reads and enables pagination through a set of `RateLimitMetersModule`."""
-  rateLimitMetersModules(
-    """Only read the first `n` values of the set."""
-    first: Int
-
-    """Only read the last `n` values of the set."""
-    last: Int
-
-    """
-    Skip the first `n` values from our `after` cursor, an alternative to cursor
-    based pagination. May not be used with `last`.
-    """
-    offset: Int
-
-    """Read all values in the set before (above) this cursor."""
-    before: Cursor
-
-    """Read all values in the set after (below) this cursor."""
-    after: Cursor
-
-    """
-    A filter to be used in determining which values should be returned by the collection.
-    """
-    where: RateLimitMetersModuleFilter
-
-    """The method to use when ordering `RateLimitMetersModule`."""
-    orderBy: [RateLimitMetersModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): RateLimitMetersModuleConnection
-
   """Reads and enables pagination through a set of `BlueprintConstruction`."""
   blueprintConstructions(
     """Only read the first `n` values of the set."""
@@ -834,8 +805,8 @@ type Query {
     orderBy: [SecureTableProvisionOrderBy!] = [PRIMARY_KEY_ASC]
   ): SecureTableProvisionConnection
 
-  """Reads and enables pagination through a set of `InvitesModule`."""
-  invitesModules(
+  """Reads and enables pagination through a set of `RateLimitMetersModule`."""
+  rateLimitMetersModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -857,16 +828,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: InvitesModuleFilter
+    where: RateLimitMetersModuleFilter
 
-    """The method to use when ordering `InvitesModule`."""
-    orderBy: [InvitesModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): InvitesModuleConnection
+    """The method to use when ordering `RateLimitMetersModule`."""
+    orderBy: [RateLimitMetersModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): RateLimitMetersModuleConnection
 
-  """
-  Reads and enables pagination through a set of `DatabaseProvisionModule`.
-  """
-  databaseProvisionModules(
+  """Reads and enables pagination through a set of `InvitesModule`."""
+  invitesModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -888,14 +857,16 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: DatabaseProvisionModuleFilter
+    where: InvitesModuleFilter
 
-    """The method to use when ordering `DatabaseProvisionModule`."""
-    orderBy: [DatabaseProvisionModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): DatabaseProvisionModuleConnection
+    """The method to use when ordering `InvitesModule`."""
+    orderBy: [InvitesModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): InvitesModuleConnection
 
-  """Reads and enables pagination through a set of `NamespaceModule`."""
-  namespaceModules(
+  """
+  Reads and enables pagination through a set of `DatabaseProvisionModule`.
+  """
+  databaseProvisionModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -917,11 +888,11 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: NamespaceModuleFilter
+    where: DatabaseProvisionModuleFilter
 
-    """The method to use when ordering `NamespaceModule`."""
-    orderBy: [NamespaceModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): NamespaceModuleConnection
+    """The method to use when ordering `DatabaseProvisionModule`."""
+    orderBy: [DatabaseProvisionModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): DatabaseProvisionModuleConnection
 
   """Reads and enables pagination through a set of `RealtimeModule`."""
   realtimeModules(
@@ -981,8 +952,8 @@ type Query {
     orderBy: [WebauthnAuthModuleOrderBy!] = [PRIMARY_KEY_ASC]
   ): WebauthnAuthModuleConnection
 
-  """Reads and enables pagination through a set of `GraphModule`."""
-  graphModules(
+  """Reads and enables pagination through a set of `NamespaceModule`."""
+  namespaceModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1004,11 +975,11 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: GraphModuleFilter
+    where: NamespaceModuleFilter
 
-    """The method to use when ordering `GraphModule`."""
-    orderBy: [GraphModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): GraphModuleConnection
+    """The method to use when ordering `NamespaceModule`."""
+    orderBy: [NamespaceModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): NamespaceModuleConnection
 
   """Reads and enables pagination through a set of `ComputeLogModule`."""
   computeLogModules(
@@ -1126,8 +1097,8 @@ type Query {
     orderBy: [TransferLogModuleOrderBy!] = [PRIMARY_KEY_ASC]
   ): TransferLogModuleConnection
 
-  """Reads and enables pagination through a set of `DbUsageModule`."""
-  dbUsageModules(
+  """Reads and enables pagination through a set of `GraphModule`."""
+  graphModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1149,14 +1120,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: DbUsageModuleFilter
+    where: GraphModuleFilter
 
-    """The method to use when ordering `DbUsageModule`."""
-    orderBy: [DbUsageModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): DbUsageModuleConnection
+    """The method to use when ordering `GraphModule`."""
+    orderBy: [GraphModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): GraphModuleConnection
 
-  """Reads and enables pagination through a set of `NotificationsModule`."""
-  notificationsModules(
+  """Reads and enables pagination through a set of `PlansModule`."""
+  plansModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1178,14 +1149,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: NotificationsModuleFilter
+    where: PlansModuleFilter
 
-    """The method to use when ordering `NotificationsModule`."""
-    orderBy: [NotificationsModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): NotificationsModuleConnection
+    """The method to use when ordering `PlansModule`."""
+    orderBy: [PlansModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): PlansModuleConnection
 
-  """Reads and enables pagination through a set of `PlansModule`."""
-  plansModules(
+  """Reads and enables pagination through a set of `DbUsageModule`."""
+  dbUsageModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1207,14 +1178,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: PlansModuleFilter
+    where: DbUsageModuleFilter
 
-    """The method to use when ordering `PlansModule`."""
-    orderBy: [PlansModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): PlansModuleConnection
+    """The method to use when ordering `DbUsageModule`."""
+    orderBy: [DbUsageModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): DbUsageModuleConnection
 
-  """Reads and enables pagination through a set of `HierarchyModule`."""
-  hierarchyModules(
+  """Reads and enables pagination through a set of `NotificationsModule`."""
+  notificationsModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1236,14 +1207,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: HierarchyModuleFilter
+    where: NotificationsModuleFilter
 
-    """The method to use when ordering `HierarchyModule`."""
-    orderBy: [HierarchyModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): HierarchyModuleConnection
+    """The method to use when ordering `NotificationsModule`."""
+    orderBy: [NotificationsModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): NotificationsModuleConnection
 
-  """Reads and enables pagination through a set of `BillingModule`."""
-  billingModules(
+  """Reads and enables pagination through a set of `BillingProviderModule`."""
+  billingProviderModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1265,14 +1236,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: BillingModuleFilter
+    where: BillingProviderModuleFilter
 
-    """The method to use when ordering `BillingModule`."""
-    orderBy: [BillingModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): BillingModuleConnection
+    """The method to use when ordering `BillingProviderModule`."""
+    orderBy: [BillingProviderModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): BillingProviderModuleConnection
 
-  """Reads and enables pagination through a set of `BillingProviderModule`."""
-  billingProviderModules(
+  """Reads and enables pagination through a set of `FunctionModule`."""
+  functionModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1294,11 +1265,40 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: BillingProviderModuleFilter
+    where: FunctionModuleFilter
 
-    """The method to use when ordering `BillingProviderModule`."""
-    orderBy: [BillingProviderModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): BillingProviderModuleConnection
+    """The method to use when ordering `FunctionModule`."""
+    orderBy: [FunctionModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): FunctionModuleConnection
+
+  """Reads and enables pagination through a set of `HierarchyModule`."""
+  hierarchyModules(
+    """Only read the first `n` values of the set."""
+    first: Int
+
+    """Only read the last `n` values of the set."""
+    last: Int
+
+    """
+    Skip the first `n` values from our `after` cursor, an alternative to cursor
+    based pagination. May not be used with `last`.
+    """
+    offset: Int
+
+    """Read all values in the set before (above) this cursor."""
+    before: Cursor
+
+    """Read all values in the set after (below) this cursor."""
+    after: Cursor
+
+    """
+    A filter to be used in determining which values should be returned by the collection.
+    """
+    where: HierarchyModuleFilter
+
+    """The method to use when ordering `HierarchyModule`."""
+    orderBy: [HierarchyModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): HierarchyModuleConnection
 
   """Reads and enables pagination through a set of `ProfilesModule`."""
   profilesModules(
@@ -1358,8 +1358,8 @@ type Query {
     orderBy: [PermissionsModuleOrderBy!] = [PRIMARY_KEY_ASC]
   ): PermissionsModuleConnection
 
-  """Reads and enables pagination through a set of `RelationProvision`."""
-  relationProvisions(
+  """Reads and enables pagination through a set of `BillingModule`."""
+  billingModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1381,14 +1381,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: RelationProvisionFilter
+    where: BillingModuleFilter
 
-    """The method to use when ordering `RelationProvision`."""
-    orderBy: [RelationProvisionOrderBy!] = [PRIMARY_KEY_ASC]
-  ): RelationProvisionConnection
+    """The method to use when ordering `BillingModule`."""
+    orderBy: [BillingModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): BillingModuleConnection
 
-  """Reads and enables pagination through a set of `BlueprintTemplate`."""
-  blueprintTemplates(
+  """Reads and enables pagination through a set of `RelationProvision`."""
+  relationProvisions(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1410,14 +1410,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: BlueprintTemplateFilter
+    where: RelationProvisionFilter
 
-    """The method to use when ordering `BlueprintTemplate`."""
-    orderBy: [BlueprintTemplateOrderBy!] = [PRIMARY_KEY_ASC]
-  ): BlueprintTemplateConnection
+    """The method to use when ordering `RelationProvision`."""
+    orderBy: [RelationProvisionOrderBy!] = [PRIMARY_KEY_ASC]
+  ): RelationProvisionConnection
 
-  """Reads and enables pagination through a set of `FunctionModule`."""
-  functionModules(
+  """Reads and enables pagination through a set of `BlueprintTemplate`."""
+  blueprintTemplates(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1439,11 +1439,11 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: FunctionModuleFilter
+    where: BlueprintTemplateFilter
 
-    """The method to use when ordering `FunctionModule`."""
-    orderBy: [FunctionModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): FunctionModuleConnection
+    """The method to use when ordering `BlueprintTemplate`."""
+    orderBy: [BlueprintTemplateOrderBy!] = [PRIMARY_KEY_ASC]
+  ): BlueprintTemplateConnection
 
   """Reads and enables pagination through a set of `UserAuthModule`."""
   userAuthModules(
@@ -1590,8 +1590,8 @@ type Query {
     orderBy: [StorageModuleOrderBy!] = [PRIMARY_KEY_ASC]
   ): StorageModuleConnection
 
-  """Reads and enables pagination through a set of `EventsModule`."""
-  eventsModules(
+  """Reads and enables pagination through a set of `EntityTypeProvision`."""
+  entityTypeProvisions(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1613,14 +1613,14 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: EventsModuleFilter
+    where: EntityTypeProvisionFilter
 
-    """The method to use when ordering `EventsModule`."""
-    orderBy: [EventsModuleOrderBy!] = [PRIMARY_KEY_ASC]
-  ): EventsModuleConnection
+    """The method to use when ordering `EntityTypeProvision`."""
+    orderBy: [EntityTypeProvisionOrderBy!] = [PRIMARY_KEY_ASC]
+  ): EntityTypeProvisionConnection
 
-  """Reads and enables pagination through a set of `EntityTypeProvision`."""
-  entityTypeProvisions(
+  """Reads and enables pagination through a set of `EventsModule`."""
+  eventsModules(
     """Only read the first `n` values of the set."""
     first: Int
 
@@ -1642,11 +1642,11 @@ type Query {
     """
     A filter to be used in determining which values should be returned by the collection.
     """
-    where: EntityTypeProvisionFilter
+    where: EventsModuleFilter
 
-    """The method to use when ordering `EntityTypeProvision`."""
-    orderBy: [EntityTypeProvisionOrderBy!] = [PRIMARY_KEY_ASC]
-  ): EntityTypeProvisionConnection
+    """The method to use when ordering `EventsModule`."""
+    orderBy: [EventsModuleOrderBy!] = [PRIMARY_KEY_ASC]
+  ): EventsModuleConnection
 
   """
   Metadata about the database schema, including tables, fields, indexes, and constraints. Useful for code generation tools.
@@ -5073,151 +5073,15 @@ enum CryptoAuthModuleOrderBy {
   SIGN_IN_WITH_CHALLENGE_DESC
 }
 
-"""A connection to a list of `RateLimitMetersModule` values."""
-type RateLimitMetersModuleConnection {
-  """A list of `RateLimitMetersModule` objects."""
-  nodes: [RateLimitMetersModule]!
+"""A connection to a list of `SessionsModule` values."""
+type SessionsModuleConnection {
+  """A list of `SessionsModule` objects."""
+  nodes: [SessionsModule]!
 
   """
-  A list of edges which contains the `RateLimitMetersModule` and cursor to aid in pagination.
+  A list of edges which contains the `SessionsModule` and cursor to aid in pagination.
   """
-  edges: [RateLimitMetersModuleEdge]!
-
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
-
-  """
-  The count of *all* `RateLimitMetersModule` you could get from the connection.
-  """
-  totalCount: Int!
-}
-
-type RateLimitMetersModule {
-  id: UUID!
-  databaseId: UUID!
-  schemaId: UUID!
-  privateSchemaId: UUID!
-  rateLimitStateTableId: UUID!
-  rateLimitStateTableName: String!
-  rateLimitOverridesTableId: UUID
-  rateLimitOverridesTableName: String!
-  rateWindowLimitsTableId: UUID
-  rateWindowLimitsTableName: String!
-  checkRateLimitFunction: String!
-  prefix: String
-  apiName: String
-  privateApiName: String
-}
-
-"""A `RateLimitMetersModule` edge in the connection."""
-type RateLimitMetersModuleEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `RateLimitMetersModule` at the end of the edge."""
-  node: RateLimitMetersModule
-}
-
-"""
-A filter to be used against `RateLimitMetersModule` object types. All fields are combined with a logical ‘and.’
-"""
-input RateLimitMetersModuleFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `databaseId` field."""
-  databaseId: UUIDFilter
-
-  """Filter by the object’s `schemaId` field."""
-  schemaId: UUIDFilter
-
-  """Filter by the object’s `privateSchemaId` field."""
-  privateSchemaId: UUIDFilter
-
-  """Filter by the object’s `rateLimitStateTableId` field."""
-  rateLimitStateTableId: UUIDFilter
-
-  """Filter by the object’s `rateLimitStateTableName` field."""
-  rateLimitStateTableName: StringFilter
-
-  """Filter by the object’s `rateLimitOverridesTableId` field."""
-  rateLimitOverridesTableId: UUIDFilter
-
-  """Filter by the object’s `rateLimitOverridesTableName` field."""
-  rateLimitOverridesTableName: StringFilter
-
-  """Filter by the object’s `rateWindowLimitsTableId` field."""
-  rateWindowLimitsTableId: UUIDFilter
-
-  """Filter by the object’s `rateWindowLimitsTableName` field."""
-  rateWindowLimitsTableName: StringFilter
-
-  """Filter by the object’s `checkRateLimitFunction` field."""
-  checkRateLimitFunction: StringFilter
-
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
-
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
-
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
-
-  """Checks for all expressions in this list."""
-  and: [RateLimitMetersModuleFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [RateLimitMetersModuleFilter!]
-
-  """Negates the expression."""
-  not: RateLimitMetersModuleFilter
-}
-
-"""Methods to use when ordering `RateLimitMetersModule`."""
-enum RateLimitMetersModuleOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  DATABASE_ID_ASC
-  DATABASE_ID_DESC
-  SCHEMA_ID_ASC
-  SCHEMA_ID_DESC
-  PRIVATE_SCHEMA_ID_ASC
-  PRIVATE_SCHEMA_ID_DESC
-  RATE_LIMIT_STATE_TABLE_ID_ASC
-  RATE_LIMIT_STATE_TABLE_ID_DESC
-  RATE_LIMIT_STATE_TABLE_NAME_ASC
-  RATE_LIMIT_STATE_TABLE_NAME_DESC
-  RATE_LIMIT_OVERRIDES_TABLE_ID_ASC
-  RATE_LIMIT_OVERRIDES_TABLE_ID_DESC
-  RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC
-  RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC
-  RATE_WINDOW_LIMITS_TABLE_ID_ASC
-  RATE_WINDOW_LIMITS_TABLE_ID_DESC
-  RATE_WINDOW_LIMITS_TABLE_NAME_ASC
-  RATE_WINDOW_LIMITS_TABLE_NAME_DESC
-  CHECK_RATE_LIMIT_FUNCTION_ASC
-  CHECK_RATE_LIMIT_FUNCTION_DESC
-  PREFIX_ASC
-  PREFIX_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
-}
-
-"""A connection to a list of `SessionsModule` values."""
-type SessionsModuleConnection {
-  """A list of `SessionsModule` objects."""
-  nodes: [SessionsModule]!
-
-  """
-  A list of edges which contains the `SessionsModule` and cursor to aid in pagination.
-  """
-  edges: [SessionsModuleEdge]!
+  edges: [SessionsModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
@@ -5669,6 +5533,7 @@ type GraphModule {
   entityTableId: UUID
   policies: JSON
   provisions: JSON
+  defaultPermissions: [String]
   createdAt: Datetime!
 
   """
@@ -5741,6 +5606,9 @@ input GraphModuleFilter {
   """Filter by the object’s `provisions` field."""
   provisions: JSONFilter
 
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
   """Filter by the object’s `createdAt` field."""
   createdAt: DatetimeFilter
 
@@ -5875,6 +5743,8 @@ enum GraphModuleOrderBy {
   POLICIES_DESC
   PROVISIONS_ASC
   PROVISIONS_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
   CREATED_AT_ASC
   CREATED_AT_DESC
 }
@@ -6148,55 +6018,56 @@ enum SecureTableProvisionOrderBy {
   OUT_FIELDS_DESC
 }
 
-"""A connection to a list of `InvitesModule` values."""
-type InvitesModuleConnection {
-  """A list of `InvitesModule` objects."""
-  nodes: [InvitesModule]!
+"""A connection to a list of `RateLimitMetersModule` values."""
+type RateLimitMetersModuleConnection {
+  """A list of `RateLimitMetersModule` objects."""
+  nodes: [RateLimitMetersModule]!
 
   """
-  A list of edges which contains the `InvitesModule` and cursor to aid in pagination.
+  A list of edges which contains the `RateLimitMetersModule` and cursor to aid in pagination.
   """
-  edges: [InvitesModuleEdge]!
+  edges: [RateLimitMetersModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `InvitesModule` you could get from the connection."""
+  """
+  The count of *all* `RateLimitMetersModule` you could get from the connection.
+  """
   totalCount: Int!
 }
 
-type InvitesModule {
+type RateLimitMetersModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  emailsTableId: UUID!
-  usersTableId: UUID!
-  invitesTableId: UUID!
-  claimedInvitesTableId: UUID!
-  invitesTableName: String!
-  claimedInvitesTableName: String!
-  submitInviteCodeFunction: String!
-  scope: String!
-  prefix: String!
-  entityTableId: UUID
+  rateLimitStateTableId: UUID!
+  rateLimitStateTableName: String!
+  rateLimitOverridesTableId: UUID
+  rateLimitOverridesTableName: String!
+  rateWindowLimitsTableId: UUID
+  rateWindowLimitsTableName: String!
+  checkRateLimitFunction: String!
+  prefix: String
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
 
-"""A `InvitesModule` edge in the connection."""
-type InvitesModuleEdge {
+"""A `RateLimitMetersModule` edge in the connection."""
+type RateLimitMetersModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `InvitesModule` at the end of the edge."""
-  node: InvitesModule
+  """The `RateLimitMetersModule` at the end of the edge."""
+  node: RateLimitMetersModule
 }
 
 """
-A filter to be used against `InvitesModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `RateLimitMetersModule` object types. All fields are combined with a logical ‘and.’
 """
-input InvitesModuleFilter {
+input RateLimitMetersModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -6209,35 +6080,32 @@ input InvitesModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `emailsTableId` field."""
-  emailsTableId: UUIDFilter
-
-  """Filter by the object’s `usersTableId` field."""
-  usersTableId: UUIDFilter
+  """Filter by the object’s `rateLimitStateTableId` field."""
+  rateLimitStateTableId: UUIDFilter
 
-  """Filter by the object’s `invitesTableId` field."""
-  invitesTableId: UUIDFilter
+  """Filter by the object’s `rateLimitStateTableName` field."""
+  rateLimitStateTableName: StringFilter
 
-  """Filter by the object’s `claimedInvitesTableId` field."""
-  claimedInvitesTableId: UUIDFilter
+  """Filter by the object’s `rateLimitOverridesTableId` field."""
+  rateLimitOverridesTableId: UUIDFilter
 
-  """Filter by the object’s `invitesTableName` field."""
-  invitesTableName: StringFilter
+  """Filter by the object’s `rateLimitOverridesTableName` field."""
+  rateLimitOverridesTableName: StringFilter
 
-  """Filter by the object’s `claimedInvitesTableName` field."""
-  claimedInvitesTableName: StringFilter
+  """Filter by the object’s `rateWindowLimitsTableId` field."""
+  rateWindowLimitsTableId: UUIDFilter
 
-  """Filter by the object’s `submitInviteCodeFunction` field."""
-  submitInviteCodeFunction: StringFilter
+  """Filter by the object’s `rateWindowLimitsTableName` field."""
+  rateWindowLimitsTableName: StringFilter
 
-  """Filter by the object’s `scope` field."""
-  scope: StringFilter
+  """Filter by the object’s `checkRateLimitFunction` field."""
+  checkRateLimitFunction: StringFilter
 
   """Filter by the object’s `prefix` field."""
   prefix: StringFilter
 
-  """Filter by the object’s `entityTableId` field."""
-  entityTableId: UUIDFilter
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
 
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
@@ -6246,17 +6114,17 @@ input InvitesModuleFilter {
   privateApiName: StringFilter
 
   """Checks for all expressions in this list."""
-  and: [InvitesModuleFilter!]
+  and: [RateLimitMetersModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [InvitesModuleFilter!]
+  or: [RateLimitMetersModuleFilter!]
 
   """Negates the expression."""
-  not: InvitesModuleFilter
+  not: RateLimitMetersModuleFilter
 }
 
-"""Methods to use when ordering `InvitesModule`."""
-enum InvitesModuleOrderBy {
+"""Methods to use when ordering `RateLimitMetersModule`."""
+enum RateLimitMetersModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -6268,22 +6136,166 @@ enum InvitesModuleOrderBy {
   SCHEMA_ID_DESC
   PRIVATE_SCHEMA_ID_ASC
   PRIVATE_SCHEMA_ID_DESC
-  EMAILS_TABLE_ID_ASC
-  EMAILS_TABLE_ID_DESC
-  USERS_TABLE_ID_ASC
-  USERS_TABLE_ID_DESC
-  INVITES_TABLE_ID_ASC
-  INVITES_TABLE_ID_DESC
-  CLAIMED_INVITES_TABLE_ID_ASC
-  CLAIMED_INVITES_TABLE_ID_DESC
-  INVITES_TABLE_NAME_ASC
-  INVITES_TABLE_NAME_DESC
-  CLAIMED_INVITES_TABLE_NAME_ASC
-  CLAIMED_INVITES_TABLE_NAME_DESC
-  SUBMIT_INVITE_CODE_FUNCTION_ASC
-  SUBMIT_INVITE_CODE_FUNCTION_DESC
-  SCOPE_ASC
-  SCOPE_DESC
+  RATE_LIMIT_STATE_TABLE_ID_ASC
+  RATE_LIMIT_STATE_TABLE_ID_DESC
+  RATE_LIMIT_STATE_TABLE_NAME_ASC
+  RATE_LIMIT_STATE_TABLE_NAME_DESC
+  RATE_LIMIT_OVERRIDES_TABLE_ID_ASC
+  RATE_LIMIT_OVERRIDES_TABLE_ID_DESC
+  RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC
+  RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC
+  RATE_WINDOW_LIMITS_TABLE_ID_ASC
+  RATE_WINDOW_LIMITS_TABLE_ID_DESC
+  RATE_WINDOW_LIMITS_TABLE_NAME_ASC
+  RATE_WINDOW_LIMITS_TABLE_NAME_DESC
+  CHECK_RATE_LIMIT_FUNCTION_ASC
+  CHECK_RATE_LIMIT_FUNCTION_DESC
+  PREFIX_ASC
+  PREFIX_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
+}
+
+"""A connection to a list of `InvitesModule` values."""
+type InvitesModuleConnection {
+  """A list of `InvitesModule` objects."""
+  nodes: [InvitesModule]!
+
+  """
+  A list of edges which contains the `InvitesModule` and cursor to aid in pagination.
+  """
+  edges: [InvitesModuleEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """The count of *all* `InvitesModule` you could get from the connection."""
+  totalCount: Int!
+}
+
+type InvitesModule {
+  id: UUID!
+  databaseId: UUID!
+  schemaId: UUID!
+  privateSchemaId: UUID!
+  emailsTableId: UUID!
+  usersTableId: UUID!
+  invitesTableId: UUID!
+  claimedInvitesTableId: UUID!
+  invitesTableName: String!
+  claimedInvitesTableName: String!
+  submitInviteCodeFunction: String!
+  scope: String!
+  prefix: String!
+  entityTableId: UUID
+  apiName: String
+  privateApiName: String
+}
+
+"""A `InvitesModule` edge in the connection."""
+type InvitesModuleEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `InvitesModule` at the end of the edge."""
+  node: InvitesModule
+}
+
+"""
+A filter to be used against `InvitesModule` object types. All fields are combined with a logical ‘and.’
+"""
+input InvitesModuleFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
+
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
+
+  """Filter by the object’s `privateSchemaId` field."""
+  privateSchemaId: UUIDFilter
+
+  """Filter by the object’s `emailsTableId` field."""
+  emailsTableId: UUIDFilter
+
+  """Filter by the object’s `usersTableId` field."""
+  usersTableId: UUIDFilter
+
+  """Filter by the object’s `invitesTableId` field."""
+  invitesTableId: UUIDFilter
+
+  """Filter by the object’s `claimedInvitesTableId` field."""
+  claimedInvitesTableId: UUIDFilter
+
+  """Filter by the object’s `invitesTableName` field."""
+  invitesTableName: StringFilter
+
+  """Filter by the object’s `claimedInvitesTableName` field."""
+  claimedInvitesTableName: StringFilter
+
+  """Filter by the object’s `submitInviteCodeFunction` field."""
+  submitInviteCodeFunction: StringFilter
+
+  """Filter by the object’s `scope` field."""
+  scope: StringFilter
+
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
+
+  """Filter by the object’s `entityTableId` field."""
+  entityTableId: UUIDFilter
+
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [InvitesModuleFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [InvitesModuleFilter!]
+
+  """Negates the expression."""
+  not: InvitesModuleFilter
+}
+
+"""Methods to use when ordering `InvitesModule`."""
+enum InvitesModuleOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  DATABASE_ID_ASC
+  DATABASE_ID_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  PRIVATE_SCHEMA_ID_ASC
+  PRIVATE_SCHEMA_ID_DESC
+  EMAILS_TABLE_ID_ASC
+  EMAILS_TABLE_ID_DESC
+  USERS_TABLE_ID_ASC
+  USERS_TABLE_ID_DESC
+  INVITES_TABLE_ID_ASC
+  INVITES_TABLE_ID_DESC
+  CLAIMED_INVITES_TABLE_ID_ASC
+  CLAIMED_INVITES_TABLE_ID_DESC
+  INVITES_TABLE_NAME_ASC
+  INVITES_TABLE_NAME_DESC
+  CLAIMED_INVITES_TABLE_NAME_ASC
+  CLAIMED_INVITES_TABLE_NAME_DESC
+  SUBMIT_INVITE_CODE_FUNCTION_ASC
+  SUBMIT_INVITE_CODE_FUNCTION_DESC
+  SCOPE_ASC
+  SCOPE_DESC
   PREFIX_ASC
   PREFIX_DESC
   ENTITY_TABLE_ID_ASC
@@ -6457,58 +6469,53 @@ enum DatabaseProvisionModuleOrderBy {
   COMPLETED_AT_DESC
 }
 
-"""A connection to a list of `NamespaceModule` values."""
-type NamespaceModuleConnection {
-  """A list of `NamespaceModule` objects."""
-  nodes: [NamespaceModule]!
+"""A connection to a list of `RealtimeModule` values."""
+type RealtimeModuleConnection {
+  """A list of `RealtimeModule` objects."""
+  nodes: [RealtimeModule]!
 
   """
-  A list of edges which contains the `NamespaceModule` and cursor to aid in pagination.
+  A list of edges which contains the `RealtimeModule` and cursor to aid in pagination.
   """
-  edges: [NamespaceModuleEdge]!
+  edges: [RealtimeModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """
-  The count of *all* `NamespaceModule` you could get from the connection.
-  """
+  """The count of *all* `RealtimeModule` you could get from the connection."""
   totalCount: Int!
 }
 
-type NamespaceModule {
+type RealtimeModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  publicSchemaName: String
-  privateSchemaName: String
-  namespacesTableId: UUID!
-  namespaceEventsTableId: UUID!
-  namespacesTableName: String!
-  namespaceEventsTableName: String!
+  subscriptionsSchemaId: UUID!
+  changeLogTableId: UUID!
+  listenerNodeTableId: UUID!
+  sourceRegistryTableId: UUID!
+  retentionHours: Int!
+  premake: Int!
+  interval: String!
+  notifyChannel: String
   apiName: String
   privateApiName: String
-  scope: String!
-  prefix: String!
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
 }
 
-"""A `NamespaceModule` edge in the connection."""
-type NamespaceModuleEdge {
+"""A `RealtimeModule` edge in the connection."""
+type RealtimeModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `NamespaceModule` at the end of the edge."""
-  node: NamespaceModule
+  """The `RealtimeModule` at the end of the edge."""
+  node: RealtimeModule
 }
 
 """
-A filter to be used against `NamespaceModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `RealtimeModule` object types. All fields are combined with a logical ‘and.’
 """
-input NamespaceModuleFilter {
+input RealtimeModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -6521,23 +6528,29 @@ input NamespaceModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `publicSchemaName` field."""
-  publicSchemaName: StringFilter
+  """Filter by the object’s `subscriptionsSchemaId` field."""
+  subscriptionsSchemaId: UUIDFilter
 
-  """Filter by the object’s `privateSchemaName` field."""
-  privateSchemaName: StringFilter
+  """Filter by the object’s `changeLogTableId` field."""
+  changeLogTableId: UUIDFilter
 
-  """Filter by the object’s `namespacesTableId` field."""
-  namespacesTableId: UUIDFilter
+  """Filter by the object’s `listenerNodeTableId` field."""
+  listenerNodeTableId: UUIDFilter
 
-  """Filter by the object’s `namespaceEventsTableId` field."""
-  namespaceEventsTableId: UUIDFilter
+  """Filter by the object’s `sourceRegistryTableId` field."""
+  sourceRegistryTableId: UUIDFilter
 
-  """Filter by the object’s `namespacesTableName` field."""
-  namespacesTableName: StringFilter
+  """Filter by the object’s `retentionHours` field."""
+  retentionHours: IntFilter
 
-  """Filter by the object’s `namespaceEventsTableName` field."""
-  namespaceEventsTableName: StringFilter
+  """Filter by the object’s `premake` field."""
+  premake: IntFilter
+
+  """Filter by the object’s `interval` field."""
+  interval: StringFilter
+
+  """Filter by the object’s `notifyChannel` field."""
+  notifyChannel: StringFilter
 
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
@@ -6545,173 +6558,18 @@ input NamespaceModuleFilter {
   """Filter by the object’s `privateApiName` field."""
   privateApiName: StringFilter
 
-  """Filter by the object’s `scope` field."""
-  scope: StringFilter
-
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
-
-  """Filter by the object’s `entityTableId` field."""
-  entityTableId: UUIDFilter
-
-  """Filter by the object’s `policies` field."""
-  policies: JSONFilter
-
-  """Filter by the object’s `provisions` field."""
-  provisions: JSONFilter
-
   """Checks for all expressions in this list."""
-  and: [NamespaceModuleFilter!]
+  and: [RealtimeModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [NamespaceModuleFilter!]
+  or: [RealtimeModuleFilter!]
 
   """Negates the expression."""
-  not: NamespaceModuleFilter
+  not: RealtimeModuleFilter
 }
 
-"""Methods to use when ordering `NamespaceModule`."""
-enum NamespaceModuleOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  DATABASE_ID_ASC
-  DATABASE_ID_DESC
-  SCHEMA_ID_ASC
-  SCHEMA_ID_DESC
-  PRIVATE_SCHEMA_ID_ASC
-  PRIVATE_SCHEMA_ID_DESC
-  PUBLIC_SCHEMA_NAME_ASC
-  PUBLIC_SCHEMA_NAME_DESC
-  PRIVATE_SCHEMA_NAME_ASC
-  PRIVATE_SCHEMA_NAME_DESC
-  NAMESPACES_TABLE_ID_ASC
-  NAMESPACES_TABLE_ID_DESC
-  NAMESPACE_EVENTS_TABLE_ID_ASC
-  NAMESPACE_EVENTS_TABLE_ID_DESC
-  NAMESPACES_TABLE_NAME_ASC
-  NAMESPACES_TABLE_NAME_DESC
-  NAMESPACE_EVENTS_TABLE_NAME_ASC
-  NAMESPACE_EVENTS_TABLE_NAME_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
-  SCOPE_ASC
-  SCOPE_DESC
-  PREFIX_ASC
-  PREFIX_DESC
-  ENTITY_TABLE_ID_ASC
-  ENTITY_TABLE_ID_DESC
-  POLICIES_ASC
-  POLICIES_DESC
-  PROVISIONS_ASC
-  PROVISIONS_DESC
-}
-
-"""A connection to a list of `RealtimeModule` values."""
-type RealtimeModuleConnection {
-  """A list of `RealtimeModule` objects."""
-  nodes: [RealtimeModule]!
-
-  """
-  A list of edges which contains the `RealtimeModule` and cursor to aid in pagination.
-  """
-  edges: [RealtimeModuleEdge]!
-
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
-
-  """The count of *all* `RealtimeModule` you could get from the connection."""
-  totalCount: Int!
-}
-
-type RealtimeModule {
-  id: UUID!
-  databaseId: UUID!
-  schemaId: UUID!
-  privateSchemaId: UUID!
-  subscriptionsSchemaId: UUID!
-  changeLogTableId: UUID!
-  listenerNodeTableId: UUID!
-  sourceRegistryTableId: UUID!
-  retentionHours: Int!
-  premake: Int!
-  interval: String!
-  notifyChannel: String
-  apiName: String
-  privateApiName: String
-}
-
-"""A `RealtimeModule` edge in the connection."""
-type RealtimeModuleEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `RealtimeModule` at the end of the edge."""
-  node: RealtimeModule
-}
-
-"""
-A filter to be used against `RealtimeModule` object types. All fields are combined with a logical ‘and.’
-"""
-input RealtimeModuleFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `databaseId` field."""
-  databaseId: UUIDFilter
-
-  """Filter by the object’s `schemaId` field."""
-  schemaId: UUIDFilter
-
-  """Filter by the object’s `privateSchemaId` field."""
-  privateSchemaId: UUIDFilter
-
-  """Filter by the object’s `subscriptionsSchemaId` field."""
-  subscriptionsSchemaId: UUIDFilter
-
-  """Filter by the object’s `changeLogTableId` field."""
-  changeLogTableId: UUIDFilter
-
-  """Filter by the object’s `listenerNodeTableId` field."""
-  listenerNodeTableId: UUIDFilter
-
-  """Filter by the object’s `sourceRegistryTableId` field."""
-  sourceRegistryTableId: UUIDFilter
-
-  """Filter by the object’s `retentionHours` field."""
-  retentionHours: IntFilter
-
-  """Filter by the object’s `premake` field."""
-  premake: IntFilter
-
-  """Filter by the object’s `interval` field."""
-  interval: StringFilter
-
-  """Filter by the object’s `notifyChannel` field."""
-  notifyChannel: StringFilter
-
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
-
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
-
-  """Checks for all expressions in this list."""
-  and: [RealtimeModuleFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [RealtimeModuleFilter!]
-
-  """Negates the expression."""
-  not: RealtimeModuleFilter
-}
-
-"""Methods to use when ordering `RealtimeModule`."""
-enum RealtimeModuleOrderBy {
+"""Methods to use when ordering `RealtimeModule`."""
+enum RealtimeModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -6893,58 +6751,59 @@ enum WebauthnAuthModuleOrderBy {
   CHALLENGE_EXPIRY_DESC
 }
 
-"""A connection to a list of `ComputeLogModule` values."""
-type ComputeLogModuleConnection {
-  """A list of `ComputeLogModule` objects."""
-  nodes: [ComputeLogModule]!
+"""A connection to a list of `NamespaceModule` values."""
+type NamespaceModuleConnection {
+  """A list of `NamespaceModule` objects."""
+  nodes: [NamespaceModule]!
 
   """
-  A list of edges which contains the `ComputeLogModule` and cursor to aid in pagination.
+  A list of edges which contains the `NamespaceModule` and cursor to aid in pagination.
   """
-  edges: [ComputeLogModuleEdge]!
+  edges: [NamespaceModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
   """
-  The count of *all* `ComputeLogModule` you could get from the connection.
+  The count of *all* `NamespaceModule` you could get from the connection.
   """
   totalCount: Int!
 }
 
-type ComputeLogModule {
+type NamespaceModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  computeLogTableId: UUID!
-  computeLogTableName: String!
-  usageDailyTableId: UUID!
-  usageDailyTableName: String!
-  interval: String!
-  retention: String!
-  premake: Int!
-  scope: String!
-  actorFkTableId: UUID
-  entityFkTableId: UUID
-  prefix: String!
+  publicSchemaName: String
+  privateSchemaName: String
+  namespacesTableId: UUID!
+  namespaceEventsTableId: UUID!
+  namespacesTableName: String!
+  namespaceEventsTableName: String!
   apiName: String
   privateApiName: String
+  scope: String!
+  prefix: String!
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
 }
 
-"""A `ComputeLogModule` edge in the connection."""
-type ComputeLogModuleEdge {
+"""A `NamespaceModule` edge in the connection."""
+type NamespaceModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `ComputeLogModule` at the end of the edge."""
-  node: ComputeLogModule
+  """The `NamespaceModule` at the end of the edge."""
+  node: NamespaceModule
 }
 
 """
-A filter to be used against `ComputeLogModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `NamespaceModule` object types. All fields are combined with a logical ‘and.’
 """
-input ComputeLogModuleFilter {
+input NamespaceModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -6957,57 +6816,60 @@ input ComputeLogModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `computeLogTableId` field."""
-  computeLogTableId: UUIDFilter
+  """Filter by the object’s `publicSchemaName` field."""
+  publicSchemaName: StringFilter
 
-  """Filter by the object’s `computeLogTableName` field."""
-  computeLogTableName: StringFilter
+  """Filter by the object’s `privateSchemaName` field."""
+  privateSchemaName: StringFilter
 
-  """Filter by the object’s `usageDailyTableId` field."""
-  usageDailyTableId: UUIDFilter
+  """Filter by the object’s `namespacesTableId` field."""
+  namespacesTableId: UUIDFilter
 
-  """Filter by the object’s `usageDailyTableName` field."""
-  usageDailyTableName: StringFilter
+  """Filter by the object’s `namespaceEventsTableId` field."""
+  namespaceEventsTableId: UUIDFilter
 
-  """Filter by the object’s `interval` field."""
-  interval: StringFilter
+  """Filter by the object’s `namespacesTableName` field."""
+  namespacesTableName: StringFilter
 
-  """Filter by the object’s `retention` field."""
-  retention: StringFilter
+  """Filter by the object’s `namespaceEventsTableName` field."""
+  namespaceEventsTableName: StringFilter
 
-  """Filter by the object’s `premake` field."""
-  premake: IntFilter
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
 
   """Filter by the object’s `scope` field."""
   scope: StringFilter
 
-  """Filter by the object’s `actorFkTableId` field."""
-  actorFkTableId: UUIDFilter
-
-  """Filter by the object’s `entityFkTableId` field."""
-  entityFkTableId: UUIDFilter
-
   """Filter by the object’s `prefix` field."""
   prefix: StringFilter
 
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
+  """Filter by the object’s `entityTableId` field."""
+  entityTableId: UUIDFilter
 
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
+  """Filter by the object’s `policies` field."""
+  policies: JSONFilter
+
+  """Filter by the object’s `provisions` field."""
+  provisions: JSONFilter
+
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
 
   """Checks for all expressions in this list."""
-  and: [ComputeLogModuleFilter!]
+  and: [NamespaceModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [ComputeLogModuleFilter!]
+  or: [NamespaceModuleFilter!]
 
   """Negates the expression."""
-  not: ComputeLogModuleFilter
+  not: NamespaceModuleFilter
 }
 
-"""Methods to use when ordering `ComputeLogModule`."""
-enum ComputeLogModuleOrderBy {
+"""Methods to use when ordering `NamespaceModule`."""
+enum NamespaceModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -7019,21 +6881,177 @@ enum ComputeLogModuleOrderBy {
   SCHEMA_ID_DESC
   PRIVATE_SCHEMA_ID_ASC
   PRIVATE_SCHEMA_ID_DESC
-  COMPUTE_LOG_TABLE_ID_ASC
-  COMPUTE_LOG_TABLE_ID_DESC
-  COMPUTE_LOG_TABLE_NAME_ASC
-  COMPUTE_LOG_TABLE_NAME_DESC
-  USAGE_DAILY_TABLE_ID_ASC
-  USAGE_DAILY_TABLE_ID_DESC
-  USAGE_DAILY_TABLE_NAME_ASC
-  USAGE_DAILY_TABLE_NAME_DESC
-  INTERVAL_ASC
-  INTERVAL_DESC
-  RETENTION_ASC
-  RETENTION_DESC
-  PREMAKE_ASC
-  PREMAKE_DESC
-  SCOPE_ASC
+  PUBLIC_SCHEMA_NAME_ASC
+  PUBLIC_SCHEMA_NAME_DESC
+  PRIVATE_SCHEMA_NAME_ASC
+  PRIVATE_SCHEMA_NAME_DESC
+  NAMESPACES_TABLE_ID_ASC
+  NAMESPACES_TABLE_ID_DESC
+  NAMESPACE_EVENTS_TABLE_ID_ASC
+  NAMESPACE_EVENTS_TABLE_ID_DESC
+  NAMESPACES_TABLE_NAME_ASC
+  NAMESPACES_TABLE_NAME_DESC
+  NAMESPACE_EVENTS_TABLE_NAME_ASC
+  NAMESPACE_EVENTS_TABLE_NAME_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
+  SCOPE_ASC
+  SCOPE_DESC
+  PREFIX_ASC
+  PREFIX_DESC
+  ENTITY_TABLE_ID_ASC
+  ENTITY_TABLE_ID_DESC
+  POLICIES_ASC
+  POLICIES_DESC
+  PROVISIONS_ASC
+  PROVISIONS_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
+}
+
+"""A connection to a list of `ComputeLogModule` values."""
+type ComputeLogModuleConnection {
+  """A list of `ComputeLogModule` objects."""
+  nodes: [ComputeLogModule]!
+
+  """
+  A list of edges which contains the `ComputeLogModule` and cursor to aid in pagination.
+  """
+  edges: [ComputeLogModuleEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
+  The count of *all* `ComputeLogModule` you could get from the connection.
+  """
+  totalCount: Int!
+}
+
+type ComputeLogModule {
+  id: UUID!
+  databaseId: UUID!
+  schemaId: UUID!
+  privateSchemaId: UUID!
+  computeLogTableId: UUID!
+  computeLogTableName: String!
+  usageDailyTableId: UUID!
+  usageDailyTableName: String!
+  interval: String!
+  retention: String!
+  premake: Int!
+  scope: String!
+  actorFkTableId: UUID
+  entityFkTableId: UUID
+  prefix: String!
+  apiName: String
+  privateApiName: String
+}
+
+"""A `ComputeLogModule` edge in the connection."""
+type ComputeLogModuleEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `ComputeLogModule` at the end of the edge."""
+  node: ComputeLogModule
+}
+
+"""
+A filter to be used against `ComputeLogModule` object types. All fields are combined with a logical ‘and.’
+"""
+input ComputeLogModuleFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
+
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
+
+  """Filter by the object’s `privateSchemaId` field."""
+  privateSchemaId: UUIDFilter
+
+  """Filter by the object’s `computeLogTableId` field."""
+  computeLogTableId: UUIDFilter
+
+  """Filter by the object’s `computeLogTableName` field."""
+  computeLogTableName: StringFilter
+
+  """Filter by the object’s `usageDailyTableId` field."""
+  usageDailyTableId: UUIDFilter
+
+  """Filter by the object’s `usageDailyTableName` field."""
+  usageDailyTableName: StringFilter
+
+  """Filter by the object’s `interval` field."""
+  interval: StringFilter
+
+  """Filter by the object’s `retention` field."""
+  retention: StringFilter
+
+  """Filter by the object’s `premake` field."""
+  premake: IntFilter
+
+  """Filter by the object’s `scope` field."""
+  scope: StringFilter
+
+  """Filter by the object’s `actorFkTableId` field."""
+  actorFkTableId: UUIDFilter
+
+  """Filter by the object’s `entityFkTableId` field."""
+  entityFkTableId: UUIDFilter
+
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
+
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [ComputeLogModuleFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [ComputeLogModuleFilter!]
+
+  """Negates the expression."""
+  not: ComputeLogModuleFilter
+}
+
+"""Methods to use when ordering `ComputeLogModule`."""
+enum ComputeLogModuleOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  DATABASE_ID_ASC
+  DATABASE_ID_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  PRIVATE_SCHEMA_ID_ASC
+  PRIVATE_SCHEMA_ID_DESC
+  COMPUTE_LOG_TABLE_ID_ASC
+  COMPUTE_LOG_TABLE_ID_DESC
+  COMPUTE_LOG_TABLE_NAME_ASC
+  COMPUTE_LOG_TABLE_NAME_DESC
+  USAGE_DAILY_TABLE_ID_ASC
+  USAGE_DAILY_TABLE_ID_DESC
+  USAGE_DAILY_TABLE_NAME_ASC
+  USAGE_DAILY_TABLE_NAME_DESC
+  INTERVAL_ASC
+  INTERVAL_DESC
+  RETENTION_ASC
+  RETENTION_DESC
+  PREMAKE_ASC
+  PREMAKE_DESC
+  SCOPE_ASC
   SCOPE_DESC
   ACTOR_FK_TABLE_ID_ASC
   ACTOR_FK_TABLE_ID_DESC
@@ -7509,58 +7527,58 @@ enum TransferLogModuleOrderBy {
   PRIVATE_API_NAME_DESC
 }
 
-"""A connection to a list of `DbUsageModule` values."""
-type DbUsageModuleConnection {
-  """A list of `DbUsageModule` objects."""
-  nodes: [DbUsageModule]!
+"""A connection to a list of `PlansModule` values."""
+type PlansModuleConnection {
+  """A list of `PlansModule` objects."""
+  nodes: [PlansModule]!
 
   """
-  A list of edges which contains the `DbUsageModule` and cursor to aid in pagination.
+  A list of edges which contains the `PlansModule` and cursor to aid in pagination.
   """
-  edges: [DbUsageModuleEdge]!
+  edges: [PlansModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `DbUsageModule` you could get from the connection."""
+  """The count of *all* `PlansModule` you could get from the connection."""
   totalCount: Int!
 }
 
-type DbUsageModule {
+type PlansModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  tableStatsLogTableId: UUID!
-  tableStatsLogTableName: String!
-  tableStatsDailyTableId: UUID!
-  tableStatsDailyTableName: String!
-  queryStatsLogTableId: UUID!
-  queryStatsLogTableName: String!
-  queryStatsDailyTableId: UUID!
-  queryStatsDailyTableName: String!
-  interval: String!
-  retention: String!
-  premake: Int!
-  scope: String!
-  prefix: String!
+  plansTableId: UUID!
+  plansTableName: String!
+  planLimitsTableId: UUID!
+  planLimitsTableName: String!
+  planPricingTableId: UUID
+  planOverridesTableId: UUID
+  planMeterLimitsTableId: UUID
+  planCapsTableId: UUID
+  applyPlanFunction: String!
+  applyPlanAggregateFunction: String!
+  applyBillingPlanFunction: String
+  applyPlanCapsFunction: String
+  prefix: String
   apiName: String
   privateApiName: String
 }
 
-"""A `DbUsageModule` edge in the connection."""
-type DbUsageModuleEdge {
+"""A `PlansModule` edge in the connection."""
+type PlansModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `DbUsageModule` at the end of the edge."""
-  node: DbUsageModule
+  """The `PlansModule` at the end of the edge."""
+  node: PlansModule
 }
 
 """
-A filter to be used against `DbUsageModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `PlansModule` object types. All fields are combined with a logical ‘and.’
 """
-input DbUsageModuleFilter {
+input PlansModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -7573,31 +7591,196 @@ input DbUsageModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `tableStatsLogTableId` field."""
-  tableStatsLogTableId: UUIDFilter
+  """Filter by the object’s `plansTableId` field."""
+  plansTableId: UUIDFilter
 
-  """Filter by the object’s `tableStatsLogTableName` field."""
-  tableStatsLogTableName: StringFilter
+  """Filter by the object’s `plansTableName` field."""
+  plansTableName: StringFilter
 
-  """Filter by the object’s `tableStatsDailyTableId` field."""
-  tableStatsDailyTableId: UUIDFilter
+  """Filter by the object’s `planLimitsTableId` field."""
+  planLimitsTableId: UUIDFilter
 
-  """Filter by the object’s `tableStatsDailyTableName` field."""
-  tableStatsDailyTableName: StringFilter
+  """Filter by the object’s `planLimitsTableName` field."""
+  planLimitsTableName: StringFilter
 
-  """Filter by the object’s `queryStatsLogTableId` field."""
-  queryStatsLogTableId: UUIDFilter
+  """Filter by the object’s `planPricingTableId` field."""
+  planPricingTableId: UUIDFilter
 
-  """Filter by the object’s `queryStatsLogTableName` field."""
-  queryStatsLogTableName: StringFilter
+  """Filter by the object’s `planOverridesTableId` field."""
+  planOverridesTableId: UUIDFilter
 
-  """Filter by the object’s `queryStatsDailyTableId` field."""
-  queryStatsDailyTableId: UUIDFilter
+  """Filter by the object’s `planMeterLimitsTableId` field."""
+  planMeterLimitsTableId: UUIDFilter
 
-  """Filter by the object’s `queryStatsDailyTableName` field."""
-  queryStatsDailyTableName: StringFilter
+  """Filter by the object’s `planCapsTableId` field."""
+  planCapsTableId: UUIDFilter
 
-  """Filter by the object’s `interval` field."""
+  """Filter by the object’s `applyPlanFunction` field."""
+  applyPlanFunction: StringFilter
+
+  """Filter by the object’s `applyPlanAggregateFunction` field."""
+  applyPlanAggregateFunction: StringFilter
+
+  """Filter by the object’s `applyBillingPlanFunction` field."""
+  applyBillingPlanFunction: StringFilter
+
+  """Filter by the object’s `applyPlanCapsFunction` field."""
+  applyPlanCapsFunction: StringFilter
+
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
+
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [PlansModuleFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [PlansModuleFilter!]
+
+  """Negates the expression."""
+  not: PlansModuleFilter
+}
+
+"""Methods to use when ordering `PlansModule`."""
+enum PlansModuleOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  DATABASE_ID_ASC
+  DATABASE_ID_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  PRIVATE_SCHEMA_ID_ASC
+  PRIVATE_SCHEMA_ID_DESC
+  PLANS_TABLE_ID_ASC
+  PLANS_TABLE_ID_DESC
+  PLANS_TABLE_NAME_ASC
+  PLANS_TABLE_NAME_DESC
+  PLAN_LIMITS_TABLE_ID_ASC
+  PLAN_LIMITS_TABLE_ID_DESC
+  PLAN_LIMITS_TABLE_NAME_ASC
+  PLAN_LIMITS_TABLE_NAME_DESC
+  PLAN_PRICING_TABLE_ID_ASC
+  PLAN_PRICING_TABLE_ID_DESC
+  PLAN_OVERRIDES_TABLE_ID_ASC
+  PLAN_OVERRIDES_TABLE_ID_DESC
+  PLAN_METER_LIMITS_TABLE_ID_ASC
+  PLAN_METER_LIMITS_TABLE_ID_DESC
+  PLAN_CAPS_TABLE_ID_ASC
+  PLAN_CAPS_TABLE_ID_DESC
+  APPLY_PLAN_FUNCTION_ASC
+  APPLY_PLAN_FUNCTION_DESC
+  APPLY_PLAN_AGGREGATE_FUNCTION_ASC
+  APPLY_PLAN_AGGREGATE_FUNCTION_DESC
+  APPLY_BILLING_PLAN_FUNCTION_ASC
+  APPLY_BILLING_PLAN_FUNCTION_DESC
+  APPLY_PLAN_CAPS_FUNCTION_ASC
+  APPLY_PLAN_CAPS_FUNCTION_DESC
+  PREFIX_ASC
+  PREFIX_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
+}
+
+"""A connection to a list of `DbUsageModule` values."""
+type DbUsageModuleConnection {
+  """A list of `DbUsageModule` objects."""
+  nodes: [DbUsageModule]!
+
+  """
+  A list of edges which contains the `DbUsageModule` and cursor to aid in pagination.
+  """
+  edges: [DbUsageModuleEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """The count of *all* `DbUsageModule` you could get from the connection."""
+  totalCount: Int!
+}
+
+type DbUsageModule {
+  id: UUID!
+  databaseId: UUID!
+  schemaId: UUID!
+  privateSchemaId: UUID!
+  tableStatsLogTableId: UUID!
+  tableStatsLogTableName: String!
+  tableStatsDailyTableId: UUID!
+  tableStatsDailyTableName: String!
+  queryStatsLogTableId: UUID!
+  queryStatsLogTableName: String!
+  queryStatsDailyTableId: UUID!
+  queryStatsDailyTableName: String!
+  interval: String!
+  retention: String!
+  premake: Int!
+  scope: String!
+  prefix: String!
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
+
+"""A `DbUsageModule` edge in the connection."""
+type DbUsageModuleEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `DbUsageModule` at the end of the edge."""
+  node: DbUsageModule
+}
+
+"""
+A filter to be used against `DbUsageModule` object types. All fields are combined with a logical ‘and.’
+"""
+input DbUsageModuleFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
+
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
+
+  """Filter by the object’s `privateSchemaId` field."""
+  privateSchemaId: UUIDFilter
+
+  """Filter by the object’s `tableStatsLogTableId` field."""
+  tableStatsLogTableId: UUIDFilter
+
+  """Filter by the object’s `tableStatsLogTableName` field."""
+  tableStatsLogTableName: StringFilter
+
+  """Filter by the object’s `tableStatsDailyTableId` field."""
+  tableStatsDailyTableId: UUIDFilter
+
+  """Filter by the object’s `tableStatsDailyTableName` field."""
+  tableStatsDailyTableName: StringFilter
+
+  """Filter by the object’s `queryStatsLogTableId` field."""
+  queryStatsLogTableId: UUIDFilter
+
+  """Filter by the object’s `queryStatsLogTableName` field."""
+  queryStatsLogTableName: StringFilter
+
+  """Filter by the object’s `queryStatsDailyTableId` field."""
+  queryStatsDailyTableId: UUIDFilter
+
+  """Filter by the object’s `queryStatsDailyTableName` field."""
+  queryStatsDailyTableName: StringFilter
+
+  """Filter by the object’s `interval` field."""
   interval: StringFilter
 
   """Filter by the object’s `retention` field."""
@@ -7612,6 +7795,9 @@ input DbUsageModuleFilter {
   """Filter by the object’s `prefix` field."""
   prefix: StringFilter
 
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
 
@@ -7667,6 +7853,8 @@ enum DbUsageModuleOrderBy {
   SCOPE_DESC
   PREFIX_ASC
   PREFIX_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
   API_NAME_ASC
   API_NAME_DESC
   PRIVATE_API_NAME_ASC
@@ -7710,6 +7898,7 @@ type NotificationsModule {
   hasSettingsExtension: Boolean!
   hasDigestMetadata: Boolean!
   hasSubscriptions: Boolean!
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -7778,6 +7967,9 @@ input NotificationsModuleFilter {
   """Filter by the object’s `hasSubscriptions` field."""
   hasSubscriptions: BooleanFilter
 
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
 
@@ -7833,64 +8025,71 @@ enum NotificationsModuleOrderBy {
   HAS_DIGEST_METADATA_DESC
   HAS_SUBSCRIPTIONS_ASC
   HAS_SUBSCRIPTIONS_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
   API_NAME_ASC
   API_NAME_DESC
   PRIVATE_API_NAME_ASC
   PRIVATE_API_NAME_DESC
 }
 
-"""A connection to a list of `PlansModule` values."""
-type PlansModuleConnection {
-  """A list of `PlansModule` objects."""
-  nodes: [PlansModule]!
+"""A connection to a list of `BillingProviderModule` values."""
+type BillingProviderModuleConnection {
+  """A list of `BillingProviderModule` objects."""
+  nodes: [BillingProviderModule]!
 
   """
-  A list of edges which contains the `PlansModule` and cursor to aid in pagination.
+  A list of edges which contains the `BillingProviderModule` and cursor to aid in pagination.
   """
-  edges: [PlansModuleEdge]!
+  edges: [BillingProviderModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `PlansModule` you could get from the connection."""
+  """
+  The count of *all* `BillingProviderModule` you could get from the connection.
+  """
   totalCount: Int!
 }
 
-type PlansModule {
+type BillingProviderModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  plansTableId: UUID!
-  plansTableName: String!
-  planLimitsTableId: UUID!
-  planLimitsTableName: String!
-  planPricingTableId: UUID
-  planOverridesTableId: UUID
-  planMeterLimitsTableId: UUID
-  planCapsTableId: UUID
-  applyPlanFunction: String!
-  applyPlanAggregateFunction: String!
-  applyBillingPlanFunction: String
-  applyPlanCapsFunction: String
+  provider: String!
+  productsTableId: UUID
+  pricesTableId: UUID
+  subscriptionsTableId: UUID
+  billingCustomersTableId: UUID!
+  billingCustomersTableName: String!
+  billingProductsTableId: UUID!
+  billingProductsTableName: String!
+  billingPricesTableId: UUID!
+  billingPricesTableName: String!
+  billingSubscriptionsTableId: UUID!
+  billingSubscriptionsTableName: String!
+  billingWebhookEventsTableId: UUID!
+  billingWebhookEventsTableName: String!
+  processBillingEventFunction: String!
   prefix: String
   apiName: String
   privateApiName: String
 }
 
-"""A `PlansModule` edge in the connection."""
-type PlansModuleEdge {
+"""A `BillingProviderModule` edge in the connection."""
+type BillingProviderModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `PlansModule` at the end of the edge."""
-  node: PlansModule
+  """The `BillingProviderModule` at the end of the edge."""
+  node: BillingProviderModule
 }
 
 """
-A filter to be used against `PlansModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `BillingProviderModule` object types. All fields are combined with a logical ‘and.’
 """
-input PlansModuleFilter {
+input BillingProviderModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -7903,41 +8102,50 @@ input PlansModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `plansTableId` field."""
-  plansTableId: UUIDFilter
+  """Filter by the object’s `provider` field."""
+  provider: StringFilter
 
-  """Filter by the object’s `plansTableName` field."""
-  plansTableName: StringFilter
+  """Filter by the object’s `productsTableId` field."""
+  productsTableId: UUIDFilter
 
-  """Filter by the object’s `planLimitsTableId` field."""
-  planLimitsTableId: UUIDFilter
+  """Filter by the object’s `pricesTableId` field."""
+  pricesTableId: UUIDFilter
 
-  """Filter by the object’s `planLimitsTableName` field."""
-  planLimitsTableName: StringFilter
+  """Filter by the object’s `subscriptionsTableId` field."""
+  subscriptionsTableId: UUIDFilter
 
-  """Filter by the object’s `planPricingTableId` field."""
-  planPricingTableId: UUIDFilter
+  """Filter by the object’s `billingCustomersTableId` field."""
+  billingCustomersTableId: UUIDFilter
 
-  """Filter by the object’s `planOverridesTableId` field."""
-  planOverridesTableId: UUIDFilter
+  """Filter by the object’s `billingCustomersTableName` field."""
+  billingCustomersTableName: StringFilter
 
-  """Filter by the object’s `planMeterLimitsTableId` field."""
-  planMeterLimitsTableId: UUIDFilter
+  """Filter by the object’s `billingProductsTableId` field."""
+  billingProductsTableId: UUIDFilter
 
-  """Filter by the object’s `planCapsTableId` field."""
-  planCapsTableId: UUIDFilter
+  """Filter by the object’s `billingProductsTableName` field."""
+  billingProductsTableName: StringFilter
 
-  """Filter by the object’s `applyPlanFunction` field."""
-  applyPlanFunction: StringFilter
+  """Filter by the object’s `billingPricesTableId` field."""
+  billingPricesTableId: UUIDFilter
 
-  """Filter by the object’s `applyPlanAggregateFunction` field."""
-  applyPlanAggregateFunction: StringFilter
+  """Filter by the object’s `billingPricesTableName` field."""
+  billingPricesTableName: StringFilter
 
-  """Filter by the object’s `applyBillingPlanFunction` field."""
-  applyBillingPlanFunction: StringFilter
+  """Filter by the object’s `billingSubscriptionsTableId` field."""
+  billingSubscriptionsTableId: UUIDFilter
 
-  """Filter by the object’s `applyPlanCapsFunction` field."""
-  applyPlanCapsFunction: StringFilter
+  """Filter by the object’s `billingSubscriptionsTableName` field."""
+  billingSubscriptionsTableName: StringFilter
+
+  """Filter by the object’s `billingWebhookEventsTableId` field."""
+  billingWebhookEventsTableId: UUIDFilter
+
+  """Filter by the object’s `billingWebhookEventsTableName` field."""
+  billingWebhookEventsTableName: StringFilter
+
+  """Filter by the object’s `processBillingEventFunction` field."""
+  processBillingEventFunction: StringFilter
 
   """Filter by the object’s `prefix` field."""
   prefix: StringFilter
@@ -7949,17 +8157,17 @@ input PlansModuleFilter {
   privateApiName: StringFilter
 
   """Checks for all expressions in this list."""
-  and: [PlansModuleFilter!]
+  and: [BillingProviderModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [PlansModuleFilter!]
+  or: [BillingProviderModuleFilter!]
 
   """Negates the expression."""
-  not: PlansModuleFilter
+  not: BillingProviderModuleFilter
 }
 
-"""Methods to use when ordering `PlansModule`."""
-enum PlansModuleOrderBy {
+"""Methods to use when ordering `BillingProviderModule`."""
+enum BillingProviderModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -7971,30 +8179,36 @@ enum PlansModuleOrderBy {
   SCHEMA_ID_DESC
   PRIVATE_SCHEMA_ID_ASC
   PRIVATE_SCHEMA_ID_DESC
-  PLANS_TABLE_ID_ASC
-  PLANS_TABLE_ID_DESC
-  PLANS_TABLE_NAME_ASC
-  PLANS_TABLE_NAME_DESC
-  PLAN_LIMITS_TABLE_ID_ASC
-  PLAN_LIMITS_TABLE_ID_DESC
-  PLAN_LIMITS_TABLE_NAME_ASC
-  PLAN_LIMITS_TABLE_NAME_DESC
-  PLAN_PRICING_TABLE_ID_ASC
-  PLAN_PRICING_TABLE_ID_DESC
-  PLAN_OVERRIDES_TABLE_ID_ASC
-  PLAN_OVERRIDES_TABLE_ID_DESC
-  PLAN_METER_LIMITS_TABLE_ID_ASC
-  PLAN_METER_LIMITS_TABLE_ID_DESC
-  PLAN_CAPS_TABLE_ID_ASC
-  PLAN_CAPS_TABLE_ID_DESC
-  APPLY_PLAN_FUNCTION_ASC
-  APPLY_PLAN_FUNCTION_DESC
-  APPLY_PLAN_AGGREGATE_FUNCTION_ASC
-  APPLY_PLAN_AGGREGATE_FUNCTION_DESC
-  APPLY_BILLING_PLAN_FUNCTION_ASC
-  APPLY_BILLING_PLAN_FUNCTION_DESC
-  APPLY_PLAN_CAPS_FUNCTION_ASC
-  APPLY_PLAN_CAPS_FUNCTION_DESC
+  PROVIDER_ASC
+  PROVIDER_DESC
+  PRODUCTS_TABLE_ID_ASC
+  PRODUCTS_TABLE_ID_DESC
+  PRICES_TABLE_ID_ASC
+  PRICES_TABLE_ID_DESC
+  SUBSCRIPTIONS_TABLE_ID_ASC
+  SUBSCRIPTIONS_TABLE_ID_DESC
+  BILLING_CUSTOMERS_TABLE_ID_ASC
+  BILLING_CUSTOMERS_TABLE_ID_DESC
+  BILLING_CUSTOMERS_TABLE_NAME_ASC
+  BILLING_CUSTOMERS_TABLE_NAME_DESC
+  BILLING_PRODUCTS_TABLE_ID_ASC
+  BILLING_PRODUCTS_TABLE_ID_DESC
+  BILLING_PRODUCTS_TABLE_NAME_ASC
+  BILLING_PRODUCTS_TABLE_NAME_DESC
+  BILLING_PRICES_TABLE_ID_ASC
+  BILLING_PRICES_TABLE_ID_DESC
+  BILLING_PRICES_TABLE_NAME_ASC
+  BILLING_PRICES_TABLE_NAME_DESC
+  BILLING_SUBSCRIPTIONS_TABLE_ID_ASC
+  BILLING_SUBSCRIPTIONS_TABLE_ID_DESC
+  BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC
+  BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC
+  BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC
+  BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC
+  BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC
+  BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC
+  PROCESS_BILLING_EVENT_FUNCTION_ASC
+  PROCESS_BILLING_EVENT_FUNCTION_DESC
   PREFIX_ASC
   PREFIX_DESC
   API_NAME_ASC
@@ -8003,62 +8217,61 @@ enum PlansModuleOrderBy {
   PRIVATE_API_NAME_DESC
 }
 
-"""A connection to a list of `HierarchyModule` values."""
-type HierarchyModuleConnection {
-  """A list of `HierarchyModule` objects."""
-  nodes: [HierarchyModule]!
+"""A connection to a list of `FunctionModule` values."""
+type FunctionModuleConnection {
+  """A list of `FunctionModule` objects."""
+  nodes: [FunctionModule]!
 
   """
-  A list of edges which contains the `HierarchyModule` and cursor to aid in pagination.
+  A list of edges which contains the `FunctionModule` and cursor to aid in pagination.
   """
-  edges: [HierarchyModuleEdge]!
+  edges: [FunctionModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """
-  The count of *all* `HierarchyModule` you could get from the connection.
-  """
+  """The count of *all* `FunctionModule` you could get from the connection."""
   totalCount: Int!
 }
 
-type HierarchyModule {
+type FunctionModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  chartEdgesTableId: UUID!
-  chartEdgesTableName: String!
-  hierarchySprtTableId: UUID!
-  hierarchySprtTableName: String!
-  chartEdgeGrantsTableId: UUID!
-  chartEdgeGrantsTableName: String!
-  entityTableId: UUID!
-  usersTableId: UUID!
+  publicSchemaName: String
+  privateSchemaName: String
+  definitionsTableId: UUID!
+  invocationsTableId: UUID!
+  executionLogsTableId: UUID!
+  secretDefinitionsTableId: UUID!
+  definitionsTableName: String!
+  invocationsTableName: String!
+  executionLogsTableName: String!
+  secretDefinitionsTableName: String!
+  apiName: String
+  privateApiName: String
   scope: String!
   prefix: String!
-  privateSchemaName: String!
-  sprtTableName: String!
-  rebuildHierarchyFunction: String!
-  getSubordinatesFunction: String!
-  getManagersFunction: String!
-  isManagerOfFunction: String!
-  createdAt: Datetime!
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
 }
 
-"""A `HierarchyModule` edge in the connection."""
-type HierarchyModuleEdge {
+"""A `FunctionModule` edge in the connection."""
+type FunctionModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `HierarchyModule` at the end of the edge."""
-  node: HierarchyModule
+  """The `FunctionModule` at the end of the edge."""
+  node: FunctionModule
 }
 
 """
-A filter to be used against `HierarchyModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `FunctionModule` object types. All fields are combined with a logical ‘and.’
 """
-input HierarchyModuleFilter {
+input FunctionModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -8071,29 +8284,41 @@ input HierarchyModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `chartEdgesTableId` field."""
-  chartEdgesTableId: UUIDFilter
+  """Filter by the object’s `publicSchemaName` field."""
+  publicSchemaName: StringFilter
 
-  """Filter by the object’s `chartEdgesTableName` field."""
-  chartEdgesTableName: StringFilter
+  """Filter by the object’s `privateSchemaName` field."""
+  privateSchemaName: StringFilter
 
-  """Filter by the object’s `hierarchySprtTableId` field."""
-  hierarchySprtTableId: UUIDFilter
+  """Filter by the object’s `definitionsTableId` field."""
+  definitionsTableId: UUIDFilter
 
-  """Filter by the object’s `hierarchySprtTableName` field."""
-  hierarchySprtTableName: StringFilter
+  """Filter by the object’s `invocationsTableId` field."""
+  invocationsTableId: UUIDFilter
 
-  """Filter by the object’s `chartEdgeGrantsTableId` field."""
-  chartEdgeGrantsTableId: UUIDFilter
+  """Filter by the object’s `executionLogsTableId` field."""
+  executionLogsTableId: UUIDFilter
 
-  """Filter by the object’s `chartEdgeGrantsTableName` field."""
-  chartEdgeGrantsTableName: StringFilter
+  """Filter by the object’s `secretDefinitionsTableId` field."""
+  secretDefinitionsTableId: UUIDFilter
 
-  """Filter by the object’s `entityTableId` field."""
-  entityTableId: UUIDFilter
+  """Filter by the object’s `definitionsTableName` field."""
+  definitionsTableName: StringFilter
 
-  """Filter by the object’s `usersTableId` field."""
-  usersTableId: UUIDFilter
+  """Filter by the object’s `invocationsTableName` field."""
+  invocationsTableName: StringFilter
+
+  """Filter by the object’s `executionLogsTableName` field."""
+  executionLogsTableName: StringFilter
+
+  """Filter by the object’s `secretDefinitionsTableName` field."""
+  secretDefinitionsTableName: StringFilter
+
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
 
   """Filter by the object’s `scope` field."""
   scope: StringFilter
@@ -8101,39 +8326,30 @@ input HierarchyModuleFilter {
   """Filter by the object’s `prefix` field."""
   prefix: StringFilter
 
-  """Filter by the object’s `privateSchemaName` field."""
-  privateSchemaName: StringFilter
-
-  """Filter by the object’s `sprtTableName` field."""
-  sprtTableName: StringFilter
-
-  """Filter by the object’s `rebuildHierarchyFunction` field."""
-  rebuildHierarchyFunction: StringFilter
-
-  """Filter by the object’s `getSubordinatesFunction` field."""
-  getSubordinatesFunction: StringFilter
+  """Filter by the object’s `entityTableId` field."""
+  entityTableId: UUIDFilter
 
-  """Filter by the object’s `getManagersFunction` field."""
-  getManagersFunction: StringFilter
+  """Filter by the object’s `policies` field."""
+  policies: JSONFilter
 
-  """Filter by the object’s `isManagerOfFunction` field."""
-  isManagerOfFunction: StringFilter
+  """Filter by the object’s `provisions` field."""
+  provisions: JSONFilter
 
-  """Filter by the object’s `createdAt` field."""
-  createdAt: DatetimeFilter
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
 
   """Checks for all expressions in this list."""
-  and: [HierarchyModuleFilter!]
+  and: [FunctionModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [HierarchyModuleFilter!]
+  or: [FunctionModuleFilter!]
 
   """Negates the expression."""
-  not: HierarchyModuleFilter
+  not: FunctionModuleFilter
 }
 
-"""Methods to use when ordering `HierarchyModule`."""
-enum HierarchyModuleOrderBy {
+"""Methods to use when ordering `FunctionModule`."""
+enum FunctionModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -8145,97 +8361,101 @@ enum HierarchyModuleOrderBy {
   SCHEMA_ID_DESC
   PRIVATE_SCHEMA_ID_ASC
   PRIVATE_SCHEMA_ID_DESC
-  CHART_EDGES_TABLE_ID_ASC
-  CHART_EDGES_TABLE_ID_DESC
-  CHART_EDGES_TABLE_NAME_ASC
-  CHART_EDGES_TABLE_NAME_DESC
-  HIERARCHY_SPRT_TABLE_ID_ASC
-  HIERARCHY_SPRT_TABLE_ID_DESC
-  HIERARCHY_SPRT_TABLE_NAME_ASC
-  HIERARCHY_SPRT_TABLE_NAME_DESC
-  CHART_EDGE_GRANTS_TABLE_ID_ASC
-  CHART_EDGE_GRANTS_TABLE_ID_DESC
-  CHART_EDGE_GRANTS_TABLE_NAME_ASC
-  CHART_EDGE_GRANTS_TABLE_NAME_DESC
-  ENTITY_TABLE_ID_ASC
-  ENTITY_TABLE_ID_DESC
-  USERS_TABLE_ID_ASC
-  USERS_TABLE_ID_DESC
-  SCOPE_ASC
-  SCOPE_DESC
-  PREFIX_ASC
-  PREFIX_DESC
+  PUBLIC_SCHEMA_NAME_ASC
+  PUBLIC_SCHEMA_NAME_DESC
   PRIVATE_SCHEMA_NAME_ASC
   PRIVATE_SCHEMA_NAME_DESC
-  SPRT_TABLE_NAME_ASC
-  SPRT_TABLE_NAME_DESC
-  REBUILD_HIERARCHY_FUNCTION_ASC
-  REBUILD_HIERARCHY_FUNCTION_DESC
-  GET_SUBORDINATES_FUNCTION_ASC
-  GET_SUBORDINATES_FUNCTION_DESC
-  GET_MANAGERS_FUNCTION_ASC
-  GET_MANAGERS_FUNCTION_DESC
-  IS_MANAGER_OF_FUNCTION_ASC
-  IS_MANAGER_OF_FUNCTION_DESC
-  CREATED_AT_ASC
-  CREATED_AT_DESC
+  DEFINITIONS_TABLE_ID_ASC
+  DEFINITIONS_TABLE_ID_DESC
+  INVOCATIONS_TABLE_ID_ASC
+  INVOCATIONS_TABLE_ID_DESC
+  EXECUTION_LOGS_TABLE_ID_ASC
+  EXECUTION_LOGS_TABLE_ID_DESC
+  SECRET_DEFINITIONS_TABLE_ID_ASC
+  SECRET_DEFINITIONS_TABLE_ID_DESC
+  DEFINITIONS_TABLE_NAME_ASC
+  DEFINITIONS_TABLE_NAME_DESC
+  INVOCATIONS_TABLE_NAME_ASC
+  INVOCATIONS_TABLE_NAME_DESC
+  EXECUTION_LOGS_TABLE_NAME_ASC
+  EXECUTION_LOGS_TABLE_NAME_DESC
+  SECRET_DEFINITIONS_TABLE_NAME_ASC
+  SECRET_DEFINITIONS_TABLE_NAME_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
+  SCOPE_ASC
+  SCOPE_DESC
+  PREFIX_ASC
+  PREFIX_DESC
+  ENTITY_TABLE_ID_ASC
+  ENTITY_TABLE_ID_DESC
+  POLICIES_ASC
+  POLICIES_DESC
+  PROVISIONS_ASC
+  PROVISIONS_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
 }
 
-"""A connection to a list of `BillingModule` values."""
-type BillingModuleConnection {
-  """A list of `BillingModule` objects."""
-  nodes: [BillingModule]!
+"""A connection to a list of `HierarchyModule` values."""
+type HierarchyModuleConnection {
+  """A list of `HierarchyModule` objects."""
+  nodes: [HierarchyModule]!
 
   """
-  A list of edges which contains the `BillingModule` and cursor to aid in pagination.
+  A list of edges which contains the `HierarchyModule` and cursor to aid in pagination.
   """
-  edges: [BillingModuleEdge]!
+  edges: [HierarchyModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `BillingModule` you could get from the connection."""
+  """
+  The count of *all* `HierarchyModule` you could get from the connection.
+  """
   totalCount: Int!
 }
 
-type BillingModule {
+type HierarchyModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
   privateSchemaId: UUID!
-  metersTableId: UUID!
-  metersTableName: String!
-  planSubscriptionsTableId: UUID!
-  planSubscriptionsTableName: String!
-  ledgerTableId: UUID!
-  ledgerTableName: String!
-  balancesTableId: UUID!
-  balancesTableName: String!
-  meterCreditsTableId: UUID!
-  meterCreditsTableName: String!
-  meterSourcesTableId: UUID!
-  meterSourcesTableName: String!
-  meterDefaultsTableId: UUID!
-  meterDefaultsTableName: String!
-  recordUsageFunction: String!
-  prefix: String
-  apiName: String
-  privateApiName: String
+  chartEdgesTableId: UUID!
+  chartEdgesTableName: String!
+  hierarchySprtTableId: UUID!
+  hierarchySprtTableName: String!
+  chartEdgeGrantsTableId: UUID!
+  chartEdgeGrantsTableName: String!
+  entityTableId: UUID!
+  usersTableId: UUID!
+  scope: String!
+  prefix: String!
+  privateSchemaName: String!
+  sprtTableName: String!
+  rebuildHierarchyFunction: String!
+  getSubordinatesFunction: String!
+  getManagersFunction: String!
+  isManagerOfFunction: String!
+  defaultPermissions: [String]
+  createdAt: Datetime!
 }
 
-"""A `BillingModule` edge in the connection."""
-type BillingModuleEdge {
+"""A `HierarchyModule` edge in the connection."""
+type HierarchyModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `BillingModule` at the end of the edge."""
-  node: BillingModule
+  """The `HierarchyModule` at the end of the edge."""
+  node: HierarchyModule
 }
 
 """
-A filter to be used against `BillingModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `HierarchyModule` object types. All fields are combined with a logical ‘and.’
 """
-input BillingModuleFilter {
+input HierarchyModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
@@ -8248,72 +8468,72 @@ input BillingModuleFilter {
   """Filter by the object’s `privateSchemaId` field."""
   privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `metersTableId` field."""
-  metersTableId: UUIDFilter
+  """Filter by the object’s `chartEdgesTableId` field."""
+  chartEdgesTableId: UUIDFilter
 
-  """Filter by the object’s `metersTableName` field."""
-  metersTableName: StringFilter
+  """Filter by the object’s `chartEdgesTableName` field."""
+  chartEdgesTableName: StringFilter
 
-  """Filter by the object’s `planSubscriptionsTableId` field."""
-  planSubscriptionsTableId: UUIDFilter
+  """Filter by the object’s `hierarchySprtTableId` field."""
+  hierarchySprtTableId: UUIDFilter
 
-  """Filter by the object’s `planSubscriptionsTableName` field."""
-  planSubscriptionsTableName: StringFilter
+  """Filter by the object’s `hierarchySprtTableName` field."""
+  hierarchySprtTableName: StringFilter
 
-  """Filter by the object’s `ledgerTableId` field."""
-  ledgerTableId: UUIDFilter
+  """Filter by the object’s `chartEdgeGrantsTableId` field."""
+  chartEdgeGrantsTableId: UUIDFilter
 
-  """Filter by the object’s `ledgerTableName` field."""
-  ledgerTableName: StringFilter
+  """Filter by the object’s `chartEdgeGrantsTableName` field."""
+  chartEdgeGrantsTableName: StringFilter
 
-  """Filter by the object’s `balancesTableId` field."""
-  balancesTableId: UUIDFilter
+  """Filter by the object’s `entityTableId` field."""
+  entityTableId: UUIDFilter
 
-  """Filter by the object’s `balancesTableName` field."""
-  balancesTableName: StringFilter
+  """Filter by the object’s `usersTableId` field."""
+  usersTableId: UUIDFilter
 
-  """Filter by the object’s `meterCreditsTableId` field."""
-  meterCreditsTableId: UUIDFilter
+  """Filter by the object’s `scope` field."""
+  scope: StringFilter
 
-  """Filter by the object’s `meterCreditsTableName` field."""
-  meterCreditsTableName: StringFilter
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
 
-  """Filter by the object’s `meterSourcesTableId` field."""
-  meterSourcesTableId: UUIDFilter
+  """Filter by the object’s `privateSchemaName` field."""
+  privateSchemaName: StringFilter
 
-  """Filter by the object’s `meterSourcesTableName` field."""
-  meterSourcesTableName: StringFilter
+  """Filter by the object’s `sprtTableName` field."""
+  sprtTableName: StringFilter
 
-  """Filter by the object’s `meterDefaultsTableId` field."""
-  meterDefaultsTableId: UUIDFilter
+  """Filter by the object’s `rebuildHierarchyFunction` field."""
+  rebuildHierarchyFunction: StringFilter
 
-  """Filter by the object’s `meterDefaultsTableName` field."""
-  meterDefaultsTableName: StringFilter
+  """Filter by the object’s `getSubordinatesFunction` field."""
+  getSubordinatesFunction: StringFilter
 
-  """Filter by the object’s `recordUsageFunction` field."""
-  recordUsageFunction: StringFilter
+  """Filter by the object’s `getManagersFunction` field."""
+  getManagersFunction: StringFilter
 
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
+  """Filter by the object’s `isManagerOfFunction` field."""
+  isManagerOfFunction: StringFilter
 
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
 
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
+  """Filter by the object’s `createdAt` field."""
+  createdAt: DatetimeFilter
 
   """Checks for all expressions in this list."""
-  and: [BillingModuleFilter!]
+  and: [HierarchyModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [BillingModuleFilter!]
+  or: [HierarchyModuleFilter!]
 
   """Negates the expression."""
-  not: BillingModuleFilter
+  not: HierarchyModuleFilter
 }
 
-"""Methods to use when ordering `BillingModule`."""
-enum BillingModuleOrderBy {
+"""Methods to use when ordering `HierarchyModule`."""
+enum HierarchyModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -8325,235 +8545,51 @@ enum BillingModuleOrderBy {
   SCHEMA_ID_DESC
   PRIVATE_SCHEMA_ID_ASC
   PRIVATE_SCHEMA_ID_DESC
-  METERS_TABLE_ID_ASC
-  METERS_TABLE_ID_DESC
-  METERS_TABLE_NAME_ASC
-  METERS_TABLE_NAME_DESC
-  PLAN_SUBSCRIPTIONS_TABLE_ID_ASC
-  PLAN_SUBSCRIPTIONS_TABLE_ID_DESC
-  PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC
-  PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC
-  LEDGER_TABLE_ID_ASC
-  LEDGER_TABLE_ID_DESC
-  LEDGER_TABLE_NAME_ASC
-  LEDGER_TABLE_NAME_DESC
-  BALANCES_TABLE_ID_ASC
-  BALANCES_TABLE_ID_DESC
-  BALANCES_TABLE_NAME_ASC
-  BALANCES_TABLE_NAME_DESC
-  METER_CREDITS_TABLE_ID_ASC
-  METER_CREDITS_TABLE_ID_DESC
-  METER_CREDITS_TABLE_NAME_ASC
-  METER_CREDITS_TABLE_NAME_DESC
-  METER_SOURCES_TABLE_ID_ASC
-  METER_SOURCES_TABLE_ID_DESC
-  METER_SOURCES_TABLE_NAME_ASC
-  METER_SOURCES_TABLE_NAME_DESC
-  METER_DEFAULTS_TABLE_ID_ASC
-  METER_DEFAULTS_TABLE_ID_DESC
-  METER_DEFAULTS_TABLE_NAME_ASC
-  METER_DEFAULTS_TABLE_NAME_DESC
-  RECORD_USAGE_FUNCTION_ASC
-  RECORD_USAGE_FUNCTION_DESC
+  CHART_EDGES_TABLE_ID_ASC
+  CHART_EDGES_TABLE_ID_DESC
+  CHART_EDGES_TABLE_NAME_ASC
+  CHART_EDGES_TABLE_NAME_DESC
+  HIERARCHY_SPRT_TABLE_ID_ASC
+  HIERARCHY_SPRT_TABLE_ID_DESC
+  HIERARCHY_SPRT_TABLE_NAME_ASC
+  HIERARCHY_SPRT_TABLE_NAME_DESC
+  CHART_EDGE_GRANTS_TABLE_ID_ASC
+  CHART_EDGE_GRANTS_TABLE_ID_DESC
+  CHART_EDGE_GRANTS_TABLE_NAME_ASC
+  CHART_EDGE_GRANTS_TABLE_NAME_DESC
+  ENTITY_TABLE_ID_ASC
+  ENTITY_TABLE_ID_DESC
+  USERS_TABLE_ID_ASC
+  USERS_TABLE_ID_DESC
+  SCOPE_ASC
+  SCOPE_DESC
   PREFIX_ASC
   PREFIX_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
+  PRIVATE_SCHEMA_NAME_ASC
+  PRIVATE_SCHEMA_NAME_DESC
+  SPRT_TABLE_NAME_ASC
+  SPRT_TABLE_NAME_DESC
+  REBUILD_HIERARCHY_FUNCTION_ASC
+  REBUILD_HIERARCHY_FUNCTION_DESC
+  GET_SUBORDINATES_FUNCTION_ASC
+  GET_SUBORDINATES_FUNCTION_DESC
+  GET_MANAGERS_FUNCTION_ASC
+  GET_MANAGERS_FUNCTION_DESC
+  IS_MANAGER_OF_FUNCTION_ASC
+  IS_MANAGER_OF_FUNCTION_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
+  CREATED_AT_ASC
+  CREATED_AT_DESC
 }
 
-"""A connection to a list of `BillingProviderModule` values."""
-type BillingProviderModuleConnection {
-  """A list of `BillingProviderModule` objects."""
-  nodes: [BillingProviderModule]!
+"""A connection to a list of `ProfilesModule` values."""
+type ProfilesModuleConnection {
+  """A list of `ProfilesModule` objects."""
+  nodes: [ProfilesModule]!
 
   """
-  A list of edges which contains the `BillingProviderModule` and cursor to aid in pagination.
-  """
-  edges: [BillingProviderModuleEdge]!
-
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
-
-  """
-  The count of *all* `BillingProviderModule` you could get from the connection.
-  """
-  totalCount: Int!
-}
-
-type BillingProviderModule {
-  id: UUID!
-  databaseId: UUID!
-  schemaId: UUID!
-  privateSchemaId: UUID!
-  provider: String!
-  productsTableId: UUID
-  pricesTableId: UUID
-  subscriptionsTableId: UUID
-  billingCustomersTableId: UUID!
-  billingCustomersTableName: String!
-  billingProductsTableId: UUID!
-  billingProductsTableName: String!
-  billingPricesTableId: UUID!
-  billingPricesTableName: String!
-  billingSubscriptionsTableId: UUID!
-  billingSubscriptionsTableName: String!
-  billingWebhookEventsTableId: UUID!
-  billingWebhookEventsTableName: String!
-  processBillingEventFunction: String!
-  prefix: String
-  apiName: String
-  privateApiName: String
-}
-
-"""A `BillingProviderModule` edge in the connection."""
-type BillingProviderModuleEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `BillingProviderModule` at the end of the edge."""
-  node: BillingProviderModule
-}
-
-"""
-A filter to be used against `BillingProviderModule` object types. All fields are combined with a logical ‘and.’
-"""
-input BillingProviderModuleFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `databaseId` field."""
-  databaseId: UUIDFilter
-
-  """Filter by the object’s `schemaId` field."""
-  schemaId: UUIDFilter
-
-  """Filter by the object’s `privateSchemaId` field."""
-  privateSchemaId: UUIDFilter
-
-  """Filter by the object’s `provider` field."""
-  provider: StringFilter
-
-  """Filter by the object’s `productsTableId` field."""
-  productsTableId: UUIDFilter
-
-  """Filter by the object’s `pricesTableId` field."""
-  pricesTableId: UUIDFilter
-
-  """Filter by the object’s `subscriptionsTableId` field."""
-  subscriptionsTableId: UUIDFilter
-
-  """Filter by the object’s `billingCustomersTableId` field."""
-  billingCustomersTableId: UUIDFilter
-
-  """Filter by the object’s `billingCustomersTableName` field."""
-  billingCustomersTableName: StringFilter
-
-  """Filter by the object’s `billingProductsTableId` field."""
-  billingProductsTableId: UUIDFilter
-
-  """Filter by the object’s `billingProductsTableName` field."""
-  billingProductsTableName: StringFilter
-
-  """Filter by the object’s `billingPricesTableId` field."""
-  billingPricesTableId: UUIDFilter
-
-  """Filter by the object’s `billingPricesTableName` field."""
-  billingPricesTableName: StringFilter
-
-  """Filter by the object’s `billingSubscriptionsTableId` field."""
-  billingSubscriptionsTableId: UUIDFilter
-
-  """Filter by the object’s `billingSubscriptionsTableName` field."""
-  billingSubscriptionsTableName: StringFilter
-
-  """Filter by the object’s `billingWebhookEventsTableId` field."""
-  billingWebhookEventsTableId: UUIDFilter
-
-  """Filter by the object’s `billingWebhookEventsTableName` field."""
-  billingWebhookEventsTableName: StringFilter
-
-  """Filter by the object’s `processBillingEventFunction` field."""
-  processBillingEventFunction: StringFilter
-
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
-
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
-
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
-
-  """Checks for all expressions in this list."""
-  and: [BillingProviderModuleFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [BillingProviderModuleFilter!]
-
-  """Negates the expression."""
-  not: BillingProviderModuleFilter
-}
-
-"""Methods to use when ordering `BillingProviderModule`."""
-enum BillingProviderModuleOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  DATABASE_ID_ASC
-  DATABASE_ID_DESC
-  SCHEMA_ID_ASC
-  SCHEMA_ID_DESC
-  PRIVATE_SCHEMA_ID_ASC
-  PRIVATE_SCHEMA_ID_DESC
-  PROVIDER_ASC
-  PROVIDER_DESC
-  PRODUCTS_TABLE_ID_ASC
-  PRODUCTS_TABLE_ID_DESC
-  PRICES_TABLE_ID_ASC
-  PRICES_TABLE_ID_DESC
-  SUBSCRIPTIONS_TABLE_ID_ASC
-  SUBSCRIPTIONS_TABLE_ID_DESC
-  BILLING_CUSTOMERS_TABLE_ID_ASC
-  BILLING_CUSTOMERS_TABLE_ID_DESC
-  BILLING_CUSTOMERS_TABLE_NAME_ASC
-  BILLING_CUSTOMERS_TABLE_NAME_DESC
-  BILLING_PRODUCTS_TABLE_ID_ASC
-  BILLING_PRODUCTS_TABLE_ID_DESC
-  BILLING_PRODUCTS_TABLE_NAME_ASC
-  BILLING_PRODUCTS_TABLE_NAME_DESC
-  BILLING_PRICES_TABLE_ID_ASC
-  BILLING_PRICES_TABLE_ID_DESC
-  BILLING_PRICES_TABLE_NAME_ASC
-  BILLING_PRICES_TABLE_NAME_DESC
-  BILLING_SUBSCRIPTIONS_TABLE_ID_ASC
-  BILLING_SUBSCRIPTIONS_TABLE_ID_DESC
-  BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC
-  BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC
-  BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC
-  BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC
-  BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC
-  BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC
-  PROCESS_BILLING_EVENT_FUNCTION_ASC
-  PROCESS_BILLING_EVENT_FUNCTION_DESC
-  PREFIX_ASC
-  PREFIX_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
-}
-
-"""A connection to a list of `ProfilesModule` values."""
-type ProfilesModuleConnection {
-  """A list of `ProfilesModule` objects."""
-  nodes: [ProfilesModule]!
-
-  """
-  A list of edges which contains the `ProfilesModule` and cursor to aid in pagination.
+  A list of edges which contains the `ProfilesModule` and cursor to aid in pagination.
   """
   edges: [ProfilesModuleEdge]!
 
@@ -8895,61 +8931,249 @@ enum PermissionsModuleOrderBy {
   PRIVATE_API_NAME_DESC
 }
 
-"""A connection to a list of `RelationProvision` values."""
-type RelationProvisionConnection {
-  """A list of `RelationProvision` objects."""
-  nodes: [RelationProvision]!
+"""A connection to a list of `BillingModule` values."""
+type BillingModuleConnection {
+  """A list of `BillingModule` objects."""
+  nodes: [BillingModule]!
 
   """
-  A list of edges which contains the `RelationProvision` and cursor to aid in pagination.
+  A list of edges which contains the `BillingModule` and cursor to aid in pagination.
   """
-  edges: [RelationProvisionEdge]!
+  edges: [BillingModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """
-  The count of *all* `RelationProvision` you could get from the connection.
-  """
+  """The count of *all* `BillingModule` you could get from the connection."""
   totalCount: Int!
 }
 
-"""
-Provisions relational structure between tables. Supports four relation types:
-     - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
-     - RelationHasMany: adds a FK field on the target table referencing the source table (parent perspective: "projects has many tasks" -> tasks.project_id). Inverse of BelongsTo.
-     - RelationHasOne: adds a FK field with a unique constraint on the source table referencing the target table. Also supports shared-primary-key patterns where the FK field IS the primary key (set field_name to the existing PK field name).
-     - RelationManyToMany: creates a junction table with FK fields to both source and target tables, delegating table creation and security to secure_table_provision.
-     This is a one-and-done structural provisioner. To layer additional security onto junction tables after creation, use secure_table_provision directly.
-     All operations are graceful: existing fields, FK constraints, and unique constraints are reused if found.
-     The trigger never injects values the caller did not provide. All security config is forwarded to secure_table_provision as-is.
-"""
-type RelationProvision {
-  """Unique identifier for this relation provision row."""
+type BillingModule {
   id: UUID!
-
-  """
-  The database this relation belongs to. Required. Must match the database of both source_table_id and target_table_id.
-  """
   databaseId: UUID!
+  schemaId: UUID!
+  privateSchemaId: UUID!
+  metersTableId: UUID!
+  metersTableName: String!
+  planSubscriptionsTableId: UUID!
+  planSubscriptionsTableName: String!
+  ledgerTableId: UUID!
+  ledgerTableName: String!
+  balancesTableId: UUID!
+  balancesTableName: String!
+  meterCreditsTableId: UUID!
+  meterCreditsTableName: String!
+  meterSourcesTableId: UUID!
+  meterSourcesTableName: String!
+  meterDefaultsTableId: UUID!
+  meterDefaultsTableName: String!
+  recordUsageFunction: String!
+  prefix: String
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
 
-  """
-  The type of relation to create. Uses SuperCase naming:
-       - RelationBelongsTo: creates a FK field on source_table referencing target_table (e.g., tasks belongs to projects -> tasks.project_id). Field name auto-derived from target table.
-       - RelationHasMany: creates a FK field on target_table referencing source_table (e.g., projects has many tasks -> tasks.project_id). Field name auto-derived from source table. Inverse of BelongsTo — same FK, different perspective.
-       - RelationHasOne: creates a FK field + unique constraint on source_table referencing target_table (e.g., user_settings has one user -> user_settings.user_id with UNIQUE). Also supports shared-primary-key patterns (e.g., user_profiles.id = users.id) by setting field_name to the existing PK field.
-       - RelationManyToMany: creates a junction table with FK fields to both tables (e.g., projects and tags -> project_tags table).
-       Each relation type uses a different subset of columns on this table. Required.
-  """
-  relationType: String!
+"""A `BillingModule` edge in the connection."""
+type BillingModuleEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
+
+  """The `BillingModule` at the end of the edge."""
+  node: BillingModule
+}
+
+"""
+A filter to be used against `BillingModule` object types. All fields are combined with a logical ‘and.’
+"""
+input BillingModuleFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
+
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
+
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
+
+  """Filter by the object’s `privateSchemaId` field."""
+  privateSchemaId: UUIDFilter
+
+  """Filter by the object’s `metersTableId` field."""
+  metersTableId: UUIDFilter
+
+  """Filter by the object’s `metersTableName` field."""
+  metersTableName: StringFilter
+
+  """Filter by the object’s `planSubscriptionsTableId` field."""
+  planSubscriptionsTableId: UUIDFilter
+
+  """Filter by the object’s `planSubscriptionsTableName` field."""
+  planSubscriptionsTableName: StringFilter
+
+  """Filter by the object’s `ledgerTableId` field."""
+  ledgerTableId: UUIDFilter
+
+  """Filter by the object’s `ledgerTableName` field."""
+  ledgerTableName: StringFilter
+
+  """Filter by the object’s `balancesTableId` field."""
+  balancesTableId: UUIDFilter
+
+  """Filter by the object’s `balancesTableName` field."""
+  balancesTableName: StringFilter
+
+  """Filter by the object’s `meterCreditsTableId` field."""
+  meterCreditsTableId: UUIDFilter
+
+  """Filter by the object’s `meterCreditsTableName` field."""
+  meterCreditsTableName: StringFilter
+
+  """Filter by the object’s `meterSourcesTableId` field."""
+  meterSourcesTableId: UUIDFilter
+
+  """Filter by the object’s `meterSourcesTableName` field."""
+  meterSourcesTableName: StringFilter
+
+  """Filter by the object’s `meterDefaultsTableId` field."""
+  meterDefaultsTableId: UUIDFilter
+
+  """Filter by the object’s `meterDefaultsTableName` field."""
+  meterDefaultsTableName: StringFilter
+
+  """Filter by the object’s `recordUsageFunction` field."""
+  recordUsageFunction: StringFilter
+
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
+
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
+
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
+
+  """Checks for all expressions in this list."""
+  and: [BillingModuleFilter!]
+
+  """Checks for any expressions in this list."""
+  or: [BillingModuleFilter!]
+
+  """Negates the expression."""
+  not: BillingModuleFilter
+}
+
+"""Methods to use when ordering `BillingModule`."""
+enum BillingModuleOrderBy {
+  NATURAL
+  PRIMARY_KEY_ASC
+  PRIMARY_KEY_DESC
+  ID_ASC
+  ID_DESC
+  DATABASE_ID_ASC
+  DATABASE_ID_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  PRIVATE_SCHEMA_ID_ASC
+  PRIVATE_SCHEMA_ID_DESC
+  METERS_TABLE_ID_ASC
+  METERS_TABLE_ID_DESC
+  METERS_TABLE_NAME_ASC
+  METERS_TABLE_NAME_DESC
+  PLAN_SUBSCRIPTIONS_TABLE_ID_ASC
+  PLAN_SUBSCRIPTIONS_TABLE_ID_DESC
+  PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC
+  PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC
+  LEDGER_TABLE_ID_ASC
+  LEDGER_TABLE_ID_DESC
+  LEDGER_TABLE_NAME_ASC
+  LEDGER_TABLE_NAME_DESC
+  BALANCES_TABLE_ID_ASC
+  BALANCES_TABLE_ID_DESC
+  BALANCES_TABLE_NAME_ASC
+  BALANCES_TABLE_NAME_DESC
+  METER_CREDITS_TABLE_ID_ASC
+  METER_CREDITS_TABLE_ID_DESC
+  METER_CREDITS_TABLE_NAME_ASC
+  METER_CREDITS_TABLE_NAME_DESC
+  METER_SOURCES_TABLE_ID_ASC
+  METER_SOURCES_TABLE_ID_DESC
+  METER_SOURCES_TABLE_NAME_ASC
+  METER_SOURCES_TABLE_NAME_DESC
+  METER_DEFAULTS_TABLE_ID_ASC
+  METER_DEFAULTS_TABLE_ID_DESC
+  METER_DEFAULTS_TABLE_NAME_ASC
+  METER_DEFAULTS_TABLE_NAME_DESC
+  RECORD_USAGE_FUNCTION_ASC
+  RECORD_USAGE_FUNCTION_DESC
+  PREFIX_ASC
+  PREFIX_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
+}
+
+"""A connection to a list of `RelationProvision` values."""
+type RelationProvisionConnection {
+  """A list of `RelationProvision` objects."""
+  nodes: [RelationProvision]!
+
+  """
+  A list of edges which contains the `RelationProvision` and cursor to aid in pagination.
+  """
+  edges: [RelationProvisionEdge]!
+
+  """Information to aid in pagination."""
+  pageInfo: PageInfo!
+
+  """
+  The count of *all* `RelationProvision` you could get from the connection.
+  """
+  totalCount: Int!
+}
+
+"""
+Provisions relational structure between tables. Supports four relation types:
+     - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
+     - RelationHasMany: adds a FK field on the target table referencing the source table (parent perspective: "projects has many tasks" -> tasks.project_id). Inverse of BelongsTo.
+     - RelationHasOne: adds a FK field with a unique constraint on the source table referencing the target table. Also supports shared-primary-key patterns where the FK field IS the primary key (set field_name to the existing PK field name).
+     - RelationManyToMany: creates a junction table with FK fields to both source and target tables, delegating table creation and security to secure_table_provision.
+     This is a one-and-done structural provisioner. To layer additional security onto junction tables after creation, use secure_table_provision directly.
+     All operations are graceful: existing fields, FK constraints, and unique constraints are reused if found.
+     The trigger never injects values the caller did not provide. All security config is forwarded to secure_table_provision as-is.
+"""
+type RelationProvision {
+  """Unique identifier for this relation provision row."""
+  id: UUID!
+
+  """
+  The database this relation belongs to. Required. Must match the database of both source_table_id and target_table_id.
+  """
+  databaseId: UUID!
+
+  """
+  The type of relation to create. Uses SuperCase naming:
+       - RelationBelongsTo: creates a FK field on source_table referencing target_table (e.g., tasks belongs to projects -> tasks.project_id). Field name auto-derived from target table.
+       - RelationHasMany: creates a FK field on target_table referencing source_table (e.g., projects has many tasks -> tasks.project_id). Field name auto-derived from source table. Inverse of BelongsTo — same FK, different perspective.
+       - RelationHasOne: creates a FK field + unique constraint on source_table referencing target_table (e.g., user_settings has one user -> user_settings.user_id with UNIQUE). Also supports shared-primary-key patterns (e.g., user_profiles.id = users.id) by setting field_name to the existing PK field.
+       - RelationManyToMany: creates a junction table with FK fields to both tables (e.g., projects and tags -> project_tags table).
+       Each relation type uses a different subset of columns on this table. Required.
+  """
+  relationType: String!
 
   """
-  The source table in the relation. Required.
-       - RelationBelongsTo: the table that receives the FK field (e.g., tasks in "tasks belongs to projects").
-       - RelationHasMany: the parent table being referenced (e.g., projects in "projects has many tasks"). The FK field is created on the target table.
-       - RelationHasOne: the table that receives the FK field + unique constraint (e.g., user_settings in "user_settings has one user").
-       - RelationManyToMany: one of the two tables being joined (e.g., projects in "projects and tags"). The junction table will have a FK field referencing this table.
-  """
+  The source table in the relation. Required.
+       - RelationBelongsTo: the table that receives the FK field (e.g., tasks in "tasks belongs to projects").
+       - RelationHasMany: the parent table being referenced (e.g., projects in "projects has many tasks"). The FK field is created on the target table.
+       - RelationHasOne: the table that receives the FK field + unique constraint (e.g., user_settings in "user_settings has one user").
+       - RelationManyToMany: one of the two tables being joined (e.g., projects in "projects and tags"). The junction table will have a FK field referencing this table.
+  """
   sourceTableId: UUID!
 
   """
@@ -9243,271 +9467,65 @@ enum RelationProvisionOrderBy {
   OUT_TARGET_FIELD_ID_DESC
 }
 
-"""A connection to a list of `FunctionModule` values."""
-type FunctionModuleConnection {
-  """A list of `FunctionModule` objects."""
-  nodes: [FunctionModule]!
+"""A connection to a list of `UserAuthModule` values."""
+type UserAuthModuleConnection {
+  """A list of `UserAuthModule` objects."""
+  nodes: [UserAuthModule]!
 
   """
-  A list of edges which contains the `FunctionModule` and cursor to aid in pagination.
+  A list of edges which contains the `UserAuthModule` and cursor to aid in pagination.
   """
-  edges: [FunctionModuleEdge]!
+  edges: [UserAuthModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `FunctionModule` you could get from the connection."""
+  """The count of *all* `UserAuthModule` you could get from the connection."""
   totalCount: Int!
 }
 
-type FunctionModule {
+type UserAuthModule {
   id: UUID!
   databaseId: UUID!
   schemaId: UUID!
-  privateSchemaId: UUID!
-  publicSchemaName: String
-  privateSchemaName: String
-  definitionsTableId: UUID!
-  invocationsTableId: UUID!
-  executionLogsTableId: UUID!
-  secretDefinitionsTableId: UUID!
-  requirementsTableId: UUID!
-  configDefinitionsTableId: UUID!
-  configRequirementsTableId: UUID!
-  definitionsTableName: String!
-  invocationsTableName: String!
-  executionLogsTableName: String!
-  secretDefinitionsTableName: String!
-  requirementsTableName: String!
-  configRequirementsTableName: String!
+  emailsTableId: UUID!
+  usersTableId: UUID!
+  secretsTableId: UUID!
+  encryptedTableId: UUID!
+  sessionsTableId: UUID!
+  sessionCredentialsTableId: UUID!
+  auditsTableId: UUID!
+  auditsTableName: String!
+  signInFunction: String!
+  signUpFunction: String!
+  signOutFunction: String!
+  setPasswordFunction: String!
+  resetPasswordFunction: String!
+  forgotPasswordFunction: String!
+  sendVerificationEmailFunction: String!
+  verifyEmailFunction: String!
+  verifyPasswordFunction: String!
+  checkPasswordFunction: String!
+  sendAccountDeletionEmailFunction: String!
+  deleteAccountFunction: String!
+  signInCrossOriginFunction: String!
+  requestCrossOriginTokenFunction: String!
+  extendTokenExpires: String!
   apiName: String
   privateApiName: String
-  scope: String!
-  prefix: String!
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
 }
 
-"""A `FunctionModule` edge in the connection."""
-type FunctionModuleEdge {
+"""A `UserAuthModule` edge in the connection."""
+type UserAuthModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `FunctionModule` at the end of the edge."""
-  node: FunctionModule
+  """The `UserAuthModule` at the end of the edge."""
+  node: UserAuthModule
 }
 
 """
-A filter to be used against `FunctionModule` object types. All fields are combined with a logical ‘and.’
-"""
-input FunctionModuleFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
-
-  """Filter by the object’s `databaseId` field."""
-  databaseId: UUIDFilter
-
-  """Filter by the object’s `schemaId` field."""
-  schemaId: UUIDFilter
-
-  """Filter by the object’s `privateSchemaId` field."""
-  privateSchemaId: UUIDFilter
-
-  """Filter by the object’s `publicSchemaName` field."""
-  publicSchemaName: StringFilter
-
-  """Filter by the object’s `privateSchemaName` field."""
-  privateSchemaName: StringFilter
-
-  """Filter by the object’s `definitionsTableId` field."""
-  definitionsTableId: UUIDFilter
-
-  """Filter by the object’s `invocationsTableId` field."""
-  invocationsTableId: UUIDFilter
-
-  """Filter by the object’s `executionLogsTableId` field."""
-  executionLogsTableId: UUIDFilter
-
-  """Filter by the object’s `secretDefinitionsTableId` field."""
-  secretDefinitionsTableId: UUIDFilter
-
-  """Filter by the object’s `requirementsTableId` field."""
-  requirementsTableId: UUIDFilter
-
-  """Filter by the object’s `configDefinitionsTableId` field."""
-  configDefinitionsTableId: UUIDFilter
-
-  """Filter by the object’s `configRequirementsTableId` field."""
-  configRequirementsTableId: UUIDFilter
-
-  """Filter by the object’s `definitionsTableName` field."""
-  definitionsTableName: StringFilter
-
-  """Filter by the object’s `invocationsTableName` field."""
-  invocationsTableName: StringFilter
-
-  """Filter by the object’s `executionLogsTableName` field."""
-  executionLogsTableName: StringFilter
-
-  """Filter by the object’s `secretDefinitionsTableName` field."""
-  secretDefinitionsTableName: StringFilter
-
-  """Filter by the object’s `requirementsTableName` field."""
-  requirementsTableName: StringFilter
-
-  """Filter by the object’s `configRequirementsTableName` field."""
-  configRequirementsTableName: StringFilter
-
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
-
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
-
-  """Filter by the object’s `scope` field."""
-  scope: StringFilter
-
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
-
-  """Filter by the object’s `entityTableId` field."""
-  entityTableId: UUIDFilter
-
-  """Filter by the object’s `policies` field."""
-  policies: JSONFilter
-
-  """Filter by the object’s `provisions` field."""
-  provisions: JSONFilter
-
-  """Checks for all expressions in this list."""
-  and: [FunctionModuleFilter!]
-
-  """Checks for any expressions in this list."""
-  or: [FunctionModuleFilter!]
-
-  """Negates the expression."""
-  not: FunctionModuleFilter
-}
-
-"""Methods to use when ordering `FunctionModule`."""
-enum FunctionModuleOrderBy {
-  NATURAL
-  PRIMARY_KEY_ASC
-  PRIMARY_KEY_DESC
-  ID_ASC
-  ID_DESC
-  DATABASE_ID_ASC
-  DATABASE_ID_DESC
-  SCHEMA_ID_ASC
-  SCHEMA_ID_DESC
-  PRIVATE_SCHEMA_ID_ASC
-  PRIVATE_SCHEMA_ID_DESC
-  PUBLIC_SCHEMA_NAME_ASC
-  PUBLIC_SCHEMA_NAME_DESC
-  PRIVATE_SCHEMA_NAME_ASC
-  PRIVATE_SCHEMA_NAME_DESC
-  DEFINITIONS_TABLE_ID_ASC
-  DEFINITIONS_TABLE_ID_DESC
-  INVOCATIONS_TABLE_ID_ASC
-  INVOCATIONS_TABLE_ID_DESC
-  EXECUTION_LOGS_TABLE_ID_ASC
-  EXECUTION_LOGS_TABLE_ID_DESC
-  SECRET_DEFINITIONS_TABLE_ID_ASC
-  SECRET_DEFINITIONS_TABLE_ID_DESC
-  REQUIREMENTS_TABLE_ID_ASC
-  REQUIREMENTS_TABLE_ID_DESC
-  CONFIG_DEFINITIONS_TABLE_ID_ASC
-  CONFIG_DEFINITIONS_TABLE_ID_DESC
-  CONFIG_REQUIREMENTS_TABLE_ID_ASC
-  CONFIG_REQUIREMENTS_TABLE_ID_DESC
-  DEFINITIONS_TABLE_NAME_ASC
-  DEFINITIONS_TABLE_NAME_DESC
-  INVOCATIONS_TABLE_NAME_ASC
-  INVOCATIONS_TABLE_NAME_DESC
-  EXECUTION_LOGS_TABLE_NAME_ASC
-  EXECUTION_LOGS_TABLE_NAME_DESC
-  SECRET_DEFINITIONS_TABLE_NAME_ASC
-  SECRET_DEFINITIONS_TABLE_NAME_DESC
-  REQUIREMENTS_TABLE_NAME_ASC
-  REQUIREMENTS_TABLE_NAME_DESC
-  CONFIG_REQUIREMENTS_TABLE_NAME_ASC
-  CONFIG_REQUIREMENTS_TABLE_NAME_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
-  SCOPE_ASC
-  SCOPE_DESC
-  PREFIX_ASC
-  PREFIX_DESC
-  ENTITY_TABLE_ID_ASC
-  ENTITY_TABLE_ID_DESC
-  POLICIES_ASC
-  POLICIES_DESC
-  PROVISIONS_ASC
-  PROVISIONS_DESC
-}
-
-"""A connection to a list of `UserAuthModule` values."""
-type UserAuthModuleConnection {
-  """A list of `UserAuthModule` objects."""
-  nodes: [UserAuthModule]!
-
-  """
-  A list of edges which contains the `UserAuthModule` and cursor to aid in pagination.
-  """
-  edges: [UserAuthModuleEdge]!
-
-  """Information to aid in pagination."""
-  pageInfo: PageInfo!
-
-  """The count of *all* `UserAuthModule` you could get from the connection."""
-  totalCount: Int!
-}
-
-type UserAuthModule {
-  id: UUID!
-  databaseId: UUID!
-  schemaId: UUID!
-  emailsTableId: UUID!
-  usersTableId: UUID!
-  secretsTableId: UUID!
-  encryptedTableId: UUID!
-  sessionsTableId: UUID!
-  sessionCredentialsTableId: UUID!
-  auditsTableId: UUID!
-  auditsTableName: String!
-  signInFunction: String!
-  signUpFunction: String!
-  signOutFunction: String!
-  setPasswordFunction: String!
-  resetPasswordFunction: String!
-  forgotPasswordFunction: String!
-  sendVerificationEmailFunction: String!
-  verifyEmailFunction: String!
-  verifyPasswordFunction: String!
-  checkPasswordFunction: String!
-  sendAccountDeletionEmailFunction: String!
-  deleteAccountFunction: String!
-  signInCrossOriginFunction: String!
-  requestCrossOriginTokenFunction: String!
-  extendTokenExpires: String!
-  apiName: String
-  privateApiName: String
-}
-
-"""A `UserAuthModule` edge in the connection."""
-type UserAuthModuleEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
-
-  """The `UserAuthModule` at the end of the edge."""
-  node: UserAuthModule
-}
-
-"""
-A filter to be used against `UserAuthModule` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `UserAuthModule` object types. All fields are combined with a logical ‘and.’
 """
 input UserAuthModuleFilter {
   """Filter by the object’s `id` field."""
@@ -9708,6 +9726,7 @@ type AgentModule {
   hasPlans: Boolean!
   hasResources: Boolean!
   hasAgents: Boolean!
+  shared: Boolean!
   apiName: String
   privateApiName: String
   scope: String!
@@ -9716,6 +9735,7 @@ type AgentModule {
   policies: JSON
   resources: JSON
   provisions: JSON
+  defaultPermissions: [String]
 }
 
 """A `AgentModule` edge in the connection."""
@@ -9800,6 +9820,9 @@ input AgentModuleFilter {
   """Filter by the object’s `hasAgents` field."""
   hasAgents: BooleanFilter
 
+  """Filter by the object’s `shared` field."""
+  shared: BooleanFilter
+
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
 
@@ -9824,6 +9847,9 @@ input AgentModuleFilter {
   """Filter by the object’s `provisions` field."""
   provisions: JSONFilter
 
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
   """Checks for all expressions in this list."""
   and: [AgentModuleFilter!]
 
@@ -9885,6 +9911,8 @@ enum AgentModuleOrderBy {
   HAS_RESOURCES_DESC
   HAS_AGENTS_ASC
   HAS_AGENTS_DESC
+  SHARED_ASC
+  SHARED_DESC
   API_NAME_ASC
   API_NAME_DESC
   PRIVATE_API_NAME_ASC
@@ -9901,6 +9929,8 @@ enum AgentModuleOrderBy {
   RESOURCES_DESC
   PROVISIONS_ASC
   PROVISIONS_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
 }
 
 """A connection to a list of `LimitsModule` values."""
@@ -10212,6 +10242,8 @@ type MembershipsModule {
   entityIdsByPerm: String
   entityIdsFunction: String
   memberProfilesTableId: UUID
+  permissionDefaultPermissionsTableId: UUID
+  permissionDefaultGrantsTableId: UUID
   apiName: String
   privateApiName: String
 }
@@ -10334,6 +10366,12 @@ input MembershipsModuleFilter {
   """Filter by the object’s `memberProfilesTableId` field."""
   memberProfilesTableId: UUIDFilter
 
+  """Filter by the object’s `permissionDefaultPermissionsTableId` field."""
+  permissionDefaultPermissionsTableId: UUIDFilter
+
+  """Filter by the object’s `permissionDefaultGrantsTableId` field."""
+  permissionDefaultGrantsTableId: UUIDFilter
+
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
 
@@ -10425,6 +10463,10 @@ enum MembershipsModuleOrderBy {
   ENTITY_IDS_FUNCTION_DESC
   MEMBER_PROFILES_TABLE_ID_ASC
   MEMBER_PROFILES_TABLE_ID_DESC
+  PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_ASC
+  PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_DESC
+  PERMISSION_DEFAULT_GRANTS_TABLE_ID_ASC
+  PERMISSION_DEFAULT_GRANTS_TABLE_ID_DESC
   API_NAME_ASC
   API_NAME_DESC
   PRIVATE_API_NAME_ASC
@@ -10483,6 +10525,7 @@ type StorageModule {
   hasConfirmUpload: Boolean!
   confirmUploadDelay: Interval!
   fileEventsTableId: UUID
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -10609,6 +10652,9 @@ input StorageModuleFilter {
   """Filter by the object’s `fileEventsTableId` field."""
   fileEventsTableId: UUIDFilter
 
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
+
   """Filter by the object’s `apiName` field."""
   apiName: StringFilter
 
@@ -10740,221 +10786,480 @@ enum StorageModuleOrderBy {
   CONFIRM_UPLOAD_DELAY_DESC
   FILE_EVENTS_TABLE_ID_ASC
   FILE_EVENTS_TABLE_ID_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
   API_NAME_ASC
   API_NAME_DESC
   PRIVATE_API_NAME_ASC
   PRIVATE_API_NAME_DESC
 }
 
-"""A connection to a list of `EventsModule` values."""
-type EventsModuleConnection {
-  """A list of `EventsModule` objects."""
-  nodes: [EventsModule]!
+"""A connection to a list of `EntityTypeProvision` values."""
+type EntityTypeProvisionConnection {
+  """A list of `EntityTypeProvision` objects."""
+  nodes: [EntityTypeProvision]!
 
   """
-  A list of edges which contains the `EventsModule` and cursor to aid in pagination.
+  A list of edges which contains the `EntityTypeProvision` and cursor to aid in pagination.
   """
-  edges: [EventsModuleEdge]!
+  edges: [EntityTypeProvisionEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """The count of *all* `EventsModule` you could get from the connection."""
+  """
+  The count of *all* `EntityTypeProvision` you could get from the connection.
+  """
   totalCount: Int!
 }
 
-type EventsModule {
+"""
+Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
+     and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
+     Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
+     via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
+     Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
+     Set table_provision to a single jsonb object (using the same shape as provision_table() /
+     blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
+     as an escape hatch to apply zero policies.
+"""
+type EntityTypeProvision {
+  """Unique identifier for this provision row."""
   id: UUID!
+
+  """The database to provision this entity type in. Required."""
   databaseId: UUID!
-  schemaId: UUID!
-  privateSchemaId: UUID!
-  eventsTableId: UUID!
-  eventsTableName: String!
-  eventAggregatesTableId: UUID!
-  eventAggregatesTableName: String!
-  eventTypesTableId: UUID!
-  eventTypesTableName: String!
-  levelsTableId: UUID!
-  levelsTableName: String!
-  levelRequirementsTableId: UUID!
-  levelRequirementsTableName: String!
-  levelGrantsTableId: UUID!
-  levelGrantsTableName: String!
-  achievementRewardsTableId: UUID!
-  achievementRewardsTableName: String!
-  recordEvent: String!
-  removeEvent: String!
-  tgEvent: String!
-  tgEventToggle: String!
-  tgEventToggleBool: String!
-  tgEventBool: String!
-  upsertAggregate: String!
-  tgUpdateAggregates: String!
-  pruneEvents: String!
-  stepsRequired: String!
-  levelAchieved: String!
-  tgCheckAchievements: String!
-  grantAchievement: String!
-  tgAchievementReward: String!
-  interval: String!
-  retention: String
-  premake: Int!
-  scope: String!
-  prefix: String!
-  entityTableId: UUID
-  actorTableId: UUID!
-  apiName: String
-  privateApiName: String
-}
 
-"""A `EventsModule` edge in the connection."""
-type EventsModuleEdge {
-  """A cursor for use in pagination."""
-  cursor: Cursor
+  """
+  Human-readable name for this entity type, e.g. 'Data Room', 'Team Channel'. Required.
+       Stored in the entity_types registry table.
+  """
+  name: String!
 
-  """The `EventsModule` at the end of the edge."""
-  node: EventsModule
-}
+  """
+  SQL prefix used for table and module naming, e.g. 'data_room', 'team_channel'. Required.
+       Drives entity table name (prefix || 's' by default), module labels (permissions_module:prefix),
+       and membership table names (prefix_memberships, prefix_members, etc.).
+       Must be unique per database — the (database_id, prefix) constraint ensures graceful ON CONFLICT DO NOTHING.
+  """
+  prefix: String!
 
-"""
-A filter to be used against `EventsModule` object types. All fields are combined with a logical ‘and.’
-"""
-input EventsModuleFilter {
-  """Filter by the object’s `id` field."""
-  id: UUIDFilter
+  """
+  Description of this entity type. Stored in the entity_types registry table. Defaults to empty string.
+  """
+  description: String!
 
-  """Filter by the object’s `databaseId` field."""
-  databaseId: UUIDFilter
+  """
+  Prefix of the parent entity type. The trigger resolves this to a membership_type integer
+       by looking up memberships_module WHERE prefix = parent_entity.
+       Defaults to 'org' (the organization-level type). For nested types, set to the parent's prefix
+       (e.g. 'data_room' for a team_channel nested under data_room).
+       The parent type must already be provisioned before this INSERT.
+  """
+  parentEntity: String!
 
-  """Filter by the object’s `schemaId` field."""
-  schemaId: UUIDFilter
+  """
+  Override the entity table name. When NULL (default), the table name is derived as prefix || 's'
+       (e.g. prefix 'data_room' produces table 'data_rooms').
+       Set this when the pluralization rule doesn't apply (e.g. prefix 'staff' should produce 'staff' not 'staffs').
+  """
+  tableName: String
 
-  """Filter by the object’s `privateSchemaId` field."""
-  privateSchemaId: UUIDFilter
+  """
+  Whether members of the parent entity can see child entities. Defaults to true.
+       When true: a SELECT policy allows parent members to list child entities (e.g. org members can see all data rooms).
+       When false: only direct members of the entity itself can see it (private entity mode).
+       Controls whether the parent_member SELECT policy is created on the entity table.
+       Only meaningful on the defaults path — ignored (no-op) when table_provision is non-NULL or
+       skip_entity_policies=true, since no default policies are being applied in those cases.
+  """
+  isVisible: Boolean!
 
-  """Filter by the object’s `eventsTableId` field."""
-  eventsTableId: UUIDFilter
+  """
+  Whether to apply limits_module security for this type. Defaults to false.
+       The limits_module table structure is always created (memberships_module requires it),
+       but when false, no RLS policies are applied to the limits tables.
+       Set to true if this entity type needs configurable resource limits per membership.
+  """
+  hasLimits: Boolean!
 
-  """Filter by the object’s `eventsTableName` field."""
-  eventsTableName: StringFilter
+  """
+  Whether to provision profiles_module for this type. Defaults to false.
+       Profiles provide named permission roles (e.g. 'Editor', 'Viewer') with pre-configured permission bitmasks.
+       When true, creates profile tables and applies profiles security.
+  """
+  hasProfiles: Boolean!
 
-  """Filter by the object’s `eventAggregatesTableId` field."""
-  eventAggregatesTableId: UUIDFilter
+  """
+  Whether to provision events_module for this type. Defaults to false.
+       Levels provide gamification/achievement tracking for members.
+       When true, creates level steps, achievements, and level tables with security.
+  """
+  hasLevels: Boolean!
 
-  """Filter by the object’s `eventAggregatesTableName` field."""
-  eventAggregatesTableName: StringFilter
+  """
+  Whether to provision invites_module for this type. Defaults to false.
+       When true, the trigger inserts a row into invites_module which in turn
+       (via insert_invites_module BEFORE INSERT) creates {prefix}_invites and
+       {prefix}_claimed_invites tables plus the submit_{prefix}_invite_code() function.
+       Re-provisioning is idempotent: the UNIQUE (database_id, membership_type) constraint
+       on invites_module combined with ON CONFLICT DO NOTHING in the fan-out makes
+       repeated INSERTs safe.
+  """
+  hasInvites: Boolean!
 
-  """Filter by the object’s `eventTypesTableId` field."""
-  eventTypesTableId: UUIDFilter
+  """
+  Whether to auto-attach an EventTracker to the claimed_invites table for invite-based
+       achievements. Defaults to false. Requires has_invites=true AND has_levels=true.
+       When true, the trigger calls event_tracker() on the claimed_invites table with
+       event_name='invite_claimed', actor_field='sender_id', events=['INSERT'],
+       crediting the SENDER (inviter) when someone claims their invite code.
+       Developers can then define achievements in the blueprint achievements[] section
+       that reference the 'invite_claimed' event (e.g., "Invite 5 friends" = count: 5).
+  """
+  hasInviteAchievements: Boolean!
 
-  """Filter by the object’s `eventTypesTableName` field."""
-  eventTypesTableName: StringFilter
+  """
+  Optional JSON array of storage module definitions. Presence triggers provisioning
+       (same inference model as namespaces, functions, agents).
+       Each element provisions a separate storage module with its own tables
+       ({prefix}_{key}_buckets/files), RLS policies, and feature flags.
+       NULL = do not provision storage. '[{}]' = provision one default storage module.
+       Each array element recognizes (all optional):
+         - key                           (text) module discriminator, max 16 chars, lowercase snake_case.
+                                                Defaults to 'default' (omitted from table names).
+                                                Non-default keys become infixes: {prefix}_{key}_buckets.
+                                                (storage_key accepted for backward compat)
+         - upload_url_expiry_seconds     (integer) presigned PUT URL expiry override
+         - download_url_expiry_seconds   (integer) presigned GET URL expiry override
+         - default_max_file_size         (bigint)  global max file size in bytes for this module
+         - allowed_origins               (text[])  default CORS origins for all buckets in this module
+         - restrict_reads                (boolean) require read_files permission for SELECT on files
+         - has_path_shares               (boolean) enable virtual filesystem + path share policies
+         - has_versioning                (boolean) enable file version chains
+         - has_content_hash              (boolean) enable content hash for dedup
+         - has_custom_keys               (boolean) allow client-provided S3 keys
+         - has_audit_log                 (boolean) enable file events audit table
+         - has_confirm_upload            (boolean) enable HeadObject confirmation flow
+         - confirm_upload_delay          (interval) delay before first confirmation attempt
+         - buckets                       (jsonb[]) array of initial bucket definitions to seed.
+           Each bucket: { name (required), description, is_public, allowed_mime_types, max_file_size, allowed_origins }
+         - provisions                    (jsonb object) per-table customization keyed by "files" or "buckets".
+                                                Each value: { nodes, fields, grants, use_rls, policies }.
+       Example (single module, backward compat):
+         storage := '[{"buckets": [{"name": "documents"}]}]'::jsonb
+       Example (multi-module):
+         storage := '[{"has_path_shares": true, "buckets": [{"name": "documents"}]}, {"key": "fn", "has_custom_keys": true, "buckets": [{"name": "functions"}]}]'::jsonb
+  """
+  storage: JSON
 
-  """Filter by the object’s `levelsTableId` field."""
-  levelsTableId: UUIDFilter
+  """
+  Optional JSON array of namespace module definitions. Presence triggers provisioning.
+       NULL = do not provision namespaces. '[{}]' = provision one default namespace module.
+       Each element recognizes (all optional):
+         - key       (text) module discriminator. Defaults to 'default'.
+         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_namespace_security().
+       Creates {prefix}_namespaces (or {prefix}_{key}_namespaces for non-default keys)
+       with entity-scoped RLS (AuthzEntityMembership) and a rename proxy trigger.
+       Registers manage_namespaces permission bit on first provision.
+       Example: namespaces := '[{}]'::jsonb
+  """
+  namespaces: JSON
 
-  """Filter by the object’s `levelsTableName` field."""
-  levelsTableName: StringFilter
+  """
+  Optional JSON array of function module definitions. Presence triggers provisioning.
+       NULL = do not provision functions. '[{}]' = provision one default function module.
+       Each element recognizes (all optional):
+         - key       (text) module discriminator. Defaults to 'default'.
+         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_function_security().
+       Creates {prefix}_function_definitions (or {prefix}_{key}_function_definitions for non-default keys)
+       with entity-scoped RLS and a job trigger dispatching function:provision tasks.
+       Registers manage_functions + invoke_functions permission bits on first provision.
+       Example: functions := '[{}]'::jsonb
+  """
+  functions: JSON
 
-  """Filter by the object’s `levelRequirementsTableId` field."""
-  levelRequirementsTableId: UUIDFilter
+  """
+  Optional JSON array of graph module definitions. Presence triggers provisioning.
+       NULL = do not provision graphs. '[{}]' = provision one default graph module.
+       Each element recognizes (all optional):
+         - key       (text) module discriminator. Defaults to 'default'.
+         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_graph_security().
+       Registers manage_graphs + execute_graphs permission bits on first provision.
+       Graph module requires a merkle_store_module_id dependency, so entity_type_provision
+       only registers permissions here. The graph module itself must be provisioned
+       separately with the merkle store dependency resolved.
+       Example: graphs := '[{}]'::jsonb
+  """
+  graphs: JSON
+  agents: JSON
 
-  """Filter by the object’s `levelRequirementsTableName` field."""
-  levelRequirementsTableName: StringFilter
+  """
+  Escape hatch: when true, apply zero RLS policies to the entity table. Defaults to false.
+       Use this only when you want the entity table provisioned with zero policies (e.g. because you
+       plan to insert secure_table_provision rows yourself later). In most cases, prefer leaving this
+       false and either accepting the five defaults (table_provision=NULL) or overriding them via
+       table_provision.
+       Defaults (applied when table_provision IS NULL and skip_entity_policies=false):
+         - SELECT (parent_member): parent entity members can see child entities (only when is_visible=true)
+         - SELECT (self_member):   direct members of the entity can see it
+         - INSERT:                 create_entity permission on the parent entity
+         - UPDATE:                 admin_entity permission on the entity itself
+         - DELETE:                 owner of the entity can delete it
+  """
+  skipEntityPolicies: Boolean!
 
-  """Filter by the object’s `levelGrantsTableId` field."""
-  levelGrantsTableId: UUIDFilter
+  """
+  Single jsonb object describing the full security setup to apply to the entity table.
+       Uses the same vocabulary as metaschema_modules_public.provision_table() and blueprint tables[]
+       entries, so an entity table is configured the same way an ordinary blueprint table is.
+       Defaults to NULL; when non-NULL, the five default policies are implicitly replaced by
+       table_provision.policies[] (is_visible becomes a no-op on this path).
+       Recognized keys (all optional):
+         - use_rls          (boolean, default true)
+         - nodes            (jsonb array of {"$type","data"} Data* module entries)
+         - fields           (jsonb array of field objects: name,type,is_required,default,min,max,regexp,index)
+         - grants           (jsonb array of grant objects; each with roles[] and privileges[])
+         - policies         (jsonb array of policy objects; each with $type, privileges, data, name, role, permissive)
+       The trigger forwards all setup (nodes/fields/grants/policies) as a single secure_table_provision row
+       against the newly created entity table.
+       Example — override with two SELECT policies:
+         table_provision := jsonb_build_object(
+           'policies', jsonb_build_array(
+             jsonb_build_object(
+               '$type', 'AuthzEntityMembership',
+               'privileges', jsonb_build_array('select'),
+               'data', jsonb_build_object('entity_field', 'id', 'membership_type', 3),
+               'name', 'self_member'
+             ),
+             jsonb_build_object(
+               '$type', 'AuthzDirectOwner',
+               'privileges', jsonb_build_array('select', 'update'),
+               'data', jsonb_build_object('owner_field', 'owner_id')
+             )
+           )
+         )
+  """
+  tableProvision: JSON
 
-  """Filter by the object’s `levelGrantsTableName` field."""
-  levelGrantsTableName: StringFilter
+  """
+  Output: the auto-assigned integer membership type ID. Populated by the trigger after successful provisioning.
+       This is the ID used in entity_types, memberships_module, and all module tables.
+  """
+  outMembershipType: Int
 
-  """Filter by the object’s `achievementRewardsTableId` field."""
-  achievementRewardsTableId: UUIDFilter
+  """
+  Output: the UUID of the created entity table. Populated by the trigger.
+       Use this to reference the entity table in subsequent relation_provision or secure_table_provision rows.
+  """
+  outEntityTableId: UUID
 
-  """Filter by the object’s `achievementRewardsTableName` field."""
-  achievementRewardsTableName: StringFilter
+  """
+  Output: the name of the created entity table (e.g. 'data_rooms'). Populated by the trigger.
+  """
+  outEntityTableName: String
 
-  """Filter by the object’s `recordEvent` field."""
-  recordEvent: StringFilter
+  """
+  Output: array of installed module labels (e.g. ARRAY['permissions_module:data_room', 'memberships_module:data_room', 'invites_module:data_room']).
+       Populated by the trigger. Useful for verifying which modules were provisioned.
+  """
+  outInstalledModules: [String]
 
-  """Filter by the object’s `removeEvent` field."""
-  removeEvent: StringFilter
+  """
+  Output: the UUID of the storage_module row created for this entity type. Populated by the trigger when storage is non-NULL and non-empty.
+  """
+  outStorageModuleId: UUID
 
-  """Filter by the object’s `tgEvent` field."""
-  tgEvent: StringFilter
+  """
+  Output: the UUID of the generated buckets table (e.g. data_room_buckets). Populated by the trigger when storage is non-NULL and non-empty.
+  """
+  outBucketsTableId: UUID
 
-  """Filter by the object’s `tgEventToggle` field."""
-  tgEventToggle: StringFilter
+  """
+  Output: the UUID of the generated files table (e.g. data_room_files). Populated by the trigger when storage is non-NULL and non-empty.
+  """
+  outFilesTableId: UUID
+  outPathSharesTableId: UUID
 
-  """Filter by the object’s `tgEventToggleBool` field."""
-  tgEventToggleBool: StringFilter
+  """
+  Output: the UUID of the invites_module row created for this entity type. Populated by the trigger when has_invites=true.
+       NULL when has_invites=false, or when re-provisioning hits ON CONFLICT DO NOTHING
+       (i.e. the invites_module row was created in a previous run).
+  """
+  outInvitesModuleId: UUID
 
-  """Filter by the object’s `tgEventBool` field."""
-  tgEventBool: StringFilter
+  """
+  Output: the UUID of the namespace_module row created (or found) for this entity type.
+       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  """
+  outNamespaceModuleId: UUID
 
-  """Filter by the object’s `upsertAggregate` field."""
-  upsertAggregate: StringFilter
+  """
+  Output: the UUID of the generated namespaces table (e.g. data_room_namespaces).
+       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  """
+  outNamespacesTableId: UUID
 
-  """Filter by the object’s `tgUpdateAggregates` field."""
-  tgUpdateAggregates: StringFilter
+  """
+  Output: the UUID of the generated namespace_events partitioned table (e.g. data_room_namespace_events).
+       Monthly partitioned, 12-month retention. Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  """
+  outNamespaceEventsTableId: UUID
+  outFunctionModuleId: UUID
+  outDefinitionsTableId: UUID
+  outInvocationsTableId: UUID
+  outExecutionLogsTableId: UUID
+  outSecretDefinitionsTableId: UUID
+  outGraphModuleId: UUID
+  outGraphsTableId: UUID
+  outAgentModuleId: UUID
+}
 
-  """Filter by the object’s `pruneEvents` field."""
-  pruneEvents: StringFilter
+"""A `EntityTypeProvision` edge in the connection."""
+type EntityTypeProvisionEdge {
+  """A cursor for use in pagination."""
+  cursor: Cursor
 
-  """Filter by the object’s `stepsRequired` field."""
-  stepsRequired: StringFilter
+  """The `EntityTypeProvision` at the end of the edge."""
+  node: EntityTypeProvision
+}
 
-  """Filter by the object’s `levelAchieved` field."""
-  levelAchieved: StringFilter
+"""
+A filter to be used against `EntityTypeProvision` object types. All fields are combined with a logical ‘and.’
+"""
+input EntityTypeProvisionFilter {
+  """Filter by the object’s `id` field."""
+  id: UUIDFilter
 
-  """Filter by the object’s `tgCheckAchievements` field."""
-  tgCheckAchievements: StringFilter
+  """Filter by the object’s `databaseId` field."""
+  databaseId: UUIDFilter
 
-  """Filter by the object’s `grantAchievement` field."""
-  grantAchievement: StringFilter
+  """Filter by the object’s `name` field."""
+  name: StringFilter
 
-  """Filter by the object’s `tgAchievementReward` field."""
-  tgAchievementReward: StringFilter
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
 
-  """Filter by the object’s `interval` field."""
-  interval: StringFilter
+  """Filter by the object’s `description` field."""
+  description: StringFilter
 
-  """Filter by the object’s `retention` field."""
-  retention: StringFilter
+  """Filter by the object’s `parentEntity` field."""
+  parentEntity: StringFilter
 
-  """Filter by the object’s `premake` field."""
-  premake: IntFilter
+  """Filter by the object’s `tableName` field."""
+  tableName: StringFilter
 
-  """Filter by the object’s `scope` field."""
-  scope: StringFilter
+  """Filter by the object’s `isVisible` field."""
+  isVisible: BooleanFilter
 
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
+  """Filter by the object’s `hasLimits` field."""
+  hasLimits: BooleanFilter
 
-  """Filter by the object’s `entityTableId` field."""
-  entityTableId: UUIDFilter
+  """Filter by the object’s `hasProfiles` field."""
+  hasProfiles: BooleanFilter
 
-  """Filter by the object’s `actorTableId` field."""
-  actorTableId: UUIDFilter
+  """Filter by the object’s `hasLevels` field."""
+  hasLevels: BooleanFilter
 
-  """Filter by the object’s `apiName` field."""
-  apiName: StringFilter
+  """Filter by the object’s `hasInvites` field."""
+  hasInvites: BooleanFilter
 
-  """Filter by the object’s `privateApiName` field."""
-  privateApiName: StringFilter
+  """Filter by the object’s `hasInviteAchievements` field."""
+  hasInviteAchievements: BooleanFilter
+
+  """Filter by the object’s `storage` field."""
+  storage: JSONFilter
+
+  """Filter by the object’s `namespaces` field."""
+  namespaces: JSONFilter
+
+  """Filter by the object’s `functions` field."""
+  functions: JSONFilter
+
+  """Filter by the object’s `graphs` field."""
+  graphs: JSONFilter
+
+  """Filter by the object’s `agents` field."""
+  agents: JSONFilter
+
+  """Filter by the object’s `skipEntityPolicies` field."""
+  skipEntityPolicies: BooleanFilter
+
+  """Filter by the object’s `tableProvision` field."""
+  tableProvision: JSONFilter
+
+  """Filter by the object’s `outMembershipType` field."""
+  outMembershipType: IntFilter
+
+  """Filter by the object’s `outEntityTableId` field."""
+  outEntityTableId: UUIDFilter
+
+  """Filter by the object’s `outEntityTableName` field."""
+  outEntityTableName: StringFilter
+
+  """Filter by the object’s `outInstalledModules` field."""
+  outInstalledModules: StringListFilter
+
+  """Filter by the object’s `outStorageModuleId` field."""
+  outStorageModuleId: UUIDFilter
+
+  """Filter by the object’s `outBucketsTableId` field."""
+  outBucketsTableId: UUIDFilter
+
+  """Filter by the object’s `outFilesTableId` field."""
+  outFilesTableId: UUIDFilter
+
+  """Filter by the object’s `outPathSharesTableId` field."""
+  outPathSharesTableId: UUIDFilter
+
+  """Filter by the object’s `outInvitesModuleId` field."""
+  outInvitesModuleId: UUIDFilter
+
+  """Filter by the object’s `outNamespaceModuleId` field."""
+  outNamespaceModuleId: UUIDFilter
+
+  """Filter by the object’s `outNamespacesTableId` field."""
+  outNamespacesTableId: UUIDFilter
+
+  """Filter by the object’s `outNamespaceEventsTableId` field."""
+  outNamespaceEventsTableId: UUIDFilter
+
+  """Filter by the object’s `outFunctionModuleId` field."""
+  outFunctionModuleId: UUIDFilter
+
+  """Filter by the object’s `outDefinitionsTableId` field."""
+  outDefinitionsTableId: UUIDFilter
+
+  """Filter by the object’s `outInvocationsTableId` field."""
+  outInvocationsTableId: UUIDFilter
+
+  """Filter by the object’s `outExecutionLogsTableId` field."""
+  outExecutionLogsTableId: UUIDFilter
+
+  """Filter by the object’s `outSecretDefinitionsTableId` field."""
+  outSecretDefinitionsTableId: UUIDFilter
+
+  """Filter by the object’s `outGraphModuleId` field."""
+  outGraphModuleId: UUIDFilter
+
+  """Filter by the object’s `outGraphsTableId` field."""
+  outGraphsTableId: UUIDFilter
+
+  """Filter by the object’s `outAgentModuleId` field."""
+  outAgentModuleId: UUIDFilter
 
   """Checks for all expressions in this list."""
-  and: [EventsModuleFilter!]
+  and: [EntityTypeProvisionFilter!]
 
   """Checks for any expressions in this list."""
-  or: [EventsModuleFilter!]
+  or: [EntityTypeProvisionFilter!]
 
   """Negates the expression."""
-  not: EventsModuleFilter
+  not: EntityTypeProvisionFilter
 }
 
-"""Methods to use when ordering `EventsModule`."""
-enum EventsModuleOrderBy {
+"""Methods to use when ordering `EntityTypeProvision`."""
+enum EntityTypeProvisionOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -10962,560 +11267,297 @@ enum EventsModuleOrderBy {
   ID_DESC
   DATABASE_ID_ASC
   DATABASE_ID_DESC
-  SCHEMA_ID_ASC
-  SCHEMA_ID_DESC
-  PRIVATE_SCHEMA_ID_ASC
-  PRIVATE_SCHEMA_ID_DESC
-  EVENTS_TABLE_ID_ASC
-  EVENTS_TABLE_ID_DESC
-  EVENTS_TABLE_NAME_ASC
-  EVENTS_TABLE_NAME_DESC
-  EVENT_AGGREGATES_TABLE_ID_ASC
-  EVENT_AGGREGATES_TABLE_ID_DESC
-  EVENT_AGGREGATES_TABLE_NAME_ASC
-  EVENT_AGGREGATES_TABLE_NAME_DESC
-  EVENT_TYPES_TABLE_ID_ASC
-  EVENT_TYPES_TABLE_ID_DESC
-  EVENT_TYPES_TABLE_NAME_ASC
-  EVENT_TYPES_TABLE_NAME_DESC
-  LEVELS_TABLE_ID_ASC
-  LEVELS_TABLE_ID_DESC
-  LEVELS_TABLE_NAME_ASC
-  LEVELS_TABLE_NAME_DESC
-  LEVEL_REQUIREMENTS_TABLE_ID_ASC
-  LEVEL_REQUIREMENTS_TABLE_ID_DESC
-  LEVEL_REQUIREMENTS_TABLE_NAME_ASC
-  LEVEL_REQUIREMENTS_TABLE_NAME_DESC
-  LEVEL_GRANTS_TABLE_ID_ASC
-  LEVEL_GRANTS_TABLE_ID_DESC
-  LEVEL_GRANTS_TABLE_NAME_ASC
-  LEVEL_GRANTS_TABLE_NAME_DESC
-  ACHIEVEMENT_REWARDS_TABLE_ID_ASC
-  ACHIEVEMENT_REWARDS_TABLE_ID_DESC
-  ACHIEVEMENT_REWARDS_TABLE_NAME_ASC
-  ACHIEVEMENT_REWARDS_TABLE_NAME_DESC
-  RECORD_EVENT_ASC
-  RECORD_EVENT_DESC
-  REMOVE_EVENT_ASC
-  REMOVE_EVENT_DESC
-  TG_EVENT_ASC
-  TG_EVENT_DESC
-  TG_EVENT_TOGGLE_ASC
-  TG_EVENT_TOGGLE_DESC
-  TG_EVENT_TOGGLE_BOOL_ASC
-  TG_EVENT_TOGGLE_BOOL_DESC
-  TG_EVENT_BOOL_ASC
-  TG_EVENT_BOOL_DESC
-  UPSERT_AGGREGATE_ASC
-  UPSERT_AGGREGATE_DESC
-  TG_UPDATE_AGGREGATES_ASC
-  TG_UPDATE_AGGREGATES_DESC
-  PRUNE_EVENTS_ASC
-  PRUNE_EVENTS_DESC
-  STEPS_REQUIRED_ASC
-  STEPS_REQUIRED_DESC
-  LEVEL_ACHIEVED_ASC
-  LEVEL_ACHIEVED_DESC
-  TG_CHECK_ACHIEVEMENTS_ASC
-  TG_CHECK_ACHIEVEMENTS_DESC
-  GRANT_ACHIEVEMENT_ASC
-  GRANT_ACHIEVEMENT_DESC
-  TG_ACHIEVEMENT_REWARD_ASC
-  TG_ACHIEVEMENT_REWARD_DESC
-  INTERVAL_ASC
-  INTERVAL_DESC
-  RETENTION_ASC
-  RETENTION_DESC
-  PREMAKE_ASC
-  PREMAKE_DESC
-  SCOPE_ASC
-  SCOPE_DESC
+  NAME_ASC
+  NAME_DESC
   PREFIX_ASC
   PREFIX_DESC
-  ENTITY_TABLE_ID_ASC
-  ENTITY_TABLE_ID_DESC
-  ACTOR_TABLE_ID_ASC
-  ACTOR_TABLE_ID_DESC
-  API_NAME_ASC
-  API_NAME_DESC
-  PRIVATE_API_NAME_ASC
-  PRIVATE_API_NAME_DESC
+  DESCRIPTION_ASC
+  DESCRIPTION_DESC
+  PARENT_ENTITY_ASC
+  PARENT_ENTITY_DESC
+  TABLE_NAME_ASC
+  TABLE_NAME_DESC
+  IS_VISIBLE_ASC
+  IS_VISIBLE_DESC
+  HAS_LIMITS_ASC
+  HAS_LIMITS_DESC
+  HAS_PROFILES_ASC
+  HAS_PROFILES_DESC
+  HAS_LEVELS_ASC
+  HAS_LEVELS_DESC
+  HAS_INVITES_ASC
+  HAS_INVITES_DESC
+  HAS_INVITE_ACHIEVEMENTS_ASC
+  HAS_INVITE_ACHIEVEMENTS_DESC
+  STORAGE_ASC
+  STORAGE_DESC
+  NAMESPACES_ASC
+  NAMESPACES_DESC
+  FUNCTIONS_ASC
+  FUNCTIONS_DESC
+  GRAPHS_ASC
+  GRAPHS_DESC
+  AGENTS_ASC
+  AGENTS_DESC
+  SKIP_ENTITY_POLICIES_ASC
+  SKIP_ENTITY_POLICIES_DESC
+  TABLE_PROVISION_ASC
+  TABLE_PROVISION_DESC
+  OUT_MEMBERSHIP_TYPE_ASC
+  OUT_MEMBERSHIP_TYPE_DESC
+  OUT_ENTITY_TABLE_ID_ASC
+  OUT_ENTITY_TABLE_ID_DESC
+  OUT_ENTITY_TABLE_NAME_ASC
+  OUT_ENTITY_TABLE_NAME_DESC
+  OUT_INSTALLED_MODULES_ASC
+  OUT_INSTALLED_MODULES_DESC
+  OUT_STORAGE_MODULE_ID_ASC
+  OUT_STORAGE_MODULE_ID_DESC
+  OUT_BUCKETS_TABLE_ID_ASC
+  OUT_BUCKETS_TABLE_ID_DESC
+  OUT_FILES_TABLE_ID_ASC
+  OUT_FILES_TABLE_ID_DESC
+  OUT_PATH_SHARES_TABLE_ID_ASC
+  OUT_PATH_SHARES_TABLE_ID_DESC
+  OUT_INVITES_MODULE_ID_ASC
+  OUT_INVITES_MODULE_ID_DESC
+  OUT_NAMESPACE_MODULE_ID_ASC
+  OUT_NAMESPACE_MODULE_ID_DESC
+  OUT_NAMESPACES_TABLE_ID_ASC
+  OUT_NAMESPACES_TABLE_ID_DESC
+  OUT_NAMESPACE_EVENTS_TABLE_ID_ASC
+  OUT_NAMESPACE_EVENTS_TABLE_ID_DESC
+  OUT_FUNCTION_MODULE_ID_ASC
+  OUT_FUNCTION_MODULE_ID_DESC
+  OUT_DEFINITIONS_TABLE_ID_ASC
+  OUT_DEFINITIONS_TABLE_ID_DESC
+  OUT_INVOCATIONS_TABLE_ID_ASC
+  OUT_INVOCATIONS_TABLE_ID_DESC
+  OUT_EXECUTION_LOGS_TABLE_ID_ASC
+  OUT_EXECUTION_LOGS_TABLE_ID_DESC
+  OUT_SECRET_DEFINITIONS_TABLE_ID_ASC
+  OUT_SECRET_DEFINITIONS_TABLE_ID_DESC
+  OUT_GRAPH_MODULE_ID_ASC
+  OUT_GRAPH_MODULE_ID_DESC
+  OUT_GRAPHS_TABLE_ID_ASC
+  OUT_GRAPHS_TABLE_ID_DESC
+  OUT_AGENT_MODULE_ID_ASC
+  OUT_AGENT_MODULE_ID_DESC
 }
 
-"""A connection to a list of `EntityTypeProvision` values."""
-type EntityTypeProvisionConnection {
-  """A list of `EntityTypeProvision` objects."""
-  nodes: [EntityTypeProvision]!
+"""A connection to a list of `EventsModule` values."""
+type EventsModuleConnection {
+  """A list of `EventsModule` objects."""
+  nodes: [EventsModule]!
 
   """
-  A list of edges which contains the `EntityTypeProvision` and cursor to aid in pagination.
+  A list of edges which contains the `EventsModule` and cursor to aid in pagination.
   """
-  edges: [EntityTypeProvisionEdge]!
+  edges: [EventsModuleEdge]!
 
   """Information to aid in pagination."""
   pageInfo: PageInfo!
 
-  """
-  The count of *all* `EntityTypeProvision` you could get from the connection.
-  """
+  """The count of *all* `EventsModule` you could get from the connection."""
   totalCount: Int!
 }
 
-"""
-Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
-     and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
-     Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
-     via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
-     Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
-     Set table_provision to a single jsonb object (using the same shape as provision_table() /
-     blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
-     as an escape hatch to apply zero policies.
-"""
-type EntityTypeProvision {
-  """Unique identifier for this provision row."""
+type EventsModule {
   id: UUID!
-
-  """The database to provision this entity type in. Required."""
   databaseId: UUID!
-
-  """
-  Human-readable name for this entity type, e.g. 'Data Room', 'Team Channel'. Required.
-       Stored in the entity_types registry table.
-  """
-  name: String!
-
-  """
-  SQL prefix used for table and module naming, e.g. 'data_room', 'team_channel'. Required.
-       Drives entity table name (prefix || 's' by default), module labels (permissions_module:prefix),
-       and membership table names (prefix_memberships, prefix_members, etc.).
-       Must be unique per database — the (database_id, prefix) constraint ensures graceful ON CONFLICT DO NOTHING.
-  """
-  prefix: String!
-
-  """
-  Description of this entity type. Stored in the entity_types registry table. Defaults to empty string.
-  """
-  description: String!
-
-  """
-  Prefix of the parent entity type. The trigger resolves this to a membership_type integer
-       by looking up memberships_module WHERE prefix = parent_entity.
-       Defaults to 'org' (the organization-level type). For nested types, set to the parent's prefix
-       (e.g. 'data_room' for a team_channel nested under data_room).
-       The parent type must already be provisioned before this INSERT.
-  """
-  parentEntity: String!
-
-  """
-  Override the entity table name. When NULL (default), the table name is derived as prefix || 's'
-       (e.g. prefix 'data_room' produces table 'data_rooms').
-       Set this when the pluralization rule doesn't apply (e.g. prefix 'staff' should produce 'staff' not 'staffs').
-  """
-  tableName: String
-
-  """
-  Whether members of the parent entity can see child entities. Defaults to true.
-       When true: a SELECT policy allows parent members to list child entities (e.g. org members can see all data rooms).
-       When false: only direct members of the entity itself can see it (private entity mode).
-       Controls whether the parent_member SELECT policy is created on the entity table.
-       Only meaningful on the defaults path — ignored (no-op) when table_provision is non-NULL or
-       skip_entity_policies=true, since no default policies are being applied in those cases.
-  """
-  isVisible: Boolean!
-
-  """
-  Whether to apply limits_module security for this type. Defaults to false.
-       The limits_module table structure is always created (memberships_module requires it),
-       but when false, no RLS policies are applied to the limits tables.
-       Set to true if this entity type needs configurable resource limits per membership.
-  """
-  hasLimits: Boolean!
-
-  """
-  Whether to provision profiles_module for this type. Defaults to false.
-       Profiles provide named permission roles (e.g. 'Editor', 'Viewer') with pre-configured permission bitmasks.
-       When true, creates profile tables and applies profiles security.
-  """
-  hasProfiles: Boolean!
-
-  """
-  Whether to provision events_module for this type. Defaults to false.
-       Levels provide gamification/achievement tracking for members.
-       When true, creates level steps, achievements, and level tables with security.
-  """
-  hasLevels: Boolean!
-
-  """
-  Whether to provision invites_module for this type. Defaults to false.
-       When true, the trigger inserts a row into invites_module which in turn
-       (via insert_invites_module BEFORE INSERT) creates {prefix}_invites and
-       {prefix}_claimed_invites tables plus the submit_{prefix}_invite_code() function.
-       Re-provisioning is idempotent: the UNIQUE (database_id, membership_type) constraint
-       on invites_module combined with ON CONFLICT DO NOTHING in the fan-out makes
-       repeated INSERTs safe.
-  """
-  hasInvites: Boolean!
-
-  """
-  Whether to auto-attach an EventTracker to the claimed_invites table for invite-based
-       achievements. Defaults to false. Requires has_invites=true AND has_levels=true.
-       When true, the trigger calls event_tracker() on the claimed_invites table with
-       event_name='invite_claimed', actor_field='sender_id', events=['INSERT'],
-       crediting the SENDER (inviter) when someone claims their invite code.
-       Developers can then define achievements in the blueprint achievements[] section
-       that reference the 'invite_claimed' event (e.g., "Invite 5 friends" = count: 5).
-  """
-  hasInviteAchievements: Boolean!
-
-  """
-  Optional JSON array of storage module definitions. Presence triggers provisioning
-       (same inference model as namespaces, functions, agents).
-       Each element provisions a separate storage module with its own tables
-       ({prefix}_{key}_buckets/files), RLS policies, and feature flags.
-       NULL = do not provision storage. '[{}]' = provision one default storage module.
-       Each array element recognizes (all optional):
-         - key                           (text) module discriminator, max 16 chars, lowercase snake_case.
-                                                Defaults to 'default' (omitted from table names).
-                                                Non-default keys become infixes: {prefix}_{key}_buckets.
-                                                (storage_key accepted for backward compat)
-         - upload_url_expiry_seconds     (integer) presigned PUT URL expiry override
-         - download_url_expiry_seconds   (integer) presigned GET URL expiry override
-         - default_max_file_size         (bigint)  global max file size in bytes for this module
-         - allowed_origins               (text[])  default CORS origins for all buckets in this module
-         - restrict_reads                (boolean) require read_files permission for SELECT on files
-         - has_path_shares               (boolean) enable virtual filesystem + path share policies
-         - has_versioning                (boolean) enable file version chains
-         - has_content_hash              (boolean) enable content hash for dedup
-         - has_custom_keys               (boolean) allow client-provided S3 keys
-         - has_audit_log                 (boolean) enable file events audit table
-         - has_confirm_upload            (boolean) enable HeadObject confirmation flow
-         - confirm_upload_delay          (interval) delay before first confirmation attempt
-         - buckets                       (jsonb[]) array of initial bucket definitions to seed.
-           Each bucket: { name (required), description, is_public, allowed_mime_types, max_file_size, allowed_origins }
-         - provisions                    (jsonb object) per-table customization keyed by "files" or "buckets".
-                                                Each value: { nodes, fields, grants, use_rls, policies }.
-       Example (single module, backward compat):
-         storage := '[{"buckets": [{"name": "documents"}]}]'::jsonb
-       Example (multi-module):
-         storage := '[{"has_path_shares": true, "buckets": [{"name": "documents"}]}, {"key": "fn", "has_custom_keys": true, "buckets": [{"name": "functions"}]}]'::jsonb
-  """
-  storage: JSON
-
-  """
-  Optional JSON array of namespace module definitions. Presence triggers provisioning.
-       NULL = do not provision namespaces. '[{}]' = provision one default namespace module.
-       Each element recognizes (all optional):
-         - key       (text) module discriminator. Defaults to 'default'.
-         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_namespace_security().
-       Creates {prefix}_namespaces (or {prefix}_{key}_namespaces for non-default keys)
-       with entity-scoped RLS (AuthzEntityMembership) and a rename proxy trigger.
-       Registers manage_namespaces permission bit on first provision.
-       Example: namespaces := '[{}]'::jsonb
-  """
-  namespaces: JSON
-
-  """
-  Optional JSON array of function module definitions. Presence triggers provisioning.
-       NULL = do not provision functions. '[{}]' = provision one default function module.
-       Each element recognizes (all optional):
-         - key       (text) module discriminator. Defaults to 'default'.
-         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_function_security().
-       Creates {prefix}_function_definitions (or {prefix}_{key}_function_definitions for non-default keys)
-       with entity-scoped RLS and a job trigger dispatching function:provision tasks.
-       Registers manage_functions + invoke_functions permission bits on first provision.
-       Example: functions := '[{}]'::jsonb
-  """
-  functions: JSON
-
-  """
-  Optional JSON array of graph module definitions. Presence triggers provisioning.
-       NULL = do not provision graphs. '[{}]' = provision one default graph module.
-       Each element recognizes (all optional):
-         - key       (text) module discriminator. Defaults to 'default'.
-         - policies  (jsonb array) RLS policy overrides. NULL = apply defaults from apply_graph_security().
-       Registers manage_graphs + execute_graphs permission bits on first provision.
-       Graph module requires a merkle_store_module_id dependency, so entity_type_provision
-       only registers permissions here. The graph module itself must be provisioned
-       separately with the merkle store dependency resolved.
-       Example: graphs := '[{}]'::jsonb
-  """
-  graphs: JSON
-  agents: JSON
-
-  """
-  Escape hatch: when true, apply zero RLS policies to the entity table. Defaults to false.
-       Use this only when you want the entity table provisioned with zero policies (e.g. because you
-       plan to insert secure_table_provision rows yourself later). In most cases, prefer leaving this
-       false and either accepting the five defaults (table_provision=NULL) or overriding them via
-       table_provision.
-       Defaults (applied when table_provision IS NULL and skip_entity_policies=false):
-         - SELECT (parent_member): parent entity members can see child entities (only when is_visible=true)
-         - SELECT (self_member):   direct members of the entity can see it
-         - INSERT:                 create_entity permission on the parent entity
-         - UPDATE:                 admin_entity permission on the entity itself
-         - DELETE:                 owner of the entity can delete it
-  """
-  skipEntityPolicies: Boolean!
-
-  """
-  Single jsonb object describing the full security setup to apply to the entity table.
-       Uses the same vocabulary as metaschema_modules_public.provision_table() and blueprint tables[]
-       entries, so an entity table is configured the same way an ordinary blueprint table is.
-       Defaults to NULL; when non-NULL, the five default policies are implicitly replaced by
-       table_provision.policies[] (is_visible becomes a no-op on this path).
-       Recognized keys (all optional):
-         - use_rls          (boolean, default true)
-         - nodes            (jsonb array of {"$type","data"} Data* module entries)
-         - fields           (jsonb array of field objects: name,type,is_required,default,min,max,regexp,index)
-         - grants           (jsonb array of grant objects; each with roles[] and privileges[])
-         - policies         (jsonb array of policy objects; each with $type, privileges, data, name, role, permissive)
-       The trigger forwards all setup (nodes/fields/grants/policies) as a single secure_table_provision row
-       against the newly created entity table.
-       Example — override with two SELECT policies:
-         table_provision := jsonb_build_object(
-           'policies', jsonb_build_array(
-             jsonb_build_object(
-               '$type', 'AuthzEntityMembership',
-               'privileges', jsonb_build_array('select'),
-               'data', jsonb_build_object('entity_field', 'id', 'membership_type', 3),
-               'name', 'self_member'
-             ),
-             jsonb_build_object(
-               '$type', 'AuthzDirectOwner',
-               'privileges', jsonb_build_array('select', 'update'),
-               'data', jsonb_build_object('owner_field', 'owner_id')
-             )
-           )
-         )
-  """
-  tableProvision: JSON
-
-  """
-  Output: the auto-assigned integer membership type ID. Populated by the trigger after successful provisioning.
-       This is the ID used in entity_types, memberships_module, and all module tables.
-  """
-  outMembershipType: Int
-
-  """
-  Output: the UUID of the created entity table. Populated by the trigger.
-       Use this to reference the entity table in subsequent relation_provision or secure_table_provision rows.
-  """
-  outEntityTableId: UUID
-
-  """
-  Output: the name of the created entity table (e.g. 'data_rooms'). Populated by the trigger.
-  """
-  outEntityTableName: String
-
-  """
-  Output: array of installed module labels (e.g. ARRAY['permissions_module:data_room', 'memberships_module:data_room', 'invites_module:data_room']).
-       Populated by the trigger. Useful for verifying which modules were provisioned.
-  """
-  outInstalledModules: [String]
-
-  """
-  Output: the UUID of the storage_module row created for this entity type. Populated by the trigger when storage is non-NULL and non-empty.
-  """
-  outStorageModuleId: UUID
-
-  """
-  Output: the UUID of the generated buckets table (e.g. data_room_buckets). Populated by the trigger when storage is non-NULL and non-empty.
-  """
-  outBucketsTableId: UUID
-
-  """
-  Output: the UUID of the generated files table (e.g. data_room_files). Populated by the trigger when storage is non-NULL and non-empty.
-  """
-  outFilesTableId: UUID
-  outPathSharesTableId: UUID
-
-  """
-  Output: the UUID of the invites_module row created for this entity type. Populated by the trigger when has_invites=true.
-       NULL when has_invites=false, or when re-provisioning hits ON CONFLICT DO NOTHING
-       (i.e. the invites_module row was created in a previous run).
-  """
-  outInvitesModuleId: UUID
-
-  """
-  Output: the UUID of the namespace_module row created (or found) for this entity type.
-       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
-  """
-  outNamespaceModuleId: UUID
-
-  """
-  Output: the UUID of the generated namespaces table (e.g. data_room_namespaces).
-       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
-  """
-  outNamespacesTableId: UUID
-
-  """
-  Output: the UUID of the generated namespace_events partitioned table (e.g. data_room_namespace_events).
-       Monthly partitioned, 12-month retention. Populated by the trigger when namespaces is non-NULL. NULL otherwise.
-  """
-  outNamespaceEventsTableId: UUID
-  outFunctionModuleId: UUID
-  outDefinitionsTableId: UUID
-  outInvocationsTableId: UUID
-  outExecutionLogsTableId: UUID
-  outSecretDefinitionsTableId: UUID
-  outRequirementsTableId: UUID
-  outConfigRequirementsTableId: UUID
-  outGraphModuleId: UUID
-  outGraphsTableId: UUID
-  outAgentModuleId: UUID
+  schemaId: UUID!
+  privateSchemaId: UUID!
+  eventsTableId: UUID!
+  eventsTableName: String!
+  eventAggregatesTableId: UUID!
+  eventAggregatesTableName: String!
+  eventTypesTableId: UUID!
+  eventTypesTableName: String!
+  levelsTableId: UUID!
+  levelsTableName: String!
+  levelRequirementsTableId: UUID!
+  levelRequirementsTableName: String!
+  levelGrantsTableId: UUID!
+  levelGrantsTableName: String!
+  achievementRewardsTableId: UUID!
+  achievementRewardsTableName: String!
+  recordEvent: String!
+  removeEvent: String!
+  tgEvent: String!
+  tgEventToggle: String!
+  tgEventToggleBool: String!
+  tgEventBool: String!
+  upsertAggregate: String!
+  tgUpdateAggregates: String!
+  pruneEvents: String!
+  stepsRequired: String!
+  levelAchieved: String!
+  tgCheckAchievements: String!
+  grantAchievement: String!
+  tgAchievementReward: String!
+  interval: String!
+  retention: String
+  premake: Int!
+  scope: String!
+  prefix: String!
+  entityTableId: UUID
+  actorTableId: UUID!
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
 }
 
-"""A `EntityTypeProvision` edge in the connection."""
-type EntityTypeProvisionEdge {
+"""A `EventsModule` edge in the connection."""
+type EventsModuleEdge {
   """A cursor for use in pagination."""
   cursor: Cursor
 
-  """The `EntityTypeProvision` at the end of the edge."""
-  node: EntityTypeProvision
+  """The `EventsModule` at the end of the edge."""
+  node: EventsModule
 }
 
 """
-A filter to be used against `EntityTypeProvision` object types. All fields are combined with a logical ‘and.’
+A filter to be used against `EventsModule` object types. All fields are combined with a logical ‘and.’
 """
-input EntityTypeProvisionFilter {
+input EventsModuleFilter {
   """Filter by the object’s `id` field."""
   id: UUIDFilter
 
   """Filter by the object’s `databaseId` field."""
   databaseId: UUIDFilter
 
-  """Filter by the object’s `name` field."""
-  name: StringFilter
+  """Filter by the object’s `schemaId` field."""
+  schemaId: UUIDFilter
 
-  """Filter by the object’s `prefix` field."""
-  prefix: StringFilter
+  """Filter by the object’s `privateSchemaId` field."""
+  privateSchemaId: UUIDFilter
 
-  """Filter by the object’s `description` field."""
-  description: StringFilter
+  """Filter by the object’s `eventsTableId` field."""
+  eventsTableId: UUIDFilter
 
-  """Filter by the object’s `parentEntity` field."""
-  parentEntity: StringFilter
+  """Filter by the object’s `eventsTableName` field."""
+  eventsTableName: StringFilter
 
-  """Filter by the object’s `tableName` field."""
-  tableName: StringFilter
+  """Filter by the object’s `eventAggregatesTableId` field."""
+  eventAggregatesTableId: UUIDFilter
 
-  """Filter by the object’s `isVisible` field."""
-  isVisible: BooleanFilter
+  """Filter by the object’s `eventAggregatesTableName` field."""
+  eventAggregatesTableName: StringFilter
 
-  """Filter by the object’s `hasLimits` field."""
-  hasLimits: BooleanFilter
+  """Filter by the object’s `eventTypesTableId` field."""
+  eventTypesTableId: UUIDFilter
 
-  """Filter by the object’s `hasProfiles` field."""
-  hasProfiles: BooleanFilter
+  """Filter by the object’s `eventTypesTableName` field."""
+  eventTypesTableName: StringFilter
 
-  """Filter by the object’s `hasLevels` field."""
-  hasLevels: BooleanFilter
+  """Filter by the object’s `levelsTableId` field."""
+  levelsTableId: UUIDFilter
 
-  """Filter by the object’s `hasInvites` field."""
-  hasInvites: BooleanFilter
+  """Filter by the object’s `levelsTableName` field."""
+  levelsTableName: StringFilter
 
-  """Filter by the object’s `hasInviteAchievements` field."""
-  hasInviteAchievements: BooleanFilter
+  """Filter by the object’s `levelRequirementsTableId` field."""
+  levelRequirementsTableId: UUIDFilter
 
-  """Filter by the object’s `storage` field."""
-  storage: JSONFilter
+  """Filter by the object’s `levelRequirementsTableName` field."""
+  levelRequirementsTableName: StringFilter
 
-  """Filter by the object’s `namespaces` field."""
-  namespaces: JSONFilter
+  """Filter by the object’s `levelGrantsTableId` field."""
+  levelGrantsTableId: UUIDFilter
 
-  """Filter by the object’s `functions` field."""
-  functions: JSONFilter
+  """Filter by the object’s `levelGrantsTableName` field."""
+  levelGrantsTableName: StringFilter
 
-  """Filter by the object’s `graphs` field."""
-  graphs: JSONFilter
+  """Filter by the object’s `achievementRewardsTableId` field."""
+  achievementRewardsTableId: UUIDFilter
 
-  """Filter by the object’s `agents` field."""
-  agents: JSONFilter
+  """Filter by the object’s `achievementRewardsTableName` field."""
+  achievementRewardsTableName: StringFilter
 
-  """Filter by the object’s `skipEntityPolicies` field."""
-  skipEntityPolicies: BooleanFilter
+  """Filter by the object’s `recordEvent` field."""
+  recordEvent: StringFilter
 
-  """Filter by the object’s `tableProvision` field."""
-  tableProvision: JSONFilter
+  """Filter by the object’s `removeEvent` field."""
+  removeEvent: StringFilter
 
-  """Filter by the object’s `outMembershipType` field."""
-  outMembershipType: IntFilter
+  """Filter by the object’s `tgEvent` field."""
+  tgEvent: StringFilter
 
-  """Filter by the object’s `outEntityTableId` field."""
-  outEntityTableId: UUIDFilter
+  """Filter by the object’s `tgEventToggle` field."""
+  tgEventToggle: StringFilter
 
-  """Filter by the object’s `outEntityTableName` field."""
-  outEntityTableName: StringFilter
+  """Filter by the object’s `tgEventToggleBool` field."""
+  tgEventToggleBool: StringFilter
 
-  """Filter by the object’s `outInstalledModules` field."""
-  outInstalledModules: StringListFilter
+  """Filter by the object’s `tgEventBool` field."""
+  tgEventBool: StringFilter
 
-  """Filter by the object’s `outStorageModuleId` field."""
-  outStorageModuleId: UUIDFilter
+  """Filter by the object’s `upsertAggregate` field."""
+  upsertAggregate: StringFilter
 
-  """Filter by the object’s `outBucketsTableId` field."""
-  outBucketsTableId: UUIDFilter
+  """Filter by the object’s `tgUpdateAggregates` field."""
+  tgUpdateAggregates: StringFilter
 
-  """Filter by the object’s `outFilesTableId` field."""
-  outFilesTableId: UUIDFilter
+  """Filter by the object’s `pruneEvents` field."""
+  pruneEvents: StringFilter
 
-  """Filter by the object’s `outPathSharesTableId` field."""
-  outPathSharesTableId: UUIDFilter
+  """Filter by the object’s `stepsRequired` field."""
+  stepsRequired: StringFilter
 
-  """Filter by the object’s `outInvitesModuleId` field."""
-  outInvitesModuleId: UUIDFilter
+  """Filter by the object’s `levelAchieved` field."""
+  levelAchieved: StringFilter
 
-  """Filter by the object’s `outNamespaceModuleId` field."""
-  outNamespaceModuleId: UUIDFilter
+  """Filter by the object’s `tgCheckAchievements` field."""
+  tgCheckAchievements: StringFilter
 
-  """Filter by the object’s `outNamespacesTableId` field."""
-  outNamespacesTableId: UUIDFilter
+  """Filter by the object’s `grantAchievement` field."""
+  grantAchievement: StringFilter
 
-  """Filter by the object’s `outNamespaceEventsTableId` field."""
-  outNamespaceEventsTableId: UUIDFilter
+  """Filter by the object’s `tgAchievementReward` field."""
+  tgAchievementReward: StringFilter
 
-  """Filter by the object’s `outFunctionModuleId` field."""
-  outFunctionModuleId: UUIDFilter
+  """Filter by the object’s `interval` field."""
+  interval: StringFilter
 
-  """Filter by the object’s `outDefinitionsTableId` field."""
-  outDefinitionsTableId: UUIDFilter
+  """Filter by the object’s `retention` field."""
+  retention: StringFilter
 
-  """Filter by the object’s `outInvocationsTableId` field."""
-  outInvocationsTableId: UUIDFilter
+  """Filter by the object’s `premake` field."""
+  premake: IntFilter
 
-  """Filter by the object’s `outExecutionLogsTableId` field."""
-  outExecutionLogsTableId: UUIDFilter
+  """Filter by the object’s `scope` field."""
+  scope: StringFilter
 
-  """Filter by the object’s `outSecretDefinitionsTableId` field."""
-  outSecretDefinitionsTableId: UUIDFilter
+  """Filter by the object’s `prefix` field."""
+  prefix: StringFilter
 
-  """Filter by the object’s `outRequirementsTableId` field."""
-  outRequirementsTableId: UUIDFilter
+  """Filter by the object’s `entityTableId` field."""
+  entityTableId: UUIDFilter
 
-  """Filter by the object’s `outConfigRequirementsTableId` field."""
-  outConfigRequirementsTableId: UUIDFilter
+  """Filter by the object’s `actorTableId` field."""
+  actorTableId: UUIDFilter
 
-  """Filter by the object’s `outGraphModuleId` field."""
-  outGraphModuleId: UUIDFilter
+  """Filter by the object’s `defaultPermissions` field."""
+  defaultPermissions: StringListFilter
 
-  """Filter by the object’s `outGraphsTableId` field."""
-  outGraphsTableId: UUIDFilter
+  """Filter by the object’s `apiName` field."""
+  apiName: StringFilter
 
-  """Filter by the object’s `outAgentModuleId` field."""
-  outAgentModuleId: UUIDFilter
+  """Filter by the object’s `privateApiName` field."""
+  privateApiName: StringFilter
 
   """Checks for all expressions in this list."""
-  and: [EntityTypeProvisionFilter!]
+  and: [EventsModuleFilter!]
 
   """Checks for any expressions in this list."""
-  or: [EntityTypeProvisionFilter!]
+  or: [EventsModuleFilter!]
 
   """Negates the expression."""
-  not: EntityTypeProvisionFilter
+  not: EventsModuleFilter
 }
 
-"""Methods to use when ordering `EntityTypeProvision`."""
-enum EntityTypeProvisionOrderBy {
+"""Methods to use when ordering `EventsModule`."""
+enum EventsModuleOrderBy {
   NATURAL
   PRIMARY_KEY_ASC
   PRIMARY_KEY_DESC
@@ -11523,86 +11565,86 @@ enum EntityTypeProvisionOrderBy {
   ID_DESC
   DATABASE_ID_ASC
   DATABASE_ID_DESC
-  NAME_ASC
-  NAME_DESC
+  SCHEMA_ID_ASC
+  SCHEMA_ID_DESC
+  PRIVATE_SCHEMA_ID_ASC
+  PRIVATE_SCHEMA_ID_DESC
+  EVENTS_TABLE_ID_ASC
+  EVENTS_TABLE_ID_DESC
+  EVENTS_TABLE_NAME_ASC
+  EVENTS_TABLE_NAME_DESC
+  EVENT_AGGREGATES_TABLE_ID_ASC
+  EVENT_AGGREGATES_TABLE_ID_DESC
+  EVENT_AGGREGATES_TABLE_NAME_ASC
+  EVENT_AGGREGATES_TABLE_NAME_DESC
+  EVENT_TYPES_TABLE_ID_ASC
+  EVENT_TYPES_TABLE_ID_DESC
+  EVENT_TYPES_TABLE_NAME_ASC
+  EVENT_TYPES_TABLE_NAME_DESC
+  LEVELS_TABLE_ID_ASC
+  LEVELS_TABLE_ID_DESC
+  LEVELS_TABLE_NAME_ASC
+  LEVELS_TABLE_NAME_DESC
+  LEVEL_REQUIREMENTS_TABLE_ID_ASC
+  LEVEL_REQUIREMENTS_TABLE_ID_DESC
+  LEVEL_REQUIREMENTS_TABLE_NAME_ASC
+  LEVEL_REQUIREMENTS_TABLE_NAME_DESC
+  LEVEL_GRANTS_TABLE_ID_ASC
+  LEVEL_GRANTS_TABLE_ID_DESC
+  LEVEL_GRANTS_TABLE_NAME_ASC
+  LEVEL_GRANTS_TABLE_NAME_DESC
+  ACHIEVEMENT_REWARDS_TABLE_ID_ASC
+  ACHIEVEMENT_REWARDS_TABLE_ID_DESC
+  ACHIEVEMENT_REWARDS_TABLE_NAME_ASC
+  ACHIEVEMENT_REWARDS_TABLE_NAME_DESC
+  RECORD_EVENT_ASC
+  RECORD_EVENT_DESC
+  REMOVE_EVENT_ASC
+  REMOVE_EVENT_DESC
+  TG_EVENT_ASC
+  TG_EVENT_DESC
+  TG_EVENT_TOGGLE_ASC
+  TG_EVENT_TOGGLE_DESC
+  TG_EVENT_TOGGLE_BOOL_ASC
+  TG_EVENT_TOGGLE_BOOL_DESC
+  TG_EVENT_BOOL_ASC
+  TG_EVENT_BOOL_DESC
+  UPSERT_AGGREGATE_ASC
+  UPSERT_AGGREGATE_DESC
+  TG_UPDATE_AGGREGATES_ASC
+  TG_UPDATE_AGGREGATES_DESC
+  PRUNE_EVENTS_ASC
+  PRUNE_EVENTS_DESC
+  STEPS_REQUIRED_ASC
+  STEPS_REQUIRED_DESC
+  LEVEL_ACHIEVED_ASC
+  LEVEL_ACHIEVED_DESC
+  TG_CHECK_ACHIEVEMENTS_ASC
+  TG_CHECK_ACHIEVEMENTS_DESC
+  GRANT_ACHIEVEMENT_ASC
+  GRANT_ACHIEVEMENT_DESC
+  TG_ACHIEVEMENT_REWARD_ASC
+  TG_ACHIEVEMENT_REWARD_DESC
+  INTERVAL_ASC
+  INTERVAL_DESC
+  RETENTION_ASC
+  RETENTION_DESC
+  PREMAKE_ASC
+  PREMAKE_DESC
+  SCOPE_ASC
+  SCOPE_DESC
   PREFIX_ASC
   PREFIX_DESC
-  DESCRIPTION_ASC
-  DESCRIPTION_DESC
-  PARENT_ENTITY_ASC
-  PARENT_ENTITY_DESC
-  TABLE_NAME_ASC
-  TABLE_NAME_DESC
-  IS_VISIBLE_ASC
-  IS_VISIBLE_DESC
-  HAS_LIMITS_ASC
-  HAS_LIMITS_DESC
-  HAS_PROFILES_ASC
-  HAS_PROFILES_DESC
-  HAS_LEVELS_ASC
-  HAS_LEVELS_DESC
-  HAS_INVITES_ASC
-  HAS_INVITES_DESC
-  HAS_INVITE_ACHIEVEMENTS_ASC
-  HAS_INVITE_ACHIEVEMENTS_DESC
-  STORAGE_ASC
-  STORAGE_DESC
-  NAMESPACES_ASC
-  NAMESPACES_DESC
-  FUNCTIONS_ASC
-  FUNCTIONS_DESC
-  GRAPHS_ASC
-  GRAPHS_DESC
-  AGENTS_ASC
-  AGENTS_DESC
-  SKIP_ENTITY_POLICIES_ASC
-  SKIP_ENTITY_POLICIES_DESC
-  TABLE_PROVISION_ASC
-  TABLE_PROVISION_DESC
-  OUT_MEMBERSHIP_TYPE_ASC
-  OUT_MEMBERSHIP_TYPE_DESC
-  OUT_ENTITY_TABLE_ID_ASC
-  OUT_ENTITY_TABLE_ID_DESC
-  OUT_ENTITY_TABLE_NAME_ASC
-  OUT_ENTITY_TABLE_NAME_DESC
-  OUT_INSTALLED_MODULES_ASC
-  OUT_INSTALLED_MODULES_DESC
-  OUT_STORAGE_MODULE_ID_ASC
-  OUT_STORAGE_MODULE_ID_DESC
-  OUT_BUCKETS_TABLE_ID_ASC
-  OUT_BUCKETS_TABLE_ID_DESC
-  OUT_FILES_TABLE_ID_ASC
-  OUT_FILES_TABLE_ID_DESC
-  OUT_PATH_SHARES_TABLE_ID_ASC
-  OUT_PATH_SHARES_TABLE_ID_DESC
-  OUT_INVITES_MODULE_ID_ASC
-  OUT_INVITES_MODULE_ID_DESC
-  OUT_NAMESPACE_MODULE_ID_ASC
-  OUT_NAMESPACE_MODULE_ID_DESC
-  OUT_NAMESPACES_TABLE_ID_ASC
-  OUT_NAMESPACES_TABLE_ID_DESC
-  OUT_NAMESPACE_EVENTS_TABLE_ID_ASC
-  OUT_NAMESPACE_EVENTS_TABLE_ID_DESC
-  OUT_FUNCTION_MODULE_ID_ASC
-  OUT_FUNCTION_MODULE_ID_DESC
-  OUT_DEFINITIONS_TABLE_ID_ASC
-  OUT_DEFINITIONS_TABLE_ID_DESC
-  OUT_INVOCATIONS_TABLE_ID_ASC
-  OUT_INVOCATIONS_TABLE_ID_DESC
-  OUT_EXECUTION_LOGS_TABLE_ID_ASC
-  OUT_EXECUTION_LOGS_TABLE_ID_DESC
-  OUT_SECRET_DEFINITIONS_TABLE_ID_ASC
-  OUT_SECRET_DEFINITIONS_TABLE_ID_DESC
-  OUT_REQUIREMENTS_TABLE_ID_ASC
-  OUT_REQUIREMENTS_TABLE_ID_DESC
-  OUT_CONFIG_REQUIREMENTS_TABLE_ID_ASC
-  OUT_CONFIG_REQUIREMENTS_TABLE_ID_DESC
-  OUT_GRAPH_MODULE_ID_ASC
-  OUT_GRAPH_MODULE_ID_DESC
-  OUT_GRAPHS_TABLE_ID_ASC
-  OUT_GRAPHS_TABLE_ID_DESC
-  OUT_AGENT_MODULE_ID_ASC
-  OUT_AGENT_MODULE_ID_DESC
+  ENTITY_TABLE_ID_ASC
+  ENTITY_TABLE_ID_DESC
+  ACTOR_TABLE_ID_ASC
+  ACTOR_TABLE_ID_DESC
+  DEFAULT_PERMISSIONS_ASC
+  DEFAULT_PERMISSIONS_DESC
+  API_NAME_ASC
+  API_NAME_DESC
+  PRIVATE_API_NAME_ASC
+  PRIVATE_API_NAME_DESC
 }
 
 """Root meta schema type"""
@@ -12025,14 +12067,6 @@ type Mutation {
     input: CreateCryptoAuthModuleInput!
   ): CreateCryptoAuthModulePayload
 
-  """Creates a single `RateLimitMetersModule`."""
-  createRateLimitMetersModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: CreateRateLimitMetersModuleInput!
-  ): CreateRateLimitMetersModulePayload
-
   """Creates a single `BlueprintConstruction`."""
   createBlueprintConstruction(
     """
@@ -12073,6 +12107,14 @@ type Mutation {
     input: CreateSecureTableProvisionInput!
   ): CreateSecureTableProvisionPayload
 
+  """Creates a single `RateLimitMetersModule`."""
+  createRateLimitMetersModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateRateLimitMetersModuleInput!
+  ): CreateRateLimitMetersModulePayload
+
   """Creates a single `InvitesModule`."""
   createInvitesModule(
     """
@@ -12089,14 +12131,6 @@ type Mutation {
     input: CreateDatabaseProvisionModuleInput!
   ): CreateDatabaseProvisionModulePayload
 
-  """Creates a single `NamespaceModule`."""
-  createNamespaceModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: CreateNamespaceModuleInput!
-  ): CreateNamespaceModulePayload
-
   """Creates a single `RealtimeModule`."""
   createRealtimeModule(
     """
@@ -12113,13 +12147,13 @@ type Mutation {
     input: CreateWebauthnAuthModuleInput!
   ): CreateWebauthnAuthModulePayload
 
-  """Creates a single `GraphModule`."""
-  createGraphModule(
+  """Creates a single `NamespaceModule`."""
+  createNamespaceModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: CreateGraphModuleInput!
-  ): CreateGraphModulePayload
+    input: CreateNamespaceModuleInput!
+  ): CreateNamespaceModulePayload
 
   """Creates a single `ComputeLogModule`."""
   createComputeLogModule(
@@ -12153,21 +12187,13 @@ type Mutation {
     input: CreateTransferLogModuleInput!
   ): CreateTransferLogModulePayload
 
-  """Creates a single `DbUsageModule`."""
-  createDbUsageModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: CreateDbUsageModuleInput!
-  ): CreateDbUsageModulePayload
-
-  """Creates a single `NotificationsModule`."""
-  createNotificationsModule(
+  """Creates a single `GraphModule`."""
+  createGraphModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: CreateNotificationsModuleInput!
-  ): CreateNotificationsModulePayload
+    input: CreateGraphModuleInput!
+  ): CreateGraphModulePayload
 
   """Creates a single `PlansModule`."""
   createPlansModule(
@@ -12177,21 +12203,21 @@ type Mutation {
     input: CreatePlansModuleInput!
   ): CreatePlansModulePayload
 
-  """Creates a single `HierarchyModule`."""
-  createHierarchyModule(
+  """Creates a single `DbUsageModule`."""
+  createDbUsageModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: CreateHierarchyModuleInput!
-  ): CreateHierarchyModulePayload
+    input: CreateDbUsageModuleInput!
+  ): CreateDbUsageModulePayload
 
-  """Creates a single `BillingModule`."""
-  createBillingModule(
+  """Creates a single `NotificationsModule`."""
+  createNotificationsModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: CreateBillingModuleInput!
-  ): CreateBillingModulePayload
+    input: CreateNotificationsModuleInput!
+  ): CreateNotificationsModulePayload
 
   """Creates a single `BillingProviderModule`."""
   createBillingProviderModule(
@@ -12201,6 +12227,22 @@ type Mutation {
     input: CreateBillingProviderModuleInput!
   ): CreateBillingProviderModulePayload
 
+  """Creates a single `FunctionModule`."""
+  createFunctionModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateFunctionModuleInput!
+  ): CreateFunctionModulePayload
+
+  """Creates a single `HierarchyModule`."""
+  createHierarchyModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateHierarchyModuleInput!
+  ): CreateHierarchyModulePayload
+
   """Creates a single `ProfilesModule`."""
   createProfilesModule(
     """
@@ -12217,6 +12259,14 @@ type Mutation {
     input: CreatePermissionsModuleInput!
   ): CreatePermissionsModulePayload
 
+  """Creates a single `BillingModule`."""
+  createBillingModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateBillingModuleInput!
+  ): CreateBillingModulePayload
+
   """Creates a single `RelationProvision`."""
   createRelationProvision(
     """
@@ -12233,14 +12283,6 @@ type Mutation {
     input: CreateBlueprintTemplateInput!
   ): CreateBlueprintTemplatePayload
 
-  """Creates a single `FunctionModule`."""
-  createFunctionModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: CreateFunctionModuleInput!
-  ): CreateFunctionModulePayload
-
   """Creates a single `UserAuthModule`."""
   createUserAuthModule(
     """
@@ -12281,14 +12323,6 @@ type Mutation {
     input: CreateStorageModuleInput!
   ): CreateStorageModulePayload
 
-  """Creates a single `EventsModule`."""
-  createEventsModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: CreateEventsModuleInput!
-  ): CreateEventsModulePayload
-
   """Creates a single `EntityTypeProvision`."""
   createEntityTypeProvision(
     """
@@ -12297,6 +12331,14 @@ type Mutation {
     input: CreateEntityTypeProvisionInput!
   ): CreateEntityTypeProvisionPayload
 
+  """Creates a single `EventsModule`."""
+  createEventsModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: CreateEventsModuleInput!
+  ): CreateEventsModulePayload
+
   """Updates a single `DefaultIdsModule` using a unique key and a patch."""
   updateDefaultIdsModule(
     """
@@ -12493,16 +12535,6 @@ type Mutation {
     input: UpdateCryptoAuthModuleInput!
   ): UpdateCryptoAuthModulePayload
 
-  """
-  Updates a single `RateLimitMetersModule` using a unique key and a patch.
-  """
-  updateRateLimitMetersModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: UpdateRateLimitMetersModuleInput!
-  ): UpdateRateLimitMetersModulePayload
-
   """
   Updates a single `BlueprintConstruction` using a unique key and a patch.
   """
@@ -12547,6 +12579,16 @@ type Mutation {
     input: UpdateSecureTableProvisionInput!
   ): UpdateSecureTableProvisionPayload
 
+  """
+  Updates a single `RateLimitMetersModule` using a unique key and a patch.
+  """
+  updateRateLimitMetersModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateRateLimitMetersModuleInput!
+  ): UpdateRateLimitMetersModulePayload
+
   """Updates a single `InvitesModule` using a unique key and a patch."""
   updateInvitesModule(
     """
@@ -12565,14 +12607,6 @@ type Mutation {
     input: UpdateDatabaseProvisionModuleInput!
   ): UpdateDatabaseProvisionModulePayload
 
-  """Updates a single `NamespaceModule` using a unique key and a patch."""
-  updateNamespaceModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: UpdateNamespaceModuleInput!
-  ): UpdateNamespaceModulePayload
-
   """Updates a single `RealtimeModule` using a unique key and a patch."""
   updateRealtimeModule(
     """
@@ -12589,13 +12623,13 @@ type Mutation {
     input: UpdateWebauthnAuthModuleInput!
   ): UpdateWebauthnAuthModulePayload
 
-  """Updates a single `GraphModule` using a unique key and a patch."""
-  updateGraphModule(
+  """Updates a single `NamespaceModule` using a unique key and a patch."""
+  updateNamespaceModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: UpdateGraphModuleInput!
-  ): UpdateGraphModulePayload
+    input: UpdateNamespaceModuleInput!
+  ): UpdateNamespaceModulePayload
 
   """Updates a single `ComputeLogModule` using a unique key and a patch."""
   updateComputeLogModule(
@@ -12629,21 +12663,13 @@ type Mutation {
     input: UpdateTransferLogModuleInput!
   ): UpdateTransferLogModulePayload
 
-  """Updates a single `DbUsageModule` using a unique key and a patch."""
-  updateDbUsageModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: UpdateDbUsageModuleInput!
-  ): UpdateDbUsageModulePayload
-
-  """Updates a single `NotificationsModule` using a unique key and a patch."""
-  updateNotificationsModule(
+  """Updates a single `GraphModule` using a unique key and a patch."""
+  updateGraphModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: UpdateNotificationsModuleInput!
-  ): UpdateNotificationsModulePayload
+    input: UpdateGraphModuleInput!
+  ): UpdateGraphModulePayload
 
   """Updates a single `PlansModule` using a unique key and a patch."""
   updatePlansModule(
@@ -12653,21 +12679,21 @@ type Mutation {
     input: UpdatePlansModuleInput!
   ): UpdatePlansModulePayload
 
-  """Updates a single `HierarchyModule` using a unique key and a patch."""
-  updateHierarchyModule(
+  """Updates a single `DbUsageModule` using a unique key and a patch."""
+  updateDbUsageModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: UpdateHierarchyModuleInput!
-  ): UpdateHierarchyModulePayload
+    input: UpdateDbUsageModuleInput!
+  ): UpdateDbUsageModulePayload
 
-  """Updates a single `BillingModule` using a unique key and a patch."""
-  updateBillingModule(
+  """Updates a single `NotificationsModule` using a unique key and a patch."""
+  updateNotificationsModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: UpdateBillingModuleInput!
-  ): UpdateBillingModulePayload
+    input: UpdateNotificationsModuleInput!
+  ): UpdateNotificationsModulePayload
 
   """
   Updates a single `BillingProviderModule` using a unique key and a patch.
@@ -12679,6 +12705,22 @@ type Mutation {
     input: UpdateBillingProviderModuleInput!
   ): UpdateBillingProviderModulePayload
 
+  """Updates a single `FunctionModule` using a unique key and a patch."""
+  updateFunctionModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateFunctionModuleInput!
+  ): UpdateFunctionModulePayload
+
+  """Updates a single `HierarchyModule` using a unique key and a patch."""
+  updateHierarchyModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateHierarchyModuleInput!
+  ): UpdateHierarchyModulePayload
+
   """Updates a single `ProfilesModule` using a unique key and a patch."""
   updateProfilesModule(
     """
@@ -12695,6 +12737,14 @@ type Mutation {
     input: UpdatePermissionsModuleInput!
   ): UpdatePermissionsModulePayload
 
+  """Updates a single `BillingModule` using a unique key and a patch."""
+  updateBillingModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateBillingModuleInput!
+  ): UpdateBillingModulePayload
+
   """Updates a single `RelationProvision` using a unique key and a patch."""
   updateRelationProvision(
     """
@@ -12711,14 +12761,6 @@ type Mutation {
     input: UpdateBlueprintTemplateInput!
   ): UpdateBlueprintTemplatePayload
 
-  """Updates a single `FunctionModule` using a unique key and a patch."""
-  updateFunctionModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: UpdateFunctionModuleInput!
-  ): UpdateFunctionModulePayload
-
   """Updates a single `UserAuthModule` using a unique key and a patch."""
   updateUserAuthModule(
     """
@@ -12759,14 +12801,6 @@ type Mutation {
     input: UpdateStorageModuleInput!
   ): UpdateStorageModulePayload
 
-  """Updates a single `EventsModule` using a unique key and a patch."""
-  updateEventsModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: UpdateEventsModuleInput!
-  ): UpdateEventsModulePayload
-
   """Updates a single `EntityTypeProvision` using a unique key and a patch."""
   updateEntityTypeProvision(
     """
@@ -12775,6 +12809,14 @@ type Mutation {
     input: UpdateEntityTypeProvisionInput!
   ): UpdateEntityTypeProvisionPayload
 
+  """Updates a single `EventsModule` using a unique key and a patch."""
+  updateEventsModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: UpdateEventsModuleInput!
+  ): UpdateEventsModulePayload
+
   """Deletes a single `DefaultIdsModule` using a unique key."""
   deleteDefaultIdsModule(
     """
@@ -12951,14 +12993,6 @@ type Mutation {
     input: DeleteCryptoAuthModuleInput!
   ): DeleteCryptoAuthModulePayload
 
-  """Deletes a single `RateLimitMetersModule` using a unique key."""
-  deleteRateLimitMetersModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: DeleteRateLimitMetersModuleInput!
-  ): DeleteRateLimitMetersModulePayload
-
   """Deletes a single `BlueprintConstruction` using a unique key."""
   deleteBlueprintConstruction(
     """
@@ -12999,6 +13033,14 @@ type Mutation {
     input: DeleteSecureTableProvisionInput!
   ): DeleteSecureTableProvisionPayload
 
+  """Deletes a single `RateLimitMetersModule` using a unique key."""
+  deleteRateLimitMetersModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteRateLimitMetersModuleInput!
+  ): DeleteRateLimitMetersModulePayload
+
   """Deletes a single `InvitesModule` using a unique key."""
   deleteInvitesModule(
     """
@@ -13015,14 +13057,6 @@ type Mutation {
     input: DeleteDatabaseProvisionModuleInput!
   ): DeleteDatabaseProvisionModulePayload
 
-  """Deletes a single `NamespaceModule` using a unique key."""
-  deleteNamespaceModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: DeleteNamespaceModuleInput!
-  ): DeleteNamespaceModulePayload
-
   """Deletes a single `RealtimeModule` using a unique key."""
   deleteRealtimeModule(
     """
@@ -13039,13 +13073,13 @@ type Mutation {
     input: DeleteWebauthnAuthModuleInput!
   ): DeleteWebauthnAuthModulePayload
 
-  """Deletes a single `GraphModule` using a unique key."""
-  deleteGraphModule(
+  """Deletes a single `NamespaceModule` using a unique key."""
+  deleteNamespaceModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: DeleteGraphModuleInput!
-  ): DeleteGraphModulePayload
+    input: DeleteNamespaceModuleInput!
+  ): DeleteNamespaceModulePayload
 
   """Deletes a single `ComputeLogModule` using a unique key."""
   deleteComputeLogModule(
@@ -13079,21 +13113,13 @@ type Mutation {
     input: DeleteTransferLogModuleInput!
   ): DeleteTransferLogModulePayload
 
-  """Deletes a single `DbUsageModule` using a unique key."""
-  deleteDbUsageModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: DeleteDbUsageModuleInput!
-  ): DeleteDbUsageModulePayload
-
-  """Deletes a single `NotificationsModule` using a unique key."""
-  deleteNotificationsModule(
+  """Deletes a single `GraphModule` using a unique key."""
+  deleteGraphModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: DeleteNotificationsModuleInput!
-  ): DeleteNotificationsModulePayload
+    input: DeleteGraphModuleInput!
+  ): DeleteGraphModulePayload
 
   """Deletes a single `PlansModule` using a unique key."""
   deletePlansModule(
@@ -13103,21 +13129,21 @@ type Mutation {
     input: DeletePlansModuleInput!
   ): DeletePlansModulePayload
 
-  """Deletes a single `HierarchyModule` using a unique key."""
-  deleteHierarchyModule(
+  """Deletes a single `DbUsageModule` using a unique key."""
+  deleteDbUsageModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: DeleteHierarchyModuleInput!
-  ): DeleteHierarchyModulePayload
+    input: DeleteDbUsageModuleInput!
+  ): DeleteDbUsageModulePayload
 
-  """Deletes a single `BillingModule` using a unique key."""
-  deleteBillingModule(
+  """Deletes a single `NotificationsModule` using a unique key."""
+  deleteNotificationsModule(
     """
     The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
     """
-    input: DeleteBillingModuleInput!
-  ): DeleteBillingModulePayload
+    input: DeleteNotificationsModuleInput!
+  ): DeleteNotificationsModulePayload
 
   """Deletes a single `BillingProviderModule` using a unique key."""
   deleteBillingProviderModule(
@@ -13127,6 +13153,22 @@ type Mutation {
     input: DeleteBillingProviderModuleInput!
   ): DeleteBillingProviderModulePayload
 
+  """Deletes a single `FunctionModule` using a unique key."""
+  deleteFunctionModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteFunctionModuleInput!
+  ): DeleteFunctionModulePayload
+
+  """Deletes a single `HierarchyModule` using a unique key."""
+  deleteHierarchyModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteHierarchyModuleInput!
+  ): DeleteHierarchyModulePayload
+
   """Deletes a single `ProfilesModule` using a unique key."""
   deleteProfilesModule(
     """
@@ -13143,6 +13185,14 @@ type Mutation {
     input: DeletePermissionsModuleInput!
   ): DeletePermissionsModulePayload
 
+  """Deletes a single `BillingModule` using a unique key."""
+  deleteBillingModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteBillingModuleInput!
+  ): DeleteBillingModulePayload
+
   """Deletes a single `RelationProvision` using a unique key."""
   deleteRelationProvision(
     """
@@ -13159,14 +13209,6 @@ type Mutation {
     input: DeleteBlueprintTemplateInput!
   ): DeleteBlueprintTemplatePayload
 
-  """Deletes a single `FunctionModule` using a unique key."""
-  deleteFunctionModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: DeleteFunctionModuleInput!
-  ): DeleteFunctionModulePayload
-
   """Deletes a single `UserAuthModule` using a unique key."""
   deleteUserAuthModule(
     """
@@ -13207,14 +13249,6 @@ type Mutation {
     input: DeleteStorageModuleInput!
   ): DeleteStorageModulePayload
 
-  """Deletes a single `EventsModule` using a unique key."""
-  deleteEventsModule(
-    """
-    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
-    """
-    input: DeleteEventsModuleInput!
-  ): DeleteEventsModulePayload
-
   """Deletes a single `EntityTypeProvision` using a unique key."""
   deleteEntityTypeProvision(
     """
@@ -13223,6 +13257,14 @@ type Mutation {
     input: DeleteEntityTypeProvisionInput!
   ): DeleteEntityTypeProvisionPayload
 
+  """Deletes a single `EventsModule` using a unique key."""
+  deleteEventsModule(
+    """
+    The exclusive input argument for this mutation. An object type, make sure to see documentation for this object’s fields.
+    """
+    input: DeleteEventsModuleInput!
+  ): DeleteEventsModulePayload
+
   """
   Provision an S3 bucket for a logical bucket in the database.
   Reads the bucket config via RLS, then creates and configures
@@ -14612,59 +14654,6 @@ input CryptoAuthModuleInput {
   signInWithChallenge: String
 }
 
-"""The output of our create `RateLimitMetersModule` mutation."""
-type CreateRateLimitMetersModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `RateLimitMetersModule` that was created by this mutation."""
-  rateLimitMetersModule: RateLimitMetersModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
-  rateLimitMetersModuleEdge(
-    """The method to use when ordering `RateLimitMetersModule`."""
-    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): RateLimitMetersModuleEdge
-}
-
-"""All input for the create `RateLimitMetersModule` mutation."""
-input CreateRateLimitMetersModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-
-  """The `RateLimitMetersModule` to be created by this mutation."""
-  rateLimitMetersModule: RateLimitMetersModuleInput!
-}
-
-"""An input for mutations affecting `RateLimitMetersModule`"""
-input RateLimitMetersModuleInput {
-  id: UUID
-  databaseId: UUID!
-  schemaId: UUID
-  privateSchemaId: UUID
-  rateLimitStateTableId: UUID
-  rateLimitStateTableName: String
-  rateLimitOverridesTableId: UUID
-  rateLimitOverridesTableName: String
-  rateWindowLimitsTableId: UUID
-  rateWindowLimitsTableName: String
-  checkRateLimitFunction: String
-  prefix: String
-  apiName: String
-  privateApiName: String
-}
-
 """The output of our create `BlueprintConstruction` mutation."""
 type CreateBlueprintConstructionPayload {
   """
@@ -14975,24 +14964,78 @@ input SecureTableProvisionInput {
   useRls: Boolean
 
   """
-  PostgreSQL array of jsonb field definition objects to create on the target table. Each object has keys: "name" (text, required), "type" (text, required), "default" (text, optional), "is_required" (boolean, optional, defaults to false), "min" (float, optional), "max" (float, optional), "regexp" (text, optional), "index" (boolean, optional, defaults to false — creates a btree index on the field). min/max generate CHECK constraints: for text/citext they constrain character_length, for integer/float types they constrain the value. regexp generates a CHECK (col ~ pattern) constraint for text/citext. Fields are created via metaschema.create_field() after any node_type generator runs, and their IDs are appended to out_fields. Example: ARRAY['{"name":"username","type":"citext","max":256,"regexp":"^[a-z0-9_]+$"}'::jsonb, '{"name":"score","type":"integer","min":0,"max":100}'::jsonb]. Defaults to '{}' (no additional fields).
+  PostgreSQL array of jsonb field definition objects to create on the target table. Each object has keys: "name" (text, required), "type" (text, required), "default" (text, optional), "is_required" (boolean, optional, defaults to false), "min" (float, optional), "max" (float, optional), "regexp" (text, optional), "index" (boolean, optional, defaults to false — creates a btree index on the field). min/max generate CHECK constraints: for text/citext they constrain character_length, for integer/float types they constrain the value. regexp generates a CHECK (col ~ pattern) constraint for text/citext. Fields are created via metaschema.create_field() after any node_type generator runs, and their IDs are appended to out_fields. Example: ARRAY['{"name":"username","type":"citext","max":256,"regexp":"^[a-z0-9_]+$"}'::jsonb, '{"name":"score","type":"integer","min":0,"max":100}'::jsonb]. Defaults to '{}' (no additional fields).
+  """
+  fields: [JSON]
+
+  """
+  Array of grant objects defining table privileges. Each element is a jsonb object with keys: "roles" (text[], required — database roles to grant to, e.g. ["authenticated","admin"]), "privileges" (jsonb[], required — array of [privilege, columns] tuples, e.g. [["select","*"],["insert","*"]]). "*" means all columns; an array means column-level grant. Supports per-role privilege targeting: different grant entries can target different roles with different privileges. Example: [{"roles":["authenticated"],"privileges":[["select","*"]]},{"roles":["admin"],"privileges":[["insert","*"],["update","*"],["delete","*"]]}]. Defaults to '[]' (no grants). When policies[] omit explicit privileges/policy_role, they fall back to the verbs and first role from grants[].
+  """
+  grants: JSON
+
+  """
+  Array of policy objects to create on the target table. Each element is a jsonb object with keys: "$type" (text, required — the Authz* policy generator type, e.g. AuthzEntityMembership, AuthzMembership, AuthzDirectOwner, AuthzPublishable, AuthzAllowAll), "data" (jsonb, optional — opaque configuration passed to metaschema.create_policy(), structure varies by type), "privileges" (text[], optional — privileges the policy applies to, e.g. ["select","insert"]; if omitted, derived from grants[] privilege verbs), "policy_role" (text, optional — role the policy targets; if omitted, falls back to first role in first grants[] entry, or 'authenticated' if no grants), "permissive" (boolean, optional — PERMISSIVE or RESTRICTIVE; defaults to true), "policy_name" (text, optional — custom suffix for the generated policy name; if omitted, auto-derived from $type by stripping Authz prefix). Supports multiple policies per row. Example: [{"$type": "AuthzEntityMembership", "data": {"entity_field": "owner_id", "membership_type": 3}, "privileges": ["select", "insert"]}, {"$type": "AuthzDirectOwner", "data": {"entity_field": "actor_id"}, "privileges": ["update", "delete"]}]. Defaults to '[]' (no policies created). When non-empty, the trigger automatically enables RLS.
+  """
+  policies: JSON
+
+  """
+  Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly.
+  """
+  outFields: [UUID]
+}
+
+"""The output of our create `RateLimitMetersModule` mutation."""
+type CreateRateLimitMetersModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `RateLimitMetersModule` that was created by this mutation."""
+  rateLimitMetersModule: RateLimitMetersModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
   """
-  fields: [JSON]
+  query: Query
 
-  """
-  Array of grant objects defining table privileges. Each element is a jsonb object with keys: "roles" (text[], required — database roles to grant to, e.g. ["authenticated","admin"]), "privileges" (jsonb[], required — array of [privilege, columns] tuples, e.g. [["select","*"],["insert","*"]]). "*" means all columns; an array means column-level grant. Supports per-role privilege targeting: different grant entries can target different roles with different privileges. Example: [{"roles":["authenticated"],"privileges":[["select","*"]]},{"roles":["admin"],"privileges":[["insert","*"],["update","*"],["delete","*"]]}]. Defaults to '[]' (no grants). When policies[] omit explicit privileges/policy_role, they fall back to the verbs and first role from grants[].
-  """
-  grants: JSON
+  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
+  rateLimitMetersModuleEdge(
+    """The method to use when ordering `RateLimitMetersModule`."""
+    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): RateLimitMetersModuleEdge
+}
 
+"""All input for the create `RateLimitMetersModule` mutation."""
+input CreateRateLimitMetersModuleInput {
   """
-  Array of policy objects to create on the target table. Each element is a jsonb object with keys: "$type" (text, required — the Authz* policy generator type, e.g. AuthzEntityMembership, AuthzMembership, AuthzDirectOwner, AuthzPublishable, AuthzAllowAll), "data" (jsonb, optional — opaque configuration passed to metaschema.create_policy(), structure varies by type), "privileges" (text[], optional — privileges the policy applies to, e.g. ["select","insert"]; if omitted, derived from grants[] privilege verbs), "policy_role" (text, optional — role the policy targets; if omitted, falls back to first role in first grants[] entry, or 'authenticated' if no grants), "permissive" (boolean, optional — PERMISSIVE or RESTRICTIVE; defaults to true), "policy_name" (text, optional — custom suffix for the generated policy name; if omitted, auto-derived from $type by stripping Authz prefix). Supports multiple policies per row. Example: [{"$type": "AuthzEntityMembership", "data": {"entity_field": "owner_id", "membership_type": 3}, "privileges": ["select", "insert"]}, {"$type": "AuthzDirectOwner", "data": {"entity_field": "actor_id"}, "privileges": ["update", "delete"]}]. Defaults to '[]' (no policies created). When non-empty, the trigger automatically enables RLS.
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
   """
-  policies: JSON
+  clientMutationId: String
 
-  """
-  Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly.
-  """
-  outFields: [UUID]
+  """The `RateLimitMetersModule` to be created by this mutation."""
+  rateLimitMetersModule: RateLimitMetersModuleInput!
+}
+
+"""An input for mutations affecting `RateLimitMetersModule`"""
+input RateLimitMetersModuleInput {
+  id: UUID
+  databaseId: UUID!
+  schemaId: UUID
+  privateSchemaId: UUID
+  rateLimitStateTableId: UUID
+  rateLimitStateTableName: String
+  rateLimitOverridesTableId: UUID
+  rateLimitOverridesTableName: String
+  rateWindowLimitsTableId: UUID
+  rateWindowLimitsTableName: String
+  checkRateLimitFunction: String
+  prefix: String
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
 }
 
 """The output of our create `InvitesModule` mutation."""
@@ -15127,62 +15170,6 @@ input DatabaseProvisionModuleInput {
   completedAt: Datetime
 }
 
-"""The output of our create `NamespaceModule` mutation."""
-type CreateNamespaceModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `NamespaceModule` that was created by this mutation."""
-  namespaceModule: NamespaceModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `NamespaceModule`. May be used by Relay 1."""
-  namespaceModuleEdge(
-    """The method to use when ordering `NamespaceModule`."""
-    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): NamespaceModuleEdge
-}
-
-"""All input for the create `NamespaceModule` mutation."""
-input CreateNamespaceModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-
-  """The `NamespaceModule` to be created by this mutation."""
-  namespaceModule: NamespaceModuleInput!
-}
-
-"""An input for mutations affecting `NamespaceModule`"""
-input NamespaceModuleInput {
-  id: UUID
-  databaseId: UUID!
-  schemaId: UUID
-  privateSchemaId: UUID
-  publicSchemaName: String
-  privateSchemaName: String
-  namespacesTableId: UUID
-  namespaceEventsTableId: UUID
-  namespacesTableName: String
-  namespaceEventsTableName: String
-  apiName: String
-  privateApiName: String
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
-}
-
 """The output of our create `RealtimeModule` mutation."""
 type CreateRealtimeModulePayload {
   """
@@ -15291,61 +15278,61 @@ input WebauthnAuthModuleInput {
   challengeExpiry: IntervalInput
 }
 
-"""The output of our create `GraphModule` mutation."""
-type CreateGraphModulePayload {
+"""The output of our create `NamespaceModule` mutation."""
+type CreateNamespaceModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `GraphModule` that was created by this mutation."""
-  graphModule: GraphModule
+  """The `NamespaceModule` that was created by this mutation."""
+  namespaceModule: NamespaceModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `GraphModule`. May be used by Relay 1."""
-  graphModuleEdge(
-    """The method to use when ordering `GraphModule`."""
-    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): GraphModuleEdge
+  """An edge for our `NamespaceModule`. May be used by Relay 1."""
+  namespaceModuleEdge(
+    """The method to use when ordering `NamespaceModule`."""
+    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): NamespaceModuleEdge
 }
 
-"""All input for the create `GraphModule` mutation."""
-input CreateGraphModuleInput {
+"""All input for the create `NamespaceModule` mutation."""
+input CreateNamespaceModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
 
-  """The `GraphModule` to be created by this mutation."""
-  graphModule: GraphModuleInput!
+  """The `NamespaceModule` to be created by this mutation."""
+  namespaceModule: NamespaceModuleInput!
 }
 
-"""An input for mutations affecting `GraphModule`"""
-input GraphModuleInput {
+"""An input for mutations affecting `NamespaceModule`"""
+input NamespaceModuleInput {
   id: UUID
   databaseId: UUID!
-  publicSchemaId: UUID
+  schemaId: UUID
   privateSchemaId: UUID
   publicSchemaName: String
   privateSchemaName: String
-  scope: String
-  prefix: String
-  merkleStoreModuleId: UUID!
-  graphsTableId: UUID
-  executionsTableId: UUID
-  outputsTableId: UUID
+  namespacesTableId: UUID
+  namespaceEventsTableId: UUID
+  namespacesTableName: String
+  namespaceEventsTableName: String
   apiName: String
   privateApiName: String
+  scope: String
+  prefix: String
   entityTableId: UUID
   policies: JSON
   provisions: JSON
-  createdAt: Datetime
+  defaultPermissions: [String]
 }
 
 """The output of our create `ComputeLogModule` mutation."""
@@ -15516,57 +15503,173 @@ input StorageLogModuleInput {
   privateApiName: String
 }
 
-"""The output of our create `TransferLogModule` mutation."""
-type CreateTransferLogModulePayload {
+"""The output of our create `TransferLogModule` mutation."""
+type CreateTransferLogModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `TransferLogModule` that was created by this mutation."""
+  transferLogModule: TransferLogModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `TransferLogModule`. May be used by Relay 1."""
+  transferLogModuleEdge(
+    """The method to use when ordering `TransferLogModule`."""
+    orderBy: [TransferLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): TransferLogModuleEdge
+}
+
+"""All input for the create `TransferLogModule` mutation."""
+input CreateTransferLogModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `TransferLogModule` to be created by this mutation."""
+  transferLogModule: TransferLogModuleInput!
+}
+
+"""An input for mutations affecting `TransferLogModule`"""
+input TransferLogModuleInput {
+  id: UUID
+  databaseId: UUID!
+  schemaId: UUID
+  privateSchemaId: UUID
+  transferLogTableId: UUID
+  transferLogTableName: String
+  usageDailyTableId: UUID
+  usageDailyTableName: String
+  interval: String
+  retention: String
+  premake: Int
+  scope: String
+  actorFkTableId: UUID
+  entityFkTableId: UUID
+  prefix: String
+  apiName: String
+  privateApiName: String
+}
+
+"""The output of our create `GraphModule` mutation."""
+type CreateGraphModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `GraphModule` that was created by this mutation."""
+  graphModule: GraphModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `GraphModule`. May be used by Relay 1."""
+  graphModuleEdge(
+    """The method to use when ordering `GraphModule`."""
+    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): GraphModuleEdge
+}
+
+"""All input for the create `GraphModule` mutation."""
+input CreateGraphModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `GraphModule` to be created by this mutation."""
+  graphModule: GraphModuleInput!
+}
+
+"""An input for mutations affecting `GraphModule`"""
+input GraphModuleInput {
+  id: UUID
+  databaseId: UUID!
+  publicSchemaId: UUID
+  privateSchemaId: UUID
+  publicSchemaName: String
+  privateSchemaName: String
+  scope: String
+  prefix: String
+  merkleStoreModuleId: UUID!
+  graphsTableId: UUID
+  executionsTableId: UUID
+  outputsTableId: UUID
+  apiName: String
+  privateApiName: String
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
+  createdAt: Datetime
+}
+
+"""The output of our create `PlansModule` mutation."""
+type CreatePlansModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `TransferLogModule` that was created by this mutation."""
-  transferLogModule: TransferLogModule
+  """The `PlansModule` that was created by this mutation."""
+  plansModule: PlansModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `TransferLogModule`. May be used by Relay 1."""
-  transferLogModuleEdge(
-    """The method to use when ordering `TransferLogModule`."""
-    orderBy: [TransferLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): TransferLogModuleEdge
+  """An edge for our `PlansModule`. May be used by Relay 1."""
+  plansModuleEdge(
+    """The method to use when ordering `PlansModule`."""
+    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): PlansModuleEdge
 }
 
-"""All input for the create `TransferLogModule` mutation."""
-input CreateTransferLogModuleInput {
+"""All input for the create `PlansModule` mutation."""
+input CreatePlansModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
 
-  """The `TransferLogModule` to be created by this mutation."""
-  transferLogModule: TransferLogModuleInput!
+  """The `PlansModule` to be created by this mutation."""
+  plansModule: PlansModuleInput!
 }
 
-"""An input for mutations affecting `TransferLogModule`"""
-input TransferLogModuleInput {
+"""An input for mutations affecting `PlansModule`"""
+input PlansModuleInput {
   id: UUID
   databaseId: UUID!
   schemaId: UUID
   privateSchemaId: UUID
-  transferLogTableId: UUID
-  transferLogTableName: String
-  usageDailyTableId: UUID
-  usageDailyTableName: String
-  interval: String
-  retention: String
-  premake: Int
-  scope: String
-  actorFkTableId: UUID
-  entityFkTableId: UUID
+  plansTableId: UUID
+  plansTableName: String
+  planLimitsTableId: UUID
+  planLimitsTableName: String
+  planPricingTableId: UUID
+  planOverridesTableId: UUID
+  planMeterLimitsTableId: UUID
+  planCapsTableId: UUID
+  applyPlanFunction: String
+  applyPlanAggregateFunction: String
+  applyBillingPlanFunction: String
+  applyPlanCapsFunction: String
   prefix: String
   apiName: String
   privateApiName: String
@@ -15626,6 +15729,7 @@ input DbUsageModuleInput {
   premake: Int
   scope: String
   prefix: String
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -15684,248 +15788,192 @@ input NotificationsModuleInput {
   hasSettingsExtension: Boolean
   hasDigestMetadata: Boolean
   hasSubscriptions: Boolean
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
 
-"""The output of our create `PlansModule` mutation."""
-type CreatePlansModulePayload {
+"""The output of our create `BillingProviderModule` mutation."""
+type CreateBillingProviderModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `PlansModule` that was created by this mutation."""
-  plansModule: PlansModule
+  """The `BillingProviderModule` that was created by this mutation."""
+  billingProviderModule: BillingProviderModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `PlansModule`. May be used by Relay 1."""
-  plansModuleEdge(
-    """The method to use when ordering `PlansModule`."""
-    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): PlansModuleEdge
+  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
+  billingProviderModuleEdge(
+    """The method to use when ordering `BillingProviderModule`."""
+    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingProviderModuleEdge
 }
 
-"""All input for the create `PlansModule` mutation."""
-input CreatePlansModuleInput {
+"""All input for the create `BillingProviderModule` mutation."""
+input CreateBillingProviderModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
 
-  """The `PlansModule` to be created by this mutation."""
-  plansModule: PlansModuleInput!
+  """The `BillingProviderModule` to be created by this mutation."""
+  billingProviderModule: BillingProviderModuleInput!
 }
 
-"""An input for mutations affecting `PlansModule`"""
-input PlansModuleInput {
+"""An input for mutations affecting `BillingProviderModule`"""
+input BillingProviderModuleInput {
   id: UUID
   databaseId: UUID!
   schemaId: UUID
   privateSchemaId: UUID
-  plansTableId: UUID
-  plansTableName: String
-  planLimitsTableId: UUID
-  planLimitsTableName: String
-  planPricingTableId: UUID
-  planOverridesTableId: UUID
-  planMeterLimitsTableId: UUID
-  planCapsTableId: UUID
-  applyPlanFunction: String
-  applyPlanAggregateFunction: String
-  applyBillingPlanFunction: String
-  applyPlanCapsFunction: String
+  provider: String
+  productsTableId: UUID
+  pricesTableId: UUID
+  subscriptionsTableId: UUID
+  billingCustomersTableId: UUID
+  billingCustomersTableName: String
+  billingProductsTableId: UUID
+  billingProductsTableName: String
+  billingPricesTableId: UUID
+  billingPricesTableName: String
+  billingSubscriptionsTableId: UUID
+  billingSubscriptionsTableName: String
+  billingWebhookEventsTableId: UUID
+  billingWebhookEventsTableName: String
+  processBillingEventFunction: String
   prefix: String
   apiName: String
   privateApiName: String
 }
 
-"""The output of our create `HierarchyModule` mutation."""
-type CreateHierarchyModulePayload {
+"""The output of our create `FunctionModule` mutation."""
+type CreateFunctionModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `HierarchyModule` that was created by this mutation."""
-  hierarchyModule: HierarchyModule
+  """The `FunctionModule` that was created by this mutation."""
+  functionModule: FunctionModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `HierarchyModule`. May be used by Relay 1."""
-  hierarchyModuleEdge(
-    """The method to use when ordering `HierarchyModule`."""
-    orderBy: [HierarchyModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): HierarchyModuleEdge
+  """An edge for our `FunctionModule`. May be used by Relay 1."""
+  functionModuleEdge(
+    """The method to use when ordering `FunctionModule`."""
+    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): FunctionModuleEdge
 }
 
-"""All input for the create `HierarchyModule` mutation."""
-input CreateHierarchyModuleInput {
+"""All input for the create `FunctionModule` mutation."""
+input CreateFunctionModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
 
-  """The `HierarchyModule` to be created by this mutation."""
-  hierarchyModule: HierarchyModuleInput!
+  """The `FunctionModule` to be created by this mutation."""
+  functionModule: FunctionModuleInput!
 }
 
-"""An input for mutations affecting `HierarchyModule`"""
-input HierarchyModuleInput {
+"""An input for mutations affecting `FunctionModule`"""
+input FunctionModuleInput {
   id: UUID
   databaseId: UUID!
   schemaId: UUID
   privateSchemaId: UUID
-  chartEdgesTableId: UUID
-  chartEdgesTableName: String
-  hierarchySprtTableId: UUID
-  hierarchySprtTableName: String
-  chartEdgeGrantsTableId: UUID
-  chartEdgeGrantsTableName: String
-  entityTableId: UUID!
-  usersTableId: UUID!
-  scope: String
-  prefix: String
+  publicSchemaName: String
   privateSchemaName: String
-  sprtTableName: String
-  rebuildHierarchyFunction: String
-  getSubordinatesFunction: String
-  getManagersFunction: String
-  isManagerOfFunction: String
-  createdAt: Datetime
-}
-
-"""The output of our create `BillingModule` mutation."""
-type CreateBillingModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `BillingModule` that was created by this mutation."""
-  billingModule: BillingModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `BillingModule`. May be used by Relay 1."""
-  billingModuleEdge(
-    """The method to use when ordering `BillingModule`."""
-    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingModuleEdge
-}
-
-"""All input for the create `BillingModule` mutation."""
-input CreateBillingModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-
-  """The `BillingModule` to be created by this mutation."""
-  billingModule: BillingModuleInput!
-}
-
-"""An input for mutations affecting `BillingModule`"""
-input BillingModuleInput {
-  id: UUID
-  databaseId: UUID!
-  schemaId: UUID
-  privateSchemaId: UUID
-  metersTableId: UUID
-  metersTableName: String
-  planSubscriptionsTableId: UUID
-  planSubscriptionsTableName: String
-  ledgerTableId: UUID
-  ledgerTableName: String
-  balancesTableId: UUID
-  balancesTableName: String
-  meterCreditsTableId: UUID
-  meterCreditsTableName: String
-  meterSourcesTableId: UUID
-  meterSourcesTableName: String
-  meterDefaultsTableId: UUID
-  meterDefaultsTableName: String
-  recordUsageFunction: String
-  prefix: String
+  definitionsTableId: UUID
+  invocationsTableId: UUID
+  executionLogsTableId: UUID
+  secretDefinitionsTableId: UUID
+  definitionsTableName: String
+  invocationsTableName: String
+  executionLogsTableName: String
+  secretDefinitionsTableName: String
   apiName: String
   privateApiName: String
+  scope: String
+  prefix: String
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
 }
 
-"""The output of our create `BillingProviderModule` mutation."""
-type CreateBillingProviderModulePayload {
+"""The output of our create `HierarchyModule` mutation."""
+type CreateHierarchyModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `BillingProviderModule` that was created by this mutation."""
-  billingProviderModule: BillingProviderModule
+  """The `HierarchyModule` that was created by this mutation."""
+  hierarchyModule: HierarchyModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
-  billingProviderModuleEdge(
-    """The method to use when ordering `BillingProviderModule`."""
-    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingProviderModuleEdge
+  """An edge for our `HierarchyModule`. May be used by Relay 1."""
+  hierarchyModuleEdge(
+    """The method to use when ordering `HierarchyModule`."""
+    orderBy: [HierarchyModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): HierarchyModuleEdge
 }
 
-"""All input for the create `BillingProviderModule` mutation."""
-input CreateBillingProviderModuleInput {
+"""All input for the create `HierarchyModule` mutation."""
+input CreateHierarchyModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
 
-  """The `BillingProviderModule` to be created by this mutation."""
-  billingProviderModule: BillingProviderModuleInput!
+  """The `HierarchyModule` to be created by this mutation."""
+  hierarchyModule: HierarchyModuleInput!
 }
 
-"""An input for mutations affecting `BillingProviderModule`"""
-input BillingProviderModuleInput {
+"""An input for mutations affecting `HierarchyModule`"""
+input HierarchyModuleInput {
   id: UUID
   databaseId: UUID!
   schemaId: UUID
   privateSchemaId: UUID
-  provider: String
-  productsTableId: UUID
-  pricesTableId: UUID
-  subscriptionsTableId: UUID
-  billingCustomersTableId: UUID
-  billingCustomersTableName: String
-  billingProductsTableId: UUID
-  billingProductsTableName: String
-  billingPricesTableId: UUID
-  billingPricesTableName: String
-  billingSubscriptionsTableId: UUID
-  billingSubscriptionsTableName: String
-  billingWebhookEventsTableId: UUID
-  billingWebhookEventsTableName: String
-  processBillingEventFunction: String
+  chartEdgesTableId: UUID
+  chartEdgesTableName: String
+  hierarchySprtTableId: UUID
+  hierarchySprtTableName: String
+  chartEdgeGrantsTableId: UUID
+  chartEdgeGrantsTableName: String
+  entityTableId: UUID!
+  usersTableId: UUID!
+  scope: String
   prefix: String
-  apiName: String
-  privateApiName: String
+  privateSchemaName: String
+  sprtTableName: String
+  rebuildHierarchyFunction: String
+  getSubordinatesFunction: String
+  getManagersFunction: String
+  isManagerOfFunction: String
+  defaultPermissions: [String]
+  createdAt: Datetime
 }
 
 """The output of our create `ProfilesModule` mutation."""
@@ -16047,6 +16095,68 @@ input PermissionsModuleInput {
   privateApiName: String
 }
 
+"""The output of our create `BillingModule` mutation."""
+type CreateBillingModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `BillingModule` that was created by this mutation."""
+  billingModule: BillingModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `BillingModule`. May be used by Relay 1."""
+  billingModuleEdge(
+    """The method to use when ordering `BillingModule`."""
+    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingModuleEdge
+}
+
+"""All input for the create `BillingModule` mutation."""
+input CreateBillingModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `BillingModule` to be created by this mutation."""
+  billingModule: BillingModuleInput!
+}
+
+"""An input for mutations affecting `BillingModule`"""
+input BillingModuleInput {
+  id: UUID
+  databaseId: UUID!
+  schemaId: UUID
+  privateSchemaId: UUID
+  metersTableId: UUID
+  metersTableName: String
+  planSubscriptionsTableId: UUID
+  planSubscriptionsTableName: String
+  ledgerTableId: UUID
+  ledgerTableName: String
+  balancesTableId: UUID
+  balancesTableName: String
+  meterCreditsTableId: UUID
+  meterCreditsTableName: String
+  meterSourcesTableId: UUID
+  meterSourcesTableName: String
+  meterDefaultsTableId: UUID
+  meterDefaultsTableName: String
+  recordUsageFunction: String
+  prefix: String
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
+
 """The output of our create `RelationProvision` mutation."""
 type CreateRelationProvisionPayload {
   """
@@ -16376,71 +16486,6 @@ input BlueprintTemplateInput {
   updatedAt: Datetime
 }
 
-"""The output of our create `FunctionModule` mutation."""
-type CreateFunctionModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `FunctionModule` that was created by this mutation."""
-  functionModule: FunctionModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `FunctionModule`. May be used by Relay 1."""
-  functionModuleEdge(
-    """The method to use when ordering `FunctionModule`."""
-    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): FunctionModuleEdge
-}
-
-"""All input for the create `FunctionModule` mutation."""
-input CreateFunctionModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-
-  """The `FunctionModule` to be created by this mutation."""
-  functionModule: FunctionModuleInput!
-}
-
-"""An input for mutations affecting `FunctionModule`"""
-input FunctionModuleInput {
-  id: UUID
-  databaseId: UUID!
-  schemaId: UUID
-  privateSchemaId: UUID
-  publicSchemaName: String
-  privateSchemaName: String
-  definitionsTableId: UUID
-  invocationsTableId: UUID
-  executionLogsTableId: UUID
-  secretDefinitionsTableId: UUID
-  requirementsTableId: UUID
-  configDefinitionsTableId: UUID
-  configRequirementsTableId: UUID
-  definitionsTableName: String
-  invocationsTableName: String
-  executionLogsTableName: String
-  secretDefinitionsTableName: String
-  requirementsTableName: String
-  configRequirementsTableName: String
-  apiName: String
-  privateApiName: String
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
-}
-
 """The output of our create `UserAuthModule` mutation."""
 type CreateUserAuthModulePayload {
   """
@@ -16568,6 +16613,7 @@ input AgentModuleInput {
   hasPlans: Boolean
   hasResources: Boolean
   hasAgents: Boolean
+  shared: Boolean
   apiName: String
   privateApiName: String
   scope: String
@@ -16576,6 +16622,7 @@ input AgentModuleInput {
   policies: JSON
   resources: JSON
   provisions: JSON
+  defaultPermissions: [String]
 }
 
 """The output of our create `LimitsModule` mutation."""
@@ -16723,6 +16770,8 @@ input MembershipsModuleInput {
   entityIdsByPerm: String
   entityIdsFunction: String
   memberProfilesTableId: UUID
+  permissionDefaultPermissionsTableId: UUID
+  permissionDefaultGrantsTableId: UUID
   apiName: String
   privateApiName: String
 }
@@ -16783,101 +16832,22 @@ input StorageModuleInput {
   allowedOrigins: [String]
   restrictReads: Boolean
   hasPathShares: Boolean
-  pathSharesTableId: UUID
-  uploadUrlExpirySeconds: Int
-  downloadUrlExpirySeconds: Int
-  defaultMaxFileSize: BigInt
-  maxFilenameLength: Int
-  cacheTtlSeconds: Int
-  maxBulkFiles: Int
-  maxBulkTotalSize: BigInt
-  hasVersioning: Boolean
-  hasContentHash: Boolean
-  hasCustomKeys: Boolean
-  hasAuditLog: Boolean
-  hasConfirmUpload: Boolean
-  confirmUploadDelay: IntervalInput
-  fileEventsTableId: UUID
-  apiName: String
-  privateApiName: String
-}
-
-"""The output of our create `EventsModule` mutation."""
-type CreateEventsModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `EventsModule` that was created by this mutation."""
-  eventsModule: EventsModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `EventsModule`. May be used by Relay 1."""
-  eventsModuleEdge(
-    """The method to use when ordering `EventsModule`."""
-    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): EventsModuleEdge
-}
-
-"""All input for the create `EventsModule` mutation."""
-input CreateEventsModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-
-  """The `EventsModule` to be created by this mutation."""
-  eventsModule: EventsModuleInput!
-}
-
-"""An input for mutations affecting `EventsModule`"""
-input EventsModuleInput {
-  id: UUID
-  databaseId: UUID!
-  schemaId: UUID
-  privateSchemaId: UUID
-  eventsTableId: UUID
-  eventsTableName: String
-  eventAggregatesTableId: UUID
-  eventAggregatesTableName: String
-  eventTypesTableId: UUID
-  eventTypesTableName: String
-  levelsTableId: UUID
-  levelsTableName: String
-  levelRequirementsTableId: UUID
-  levelRequirementsTableName: String
-  levelGrantsTableId: UUID
-  levelGrantsTableName: String
-  achievementRewardsTableId: UUID
-  achievementRewardsTableName: String
-  recordEvent: String
-  removeEvent: String
-  tgEvent: String
-  tgEventToggle: String
-  tgEventToggleBool: String
-  tgEventBool: String
-  upsertAggregate: String
-  tgUpdateAggregates: String
-  pruneEvents: String
-  stepsRequired: String
-  levelAchieved: String
-  tgCheckAchievements: String
-  grantAchievement: String
-  tgAchievementReward: String
-  interval: String
-  retention: String
-  premake: Int
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  actorTableId: UUID
+  pathSharesTableId: UUID
+  uploadUrlExpirySeconds: Int
+  downloadUrlExpirySeconds: Int
+  defaultMaxFileSize: BigInt
+  maxFilenameLength: Int
+  cacheTtlSeconds: Int
+  maxBulkFiles: Int
+  maxBulkTotalSize: BigInt
+  hasVersioning: Boolean
+  hasContentHash: Boolean
+  hasCustomKeys: Boolean
+  hasAuditLog: Boolean
+  hasConfirmUpload: Boolean
+  confirmUploadDelay: IntervalInput
+  fileEventsTableId: UUID
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -17205,13 +17175,92 @@ input EntityTypeProvisionInput {
   outInvocationsTableId: UUID
   outExecutionLogsTableId: UUID
   outSecretDefinitionsTableId: UUID
-  outRequirementsTableId: UUID
-  outConfigRequirementsTableId: UUID
   outGraphModuleId: UUID
   outGraphsTableId: UUID
   outAgentModuleId: UUID
 }
 
+"""The output of our create `EventsModule` mutation."""
+type CreateEventsModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `EventsModule` that was created by this mutation."""
+  eventsModule: EventsModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `EventsModule`. May be used by Relay 1."""
+  eventsModuleEdge(
+    """The method to use when ordering `EventsModule`."""
+    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): EventsModuleEdge
+}
+
+"""All input for the create `EventsModule` mutation."""
+input CreateEventsModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+
+  """The `EventsModule` to be created by this mutation."""
+  eventsModule: EventsModuleInput!
+}
+
+"""An input for mutations affecting `EventsModule`"""
+input EventsModuleInput {
+  id: UUID
+  databaseId: UUID!
+  schemaId: UUID
+  privateSchemaId: UUID
+  eventsTableId: UUID
+  eventsTableName: String
+  eventAggregatesTableId: UUID
+  eventAggregatesTableName: String
+  eventTypesTableId: UUID
+  eventTypesTableName: String
+  levelsTableId: UUID
+  levelsTableName: String
+  levelRequirementsTableId: UUID
+  levelRequirementsTableName: String
+  levelGrantsTableId: UUID
+  levelGrantsTableName: String
+  achievementRewardsTableId: UUID
+  achievementRewardsTableName: String
+  recordEvent: String
+  removeEvent: String
+  tgEvent: String
+  tgEventToggle: String
+  tgEventToggleBool: String
+  tgEventBool: String
+  upsertAggregate: String
+  tgUpdateAggregates: String
+  pruneEvents: String
+  stepsRequired: String
+  levelAchieved: String
+  tgCheckAchievements: String
+  grantAchievement: String
+  tgAchievementReward: String
+  interval: String
+  retention: String
+  premake: Int
+  scope: String
+  prefix: String
+  entityTableId: UUID
+  actorTableId: UUID
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
+
 """The output of our update `DefaultIdsModule` mutation."""
 type UpdateDefaultIdsModulePayload {
   """
@@ -18414,64 +18463,6 @@ input CryptoAuthModulePatch {
   signInWithChallenge: String
 }
 
-"""The output of our update `RateLimitMetersModule` mutation."""
-type UpdateRateLimitMetersModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `RateLimitMetersModule` that was updated by this mutation."""
-  rateLimitMetersModule: RateLimitMetersModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
-  rateLimitMetersModuleEdge(
-    """The method to use when ordering `RateLimitMetersModule`."""
-    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): RateLimitMetersModuleEdge
-}
-
-"""All input for the `updateRateLimitMetersModule` mutation."""
-input UpdateRateLimitMetersModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-
-  """
-  An object where the defined keys will be set on the `RateLimitMetersModule` being updated.
-  """
-  rateLimitMetersModulePatch: RateLimitMetersModulePatch!
-}
-
-"""
-Represents an update to a `RateLimitMetersModule`. Fields that are set will be updated.
-"""
-input RateLimitMetersModulePatch {
-  id: UUID
-  databaseId: UUID
-  schemaId: UUID
-  privateSchemaId: UUID
-  rateLimitStateTableId: UUID
-  rateLimitStateTableName: String
-  rateLimitOverridesTableId: UUID
-  rateLimitOverridesTableName: String
-  rateWindowLimitsTableId: UUID
-  rateWindowLimitsTableName: String
-  checkRateLimitFunction: String
-  prefix: String
-  apiName: String
-  privateApiName: String
-}
-
 """The output of our update `BlueprintConstruction` mutation."""
 type UpdateBlueprintConstructionPayload {
   """
@@ -18831,6 +18822,65 @@ input SecureTableProvisionPatch {
   outFields: [UUID]
 }
 
+"""The output of our update `RateLimitMetersModule` mutation."""
+type UpdateRateLimitMetersModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `RateLimitMetersModule` that was updated by this mutation."""
+  rateLimitMetersModule: RateLimitMetersModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
+  rateLimitMetersModuleEdge(
+    """The method to use when ordering `RateLimitMetersModule`."""
+    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): RateLimitMetersModuleEdge
+}
+
+"""All input for the `updateRateLimitMetersModule` mutation."""
+input UpdateRateLimitMetersModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `RateLimitMetersModule` being updated.
+  """
+  rateLimitMetersModulePatch: RateLimitMetersModulePatch!
+}
+
+"""
+Represents an update to a `RateLimitMetersModule`. Fields that are set will be updated.
+"""
+input RateLimitMetersModulePatch {
+  id: UUID
+  databaseId: UUID
+  schemaId: UUID
+  privateSchemaId: UUID
+  rateLimitStateTableId: UUID
+  rateLimitStateTableName: String
+  rateLimitOverridesTableId: UUID
+  rateLimitOverridesTableName: String
+  rateWindowLimitsTableId: UUID
+  rateWindowLimitsTableName: String
+  checkRateLimitFunction: String
+  prefix: String
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
+
 """The output of our update `InvitesModule` mutation."""
 type UpdateInvitesModulePayload {
   """
@@ -18966,72 +19016,11 @@ input DatabaseProvisionModulePatch {
   status: String
   errorMessage: String
 
-  """The ID of the provisioned database (set by trigger before RLS check)"""
-  databaseId: UUID
-  createdAt: Datetime
-  updatedAt: Datetime
-  completedAt: Datetime
-}
-
-"""The output of our update `NamespaceModule` mutation."""
-type UpdateNamespaceModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `NamespaceModule` that was updated by this mutation."""
-  namespaceModule: NamespaceModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `NamespaceModule`. May be used by Relay 1."""
-  namespaceModuleEdge(
-    """The method to use when ordering `NamespaceModule`."""
-    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): NamespaceModuleEdge
-}
-
-"""All input for the `updateNamespaceModule` mutation."""
-input UpdateNamespaceModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-
-  """
-  An object where the defined keys will be set on the `NamespaceModule` being updated.
-  """
-  namespaceModulePatch: NamespaceModulePatch!
-}
-
-"""
-Represents an update to a `NamespaceModule`. Fields that are set will be updated.
-"""
-input NamespaceModulePatch {
-  id: UUID
+  """The ID of the provisioned database (set by trigger before RLS check)"""
   databaseId: UUID
-  schemaId: UUID
-  privateSchemaId: UUID
-  publicSchemaName: String
-  privateSchemaName: String
-  namespacesTableId: UUID
-  namespaceEventsTableId: UUID
-  namespacesTableName: String
-  namespaceEventsTableName: String
-  apiName: String
-  privateApiName: String
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
+  createdAt: Datetime
+  updatedAt: Datetime
+  completedAt: Datetime
 }
 
 """The output of our update `RealtimeModule` mutation."""
@@ -19152,31 +19141,31 @@ input WebauthnAuthModulePatch {
   challengeExpiry: IntervalInput
 }
 
-"""The output of our update `GraphModule` mutation."""
-type UpdateGraphModulePayload {
+"""The output of our update `NamespaceModule` mutation."""
+type UpdateNamespaceModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `GraphModule` that was updated by this mutation."""
-  graphModule: GraphModule
+  """The `NamespaceModule` that was updated by this mutation."""
+  namespaceModule: NamespaceModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `GraphModule`. May be used by Relay 1."""
-  graphModuleEdge(
-    """The method to use when ordering `GraphModule`."""
-    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): GraphModuleEdge
+  """An edge for our `NamespaceModule`. May be used by Relay 1."""
+  namespaceModuleEdge(
+    """The method to use when ordering `NamespaceModule`."""
+    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): NamespaceModuleEdge
 }
 
-"""All input for the `updateGraphModule` mutation."""
-input UpdateGraphModuleInput {
+"""All input for the `updateNamespaceModule` mutation."""
+input UpdateNamespaceModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -19185,33 +19174,33 @@ input UpdateGraphModuleInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `GraphModule` being updated.
+  An object where the defined keys will be set on the `NamespaceModule` being updated.
   """
-  graphModulePatch: GraphModulePatch!
+  namespaceModulePatch: NamespaceModulePatch!
 }
 
 """
-Represents an update to a `GraphModule`. Fields that are set will be updated.
+Represents an update to a `NamespaceModule`. Fields that are set will be updated.
 """
-input GraphModulePatch {
+input NamespaceModulePatch {
   id: UUID
   databaseId: UUID
-  publicSchemaId: UUID
+  schemaId: UUID
   privateSchemaId: UUID
   publicSchemaName: String
   privateSchemaName: String
-  scope: String
-  prefix: String
-  merkleStoreModuleId: UUID
-  graphsTableId: UUID
-  executionsTableId: UUID
-  outputsTableId: UUID
+  namespacesTableId: UUID
+  namespaceEventsTableId: UUID
+  namespacesTableName: String
+  namespaceEventsTableName: String
   apiName: String
   privateApiName: String
+  scope: String
+  prefix: String
   entityTableId: UUID
   policies: JSON
   provisions: JSON
-  createdAt: Datetime
+  defaultPermissions: [String]
 }
 
 """The output of our update `ComputeLogModule` mutation."""
@@ -19458,6 +19447,132 @@ input TransferLogModulePatch {
   privateApiName: String
 }
 
+"""The output of our update `GraphModule` mutation."""
+type UpdateGraphModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `GraphModule` that was updated by this mutation."""
+  graphModule: GraphModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `GraphModule`. May be used by Relay 1."""
+  graphModuleEdge(
+    """The method to use when ordering `GraphModule`."""
+    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): GraphModuleEdge
+}
+
+"""All input for the `updateGraphModule` mutation."""
+input UpdateGraphModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `GraphModule` being updated.
+  """
+  graphModulePatch: GraphModulePatch!
+}
+
+"""
+Represents an update to a `GraphModule`. Fields that are set will be updated.
+"""
+input GraphModulePatch {
+  id: UUID
+  databaseId: UUID
+  publicSchemaId: UUID
+  privateSchemaId: UUID
+  publicSchemaName: String
+  privateSchemaName: String
+  scope: String
+  prefix: String
+  merkleStoreModuleId: UUID
+  graphsTableId: UUID
+  executionsTableId: UUID
+  outputsTableId: UUID
+  apiName: String
+  privateApiName: String
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
+  createdAt: Datetime
+}
+
+"""The output of our update `PlansModule` mutation."""
+type UpdatePlansModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `PlansModule` that was updated by this mutation."""
+  plansModule: PlansModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `PlansModule`. May be used by Relay 1."""
+  plansModuleEdge(
+    """The method to use when ordering `PlansModule`."""
+    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): PlansModuleEdge
+}
+
+"""All input for the `updatePlansModule` mutation."""
+input UpdatePlansModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `PlansModule` being updated.
+  """
+  plansModulePatch: PlansModulePatch!
+}
+
+"""
+Represents an update to a `PlansModule`. Fields that are set will be updated.
+"""
+input PlansModulePatch {
+  id: UUID
+  databaseId: UUID
+  schemaId: UUID
+  privateSchemaId: UUID
+  plansTableId: UUID
+  plansTableName: String
+  planLimitsTableId: UUID
+  planLimitsTableName: String
+  planPricingTableId: UUID
+  planOverridesTableId: UUID
+  planMeterLimitsTableId: UUID
+  planCapsTableId: UUID
+  applyPlanFunction: String
+  applyPlanAggregateFunction: String
+  applyBillingPlanFunction: String
+  applyPlanCapsFunction: String
+  prefix: String
+  apiName: String
+  privateApiName: String
+}
+
 """The output of our update `DbUsageModule` mutation."""
 type UpdateDbUsageModulePayload {
   """
@@ -19517,6 +19632,7 @@ input DbUsageModulePatch {
   premake: Int
   scope: String
   prefix: String
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -19562,53 +19678,120 @@ input UpdateNotificationsModuleInput {
 """
 Represents an update to a `NotificationsModule`. Fields that are set will be updated.
 """
-input NotificationsModulePatch {
+input NotificationsModulePatch {
+  id: UUID
+  databaseId: UUID
+  schemaId: UUID
+  privateSchemaId: UUID
+  notificationsTableId: UUID
+  readStateTableId: UUID
+  preferencesTableId: UUID
+  channelsTableId: UUID
+  deliveryLogTableId: UUID
+  ownerTableId: UUID
+  userSettingsTableId: UUID
+  organizationSettingsTableId: UUID
+  hasChannels: Boolean
+  hasPreferences: Boolean
+  hasSettingsExtension: Boolean
+  hasDigestMetadata: Boolean
+  hasSubscriptions: Boolean
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
+}
+
+"""The output of our update `BillingProviderModule` mutation."""
+type UpdateBillingProviderModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `BillingProviderModule` that was updated by this mutation."""
+  billingProviderModule: BillingProviderModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
+  billingProviderModuleEdge(
+    """The method to use when ordering `BillingProviderModule`."""
+    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingProviderModuleEdge
+}
+
+"""All input for the `updateBillingProviderModule` mutation."""
+input UpdateBillingProviderModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+
+  """
+  An object where the defined keys will be set on the `BillingProviderModule` being updated.
+  """
+  billingProviderModulePatch: BillingProviderModulePatch!
+}
+
+"""
+Represents an update to a `BillingProviderModule`. Fields that are set will be updated.
+"""
+input BillingProviderModulePatch {
   id: UUID
   databaseId: UUID
   schemaId: UUID
   privateSchemaId: UUID
-  notificationsTableId: UUID
-  readStateTableId: UUID
-  preferencesTableId: UUID
-  channelsTableId: UUID
-  deliveryLogTableId: UUID
-  ownerTableId: UUID
-  userSettingsTableId: UUID
-  organizationSettingsTableId: UUID
-  hasChannels: Boolean
-  hasPreferences: Boolean
-  hasSettingsExtension: Boolean
-  hasDigestMetadata: Boolean
-  hasSubscriptions: Boolean
+  provider: String
+  productsTableId: UUID
+  pricesTableId: UUID
+  subscriptionsTableId: UUID
+  billingCustomersTableId: UUID
+  billingCustomersTableName: String
+  billingProductsTableId: UUID
+  billingProductsTableName: String
+  billingPricesTableId: UUID
+  billingPricesTableName: String
+  billingSubscriptionsTableId: UUID
+  billingSubscriptionsTableName: String
+  billingWebhookEventsTableId: UUID
+  billingWebhookEventsTableName: String
+  processBillingEventFunction: String
+  prefix: String
   apiName: String
   privateApiName: String
 }
 
-"""The output of our update `PlansModule` mutation."""
-type UpdatePlansModulePayload {
+"""The output of our update `FunctionModule` mutation."""
+type UpdateFunctionModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `PlansModule` that was updated by this mutation."""
-  plansModule: PlansModule
+  """The `FunctionModule` that was updated by this mutation."""
+  functionModule: FunctionModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `PlansModule`. May be used by Relay 1."""
-  plansModuleEdge(
-    """The method to use when ordering `PlansModule`."""
-    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): PlansModuleEdge
+  """An edge for our `FunctionModule`. May be used by Relay 1."""
+  functionModuleEdge(
+    """The method to use when ordering `FunctionModule`."""
+    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): FunctionModuleEdge
 }
 
-"""All input for the `updatePlansModule` mutation."""
-input UpdatePlansModuleInput {
+"""All input for the `updateFunctionModule` mutation."""
+input UpdateFunctionModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -19617,34 +19800,37 @@ input UpdatePlansModuleInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `PlansModule` being updated.
+  An object where the defined keys will be set on the `FunctionModule` being updated.
   """
-  plansModulePatch: PlansModulePatch!
+  functionModulePatch: FunctionModulePatch!
 }
 
 """
-Represents an update to a `PlansModule`. Fields that are set will be updated.
+Represents an update to a `FunctionModule`. Fields that are set will be updated.
 """
-input PlansModulePatch {
+input FunctionModulePatch {
   id: UUID
   databaseId: UUID
   schemaId: UUID
   privateSchemaId: UUID
-  plansTableId: UUID
-  plansTableName: String
-  planLimitsTableId: UUID
-  planLimitsTableName: String
-  planPricingTableId: UUID
-  planOverridesTableId: UUID
-  planMeterLimitsTableId: UUID
-  planCapsTableId: UUID
-  applyPlanFunction: String
-  applyPlanAggregateFunction: String
-  applyBillingPlanFunction: String
-  applyPlanCapsFunction: String
-  prefix: String
+  publicSchemaName: String
+  privateSchemaName: String
+  definitionsTableId: UUID
+  invocationsTableId: UUID
+  executionLogsTableId: UUID
+  secretDefinitionsTableId: UUID
+  definitionsTableName: String
+  invocationsTableName: String
+  executionLogsTableName: String
+  secretDefinitionsTableName: String
   apiName: String
   privateApiName: String
+  scope: String
+  prefix: String
+  entityTableId: UUID
+  policies: JSON
+  provisions: JSON
+  defaultPermissions: [String]
 }
 
 """The output of our update `HierarchyModule` mutation."""
@@ -19709,100 +19895,35 @@ input HierarchyModulePatch {
   getSubordinatesFunction: String
   getManagersFunction: String
   isManagerOfFunction: String
+  defaultPermissions: [String]
   createdAt: Datetime
 }
 
-"""The output of our update `BillingModule` mutation."""
-type UpdateBillingModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `BillingModule` that was updated by this mutation."""
-  billingModule: BillingModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `BillingModule`. May be used by Relay 1."""
-  billingModuleEdge(
-    """The method to use when ordering `BillingModule`."""
-    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingModuleEdge
-}
-
-"""All input for the `updateBillingModule` mutation."""
-input UpdateBillingModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-
-  """
-  An object where the defined keys will be set on the `BillingModule` being updated.
-  """
-  billingModulePatch: BillingModulePatch!
-}
-
-"""
-Represents an update to a `BillingModule`. Fields that are set will be updated.
-"""
-input BillingModulePatch {
-  id: UUID
-  databaseId: UUID
-  schemaId: UUID
-  privateSchemaId: UUID
-  metersTableId: UUID
-  metersTableName: String
-  planSubscriptionsTableId: UUID
-  planSubscriptionsTableName: String
-  ledgerTableId: UUID
-  ledgerTableName: String
-  balancesTableId: UUID
-  balancesTableName: String
-  meterCreditsTableId: UUID
-  meterCreditsTableName: String
-  meterSourcesTableId: UUID
-  meterSourcesTableName: String
-  meterDefaultsTableId: UUID
-  meterDefaultsTableName: String
-  recordUsageFunction: String
-  prefix: String
-  apiName: String
-  privateApiName: String
-}
-
-"""The output of our update `BillingProviderModule` mutation."""
-type UpdateBillingProviderModulePayload {
+"""The output of our update `ProfilesModule` mutation."""
+type UpdateProfilesModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `BillingProviderModule` that was updated by this mutation."""
-  billingProviderModule: BillingProviderModule
+  """The `ProfilesModule` that was updated by this mutation."""
+  profilesModule: ProfilesModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
-  billingProviderModuleEdge(
-    """The method to use when ordering `BillingProviderModule`."""
-    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingProviderModuleEdge
+  """An edge for our `ProfilesModule`. May be used by Relay 1."""
+  profilesModuleEdge(
+    """The method to use when ordering `ProfilesModule`."""
+    orderBy: [ProfilesModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): ProfilesModuleEdge
 }
 
-"""All input for the `updateBillingProviderModule` mutation."""
-input UpdateBillingProviderModuleInput {
+"""All input for the `updateProfilesModule` mutation."""
+input UpdateProfilesModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -19811,64 +19932,64 @@ input UpdateBillingProviderModuleInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `BillingProviderModule` being updated.
+  An object where the defined keys will be set on the `ProfilesModule` being updated.
   """
-  billingProviderModulePatch: BillingProviderModulePatch!
+  profilesModulePatch: ProfilesModulePatch!
 }
 
 """
-Represents an update to a `BillingProviderModule`. Fields that are set will be updated.
+Represents an update to a `ProfilesModule`. Fields that are set will be updated.
 """
-input BillingProviderModulePatch {
+input ProfilesModulePatch {
   id: UUID
   databaseId: UUID
   schemaId: UUID
   privateSchemaId: UUID
-  provider: String
-  productsTableId: UUID
-  pricesTableId: UUID
-  subscriptionsTableId: UUID
-  billingCustomersTableId: UUID
-  billingCustomersTableName: String
-  billingProductsTableId: UUID
-  billingProductsTableName: String
-  billingPricesTableId: UUID
-  billingPricesTableName: String
-  billingSubscriptionsTableId: UUID
-  billingSubscriptionsTableName: String
-  billingWebhookEventsTableId: UUID
-  billingWebhookEventsTableName: String
-  processBillingEventFunction: String
+  tableId: UUID
+  tableName: String
+  profilePermissionsTableId: UUID
+  profilePermissionsTableName: String
+  profileGrantsTableId: UUID
+  profileGrantsTableName: String
+  profileDefinitionGrantsTableId: UUID
+  profileDefinitionGrantsTableName: String
+  profileTemplatesTableId: UUID
+  profileTemplatesTableName: String
+  scope: String
   prefix: String
+  entityTableId: UUID
+  actorTableId: UUID
+  permissionsTableId: UUID
+  membershipsTableId: UUID
   apiName: String
   privateApiName: String
 }
 
-"""The output of our update `ProfilesModule` mutation."""
-type UpdateProfilesModulePayload {
+"""The output of our update `PermissionsModule` mutation."""
+type UpdatePermissionsModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `ProfilesModule` that was updated by this mutation."""
-  profilesModule: ProfilesModule
+  """The `PermissionsModule` that was updated by this mutation."""
+  permissionsModule: PermissionsModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `ProfilesModule`. May be used by Relay 1."""
-  profilesModuleEdge(
-    """The method to use when ordering `ProfilesModule`."""
-    orderBy: [ProfilesModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): ProfilesModuleEdge
+  """An edge for our `PermissionsModule`. May be used by Relay 1."""
+  permissionsModuleEdge(
+    """The method to use when ordering `PermissionsModule`."""
+    orderBy: [PermissionsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): PermissionsModuleEdge
 }
 
-"""All input for the `updateProfilesModule` mutation."""
-input UpdateProfilesModuleInput {
+"""All input for the `updatePermissionsModule` mutation."""
+input UpdatePermissionsModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -19877,64 +19998,61 @@ input UpdateProfilesModuleInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `ProfilesModule` being updated.
+  An object where the defined keys will be set on the `PermissionsModule` being updated.
   """
-  profilesModulePatch: ProfilesModulePatch!
+  permissionsModulePatch: PermissionsModulePatch!
 }
 
 """
-Represents an update to a `ProfilesModule`. Fields that are set will be updated.
+Represents an update to a `PermissionsModule`. Fields that are set will be updated.
 """
-input ProfilesModulePatch {
+input PermissionsModulePatch {
   id: UUID
   databaseId: UUID
   schemaId: UUID
   privateSchemaId: UUID
   tableId: UUID
   tableName: String
-  profilePermissionsTableId: UUID
-  profilePermissionsTableName: String
-  profileGrantsTableId: UUID
-  profileGrantsTableName: String
-  profileDefinitionGrantsTableId: UUID
-  profileDefinitionGrantsTableName: String
-  profileTemplatesTableId: UUID
-  profileTemplatesTableName: String
+  defaultTableId: UUID
+  defaultTableName: String
+  bitlen: Int
   scope: String
   prefix: String
   entityTableId: UUID
   actorTableId: UUID
-  permissionsTableId: UUID
-  membershipsTableId: UUID
+  getPaddedMask: String
+  getMask: String
+  getByMask: String
+  getMaskByName: String
   apiName: String
   privateApiName: String
 }
 
-"""The output of our update `PermissionsModule` mutation."""
-type UpdatePermissionsModulePayload {
+"""The output of our update `BillingModule` mutation."""
+type UpdateBillingModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `PermissionsModule` that was updated by this mutation."""
-  permissionsModule: PermissionsModule
+  """The `BillingModule` that was updated by this mutation."""
+  billingModule: BillingModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `PermissionsModule`. May be used by Relay 1."""
-  permissionsModuleEdge(
-    """The method to use when ordering `PermissionsModule`."""
-    orderBy: [PermissionsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): PermissionsModuleEdge
+  """An edge for our `BillingModule`. May be used by Relay 1."""
+  billingModuleEdge(
+    """The method to use when ordering `BillingModule`."""
+    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingModuleEdge
 }
 
-"""All input for the `updatePermissionsModule` mutation."""
-input UpdatePermissionsModuleInput {
+"""All input for the `updateBillingModule` mutation."""
+input UpdateBillingModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -19943,32 +20061,36 @@ input UpdatePermissionsModuleInput {
   id: UUID!
 
   """
-  An object where the defined keys will be set on the `PermissionsModule` being updated.
+  An object where the defined keys will be set on the `BillingModule` being updated.
   """
-  permissionsModulePatch: PermissionsModulePatch!
+  billingModulePatch: BillingModulePatch!
 }
 
 """
-Represents an update to a `PermissionsModule`. Fields that are set will be updated.
+Represents an update to a `BillingModule`. Fields that are set will be updated.
 """
-input PermissionsModulePatch {
+input BillingModulePatch {
   id: UUID
   databaseId: UUID
   schemaId: UUID
   privateSchemaId: UUID
-  tableId: UUID
-  tableName: String
-  defaultTableId: UUID
-  defaultTableName: String
-  bitlen: Int
-  scope: String
+  metersTableId: UUID
+  metersTableName: String
+  planSubscriptionsTableId: UUID
+  planSubscriptionsTableName: String
+  ledgerTableId: UUID
+  ledgerTableName: String
+  balancesTableId: UUID
+  balancesTableName: String
+  meterCreditsTableId: UUID
+  meterCreditsTableName: String
+  meterSourcesTableId: UUID
+  meterSourcesTableName: String
+  meterDefaultsTableId: UUID
+  meterDefaultsTableName: String
+  recordUsageFunction: String
   prefix: String
-  entityTableId: UUID
-  actorTableId: UUID
-  getPaddedMask: String
-  getMask: String
-  getByMask: String
-  getMaskByName: String
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -20316,76 +20438,6 @@ input BlueprintTemplatePatch {
   updatedAt: Datetime
 }
 
-"""The output of our update `FunctionModule` mutation."""
-type UpdateFunctionModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `FunctionModule` that was updated by this mutation."""
-  functionModule: FunctionModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `FunctionModule`. May be used by Relay 1."""
-  functionModuleEdge(
-    """The method to use when ordering `FunctionModule`."""
-    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): FunctionModuleEdge
-}
-
-"""All input for the `updateFunctionModule` mutation."""
-input UpdateFunctionModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-
-  """
-  An object where the defined keys will be set on the `FunctionModule` being updated.
-  """
-  functionModulePatch: FunctionModulePatch!
-}
-
-"""
-Represents an update to a `FunctionModule`. Fields that are set will be updated.
-"""
-input FunctionModulePatch {
-  id: UUID
-  databaseId: UUID
-  schemaId: UUID
-  privateSchemaId: UUID
-  publicSchemaName: String
-  privateSchemaName: String
-  definitionsTableId: UUID
-  invocationsTableId: UUID
-  executionLogsTableId: UUID
-  secretDefinitionsTableId: UUID
-  requirementsTableId: UUID
-  configDefinitionsTableId: UUID
-  configRequirementsTableId: UUID
-  definitionsTableName: String
-  invocationsTableName: String
-  executionLogsTableName: String
-  secretDefinitionsTableName: String
-  requirementsTableName: String
-  configRequirementsTableName: String
-  apiName: String
-  privateApiName: String
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  policies: JSON
-  provisions: JSON
-}
-
 """The output of our update `UserAuthModule` mutation."""
 type UpdateUserAuthModulePayload {
   """
@@ -20523,6 +20575,7 @@ input AgentModulePatch {
   hasPlans: Boolean
   hasResources: Boolean
   hasAgents: Boolean
+  shared: Boolean
   apiName: String
   privateApiName: String
   scope: String
@@ -20531,6 +20584,7 @@ input AgentModulePatch {
   policies: JSON
   resources: JSON
   provisions: JSON
+  defaultPermissions: [String]
 }
 
 """The output of our update `LimitsModule` mutation."""
@@ -20688,6 +20742,8 @@ input MembershipsModulePatch {
   entityIdsByPerm: String
   entityIdsFunction: String
   memberProfilesTableId: UUID
+  permissionDefaultPermissionsTableId: UUID
+  permissionDefaultGrantsTableId: UUID
   apiName: String
   privateApiName: String
 }
@@ -20768,91 +20824,7 @@ input StorageModulePatch {
   hasConfirmUpload: Boolean
   confirmUploadDelay: IntervalInput
   fileEventsTableId: UUID
-  apiName: String
-  privateApiName: String
-}
-
-"""The output of our update `EventsModule` mutation."""
-type UpdateEventsModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `EventsModule` that was updated by this mutation."""
-  eventsModule: EventsModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `EventsModule`. May be used by Relay 1."""
-  eventsModuleEdge(
-    """The method to use when ordering `EventsModule`."""
-    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): EventsModuleEdge
-}
-
-"""All input for the `updateEventsModule` mutation."""
-input UpdateEventsModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-
-  """
-  An object where the defined keys will be set on the `EventsModule` being updated.
-  """
-  eventsModulePatch: EventsModulePatch!
-}
-
-"""
-Represents an update to a `EventsModule`. Fields that are set will be updated.
-"""
-input EventsModulePatch {
-  id: UUID
-  databaseId: UUID
-  schemaId: UUID
-  privateSchemaId: UUID
-  eventsTableId: UUID
-  eventsTableName: String
-  eventAggregatesTableId: UUID
-  eventAggregatesTableName: String
-  eventTypesTableId: UUID
-  eventTypesTableName: String
-  levelsTableId: UUID
-  levelsTableName: String
-  levelRequirementsTableId: UUID
-  levelRequirementsTableName: String
-  levelGrantsTableId: UUID
-  levelGrantsTableName: String
-  achievementRewardsTableId: UUID
-  achievementRewardsTableName: String
-  recordEvent: String
-  removeEvent: String
-  tgEvent: String
-  tgEventToggle: String
-  tgEventToggleBool: String
-  tgEventBool: String
-  upsertAggregate: String
-  tgUpdateAggregates: String
-  pruneEvents: String
-  stepsRequired: String
-  levelAchieved: String
-  tgCheckAchievements: String
-  grantAchievement: String
-  tgAchievementReward: String
-  interval: String
-  retention: String
-  premake: Int
-  scope: String
-  prefix: String
-  entityTableId: UUID
-  actorTableId: UUID
+  defaultPermissions: [String]
   apiName: String
   privateApiName: String
 }
@@ -21172,26 +21144,110 @@ input EntityTypeProvisionPatch {
   outNamespaceModuleId: UUID
 
   """
-  Output: the UUID of the generated namespaces table (e.g. data_room_namespaces).
-       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  Output: the UUID of the generated namespaces table (e.g. data_room_namespaces).
+       Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  """
+  outNamespacesTableId: UUID
+
+  """
+  Output: the UUID of the generated namespace_events partitioned table (e.g. data_room_namespace_events).
+       Monthly partitioned, 12-month retention. Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  """
+  outNamespaceEventsTableId: UUID
+  outFunctionModuleId: UUID
+  outDefinitionsTableId: UUID
+  outInvocationsTableId: UUID
+  outExecutionLogsTableId: UUID
+  outSecretDefinitionsTableId: UUID
+  outGraphModuleId: UUID
+  outGraphsTableId: UUID
+  outAgentModuleId: UUID
+}
+
+"""The output of our update `EventsModule` mutation."""
+type UpdateEventsModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `EventsModule` that was updated by this mutation."""
+  eventsModule: EventsModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `EventsModule`. May be used by Relay 1."""
+  eventsModuleEdge(
+    """The method to use when ordering `EventsModule`."""
+    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): EventsModuleEdge
+}
+
+"""All input for the `updateEventsModule` mutation."""
+input UpdateEventsModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
   """
-  outNamespacesTableId: UUID
+  clientMutationId: String
+  id: UUID!
 
   """
-  Output: the UUID of the generated namespace_events partitioned table (e.g. data_room_namespace_events).
-       Monthly partitioned, 12-month retention. Populated by the trigger when namespaces is non-NULL. NULL otherwise.
+  An object where the defined keys will be set on the `EventsModule` being updated.
   """
-  outNamespaceEventsTableId: UUID
-  outFunctionModuleId: UUID
-  outDefinitionsTableId: UUID
-  outInvocationsTableId: UUID
-  outExecutionLogsTableId: UUID
-  outSecretDefinitionsTableId: UUID
-  outRequirementsTableId: UUID
-  outConfigRequirementsTableId: UUID
-  outGraphModuleId: UUID
-  outGraphsTableId: UUID
-  outAgentModuleId: UUID
+  eventsModulePatch: EventsModulePatch!
+}
+
+"""
+Represents an update to a `EventsModule`. Fields that are set will be updated.
+"""
+input EventsModulePatch {
+  id: UUID
+  databaseId: UUID
+  schemaId: UUID
+  privateSchemaId: UUID
+  eventsTableId: UUID
+  eventsTableName: String
+  eventAggregatesTableId: UUID
+  eventAggregatesTableName: String
+  eventTypesTableId: UUID
+  eventTypesTableName: String
+  levelsTableId: UUID
+  levelsTableName: String
+  levelRequirementsTableId: UUID
+  levelRequirementsTableName: String
+  levelGrantsTableId: UUID
+  levelGrantsTableName: String
+  achievementRewardsTableId: UUID
+  achievementRewardsTableName: String
+  recordEvent: String
+  removeEvent: String
+  tgEvent: String
+  tgEventToggle: String
+  tgEventToggleBool: String
+  tgEventBool: String
+  upsertAggregate: String
+  tgUpdateAggregates: String
+  pruneEvents: String
+  stepsRequired: String
+  levelAchieved: String
+  tgCheckAchievements: String
+  grantAchievement: String
+  tgAchievementReward: String
+  interval: String
+  retention: String
+  premake: Int
+  scope: String
+  prefix: String
+  entityTableId: UUID
+  actorTableId: UUID
+  defaultPermissions: [String]
+  apiName: String
+  privateApiName: String
 }
 
 """The output of our delete `DefaultIdsModule` mutation."""
@@ -21922,39 +21978,6 @@ input DeleteCryptoAuthModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `RateLimitMetersModule` mutation."""
-type DeleteRateLimitMetersModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `RateLimitMetersModule` that was deleted by this mutation."""
-  rateLimitMetersModule: RateLimitMetersModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
-  rateLimitMetersModuleEdge(
-    """The method to use when ordering `RateLimitMetersModule`."""
-    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): RateLimitMetersModuleEdge
-}
-
-"""All input for the `deleteRateLimitMetersModule` mutation."""
-input DeleteRateLimitMetersModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-}
-
 """The output of our delete `BlueprintConstruction` mutation."""
 type DeleteBlueprintConstructionPayload {
   """
@@ -22124,31 +22147,31 @@ input DeleteSecureTableProvisionInput {
   id: UUID!
 }
 
-"""The output of our delete `InvitesModule` mutation."""
-type DeleteInvitesModulePayload {
+"""The output of our delete `RateLimitMetersModule` mutation."""
+type DeleteRateLimitMetersModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `InvitesModule` that was deleted by this mutation."""
-  invitesModule: InvitesModule
+  """The `RateLimitMetersModule` that was deleted by this mutation."""
+  rateLimitMetersModule: RateLimitMetersModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `InvitesModule`. May be used by Relay 1."""
-  invitesModuleEdge(
-    """The method to use when ordering `InvitesModule`."""
-    orderBy: [InvitesModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): InvitesModuleEdge
+  """An edge for our `RateLimitMetersModule`. May be used by Relay 1."""
+  rateLimitMetersModuleEdge(
+    """The method to use when ordering `RateLimitMetersModule`."""
+    orderBy: [RateLimitMetersModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): RateLimitMetersModuleEdge
 }
 
-"""All input for the `deleteInvitesModule` mutation."""
-input DeleteInvitesModuleInput {
+"""All input for the `deleteRateLimitMetersModule` mutation."""
+input DeleteRateLimitMetersModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22157,31 +22180,31 @@ input DeleteInvitesModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `DatabaseProvisionModule` mutation."""
-type DeleteDatabaseProvisionModulePayload {
+"""The output of our delete `InvitesModule` mutation."""
+type DeleteInvitesModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `DatabaseProvisionModule` that was deleted by this mutation."""
-  databaseProvisionModule: DatabaseProvisionModule
+  """The `InvitesModule` that was deleted by this mutation."""
+  invitesModule: InvitesModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `DatabaseProvisionModule`. May be used by Relay 1."""
-  databaseProvisionModuleEdge(
-    """The method to use when ordering `DatabaseProvisionModule`."""
-    orderBy: [DatabaseProvisionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): DatabaseProvisionModuleEdge
+  """An edge for our `InvitesModule`. May be used by Relay 1."""
+  invitesModuleEdge(
+    """The method to use when ordering `InvitesModule`."""
+    orderBy: [InvitesModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): InvitesModuleEdge
 }
 
-"""All input for the `deleteDatabaseProvisionModule` mutation."""
-input DeleteDatabaseProvisionModuleInput {
+"""All input for the `deleteInvitesModule` mutation."""
+input DeleteInvitesModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22190,31 +22213,31 @@ input DeleteDatabaseProvisionModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `NamespaceModule` mutation."""
-type DeleteNamespaceModulePayload {
+"""The output of our delete `DatabaseProvisionModule` mutation."""
+type DeleteDatabaseProvisionModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `NamespaceModule` that was deleted by this mutation."""
-  namespaceModule: NamespaceModule
+  """The `DatabaseProvisionModule` that was deleted by this mutation."""
+  databaseProvisionModule: DatabaseProvisionModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `NamespaceModule`. May be used by Relay 1."""
-  namespaceModuleEdge(
-    """The method to use when ordering `NamespaceModule`."""
-    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): NamespaceModuleEdge
+  """An edge for our `DatabaseProvisionModule`. May be used by Relay 1."""
+  databaseProvisionModuleEdge(
+    """The method to use when ordering `DatabaseProvisionModule`."""
+    orderBy: [DatabaseProvisionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): DatabaseProvisionModuleEdge
 }
 
-"""All input for the `deleteNamespaceModule` mutation."""
-input DeleteNamespaceModuleInput {
+"""All input for the `deleteDatabaseProvisionModule` mutation."""
+input DeleteDatabaseProvisionModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22289,31 +22312,31 @@ input DeleteWebauthnAuthModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `GraphModule` mutation."""
-type DeleteGraphModulePayload {
+"""The output of our delete `NamespaceModule` mutation."""
+type DeleteNamespaceModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `GraphModule` that was deleted by this mutation."""
-  graphModule: GraphModule
+  """The `NamespaceModule` that was deleted by this mutation."""
+  namespaceModule: NamespaceModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `GraphModule`. May be used by Relay 1."""
-  graphModuleEdge(
-    """The method to use when ordering `GraphModule`."""
-    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): GraphModuleEdge
+  """An edge for our `NamespaceModule`. May be used by Relay 1."""
+  namespaceModuleEdge(
+    """The method to use when ordering `NamespaceModule`."""
+    orderBy: [NamespaceModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): NamespaceModuleEdge
 }
 
-"""All input for the `deleteGraphModule` mutation."""
-input DeleteGraphModuleInput {
+"""All input for the `deleteNamespaceModule` mutation."""
+input DeleteNamespaceModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22396,23 +22419,89 @@ type DeleteStorageLogModulePayload {
   """
   clientMutationId: String
 
-  """The `StorageLogModule` that was deleted by this mutation."""
-  storageLogModule: StorageLogModule
+  """The `StorageLogModule` that was deleted by this mutation."""
+  storageLogModule: StorageLogModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `StorageLogModule`. May be used by Relay 1."""
+  storageLogModuleEdge(
+    """The method to use when ordering `StorageLogModule`."""
+    orderBy: [StorageLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): StorageLogModuleEdge
+}
+
+"""All input for the `deleteStorageLogModule` mutation."""
+input DeleteStorageLogModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
+"""The output of our delete `TransferLogModule` mutation."""
+type DeleteTransferLogModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `TransferLogModule` that was deleted by this mutation."""
+  transferLogModule: TransferLogModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `TransferLogModule`. May be used by Relay 1."""
+  transferLogModuleEdge(
+    """The method to use when ordering `TransferLogModule`."""
+    orderBy: [TransferLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): TransferLogModuleEdge
+}
+
+"""All input for the `deleteTransferLogModule` mutation."""
+input DeleteTransferLogModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
+"""The output of our delete `GraphModule` mutation."""
+type DeleteGraphModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `GraphModule` that was deleted by this mutation."""
+  graphModule: GraphModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `StorageLogModule`. May be used by Relay 1."""
-  storageLogModuleEdge(
-    """The method to use when ordering `StorageLogModule`."""
-    orderBy: [StorageLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): StorageLogModuleEdge
+  """An edge for our `GraphModule`. May be used by Relay 1."""
+  graphModuleEdge(
+    """The method to use when ordering `GraphModule`."""
+    orderBy: [GraphModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): GraphModuleEdge
 }
 
-"""All input for the `deleteStorageLogModule` mutation."""
-input DeleteStorageLogModuleInput {
+"""All input for the `deleteGraphModule` mutation."""
+input DeleteGraphModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22421,31 +22510,31 @@ input DeleteStorageLogModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `TransferLogModule` mutation."""
-type DeleteTransferLogModulePayload {
+"""The output of our delete `PlansModule` mutation."""
+type DeletePlansModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `TransferLogModule` that was deleted by this mutation."""
-  transferLogModule: TransferLogModule
+  """The `PlansModule` that was deleted by this mutation."""
+  plansModule: PlansModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `TransferLogModule`. May be used by Relay 1."""
-  transferLogModuleEdge(
-    """The method to use when ordering `TransferLogModule`."""
-    orderBy: [TransferLogModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): TransferLogModuleEdge
+  """An edge for our `PlansModule`. May be used by Relay 1."""
+  plansModuleEdge(
+    """The method to use when ordering `PlansModule`."""
+    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): PlansModuleEdge
 }
 
-"""All input for the `deleteTransferLogModule` mutation."""
-input DeleteTransferLogModuleInput {
+"""All input for the `deletePlansModule` mutation."""
+input DeletePlansModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22520,64 +22609,31 @@ input DeleteNotificationsModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `PlansModule` mutation."""
-type DeletePlansModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `PlansModule` that was deleted by this mutation."""
-  plansModule: PlansModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `PlansModule`. May be used by Relay 1."""
-  plansModuleEdge(
-    """The method to use when ordering `PlansModule`."""
-    orderBy: [PlansModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): PlansModuleEdge
-}
-
-"""All input for the `deletePlansModule` mutation."""
-input DeletePlansModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-}
-
-"""The output of our delete `HierarchyModule` mutation."""
-type DeleteHierarchyModulePayload {
+"""The output of our delete `BillingProviderModule` mutation."""
+type DeleteBillingProviderModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `HierarchyModule` that was deleted by this mutation."""
-  hierarchyModule: HierarchyModule
+  """The `BillingProviderModule` that was deleted by this mutation."""
+  billingProviderModule: BillingProviderModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `HierarchyModule`. May be used by Relay 1."""
-  hierarchyModuleEdge(
-    """The method to use when ordering `HierarchyModule`."""
-    orderBy: [HierarchyModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): HierarchyModuleEdge
+  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
+  billingProviderModuleEdge(
+    """The method to use when ordering `BillingProviderModule`."""
+    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingProviderModuleEdge
 }
 
-"""All input for the `deleteHierarchyModule` mutation."""
-input DeleteHierarchyModuleInput {
+"""All input for the `deleteBillingProviderModule` mutation."""
+input DeleteBillingProviderModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22586,31 +22642,31 @@ input DeleteHierarchyModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `BillingModule` mutation."""
-type DeleteBillingModulePayload {
+"""The output of our delete `FunctionModule` mutation."""
+type DeleteFunctionModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `BillingModule` that was deleted by this mutation."""
-  billingModule: BillingModule
+  """The `FunctionModule` that was deleted by this mutation."""
+  functionModule: FunctionModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `BillingModule`. May be used by Relay 1."""
-  billingModuleEdge(
-    """The method to use when ordering `BillingModule`."""
-    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingModuleEdge
+  """An edge for our `FunctionModule`. May be used by Relay 1."""
+  functionModuleEdge(
+    """The method to use when ordering `FunctionModule`."""
+    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): FunctionModuleEdge
 }
 
-"""All input for the `deleteBillingModule` mutation."""
-input DeleteBillingModuleInput {
+"""All input for the `deleteFunctionModule` mutation."""
+input DeleteFunctionModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22619,31 +22675,31 @@ input DeleteBillingModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `BillingProviderModule` mutation."""
-type DeleteBillingProviderModulePayload {
+"""The output of our delete `HierarchyModule` mutation."""
+type DeleteHierarchyModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `BillingProviderModule` that was deleted by this mutation."""
-  billingProviderModule: BillingProviderModule
+  """The `HierarchyModule` that was deleted by this mutation."""
+  hierarchyModule: HierarchyModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `BillingProviderModule`. May be used by Relay 1."""
-  billingProviderModuleEdge(
-    """The method to use when ordering `BillingProviderModule`."""
-    orderBy: [BillingProviderModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): BillingProviderModuleEdge
+  """An edge for our `HierarchyModule`. May be used by Relay 1."""
+  hierarchyModuleEdge(
+    """The method to use when ordering `HierarchyModule`."""
+    orderBy: [HierarchyModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): HierarchyModuleEdge
 }
 
-"""All input for the `deleteBillingProviderModule` mutation."""
-input DeleteBillingProviderModuleInput {
+"""All input for the `deleteHierarchyModule` mutation."""
+input DeleteHierarchyModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
@@ -22718,6 +22774,39 @@ input DeletePermissionsModuleInput {
   id: UUID!
 }
 
+"""The output of our delete `BillingModule` mutation."""
+type DeleteBillingModulePayload {
+  """
+  The exact same `clientMutationId` that was provided in the mutation input,
+  unchanged and unused. May be used by a client to track mutations.
+  """
+  clientMutationId: String
+
+  """The `BillingModule` that was deleted by this mutation."""
+  billingModule: BillingModule
+
+  """
+  Our root query field type. Allows us to run any query from our mutation payload.
+  """
+  query: Query
+
+  """An edge for our `BillingModule`. May be used by Relay 1."""
+  billingModuleEdge(
+    """The method to use when ordering `BillingModule`."""
+    orderBy: [BillingModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): BillingModuleEdge
+}
+
+"""All input for the `deleteBillingModule` mutation."""
+input DeleteBillingModuleInput {
+  """
+  An arbitrary string value with no semantic meaning. Will be included in the
+  payload verbatim. May be used to track mutations by the client.
+  """
+  clientMutationId: String
+  id: UUID!
+}
+
 """The output of our delete `RelationProvision` mutation."""
 type DeleteRelationProvisionPayload {
   """
@@ -22788,39 +22877,6 @@ input DeleteBlueprintTemplateInput {
   id: UUID!
 }
 
-"""The output of our delete `FunctionModule` mutation."""
-type DeleteFunctionModulePayload {
-  """
-  The exact same `clientMutationId` that was provided in the mutation input,
-  unchanged and unused. May be used by a client to track mutations.
-  """
-  clientMutationId: String
-
-  """The `FunctionModule` that was deleted by this mutation."""
-  functionModule: FunctionModule
-
-  """
-  Our root query field type. Allows us to run any query from our mutation payload.
-  """
-  query: Query
-
-  """An edge for our `FunctionModule`. May be used by Relay 1."""
-  functionModuleEdge(
-    """The method to use when ordering `FunctionModule`."""
-    orderBy: [FunctionModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): FunctionModuleEdge
-}
-
-"""All input for the `deleteFunctionModule` mutation."""
-input DeleteFunctionModuleInput {
-  """
-  An arbitrary string value with no semantic meaning. Will be included in the
-  payload verbatim. May be used to track mutations by the client.
-  """
-  clientMutationId: String
-  id: UUID!
-}
-
 """The output of our delete `UserAuthModule` mutation."""
 type DeleteUserAuthModulePayload {
   """
@@ -22986,71 +23042,71 @@ input DeleteStorageModuleInput {
   id: UUID!
 }
 
-"""The output of our delete `EventsModule` mutation."""
-type DeleteEventsModulePayload {
+"""The output of our delete `EntityTypeProvision` mutation."""
+type DeleteEntityTypeProvisionPayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `EventsModule` that was deleted by this mutation."""
-  eventsModule: EventsModule
+  """The `EntityTypeProvision` that was deleted by this mutation."""
+  entityTypeProvision: EntityTypeProvision
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `EventsModule`. May be used by Relay 1."""
-  eventsModuleEdge(
-    """The method to use when ordering `EventsModule`."""
-    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): EventsModuleEdge
+  """An edge for our `EntityTypeProvision`. May be used by Relay 1."""
+  entityTypeProvisionEdge(
+    """The method to use when ordering `EntityTypeProvision`."""
+    orderBy: [EntityTypeProvisionOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): EntityTypeProvisionEdge
 }
 
-"""All input for the `deleteEventsModule` mutation."""
-input DeleteEventsModuleInput {
+"""All input for the `deleteEntityTypeProvision` mutation."""
+input DeleteEntityTypeProvisionInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
+
+  """Unique identifier for this provision row."""
   id: UUID!
 }
 
-"""The output of our delete `EntityTypeProvision` mutation."""
-type DeleteEntityTypeProvisionPayload {
+"""The output of our delete `EventsModule` mutation."""
+type DeleteEventsModulePayload {
   """
   The exact same `clientMutationId` that was provided in the mutation input,
   unchanged and unused. May be used by a client to track mutations.
   """
   clientMutationId: String
 
-  """The `EntityTypeProvision` that was deleted by this mutation."""
-  entityTypeProvision: EntityTypeProvision
+  """The `EventsModule` that was deleted by this mutation."""
+  eventsModule: EventsModule
 
   """
   Our root query field type. Allows us to run any query from our mutation payload.
   """
   query: Query
 
-  """An edge for our `EntityTypeProvision`. May be used by Relay 1."""
-  entityTypeProvisionEdge(
-    """The method to use when ordering `EntityTypeProvision`."""
-    orderBy: [EntityTypeProvisionOrderBy!]! = [PRIMARY_KEY_ASC]
-  ): EntityTypeProvisionEdge
+  """An edge for our `EventsModule`. May be used by Relay 1."""
+  eventsModuleEdge(
+    """The method to use when ordering `EventsModule`."""
+    orderBy: [EventsModuleOrderBy!]! = [PRIMARY_KEY_ASC]
+  ): EventsModuleEdge
 }
 
-"""All input for the `deleteEntityTypeProvision` mutation."""
-input DeleteEntityTypeProvisionInput {
+"""All input for the `deleteEventsModule` mutation."""
+input DeleteEventsModuleInput {
   """
   An arbitrary string value with no semantic meaning. Will be included in the
   payload verbatim. May be used to track mutations by the client.
   """
   clientMutationId: String
-
-  """Unique identifier for this provision row."""
   id: UUID!
 }
 
diff --git a/sdk/constructive-sdk/src/.targets b/sdk/constructive-sdk/src/.targets
new file mode 100644
index 000000000..bf4de0b16
--- /dev/null
+++ b/sdk/constructive-sdk/src/.targets
@@ -0,0 +1 @@
+["admin","agent","api","auth","modules","objects","usage"]
diff --git a/sdk/constructive-sdk/src/admin/README.md b/sdk/constructive-sdk/src/admin/README.md
index 75533e2d2..c9e7aa3cf 100644
--- a/sdk/constructive-sdk/src/admin/README.md
+++ b/sdk/constructive-sdk/src/admin/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 26
+- **Tables:** 30
 - **Custom queries:** 9
 - **Custom mutations:** 3
 
diff --git a/sdk/constructive-sdk/src/admin/orm/README.md b/sdk/constructive-sdk/src/admin/orm/README.md
index 027e84fff..86a46b0e3 100644
--- a/sdk/constructive-sdk/src/admin/orm/README.md
+++ b/sdk/constructive-sdk/src/admin/orm/README.md
@@ -24,10 +24,14 @@ const db = createClient({
 | `orgGetManagersRecord` | findMany, findOne, create, update, delete |
 | `orgGetSubordinatesRecord` | findMany, findOne, create, update, delete |
 | `appPermission` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultPermission` | findMany, findOne, create, update, delete |
+| `orgPermissionDefaultGrant` | findMany, findOne, create, update, delete |
 | `orgMember` | findMany, findOne, create, update, delete |
 | `appPermissionDefault` | findMany, findOne, create, update, delete |
 | `orgPermissionDefault` | findMany, findOne, create, update, delete |
+| `appPermissionDefaultPermission` | findMany, findOne, create, update, delete |
 | `appAdminGrant` | findMany, findOne, create, update, delete |
 | `appOwnerGrant` | findMany, findOne, create, update, delete |
 | `orgAdminGrant` | findMany, findOne, create, update, delete |
@@ -143,6 +147,40 @@ const updated = await db.appPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.appPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultGrant`
+
+CRUD operations for AppPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultGrant records
+const items = await db.appPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgPermission`
 
 CRUD operations for OrgPermission records.
@@ -176,6 +214,74 @@ const updated = await db.orgPermission.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.orgPermission.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.orgPermissionDefaultPermission`
+
+CRUD operations for OrgPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultPermission records
+const items = await db.orgPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultPermission.create({ data: { permissionId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
+### `db.orgPermissionDefaultGrant`
+
+CRUD operations for OrgPermissionDefaultGrant records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `isGrant` | Boolean | Yes |
+| `grantorId` | UUID | Yes |
+| `entityId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all orgPermissionDefaultGrant records
+const items = await db.orgPermissionDefaultGrant.findMany({ select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.orgPermissionDefaultGrant.findOne({ id: '<UUID>', select: { id: true, permissionId: true, isGrant: true, grantorId: true, entityId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.orgPermissionDefaultGrant.create({ data: { permissionId: '<UUID>', isGrant: '<Boolean>', grantorId: '<UUID>', entityId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.orgPermissionDefaultGrant.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.orgPermissionDefaultGrant.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.orgMember`
 
 CRUD operations for OrgMember records.
@@ -269,6 +375,38 @@ const updated = await db.orgPermissionDefault.update({ where: { id: '<UUID>' },
 const deleted = await db.orgPermissionDefault.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.appPermissionDefaultPermission`
+
+CRUD operations for AppPermissionDefaultPermission records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `permissionId` | UUID | Yes |
+| `createdAt` | Datetime | No |
+| `updatedAt` | Datetime | No |
+
+**Operations:**
+
+```typescript
+// List all appPermissionDefaultPermission records
+const items = await db.appPermissionDefaultPermission.findMany({ select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Get one by id
+const item = await db.appPermissionDefaultPermission.findOne({ id: '<UUID>', select: { id: true, permissionId: true, createdAt: true, updatedAt: true } }).execute();
+
+// Create
+const created = await db.appPermissionDefaultPermission.create({ data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.appPermissionDefaultPermission.update({ where: { id: '<UUID>' }, data: { permissionId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.appPermissionDefaultPermission.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.appAdminGrant`
 
 CRUD operations for AppAdminGrant records.
diff --git a/sdk/constructive-sdk/src/admin/orm/index.ts b/sdk/constructive-sdk/src/admin/orm/index.ts
index 4fdc6e95e..b2e6f79b3 100644
--- a/sdk/constructive-sdk/src/admin/orm/index.ts
+++ b/sdk/constructive-sdk/src/admin/orm/index.ts
@@ -8,10 +8,14 @@ import type { OrmClientConfig } from './client';
 import { OrgGetManagersRecordModel } from './models/orgGetManagersRecord';
 import { OrgGetSubordinatesRecordModel } from './models/orgGetSubordinatesRecord';
 import { AppPermissionModel } from './models/appPermission';
+import { AppPermissionDefaultGrantModel } from './models/appPermissionDefaultGrant';
 import { OrgPermissionModel } from './models/orgPermission';
+import { OrgPermissionDefaultPermissionModel } from './models/orgPermissionDefaultPermission';
+import { OrgPermissionDefaultGrantModel } from './models/orgPermissionDefaultGrant';
 import { OrgMemberModel } from './models/orgMember';
 import { AppPermissionDefaultModel } from './models/appPermissionDefault';
 import { OrgPermissionDefaultModel } from './models/orgPermissionDefault';
+import { AppPermissionDefaultPermissionModel } from './models/appPermissionDefaultPermission';
 import { AppAdminGrantModel } from './models/appAdminGrant';
 import { AppOwnerGrantModel } from './models/appOwnerGrant';
 import { OrgAdminGrantModel } from './models/orgAdminGrant';
@@ -69,10 +73,14 @@ export function createClient(config: OrmClientConfig) {
     orgGetManagersRecord: new OrgGetManagersRecordModel(client),
     orgGetSubordinatesRecord: new OrgGetSubordinatesRecordModel(client),
     appPermission: new AppPermissionModel(client),
+    appPermissionDefaultGrant: new AppPermissionDefaultGrantModel(client),
     orgPermission: new OrgPermissionModel(client),
+    orgPermissionDefaultPermission: new OrgPermissionDefaultPermissionModel(client),
+    orgPermissionDefaultGrant: new OrgPermissionDefaultGrantModel(client),
     orgMember: new OrgMemberModel(client),
     appPermissionDefault: new AppPermissionDefaultModel(client),
     orgPermissionDefault: new OrgPermissionDefaultModel(client),
+    appPermissionDefaultPermission: new AppPermissionDefaultPermissionModel(client),
     appAdminGrant: new AppAdminGrantModel(client),
     appOwnerGrant: new AppOwnerGrantModel(client),
     orgAdminGrant: new OrgAdminGrantModel(client),
diff --git a/sdk/constructive-sdk/src/admin/orm/input-types.ts b/sdk/constructive-sdk/src/admin/orm/input-types.ts
index c06ff000a..139fbae92 100644
--- a/sdk/constructive-sdk/src/admin/orm/input-types.ts
+++ b/sdk/constructive-sdk/src/admin/orm/input-types.ts
@@ -254,6 +254,17 @@ export interface AppPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface AppPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Defines available permissions as named bits within a bitmask, used by the RBAC system for access control */
 export interface OrgPermission {
   id: string;
@@ -266,6 +277,29 @@ export interface OrgPermission {
   /** Human-readable description of what this permission allows */
   description?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface OrgPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  /** Scopes this default permission to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
+/** Audit log of permission additions and removals from the defaults bitmask */
+export interface OrgPermissionDefaultGrant {
+  id: string;
+  /** References the permission being added to or removed from defaults */
+  permissionId?: string | null;
+  /** True to add the permission to defaults, false to remove it */
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  /** Scopes this audit entry to a specific entity */
+  entityId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Simplified view of active members in an entity, used for listing who belongs to an org or group */
 export interface OrgMember {
   id: string;
@@ -290,12 +324,20 @@ export interface OrgPermissionDefault {
   /** References the entity these default permissions apply to */
   entityId?: string | null;
 }
+/** Join table linking permission defaults to individual permissions; recompute trigger rebuilds the defaults bitmask */
+export interface AppPermissionDefaultPermission {
+  id: string;
+  /** References the permission included in the defaults bundle */
+  permissionId?: string | null;
+  createdAt?: string | null;
+  updatedAt?: string | null;
+}
 /** Records of admin role grants and revocations between members */
 export interface AppAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -306,7 +348,7 @@ export interface AppOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -317,7 +359,7 @@ export interface OrgAdminGrant {
   id: string;
   /** True to grant admin, false to revoke admin */
   isGrant?: boolean | null;
-  /** The member receiving or losing the admin grant */
+  /** The member receiving or losing the admin grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this admin grant applies to */
   entityId?: string | null;
@@ -330,7 +372,7 @@ export interface OrgOwnerGrant {
   id: string;
   /** True to grant ownership, false to revoke ownership */
   isGrant?: boolean | null;
-  /** The member receiving or losing the ownership grant */
+  /** The member receiving or losing the ownership grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this ownership grant applies to */
   entityId?: string | null;
@@ -392,7 +434,7 @@ export interface AppGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   grantorId?: string | null;
   createdAt?: string | null;
@@ -442,7 +484,7 @@ export interface OrgGrant {
   permissions?: string | null;
   /** True to grant the permissions, false to revoke them */
   isGrant?: boolean | null;
-  /** The member receiving or losing the permission grant */
+  /** The member receiving or losing the permission grant; NULL if user was deleted */
   actorId?: string | null;
   /** The entity (org or group) this permission grant applies to */
   entityId?: string | null;
@@ -648,11 +690,29 @@ export interface PageInfo {
 // ============ Entity Relation Types ============
 export interface OrgGetManagersRecordRelations {}
 export interface OrgGetSubordinatesRecordRelations {}
-export interface AppPermissionRelations {}
-export interface OrgPermissionRelations {}
+export interface AppPermissionRelations {
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultGrantsByPermissionId?: ConnectionResult<AppPermissionDefaultGrant>;
+}
+export interface AppPermissionDefaultGrantRelations {
+  permission?: AppPermission | null;
+}
+export interface OrgPermissionRelations {
+  orgPermissionDefaultPermissionsByPermissionId?: ConnectionResult<OrgPermissionDefaultPermission>;
+  orgPermissionDefaultGrantsByPermissionId?: ConnectionResult<OrgPermissionDefaultGrant>;
+}
+export interface OrgPermissionDefaultPermissionRelations {
+  permission?: OrgPermission | null;
+}
+export interface OrgPermissionDefaultGrantRelations {
+  permission?: OrgPermission | null;
+}
 export interface OrgMemberRelations {}
 export interface AppPermissionDefaultRelations {}
 export interface OrgPermissionDefaultRelations {}
+export interface AppPermissionDefaultPermissionRelations {
+  permission?: AppPermission | null;
+}
 export interface AppAdminGrantRelations {}
 export interface AppOwnerGrantRelations {}
 export interface OrgAdminGrantRelations {}
@@ -682,12 +742,20 @@ export type OrgGetManagersRecordWithRelations = OrgGetManagersRecord &
 export type OrgGetSubordinatesRecordWithRelations = OrgGetSubordinatesRecord &
   OrgGetSubordinatesRecordRelations;
 export type AppPermissionWithRelations = AppPermission & AppPermissionRelations;
+export type AppPermissionDefaultGrantWithRelations = AppPermissionDefaultGrant &
+  AppPermissionDefaultGrantRelations;
 export type OrgPermissionWithRelations = OrgPermission & OrgPermissionRelations;
+export type OrgPermissionDefaultPermissionWithRelations = OrgPermissionDefaultPermission &
+  OrgPermissionDefaultPermissionRelations;
+export type OrgPermissionDefaultGrantWithRelations = OrgPermissionDefaultGrant &
+  OrgPermissionDefaultGrantRelations;
 export type OrgMemberWithRelations = OrgMember & OrgMemberRelations;
 export type AppPermissionDefaultWithRelations = AppPermissionDefault &
   AppPermissionDefaultRelations;
 export type OrgPermissionDefaultWithRelations = OrgPermissionDefault &
   OrgPermissionDefaultRelations;
+export type AppPermissionDefaultPermissionWithRelations = AppPermissionDefaultPermission &
+  AppPermissionDefaultPermissionRelations;
 export type AppAdminGrantWithRelations = AppAdminGrant & AppAdminGrantRelations;
 export type AppOwnerGrantWithRelations = AppOwnerGrant & AppOwnerGrantRelations;
 export type OrgAdminGrantWithRelations = OrgAdminGrant & OrgAdminGrantRelations;
@@ -725,6 +793,26 @@ export type AppPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  appPermissionDefaultPermissionByPermissionId?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultGrantsByPermissionId?: {
+    select: AppPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: AppPermissionDefaultGrantFilter;
+    orderBy?: AppPermissionDefaultGrantOrderBy[];
+  };
+};
+export type AppPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
 };
 export type OrgPermissionSelect = {
   id?: boolean;
@@ -732,6 +820,40 @@ export type OrgPermissionSelect = {
   bitnum?: boolean;
   bitstr?: boolean;
   description?: boolean;
+  orgPermissionDefaultPermissionsByPermissionId?: {
+    select: OrgPermissionDefaultPermissionSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultPermissionFilter;
+    orderBy?: OrgPermissionDefaultPermissionOrderBy[];
+  };
+  orgPermissionDefaultGrantsByPermissionId?: {
+    select: OrgPermissionDefaultGrantSelect;
+    first?: number;
+    filter?: OrgPermissionDefaultGrantFilter;
+    orderBy?: OrgPermissionDefaultGrantOrderBy[];
+  };
+};
+export type OrgPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
+};
+export type OrgPermissionDefaultGrantSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  isGrant?: boolean;
+  grantorId?: boolean;
+  entityId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: OrgPermissionSelect;
+  };
 };
 export type OrgMemberSelect = {
   id?: boolean;
@@ -748,6 +870,15 @@ export type OrgPermissionDefaultSelect = {
   permissions?: boolean;
   entityId?: boolean;
 };
+export type AppPermissionDefaultPermissionSelect = {
+  id?: boolean;
+  permissionId?: boolean;
+  createdAt?: boolean;
+  updatedAt?: boolean;
+  permission?: {
+    select: AppPermissionSelect;
+  };
+};
 export type AppAdminGrantSelect = {
   id?: boolean;
   isGrant?: boolean;
@@ -1003,6 +1134,36 @@ export interface AppPermissionFilter {
   or?: AppPermissionFilter[];
   /** Negates the expression. */
   not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
 export interface OrgPermissionFilter {
   /** Filter by the object’s `id` field. */
@@ -1021,6 +1182,58 @@ export interface OrgPermissionFilter {
   or?: OrgPermissionFilter[];
   /** Negates the expression. */
   not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
 }
 export interface OrgMemberFilter {
   /** Filter by the object’s `id` field. */
@@ -1064,6 +1277,24 @@ export interface OrgPermissionDefaultFilter {
   /** Negates the expression. */
   not?: OrgPermissionDefaultFilter;
 }
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
 export interface AppAdminGrantFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -1603,6 +1834,22 @@ export type AppPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type AppPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgPermissionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1617,6 +1864,38 @@ export type OrgPermissionOrderBy =
   | 'BITSTR_DESC'
   | 'DESCRIPTION_ASC'
   | 'DESCRIPTION_DESC';
+export type OrgPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
+export type OrgPermissionDefaultGrantOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'IS_GRANT_ASC'
+  | 'IS_GRANT_DESC'
+  | 'GRANTOR_ID_ASC'
+  | 'GRANTOR_ID_DESC'
+  | 'ENTITY_ID_ASC'
+  | 'ENTITY_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type OrgMemberOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1647,6 +1926,18 @@ export type OrgPermissionDefaultOrderBy =
   | 'PERMISSIONS_DESC'
   | 'ENTITY_ID_ASC'
   | 'ENTITY_ID_DESC';
+export type AppPermissionDefaultPermissionOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'PERMISSION_ID_ASC'
+  | 'PERMISSION_ID_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC'
+  | 'UPDATED_AT_ASC'
+  | 'UPDATED_AT_DESC';
 export type AppAdminGrantOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -2146,6 +2437,28 @@ export interface DeleteAppPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  appPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+  };
+}
+export interface AppPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+}
+export interface UpdateAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultGrantPatch: AppPermissionDefaultGrantPatch;
+}
+export interface DeleteAppPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgPermissionInput {
   clientMutationId?: string;
   orgPermission: {
@@ -2170,6 +2483,50 @@ export interface DeleteOrgPermissionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  orgPermissionDefaultPermission: {
+    permissionId: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultPermissionPatch: OrgPermissionDefaultPermissionPatch;
+}
+export interface DeleteOrgPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
+export interface CreateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  orgPermissionDefaultGrant: {
+    permissionId: string;
+    isGrant?: boolean;
+    grantorId?: string;
+    entityId: string;
+  };
+}
+export interface OrgPermissionDefaultGrantPatch {
+  permissionId?: string | null;
+  isGrant?: boolean | null;
+  grantorId?: string | null;
+  entityId?: string | null;
+}
+export interface UpdateOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+  orgPermissionDefaultGrantPatch: OrgPermissionDefaultGrantPatch;
+}
+export interface DeleteOrgPermissionDefaultGrantInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateOrgMemberInput {
   clientMutationId?: string;
   orgMember: {
@@ -2230,11 +2587,29 @@ export interface DeleteOrgPermissionDefaultInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  appPermissionDefaultPermission: {
+    permissionId: string;
+  };
+}
+export interface AppPermissionDefaultPermissionPatch {
+  permissionId?: string | null;
+}
+export interface UpdateAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+  appPermissionDefaultPermissionPatch: AppPermissionDefaultPermissionPatch;
+}
+export interface DeleteAppPermissionDefaultPermissionInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateAppAdminGrantInput {
   clientMutationId?: string;
   appAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2256,7 +2631,7 @@ export interface CreateAppOwnerGrantInput {
   clientMutationId?: string;
   appOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2278,7 +2653,7 @@ export interface CreateOrgAdminGrantInput {
   clientMutationId?: string;
   orgAdminGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2302,7 +2677,7 @@ export interface CreateOrgOwnerGrantInput {
   clientMutationId?: string;
   orgOwnerGrant: {
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2405,7 +2780,7 @@ export interface CreateAppGrantInput {
   appGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     grantorId?: string;
   };
 }
@@ -2501,7 +2876,7 @@ export interface CreateOrgGrantInput {
   orgGrant: {
     permissions?: string;
     isGrant?: boolean;
-    actorId: string;
+    actorId?: string;
     entityId: string;
     grantorId?: string;
   };
@@ -2786,7 +3161,15 @@ export interface DeleteOrgInviteInput {
   id: string;
 }
 // ============ Connection Fields Map ============
-export const connectionFieldsMap = {} as Record<string, Record<string, string>>;
+export const connectionFieldsMap = {
+  AppPermission: {
+    appPermissionDefaultGrantsByPermissionId: 'AppPermissionDefaultGrant',
+  },
+  OrgPermission: {
+    orgPermissionDefaultPermissionsByPermissionId: 'OrgPermissionDefaultPermission',
+    orgPermissionDefaultGrantsByPermissionId: 'OrgPermissionDefaultGrant',
+  },
+} as Record<string, Record<string, string>>;
 // ============ Custom Input Types (from schema) ============
 export interface SubmitAppInviteCodeInput {
   clientMutationId?: string;
@@ -2805,6 +3188,33 @@ export interface ProvisionBucketInput {
    */
   ownerId?: string;
 }
+/** A filter to be used against many `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionToManyAppPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AppPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AppPermissionDefaultGrantFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultPermissionFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultPermissionFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultPermissionFilter;
+}
+/** A filter to be used against many `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionToManyOrgPermissionDefaultGrantFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: OrgPermissionDefaultGrantFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: OrgPermissionDefaultGrantFilter;
+}
 /** A filter to be used against ConstructiveInternalTypeEmail fields. All fields are combined with a logical ‘and.’ */
 export interface ConstructiveInternalTypeEmailFilter {
   /** Is null (if `true` is specified) or is not null (if `false` is specified). */
@@ -2917,31 +3327,375 @@ export interface ConstructiveInternalTypeImageFilter {
   /** Contained by the specified JSON. */
   containedBy?: ConstructiveInternalTypeImage;
 }
-/** A connection to a list of `AppPermission` values. */
-// ============ Payload/Return Types (for custom operations) ============
-export interface AppPermissionConnection {
-  nodes: AppPermission[];
-  edges: AppPermissionEdge[];
-  pageInfo: PageInfo;
-  totalCount: number;
+/** A filter to be used against `AppPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
 }
-export type AppPermissionConnectionSelect = {
-  nodes?: {
-    select: AppPermissionSelect;
-  };
-  edges?: {
-    select: AppPermissionEdgeSelect;
-  };
-  pageInfo?: {
-    select: PageInfoSelect;
-  };
-  totalCount?: boolean;
-};
-/** A connection to a list of `OrgPermission` values. */
-export interface OrgPermissionConnection {
-  nodes: OrgPermission[];
-  edges: OrgPermissionEdge[];
-  pageInfo: PageInfo;
+/** A filter to be used against `OrgPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against `OrgPermissionDefaultGrant` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionDefaultGrantFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `isGrant` field. */
+  isGrant?: BooleanFilter;
+  /** Filter by the object’s `grantorId` field. */
+  grantorId?: UUIDFilter;
+  /** Filter by the object’s `entityId` field. */
+  entityId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionDefaultGrantFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionDefaultGrantFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionDefaultGrantFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: OrgPermissionFilter;
+}
+/** A filter to be used against UUID fields. All fields are combined with a logical ‘and.’ */
+export interface UUIDFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against Boolean fields. All fields are combined with a logical ‘and.’ */
+export interface BooleanFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: boolean;
+  /** Not equal to the specified value. */
+  notEqualTo?: boolean;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: boolean;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: boolean;
+  /** Included in the specified list. */
+  in?: boolean[];
+  /** Not included in the specified list. */
+  notIn?: boolean[];
+  /** Less than the specified value. */
+  lessThan?: boolean;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: boolean;
+  /** Greater than the specified value. */
+  greaterThan?: boolean;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: boolean;
+}
+/** A filter to be used against Datetime fields. All fields are combined with a logical ‘and.’ */
+export interface DatetimeFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionFilter;
+  /** Filter by the object’s `appPermissionDefaultPermissionByPermissionId` relation. */
+  appPermissionDefaultPermissionByPermissionId?: AppPermissionDefaultPermissionFilter;
+  /** A related `appPermissionDefaultPermissionByPermissionId` exists. */
+  appPermissionDefaultPermissionByPermissionIdExists?: boolean;
+  /** Filter by the object’s `appPermissionDefaultGrantsByPermissionId` relation. */
+  appPermissionDefaultGrantsByPermissionId?: AppPermissionToManyAppPermissionDefaultGrantFilter;
+  /** `appPermissionDefaultGrantsByPermissionId` exist. */
+  appPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against `OrgPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface OrgPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `bitnum` field. */
+  bitnum?: IntFilter;
+  /** Filter by the object’s `bitstr` field. */
+  bitstr?: BitStringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: OrgPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: OrgPermissionFilter[];
+  /** Negates the expression. */
+  not?: OrgPermissionFilter;
+  /** Filter by the object’s `orgPermissionDefaultPermissionsByPermissionId` relation. */
+  orgPermissionDefaultPermissionsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultPermissionFilter;
+  /** `orgPermissionDefaultPermissionsByPermissionId` exist. */
+  orgPermissionDefaultPermissionsByPermissionIdExist?: boolean;
+  /** Filter by the object’s `orgPermissionDefaultGrantsByPermissionId` relation. */
+  orgPermissionDefaultGrantsByPermissionId?: OrgPermissionToManyOrgPermissionDefaultGrantFilter;
+  /** `orgPermissionDefaultGrantsByPermissionId` exist. */
+  orgPermissionDefaultGrantsByPermissionIdExist?: boolean;
+}
+/** A filter to be used against String fields. All fields are combined with a logical ‘and.’ */
+export interface StringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+  /** Contains the specified string (case-sensitive). */
+  includes?: string;
+  /** Does not contain the specified string (case-sensitive). */
+  notIncludes?: string;
+  /** Contains the specified string (case-insensitive). */
+  includesInsensitive?: string;
+  /** Does not contain the specified string (case-insensitive). */
+  notIncludesInsensitive?: string;
+  /** Starts with the specified string (case-sensitive). */
+  startsWith?: string;
+  /** Does not start with the specified string (case-sensitive). */
+  notStartsWith?: string;
+  /** Starts with the specified string (case-insensitive). */
+  startsWithInsensitive?: string;
+  /** Does not start with the specified string (case-insensitive). */
+  notStartsWithInsensitive?: string;
+  /** Ends with the specified string (case-sensitive). */
+  endsWith?: string;
+  /** Does not end with the specified string (case-sensitive). */
+  notEndsWith?: string;
+  /** Ends with the specified string (case-insensitive). */
+  endsWithInsensitive?: string;
+  /** Does not end with the specified string (case-insensitive). */
+  notEndsWithInsensitive?: string;
+  /** Matches the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  like?: string;
+  /** Does not match the specified pattern (case-sensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLike?: string;
+  /** Matches the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  likeInsensitive?: string;
+  /** Does not match the specified pattern (case-insensitive). An underscore (_) matches any single character; a percent sign (%) matches any sequence of zero or more characters. */
+  notLikeInsensitive?: string;
+  /** Equal to the specified value (case-insensitive). */
+  equalToInsensitive?: string;
+  /** Not equal to the specified value (case-insensitive). */
+  notEqualToInsensitive?: string;
+  /** Not equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  distinctFromInsensitive?: string;
+  /** Equal to the specified value, treating null like an ordinary value (case-insensitive). */
+  notDistinctFromInsensitive?: string;
+  /** Included in the specified list (case-insensitive). */
+  inInsensitive?: string[];
+  /** Not included in the specified list (case-insensitive). */
+  notInInsensitive?: string[];
+  /** Less than the specified value (case-insensitive). */
+  lessThanInsensitive?: string;
+  /** Less than or equal to the specified value (case-insensitive). */
+  lessThanOrEqualToInsensitive?: string;
+  /** Greater than the specified value (case-insensitive). */
+  greaterThanInsensitive?: string;
+  /** Greater than or equal to the specified value (case-insensitive). */
+  greaterThanOrEqualToInsensitive?: string;
+}
+/** A filter to be used against Int fields. All fields are combined with a logical ‘and.’ */
+export interface IntFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: number;
+  /** Not equal to the specified value. */
+  notEqualTo?: number;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: number;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: number;
+  /** Included in the specified list. */
+  in?: number[];
+  /** Not included in the specified list. */
+  notIn?: number[];
+  /** Less than the specified value. */
+  lessThan?: number;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: number;
+  /** Greater than the specified value. */
+  greaterThan?: number;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: number;
+}
+/** A filter to be used against BitString fields. All fields are combined with a logical ‘and.’ */
+export interface BitStringFilter {
+  /** Is null (if `true` is specified) or is not null (if `false` is specified). */
+  isNull?: boolean;
+  /** Equal to the specified value. */
+  equalTo?: string;
+  /** Not equal to the specified value. */
+  notEqualTo?: string;
+  /** Not equal to the specified value, treating null like an ordinary value. */
+  distinctFrom?: string;
+  /** Equal to the specified value, treating null like an ordinary value. */
+  notDistinctFrom?: string;
+  /** Included in the specified list. */
+  in?: string[];
+  /** Not included in the specified list. */
+  notIn?: string[];
+  /** Less than the specified value. */
+  lessThan?: string;
+  /** Less than or equal to the specified value. */
+  lessThanOrEqualTo?: string;
+  /** Greater than the specified value. */
+  greaterThan?: string;
+  /** Greater than or equal to the specified value. */
+  greaterThanOrEqualTo?: string;
+}
+/** A filter to be used against `AppPermissionDefaultPermission` object types. All fields are combined with a logical ‘and.’ */
+export interface AppPermissionDefaultPermissionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `permissionId` field. */
+  permissionId?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Checks for all expressions in this list. */
+  and?: AppPermissionDefaultPermissionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AppPermissionDefaultPermissionFilter[];
+  /** Negates the expression. */
+  not?: AppPermissionDefaultPermissionFilter;
+  /** Filter by the object’s `permission` relation. */
+  permission?: AppPermissionFilter;
+}
+/** A connection to a list of `AppPermission` values. */
+// ============ Payload/Return Types (for custom operations) ============
+export interface AppPermissionConnection {
+  nodes: AppPermission[];
+  edges: AppPermissionEdge[];
+  pageInfo: PageInfo;
+  totalCount: number;
+}
+export type AppPermissionConnectionSelect = {
+  nodes?: {
+    select: AppPermissionSelect;
+  };
+  edges?: {
+    select: AppPermissionEdgeSelect;
+  };
+  pageInfo?: {
+    select: PageInfoSelect;
+  };
+  totalCount?: boolean;
+};
+/** A connection to a list of `OrgPermission` values. */
+export interface OrgPermissionConnection {
+  nodes: OrgPermission[];
+  edges: OrgPermissionEdge[];
+  pageInfo: PageInfo;
   totalCount: number;
 }
 export type OrgPermissionConnectionSelect = {
@@ -3039,6 +3793,51 @@ export type DeleteAppPermissionPayloadSelect = {
     select: AppPermissionEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was created by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type CreateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was updated by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type UpdateAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultGrant` that was deleted by this mutation. */
+  appPermissionDefaultGrant?: AppPermissionDefaultGrant | null;
+  appPermissionDefaultGrantEdge?: AppPermissionDefaultGrantEdge | null;
+}
+export type DeleteAppPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultGrant?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+  appPermissionDefaultGrantEdge?: {
+    select: AppPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgPermissionPayload {
   clientMutationId?: string | null;
   /** The `OrgPermission` that was created by this mutation. */
@@ -3084,6 +3883,96 @@ export type DeleteOrgPermissionPayloadSelect = {
     select: OrgPermissionEdgeSelect;
   };
 };
+export interface CreateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was created by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type CreateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was updated by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type UpdateOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultPermission` that was deleted by this mutation. */
+  orgPermissionDefaultPermission?: OrgPermissionDefaultPermission | null;
+  orgPermissionDefaultPermissionEdge?: OrgPermissionDefaultPermissionEdge | null;
+}
+export type DeleteOrgPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultPermission?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+  orgPermissionDefaultPermissionEdge?: {
+    select: OrgPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface CreateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was created by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type CreateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface UpdateOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was updated by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type UpdateOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
+export interface DeleteOrgPermissionDefaultGrantPayload {
+  clientMutationId?: string | null;
+  /** The `OrgPermissionDefaultGrant` that was deleted by this mutation. */
+  orgPermissionDefaultGrant?: OrgPermissionDefaultGrant | null;
+  orgPermissionDefaultGrantEdge?: OrgPermissionDefaultGrantEdge | null;
+}
+export type DeleteOrgPermissionDefaultGrantPayloadSelect = {
+  clientMutationId?: boolean;
+  orgPermissionDefaultGrant?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+  orgPermissionDefaultGrantEdge?: {
+    select: OrgPermissionDefaultGrantEdgeSelect;
+  };
+};
 export interface CreateOrgMemberPayload {
   clientMutationId?: string | null;
   /** The `OrgMember` that was created by this mutation. */
@@ -3219,6 +4108,51 @@ export type DeleteOrgPermissionDefaultPayloadSelect = {
     select: OrgPermissionDefaultEdgeSelect;
   };
 };
+export interface CreateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was created by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type CreateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface UpdateAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was updated by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type UpdateAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
+export interface DeleteAppPermissionDefaultPermissionPayload {
+  clientMutationId?: string | null;
+  /** The `AppPermissionDefaultPermission` that was deleted by this mutation. */
+  appPermissionDefaultPermission?: AppPermissionDefaultPermission | null;
+  appPermissionDefaultPermissionEdge?: AppPermissionDefaultPermissionEdge | null;
+}
+export type DeleteAppPermissionDefaultPermissionPayloadSelect = {
+  clientMutationId?: boolean;
+  appPermissionDefaultPermission?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+  appPermissionDefaultPermissionEdge?: {
+    select: AppPermissionDefaultPermissionEdgeSelect;
+  };
+};
 export interface CreateAppAdminGrantPayload {
   clientMutationId?: string | null;
   /** The `AppAdminGrant` that was created by this mutation. */
@@ -4115,6 +5049,42 @@ export type OrgPermissionEdgeSelect = {
     select: OrgPermissionSelect;
   };
 };
+/** A `AppPermissionDefaultGrant` edge in the connection. */
+export interface AppPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultGrant` at the end of the edge. */
+  node?: AppPermissionDefaultGrant | null;
+}
+export type AppPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultGrantSelect;
+  };
+};
+/** A `OrgPermissionDefaultPermission` edge in the connection. */
+export interface OrgPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultPermission` at the end of the edge. */
+  node?: OrgPermissionDefaultPermission | null;
+}
+export type OrgPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultPermissionSelect;
+  };
+};
+/** A `OrgPermissionDefaultGrant` edge in the connection. */
+export interface OrgPermissionDefaultGrantEdge {
+  cursor?: string | null;
+  /** The `OrgPermissionDefaultGrant` at the end of the edge. */
+  node?: OrgPermissionDefaultGrant | null;
+}
+export type OrgPermissionDefaultGrantEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: OrgPermissionDefaultGrantSelect;
+  };
+};
 /** A `OrgMember` edge in the connection. */
 export interface OrgMemberEdge {
   cursor?: string | null;
@@ -4151,6 +5121,18 @@ export type OrgPermissionDefaultEdgeSelect = {
     select: OrgPermissionDefaultSelect;
   };
 };
+/** A `AppPermissionDefaultPermission` edge in the connection. */
+export interface AppPermissionDefaultPermissionEdge {
+  cursor?: string | null;
+  /** The `AppPermissionDefaultPermission` at the end of the edge. */
+  node?: AppPermissionDefaultPermission | null;
+}
+export type AppPermissionDefaultPermissionEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: AppPermissionDefaultPermissionSelect;
+  };
+};
 /** A `AppAdminGrant` edge in the connection. */
 export interface AppAdminGrantEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultGrant.ts b/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultGrant.ts
new file mode 100644
index 000000000..691561188
--- /dev/null
+++ b/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * AppPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultGrant,
+  AppPermissionDefaultGrantWithRelations,
+  AppPermissionDefaultGrantSelect,
+  AppPermissionDefaultGrantFilter,
+  AppPermissionDefaultGrantOrderBy,
+  CreateAppPermissionDefaultGrantInput,
+  UpdateAppPermissionDefaultGrantInput,
+  AppPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, AppPermissionDefaultGrantFilter, AppPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultGrant',
+      'appPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultGrantFilter',
+      'AppPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'appPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultGrant: data.appPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateAppPermissionDefaultGrantInput['appPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultGrant',
+      'createAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'createAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultGrant',
+      'updateAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultGrantInput',
+      'id',
+      'appPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'updateAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultGrant: {
+      appPermissionDefaultGrant: InferSelectResult<AppPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultGrant',
+      'deleteAppPermissionDefaultGrant',
+      'appPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultGrant',
+      fieldName: 'deleteAppPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultPermission.ts b/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultPermission.ts
new file mode 100644
index 000000000..eeee28fad
--- /dev/null
+++ b/sdk/constructive-sdk/src/admin/orm/models/appPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * AppPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  AppPermissionDefaultPermission,
+  AppPermissionDefaultPermissionWithRelations,
+  AppPermissionDefaultPermissionSelect,
+  AppPermissionDefaultPermissionFilter,
+  AppPermissionDefaultPermissionOrderBy,
+  CreateAppPermissionDefaultPermissionInput,
+  UpdateAppPermissionDefaultPermissionInput,
+  AppPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class AppPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends AppPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      AppPermissionDefaultPermissionFilter,
+      AppPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends AppPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    appPermissionDefaultPermission: InferSelectResult<
+      AppPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'AppPermissionDefaultPermission',
+      'appPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'AppPermissionDefaultPermissionFilter',
+      'AppPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'appPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        appPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<AppPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        appPermissionDefaultPermission: data.appPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends AppPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateAppPermissionDefaultPermissionInput['appPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'AppPermissionDefaultPermission',
+      'createAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateAppPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'createAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends AppPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      AppPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'AppPermissionDefaultPermission',
+      'updateAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateAppPermissionDefaultPermissionInput',
+      'id',
+      'appPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'updateAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends AppPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, AppPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteAppPermissionDefaultPermission: {
+      appPermissionDefaultPermission: InferSelectResult<
+        AppPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'AppPermissionDefaultPermission',
+      'deleteAppPermissionDefaultPermission',
+      'appPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteAppPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'AppPermissionDefaultPermission',
+      fieldName: 'deleteAppPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-sdk/src/admin/orm/models/index.ts b/sdk/constructive-sdk/src/admin/orm/models/index.ts
index 3580afbca..7d2ee43b7 100644
--- a/sdk/constructive-sdk/src/admin/orm/models/index.ts
+++ b/sdk/constructive-sdk/src/admin/orm/models/index.ts
@@ -6,10 +6,14 @@
 export { OrgGetManagersRecordModel } from './orgGetManagersRecord';
 export { OrgGetSubordinatesRecordModel } from './orgGetSubordinatesRecord';
 export { AppPermissionModel } from './appPermission';
+export { AppPermissionDefaultGrantModel } from './appPermissionDefaultGrant';
 export { OrgPermissionModel } from './orgPermission';
+export { OrgPermissionDefaultPermissionModel } from './orgPermissionDefaultPermission';
+export { OrgPermissionDefaultGrantModel } from './orgPermissionDefaultGrant';
 export { OrgMemberModel } from './orgMember';
 export { AppPermissionDefaultModel } from './appPermissionDefault';
 export { OrgPermissionDefaultModel } from './orgPermissionDefault';
+export { AppPermissionDefaultPermissionModel } from './appPermissionDefaultPermission';
 export { AppAdminGrantModel } from './appAdminGrant';
 export { AppOwnerGrantModel } from './appOwnerGrant';
 export { OrgAdminGrantModel } from './orgAdminGrant';
diff --git a/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultGrant.ts b/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultGrant.ts
new file mode 100644
index 000000000..2f1a709be
--- /dev/null
+++ b/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultGrant.ts
@@ -0,0 +1,246 @@
+/**
+ * OrgPermissionDefaultGrant model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultGrant,
+  OrgPermissionDefaultGrantWithRelations,
+  OrgPermissionDefaultGrantSelect,
+  OrgPermissionDefaultGrantFilter,
+  OrgPermissionDefaultGrantOrderBy,
+  CreateOrgPermissionDefaultGrantInput,
+  UpdateOrgPermissionDefaultGrantInput,
+  OrgPermissionDefaultGrantPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultGrantModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindManyArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrants: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrants',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultGrantSelect>(
+    args: FindFirstArgs<S, OrgPermissionDefaultGrantFilter, OrgPermissionDefaultGrantOrderBy> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultGrantSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrants',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultGrantFilter',
+      'OrgPermissionDefaultGrantOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'orgPermissionDefaultGrant',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultGrants?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultGrant: data.orgPermissionDefaultGrants?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultGrantSelect>(
+    args: CreateArgs<S, CreateOrgPermissionDefaultGrantInput['orgPermissionDefaultGrant']> & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultGrant',
+      'createOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultGrantInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'createOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultGrantSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultGrantPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'updateOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultGrantInput',
+      'id',
+      'orgPermissionDefaultGrantPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'updateOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultGrantSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultGrantSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultGrant: {
+      orgPermissionDefaultGrant: InferSelectResult<OrgPermissionDefaultGrantWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultGrant',
+      'deleteOrgPermissionDefaultGrant',
+      'orgPermissionDefaultGrant',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultGrantInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultGrant',
+      fieldName: 'deleteOrgPermissionDefaultGrant',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultPermission.ts b/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultPermission.ts
new file mode 100644
index 000000000..7c898408d
--- /dev/null
+++ b/sdk/constructive-sdk/src/admin/orm/models/orgPermissionDefaultPermission.ts
@@ -0,0 +1,272 @@
+/**
+ * OrgPermissionDefaultPermission model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  OrgPermissionDefaultPermission,
+  OrgPermissionDefaultPermissionWithRelations,
+  OrgPermissionDefaultPermissionSelect,
+  OrgPermissionDefaultPermissionFilter,
+  OrgPermissionDefaultPermissionOrderBy,
+  CreateOrgPermissionDefaultPermissionInput,
+  UpdateOrgPermissionDefaultPermissionInput,
+  OrgPermissionDefaultPermissionPatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class OrgPermissionDefaultPermissionModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindManyArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermissions: ConnectionResult<
+      InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>
+    >;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermissions',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends OrgPermissionDefaultPermissionSelect>(
+    args: FindFirstArgs<
+      S,
+      OrgPermissionDefaultPermissionFilter,
+      OrgPermissionDefaultPermissionOrderBy
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends OrgPermissionDefaultPermissionSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    orgPermissionDefaultPermission: InferSelectResult<
+      OrgPermissionDefaultPermissionWithRelations,
+      S
+    > | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'OrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermissions',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'OrgPermissionDefaultPermissionFilter',
+      'OrgPermissionDefaultPermissionOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'orgPermissionDefaultPermission',
+      document,
+      variables,
+      transform: (data: {
+        orgPermissionDefaultPermissions?: {
+          nodes?: InferSelectResult<OrgPermissionDefaultPermissionWithRelations, S>[];
+        };
+      }) => ({
+        orgPermissionDefaultPermission: data.orgPermissionDefaultPermissions?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends OrgPermissionDefaultPermissionSelect>(
+    args: CreateArgs<
+      S,
+      CreateOrgPermissionDefaultPermissionInput['orgPermissionDefaultPermission']
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    createOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'OrgPermissionDefaultPermission',
+      'createOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.data,
+      'CreateOrgPermissionDefaultPermissionInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'createOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  update<S extends OrgPermissionDefaultPermissionSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      OrgPermissionDefaultPermissionPatch
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    updateOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'updateOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateOrgPermissionDefaultPermissionInput',
+      'id',
+      'orgPermissionDefaultPermissionPatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'updateOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+  delete<S extends OrgPermissionDefaultPermissionSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, OrgPermissionDefaultPermissionSelect>
+  ): QueryBuilder<{
+    deleteOrgPermissionDefaultPermission: {
+      orgPermissionDefaultPermission: InferSelectResult<
+        OrgPermissionDefaultPermissionWithRelations,
+        S
+      >;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'OrgPermissionDefaultPermission',
+      'deleteOrgPermissionDefaultPermission',
+      'orgPermissionDefaultPermission',
+      {
+        id: args.where.id,
+      },
+      'DeleteOrgPermissionDefaultPermissionInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'OrgPermissionDefaultPermission',
+      fieldName: 'deleteOrgPermissionDefaultPermission',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-sdk/src/agent/orm/README.md b/sdk/constructive-sdk/src/agent/orm/README.md
index 61b29a99f..b8063a2d3 100644
--- a/sdk/constructive-sdk/src/agent/orm/README.md
+++ b/sdk/constructive-sdk/src/agent/orm/README.md
@@ -162,26 +162,27 @@ CRUD operations for AgentMessage records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `parts` | JSON | Yes |
 | `threadId` | UUID | Yes |
 | `authorRole` | String | Yes |
 | `model` | String | Yes |
+| `agentId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentMessage records
-const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const items = await db.agentMessage.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Get one by id
-const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, parts: true, threadId: true, authorRole: true, model: true } }).execute();
+const item = await db.agentMessage.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, parts: true, threadId: true, authorRole: true, model: true, agentId: true } }).execute();
 
 // Create
-const created = await db.agentMessage.create({ data: { ownerId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentMessage.create({ data: { actorId: '<UUID>', parts: '<JSON>', threadId: '<UUID>', authorRole: '<String>', model: '<String>', agentId: '<UUID>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentMessage.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentMessage.delete({ where: { id: '<UUID>' } }).execute();
@@ -198,7 +199,7 @@ CRUD operations for AgentTask records.
 | `id` | UUID | No |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
-| `ownerId` | UUID | Yes |
+| `actorId` | UUID | Yes |
 | `status` | String | Yes |
 | `planId` | UUID | Yes |
 | `description` | String | Yes |
@@ -215,16 +216,16 @@ CRUD operations for AgentTask records.
 
 ```typescript
 // List all agentTask records
-const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const items = await db.agentTask.findMany({ select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Get one by id
-const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, ownerId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
+const item = await db.agentTask.findOne({ id: '<UUID>', select: { id: true, createdAt: true, updatedAt: true, actorId: true, status: true, planId: true, description: true, source: true, error: true, orderIndex: true, requiresApproval: true, approvalStatus: true, approvedBy: true, approvedAt: true, approvalFeedback: true } }).execute();
 
 // Create
-const created = await db.agentTask.create({ data: { ownerId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
+const created = await db.agentTask.create({ data: { actorId: '<UUID>', status: '<String>', planId: '<UUID>', description: '<String>', source: '<String>', error: '<String>', orderIndex: '<Int>', requiresApproval: '<Boolean>', approvalStatus: '<String>', approvedBy: '<UUID>', approvedAt: '<Datetime>', approvalFeedback: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { ownerId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.agentTask.update({ where: { id: '<UUID>' }, data: { actorId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
 const deleted = await db.agentTask.delete({ where: { id: '<UUID>' } }).execute();
diff --git a/sdk/constructive-sdk/src/agent/orm/input-types.ts b/sdk/constructive-sdk/src/agent/orm/input-types.ts
index 0e4fdc0c2..79b4485c9 100644
--- a/sdk/constructive-sdk/src/agent/orm/input-types.ts
+++ b/sdk/constructive-sdk/src/agent/orm/input-types.ts
@@ -304,8 +304,8 @@ export interface AgentMessage {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this message */
-  ownerId?: string | null;
+  /** User who authored this message */
+  actorId?: string | null;
   /** Message content: TextPart and ToolPart array */
   parts?: Record<string, unknown> | null;
   /** Foreign key to agent_thread */
@@ -314,14 +314,16 @@ export interface AgentMessage {
   authorRole?: string | null;
   /** LLM model that generated this response */
   model?: string | null;
+  /** Agent that authored this message (NULL for human messages) */
+  agentId?: string | null;
 }
 /** Task within a plan, with ordering and optional approval gates */
 export interface AgentTask {
   id: string;
   createdAt?: string | null;
   updatedAt?: string | null;
-  /** User who owns this task */
-  ownerId?: string | null;
+  /** User who authored this task */
+  actorId?: string | null;
   /** Current status of this task */
   status?: string | null;
   /** Foreign key to agent_plan */
@@ -465,6 +467,7 @@ export interface AgentRelations {
   parent?: Agent | null;
   persona?: AgentPersona | null;
   agentThreads?: ConnectionResult<AgentThread>;
+  agentMessages?: ConnectionResult<AgentMessage>;
   childAgents?: ConnectionResult<Agent>;
 }
 export interface AgentThreadRelations {
@@ -476,6 +479,7 @@ export interface AgentThreadRelations {
   agentPlansByThreadId?: ConnectionResult<AgentPlan>;
 }
 export interface AgentMessageRelations {
+  agent?: Agent | null;
   thread?: AgentThread | null;
 }
 export interface AgentTaskRelations {
@@ -545,6 +549,12 @@ export type AgentSelect = {
     filter?: AgentThreadFilter;
     orderBy?: AgentThreadOrderBy[];
   };
+  agentMessages?: {
+    select: AgentMessageSelect;
+    first?: number;
+    filter?: AgentMessageFilter;
+    orderBy?: AgentMessageOrderBy[];
+  };
   childAgents?: {
     select: AgentSelect;
     first?: number;
@@ -600,11 +610,15 @@ export type AgentMessageSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   parts?: boolean;
   threadId?: boolean;
   authorRole?: boolean;
   model?: boolean;
+  agentId?: boolean;
+  agent?: {
+    select: AgentSelect;
+  };
   thread?: {
     select: AgentThreadSelect;
   };
@@ -613,7 +627,7 @@ export type AgentTaskSelect = {
   id?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
-  ownerId?: boolean;
+  actorId?: boolean;
   status?: boolean;
   planId?: boolean;
   description?: boolean;
@@ -781,6 +795,10 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
@@ -855,8 +873,8 @@ export interface AgentMessageFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `parts` field. */
   parts?: JSONFilter;
   /** Filter by the object’s `threadId` field. */
@@ -865,12 +883,18 @@ export interface AgentMessageFilter {
   authorRole?: StringFilter;
   /** Filter by the object’s `model` field. */
   model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: AgentMessageFilter[];
   /** Checks for any expressions in this list. */
   or?: AgentMessageFilter[];
   /** Negates the expression. */
   not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
   /** Filter by the object’s `thread` relation. */
   thread?: AgentThreadFilter;
 }
@@ -881,8 +905,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1164,8 +1188,8 @@ export type AgentMessageOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'PARTS_ASC'
   | 'PARTS_DESC'
   | 'THREAD_ID_ASC'
@@ -1173,7 +1197,9 @@ export type AgentMessageOrderBy =
   | 'AUTHOR_ROLE_ASC'
   | 'AUTHOR_ROLE_DESC'
   | 'MODEL_ASC'
-  | 'MODEL_DESC';
+  | 'MODEL_DESC'
+  | 'AGENT_ID_ASC'
+  | 'AGENT_ID_DESC';
 export type AgentTaskOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -1184,8 +1210,8 @@ export type AgentTaskOrderBy =
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
   | 'UPDATED_AT_DESC'
-  | 'OWNER_ID_ASC'
-  | 'OWNER_ID_DESC'
+  | 'ACTOR_ID_ASC'
+  | 'ACTOR_ID_DESC'
   | 'STATUS_ASC'
   | 'STATUS_DESC'
   | 'PLAN_ID_ASC'
@@ -1440,19 +1466,21 @@ export interface DeleteAgentThreadInput {
 export interface CreateAgentMessageInput {
   clientMutationId?: string;
   agentMessage: {
-    ownerId?: string;
+    actorId?: string;
     parts?: Record<string, unknown>;
     threadId: string;
     authorRole: string;
     model?: string;
+    agentId?: string;
   };
 }
 export interface AgentMessagePatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   parts?: Record<string, unknown> | null;
   threadId?: string | null;
   authorRole?: string | null;
   model?: string | null;
+  agentId?: string | null;
 }
 export interface UpdateAgentMessageInput {
   clientMutationId?: string;
@@ -1466,7 +1494,7 @@ export interface DeleteAgentMessageInput {
 export interface CreateAgentTaskInput {
   clientMutationId?: string;
   agentTask: {
-    ownerId?: string;
+    actorId?: string;
     status?: string;
     planId: string;
     description: string;
@@ -1481,7 +1509,7 @@ export interface CreateAgentTaskInput {
   };
 }
 export interface AgentTaskPatch {
-  ownerId?: string | null;
+  actorId?: string | null;
   status?: string | null;
   planId?: string | null;
   description?: string | null;
@@ -1644,6 +1672,7 @@ export const connectionFieldsMap = {
   },
   Agent: {
     agentThreads: 'AgentThread',
+    agentMessages: 'AgentMessage',
     childAgents: 'Agent',
   },
   AgentThread: {
@@ -1686,6 +1715,15 @@ export interface AgentToManyAgentThreadFilter {
   /** Filters to entities where no related entity matches. */
   none?: AgentThreadFilter;
 }
+/** A filter to be used against many `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentToManyAgentMessageFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: AgentMessageFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: AgentMessageFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: AgentMessageFilter;
+}
 /** A filter to be used against many `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentToManyAgentFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -1847,8 +1885,8 @@ export interface AgentTaskFilter {
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
   /** Filter by the object’s `status` field. */
   status?: StringFilter;
   /** Filter by the object’s `planId` field. */
@@ -1943,6 +1981,39 @@ export interface AgentThreadFilter {
   /** `agentPlansByThreadId` exist. */
   agentPlansByThreadIdExist?: boolean;
 }
+/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
+export interface AgentMessageFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
+  /** Filter by the object’s `updatedAt` field. */
+  updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `actorId` field. */
+  actorId?: UUIDFilter;
+  /** Filter by the object’s `parts` field. */
+  parts?: JSONFilter;
+  /** Filter by the object’s `threadId` field. */
+  threadId?: UUIDFilter;
+  /** Filter by the object’s `authorRole` field. */
+  authorRole?: StringFilter;
+  /** Filter by the object’s `model` field. */
+  model?: StringFilter;
+  /** Filter by the object’s `agentId` field. */
+  agentId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: AgentMessageFilter[];
+  /** Checks for any expressions in this list. */
+  or?: AgentMessageFilter[];
+  /** Negates the expression. */
+  not?: AgentMessageFilter;
+  /** Filter by the object’s `agent` relation. */
+  agent?: AgentFilter;
+  /** A related `agent` exists. */
+  agentExists?: boolean;
+  /** Filter by the object’s `thread` relation. */
+  thread?: AgentThreadFilter;
+}
 /** A filter to be used against `Agent` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentFilter {
   /** Filter by the object’s `id` field. */
@@ -1985,38 +2056,15 @@ export interface AgentFilter {
   agentThreads?: AgentToManyAgentThreadFilter;
   /** `agentThreads` exist. */
   agentThreadsExist?: boolean;
+  /** Filter by the object’s `agentMessages` relation. */
+  agentMessages?: AgentToManyAgentMessageFilter;
+  /** `agentMessages` exist. */
+  agentMessagesExist?: boolean;
   /** Filter by the object’s `childAgents` relation. */
   childAgents?: AgentToManyAgentFilter;
   /** `childAgents` exist. */
   childAgentsExist?: boolean;
 }
-/** A filter to be used against `AgentMessage` object types. All fields are combined with a logical ‘and.’ */
-export interface AgentMessageFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Filter by the object’s `updatedAt` field. */
-  updatedAt?: DatetimeFilter;
-  /** Filter by the object’s `ownerId` field. */
-  ownerId?: UUIDFilter;
-  /** Filter by the object’s `parts` field. */
-  parts?: JSONFilter;
-  /** Filter by the object’s `threadId` field. */
-  threadId?: UUIDFilter;
-  /** Filter by the object’s `authorRole` field. */
-  authorRole?: StringFilter;
-  /** Filter by the object’s `model` field. */
-  model?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: AgentMessageFilter[];
-  /** Checks for any expressions in this list. */
-  or?: AgentMessageFilter[];
-  /** Negates the expression. */
-  not?: AgentMessageFilter;
-  /** Filter by the object’s `thread` relation. */
-  thread?: AgentThreadFilter;
-}
 /** A filter to be used against `AgentPlan` object types. All fields are combined with a logical ‘and.’ */
 export interface AgentPlanFilter {
   /** Filter by the object’s `id` field. */
diff --git a/sdk/constructive-sdk/src/api/README.md b/sdk/constructive-sdk/src/api/README.md
index 6873e2e66..017315ed0 100644
--- a/sdk/constructive-sdk/src/api/README.md
+++ b/sdk/constructive-sdk/src/api/README.md
@@ -8,7 +8,7 @@
 
 ## Overview
 
-- **Tables:** 45
+- **Tables:** 46
 - **Custom queries:** 1
 - **Custom mutations:** 9
 
diff --git a/sdk/constructive-sdk/src/api/orm/README.md b/sdk/constructive-sdk/src/api/orm/README.md
index 8690e7411..1801a47b3 100644
--- a/sdk/constructive-sdk/src/api/orm/README.md
+++ b/sdk/constructive-sdk/src/api/orm/README.md
@@ -43,6 +43,7 @@ const db = createClient({
 | `schemaGrant` | findMany, findOne, create, update, delete |
 | `defaultPrivilege` | findMany, findOne, create, update, delete |
 | `enum` | findMany, findOne, create, update, delete |
+| `compositeType` | findMany, findOne, create, update, delete |
 | `apiSchema` | findMany, findOne, create, update, delete |
 | `apiModule` | findMany, findOne, create, update, delete |
 | `domain` | findMany, findOne, create, update, delete |
@@ -171,18 +172,18 @@ CRUD operations for Table records.
 | `partitionStrategy` | String | Yes |
 | `partitionKeyNames` | String | Yes |
 | `partitionKeyTypes` | String | Yes |
-| `inheritsId` | UUID | Yes |
 | `createdAt` | Datetime | No |
 | `updatedAt` | Datetime | No |
+| `inheritsId` | UUID | Yes |
 
 **Operations:**
 
 ```typescript
 // List all table records
-const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const items = await db.table.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Get one by id
-const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, inheritsId: true, createdAt: true, updatedAt: true } }).execute();
+const item = await db.table.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, smartTags: true, category: true, module: true, scope: true, useRls: true, timestamps: true, peoplestamps: true, pluralName: true, singularName: true, tags: true, partitioned: true, partitionStrategy: true, partitionKeyNames: true, partitionKeyTypes: true, createdAt: true, updatedAt: true, inheritsId: true } }).execute();
 
 // Create
 const created = await db.table.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', useRls: '<Boolean>', timestamps: '<Boolean>', peoplestamps: '<Boolean>', pluralName: '<String>', singularName: '<String>', tags: '<String>', partitioned: '<Boolean>', partitionStrategy: '<String>', partitionKeyNames: '<String>', partitionKeyTypes: '<String>', inheritsId: '<UUID>' }, select: { id: true } }).execute();
@@ -970,6 +971,46 @@ const updated = await db.enum.update({ where: { id: '<UUID>' }, data: { database
 const deleted = await db.enum.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.compositeType`
+
+CRUD operations for CompositeType records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `name` | String | Yes |
+| `label` | String | Yes |
+| `description` | String | Yes |
+| `attributes` | JSON | Yes |
+| `smartTags` | JSON | Yes |
+| `category` | ObjectCategory | Yes |
+| `module` | String | Yes |
+| `scope` | Int | Yes |
+| `tags` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all compositeType records
+const items = await db.compositeType.findMany({ select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Get one by id
+const item = await db.compositeType.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, name: true, label: true, description: true, attributes: true, smartTags: true, category: true, module: true, scope: true, tags: true } }).execute();
+
+// Create
+const created = await db.compositeType.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', name: '<String>', label: '<String>', description: '<String>', attributes: '<JSON>', smartTags: '<JSON>', category: '<ObjectCategory>', module: '<String>', scope: '<Int>', tags: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.compositeType.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.compositeType.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.apiSchema`
 
 CRUD operations for ApiSchema records.
diff --git a/sdk/constructive-sdk/src/api/orm/index.ts b/sdk/constructive-sdk/src/api/orm/index.ts
index b2161f6fd..bde4dcc04 100644
--- a/sdk/constructive-sdk/src/api/orm/index.ts
+++ b/sdk/constructive-sdk/src/api/orm/index.ts
@@ -27,6 +27,7 @@ import { EmbeddingChunkModel } from './models/embeddingChunk';
 import { SchemaGrantModel } from './models/schemaGrant';
 import { DefaultPrivilegeModel } from './models/defaultPrivilege';
 import { EnumModel } from './models/enum';
+import { CompositeTypeModel } from './models/compositeType';
 import { ApiSchemaModel } from './models/apiSchema';
 import { ApiModuleModel } from './models/apiModule';
 import { DomainModel } from './models/domain';
@@ -107,6 +108,7 @@ export function createClient(config: OrmClientConfig) {
     schemaGrant: new SchemaGrantModel(client),
     defaultPrivilege: new DefaultPrivilegeModel(client),
     enum: new EnumModel(client),
+    compositeType: new CompositeTypeModel(client),
     apiSchema: new ApiSchemaModel(client),
     apiModule: new ApiModuleModel(client),
     domain: new DomainModel(client),
diff --git a/sdk/constructive-sdk/src/api/orm/input-types.ts b/sdk/constructive-sdk/src/api/orm/input-types.ts
index 8da4e5364..fd36cf357 100644
--- a/sdk/constructive-sdk/src/api/orm/input-types.ts
+++ b/sdk/constructive-sdk/src/api/orm/input-types.ts
@@ -282,9 +282,9 @@ export interface Table {
   partitionStrategy?: string | null;
   partitionKeyNames?: string[] | null;
   partitionKeyTypes?: string[] | null;
-  inheritsId?: string | null;
   createdAt?: string | null;
   updatedAt?: string | null;
+  inheritsId?: string | null;
 }
 export interface CheckConstraint {
   id: string;
@@ -572,6 +572,20 @@ export interface Enum {
   scope?: number | null;
   tags?: string[] | null;
 }
+export interface CompositeType {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
 /** Join table linking APIs to the database schemas they expose; controls which schemas are accessible through each API */
 export interface ApiSchema {
   /** Unique identifier for this API-schema mapping */
@@ -989,6 +1003,7 @@ export interface SchemaRelations {
   defaultPrivileges?: ConnectionResult<DefaultPrivilege>;
   enums?: ConnectionResult<Enum>;
   functions?: ConnectionResult<Function>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   apiSchemas?: ConnectionResult<ApiSchema>;
 }
 export interface TableRelations {
@@ -1102,6 +1117,10 @@ export interface EnumRelations {
   database?: Database | null;
   schema?: Schema | null;
 }
+export interface CompositeTypeRelations {
+  database?: Database | null;
+  schema?: Schema | null;
+}
 export interface ApiSchemaRelations {
   api?: Api | null;
   database?: Database | null;
@@ -1205,6 +1224,7 @@ export interface DatabaseRelations {
   spatialRelations?: ConnectionResult<SpatialRelation>;
   functions?: ConnectionResult<Function>;
   partitions?: ConnectionResult<Partition>;
+  compositeTypes?: ConnectionResult<CompositeType>;
   databaseTransfers?: ConnectionResult<DatabaseTransfer>;
   apis?: ConnectionResult<Api>;
   apiModules?: ConnectionResult<ApiModule>;
@@ -1271,6 +1291,7 @@ export type EmbeddingChunkWithRelations = EmbeddingChunk & EmbeddingChunkRelatio
 export type SchemaGrantWithRelations = SchemaGrant & SchemaGrantRelations;
 export type DefaultPrivilegeWithRelations = DefaultPrivilege & DefaultPrivilegeRelations;
 export type EnumWithRelations = Enum & EnumRelations;
+export type CompositeTypeWithRelations = CompositeType & CompositeTypeRelations;
 export type ApiSchemaWithRelations = ApiSchema & ApiSchemaRelations;
 export type ApiModuleWithRelations = ApiModule & ApiModuleRelations;
 export type DomainWithRelations = Domain & DomainRelations;
@@ -1361,6 +1382,12 @@ export type SchemaSelect = {
     filter?: FunctionFilter;
     orderBy?: FunctionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   apiSchemas?: {
     select: ApiSchemaSelect;
     first?: number;
@@ -1389,9 +1416,9 @@ export type TableSelect = {
   partitionStrategy?: boolean;
   partitionKeyNames?: boolean;
   partitionKeyTypes?: boolean;
-  inheritsId?: boolean;
   createdAt?: boolean;
   updatedAt?: boolean;
+  inheritsId?: boolean;
   database?: {
     select: DatabaseSelect;
   };
@@ -1951,6 +1978,26 @@ export type EnumSelect = {
     select: SchemaSelect;
   };
 };
+export type CompositeTypeSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  name?: boolean;
+  label?: boolean;
+  description?: boolean;
+  attributes?: boolean;
+  smartTags?: boolean;
+  category?: boolean;
+  module?: boolean;
+  scope?: boolean;
+  tags?: boolean;
+  database?: {
+    select: DatabaseSelect;
+  };
+  schema?: {
+    select: SchemaSelect;
+  };
+};
 export type ApiSchemaSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2424,6 +2471,12 @@ export type DatabaseSelect = {
     filter?: PartitionFilter;
     orderBy?: PartitionOrderBy[];
   };
+  compositeTypes?: {
+    select: CompositeTypeSelect;
+    first?: number;
+    filter?: CompositeTypeFilter;
+    orderBy?: CompositeTypeOrderBy[];
+  };
   databaseTransfers?: {
     select: DatabaseTransferSelect;
     first?: number;
@@ -2718,6 +2771,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -2764,12 +2821,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -3613,6 +3670,42 @@ export interface EnumFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4236,6 +4329,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -4640,12 +4737,12 @@ export type TableOrderBy =
   | 'PARTITION_KEY_NAMES_DESC'
   | 'PARTITION_KEY_TYPES_ASC'
   | 'PARTITION_KEY_TYPES_DESC'
-  | 'INHERITS_ID_ASC'
-  | 'INHERITS_ID_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC'
   | 'UPDATED_AT_ASC'
-  | 'UPDATED_AT_DESC';
+  | 'UPDATED_AT_DESC'
+  | 'INHERITS_ID_ASC'
+  | 'INHERITS_ID_DESC';
 export type CheckConstraintOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5210,6 +5307,34 @@ export type EnumOrderBy =
   | 'SCOPE_DESC'
   | 'TAGS_ASC'
   | 'TAGS_DESC';
+export type CompositeTypeOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'NAME_ASC'
+  | 'NAME_DESC'
+  | 'LABEL_ASC'
+  | 'LABEL_DESC'
+  | 'DESCRIPTION_ASC'
+  | 'DESCRIPTION_DESC'
+  | 'ATTRIBUTES_ASC'
+  | 'ATTRIBUTES_DESC'
+  | 'SMART_TAGS_ASC'
+  | 'SMART_TAGS_DESC'
+  | 'CATEGORY_ASC'
+  | 'CATEGORY_DESC'
+  | 'MODULE_ASC'
+  | 'MODULE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'TAGS_ASC'
+  | 'TAGS_DESC';
 export type ApiSchemaOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6523,6 +6648,44 @@ export interface DeleteEnumInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateCompositeTypeInput {
+  clientMutationId?: string;
+  compositeType: {
+    databaseId: string;
+    schemaId: string;
+    name: string;
+    label?: string;
+    description?: string;
+    attributes?: Record<string, unknown>;
+    smartTags?: Record<string, unknown>;
+    category?: ObjectCategory;
+    module?: string;
+    scope?: number;
+    tags?: string[];
+  };
+}
+export interface CompositeTypePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  name?: string | null;
+  label?: string | null;
+  description?: string | null;
+  attributes?: Record<string, unknown> | null;
+  smartTags?: Record<string, unknown> | null;
+  category?: ObjectCategory | null;
+  module?: string | null;
+  scope?: number | null;
+  tags?: string[] | null;
+}
+export interface UpdateCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+  compositeTypePatch: CompositeTypePatch;
+}
+export interface DeleteCompositeTypeInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateApiSchemaInput {
   clientMutationId?: string;
   apiSchema: {
@@ -7250,6 +7413,7 @@ export const connectionFieldsMap = {
     defaultPrivileges: 'DefaultPrivilege',
     enums: 'Enum',
     functions: 'Function',
+    compositeTypes: 'CompositeType',
     apiSchemas: 'ApiSchema',
   },
   Table: {
@@ -7315,6 +7479,7 @@ export const connectionFieldsMap = {
     spatialRelations: 'SpatialRelation',
     functions: 'Function',
     partitions: 'Partition',
+    compositeTypes: 'CompositeType',
     databaseTransfers: 'DatabaseTransfer',
     apis: 'Api',
     apiModules: 'ApiModule',
@@ -7472,6 +7637,15 @@ export interface SchemaToManyFunctionFilter {
   /** Filters to entities where no related entity matches. */
   none?: FunctionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface SchemaToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface SchemaToManyApiSchemaFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8223,6 +8397,15 @@ export interface DatabaseToManyPartitionFilter {
   /** Filters to entities where no related entity matches. */
   none?: PartitionFilter;
 }
+/** A filter to be used against many `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface DatabaseToManyCompositeTypeFilter {
+  /** Filters to entities where at least one related entity matches. */
+  some?: CompositeTypeFilter;
+  /** Filters to entities where every related entity matches. */
+  every?: CompositeTypeFilter;
+  /** Filters to entities where no related entity matches. */
+  none?: CompositeTypeFilter;
+}
 /** A filter to be used against many `DatabaseTransfer` object types. All fields are combined with a logical ‘and.’ */
 export interface DatabaseToManyDatabaseTransferFilter {
   /** Filters to entities where at least one related entity matches. */
@@ -8392,12 +8575,12 @@ export interface TableFilter {
   partitionKeyNames?: StringListFilter;
   /** Filter by the object’s `partitionKeyTypes` field. */
   partitionKeyTypes?: StringListFilter;
-  /** Filter by the object’s `inheritsId` field. */
-  inheritsId?: UUIDFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Filter by the object’s `updatedAt` field. */
   updatedAt?: DatetimeFilter;
+  /** Filter by the object’s `inheritsId` field. */
+  inheritsId?: UUIDFilter;
   /** Checks for all expressions in this list. */
   and?: TableFilter[];
   /** Checks for any expressions in this list. */
@@ -8652,6 +8835,43 @@ export interface FunctionFilter {
   /** Filter by the object’s `schema` relation. */
   schema?: SchemaFilter;
 }
+/** A filter to be used against `CompositeType` object types. All fields are combined with a logical ‘and.’ */
+export interface CompositeTypeFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `label` field. */
+  label?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `attributes` field. */
+  attributes?: JSONFilter;
+  /** Filter by the object’s `smartTags` field. */
+  smartTags?: JSONFilter;
+  /** Filter by the object’s `category` field. */
+  category?: ObjectCategoryFilter;
+  /** Filter by the object’s `module` field. */
+  module?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: IntFilter;
+  /** Filter by the object’s `tags` field. */
+  tags?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: CompositeTypeFilter[];
+  /** Checks for any expressions in this list. */
+  or?: CompositeTypeFilter[];
+  /** Negates the expression. */
+  not?: CompositeTypeFilter;
+  /** Filter by the object’s `database` relation. */
+  database?: DatabaseFilter;
+  /** Filter by the object’s `schema` relation. */
+  schema?: SchemaFilter;
+}
 /** A filter to be used against `ApiSchema` object types. All fields are combined with a logical ‘and.’ */
 export interface ApiSchemaFilter {
   /** Filter by the object’s `id` field. */
@@ -9508,6 +9728,10 @@ export interface SchemaFilter {
   functions?: SchemaToManyFunctionFilter;
   /** `functions` exist. */
   functionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: SchemaToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `apiSchemas` relation. */
   apiSchemas?: SchemaToManyApiSchemaFilter;
   /** `apiSchemas` exist. */
@@ -10153,6 +10377,10 @@ export interface DatabaseFilter {
   partitions?: DatabaseToManyPartitionFilter;
   /** `partitions` exist. */
   partitionsExist?: boolean;
+  /** Filter by the object’s `compositeTypes` relation. */
+  compositeTypes?: DatabaseToManyCompositeTypeFilter;
+  /** `compositeTypes` exist. */
+  compositeTypesExist?: boolean;
   /** Filter by the object’s `databaseTransfers` relation. */
   databaseTransfers?: DatabaseToManyDatabaseTransferFilter;
   /** `databaseTransfers` exist. */
@@ -11620,6 +11848,51 @@ export type DeleteEnumPayloadSelect = {
     select: EnumEdgeSelect;
   };
 };
+export interface CreateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was created by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type CreateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface UpdateCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was updated by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type UpdateCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
+export interface DeleteCompositeTypePayload {
+  clientMutationId?: string | null;
+  /** The `CompositeType` that was deleted by this mutation. */
+  compositeType?: CompositeType | null;
+  compositeTypeEdge?: CompositeTypeEdge | null;
+}
+export type DeleteCompositeTypePayloadSelect = {
+  clientMutationId?: boolean;
+  compositeType?: {
+    select: CompositeTypeSelect;
+  };
+  compositeTypeEdge?: {
+    select: CompositeTypeEdgeSelect;
+  };
+};
 export interface CreateApiSchemaPayload {
   clientMutationId?: string | null;
   /** The `ApiSchema` that was created by this mutation. */
@@ -12845,6 +13118,18 @@ export type EnumEdgeSelect = {
     select: EnumSelect;
   };
 };
+/** A `CompositeType` edge in the connection. */
+export interface CompositeTypeEdge {
+  cursor?: string | null;
+  /** The `CompositeType` at the end of the edge. */
+  node?: CompositeType | null;
+}
+export type CompositeTypeEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: CompositeTypeSelect;
+  };
+};
 /** A `ApiSchema` edge in the connection. */
 export interface ApiSchemaEdge {
   cursor?: string | null;
diff --git a/sdk/constructive-sdk/src/api/orm/models/compositeType.ts b/sdk/constructive-sdk/src/api/orm/models/compositeType.ts
new file mode 100644
index 000000000..0f46f810e
--- /dev/null
+++ b/sdk/constructive-sdk/src/api/orm/models/compositeType.ts
@@ -0,0 +1,244 @@
+/**
+ * CompositeType model for ORM client
+ * @generated by @constructive-io/graphql-codegen
+ * DO NOT EDIT - changes will be overwritten
+ */
+import { OrmClient } from '../client';
+import {
+  QueryBuilder,
+  buildFindManyDocument,
+  buildFindFirstDocument,
+  buildFindOneDocument,
+  buildCreateDocument,
+  buildUpdateByPkDocument,
+  buildDeleteByPkDocument,
+} from '../query-builder';
+import type {
+  ConnectionResult,
+  FindManyArgs,
+  FindFirstArgs,
+  CreateArgs,
+  UpdateArgs,
+  DeleteArgs,
+  InferSelectResult,
+  StrictSelect,
+} from '../select-types';
+import type {
+  CompositeType,
+  CompositeTypeWithRelations,
+  CompositeTypeSelect,
+  CompositeTypeFilter,
+  CompositeTypeOrderBy,
+  CreateCompositeTypeInput,
+  UpdateCompositeTypeInput,
+  CompositeTypePatch,
+} from '../input-types';
+import { connectionFieldsMap } from '../input-types';
+export class CompositeTypeModel {
+  constructor(private client: OrmClient) {}
+  findMany<S extends CompositeTypeSelect>(
+    args: FindManyArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeTypes: ConnectionResult<InferSelectResult<CompositeTypeWithRelations, S>>;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+        first: args?.first,
+        last: args?.last,
+        after: args?.after,
+        before: args?.before,
+        offset: args?.offset,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeTypes',
+      document,
+      variables,
+    });
+  }
+  findFirst<S extends CompositeTypeSelect>(
+    args: FindFirstArgs<S, CompositeTypeFilter, CompositeTypeOrderBy> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindFirstDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: args?.where,
+        orderBy: args?.orderBy as string[] | undefined,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  findOne<S extends CompositeTypeSelect>(
+    args: {
+      id: string;
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    compositeType: InferSelectResult<CompositeTypeWithRelations, S> | null;
+  }> {
+    const { document, variables } = buildFindManyDocument(
+      'CompositeType',
+      'compositeTypes',
+      args.select,
+      {
+        where: {
+          id: {
+            equalTo: args.id,
+          },
+        },
+        first: 1,
+      },
+      'CompositeTypeFilter',
+      'CompositeTypeOrderBy',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'query',
+      operationName: 'CompositeType',
+      fieldName: 'compositeType',
+      document,
+      variables,
+      transform: (data: {
+        compositeTypes?: {
+          nodes?: InferSelectResult<CompositeTypeWithRelations, S>[];
+        };
+      }) => ({
+        compositeType: data.compositeTypes?.nodes?.[0] ?? null,
+      }),
+    });
+  }
+  create<S extends CompositeTypeSelect>(
+    args: CreateArgs<S, CreateCompositeTypeInput['compositeType']> & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    createCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildCreateDocument(
+      'CompositeType',
+      'createCompositeType',
+      'compositeType',
+      args.select,
+      args.data,
+      'CreateCompositeTypeInput',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'createCompositeType',
+      document,
+      variables,
+    });
+  }
+  update<S extends CompositeTypeSelect>(
+    args: UpdateArgs<
+      S,
+      {
+        id: string;
+      },
+      CompositeTypePatch
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    updateCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildUpdateByPkDocument(
+      'CompositeType',
+      'updateCompositeType',
+      'compositeType',
+      args.select,
+      args.where.id,
+      args.data,
+      'UpdateCompositeTypeInput',
+      'id',
+      'compositeTypePatch',
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'updateCompositeType',
+      document,
+      variables,
+    });
+  }
+  delete<S extends CompositeTypeSelect>(
+    args: DeleteArgs<
+      {
+        id: string;
+      },
+      S
+    > & {
+      select: S;
+    } & StrictSelect<S, CompositeTypeSelect>
+  ): QueryBuilder<{
+    deleteCompositeType: {
+      compositeType: InferSelectResult<CompositeTypeWithRelations, S>;
+    };
+  }> {
+    const { document, variables } = buildDeleteByPkDocument(
+      'CompositeType',
+      'deleteCompositeType',
+      'compositeType',
+      {
+        id: args.where.id,
+      },
+      'DeleteCompositeTypeInput',
+      args.select,
+      connectionFieldsMap
+    );
+    return new QueryBuilder({
+      client: this.client,
+      operation: 'mutation',
+      operationName: 'CompositeType',
+      fieldName: 'deleteCompositeType',
+      document,
+      variables,
+    });
+  }
+}
diff --git a/sdk/constructive-sdk/src/api/orm/models/index.ts b/sdk/constructive-sdk/src/api/orm/models/index.ts
index 326c47f97..ddc91f27a 100644
--- a/sdk/constructive-sdk/src/api/orm/models/index.ts
+++ b/sdk/constructive-sdk/src/api/orm/models/index.ts
@@ -25,6 +25,7 @@ export { EmbeddingChunkModel } from './embeddingChunk';
 export { SchemaGrantModel } from './schemaGrant';
 export { DefaultPrivilegeModel } from './defaultPrivilege';
 export { EnumModel } from './enum';
+export { CompositeTypeModel } from './compositeType';
 export { ApiSchemaModel } from './apiSchema';
 export { ApiModuleModel } from './apiModule';
 export { DomainModel } from './domain';
diff --git a/sdk/constructive-sdk/src/modules/orm/README.md b/sdk/constructive-sdk/src/modules/orm/README.md
index 2d52e7421..3e29d250b 100644
--- a/sdk/constructive-sdk/src/modules/orm/README.md
+++ b/sdk/constructive-sdk/src/modules/orm/README.md
@@ -45,38 +45,38 @@ const db = createClient({
 | `blueprintTemplate` | findMany, findOne, create, update, delete |
 | `blueprintConstruction` | findMany, findOne, create, update, delete |
 | `cryptoAuthModule` | findMany, findOne, create, update, delete |
-| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `sessionsModule` | findMany, findOne, create, update, delete |
 | `configSecretsModule` | findMany, findOne, create, update, delete |
 | `merkleStoreModule` | findMany, findOne, create, update, delete |
 | `graphModule` | findMany, findOne, create, update, delete |
 | `secureTableProvision` | findMany, findOne, create, update, delete |
+| `rateLimitMetersModule` | findMany, findOne, create, update, delete |
 | `invitesModule` | findMany, findOne, create, update, delete |
 | `databaseProvisionModule` | findMany, findOne, create, update, delete |
-| `namespaceModule` | findMany, findOne, create, update, delete |
 | `realtimeModule` | findMany, findOne, create, update, delete |
 | `webauthnAuthModule` | findMany, findOne, create, update, delete |
+| `namespaceModule` | findMany, findOne, create, update, delete |
 | `computeLogModule` | findMany, findOne, create, update, delete |
 | `inferenceLogModule` | findMany, findOne, create, update, delete |
 | `storageLogModule` | findMany, findOne, create, update, delete |
 | `transferLogModule` | findMany, findOne, create, update, delete |
+| `plansModule` | findMany, findOne, create, update, delete |
 | `dbUsageModule` | findMany, findOne, create, update, delete |
 | `notificationsModule` | findMany, findOne, create, update, delete |
-| `plansModule` | findMany, findOne, create, update, delete |
-| `hierarchyModule` | findMany, findOne, create, update, delete |
-| `billingModule` | findMany, findOne, create, update, delete |
 | `billingProviderModule` | findMany, findOne, create, update, delete |
+| `functionModule` | findMany, findOne, create, update, delete |
+| `hierarchyModule` | findMany, findOne, create, update, delete |
 | `profilesModule` | findMany, findOne, create, update, delete |
 | `permissionsModule` | findMany, findOne, create, update, delete |
+| `billingModule` | findMany, findOne, create, update, delete |
 | `relationProvision` | findMany, findOne, create, update, delete |
-| `functionModule` | findMany, findOne, create, update, delete |
 | `userAuthModule` | findMany, findOne, create, update, delete |
 | `agentModule` | findMany, findOne, create, update, delete |
 | `limitsModule` | findMany, findOne, create, update, delete |
 | `membershipsModule` | findMany, findOne, create, update, delete |
 | `storageModule` | findMany, findOne, create, update, delete |
-| `eventsModule` | findMany, findOne, create, update, delete |
 | `entityTypeProvision` | findMany, findOne, create, update, delete |
+| `eventsModule` | findMany, findOne, create, update, delete |
 
 ## Table Operations
 
@@ -970,48 +970,6 @@ const updated = await db.cryptoAuthModule.update({ where: { id: '<UUID>' }, data
 const deleted = await db.cryptoAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.rateLimitMetersModule`
-
-CRUD operations for RateLimitMetersModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `rateLimitStateTableId` | UUID | Yes |
-| `rateLimitStateTableName` | String | Yes |
-| `rateLimitOverridesTableId` | UUID | Yes |
-| `rateLimitOverridesTableName` | String | Yes |
-| `rateWindowLimitsTableId` | UUID | Yes |
-| `rateWindowLimitsTableName` | String | Yes |
-| `checkRateLimitFunction` | String | Yes |
-| `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-
-**Operations:**
-
-```typescript
-// List all rateLimitMetersModule records
-const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Get one by id
-const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
-
-// Create
-const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.sessionsModule`
 
 CRUD operations for SessionsModule records.
@@ -1162,19 +1120,20 @@ CRUD operations for GraphModule records.
 | `entityTableId` | UUID | Yes |
 | `policies` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 | `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
 // List all graphModule records
-const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const items = await db.graphModule.findMany({ select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, createdAt: true } }).execute();
+const item = await db.graphModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, publicSchemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, scope: true, prefix: true, merkleStoreModuleId: true, graphsTableId: true, executionsTableId: true, outputsTableId: true, apiName: true, privateApiName: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.graphModule.create({ data: { databaseId: '<UUID>', publicSchemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', scope: '<String>', prefix: '<String>', merkleStoreModuleId: '<UUID>', graphsTableId: '<UUID>', executionsTableId: '<UUID>', outputsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.graphModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1222,6 +1181,49 @@ const updated = await db.secureTableProvision.update({ where: { id: '<UUID>' },
 const deleted = await db.secureTableProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.rateLimitMetersModule`
+
+CRUD operations for RateLimitMetersModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `rateLimitStateTableId` | UUID | Yes |
+| `rateLimitStateTableName` | String | Yes |
+| `rateLimitOverridesTableId` | UUID | Yes |
+| `rateLimitOverridesTableName` | String | Yes |
+| `rateWindowLimitsTableId` | UUID | Yes |
+| `rateWindowLimitsTableName` | String | Yes |
+| `checkRateLimitFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all rateLimitMetersModule records
+const items = await db.rateLimitMetersModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.rateLimitMetersModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, rateLimitStateTableId: true, rateLimitStateTableName: true, rateLimitOverridesTableId: true, rateLimitOverridesTableName: true, rateWindowLimitsTableId: true, rateWindowLimitsTableName: true, checkRateLimitFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.rateLimitMetersModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', rateLimitStateTableId: '<UUID>', rateLimitStateTableName: '<String>', rateLimitOverridesTableId: '<UUID>', rateLimitOverridesTableName: '<String>', rateWindowLimitsTableId: '<UUID>', rateWindowLimitsTableName: '<String>', checkRateLimitFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.rateLimitMetersModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.rateLimitMetersModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.invitesModule`
 
 CRUD operations for InvitesModule records.
@@ -1308,51 +1310,6 @@ const updated = await db.databaseProvisionModule.update({ where: { id: '<UUID>'
 const deleted = await db.databaseProvisionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.namespaceModule`
-
-CRUD operations for NamespaceModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `namespacesTableId` | UUID | Yes |
-| `namespaceEventsTableId` | UUID | Yes |
-| `namespacesTableName` | String | Yes |
-| `namespaceEventsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all namespaceModule records
-const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.realtimeModule`
 
 CRUD operations for RealtimeModule records.
@@ -1439,6 +1396,52 @@ const updated = await db.webauthnAuthModule.update({ where: { id: '<UUID>' }, da
 const deleted = await db.webauthnAuthModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.namespaceModule`
+
+CRUD operations for NamespaceModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `publicSchemaName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `namespacesTableId` | UUID | Yes |
+| `namespaceEventsTableId` | UUID | Yes |
+| `namespacesTableName` | String | Yes |
+| `namespaceEventsTableName` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all namespaceModule records
+const items = await db.namespaceModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Get one by id
+const item = await db.namespaceModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, namespacesTableId: true, namespaceEventsTableId: true, namespacesTableName: true, namespaceEventsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
+
+// Create
+const created = await db.namespaceModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', namespacesTableId: '<UUID>', namespaceEventsTableId: '<UUID>', namespacesTableName: '<String>', namespaceEventsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.namespaceModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.namespaceModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.computeLogModule`
 
 CRUD operations for ComputeLogModule records.
@@ -1619,6 +1622,53 @@ const updated = await db.transferLogModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.transferLogModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.plansModule`
+
+CRUD operations for PlansModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `plansTableId` | UUID | Yes |
+| `plansTableName` | String | Yes |
+| `planLimitsTableId` | UUID | Yes |
+| `planLimitsTableName` | String | Yes |
+| `planPricingTableId` | UUID | Yes |
+| `planOverridesTableId` | UUID | Yes |
+| `planMeterLimitsTableId` | UUID | Yes |
+| `planCapsTableId` | UUID | Yes |
+| `applyPlanFunction` | String | Yes |
+| `applyPlanAggregateFunction` | String | Yes |
+| `applyBillingPlanFunction` | String | Yes |
+| `applyPlanCapsFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all plansModule records
+const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.dbUsageModule`
 
 CRUD operations for DbUsageModule records.
@@ -1644,6 +1694,7 @@ CRUD operations for DbUsageModule records.
 | `premake` | Int | Yes |
 | `scope` | String | Yes |
 | `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1651,13 +1702,13 @@ CRUD operations for DbUsageModule records.
 
 ```typescript
 // List all dbUsageModule records
-const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.dbUsageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.dbUsageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, tableStatsLogTableId: true, tableStatsLogTableName: true, tableStatsDailyTableId: true, tableStatsDailyTableName: true, queryStatsLogTableId: true, queryStatsLogTableName: true, queryStatsDailyTableId: true, queryStatsDailyTableName: true, interval: true, retention: true, premake: true, scope: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.dbUsageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', tableStatsLogTableId: '<UUID>', tableStatsLogTableName: '<String>', tableStatsDailyTableId: '<UUID>', tableStatsDailyTableName: '<String>', queryStatsLogTableId: '<UUID>', queryStatsLogTableName: '<String>', queryStatsDailyTableId: '<UUID>', queryStatsDailyTableName: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.dbUsageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1691,6 +1742,7 @@ CRUD operations for NotificationsModule records.
 | `hasSettingsExtension` | Boolean | Yes |
 | `hasDigestMetadata` | Boolean | Yes |
 | `hasSubscriptions` | Boolean | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -1698,13 +1750,13 @@ CRUD operations for NotificationsModule records.
 
 ```typescript
 // List all notificationsModule records
-const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.notificationsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.notificationsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, notificationsTableId: true, readStateTableId: true, preferencesTableId: true, channelsTableId: true, deliveryLogTableId: true, ownerTableId: true, userSettingsTableId: true, organizationSettingsTableId: true, hasChannels: true, hasPreferences: true, hasSettingsExtension: true, hasDigestMetadata: true, hasSubscriptions: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.notificationsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', notificationsTableId: '<UUID>', readStateTableId: '<UUID>', preferencesTableId: '<UUID>', channelsTableId: '<UUID>', deliveryLogTableId: '<UUID>', ownerTableId: '<UUID>', userSettingsTableId: '<UUID>', organizationSettingsTableId: '<UUID>', hasChannels: '<Boolean>', hasPreferences: '<Boolean>', hasSettingsExtension: '<Boolean>', hasDigestMetadata: '<Boolean>', hasSubscriptions: '<Boolean>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -1713,9 +1765,9 @@ const updated = await db.notificationsModule.update({ where: { id: '<UUID>' }, d
 const deleted = await db.notificationsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.plansModule`
+### `db.billingProviderModule`
 
-CRUD operations for PlansModule records.
+CRUD operations for BillingProviderModule records.
 
 **Fields:**
 
@@ -1725,18 +1777,21 @@ CRUD operations for PlansModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `plansTableId` | UUID | Yes |
-| `plansTableName` | String | Yes |
-| `planLimitsTableId` | UUID | Yes |
-| `planLimitsTableName` | String | Yes |
-| `planPricingTableId` | UUID | Yes |
-| `planOverridesTableId` | UUID | Yes |
-| `planMeterLimitsTableId` | UUID | Yes |
-| `planCapsTableId` | UUID | Yes |
-| `applyPlanFunction` | String | Yes |
-| `applyPlanAggregateFunction` | String | Yes |
-| `applyBillingPlanFunction` | String | Yes |
-| `applyPlanCapsFunction` | String | Yes |
+| `provider` | String | Yes |
+| `productsTableId` | UUID | Yes |
+| `pricesTableId` | UUID | Yes |
+| `subscriptionsTableId` | UUID | Yes |
+| `billingCustomersTableId` | UUID | Yes |
+| `billingCustomersTableName` | String | Yes |
+| `billingProductsTableId` | UUID | Yes |
+| `billingProductsTableName` | String | Yes |
+| `billingPricesTableId` | UUID | Yes |
+| `billingPricesTableName` | String | Yes |
+| `billingSubscriptionsTableId` | UUID | Yes |
+| `billingSubscriptionsTableName` | String | Yes |
+| `billingWebhookEventsTableId` | UUID | Yes |
+| `billingWebhookEventsTableName` | String | Yes |
+| `processBillingEventFunction` | String | Yes |
 | `prefix` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
@@ -1744,25 +1799,25 @@ CRUD operations for PlansModule records.
 **Operations:**
 
 ```typescript
-// List all plansModule records
-const items = await db.plansModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all billingProviderModule records
+const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.plansModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, plansTableId: true, plansTableName: true, planLimitsTableId: true, planLimitsTableName: true, planPricingTableId: true, planOverridesTableId: true, planMeterLimitsTableId: true, planCapsTableId: true, applyPlanFunction: true, applyPlanAggregateFunction: true, applyBillingPlanFunction: true, applyPlanCapsFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.plansModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', plansTableId: '<UUID>', plansTableName: '<String>', planLimitsTableId: '<UUID>', planLimitsTableName: '<String>', planPricingTableId: '<UUID>', planOverridesTableId: '<UUID>', planMeterLimitsTableId: '<UUID>', planCapsTableId: '<UUID>', applyPlanFunction: '<String>', applyPlanAggregateFunction: '<String>', applyBillingPlanFunction: '<String>', applyPlanCapsFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.plansModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.plansModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.hierarchyModule`
+### `db.functionModule`
 
-CRUD operations for HierarchyModule records.
+CRUD operations for FunctionModule records.
 
 **Fields:**
 
@@ -1772,96 +1827,47 @@ CRUD operations for HierarchyModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `chartEdgesTableId` | UUID | Yes |
-| `chartEdgesTableName` | String | Yes |
-| `hierarchySprtTableId` | UUID | Yes |
-| `hierarchySprtTableName` | String | Yes |
-| `chartEdgeGrantsTableId` | UUID | Yes |
-| `chartEdgeGrantsTableName` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `usersTableId` | UUID | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
+| `publicSchemaName` | String | Yes |
 | `privateSchemaName` | String | Yes |
-| `sprtTableName` | String | Yes |
-| `rebuildHierarchyFunction` | String | Yes |
-| `getSubordinatesFunction` | String | Yes |
-| `getManagersFunction` | String | Yes |
-| `isManagerOfFunction` | String | Yes |
-| `createdAt` | Datetime | No |
-
-**Operations:**
-
-```typescript
-// List all hierarchyModule records
-const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Get one by id
-const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, createdAt: true } }).execute();
-
-// Create
-const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
-### `db.billingModule`
-
-CRUD operations for BillingModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `metersTableId` | UUID | Yes |
-| `metersTableName` | String | Yes |
-| `planSubscriptionsTableId` | UUID | Yes |
-| `planSubscriptionsTableName` | String | Yes |
-| `ledgerTableId` | UUID | Yes |
-| `ledgerTableName` | String | Yes |
-| `balancesTableId` | UUID | Yes |
-| `balancesTableName` | String | Yes |
-| `meterCreditsTableId` | UUID | Yes |
-| `meterCreditsTableName` | String | Yes |
-| `meterSourcesTableId` | UUID | Yes |
-| `meterSourcesTableName` | String | Yes |
-| `meterDefaultsTableId` | UUID | Yes |
-| `meterDefaultsTableName` | String | Yes |
-| `recordUsageFunction` | String | Yes |
-| `prefix` | String | Yes |
+| `definitionsTableId` | UUID | Yes |
+| `invocationsTableId` | UUID | Yes |
+| `executionLogsTableId` | UUID | Yes |
+| `secretDefinitionsTableId` | UUID | Yes |
+| `definitionsTableName` | String | Yes |
+| `invocationsTableName` | String | Yes |
+| `executionLogsTableName` | String | Yes |
+| `secretDefinitionsTableName` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
+| `scope` | String | Yes |
+| `prefix` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `policies` | JSON | Yes |
+| `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
-// List all billingModule records
-const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all functionModule records
+const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.billingProviderModule`
+### `db.hierarchyModule`
 
-CRUD operations for BillingProviderModule records.
+CRUD operations for HierarchyModule records.
 
 **Fields:**
 
@@ -1871,42 +1877,42 @@ CRUD operations for BillingProviderModule records.
 | `databaseId` | UUID | Yes |
 | `schemaId` | UUID | Yes |
 | `privateSchemaId` | UUID | Yes |
-| `provider` | String | Yes |
-| `productsTableId` | UUID | Yes |
-| `pricesTableId` | UUID | Yes |
-| `subscriptionsTableId` | UUID | Yes |
-| `billingCustomersTableId` | UUID | Yes |
-| `billingCustomersTableName` | String | Yes |
-| `billingProductsTableId` | UUID | Yes |
-| `billingProductsTableName` | String | Yes |
-| `billingPricesTableId` | UUID | Yes |
-| `billingPricesTableName` | String | Yes |
-| `billingSubscriptionsTableId` | UUID | Yes |
-| `billingSubscriptionsTableName` | String | Yes |
-| `billingWebhookEventsTableId` | UUID | Yes |
-| `billingWebhookEventsTableName` | String | Yes |
-| `processBillingEventFunction` | String | Yes |
+| `chartEdgesTableId` | UUID | Yes |
+| `chartEdgesTableName` | String | Yes |
+| `hierarchySprtTableId` | UUID | Yes |
+| `hierarchySprtTableName` | String | Yes |
+| `chartEdgeGrantsTableId` | UUID | Yes |
+| `chartEdgeGrantsTableName` | String | Yes |
+| `entityTableId` | UUID | Yes |
+| `usersTableId` | UUID | Yes |
+| `scope` | String | Yes |
 | `prefix` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
+| `privateSchemaName` | String | Yes |
+| `sprtTableName` | String | Yes |
+| `rebuildHierarchyFunction` | String | Yes |
+| `getSubordinatesFunction` | String | Yes |
+| `getManagersFunction` | String | Yes |
+| `isManagerOfFunction` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `createdAt` | Datetime | No |
 
 **Operations:**
 
 ```typescript
-// List all billingProviderModule records
-const items = await db.billingProviderModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+// List all hierarchyModule records
+const items = await db.hierarchyModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Get one by id
-const item = await db.billingProviderModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, provider: true, productsTableId: true, pricesTableId: true, subscriptionsTableId: true, billingCustomersTableId: true, billingCustomersTableName: true, billingProductsTableId: true, billingProductsTableName: true, billingPricesTableId: true, billingPricesTableName: true, billingSubscriptionsTableId: true, billingSubscriptionsTableName: true, billingWebhookEventsTableId: true, billingWebhookEventsTableName: true, processBillingEventFunction: true, prefix: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.hierarchyModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, chartEdgesTableId: true, chartEdgesTableName: true, hierarchySprtTableId: true, hierarchySprtTableName: true, chartEdgeGrantsTableId: true, chartEdgeGrantsTableName: true, entityTableId: true, usersTableId: true, scope: true, prefix: true, privateSchemaName: true, sprtTableName: true, rebuildHierarchyFunction: true, getSubordinatesFunction: true, getManagersFunction: true, isManagerOfFunction: true, defaultPermissions: true, createdAt: true } }).execute();
 
 // Create
-const created = await db.billingProviderModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', provider: '<String>', productsTableId: '<UUID>', pricesTableId: '<UUID>', subscriptionsTableId: '<UUID>', billingCustomersTableId: '<UUID>', billingCustomersTableName: '<String>', billingProductsTableId: '<UUID>', billingProductsTableName: '<String>', billingPricesTableId: '<UUID>', billingPricesTableName: '<String>', billingSubscriptionsTableId: '<UUID>', billingSubscriptionsTableName: '<String>', billingWebhookEventsTableId: '<UUID>', billingWebhookEventsTableName: '<String>', processBillingEventFunction: '<String>', prefix: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.hierarchyModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', chartEdgesTableId: '<UUID>', chartEdgesTableName: '<String>', hierarchySprtTableId: '<UUID>', hierarchySprtTableName: '<String>', chartEdgeGrantsTableId: '<UUID>', chartEdgeGrantsTableName: '<String>', entityTableId: '<UUID>', usersTableId: '<UUID>', scope: '<String>', prefix: '<String>', privateSchemaName: '<String>', sprtTableName: '<String>', rebuildHierarchyFunction: '<String>', getSubordinatesFunction: '<String>', getManagersFunction: '<String>', isManagerOfFunction: '<String>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
-const updated = await db.billingProviderModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+const updated = await db.hierarchyModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
 
 // Delete
-const deleted = await db.billingProviderModule.delete({ where: { id: '<UUID>' } }).execute();
+const deleted = await db.hierarchyModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
 ### `db.profilesModule`
@@ -2006,6 +2012,57 @@ const updated = await db.permissionsModule.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.permissionsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.billingModule`
+
+CRUD operations for BillingModule records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `schemaId` | UUID | Yes |
+| `privateSchemaId` | UUID | Yes |
+| `metersTableId` | UUID | Yes |
+| `metersTableName` | String | Yes |
+| `planSubscriptionsTableId` | UUID | Yes |
+| `planSubscriptionsTableName` | String | Yes |
+| `ledgerTableId` | UUID | Yes |
+| `ledgerTableName` | String | Yes |
+| `balancesTableId` | UUID | Yes |
+| `balancesTableName` | String | Yes |
+| `meterCreditsTableId` | UUID | Yes |
+| `meterCreditsTableName` | String | Yes |
+| `meterSourcesTableId` | UUID | Yes |
+| `meterSourcesTableName` | String | Yes |
+| `meterDefaultsTableId` | UUID | Yes |
+| `meterDefaultsTableName` | String | Yes |
+| `recordUsageFunction` | String | Yes |
+| `prefix` | String | Yes |
+| `defaultPermissions` | String | Yes |
+| `apiName` | String | Yes |
+| `privateApiName` | String | Yes |
+
+**Operations:**
+
+```typescript
+// List all billingModule records
+const items = await db.billingModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Get one by id
+const item = await db.billingModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, metersTableId: true, metersTableName: true, planSubscriptionsTableId: true, planSubscriptionsTableName: true, ledgerTableId: true, ledgerTableName: true, balancesTableId: true, balancesTableName: true, meterCreditsTableId: true, meterCreditsTableName: true, meterSourcesTableId: true, meterSourcesTableName: true, meterDefaultsTableId: true, meterDefaultsTableName: true, recordUsageFunction: true, prefix: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
+
+// Create
+const created = await db.billingModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', metersTableId: '<UUID>', metersTableName: '<String>', planSubscriptionsTableId: '<UUID>', planSubscriptionsTableName: '<String>', ledgerTableId: '<UUID>', ledgerTableName: '<String>', balancesTableId: '<UUID>', balancesTableName: '<String>', meterCreditsTableId: '<UUID>', meterCreditsTableName: '<String>', meterSourcesTableId: '<UUID>', meterSourcesTableName: '<String>', meterDefaultsTableId: '<UUID>', meterDefaultsTableName: '<String>', recordUsageFunction: '<String>', prefix: '<String>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.billingModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.billingModule.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.relationProvision`
 
 CRUD operations for RelationProvision records.
@@ -2058,60 +2115,6 @@ const updated = await db.relationProvision.update({ where: { id: '<UUID>' }, dat
 const deleted = await db.relationProvision.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.functionModule`
-
-CRUD operations for FunctionModule records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `schemaId` | UUID | Yes |
-| `privateSchemaId` | UUID | Yes |
-| `publicSchemaName` | String | Yes |
-| `privateSchemaName` | String | Yes |
-| `definitionsTableId` | UUID | Yes |
-| `invocationsTableId` | UUID | Yes |
-| `executionLogsTableId` | UUID | Yes |
-| `secretDefinitionsTableId` | UUID | Yes |
-| `requirementsTableId` | UUID | Yes |
-| `configDefinitionsTableId` | UUID | Yes |
-| `configRequirementsTableId` | UUID | Yes |
-| `definitionsTableName` | String | Yes |
-| `invocationsTableName` | String | Yes |
-| `executionLogsTableName` | String | Yes |
-| `secretDefinitionsTableName` | String | Yes |
-| `requirementsTableName` | String | Yes |
-| `configRequirementsTableName` | String | Yes |
-| `apiName` | String | Yes |
-| `privateApiName` | String | Yes |
-| `scope` | String | Yes |
-| `prefix` | String | Yes |
-| `entityTableId` | UUID | Yes |
-| `policies` | JSON | Yes |
-| `provisions` | JSON | Yes |
-
-**Operations:**
-
-```typescript
-// List all functionModule records
-const items = await db.functionModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Get one by id
-const item = await db.functionModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, publicSchemaName: true, privateSchemaName: true, definitionsTableId: true, invocationsTableId: true, executionLogsTableId: true, secretDefinitionsTableId: true, requirementsTableId: true, configDefinitionsTableId: true, configRequirementsTableId: true, definitionsTableName: true, invocationsTableName: true, executionLogsTableName: true, secretDefinitionsTableName: true, requirementsTableName: true, configRequirementsTableName: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, provisions: true } }).execute();
-
-// Create
-const created = await db.functionModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', publicSchemaName: '<String>', privateSchemaName: '<String>', definitionsTableId: '<UUID>', invocationsTableId: '<UUID>', executionLogsTableId: '<UUID>', secretDefinitionsTableId: '<UUID>', requirementsTableId: '<UUID>', configDefinitionsTableId: '<UUID>', configRequirementsTableId: '<UUID>', definitionsTableName: '<String>', invocationsTableName: '<String>', executionLogsTableName: '<String>', secretDefinitionsTableName: '<String>', requirementsTableName: '<String>', configRequirementsTableName: '<String>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.functionModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.functionModule.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ### `db.userAuthModule`
 
 CRUD operations for UserAuthModule records.
@@ -2199,6 +2202,7 @@ CRUD operations for AgentModule records.
 | `hasPlans` | Boolean | Yes |
 | `hasResources` | Boolean | Yes |
 | `hasAgents` | Boolean | Yes |
+| `shared` | Boolean | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 | `scope` | String | Yes |
@@ -2207,18 +2211,19 @@ CRUD operations for AgentModule records.
 | `policies` | JSON | Yes |
 | `resources` | JSON | Yes |
 | `provisions` | JSON | Yes |
+| `defaultPermissions` | String | Yes |
 
 **Operations:**
 
 ```typescript
 // List all agentModule records
-const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const items = await db.agentModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Get one by id
-const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true } }).execute();
+const item = await db.agentModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, threadTableId: true, messageTableId: true, taskTableId: true, promptsTableId: true, planTableId: true, agentTableId: true, personaTableId: true, resourceTableId: true, threadTableName: true, messageTableName: true, taskTableName: true, promptsTableName: true, planTableName: true, agentTableName: true, personaTableName: true, resourceTableName: true, hasPlans: true, hasResources: true, hasAgents: true, shared: true, apiName: true, privateApiName: true, scope: true, prefix: true, entityTableId: true, policies: true, resources: true, provisions: true, defaultPermissions: true } }).execute();
 
 // Create
-const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>' }, select: { id: true } }).execute();
+const created = await db.agentModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', threadTableId: '<UUID>', messageTableId: '<UUID>', taskTableId: '<UUID>', promptsTableId: '<UUID>', planTableId: '<UUID>', agentTableId: '<UUID>', personaTableId: '<UUID>', resourceTableId: '<UUID>', threadTableName: '<String>', messageTableName: '<String>', taskTableName: '<String>', promptsTableName: '<String>', planTableName: '<String>', agentTableName: '<String>', personaTableName: '<String>', resourceTableName: '<String>', hasPlans: '<Boolean>', hasResources: '<Boolean>', hasAgents: '<Boolean>', shared: '<Boolean>', apiName: '<String>', privateApiName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', policies: '<JSON>', resources: '<JSON>', provisions: '<JSON>', defaultPermissions: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.agentModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2332,6 +2337,8 @@ CRUD operations for MembershipsModule records.
 | `entityIdsByPerm` | String | Yes |
 | `entityIdsFunction` | String | Yes |
 | `memberProfilesTableId` | UUID | Yes |
+| `permissionDefaultPermissionsTableId` | UUID | Yes |
+| `permissionDefaultGrantsTableId` | UUID | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2339,13 +2346,13 @@ CRUD operations for MembershipsModule records.
 
 ```typescript
 // List all membershipsModule records
-const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.membershipsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.membershipsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, membershipsTableId: true, membershipsTableName: true, membersTableId: true, membersTableName: true, membershipDefaultsTableId: true, membershipDefaultsTableName: true, membershipSettingsTableId: true, membershipSettingsTableName: true, grantsTableId: true, grantsTableName: true, actorTableId: true, limitsTableId: true, defaultLimitsTableId: true, permissionsTableId: true, defaultPermissionsTableId: true, sprtTableId: true, adminGrantsTableId: true, adminGrantsTableName: true, ownerGrantsTableId: true, ownerGrantsTableName: true, scope: true, prefix: true, entityTableId: true, entityTableOwnerId: true, getOrgFn: true, actorMaskCheck: true, actorPermCheck: true, entityIdsByMask: true, entityIdsByPerm: true, entityIdsFunction: true, memberProfilesTableId: true, permissionDefaultPermissionsTableId: true, permissionDefaultGrantsTableId: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.membershipsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', membershipsTableId: '<UUID>', membershipsTableName: '<String>', membersTableId: '<UUID>', membersTableName: '<String>', membershipDefaultsTableId: '<UUID>', membershipDefaultsTableName: '<String>', membershipSettingsTableId: '<UUID>', membershipSettingsTableName: '<String>', grantsTableId: '<UUID>', grantsTableName: '<String>', actorTableId: '<UUID>', limitsTableId: '<UUID>', defaultLimitsTableId: '<UUID>', permissionsTableId: '<UUID>', defaultPermissionsTableId: '<UUID>', sprtTableId: '<UUID>', adminGrantsTableId: '<UUID>', adminGrantsTableName: '<String>', ownerGrantsTableId: '<UUID>', ownerGrantsTableName: '<String>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', entityTableOwnerId: '<UUID>', getOrgFn: '<String>', actorMaskCheck: '<String>', actorPermCheck: '<String>', entityIdsByMask: '<String>', entityIdsByPerm: '<String>', entityIdsFunction: '<String>', memberProfilesTableId: '<UUID>', permissionDefaultPermissionsTableId: '<UUID>', permissionDefaultGrantsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.membershipsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2396,6 +2403,7 @@ CRUD operations for StorageModule records.
 | `hasConfirmUpload` | Boolean | Yes |
 | `confirmUploadDelay` | Interval | Yes |
 | `fileEventsTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2403,13 +2411,13 @@ CRUD operations for StorageModule records.
 
 ```typescript
 // List all storageModule records
-const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.storageModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.storageModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, bucketsTableId: true, filesTableId: true, bucketsTableName: true, filesTableName: true, scope: true, prefix: true, policies: true, provisions: true, entityTableId: true, endpoint: true, publicUrlPrefix: true, provider: true, allowedOrigins: true, restrictReads: true, hasPathShares: true, pathSharesTableId: true, uploadUrlExpirySeconds: true, downloadUrlExpirySeconds: true, defaultMaxFileSize: true, maxFilenameLength: true, cacheTtlSeconds: true, maxBulkFiles: true, maxBulkTotalSize: true, hasVersioning: true, hasContentHash: true, hasCustomKeys: true, hasAuditLog: true, hasConfirmUpload: true, confirmUploadDelay: true, fileEventsTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.storageModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', bucketsTableId: '<UUID>', filesTableId: '<UUID>', bucketsTableName: '<String>', filesTableName: '<String>', scope: '<String>', prefix: '<String>', policies: '<JSON>', provisions: '<JSON>', entityTableId: '<UUID>', endpoint: '<String>', publicUrlPrefix: '<String>', provider: '<String>', allowedOrigins: '<String>', restrictReads: '<Boolean>', hasPathShares: '<Boolean>', pathSharesTableId: '<UUID>', uploadUrlExpirySeconds: '<Int>', downloadUrlExpirySeconds: '<Int>', defaultMaxFileSize: '<BigInt>', maxFilenameLength: '<Int>', cacheTtlSeconds: '<Int>', maxBulkFiles: '<Int>', maxBulkTotalSize: '<BigInt>', hasVersioning: '<Boolean>', hasContentHash: '<Boolean>', hasCustomKeys: '<Boolean>', hasAuditLog: '<Boolean>', hasConfirmUpload: '<Boolean>', confirmUploadDelay: '<Interval>', fileEventsTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2418,6 +2426,74 @@ const updated = await db.storageModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.storageModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
+### `db.entityTypeProvision`
+
+CRUD operations for EntityTypeProvision records.
+
+**Fields:**
+
+| Field | Type | Editable |
+|-------|------|----------|
+| `id` | UUID | No |
+| `databaseId` | UUID | Yes |
+| `name` | String | Yes |
+| `prefix` | String | Yes |
+| `description` | String | Yes |
+| `parentEntity` | String | Yes |
+| `tableName` | String | Yes |
+| `isVisible` | Boolean | Yes |
+| `hasLimits` | Boolean | Yes |
+| `hasProfiles` | Boolean | Yes |
+| `hasLevels` | Boolean | Yes |
+| `hasInvites` | Boolean | Yes |
+| `hasInviteAchievements` | Boolean | Yes |
+| `storage` | JSON | Yes |
+| `namespaces` | JSON | Yes |
+| `functions` | JSON | Yes |
+| `graphs` | JSON | Yes |
+| `agents` | JSON | Yes |
+| `skipEntityPolicies` | Boolean | Yes |
+| `tableProvision` | JSON | Yes |
+| `outMembershipType` | Int | Yes |
+| `outEntityTableId` | UUID | Yes |
+| `outEntityTableName` | String | Yes |
+| `outInstalledModules` | String | Yes |
+| `outStorageModuleId` | UUID | Yes |
+| `outBucketsTableId` | UUID | Yes |
+| `outFilesTableId` | UUID | Yes |
+| `outPathSharesTableId` | UUID | Yes |
+| `outInvitesModuleId` | UUID | Yes |
+| `outNamespaceModuleId` | UUID | Yes |
+| `outNamespacesTableId` | UUID | Yes |
+| `outNamespaceEventsTableId` | UUID | Yes |
+| `outFunctionModuleId` | UUID | Yes |
+| `outDefinitionsTableId` | UUID | Yes |
+| `outInvocationsTableId` | UUID | Yes |
+| `outExecutionLogsTableId` | UUID | Yes |
+| `outSecretDefinitionsTableId` | UUID | Yes |
+| `outGraphModuleId` | UUID | Yes |
+| `outGraphsTableId` | UUID | Yes |
+| `outAgentModuleId` | UUID | Yes |
+
+**Operations:**
+
+```typescript
+// List all entityTypeProvision records
+const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Get one by id
+const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
+
+// Create
+const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
+
+// Update
+const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
+
+// Delete
+const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
+```
+
 ### `db.eventsModule`
 
 CRUD operations for EventsModule records.
@@ -2465,6 +2541,7 @@ CRUD operations for EventsModule records.
 | `prefix` | String | Yes |
 | `entityTableId` | UUID | Yes |
 | `actorTableId` | UUID | Yes |
+| `defaultPermissions` | String | Yes |
 | `apiName` | String | Yes |
 | `privateApiName` | String | Yes |
 
@@ -2472,13 +2549,13 @@ CRUD operations for EventsModule records.
 
 ```typescript
 // List all eventsModule records
-const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const items = await db.eventsModule.findMany({ select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Get one by id
-const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, apiName: true, privateApiName: true } }).execute();
+const item = await db.eventsModule.findOne({ id: '<UUID>', select: { id: true, databaseId: true, schemaId: true, privateSchemaId: true, eventsTableId: true, eventsTableName: true, eventAggregatesTableId: true, eventAggregatesTableName: true, eventTypesTableId: true, eventTypesTableName: true, levelsTableId: true, levelsTableName: true, levelRequirementsTableId: true, levelRequirementsTableName: true, levelGrantsTableId: true, levelGrantsTableName: true, achievementRewardsTableId: true, achievementRewardsTableName: true, recordEvent: true, removeEvent: true, tgEvent: true, tgEventToggle: true, tgEventToggleBool: true, tgEventBool: true, upsertAggregate: true, tgUpdateAggregates: true, pruneEvents: true, stepsRequired: true, levelAchieved: true, tgCheckAchievements: true, grantAchievement: true, tgAchievementReward: true, interval: true, retention: true, premake: true, scope: true, prefix: true, entityTableId: true, actorTableId: true, defaultPermissions: true, apiName: true, privateApiName: true } }).execute();
 
 // Create
-const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
+const created = await db.eventsModule.create({ data: { databaseId: '<UUID>', schemaId: '<UUID>', privateSchemaId: '<UUID>', eventsTableId: '<UUID>', eventsTableName: '<String>', eventAggregatesTableId: '<UUID>', eventAggregatesTableName: '<String>', eventTypesTableId: '<UUID>', eventTypesTableName: '<String>', levelsTableId: '<UUID>', levelsTableName: '<String>', levelRequirementsTableId: '<UUID>', levelRequirementsTableName: '<String>', levelGrantsTableId: '<UUID>', levelGrantsTableName: '<String>', achievementRewardsTableId: '<UUID>', achievementRewardsTableName: '<String>', recordEvent: '<String>', removeEvent: '<String>', tgEvent: '<String>', tgEventToggle: '<String>', tgEventToggleBool: '<String>', tgEventBool: '<String>', upsertAggregate: '<String>', tgUpdateAggregates: '<String>', pruneEvents: '<String>', stepsRequired: '<String>', levelAchieved: '<String>', tgCheckAchievements: '<String>', grantAchievement: '<String>', tgAchievementReward: '<String>', interval: '<String>', retention: '<String>', premake: '<Int>', scope: '<String>', prefix: '<String>', entityTableId: '<UUID>', actorTableId: '<UUID>', defaultPermissions: '<String>', apiName: '<String>', privateApiName: '<String>' }, select: { id: true } }).execute();
 
 // Update
 const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
@@ -2487,76 +2564,6 @@ const updated = await db.eventsModule.update({ where: { id: '<UUID>' }, data: {
 const deleted = await db.eventsModule.delete({ where: { id: '<UUID>' } }).execute();
 ```
 
-### `db.entityTypeProvision`
-
-CRUD operations for EntityTypeProvision records.
-
-**Fields:**
-
-| Field | Type | Editable |
-|-------|------|----------|
-| `id` | UUID | No |
-| `databaseId` | UUID | Yes |
-| `name` | String | Yes |
-| `prefix` | String | Yes |
-| `description` | String | Yes |
-| `parentEntity` | String | Yes |
-| `tableName` | String | Yes |
-| `isVisible` | Boolean | Yes |
-| `hasLimits` | Boolean | Yes |
-| `hasProfiles` | Boolean | Yes |
-| `hasLevels` | Boolean | Yes |
-| `hasInvites` | Boolean | Yes |
-| `hasInviteAchievements` | Boolean | Yes |
-| `storage` | JSON | Yes |
-| `namespaces` | JSON | Yes |
-| `functions` | JSON | Yes |
-| `graphs` | JSON | Yes |
-| `agents` | JSON | Yes |
-| `skipEntityPolicies` | Boolean | Yes |
-| `tableProvision` | JSON | Yes |
-| `outMembershipType` | Int | Yes |
-| `outEntityTableId` | UUID | Yes |
-| `outEntityTableName` | String | Yes |
-| `outInstalledModules` | String | Yes |
-| `outStorageModuleId` | UUID | Yes |
-| `outBucketsTableId` | UUID | Yes |
-| `outFilesTableId` | UUID | Yes |
-| `outPathSharesTableId` | UUID | Yes |
-| `outInvitesModuleId` | UUID | Yes |
-| `outNamespaceModuleId` | UUID | Yes |
-| `outNamespacesTableId` | UUID | Yes |
-| `outNamespaceEventsTableId` | UUID | Yes |
-| `outFunctionModuleId` | UUID | Yes |
-| `outDefinitionsTableId` | UUID | Yes |
-| `outInvocationsTableId` | UUID | Yes |
-| `outExecutionLogsTableId` | UUID | Yes |
-| `outSecretDefinitionsTableId` | UUID | Yes |
-| `outRequirementsTableId` | UUID | Yes |
-| `outConfigRequirementsTableId` | UUID | Yes |
-| `outGraphModuleId` | UUID | Yes |
-| `outGraphsTableId` | UUID | Yes |
-| `outAgentModuleId` | UUID | Yes |
-
-**Operations:**
-
-```typescript
-// List all entityTypeProvision records
-const items = await db.entityTypeProvision.findMany({ select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Get one by id
-const item = await db.entityTypeProvision.findOne({ id: '<UUID>', select: { id: true, databaseId: true, name: true, prefix: true, description: true, parentEntity: true, tableName: true, isVisible: true, hasLimits: true, hasProfiles: true, hasLevels: true, hasInvites: true, hasInviteAchievements: true, storage: true, namespaces: true, functions: true, graphs: true, agents: true, skipEntityPolicies: true, tableProvision: true, outMembershipType: true, outEntityTableId: true, outEntityTableName: true, outInstalledModules: true, outStorageModuleId: true, outBucketsTableId: true, outFilesTableId: true, outPathSharesTableId: true, outInvitesModuleId: true, outNamespaceModuleId: true, outNamespacesTableId: true, outNamespaceEventsTableId: true, outFunctionModuleId: true, outDefinitionsTableId: true, outInvocationsTableId: true, outExecutionLogsTableId: true, outSecretDefinitionsTableId: true, outRequirementsTableId: true, outConfigRequirementsTableId: true, outGraphModuleId: true, outGraphsTableId: true, outAgentModuleId: true } }).execute();
-
-// Create
-const created = await db.entityTypeProvision.create({ data: { databaseId: '<UUID>', name: '<String>', prefix: '<String>', description: '<String>', parentEntity: '<String>', tableName: '<String>', isVisible: '<Boolean>', hasLimits: '<Boolean>', hasProfiles: '<Boolean>', hasLevels: '<Boolean>', hasInvites: '<Boolean>', hasInviteAchievements: '<Boolean>', storage: '<JSON>', namespaces: '<JSON>', functions: '<JSON>', graphs: '<JSON>', agents: '<JSON>', skipEntityPolicies: '<Boolean>', tableProvision: '<JSON>', outMembershipType: '<Int>', outEntityTableId: '<UUID>', outEntityTableName: '<String>', outInstalledModules: '<String>', outStorageModuleId: '<UUID>', outBucketsTableId: '<UUID>', outFilesTableId: '<UUID>', outPathSharesTableId: '<UUID>', outInvitesModuleId: '<UUID>', outNamespaceModuleId: '<UUID>', outNamespacesTableId: '<UUID>', outNamespaceEventsTableId: '<UUID>', outFunctionModuleId: '<UUID>', outDefinitionsTableId: '<UUID>', outInvocationsTableId: '<UUID>', outExecutionLogsTableId: '<UUID>', outSecretDefinitionsTableId: '<UUID>', outRequirementsTableId: '<UUID>', outConfigRequirementsTableId: '<UUID>', outGraphModuleId: '<UUID>', outGraphsTableId: '<UUID>', outAgentModuleId: '<UUID>' }, select: { id: true } }).execute();
-
-// Update
-const updated = await db.entityTypeProvision.update({ where: { id: '<UUID>' }, data: { databaseId: '<UUID>' }, select: { id: true } }).execute();
-
-// Delete
-const deleted = await db.entityTypeProvision.delete({ where: { id: '<UUID>' } }).execute();
-```
-
 ## Custom Operations
 
 ### `db.query.resolveBlueprintField`
diff --git a/sdk/constructive-sdk/src/modules/orm/index.ts b/sdk/constructive-sdk/src/modules/orm/index.ts
index c119d6f62..9a4233c90 100644
--- a/sdk/constructive-sdk/src/modules/orm/index.ts
+++ b/sdk/constructive-sdk/src/modules/orm/index.ts
@@ -29,38 +29,38 @@ import { BlueprintModel } from './models/blueprint';
 import { BlueprintTemplateModel } from './models/blueprintTemplate';
 import { BlueprintConstructionModel } from './models/blueprintConstruction';
 import { CryptoAuthModuleModel } from './models/cryptoAuthModule';
-import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { SessionsModuleModel } from './models/sessionsModule';
 import { ConfigSecretsModuleModel } from './models/configSecretsModule';
 import { MerkleStoreModuleModel } from './models/merkleStoreModule';
 import { GraphModuleModel } from './models/graphModule';
 import { SecureTableProvisionModel } from './models/secureTableProvision';
+import { RateLimitMetersModuleModel } from './models/rateLimitMetersModule';
 import { InvitesModuleModel } from './models/invitesModule';
 import { DatabaseProvisionModuleModel } from './models/databaseProvisionModule';
-import { NamespaceModuleModel } from './models/namespaceModule';
 import { RealtimeModuleModel } from './models/realtimeModule';
 import { WebauthnAuthModuleModel } from './models/webauthnAuthModule';
+import { NamespaceModuleModel } from './models/namespaceModule';
 import { ComputeLogModuleModel } from './models/computeLogModule';
 import { InferenceLogModuleModel } from './models/inferenceLogModule';
 import { StorageLogModuleModel } from './models/storageLogModule';
 import { TransferLogModuleModel } from './models/transferLogModule';
+import { PlansModuleModel } from './models/plansModule';
 import { DbUsageModuleModel } from './models/dbUsageModule';
 import { NotificationsModuleModel } from './models/notificationsModule';
-import { PlansModuleModel } from './models/plansModule';
-import { HierarchyModuleModel } from './models/hierarchyModule';
-import { BillingModuleModel } from './models/billingModule';
 import { BillingProviderModuleModel } from './models/billingProviderModule';
+import { FunctionModuleModel } from './models/functionModule';
+import { HierarchyModuleModel } from './models/hierarchyModule';
 import { ProfilesModuleModel } from './models/profilesModule';
 import { PermissionsModuleModel } from './models/permissionsModule';
+import { BillingModuleModel } from './models/billingModule';
 import { RelationProvisionModel } from './models/relationProvision';
-import { FunctionModuleModel } from './models/functionModule';
 import { UserAuthModuleModel } from './models/userAuthModule';
 import { AgentModuleModel } from './models/agentModule';
 import { LimitsModuleModel } from './models/limitsModule';
 import { MembershipsModuleModel } from './models/membershipsModule';
 import { StorageModuleModel } from './models/storageModule';
-import { EventsModuleModel } from './models/eventsModule';
 import { EntityTypeProvisionModel } from './models/entityTypeProvision';
+import { EventsModuleModel } from './models/eventsModule';
 import { createQueryOperations } from './query';
 import { createMutationOperations } from './mutation';
 export type { OrmClientConfig, QueryResult, GraphQLError, GraphQLAdapter } from './client';
@@ -120,38 +120,38 @@ export function createClient(config: OrmClientConfig) {
     blueprintTemplate: new BlueprintTemplateModel(client),
     blueprintConstruction: new BlueprintConstructionModel(client),
     cryptoAuthModule: new CryptoAuthModuleModel(client),
-    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     sessionsModule: new SessionsModuleModel(client),
     configSecretsModule: new ConfigSecretsModuleModel(client),
     merkleStoreModule: new MerkleStoreModuleModel(client),
     graphModule: new GraphModuleModel(client),
     secureTableProvision: new SecureTableProvisionModel(client),
+    rateLimitMetersModule: new RateLimitMetersModuleModel(client),
     invitesModule: new InvitesModuleModel(client),
     databaseProvisionModule: new DatabaseProvisionModuleModel(client),
-    namespaceModule: new NamespaceModuleModel(client),
     realtimeModule: new RealtimeModuleModel(client),
     webauthnAuthModule: new WebauthnAuthModuleModel(client),
+    namespaceModule: new NamespaceModuleModel(client),
     computeLogModule: new ComputeLogModuleModel(client),
     inferenceLogModule: new InferenceLogModuleModel(client),
     storageLogModule: new StorageLogModuleModel(client),
     transferLogModule: new TransferLogModuleModel(client),
+    plansModule: new PlansModuleModel(client),
     dbUsageModule: new DbUsageModuleModel(client),
     notificationsModule: new NotificationsModuleModel(client),
-    plansModule: new PlansModuleModel(client),
-    hierarchyModule: new HierarchyModuleModel(client),
-    billingModule: new BillingModuleModel(client),
     billingProviderModule: new BillingProviderModuleModel(client),
+    functionModule: new FunctionModuleModel(client),
+    hierarchyModule: new HierarchyModuleModel(client),
     profilesModule: new ProfilesModuleModel(client),
     permissionsModule: new PermissionsModuleModel(client),
+    billingModule: new BillingModuleModel(client),
     relationProvision: new RelationProvisionModel(client),
-    functionModule: new FunctionModuleModel(client),
     userAuthModule: new UserAuthModuleModel(client),
     agentModule: new AgentModuleModel(client),
     limitsModule: new LimitsModuleModel(client),
     membershipsModule: new MembershipsModuleModel(client),
     storageModule: new StorageModuleModel(client),
-    eventsModule: new EventsModuleModel(client),
     entityTypeProvision: new EntityTypeProvisionModel(client),
+    eventsModule: new EventsModuleModel(client),
     query: createQueryOperations(client),
     mutation: createMutationOperations(client),
   };
diff --git a/sdk/constructive-sdk/src/modules/orm/input-types.ts b/sdk/constructive-sdk/src/modules/orm/input-types.ts
index 75db6ada9..7c40f190b 100644
--- a/sdk/constructive-sdk/src/modules/orm/input-types.ts
+++ b/sdk/constructive-sdk/src/modules/orm/input-types.ts
@@ -566,22 +566,6 @@ export interface CryptoAuthModule {
   signUpWithKey?: string | null;
   signInWithChallenge?: string | null;
 }
-export interface RateLimitMetersModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface SessionsModule {
   id: string;
   databaseId?: string | null;
@@ -652,6 +636,7 @@ export interface GraphModule {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
 /** Provisions security, fields, grants, and policies onto a table. Each row can independently: (1) create fields via nodes[] array (supporting multiple Data* modules per row), (2) grant privileges via grants[] array (supporting per-role privilege targeting), (3) create RLS policies via policies[] array (supporting multiple Authz* policies per row). Multiple rows can target the same table to compose different concerns. All three concerns are optional and independent. */
@@ -679,6 +664,23 @@ export interface SecureTableProvision {
   /** Output column populated by the trigger after field creation. Contains the UUIDs of the metaschema fields created on the target table by this provision row's nodes. NULL when nodes is empty or before the trigger runs. Callers should not set this directly. */
   outFields?: string[] | null;
 }
+export interface RateLimitMetersModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface InvitesModule {
   id: string;
   databaseId?: string | null;
@@ -723,25 +725,6 @@ export interface DatabaseProvisionModule {
   updatedAt?: string | null;
   completedAt?: string | null;
 }
-export interface NamespaceModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface RealtimeModule {
   id: string;
   databaseId?: string | null;
@@ -776,6 +759,26 @@ export interface WebauthnAuthModule {
   residentKey?: string | null;
   challengeExpiry?: string | null;
 }
+export interface NamespaceModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface ComputeLogModule {
   id: string;
   databaseId?: string | null;
@@ -852,6 +855,27 @@ export interface TransferLogModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface PlansModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 export interface DbUsageModule {
   id: string;
   databaseId?: string | null;
@@ -870,6 +894,7 @@ export interface DbUsageModule {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -891,30 +916,58 @@ export interface NotificationsModule {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface PlansModule {
+export interface BillingProviderModule {
   id: string;
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface FunctionModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
 export interface HierarchyModule {
   id: string;
   databaseId?: string | null;
@@ -936,56 +989,9 @@ export interface HierarchyModule {
   getSubordinatesFunction?: string | null;
   getManagersFunction?: string | null;
   isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
   createdAt?: string | null;
 }
-export interface BillingModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface BillingProviderModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
 export interface ProfilesModule {
   id: string;
   databaseId?: string | null;
@@ -1031,6 +1037,31 @@ export interface PermissionsModule {
   apiName?: string | null;
   privateApiName?: string | null;
 }
+export interface BillingModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 /**
  * Provisions relational structure between tables. Supports four relation types:
  *      - RelationBelongsTo: adds a FK field on the source table referencing the target table (child perspective: "tasks belongs to projects" -> tasks.project_id).
@@ -1164,34 +1195,6 @@ export interface RelationProvision {
   /** Output column for RelationManyToMany: the UUID of the FK field on the junction table referencing the target table. Populated by the trigger. NULL for RelationBelongsTo/RelationHasOne. Callers should not set this directly. */
   outTargetFieldId?: string | null;
 }
-export interface FunctionModule {
-  id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
 export interface UserAuthModule {
   id: string;
   databaseId?: string | null;
@@ -1246,6 +1249,7 @@ export interface AgentModule {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -1254,6 +1258,7 @@ export interface AgentModule {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface LimitsModule {
   id: string;
@@ -1327,6 +1332,8 @@ export interface MembershipsModule {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -1365,66 +1372,24 @@ export interface StorageModule {
   hasConfirmUpload?: boolean | null;
   confirmUploadDelay?: string | null;
   fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface EventsModule {
+/**
+ * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
+ *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
+ *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
+ *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
+ *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
+ *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
+ *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
+ *      as an escape hatch to apply zero policies.
+ */
+export interface EntityTypeProvision {
+  /** Unique identifier for this provision row. */
   id: string;
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  actorTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-/**
- * Provisions a new membership entity type. Each INSERT creates an entity table, registers a membership type,
- *      and installs the required modules (permissions, memberships, limits) plus optional modules (profiles, levels, invites).
- *      Uses provision_membership_table() internally. Graceful: duplicate (database_id, prefix) pairs are silently skipped
- *      via the unique constraint (use INSERT ... ON CONFLICT DO NOTHING).
- *      Policy behavior: by default the five entity-table RLS policies are applied (gated by is_visible).
- *      Set table_provision to a single jsonb object (using the same shape as provision_table() /
- *      blueprint tables[] entries) to replace the defaults with your own; set skip_entity_policies=true
- *      as an escape hatch to apply zero policies.
- */
-export interface EntityTypeProvision {
-  /** Unique identifier for this provision row. */
-  id: string;
-  /** The database to provision this entity type in. Required. */
+  /** The database to provision this entity type in. Required. */
   databaseId?: string | null;
   /**
    * Human-readable name for this entity type, e.g. 'Data Room', 'Team Channel'. Required.
@@ -1669,12 +1634,54 @@ export interface EntityTypeProvision {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
 }
+export interface EventsModule {
+  id: string;
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
 // ============ Relation Helper Types ============
 export interface ConnectionResult<T> {
   nodes: T[];
@@ -1721,7 +1728,6 @@ export interface BlueprintConstructionRelations {
   blueprint?: Blueprint | null;
 }
 export interface CryptoAuthModuleRelations {}
-export interface RateLimitMetersModuleRelations {}
 export interface SessionsModuleRelations {}
 export interface ConfigSecretsModuleRelations {}
 export interface MerkleStoreModuleRelations {
@@ -1731,32 +1737,33 @@ export interface GraphModuleRelations {
   merkleStoreModule?: MerkleStoreModule | null;
 }
 export interface SecureTableProvisionRelations {}
+export interface RateLimitMetersModuleRelations {}
 export interface InvitesModuleRelations {}
 export interface DatabaseProvisionModuleRelations {}
-export interface NamespaceModuleRelations {}
 export interface RealtimeModuleRelations {}
 export interface WebauthnAuthModuleRelations {}
+export interface NamespaceModuleRelations {}
 export interface ComputeLogModuleRelations {}
 export interface InferenceLogModuleRelations {}
 export interface StorageLogModuleRelations {}
 export interface TransferLogModuleRelations {}
+export interface PlansModuleRelations {}
 export interface DbUsageModuleRelations {}
 export interface NotificationsModuleRelations {}
-export interface PlansModuleRelations {}
-export interface HierarchyModuleRelations {}
-export interface BillingModuleRelations {}
 export interface BillingProviderModuleRelations {}
+export interface FunctionModuleRelations {}
+export interface HierarchyModuleRelations {}
 export interface ProfilesModuleRelations {}
 export interface PermissionsModuleRelations {}
+export interface BillingModuleRelations {}
 export interface RelationProvisionRelations {}
-export interface FunctionModuleRelations {}
 export interface UserAuthModuleRelations {}
 export interface AgentModuleRelations {}
 export interface LimitsModuleRelations {}
 export interface MembershipsModuleRelations {}
 export interface StorageModuleRelations {}
-export interface EventsModuleRelations {}
 export interface EntityTypeProvisionRelations {}
+export interface EventsModuleRelations {}
 // ============ Entity Types With Relations ============
 export type DefaultIdsModuleWithRelations = DefaultIdsModule & DefaultIdsModuleRelations;
 export type MembershipTypesModuleWithRelations = MembershipTypesModule &
@@ -1793,42 +1800,42 @@ export type BlueprintTemplateWithRelations = BlueprintTemplate & BlueprintTempla
 export type BlueprintConstructionWithRelations = BlueprintConstruction &
   BlueprintConstructionRelations;
 export type CryptoAuthModuleWithRelations = CryptoAuthModule & CryptoAuthModuleRelations;
-export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
-  RateLimitMetersModuleRelations;
 export type SessionsModuleWithRelations = SessionsModule & SessionsModuleRelations;
 export type ConfigSecretsModuleWithRelations = ConfigSecretsModule & ConfigSecretsModuleRelations;
 export type MerkleStoreModuleWithRelations = MerkleStoreModule & MerkleStoreModuleRelations;
 export type GraphModuleWithRelations = GraphModule & GraphModuleRelations;
 export type SecureTableProvisionWithRelations = SecureTableProvision &
   SecureTableProvisionRelations;
+export type RateLimitMetersModuleWithRelations = RateLimitMetersModule &
+  RateLimitMetersModuleRelations;
 export type InvitesModuleWithRelations = InvitesModule & InvitesModuleRelations;
 export type DatabaseProvisionModuleWithRelations = DatabaseProvisionModule &
   DatabaseProvisionModuleRelations;
-export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type RealtimeModuleWithRelations = RealtimeModule & RealtimeModuleRelations;
 export type WebauthnAuthModuleWithRelations = WebauthnAuthModule & WebauthnAuthModuleRelations;
+export type NamespaceModuleWithRelations = NamespaceModule & NamespaceModuleRelations;
 export type ComputeLogModuleWithRelations = ComputeLogModule & ComputeLogModuleRelations;
 export type InferenceLogModuleWithRelations = InferenceLogModule & InferenceLogModuleRelations;
 export type StorageLogModuleWithRelations = StorageLogModule & StorageLogModuleRelations;
 export type TransferLogModuleWithRelations = TransferLogModule & TransferLogModuleRelations;
+export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
 export type DbUsageModuleWithRelations = DbUsageModule & DbUsageModuleRelations;
 export type NotificationsModuleWithRelations = NotificationsModule & NotificationsModuleRelations;
-export type PlansModuleWithRelations = PlansModule & PlansModuleRelations;
-export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
-export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type BillingProviderModuleWithRelations = BillingProviderModule &
   BillingProviderModuleRelations;
+export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
+export type HierarchyModuleWithRelations = HierarchyModule & HierarchyModuleRelations;
 export type ProfilesModuleWithRelations = ProfilesModule & ProfilesModuleRelations;
 export type PermissionsModuleWithRelations = PermissionsModule & PermissionsModuleRelations;
+export type BillingModuleWithRelations = BillingModule & BillingModuleRelations;
 export type RelationProvisionWithRelations = RelationProvision & RelationProvisionRelations;
-export type FunctionModuleWithRelations = FunctionModule & FunctionModuleRelations;
 export type UserAuthModuleWithRelations = UserAuthModule & UserAuthModuleRelations;
 export type AgentModuleWithRelations = AgentModule & AgentModuleRelations;
 export type LimitsModuleWithRelations = LimitsModule & LimitsModuleRelations;
 export type MembershipsModuleWithRelations = MembershipsModule & MembershipsModuleRelations;
 export type StorageModuleWithRelations = StorageModule & StorageModuleRelations;
-export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 export type EntityTypeProvisionWithRelations = EntityTypeProvision & EntityTypeProvisionRelations;
+export type EventsModuleWithRelations = EventsModule & EventsModuleRelations;
 // ============ Entity Select Types ============
 export type DefaultIdsModuleSelect = {
   id?: boolean;
@@ -2123,22 +2130,6 @@ export type CryptoAuthModuleSelect = {
   signUpWithKey?: boolean;
   signInWithChallenge?: boolean;
 };
-export type RateLimitMetersModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  rateLimitStateTableId?: boolean;
-  rateLimitStateTableName?: boolean;
-  rateLimitOverridesTableId?: boolean;
-  rateLimitOverridesTableName?: boolean;
-  rateWindowLimitsTableId?: boolean;
-  rateWindowLimitsTableName?: boolean;
-  checkRateLimitFunction?: boolean;
-  prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-};
 export type SessionsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2210,6 +2201,7 @@ export type GraphModuleSelect = {
   entityTableId?: boolean;
   policies?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
   createdAt?: boolean;
   merkleStoreModule?: {
     select: MerkleStoreModuleSelect;
@@ -2228,6 +2220,23 @@ export type SecureTableProvisionSelect = {
   policies?: boolean;
   outFields?: boolean;
 };
+export type RateLimitMetersModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  rateLimitStateTableId?: boolean;
+  rateLimitStateTableName?: boolean;
+  rateLimitOverridesTableId?: boolean;
+  rateLimitOverridesTableName?: boolean;
+  rateWindowLimitsTableId?: boolean;
+  rateWindowLimitsTableName?: boolean;
+  checkRateLimitFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type InvitesModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2262,25 +2271,6 @@ export type DatabaseProvisionModuleSelect = {
   updatedAt?: boolean;
   completedAt?: boolean;
 };
-export type NamespaceModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  namespacesTableId?: boolean;
-  namespaceEventsTableId?: boolean;
-  namespacesTableName?: boolean;
-  namespaceEventsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type RealtimeModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2315,6 +2305,26 @@ export type WebauthnAuthModuleSelect = {
   residentKey?: boolean;
   challengeExpiry?: boolean;
 };
+export type NamespaceModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  publicSchemaName?: boolean;
+  privateSchemaName?: boolean;
+  namespacesTableId?: boolean;
+  namespaceEventsTableId?: boolean;
+  namespacesTableName?: boolean;
+  namespaceEventsTableName?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
+};
 export type ComputeLogModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2391,6 +2401,27 @@ export type TransferLogModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type PlansModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  plansTableId?: boolean;
+  plansTableName?: boolean;
+  planLimitsTableId?: boolean;
+  planLimitsTableName?: boolean;
+  planPricingTableId?: boolean;
+  planOverridesTableId?: boolean;
+  planMeterLimitsTableId?: boolean;
+  planCapsTableId?: boolean;
+  applyPlanFunction?: boolean;
+  applyPlanAggregateFunction?: boolean;
+  applyBillingPlanFunction?: boolean;
+  applyPlanCapsFunction?: boolean;
+  prefix?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type DbUsageModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2409,6 +2440,7 @@ export type DbUsageModuleSelect = {
   premake?: boolean;
   scope?: boolean;
   prefix?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2430,100 +2462,81 @@ export type NotificationsModuleSelect = {
   hasSettingsExtension?: boolean;
   hasDigestMetadata?: boolean;
   hasSubscriptions?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type PlansModuleSelect = {
+export type BillingProviderModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  plansTableId?: boolean;
-  plansTableName?: boolean;
-  planLimitsTableId?: boolean;
-  planLimitsTableName?: boolean;
-  planPricingTableId?: boolean;
-  planOverridesTableId?: boolean;
-  planMeterLimitsTableId?: boolean;
-  planCapsTableId?: boolean;
-  applyPlanFunction?: boolean;
-  applyPlanAggregateFunction?: boolean;
-  applyBillingPlanFunction?: boolean;
-  applyPlanCapsFunction?: boolean;
+  provider?: boolean;
+  productsTableId?: boolean;
+  pricesTableId?: boolean;
+  subscriptionsTableId?: boolean;
+  billingCustomersTableId?: boolean;
+  billingCustomersTableName?: boolean;
+  billingProductsTableId?: boolean;
+  billingProductsTableName?: boolean;
+  billingPricesTableId?: boolean;
+  billingPricesTableName?: boolean;
+  billingSubscriptionsTableId?: boolean;
+  billingSubscriptionsTableName?: boolean;
+  billingWebhookEventsTableId?: boolean;
+  billingWebhookEventsTableName?: boolean;
+  processBillingEventFunction?: boolean;
   prefix?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type HierarchyModuleSelect = {
+export type FunctionModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  chartEdgesTableId?: boolean;
-  chartEdgesTableName?: boolean;
-  hierarchySprtTableId?: boolean;
-  hierarchySprtTableName?: boolean;
-  chartEdgeGrantsTableId?: boolean;
-  chartEdgeGrantsTableName?: boolean;
-  entityTableId?: boolean;
-  usersTableId?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
+  publicSchemaName?: boolean;
   privateSchemaName?: boolean;
-  sprtTableName?: boolean;
-  rebuildHierarchyFunction?: boolean;
-  getSubordinatesFunction?: boolean;
-  getManagersFunction?: boolean;
-  isManagerOfFunction?: boolean;
-  createdAt?: boolean;
-};
-export type BillingModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  metersTableId?: boolean;
-  metersTableName?: boolean;
-  planSubscriptionsTableId?: boolean;
-  planSubscriptionsTableName?: boolean;
-  ledgerTableId?: boolean;
-  ledgerTableName?: boolean;
-  balancesTableId?: boolean;
-  balancesTableName?: boolean;
-  meterCreditsTableId?: boolean;
-  meterCreditsTableName?: boolean;
-  meterSourcesTableId?: boolean;
-  meterSourcesTableName?: boolean;
-  meterDefaultsTableId?: boolean;
-  meterDefaultsTableName?: boolean;
-  recordUsageFunction?: boolean;
-  prefix?: boolean;
+  definitionsTableId?: boolean;
+  invocationsTableId?: boolean;
+  executionLogsTableId?: boolean;
+  secretDefinitionsTableId?: boolean;
+  definitionsTableName?: boolean;
+  invocationsTableName?: boolean;
+  executionLogsTableName?: boolean;
+  secretDefinitionsTableName?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
+  scope?: boolean;
+  prefix?: boolean;
+  entityTableId?: boolean;
+  policies?: boolean;
+  provisions?: boolean;
+  defaultPermissions?: boolean;
 };
-export type BillingProviderModuleSelect = {
+export type HierarchyModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
   schemaId?: boolean;
   privateSchemaId?: boolean;
-  provider?: boolean;
-  productsTableId?: boolean;
-  pricesTableId?: boolean;
-  subscriptionsTableId?: boolean;
-  billingCustomersTableId?: boolean;
-  billingCustomersTableName?: boolean;
-  billingProductsTableId?: boolean;
-  billingProductsTableName?: boolean;
-  billingPricesTableId?: boolean;
-  billingPricesTableName?: boolean;
-  billingSubscriptionsTableId?: boolean;
-  billingSubscriptionsTableName?: boolean;
-  billingWebhookEventsTableId?: boolean;
-  billingWebhookEventsTableName?: boolean;
-  processBillingEventFunction?: boolean;
+  chartEdgesTableId?: boolean;
+  chartEdgesTableName?: boolean;
+  hierarchySprtTableId?: boolean;
+  hierarchySprtTableName?: boolean;
+  chartEdgeGrantsTableId?: boolean;
+  chartEdgeGrantsTableName?: boolean;
+  entityTableId?: boolean;
+  usersTableId?: boolean;
+  scope?: boolean;
   prefix?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
+  privateSchemaName?: boolean;
+  sprtTableName?: boolean;
+  rebuildHierarchyFunction?: boolean;
+  getSubordinatesFunction?: boolean;
+  getManagersFunction?: boolean;
+  isManagerOfFunction?: boolean;
+  defaultPermissions?: boolean;
+  createdAt?: boolean;
 };
 export type ProfilesModuleSelect = {
   id?: boolean;
@@ -2570,6 +2583,31 @@ export type PermissionsModuleSelect = {
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type BillingModuleSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  schemaId?: boolean;
+  privateSchemaId?: boolean;
+  metersTableId?: boolean;
+  metersTableName?: boolean;
+  planSubscriptionsTableId?: boolean;
+  planSubscriptionsTableName?: boolean;
+  ledgerTableId?: boolean;
+  ledgerTableName?: boolean;
+  balancesTableId?: boolean;
+  balancesTableName?: boolean;
+  meterCreditsTableId?: boolean;
+  meterCreditsTableName?: boolean;
+  meterSourcesTableId?: boolean;
+  meterSourcesTableName?: boolean;
+  meterDefaultsTableId?: boolean;
+  meterDefaultsTableName?: boolean;
+  recordUsageFunction?: boolean;
+  prefix?: boolean;
+  defaultPermissions?: boolean;
+  apiName?: boolean;
+  privateApiName?: boolean;
+};
 export type RelationProvisionSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2596,34 +2634,6 @@ export type RelationProvisionSelect = {
   outSourceFieldId?: boolean;
   outTargetFieldId?: boolean;
 };
-export type FunctionModuleSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  schemaId?: boolean;
-  privateSchemaId?: boolean;
-  publicSchemaName?: boolean;
-  privateSchemaName?: boolean;
-  definitionsTableId?: boolean;
-  invocationsTableId?: boolean;
-  executionLogsTableId?: boolean;
-  secretDefinitionsTableId?: boolean;
-  requirementsTableId?: boolean;
-  configDefinitionsTableId?: boolean;
-  configRequirementsTableId?: boolean;
-  definitionsTableName?: boolean;
-  invocationsTableName?: boolean;
-  executionLogsTableName?: boolean;
-  secretDefinitionsTableName?: boolean;
-  requirementsTableName?: boolean;
-  configRequirementsTableName?: boolean;
-  apiName?: boolean;
-  privateApiName?: boolean;
-  scope?: boolean;
-  prefix?: boolean;
-  entityTableId?: boolean;
-  policies?: boolean;
-  provisions?: boolean;
-};
 export type UserAuthModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2678,6 +2688,7 @@ export type AgentModuleSelect = {
   hasPlans?: boolean;
   hasResources?: boolean;
   hasAgents?: boolean;
+  shared?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
   scope?: boolean;
@@ -2686,6 +2697,7 @@ export type AgentModuleSelect = {
   policies?: boolean;
   resources?: boolean;
   provisions?: boolean;
+  defaultPermissions?: boolean;
 };
 export type LimitsModuleSelect = {
   id?: boolean;
@@ -2759,6 +2771,8 @@ export type MembershipsModuleSelect = {
   entityIdsByPerm?: boolean;
   entityIdsFunction?: boolean;
   memberProfilesTableId?: boolean;
+  permissionDefaultPermissionsTableId?: boolean;
+  permissionDefaultGrantsTableId?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
@@ -2797,9 +2811,52 @@ export type StorageModuleSelect = {
   hasConfirmUpload?: boolean;
   confirmUploadDelay?: boolean;
   fileEventsTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
+export type EntityTypeProvisionSelect = {
+  id?: boolean;
+  databaseId?: boolean;
+  name?: boolean;
+  prefix?: boolean;
+  description?: boolean;
+  parentEntity?: boolean;
+  tableName?: boolean;
+  isVisible?: boolean;
+  hasLimits?: boolean;
+  hasProfiles?: boolean;
+  hasLevels?: boolean;
+  hasInvites?: boolean;
+  hasInviteAchievements?: boolean;
+  storage?: boolean;
+  namespaces?: boolean;
+  functions?: boolean;
+  graphs?: boolean;
+  agents?: boolean;
+  skipEntityPolicies?: boolean;
+  tableProvision?: boolean;
+  outMembershipType?: boolean;
+  outEntityTableId?: boolean;
+  outEntityTableName?: boolean;
+  outInstalledModules?: boolean;
+  outStorageModuleId?: boolean;
+  outBucketsTableId?: boolean;
+  outFilesTableId?: boolean;
+  outPathSharesTableId?: boolean;
+  outInvitesModuleId?: boolean;
+  outNamespaceModuleId?: boolean;
+  outNamespacesTableId?: boolean;
+  outNamespaceEventsTableId?: boolean;
+  outFunctionModuleId?: boolean;
+  outDefinitionsTableId?: boolean;
+  outInvocationsTableId?: boolean;
+  outExecutionLogsTableId?: boolean;
+  outSecretDefinitionsTableId?: boolean;
+  outGraphModuleId?: boolean;
+  outGraphsTableId?: boolean;
+  outAgentModuleId?: boolean;
+};
 export type EventsModuleSelect = {
   id?: boolean;
   databaseId?: boolean;
@@ -2840,53 +2897,10 @@ export type EventsModuleSelect = {
   prefix?: boolean;
   entityTableId?: boolean;
   actorTableId?: boolean;
+  defaultPermissions?: boolean;
   apiName?: boolean;
   privateApiName?: boolean;
 };
-export type EntityTypeProvisionSelect = {
-  id?: boolean;
-  databaseId?: boolean;
-  name?: boolean;
-  prefix?: boolean;
-  description?: boolean;
-  parentEntity?: boolean;
-  tableName?: boolean;
-  isVisible?: boolean;
-  hasLimits?: boolean;
-  hasProfiles?: boolean;
-  hasLevels?: boolean;
-  hasInvites?: boolean;
-  hasInviteAchievements?: boolean;
-  storage?: boolean;
-  namespaces?: boolean;
-  functions?: boolean;
-  graphs?: boolean;
-  agents?: boolean;
-  skipEntityPolicies?: boolean;
-  tableProvision?: boolean;
-  outMembershipType?: boolean;
-  outEntityTableId?: boolean;
-  outEntityTableName?: boolean;
-  outInstalledModules?: boolean;
-  outStorageModuleId?: boolean;
-  outBucketsTableId?: boolean;
-  outFilesTableId?: boolean;
-  outPathSharesTableId?: boolean;
-  outInvitesModuleId?: boolean;
-  outNamespaceModuleId?: boolean;
-  outNamespacesTableId?: boolean;
-  outNamespaceEventsTableId?: boolean;
-  outFunctionModuleId?: boolean;
-  outDefinitionsTableId?: boolean;
-  outInvocationsTableId?: boolean;
-  outExecutionLogsTableId?: boolean;
-  outSecretDefinitionsTableId?: boolean;
-  outRequirementsTableId?: boolean;
-  outConfigRequirementsTableId?: boolean;
-  outGraphModuleId?: boolean;
-  outGraphsTableId?: boolean;
-  outAgentModuleId?: boolean;
-};
 // ============ Table Filter Types ============
 export interface DefaultIdsModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -3538,42 +3552,6 @@ export interface CryptoAuthModuleFilter {
   /** Negates the expression. */
   not?: CryptoAuthModuleFilter;
 }
-export interface RateLimitMetersModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableId` field. */
-  rateLimitStateTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitStateTableName` field. */
-  rateLimitStateTableName?: StringFilter;
-  /** Filter by the object’s `rateLimitOverridesTableId` field. */
-  rateLimitOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `rateLimitOverridesTableName` field. */
-  rateLimitOverridesTableName?: StringFilter;
-  /** Filter by the object’s `rateWindowLimitsTableId` field. */
-  rateWindowLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `rateWindowLimitsTableName` field. */
-  rateWindowLimitsTableName?: StringFilter;
-  /** Filter by the object’s `checkRateLimitFunction` field. */
-  checkRateLimitFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Checks for all expressions in this list. */
-  and?: RateLimitMetersModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: RateLimitMetersModuleFilter[];
-  /** Negates the expression. */
-  not?: RateLimitMetersModuleFilter;
-}
 export interface SessionsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3719,6 +3697,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -3760,7 +3740,7 @@ export interface SecureTableProvisionFilter {
   /** Negates the expression. */
   not?: SecureTableProvisionFilter;
 }
-export interface InvitesModuleFilter {
+export interface RateLimitMetersModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -3769,14 +3749,52 @@ export interface InvitesModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `emailsTableId` field. */
-  emailsTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `invitesTableId` field. */
-  invitesTableId?: UUIDFilter;
-  /** Filter by the object’s `claimedInvitesTableId` field. */
-  claimedInvitesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableId` field. */
+  rateLimitStateTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitStateTableName` field. */
+  rateLimitStateTableName?: StringFilter;
+  /** Filter by the object’s `rateLimitOverridesTableId` field. */
+  rateLimitOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `rateLimitOverridesTableName` field. */
+  rateLimitOverridesTableName?: StringFilter;
+  /** Filter by the object’s `rateWindowLimitsTableId` field. */
+  rateWindowLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `rateWindowLimitsTableName` field. */
+  rateWindowLimitsTableName?: StringFilter;
+  /** Filter by the object’s `checkRateLimitFunction` field. */
+  checkRateLimitFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: RateLimitMetersModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: RateLimitMetersModuleFilter[];
+  /** Negates the expression. */
+  not?: RateLimitMetersModuleFilter;
+}
+export interface InvitesModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `emailsTableId` field. */
+  emailsTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `invitesTableId` field. */
+  invitesTableId?: UUIDFilter;
+  /** Filter by the object’s `claimedInvitesTableId` field. */
+  claimedInvitesTableId?: UUIDFilter;
   /** Filter by the object’s `invitesTableName` field. */
   invitesTableName?: StringFilter;
   /** Filter by the object’s `claimedInvitesTableName` field. */
@@ -3836,48 +3854,6 @@ export interface DatabaseProvisionModuleFilter {
   /** Negates the expression. */
   not?: DatabaseProvisionModuleFilter;
 }
-export interface NamespaceModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `namespacesTableId` field. */
-  namespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `namespaceEventsTableId` field. */
-  namespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `namespacesTableName` field. */
-  namespacesTableName?: StringFilter;
-  /** Filter by the object’s `namespaceEventsTableName` field. */
-  namespaceEventsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: NamespaceModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: NamespaceModuleFilter[];
-  /** Negates the expression. */
-  not?: NamespaceModuleFilter;
-}
 export interface RealtimeModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -3954,6 +3930,50 @@ export interface WebauthnAuthModuleFilter {
   /** Negates the expression. */
   not?: WebauthnAuthModuleFilter;
 }
+export interface NamespaceModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `namespacesTableId` field. */
+  namespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `namespaceEventsTableId` field. */
+  namespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `namespacesTableName` field. */
+  namespacesTableName?: StringFilter;
+  /** Filter by the object’s `namespaceEventsTableName` field. */
+  namespaceEventsTableName?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Checks for all expressions in this list. */
+  and?: NamespaceModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: NamespaceModuleFilter[];
+  /** Negates the expression. */
+  not?: NamespaceModuleFilter;
+}
 export interface ComputeLogModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4122,6 +4142,52 @@ export interface TransferLogModuleFilter {
   /** Negates the expression. */
   not?: TransferLogModuleFilter;
 }
+export interface PlansModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `plansTableId` field. */
+  plansTableId?: UUIDFilter;
+  /** Filter by the object’s `plansTableName` field. */
+  plansTableName?: StringFilter;
+  /** Filter by the object’s `planLimitsTableId` field. */
+  planLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planLimitsTableName` field. */
+  planLimitsTableName?: StringFilter;
+  /** Filter by the object’s `planPricingTableId` field. */
+  planPricingTableId?: UUIDFilter;
+  /** Filter by the object’s `planOverridesTableId` field. */
+  planOverridesTableId?: UUIDFilter;
+  /** Filter by the object’s `planMeterLimitsTableId` field. */
+  planMeterLimitsTableId?: UUIDFilter;
+  /** Filter by the object’s `planCapsTableId` field. */
+  planCapsTableId?: UUIDFilter;
+  /** Filter by the object’s `applyPlanFunction` field. */
+  applyPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanAggregateFunction` field. */
+  applyPlanAggregateFunction?: StringFilter;
+  /** Filter by the object’s `applyBillingPlanFunction` field. */
+  applyBillingPlanFunction?: StringFilter;
+  /** Filter by the object’s `applyPlanCapsFunction` field. */
+  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: PlansModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: PlansModuleFilter[];
+  /** Negates the expression. */
+  not?: PlansModuleFilter;
+}
 export interface DbUsageModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4157,6 +4223,8 @@ export interface DbUsageModuleFilter {
   scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4203,6 +4271,8 @@ export interface NotificationsModuleFilter {
   hasDigestMetadata?: BooleanFilter;
   /** Filter by the object’s `hasSubscriptions` field. */
   hasSubscriptions?: BooleanFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4214,7 +4284,7 @@ export interface NotificationsModuleFilter {
   /** Negates the expression. */
   not?: NotificationsModuleFilter;
 }
-export interface PlansModuleFilter {
+export interface BillingProviderModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4223,30 +4293,36 @@ export interface PlansModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `plansTableId` field. */
-  plansTableId?: UUIDFilter;
-  /** Filter by the object’s `plansTableName` field. */
-  plansTableName?: StringFilter;
-  /** Filter by the object’s `planLimitsTableId` field. */
-  planLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planLimitsTableName` field. */
-  planLimitsTableName?: StringFilter;
-  /** Filter by the object’s `planPricingTableId` field. */
-  planPricingTableId?: UUIDFilter;
-  /** Filter by the object’s `planOverridesTableId` field. */
-  planOverridesTableId?: UUIDFilter;
-  /** Filter by the object’s `planMeterLimitsTableId` field. */
-  planMeterLimitsTableId?: UUIDFilter;
-  /** Filter by the object’s `planCapsTableId` field. */
-  planCapsTableId?: UUIDFilter;
-  /** Filter by the object’s `applyPlanFunction` field. */
-  applyPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanAggregateFunction` field. */
-  applyPlanAggregateFunction?: StringFilter;
-  /** Filter by the object’s `applyBillingPlanFunction` field. */
-  applyBillingPlanFunction?: StringFilter;
-  /** Filter by the object’s `applyPlanCapsFunction` field. */
-  applyPlanCapsFunction?: StringFilter;
+  /** Filter by the object’s `provider` field. */
+  provider?: StringFilter;
+  /** Filter by the object’s `productsTableId` field. */
+  productsTableId?: UUIDFilter;
+  /** Filter by the object’s `pricesTableId` field. */
+  pricesTableId?: UUIDFilter;
+  /** Filter by the object’s `subscriptionsTableId` field. */
+  subscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableId` field. */
+  billingCustomersTableId?: UUIDFilter;
+  /** Filter by the object’s `billingCustomersTableName` field. */
+  billingCustomersTableName?: StringFilter;
+  /** Filter by the object’s `billingProductsTableId` field. */
+  billingProductsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingProductsTableName` field. */
+  billingProductsTableName?: StringFilter;
+  /** Filter by the object’s `billingPricesTableId` field. */
+  billingPricesTableId?: UUIDFilter;
+  /** Filter by the object’s `billingPricesTableName` field. */
+  billingPricesTableName?: StringFilter;
+  /** Filter by the object’s `billingSubscriptionsTableId` field. */
+  billingSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingSubscriptionsTableName` field. */
+  billingSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `billingWebhookEventsTableId` field. */
+  billingWebhookEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `billingWebhookEventsTableName` field. */
+  billingWebhookEventsTableName?: StringFilter;
+  /** Filter by the object’s `processBillingEventFunction` field. */
+  processBillingEventFunction?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
   /** Filter by the object’s `apiName` field. */
@@ -4254,13 +4330,13 @@ export interface PlansModuleFilter {
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
   /** Checks for all expressions in this list. */
-  and?: PlansModuleFilter[];
+  and?: BillingProviderModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: PlansModuleFilter[];
+  or?: BillingProviderModuleFilter[];
   /** Negates the expression. */
-  not?: PlansModuleFilter;
+  not?: BillingProviderModuleFilter;
 }
-export interface HierarchyModuleFilter {
+export interface FunctionModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4269,100 +4345,50 @@ export interface HierarchyModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableId` field. */
-  chartEdgesTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgesTableName` field. */
-  chartEdgesTableName?: StringFilter;
-  /** Filter by the object’s `hierarchySprtTableId` field. */
-  hierarchySprtTableId?: UUIDFilter;
-  /** Filter by the object’s `hierarchySprtTableName` field. */
-  hierarchySprtTableName?: StringFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
-  chartEdgeGrantsTableId?: UUIDFilter;
-  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
-  chartEdgeGrantsTableName?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `usersTableId` field. */
-  usersTableId?: UUIDFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `publicSchemaName` field. */
+  publicSchemaName?: StringFilter;
   /** Filter by the object’s `privateSchemaName` field. */
   privateSchemaName?: StringFilter;
-  /** Filter by the object’s `sprtTableName` field. */
-  sprtTableName?: StringFilter;
-  /** Filter by the object’s `rebuildHierarchyFunction` field. */
-  rebuildHierarchyFunction?: StringFilter;
-  /** Filter by the object’s `getSubordinatesFunction` field. */
-  getSubordinatesFunction?: StringFilter;
-  /** Filter by the object’s `getManagersFunction` field. */
-  getManagersFunction?: StringFilter;
-  /** Filter by the object’s `isManagerOfFunction` field. */
-  isManagerOfFunction?: StringFilter;
-  /** Filter by the object’s `createdAt` field. */
-  createdAt?: DatetimeFilter;
-  /** Checks for all expressions in this list. */
-  and?: HierarchyModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: HierarchyModuleFilter[];
-  /** Negates the expression. */
-  not?: HierarchyModuleFilter;
-}
-export interface BillingModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `metersTableId` field. */
-  metersTableId?: UUIDFilter;
-  /** Filter by the object’s `metersTableName` field. */
-  metersTableName?: StringFilter;
-  /** Filter by the object’s `planSubscriptionsTableId` field. */
-  planSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `planSubscriptionsTableName` field. */
-  planSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `ledgerTableId` field. */
-  ledgerTableId?: UUIDFilter;
-  /** Filter by the object’s `ledgerTableName` field. */
-  ledgerTableName?: StringFilter;
-  /** Filter by the object’s `balancesTableId` field. */
-  balancesTableId?: UUIDFilter;
-  /** Filter by the object’s `balancesTableName` field. */
-  balancesTableName?: StringFilter;
-  /** Filter by the object’s `meterCreditsTableId` field. */
-  meterCreditsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterCreditsTableName` field. */
-  meterCreditsTableName?: StringFilter;
-  /** Filter by the object’s `meterSourcesTableId` field. */
-  meterSourcesTableId?: UUIDFilter;
-  /** Filter by the object’s `meterSourcesTableName` field. */
-  meterSourcesTableName?: StringFilter;
-  /** Filter by the object’s `meterDefaultsTableId` field. */
-  meterDefaultsTableId?: UUIDFilter;
-  /** Filter by the object’s `meterDefaultsTableName` field. */
-  meterDefaultsTableName?: StringFilter;
-  /** Filter by the object’s `recordUsageFunction` field. */
-  recordUsageFunction?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
+  /** Filter by the object’s `definitionsTableId` field. */
+  definitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `invocationsTableId` field. */
+  invocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `executionLogsTableId` field. */
+  executionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `secretDefinitionsTableId` field. */
+  secretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `definitionsTableName` field. */
+  definitionsTableName?: StringFilter;
+  /** Filter by the object’s `invocationsTableName` field. */
+  invocationsTableName?: StringFilter;
+  /** Filter by the object’s `executionLogsTableName` field. */
+  executionLogsTableName?: StringFilter;
+  /** Filter by the object’s `secretDefinitionsTableName` field. */
+  secretDefinitionsTableName?: StringFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
   privateApiName?: StringFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `policies` field. */
+  policies?: JSONFilter;
+  /** Filter by the object’s `provisions` field. */
+  provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingModuleFilter[];
+  and?: FunctionModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingModuleFilter[];
+  or?: FunctionModuleFilter[];
   /** Negates the expression. */
-  not?: BillingModuleFilter;
+  not?: FunctionModuleFilter;
 }
-export interface BillingProviderModuleFilter {
+export interface HierarchyModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4371,48 +4397,48 @@ export interface BillingProviderModuleFilter {
   schemaId?: UUIDFilter;
   /** Filter by the object’s `privateSchemaId` field. */
   privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `provider` field. */
-  provider?: StringFilter;
-  /** Filter by the object’s `productsTableId` field. */
-  productsTableId?: UUIDFilter;
-  /** Filter by the object’s `pricesTableId` field. */
-  pricesTableId?: UUIDFilter;
-  /** Filter by the object’s `subscriptionsTableId` field. */
-  subscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableId` field. */
-  billingCustomersTableId?: UUIDFilter;
-  /** Filter by the object’s `billingCustomersTableName` field. */
-  billingCustomersTableName?: StringFilter;
-  /** Filter by the object’s `billingProductsTableId` field. */
-  billingProductsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingProductsTableName` field. */
-  billingProductsTableName?: StringFilter;
-  /** Filter by the object’s `billingPricesTableId` field. */
-  billingPricesTableId?: UUIDFilter;
-  /** Filter by the object’s `billingPricesTableName` field. */
-  billingPricesTableName?: StringFilter;
-  /** Filter by the object’s `billingSubscriptionsTableId` field. */
-  billingSubscriptionsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingSubscriptionsTableName` field. */
-  billingSubscriptionsTableName?: StringFilter;
-  /** Filter by the object’s `billingWebhookEventsTableId` field. */
-  billingWebhookEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `billingWebhookEventsTableName` field. */
-  billingWebhookEventsTableName?: StringFilter;
-  /** Filter by the object’s `processBillingEventFunction` field. */
-  processBillingEventFunction?: StringFilter;
+  /** Filter by the object’s `chartEdgesTableId` field. */
+  chartEdgesTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgesTableName` field. */
+  chartEdgesTableName?: StringFilter;
+  /** Filter by the object’s `hierarchySprtTableId` field. */
+  hierarchySprtTableId?: UUIDFilter;
+  /** Filter by the object’s `hierarchySprtTableName` field. */
+  hierarchySprtTableName?: StringFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableId` field. */
+  chartEdgeGrantsTableId?: UUIDFilter;
+  /** Filter by the object’s `chartEdgeGrantsTableName` field. */
+  chartEdgeGrantsTableName?: StringFilter;
+  /** Filter by the object’s `entityTableId` field. */
+  entityTableId?: UUIDFilter;
+  /** Filter by the object’s `usersTableId` field. */
+  usersTableId?: UUIDFilter;
+  /** Filter by the object’s `scope` field. */
+  scope?: StringFilter;
   /** Filter by the object’s `prefix` field. */
   prefix?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
+  /** Filter by the object’s `privateSchemaName` field. */
+  privateSchemaName?: StringFilter;
+  /** Filter by the object’s `sprtTableName` field. */
+  sprtTableName?: StringFilter;
+  /** Filter by the object’s `rebuildHierarchyFunction` field. */
+  rebuildHierarchyFunction?: StringFilter;
+  /** Filter by the object’s `getSubordinatesFunction` field. */
+  getSubordinatesFunction?: StringFilter;
+  /** Filter by the object’s `getManagersFunction` field. */
+  getManagersFunction?: StringFilter;
+  /** Filter by the object’s `isManagerOfFunction` field. */
+  isManagerOfFunction?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `createdAt` field. */
+  createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
-  and?: BillingProviderModuleFilter[];
+  and?: HierarchyModuleFilter[];
   /** Checks for any expressions in this list. */
-  or?: BillingProviderModuleFilter[];
+  or?: HierarchyModuleFilter[];
   /** Negates the expression. */
-  not?: BillingProviderModuleFilter;
+  not?: HierarchyModuleFilter;
 }
 export interface ProfilesModuleFilter {
   /** Filter by the object’s `id` field. */
@@ -4512,6 +4538,60 @@ export interface PermissionsModuleFilter {
   /** Negates the expression. */
   not?: PermissionsModuleFilter;
 }
+export interface BillingModuleFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `schemaId` field. */
+  schemaId?: UUIDFilter;
+  /** Filter by the object’s `privateSchemaId` field. */
+  privateSchemaId?: UUIDFilter;
+  /** Filter by the object’s `metersTableId` field. */
+  metersTableId?: UUIDFilter;
+  /** Filter by the object’s `metersTableName` field. */
+  metersTableName?: StringFilter;
+  /** Filter by the object’s `planSubscriptionsTableId` field. */
+  planSubscriptionsTableId?: UUIDFilter;
+  /** Filter by the object’s `planSubscriptionsTableName` field. */
+  planSubscriptionsTableName?: StringFilter;
+  /** Filter by the object’s `ledgerTableId` field. */
+  ledgerTableId?: UUIDFilter;
+  /** Filter by the object’s `ledgerTableName` field. */
+  ledgerTableName?: StringFilter;
+  /** Filter by the object’s `balancesTableId` field. */
+  balancesTableId?: UUIDFilter;
+  /** Filter by the object’s `balancesTableName` field. */
+  balancesTableName?: StringFilter;
+  /** Filter by the object’s `meterCreditsTableId` field. */
+  meterCreditsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterCreditsTableName` field. */
+  meterCreditsTableName?: StringFilter;
+  /** Filter by the object’s `meterSourcesTableId` field. */
+  meterSourcesTableId?: UUIDFilter;
+  /** Filter by the object’s `meterSourcesTableName` field. */
+  meterSourcesTableName?: StringFilter;
+  /** Filter by the object’s `meterDefaultsTableId` field. */
+  meterDefaultsTableId?: UUIDFilter;
+  /** Filter by the object’s `meterDefaultsTableName` field. */
+  meterDefaultsTableName?: StringFilter;
+  /** Filter by the object’s `recordUsageFunction` field. */
+  recordUsageFunction?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
+  /** Filter by the object’s `apiName` field. */
+  apiName?: StringFilter;
+  /** Filter by the object’s `privateApiName` field. */
+  privateApiName?: StringFilter;
+  /** Checks for all expressions in this list. */
+  and?: BillingModuleFilter[];
+  /** Checks for any expressions in this list. */
+  or?: BillingModuleFilter[];
+  /** Negates the expression. */
+  not?: BillingModuleFilter;
+}
 export interface RelationProvisionFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -4568,67 +4648,7 @@ export interface RelationProvisionFilter {
   /** Negates the expression. */
   not?: RelationProvisionFilter;
 }
-export interface FunctionModuleFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `schemaId` field. */
-  schemaId?: UUIDFilter;
-  /** Filter by the object’s `privateSchemaId` field. */
-  privateSchemaId?: UUIDFilter;
-  /** Filter by the object’s `publicSchemaName` field. */
-  publicSchemaName?: StringFilter;
-  /** Filter by the object’s `privateSchemaName` field. */
-  privateSchemaName?: StringFilter;
-  /** Filter by the object’s `definitionsTableId` field. */
-  definitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `invocationsTableId` field. */
-  invocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `executionLogsTableId` field. */
-  executionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `secretDefinitionsTableId` field. */
-  secretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `requirementsTableId` field. */
-  requirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `configDefinitionsTableId` field. */
-  configDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `configRequirementsTableId` field. */
-  configRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `definitionsTableName` field. */
-  definitionsTableName?: StringFilter;
-  /** Filter by the object’s `invocationsTableName` field. */
-  invocationsTableName?: StringFilter;
-  /** Filter by the object’s `executionLogsTableName` field. */
-  executionLogsTableName?: StringFilter;
-  /** Filter by the object’s `secretDefinitionsTableName` field. */
-  secretDefinitionsTableName?: StringFilter;
-  /** Filter by the object’s `requirementsTableName` field. */
-  requirementsTableName?: StringFilter;
-  /** Filter by the object’s `configRequirementsTableName` field. */
-  configRequirementsTableName?: StringFilter;
-  /** Filter by the object’s `apiName` field. */
-  apiName?: StringFilter;
-  /** Filter by the object’s `privateApiName` field. */
-  privateApiName?: StringFilter;
-  /** Filter by the object’s `scope` field. */
-  scope?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `entityTableId` field. */
-  entityTableId?: UUIDFilter;
-  /** Filter by the object’s `policies` field. */
-  policies?: JSONFilter;
-  /** Filter by the object’s `provisions` field. */
-  provisions?: JSONFilter;
-  /** Checks for all expressions in this list. */
-  and?: FunctionModuleFilter[];
-  /** Checks for any expressions in this list. */
-  or?: FunctionModuleFilter[];
-  /** Negates the expression. */
-  not?: FunctionModuleFilter;
-}
-export interface UserAuthModuleFilter {
+export interface UserAuthModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
   /** Filter by the object’s `databaseId` field. */
@@ -4739,6 +4759,8 @@ export interface AgentModuleFilter {
   hasResources?: BooleanFilter;
   /** Filter by the object’s `hasAgents` field. */
   hasAgents?: BooleanFilter;
+  /** Filter by the object’s `shared` field. */
+  shared?: BooleanFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4755,6 +4777,8 @@ export interface AgentModuleFilter {
   resources?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Checks for all expressions in this list. */
   and?: AgentModuleFilter[];
   /** Checks for any expressions in this list. */
@@ -4909,6 +4933,10 @@ export interface MembershipsModuleFilter {
   entityIdsFunction?: StringFilter;
   /** Filter by the object’s `memberProfilesTableId` field. */
   memberProfilesTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultPermissionsTableId` field. */
+  permissionDefaultPermissionsTableId?: UUIDFilter;
+  /** Filter by the object’s `permissionDefaultGrantsTableId` field. */
+  permissionDefaultGrantsTableId?: UUIDFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -4989,6 +5017,8 @@ export interface StorageModuleFilter {
   confirmUploadDelay?: IntervalFilter;
   /** Filter by the object’s `fileEventsTableId` field. */
   fileEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5000,6 +5030,94 @@ export interface StorageModuleFilter {
   /** Negates the expression. */
   not?: StorageModuleFilter;
 }
+export interface EntityTypeProvisionFilter {
+  /** Filter by the object’s `id` field. */
+  id?: UUIDFilter;
+  /** Filter by the object’s `databaseId` field. */
+  databaseId?: UUIDFilter;
+  /** Filter by the object’s `name` field. */
+  name?: StringFilter;
+  /** Filter by the object’s `prefix` field. */
+  prefix?: StringFilter;
+  /** Filter by the object’s `description` field. */
+  description?: StringFilter;
+  /** Filter by the object’s `parentEntity` field. */
+  parentEntity?: StringFilter;
+  /** Filter by the object’s `tableName` field. */
+  tableName?: StringFilter;
+  /** Filter by the object’s `isVisible` field. */
+  isVisible?: BooleanFilter;
+  /** Filter by the object’s `hasLimits` field. */
+  hasLimits?: BooleanFilter;
+  /** Filter by the object’s `hasProfiles` field. */
+  hasProfiles?: BooleanFilter;
+  /** Filter by the object’s `hasLevels` field. */
+  hasLevels?: BooleanFilter;
+  /** Filter by the object’s `hasInvites` field. */
+  hasInvites?: BooleanFilter;
+  /** Filter by the object’s `hasInviteAchievements` field. */
+  hasInviteAchievements?: BooleanFilter;
+  /** Filter by the object’s `storage` field. */
+  storage?: JSONFilter;
+  /** Filter by the object’s `namespaces` field. */
+  namespaces?: JSONFilter;
+  /** Filter by the object’s `functions` field. */
+  functions?: JSONFilter;
+  /** Filter by the object’s `graphs` field. */
+  graphs?: JSONFilter;
+  /** Filter by the object’s `agents` field. */
+  agents?: JSONFilter;
+  /** Filter by the object’s `skipEntityPolicies` field. */
+  skipEntityPolicies?: BooleanFilter;
+  /** Filter by the object’s `tableProvision` field. */
+  tableProvision?: JSONFilter;
+  /** Filter by the object’s `outMembershipType` field. */
+  outMembershipType?: IntFilter;
+  /** Filter by the object’s `outEntityTableId` field. */
+  outEntityTableId?: UUIDFilter;
+  /** Filter by the object’s `outEntityTableName` field. */
+  outEntityTableName?: StringFilter;
+  /** Filter by the object’s `outInstalledModules` field. */
+  outInstalledModules?: StringListFilter;
+  /** Filter by the object’s `outStorageModuleId` field. */
+  outStorageModuleId?: UUIDFilter;
+  /** Filter by the object’s `outBucketsTableId` field. */
+  outBucketsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFilesTableId` field. */
+  outFilesTableId?: UUIDFilter;
+  /** Filter by the object’s `outPathSharesTableId` field. */
+  outPathSharesTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvitesModuleId` field. */
+  outInvitesModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceModuleId` field. */
+  outNamespaceModuleId?: UUIDFilter;
+  /** Filter by the object’s `outNamespacesTableId` field. */
+  outNamespacesTableId?: UUIDFilter;
+  /** Filter by the object’s `outNamespaceEventsTableId` field. */
+  outNamespaceEventsTableId?: UUIDFilter;
+  /** Filter by the object’s `outFunctionModuleId` field. */
+  outFunctionModuleId?: UUIDFilter;
+  /** Filter by the object’s `outDefinitionsTableId` field. */
+  outDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outInvocationsTableId` field. */
+  outInvocationsTableId?: UUIDFilter;
+  /** Filter by the object’s `outExecutionLogsTableId` field. */
+  outExecutionLogsTableId?: UUIDFilter;
+  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
+  outSecretDefinitionsTableId?: UUIDFilter;
+  /** Filter by the object’s `outGraphModuleId` field. */
+  outGraphModuleId?: UUIDFilter;
+  /** Filter by the object’s `outGraphsTableId` field. */
+  outGraphsTableId?: UUIDFilter;
+  /** Filter by the object’s `outAgentModuleId` field. */
+  outAgentModuleId?: UUIDFilter;
+  /** Checks for all expressions in this list. */
+  and?: EntityTypeProvisionFilter[];
+  /** Checks for any expressions in this list. */
+  or?: EntityTypeProvisionFilter[];
+  /** Negates the expression. */
+  not?: EntityTypeProvisionFilter;
+}
 export interface EventsModuleFilter {
   /** Filter by the object’s `id` field. */
   id?: UUIDFilter;
@@ -5079,6 +5197,8 @@ export interface EventsModuleFilter {
   entityTableId?: UUIDFilter;
   /** Filter by the object’s `actorTableId` field. */
   actorTableId?: UUIDFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `apiName` field. */
   apiName?: StringFilter;
   /** Filter by the object’s `privateApiName` field. */
@@ -5090,98 +5210,6 @@ export interface EventsModuleFilter {
   /** Negates the expression. */
   not?: EventsModuleFilter;
 }
-export interface EntityTypeProvisionFilter {
-  /** Filter by the object’s `id` field. */
-  id?: UUIDFilter;
-  /** Filter by the object’s `databaseId` field. */
-  databaseId?: UUIDFilter;
-  /** Filter by the object’s `name` field. */
-  name?: StringFilter;
-  /** Filter by the object’s `prefix` field. */
-  prefix?: StringFilter;
-  /** Filter by the object’s `description` field. */
-  description?: StringFilter;
-  /** Filter by the object’s `parentEntity` field. */
-  parentEntity?: StringFilter;
-  /** Filter by the object’s `tableName` field. */
-  tableName?: StringFilter;
-  /** Filter by the object’s `isVisible` field. */
-  isVisible?: BooleanFilter;
-  /** Filter by the object’s `hasLimits` field. */
-  hasLimits?: BooleanFilter;
-  /** Filter by the object’s `hasProfiles` field. */
-  hasProfiles?: BooleanFilter;
-  /** Filter by the object’s `hasLevels` field. */
-  hasLevels?: BooleanFilter;
-  /** Filter by the object’s `hasInvites` field. */
-  hasInvites?: BooleanFilter;
-  /** Filter by the object’s `hasInviteAchievements` field. */
-  hasInviteAchievements?: BooleanFilter;
-  /** Filter by the object’s `storage` field. */
-  storage?: JSONFilter;
-  /** Filter by the object’s `namespaces` field. */
-  namespaces?: JSONFilter;
-  /** Filter by the object’s `functions` field. */
-  functions?: JSONFilter;
-  /** Filter by the object’s `graphs` field. */
-  graphs?: JSONFilter;
-  /** Filter by the object’s `agents` field. */
-  agents?: JSONFilter;
-  /** Filter by the object’s `skipEntityPolicies` field. */
-  skipEntityPolicies?: BooleanFilter;
-  /** Filter by the object’s `tableProvision` field. */
-  tableProvision?: JSONFilter;
-  /** Filter by the object’s `outMembershipType` field. */
-  outMembershipType?: IntFilter;
-  /** Filter by the object’s `outEntityTableId` field. */
-  outEntityTableId?: UUIDFilter;
-  /** Filter by the object’s `outEntityTableName` field. */
-  outEntityTableName?: StringFilter;
-  /** Filter by the object’s `outInstalledModules` field. */
-  outInstalledModules?: StringListFilter;
-  /** Filter by the object’s `outStorageModuleId` field. */
-  outStorageModuleId?: UUIDFilter;
-  /** Filter by the object’s `outBucketsTableId` field. */
-  outBucketsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFilesTableId` field. */
-  outFilesTableId?: UUIDFilter;
-  /** Filter by the object’s `outPathSharesTableId` field. */
-  outPathSharesTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvitesModuleId` field. */
-  outInvitesModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceModuleId` field. */
-  outNamespaceModuleId?: UUIDFilter;
-  /** Filter by the object’s `outNamespacesTableId` field. */
-  outNamespacesTableId?: UUIDFilter;
-  /** Filter by the object’s `outNamespaceEventsTableId` field. */
-  outNamespaceEventsTableId?: UUIDFilter;
-  /** Filter by the object’s `outFunctionModuleId` field. */
-  outFunctionModuleId?: UUIDFilter;
-  /** Filter by the object’s `outDefinitionsTableId` field. */
-  outDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outInvocationsTableId` field. */
-  outInvocationsTableId?: UUIDFilter;
-  /** Filter by the object’s `outExecutionLogsTableId` field. */
-  outExecutionLogsTableId?: UUIDFilter;
-  /** Filter by the object’s `outSecretDefinitionsTableId` field. */
-  outSecretDefinitionsTableId?: UUIDFilter;
-  /** Filter by the object’s `outRequirementsTableId` field. */
-  outRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outConfigRequirementsTableId` field. */
-  outConfigRequirementsTableId?: UUIDFilter;
-  /** Filter by the object’s `outGraphModuleId` field. */
-  outGraphModuleId?: UUIDFilter;
-  /** Filter by the object’s `outGraphsTableId` field. */
-  outGraphsTableId?: UUIDFilter;
-  /** Filter by the object’s `outAgentModuleId` field. */
-  outAgentModuleId?: UUIDFilter;
-  /** Checks for all expressions in this list. */
-  and?: EntityTypeProvisionFilter[];
-  /** Checks for any expressions in this list. */
-  or?: EntityTypeProvisionFilter[];
-  /** Negates the expression. */
-  not?: EntityTypeProvisionFilter;
-}
 // ============ OrderBy Types ============
 export type DefaultIdsModuleOrderBy =
   | 'NATURAL'
@@ -5715,38 +5743,6 @@ export type CryptoAuthModuleOrderBy =
   | 'SIGN_UP_WITH_KEY_DESC'
   | 'SIGN_IN_WITH_CHALLENGE_ASC'
   | 'SIGN_IN_WITH_CHALLENGE_DESC';
-export type RateLimitMetersModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
-  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
-  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
-  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
 export type SessionsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -5879,6 +5875,8 @@ export type GraphModuleOrderBy =
   | 'POLICIES_DESC'
   | 'PROVISIONS_ASC'
   | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'CREATED_AT_ASC'
   | 'CREATED_AT_DESC';
 export type SecureTableProvisionOrderBy =
@@ -5907,7 +5905,7 @@ export type SecureTableProvisionOrderBy =
   | 'POLICIES_DESC'
   | 'OUT_FIELDS_ASC'
   | 'OUT_FIELDS_DESC';
-export type InvitesModuleOrderBy =
+export type RateLimitMetersModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -5919,32 +5917,66 @@ export type InvitesModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EMAILS_TABLE_ID_ASC'
-  | 'EMAILS_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'INVITES_TABLE_ID_ASC'
-  | 'INVITES_TABLE_ID_DESC'
-  | 'CLAIMED_INVITES_TABLE_ID_ASC'
-  | 'CLAIMED_INVITES_TABLE_ID_DESC'
-  | 'INVITES_TABLE_NAME_ASC'
-  | 'INVITES_TABLE_NAME_DESC'
-  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
-  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
-  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type DatabaseProvisionModuleOrderBy =
-  | 'NATURAL'
+  | 'RATE_LIMIT_STATE_TABLE_ID_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_ID_DESC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_STATE_TABLE_NAME_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_ID_DESC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_ASC'
+  | 'RATE_LIMIT_OVERRIDES_TABLE_NAME_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_ID_DESC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_ASC'
+  | 'RATE_WINDOW_LIMITS_TABLE_NAME_DESC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_ASC'
+  | 'CHECK_RATE_LIMIT_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type InvitesModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EMAILS_TABLE_ID_ASC'
+  | 'EMAILS_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'INVITES_TABLE_ID_ASC'
+  | 'INVITES_TABLE_ID_DESC'
+  | 'CLAIMED_INVITES_TABLE_ID_ASC'
+  | 'CLAIMED_INVITES_TABLE_ID_DESC'
+  | 'INVITES_TABLE_NAME_ASC'
+  | 'INVITES_TABLE_NAME_DESC'
+  | 'CLAIMED_INVITES_TABLE_NAME_ASC'
+  | 'CLAIMED_INVITES_TABLE_NAME_DESC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_ASC'
+  | 'SUBMIT_INVITE_CODE_FUNCTION_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
+export type DatabaseProvisionModuleOrderBy =
+  | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
   | 'ID_ASC'
@@ -5975,44 +6007,6 @@ export type DatabaseProvisionModuleOrderBy =
   | 'UPDATED_AT_DESC'
   | 'COMPLETED_AT_ASC'
   | 'COMPLETED_AT_DESC';
-export type NamespaceModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'NAMESPACES_TABLE_ID_ASC'
-  | 'NAMESPACES_TABLE_ID_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
-  | 'NAMESPACES_TABLE_NAME_ASC'
-  | 'NAMESPACES_TABLE_NAME_DESC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
-  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type RealtimeModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6081,6 +6075,46 @@ export type WebauthnAuthModuleOrderBy =
   | 'RESIDENT_KEY_DESC'
   | 'CHALLENGE_EXPIRY_ASC'
   | 'CHALLENGE_EXPIRY_DESC';
+export type NamespaceModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'NAMESPACES_TABLE_ID_ASC'
+  | 'NAMESPACES_TABLE_ID_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_ID_DESC'
+  | 'NAMESPACES_TABLE_NAME_ASC'
+  | 'NAMESPACES_TABLE_NAME_DESC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_ASC'
+  | 'NAMESPACE_EVENTS_TABLE_NAME_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type ComputeLogModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6233,6 +6267,48 @@ export type TransferLogModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type PlansModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'PLANS_TABLE_ID_ASC'
+  | 'PLANS_TABLE_ID_DESC'
+  | 'PLANS_TABLE_NAME_ASC'
+  | 'PLANS_TABLE_NAME_DESC'
+  | 'PLAN_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_LIMITS_TABLE_NAME_ASC'
+  | 'PLAN_LIMITS_TABLE_NAME_DESC'
+  | 'PLAN_PRICING_TABLE_ID_ASC'
+  | 'PLAN_PRICING_TABLE_ID_DESC'
+  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
+  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
+  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
+  | 'PLAN_CAPS_TABLE_ID_ASC'
+  | 'PLAN_CAPS_TABLE_ID_DESC'
+  | 'APPLY_PLAN_FUNCTION_ASC'
+  | 'APPLY_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
+  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
+  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
+  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type DbUsageModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6271,6 +6347,8 @@ export type DbUsageModuleOrderBy =
   | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6313,11 +6391,13 @@ export type NotificationsModuleOrderBy =
   | 'HAS_DIGEST_METADATA_DESC'
   | 'HAS_SUBSCRIPTIONS_ASC'
   | 'HAS_SUBSCRIPTIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type PlansModuleOrderBy =
+export type BillingProviderModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6329,37 +6409,43 @@ export type PlansModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PLANS_TABLE_ID_ASC'
-  | 'PLANS_TABLE_ID_DESC'
-  | 'PLANS_TABLE_NAME_ASC'
-  | 'PLANS_TABLE_NAME_DESC'
-  | 'PLAN_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_LIMITS_TABLE_NAME_ASC'
-  | 'PLAN_LIMITS_TABLE_NAME_DESC'
-  | 'PLAN_PRICING_TABLE_ID_ASC'
-  | 'PLAN_PRICING_TABLE_ID_DESC'
-  | 'PLAN_OVERRIDES_TABLE_ID_ASC'
-  | 'PLAN_OVERRIDES_TABLE_ID_DESC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_ASC'
-  | 'PLAN_METER_LIMITS_TABLE_ID_DESC'
-  | 'PLAN_CAPS_TABLE_ID_ASC'
-  | 'PLAN_CAPS_TABLE_ID_DESC'
-  | 'APPLY_PLAN_FUNCTION_ASC'
-  | 'APPLY_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_ASC'
-  | 'APPLY_PLAN_AGGREGATE_FUNCTION_DESC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_ASC'
-  | 'APPLY_BILLING_PLAN_FUNCTION_DESC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_ASC'
-  | 'APPLY_PLAN_CAPS_FUNCTION_DESC'
+  | 'PROVIDER_ASC'
+  | 'PROVIDER_DESC'
+  | 'PRODUCTS_TABLE_ID_ASC'
+  | 'PRODUCTS_TABLE_ID_DESC'
+  | 'PRICES_TABLE_ID_ASC'
+  | 'PRICES_TABLE_ID_DESC'
+  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
+  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
+  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
+  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
+  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
+  | 'BILLING_PRICES_TABLE_ID_ASC'
+  | 'BILLING_PRICES_TABLE_ID_DESC'
+  | 'BILLING_PRICES_TABLE_NAME_ASC'
+  | 'BILLING_PRICES_TABLE_NAME_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
+  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
+  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type HierarchyModuleOrderBy =
+export type FunctionModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6371,89 +6457,43 @@ export type HierarchyModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'CHART_EDGES_TABLE_ID_ASC'
-  | 'CHART_EDGES_TABLE_ID_DESC'
-  | 'CHART_EDGES_TABLE_NAME_ASC'
-  | 'CHART_EDGES_TABLE_NAME_DESC'
-  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
-  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
-  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
-  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'USERS_TABLE_ID_ASC'
-  | 'USERS_TABLE_ID_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'PUBLIC_SCHEMA_NAME_ASC'
+  | 'PUBLIC_SCHEMA_NAME_DESC'
   | 'PRIVATE_SCHEMA_NAME_ASC'
   | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'SPRT_TABLE_NAME_ASC'
-  | 'SPRT_TABLE_NAME_DESC'
-  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
-  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
-  | 'GET_SUBORDINATES_FUNCTION_ASC'
-  | 'GET_SUBORDINATES_FUNCTION_DESC'
-  | 'GET_MANAGERS_FUNCTION_ASC'
-  | 'GET_MANAGERS_FUNCTION_DESC'
-  | 'IS_MANAGER_OF_FUNCTION_ASC'
-  | 'IS_MANAGER_OF_FUNCTION_DESC'
-  | 'CREATED_AT_ASC'
-  | 'CREATED_AT_DESC';
-export type BillingModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'METERS_TABLE_ID_ASC'
-  | 'METERS_TABLE_ID_DESC'
-  | 'METERS_TABLE_NAME_ASC'
-  | 'METERS_TABLE_NAME_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'LEDGER_TABLE_ID_ASC'
-  | 'LEDGER_TABLE_ID_DESC'
-  | 'LEDGER_TABLE_NAME_ASC'
-  | 'LEDGER_TABLE_NAME_DESC'
-  | 'BALANCES_TABLE_ID_ASC'
-  | 'BALANCES_TABLE_ID_DESC'
-  | 'BALANCES_TABLE_NAME_ASC'
-  | 'BALANCES_TABLE_NAME_DESC'
-  | 'METER_CREDITS_TABLE_ID_ASC'
-  | 'METER_CREDITS_TABLE_ID_DESC'
-  | 'METER_CREDITS_TABLE_NAME_ASC'
-  | 'METER_CREDITS_TABLE_NAME_DESC'
-  | 'METER_SOURCES_TABLE_ID_ASC'
-  | 'METER_SOURCES_TABLE_ID_DESC'
-  | 'METER_SOURCES_TABLE_NAME_ASC'
-  | 'METER_SOURCES_TABLE_NAME_DESC'
-  | 'METER_DEFAULTS_TABLE_ID_ASC'
-  | 'METER_DEFAULTS_TABLE_ID_DESC'
-  | 'METER_DEFAULTS_TABLE_NAME_ASC'
-  | 'METER_DEFAULTS_TABLE_NAME_DESC'
-  | 'RECORD_USAGE_FUNCTION_ASC'
-  | 'RECORD_USAGE_FUNCTION_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
+  | 'DEFINITIONS_TABLE_ID_ASC'
+  | 'DEFINITIONS_TABLE_ID_DESC'
+  | 'INVOCATIONS_TABLE_ID_ASC'
+  | 'INVOCATIONS_TABLE_ID_DESC'
+  | 'EXECUTION_LOGS_TABLE_ID_ASC'
+  | 'EXECUTION_LOGS_TABLE_ID_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
+  | 'DEFINITIONS_TABLE_NAME_ASC'
+  | 'DEFINITIONS_TABLE_NAME_DESC'
+  | 'INVOCATIONS_TABLE_NAME_ASC'
+  | 'INVOCATIONS_TABLE_NAME_DESC'
+  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
+  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
+  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type BillingProviderModuleOrderBy =
+  | 'PRIVATE_API_NAME_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'POLICIES_ASC'
+  | 'POLICIES_DESC'
+  | 'PROVISIONS_ASC'
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
+export type HierarchyModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -6465,42 +6505,42 @@ export type BillingProviderModuleOrderBy =
   | 'SCHEMA_ID_DESC'
   | 'PRIVATE_SCHEMA_ID_ASC'
   | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PROVIDER_ASC'
-  | 'PROVIDER_DESC'
-  | 'PRODUCTS_TABLE_ID_ASC'
-  | 'PRODUCTS_TABLE_ID_DESC'
-  | 'PRICES_TABLE_ID_ASC'
-  | 'PRICES_TABLE_ID_DESC'
-  | 'SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_ID_DESC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_ASC'
-  | 'BILLING_CUSTOMERS_TABLE_NAME_DESC'
-  | 'BILLING_PRODUCTS_TABLE_ID_ASC'
-  | 'BILLING_PRODUCTS_TABLE_ID_DESC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_ASC'
-  | 'BILLING_PRODUCTS_TABLE_NAME_DESC'
-  | 'BILLING_PRICES_TABLE_ID_ASC'
-  | 'BILLING_PRICES_TABLE_ID_DESC'
-  | 'BILLING_PRICES_TABLE_NAME_ASC'
-  | 'BILLING_PRICES_TABLE_NAME_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_ID_DESC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_ASC'
-  | 'BILLING_SUBSCRIPTIONS_TABLE_NAME_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_ID_DESC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_ASC'
-  | 'BILLING_WEBHOOK_EVENTS_TABLE_NAME_DESC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_ASC'
-  | 'PROCESS_BILLING_EVENT_FUNCTION_DESC'
+  | 'CHART_EDGES_TABLE_ID_ASC'
+  | 'CHART_EDGES_TABLE_ID_DESC'
+  | 'CHART_EDGES_TABLE_NAME_ASC'
+  | 'CHART_EDGES_TABLE_NAME_DESC'
+  | 'HIERARCHY_SPRT_TABLE_ID_ASC'
+  | 'HIERARCHY_SPRT_TABLE_ID_DESC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_ASC'
+  | 'HIERARCHY_SPRT_TABLE_NAME_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_ID_DESC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_ASC'
+  | 'CHART_EDGE_GRANTS_TABLE_NAME_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'USERS_TABLE_ID_ASC'
+  | 'USERS_TABLE_ID_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
   | 'PREFIX_ASC'
   | 'PREFIX_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
+  | 'PRIVATE_SCHEMA_NAME_ASC'
+  | 'PRIVATE_SCHEMA_NAME_DESC'
+  | 'SPRT_TABLE_NAME_ASC'
+  | 'SPRT_TABLE_NAME_DESC'
+  | 'REBUILD_HIERARCHY_FUNCTION_ASC'
+  | 'REBUILD_HIERARCHY_FUNCTION_DESC'
+  | 'GET_SUBORDINATES_FUNCTION_ASC'
+  | 'GET_SUBORDINATES_FUNCTION_DESC'
+  | 'GET_MANAGERS_FUNCTION_ASC'
+  | 'GET_MANAGERS_FUNCTION_DESC'
+  | 'IS_MANAGER_OF_FUNCTION_ASC'
+  | 'IS_MANAGER_OF_FUNCTION_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'CREATED_AT_ASC'
+  | 'CREATED_AT_DESC';
 export type ProfilesModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6591,6 +6631,56 @@ export type PermissionsModuleOrderBy =
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
+export type BillingModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'METERS_TABLE_ID_ASC'
+  | 'METERS_TABLE_ID_DESC'
+  | 'METERS_TABLE_NAME_ASC'
+  | 'METERS_TABLE_NAME_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_ID_DESC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_ASC'
+  | 'PLAN_SUBSCRIPTIONS_TABLE_NAME_DESC'
+  | 'LEDGER_TABLE_ID_ASC'
+  | 'LEDGER_TABLE_ID_DESC'
+  | 'LEDGER_TABLE_NAME_ASC'
+  | 'LEDGER_TABLE_NAME_DESC'
+  | 'BALANCES_TABLE_ID_ASC'
+  | 'BALANCES_TABLE_ID_DESC'
+  | 'BALANCES_TABLE_NAME_ASC'
+  | 'BALANCES_TABLE_NAME_DESC'
+  | 'METER_CREDITS_TABLE_ID_ASC'
+  | 'METER_CREDITS_TABLE_ID_DESC'
+  | 'METER_CREDITS_TABLE_NAME_ASC'
+  | 'METER_CREDITS_TABLE_NAME_DESC'
+  | 'METER_SOURCES_TABLE_ID_ASC'
+  | 'METER_SOURCES_TABLE_ID_DESC'
+  | 'METER_SOURCES_TABLE_NAME_ASC'
+  | 'METER_SOURCES_TABLE_NAME_DESC'
+  | 'METER_DEFAULTS_TABLE_ID_ASC'
+  | 'METER_DEFAULTS_TABLE_ID_DESC'
+  | 'METER_DEFAULTS_TABLE_NAME_ASC'
+  | 'METER_DEFAULTS_TABLE_NAME_DESC'
+  | 'RECORD_USAGE_FUNCTION_ASC'
+  | 'RECORD_USAGE_FUNCTION_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 export type RelationProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6643,62 +6733,6 @@ export type RelationProvisionOrderBy =
   | 'OUT_SOURCE_FIELD_ID_DESC'
   | 'OUT_TARGET_FIELD_ID_ASC'
   | 'OUT_TARGET_FIELD_ID_DESC';
-export type FunctionModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'PUBLIC_SCHEMA_NAME_ASC'
-  | 'PUBLIC_SCHEMA_NAME_DESC'
-  | 'PRIVATE_SCHEMA_NAME_ASC'
-  | 'PRIVATE_SCHEMA_NAME_DESC'
-  | 'DEFINITIONS_TABLE_ID_ASC'
-  | 'DEFINITIONS_TABLE_ID_DESC'
-  | 'INVOCATIONS_TABLE_ID_ASC'
-  | 'INVOCATIONS_TABLE_ID_DESC'
-  | 'EXECUTION_LOGS_TABLE_ID_ASC'
-  | 'EXECUTION_LOGS_TABLE_ID_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'REQUIREMENTS_TABLE_ID_ASC'
-  | 'REQUIREMENTS_TABLE_ID_DESC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_ASC'
-  | 'CONFIG_DEFINITIONS_TABLE_ID_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_ID_DESC'
-  | 'DEFINITIONS_TABLE_NAME_ASC'
-  | 'DEFINITIONS_TABLE_NAME_DESC'
-  | 'INVOCATIONS_TABLE_NAME_ASC'
-  | 'INVOCATIONS_TABLE_NAME_DESC'
-  | 'EXECUTION_LOGS_TABLE_NAME_ASC'
-  | 'EXECUTION_LOGS_TABLE_NAME_DESC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_ASC'
-  | 'SECRET_DEFINITIONS_TABLE_NAME_DESC'
-  | 'REQUIREMENTS_TABLE_NAME_ASC'
-  | 'REQUIREMENTS_TABLE_NAME_DESC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'CONFIG_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'POLICIES_ASC'
-  | 'POLICIES_DESC'
-  | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
 export type UserAuthModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6809,6 +6843,8 @@ export type AgentModuleOrderBy =
   | 'HAS_RESOURCES_DESC'
   | 'HAS_AGENTS_ASC'
   | 'HAS_AGENTS_DESC'
+  | 'SHARED_ASC'
+  | 'SHARED_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -6824,7 +6860,9 @@ export type AgentModuleOrderBy =
   | 'RESOURCES_ASC'
   | 'RESOURCES_DESC'
   | 'PROVISIONS_ASC'
-  | 'PROVISIONS_DESC';
+  | 'PROVISIONS_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC';
 export type LimitsModuleOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
@@ -6971,6 +7009,10 @@ export type MembershipsModuleOrderBy =
   | 'ENTITY_IDS_FUNCTION_DESC'
   | 'MEMBER_PROFILES_TABLE_ID_ASC'
   | 'MEMBER_PROFILES_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_PERMISSIONS_TABLE_ID_DESC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_ASC'
+  | 'PERMISSION_DEFAULT_GRANTS_TABLE_ID_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
@@ -7047,97 +7089,13 @@ export type StorageModuleOrderBy =
   | 'CONFIRM_UPLOAD_DELAY_DESC'
   | 'FILE_EVENTS_TABLE_ID_ASC'
   | 'FILE_EVENTS_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
   | 'API_NAME_ASC'
   | 'API_NAME_DESC'
   | 'PRIVATE_API_NAME_ASC'
   | 'PRIVATE_API_NAME_DESC';
-export type EventsModuleOrderBy =
-  | 'NATURAL'
-  | 'PRIMARY_KEY_ASC'
-  | 'PRIMARY_KEY_DESC'
-  | 'ID_ASC'
-  | 'ID_DESC'
-  | 'DATABASE_ID_ASC'
-  | 'DATABASE_ID_DESC'
-  | 'SCHEMA_ID_ASC'
-  | 'SCHEMA_ID_DESC'
-  | 'PRIVATE_SCHEMA_ID_ASC'
-  | 'PRIVATE_SCHEMA_ID_DESC'
-  | 'EVENTS_TABLE_ID_ASC'
-  | 'EVENTS_TABLE_ID_DESC'
-  | 'EVENTS_TABLE_NAME_ASC'
-  | 'EVENTS_TABLE_NAME_DESC'
-  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
-  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
-  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
-  | 'EVENT_TYPES_TABLE_ID_ASC'
-  | 'EVENT_TYPES_TABLE_ID_DESC'
-  | 'EVENT_TYPES_TABLE_NAME_ASC'
-  | 'EVENT_TYPES_TABLE_NAME_DESC'
-  | 'LEVELS_TABLE_ID_ASC'
-  | 'LEVELS_TABLE_ID_DESC'
-  | 'LEVELS_TABLE_NAME_ASC'
-  | 'LEVELS_TABLE_NAME_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
-  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
-  | 'LEVEL_GRANTS_TABLE_ID_ASC'
-  | 'LEVEL_GRANTS_TABLE_ID_DESC'
-  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
-  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
-  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
-  | 'RECORD_EVENT_ASC'
-  | 'RECORD_EVENT_DESC'
-  | 'REMOVE_EVENT_ASC'
-  | 'REMOVE_EVENT_DESC'
-  | 'TG_EVENT_ASC'
-  | 'TG_EVENT_DESC'
-  | 'TG_EVENT_TOGGLE_ASC'
-  | 'TG_EVENT_TOGGLE_DESC'
-  | 'TG_EVENT_TOGGLE_BOOL_ASC'
-  | 'TG_EVENT_TOGGLE_BOOL_DESC'
-  | 'TG_EVENT_BOOL_ASC'
-  | 'TG_EVENT_BOOL_DESC'
-  | 'UPSERT_AGGREGATE_ASC'
-  | 'UPSERT_AGGREGATE_DESC'
-  | 'TG_UPDATE_AGGREGATES_ASC'
-  | 'TG_UPDATE_AGGREGATES_DESC'
-  | 'PRUNE_EVENTS_ASC'
-  | 'PRUNE_EVENTS_DESC'
-  | 'STEPS_REQUIRED_ASC'
-  | 'STEPS_REQUIRED_DESC'
-  | 'LEVEL_ACHIEVED_ASC'
-  | 'LEVEL_ACHIEVED_DESC'
-  | 'TG_CHECK_ACHIEVEMENTS_ASC'
-  | 'TG_CHECK_ACHIEVEMENTS_DESC'
-  | 'GRANT_ACHIEVEMENT_ASC'
-  | 'GRANT_ACHIEVEMENT_DESC'
-  | 'TG_ACHIEVEMENT_REWARD_ASC'
-  | 'TG_ACHIEVEMENT_REWARD_DESC'
-  | 'INTERVAL_ASC'
-  | 'INTERVAL_DESC'
-  | 'RETENTION_ASC'
-  | 'RETENTION_DESC'
-  | 'PREMAKE_ASC'
-  | 'PREMAKE_DESC'
-  | 'SCOPE_ASC'
-  | 'SCOPE_DESC'
-  | 'PREFIX_ASC'
-  | 'PREFIX_DESC'
-  | 'ENTITY_TABLE_ID_ASC'
-  | 'ENTITY_TABLE_ID_DESC'
-  | 'ACTOR_TABLE_ID_ASC'
-  | 'ACTOR_TABLE_ID_DESC'
-  | 'API_NAME_ASC'
-  | 'API_NAME_DESC'
-  | 'PRIVATE_API_NAME_ASC'
-  | 'PRIVATE_API_NAME_DESC';
-export type EntityTypeProvisionOrderBy =
+export type EntityTypeProvisionOrderBy =
   | 'NATURAL'
   | 'PRIMARY_KEY_ASC'
   | 'PRIMARY_KEY_DESC'
@@ -7215,16 +7173,100 @@ export type EntityTypeProvisionOrderBy =
   | 'OUT_EXECUTION_LOGS_TABLE_ID_DESC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_ASC'
   | 'OUT_SECRET_DEFINITIONS_TABLE_ID_DESC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_REQUIREMENTS_TABLE_ID_DESC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_ASC'
-  | 'OUT_CONFIG_REQUIREMENTS_TABLE_ID_DESC'
   | 'OUT_GRAPH_MODULE_ID_ASC'
   | 'OUT_GRAPH_MODULE_ID_DESC'
   | 'OUT_GRAPHS_TABLE_ID_ASC'
   | 'OUT_GRAPHS_TABLE_ID_DESC'
   | 'OUT_AGENT_MODULE_ID_ASC'
   | 'OUT_AGENT_MODULE_ID_DESC';
+export type EventsModuleOrderBy =
+  | 'NATURAL'
+  | 'PRIMARY_KEY_ASC'
+  | 'PRIMARY_KEY_DESC'
+  | 'ID_ASC'
+  | 'ID_DESC'
+  | 'DATABASE_ID_ASC'
+  | 'DATABASE_ID_DESC'
+  | 'SCHEMA_ID_ASC'
+  | 'SCHEMA_ID_DESC'
+  | 'PRIVATE_SCHEMA_ID_ASC'
+  | 'PRIVATE_SCHEMA_ID_DESC'
+  | 'EVENTS_TABLE_ID_ASC'
+  | 'EVENTS_TABLE_ID_DESC'
+  | 'EVENTS_TABLE_NAME_ASC'
+  | 'EVENTS_TABLE_NAME_DESC'
+  | 'EVENT_AGGREGATES_TABLE_ID_ASC'
+  | 'EVENT_AGGREGATES_TABLE_ID_DESC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_ASC'
+  | 'EVENT_AGGREGATES_TABLE_NAME_DESC'
+  | 'EVENT_TYPES_TABLE_ID_ASC'
+  | 'EVENT_TYPES_TABLE_ID_DESC'
+  | 'EVENT_TYPES_TABLE_NAME_ASC'
+  | 'EVENT_TYPES_TABLE_NAME_DESC'
+  | 'LEVELS_TABLE_ID_ASC'
+  | 'LEVELS_TABLE_ID_DESC'
+  | 'LEVELS_TABLE_NAME_ASC'
+  | 'LEVELS_TABLE_NAME_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_ID_DESC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_ASC'
+  | 'LEVEL_REQUIREMENTS_TABLE_NAME_DESC'
+  | 'LEVEL_GRANTS_TABLE_ID_ASC'
+  | 'LEVEL_GRANTS_TABLE_ID_DESC'
+  | 'LEVEL_GRANTS_TABLE_NAME_ASC'
+  | 'LEVEL_GRANTS_TABLE_NAME_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_ID_DESC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_ASC'
+  | 'ACHIEVEMENT_REWARDS_TABLE_NAME_DESC'
+  | 'RECORD_EVENT_ASC'
+  | 'RECORD_EVENT_DESC'
+  | 'REMOVE_EVENT_ASC'
+  | 'REMOVE_EVENT_DESC'
+  | 'TG_EVENT_ASC'
+  | 'TG_EVENT_DESC'
+  | 'TG_EVENT_TOGGLE_ASC'
+  | 'TG_EVENT_TOGGLE_DESC'
+  | 'TG_EVENT_TOGGLE_BOOL_ASC'
+  | 'TG_EVENT_TOGGLE_BOOL_DESC'
+  | 'TG_EVENT_BOOL_ASC'
+  | 'TG_EVENT_BOOL_DESC'
+  | 'UPSERT_AGGREGATE_ASC'
+  | 'UPSERT_AGGREGATE_DESC'
+  | 'TG_UPDATE_AGGREGATES_ASC'
+  | 'TG_UPDATE_AGGREGATES_DESC'
+  | 'PRUNE_EVENTS_ASC'
+  | 'PRUNE_EVENTS_DESC'
+  | 'STEPS_REQUIRED_ASC'
+  | 'STEPS_REQUIRED_DESC'
+  | 'LEVEL_ACHIEVED_ASC'
+  | 'LEVEL_ACHIEVED_DESC'
+  | 'TG_CHECK_ACHIEVEMENTS_ASC'
+  | 'TG_CHECK_ACHIEVEMENTS_DESC'
+  | 'GRANT_ACHIEVEMENT_ASC'
+  | 'GRANT_ACHIEVEMENT_DESC'
+  | 'TG_ACHIEVEMENT_REWARD_ASC'
+  | 'TG_ACHIEVEMENT_REWARD_DESC'
+  | 'INTERVAL_ASC'
+  | 'INTERVAL_DESC'
+  | 'RETENTION_ASC'
+  | 'RETENTION_DESC'
+  | 'PREMAKE_ASC'
+  | 'PREMAKE_DESC'
+  | 'SCOPE_ASC'
+  | 'SCOPE_DESC'
+  | 'PREFIX_ASC'
+  | 'PREFIX_DESC'
+  | 'ENTITY_TABLE_ID_ASC'
+  | 'ENTITY_TABLE_ID_DESC'
+  | 'ACTOR_TABLE_ID_ASC'
+  | 'ACTOR_TABLE_ID_DESC'
+  | 'DEFAULT_PERMISSIONS_ASC'
+  | 'DEFAULT_PERMISSIONS_DESC'
+  | 'API_NAME_ASC'
+  | 'API_NAME_DESC'
+  | 'PRIVATE_API_NAME_ASC'
+  | 'PRIVATE_API_NAME_DESC';
 // ============ CRUD Input Types ============
 export interface CreateDefaultIdsModuleInput {
   clientMutationId?: string;
@@ -7986,48 +8028,6 @@ export interface DeleteCryptoAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  rateLimitMetersModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    rateLimitStateTableId?: string;
-    rateLimitStateTableName?: string;
-    rateLimitOverridesTableId?: string;
-    rateLimitOverridesTableName?: string;
-    rateWindowLimitsTableId?: string;
-    rateWindowLimitsTableName?: string;
-    checkRateLimitFunction?: string;
-    prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface RateLimitMetersModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  rateLimitStateTableId?: string | null;
-  rateLimitStateTableName?: string | null;
-  rateLimitOverridesTableId?: string | null;
-  rateLimitOverridesTableName?: string | null;
-  rateWindowLimitsTableId?: string | null;
-  rateWindowLimitsTableName?: string | null;
-  checkRateLimitFunction?: string | null;
-  prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
-}
-export interface DeleteRateLimitMetersModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateSessionsModuleInput {
   clientMutationId?: string;
   sessionsModule: {
@@ -8169,6 +8169,7 @@ export interface CreateGraphModuleInput {
     entityTableId?: string;
     policies?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface GraphModulePatch {
@@ -8188,6 +8189,7 @@ export interface GraphModulePatch {
   entityTableId?: string | null;
   policies?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateGraphModuleInput {
   clientMutationId?: string;
@@ -8234,6 +8236,50 @@ export interface DeleteSecureTableProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  rateLimitMetersModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    rateLimitStateTableId?: string;
+    rateLimitStateTableName?: string;
+    rateLimitOverridesTableId?: string;
+    rateLimitOverridesTableName?: string;
+    rateWindowLimitsTableId?: string;
+    rateWindowLimitsTableName?: string;
+    checkRateLimitFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface RateLimitMetersModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  rateLimitStateTableId?: string | null;
+  rateLimitStateTableName?: string | null;
+  rateLimitOverridesTableId?: string | null;
+  rateLimitOverridesTableName?: string | null;
+  rateWindowLimitsTableId?: string | null;
+  rateWindowLimitsTableName?: string | null;
+  checkRateLimitFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+  rateLimitMetersModulePatch: RateLimitMetersModulePatch;
+}
+export interface DeleteRateLimitMetersModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateInvitesModuleInput {
   clientMutationId?: string;
   invitesModule: {
@@ -8318,57 +8364,9 @@ export interface DeleteDatabaseProvisionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateNamespaceModuleInput {
+export interface CreateRealtimeModuleInput {
   clientMutationId?: string;
-  namespaceModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    namespacesTableId?: string;
-    namespaceEventsTableId?: string;
-    namespacesTableName?: string;
-    namespaceEventsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface NamespaceModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  namespacesTableId?: string | null;
-  namespaceEventsTableId?: string | null;
-  namespacesTableName?: string | null;
-  namespaceEventsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-  namespaceModulePatch: NamespaceModulePatch;
-}
-export interface DeleteNamespaceModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateRealtimeModuleInput {
-  clientMutationId?: string;
-  realtimeModule: {
+  realtimeModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
@@ -8454,6 +8452,56 @@ export interface DeleteWebauthnAuthModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateNamespaceModuleInput {
+  clientMutationId?: string;
+  namespaceModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    publicSchemaName?: string;
+    privateSchemaName?: string;
+    namespacesTableId?: string;
+    namespaceEventsTableId?: string;
+    namespacesTableName?: string;
+    namespaceEventsTableName?: string;
+    apiName?: string;
+    privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
+  };
+}
+export interface NamespaceModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  namespacesTableId?: string | null;
+  namespaceEventsTableId?: string | null;
+  namespacesTableName?: string | null;
+  namespaceEventsTableName?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
+}
+export interface UpdateNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+  namespaceModulePatch: NamespaceModulePatch;
+}
+export interface DeleteNamespaceModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateComputeLogModuleInput {
   clientMutationId?: string;
   computeLogModule: {
@@ -8646,6 +8694,58 @@ export interface DeleteTransferLogModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreatePlansModuleInput {
+  clientMutationId?: string;
+  plansModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    plansTableId?: string;
+    plansTableName?: string;
+    planLimitsTableId?: string;
+    planLimitsTableName?: string;
+    planPricingTableId?: string;
+    planOverridesTableId?: string;
+    planMeterLimitsTableId?: string;
+    planCapsTableId?: string;
+    applyPlanFunction?: string;
+    applyPlanAggregateFunction?: string;
+    applyBillingPlanFunction?: string;
+    applyPlanCapsFunction?: string;
+    prefix?: string;
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface PlansModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  plansTableId?: string | null;
+  plansTableName?: string | null;
+  planLimitsTableId?: string | null;
+  planLimitsTableName?: string | null;
+  planPricingTableId?: string | null;
+  planOverridesTableId?: string | null;
+  planMeterLimitsTableId?: string | null;
+  planCapsTableId?: string | null;
+  applyPlanFunction?: string | null;
+  applyPlanAggregateFunction?: string | null;
+  applyBillingPlanFunction?: string | null;
+  applyPlanCapsFunction?: string | null;
+  prefix?: string | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdatePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+  plansModulePatch: PlansModulePatch;
+}
+export interface DeletePlansModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateDbUsageModuleInput {
   clientMutationId?: string;
   dbUsageModule: {
@@ -8665,6 +8765,7 @@ export interface CreateDbUsageModuleInput {
     premake?: number;
     scope?: string;
     prefix?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8686,6 +8787,7 @@ export interface DbUsageModulePatch {
   premake?: number | null;
   scope?: string | null;
   prefix?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8717,6 +8819,7 @@ export interface CreateNotificationsModuleInput {
     hasSettingsExtension?: boolean;
     hasDigestMetadata?: boolean;
     hasSubscriptions?: boolean;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
@@ -8738,6 +8841,7 @@ export interface NotificationsModulePatch {
   hasSettingsExtension?: boolean | null;
   hasDigestMetadata?: boolean | null;
   hasSubscriptions?: boolean | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -8750,225 +8854,175 @@ export interface DeleteNotificationsModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreatePlansModuleInput {
+export interface CreateBillingProviderModuleInput {
   clientMutationId?: string;
-  plansModule: {
+  billingProviderModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    plansTableId?: string;
-    plansTableName?: string;
-    planLimitsTableId?: string;
-    planLimitsTableName?: string;
-    planPricingTableId?: string;
-    planOverridesTableId?: string;
-    planMeterLimitsTableId?: string;
-    planCapsTableId?: string;
-    applyPlanFunction?: string;
-    applyPlanAggregateFunction?: string;
-    applyBillingPlanFunction?: string;
-    applyPlanCapsFunction?: string;
+    provider?: string;
+    productsTableId?: string;
+    pricesTableId?: string;
+    subscriptionsTableId?: string;
+    billingCustomersTableId?: string;
+    billingCustomersTableName?: string;
+    billingProductsTableId?: string;
+    billingProductsTableName?: string;
+    billingPricesTableId?: string;
+    billingPricesTableName?: string;
+    billingSubscriptionsTableId?: string;
+    billingSubscriptionsTableName?: string;
+    billingWebhookEventsTableId?: string;
+    billingWebhookEventsTableName?: string;
+    processBillingEventFunction?: string;
     prefix?: string;
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface PlansModulePatch {
+export interface BillingProviderModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  plansTableId?: string | null;
-  plansTableName?: string | null;
-  planLimitsTableId?: string | null;
-  planLimitsTableName?: string | null;
-  planPricingTableId?: string | null;
-  planOverridesTableId?: string | null;
-  planMeterLimitsTableId?: string | null;
-  planCapsTableId?: string | null;
-  applyPlanFunction?: string | null;
-  applyPlanAggregateFunction?: string | null;
-  applyBillingPlanFunction?: string | null;
-  applyPlanCapsFunction?: string | null;
+  provider?: string | null;
+  productsTableId?: string | null;
+  pricesTableId?: string | null;
+  subscriptionsTableId?: string | null;
+  billingCustomersTableId?: string | null;
+  billingCustomersTableName?: string | null;
+  billingProductsTableId?: string | null;
+  billingProductsTableName?: string | null;
+  billingPricesTableId?: string | null;
+  billingPricesTableName?: string | null;
+  billingSubscriptionsTableId?: string | null;
+  billingSubscriptionsTableName?: string | null;
+  billingWebhookEventsTableId?: string | null;
+  billingWebhookEventsTableName?: string | null;
+  processBillingEventFunction?: string | null;
   prefix?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdatePlansModuleInput {
+export interface UpdateBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
-  plansModulePatch: PlansModulePatch;
+  billingProviderModulePatch: BillingProviderModulePatch;
 }
-export interface DeletePlansModuleInput {
+export interface DeleteBillingProviderModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateHierarchyModuleInput {
+export interface CreateFunctionModuleInput {
   clientMutationId?: string;
-  hierarchyModule: {
+  functionModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    chartEdgesTableId?: string;
-    chartEdgesTableName?: string;
-    hierarchySprtTableId?: string;
-    hierarchySprtTableName?: string;
-    chartEdgeGrantsTableId?: string;
-    chartEdgeGrantsTableName?: string;
-    entityTableId: string;
-    usersTableId: string;
-    scope?: string;
-    prefix?: string;
+    publicSchemaName?: string;
     privateSchemaName?: string;
-    sprtTableName?: string;
-    rebuildHierarchyFunction?: string;
-    getSubordinatesFunction?: string;
-    getManagersFunction?: string;
-    isManagerOfFunction?: string;
-  };
-}
-export interface HierarchyModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  chartEdgesTableId?: string | null;
-  chartEdgesTableName?: string | null;
-  hierarchySprtTableId?: string | null;
-  hierarchySprtTableName?: string | null;
-  chartEdgeGrantsTableId?: string | null;
-  chartEdgeGrantsTableName?: string | null;
-  entityTableId?: string | null;
-  usersTableId?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  privateSchemaName?: string | null;
-  sprtTableName?: string | null;
-  rebuildHierarchyFunction?: string | null;
-  getSubordinatesFunction?: string | null;
-  getManagersFunction?: string | null;
-  isManagerOfFunction?: string | null;
-}
-export interface UpdateHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-  hierarchyModulePatch: HierarchyModulePatch;
-}
-export interface DeleteHierarchyModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateBillingModuleInput {
-  clientMutationId?: string;
-  billingModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    metersTableId?: string;
-    metersTableName?: string;
-    planSubscriptionsTableId?: string;
-    planSubscriptionsTableName?: string;
-    ledgerTableId?: string;
-    ledgerTableName?: string;
-    balancesTableId?: string;
-    balancesTableName?: string;
-    meterCreditsTableId?: string;
-    meterCreditsTableName?: string;
-    meterSourcesTableId?: string;
-    meterSourcesTableName?: string;
-    meterDefaultsTableId?: string;
-    meterDefaultsTableName?: string;
-    recordUsageFunction?: string;
-    prefix?: string;
+    definitionsTableId?: string;
+    invocationsTableId?: string;
+    executionLogsTableId?: string;
+    secretDefinitionsTableId?: string;
+    definitionsTableName?: string;
+    invocationsTableName?: string;
+    executionLogsTableName?: string;
+    secretDefinitionsTableName?: string;
     apiName?: string;
     privateApiName?: string;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    policies?: Record<string, unknown>;
+    provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingModulePatch {
+export interface FunctionModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  metersTableId?: string | null;
-  metersTableName?: string | null;
-  planSubscriptionsTableId?: string | null;
-  planSubscriptionsTableName?: string | null;
-  ledgerTableId?: string | null;
-  ledgerTableName?: string | null;
-  balancesTableId?: string | null;
-  balancesTableName?: string | null;
-  meterCreditsTableId?: string | null;
-  meterCreditsTableName?: string | null;
-  meterSourcesTableId?: string | null;
-  meterSourcesTableName?: string | null;
-  meterDefaultsTableId?: string | null;
-  meterDefaultsTableName?: string | null;
-  recordUsageFunction?: string | null;
-  prefix?: string | null;
+  publicSchemaName?: string | null;
+  privateSchemaName?: string | null;
+  definitionsTableId?: string | null;
+  invocationsTableId?: string | null;
+  executionLogsTableId?: string | null;
+  secretDefinitionsTableId?: string | null;
+  definitionsTableName?: string | null;
+  invocationsTableName?: string | null;
+  executionLogsTableName?: string | null;
+  secretDefinitionsTableName?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingModuleInput {
+export interface UpdateFunctionModuleInput {
   clientMutationId?: string;
   id: string;
-  billingModulePatch: BillingModulePatch;
+  functionModulePatch: FunctionModulePatch;
 }
-export interface DeleteBillingModuleInput {
+export interface DeleteFunctionModuleInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateBillingProviderModuleInput {
+export interface CreateHierarchyModuleInput {
   clientMutationId?: string;
-  billingProviderModule: {
+  hierarchyModule: {
     databaseId: string;
     schemaId?: string;
     privateSchemaId?: string;
-    provider?: string;
-    productsTableId?: string;
-    pricesTableId?: string;
-    subscriptionsTableId?: string;
-    billingCustomersTableId?: string;
-    billingCustomersTableName?: string;
-    billingProductsTableId?: string;
-    billingProductsTableName?: string;
-    billingPricesTableId?: string;
-    billingPricesTableName?: string;
-    billingSubscriptionsTableId?: string;
-    billingSubscriptionsTableName?: string;
-    billingWebhookEventsTableId?: string;
-    billingWebhookEventsTableName?: string;
-    processBillingEventFunction?: string;
+    chartEdgesTableId?: string;
+    chartEdgesTableName?: string;
+    hierarchySprtTableId?: string;
+    hierarchySprtTableName?: string;
+    chartEdgeGrantsTableId?: string;
+    chartEdgeGrantsTableName?: string;
+    entityTableId: string;
+    usersTableId: string;
+    scope?: string;
     prefix?: string;
-    apiName?: string;
-    privateApiName?: string;
+    privateSchemaName?: string;
+    sprtTableName?: string;
+    rebuildHierarchyFunction?: string;
+    getSubordinatesFunction?: string;
+    getManagersFunction?: string;
+    isManagerOfFunction?: string;
+    defaultPermissions?: string[];
   };
 }
-export interface BillingProviderModulePatch {
+export interface HierarchyModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  provider?: string | null;
-  productsTableId?: string | null;
-  pricesTableId?: string | null;
-  subscriptionsTableId?: string | null;
-  billingCustomersTableId?: string | null;
-  billingCustomersTableName?: string | null;
-  billingProductsTableId?: string | null;
-  billingProductsTableName?: string | null;
-  billingPricesTableId?: string | null;
-  billingPricesTableName?: string | null;
-  billingSubscriptionsTableId?: string | null;
-  billingSubscriptionsTableName?: string | null;
-  billingWebhookEventsTableId?: string | null;
-  billingWebhookEventsTableName?: string | null;
-  processBillingEventFunction?: string | null;
+  chartEdgesTableId?: string | null;
+  chartEdgesTableName?: string | null;
+  hierarchySprtTableId?: string | null;
+  hierarchySprtTableName?: string | null;
+  chartEdgeGrantsTableId?: string | null;
+  chartEdgeGrantsTableName?: string | null;
+  entityTableId?: string | null;
+  usersTableId?: string | null;
+  scope?: string | null;
   prefix?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
+  privateSchemaName?: string | null;
+  sprtTableName?: string | null;
+  rebuildHierarchyFunction?: string | null;
+  getSubordinatesFunction?: string | null;
+  getManagersFunction?: string | null;
+  isManagerOfFunction?: string | null;
+  defaultPermissions?: string[] | null;
 }
-export interface UpdateBillingProviderModuleInput {
+export interface UpdateHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
-  billingProviderModulePatch: BillingProviderModulePatch;
+  hierarchyModulePatch: HierarchyModulePatch;
 }
-export interface DeleteBillingProviderModuleInput {
+export interface DeleteHierarchyModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9082,6 +9136,66 @@ export interface DeletePermissionsModuleInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateBillingModuleInput {
+  clientMutationId?: string;
+  billingModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    metersTableId?: string;
+    metersTableName?: string;
+    planSubscriptionsTableId?: string;
+    planSubscriptionsTableName?: string;
+    ledgerTableId?: string;
+    ledgerTableName?: string;
+    balancesTableId?: string;
+    balancesTableName?: string;
+    meterCreditsTableId?: string;
+    meterCreditsTableName?: string;
+    meterSourcesTableId?: string;
+    meterSourcesTableName?: string;
+    meterDefaultsTableId?: string;
+    meterDefaultsTableName?: string;
+    recordUsageFunction?: string;
+    prefix?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface BillingModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  metersTableId?: string | null;
+  metersTableName?: string | null;
+  planSubscriptionsTableId?: string | null;
+  planSubscriptionsTableName?: string | null;
+  ledgerTableId?: string | null;
+  ledgerTableName?: string | null;
+  balancesTableId?: string | null;
+  balancesTableName?: string | null;
+  meterCreditsTableId?: string | null;
+  meterCreditsTableName?: string | null;
+  meterSourcesTableId?: string | null;
+  meterSourcesTableName?: string | null;
+  meterDefaultsTableId?: string | null;
+  meterDefaultsTableName?: string | null;
+  recordUsageFunction?: string | null;
+  prefix?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+  billingModulePatch: BillingModulePatch;
+}
+export interface DeleteBillingModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 export interface CreateRelationProvisionInput {
   clientMutationId?: string;
   relationProvision: {
@@ -9144,72 +9258,6 @@ export interface DeleteRelationProvisionInput {
   clientMutationId?: string;
   id: string;
 }
-export interface CreateFunctionModuleInput {
-  clientMutationId?: string;
-  functionModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    publicSchemaName?: string;
-    privateSchemaName?: string;
-    definitionsTableId?: string;
-    invocationsTableId?: string;
-    executionLogsTableId?: string;
-    secretDefinitionsTableId?: string;
-    requirementsTableId?: string;
-    configDefinitionsTableId?: string;
-    configRequirementsTableId?: string;
-    definitionsTableName?: string;
-    invocationsTableName?: string;
-    executionLogsTableName?: string;
-    secretDefinitionsTableName?: string;
-    requirementsTableName?: string;
-    configRequirementsTableName?: string;
-    apiName?: string;
-    privateApiName?: string;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    policies?: Record<string, unknown>;
-    provisions?: Record<string, unknown>;
-  };
-}
-export interface FunctionModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  publicSchemaName?: string | null;
-  privateSchemaName?: string | null;
-  definitionsTableId?: string | null;
-  invocationsTableId?: string | null;
-  executionLogsTableId?: string | null;
-  secretDefinitionsTableId?: string | null;
-  requirementsTableId?: string | null;
-  configDefinitionsTableId?: string | null;
-  configRequirementsTableId?: string | null;
-  definitionsTableName?: string | null;
-  invocationsTableName?: string | null;
-  executionLogsTableName?: string | null;
-  secretDefinitionsTableName?: string | null;
-  requirementsTableName?: string | null;
-  configRequirementsTableName?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  entityTableId?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-}
-export interface UpdateFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-  functionModulePatch: FunctionModulePatch;
-}
-export interface DeleteFunctionModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
 export interface CreateUserAuthModuleInput {
   clientMutationId?: string;
   userAuthModule: {
@@ -9305,6 +9353,7 @@ export interface CreateAgentModuleInput {
     hasPlans?: boolean;
     hasResources?: boolean;
     hasAgents?: boolean;
+    shared?: boolean;
     apiName?: string;
     privateApiName?: string;
     scope?: string;
@@ -9313,6 +9362,7 @@ export interface CreateAgentModuleInput {
     policies?: Record<string, unknown>;
     resources?: Record<string, unknown>;
     provisions?: Record<string, unknown>;
+    defaultPermissions?: string[];
   };
 }
 export interface AgentModulePatch {
@@ -9338,6 +9388,7 @@ export interface AgentModulePatch {
   hasPlans?: boolean | null;
   hasResources?: boolean | null;
   hasAgents?: boolean | null;
+  shared?: boolean | null;
   apiName?: string | null;
   privateApiName?: string | null;
   scope?: string | null;
@@ -9346,6 +9397,7 @@ export interface AgentModulePatch {
   policies?: Record<string, unknown> | null;
   resources?: Record<string, unknown> | null;
   provisions?: Record<string, unknown> | null;
+  defaultPermissions?: string[] | null;
 }
 export interface UpdateAgentModuleInput {
   clientMutationId?: string;
@@ -9475,6 +9527,8 @@ export interface CreateMembershipsModuleInput {
     entityIdsByPerm?: string;
     entityIdsFunction?: string;
     memberProfilesTableId?: string;
+    permissionDefaultPermissionsTableId?: string;
+    permissionDefaultGrantsTableId?: string;
     apiName?: string;
     privateApiName?: string;
   };
@@ -9514,6 +9568,8 @@ export interface MembershipsModulePatch {
   entityIdsByPerm?: string | null;
   entityIdsFunction?: string | null;
   memberProfilesTableId?: string | null;
+  permissionDefaultPermissionsTableId?: string | null;
+  permissionDefaultGrantsTableId?: string | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
@@ -9559,152 +9615,58 @@ export interface CreateStorageModuleInput {
     hasContentHash?: boolean;
     hasCustomKeys?: boolean;
     hasAuditLog?: boolean;
-    hasConfirmUpload?: boolean;
-    confirmUploadDelay?: IntervalInput;
-    fileEventsTableId?: string;
-    apiName?: string;
-    privateApiName?: string;
-  };
-}
-export interface StorageModulePatch {
-  databaseId?: string | null;
-  schemaId?: string | null;
-  privateSchemaId?: string | null;
-  bucketsTableId?: string | null;
-  filesTableId?: string | null;
-  bucketsTableName?: string | null;
-  filesTableName?: string | null;
-  scope?: string | null;
-  prefix?: string | null;
-  policies?: Record<string, unknown> | null;
-  provisions?: Record<string, unknown> | null;
-  entityTableId?: string | null;
-  endpoint?: string | null;
-  publicUrlPrefix?: string | null;
-  provider?: string | null;
-  allowedOrigins?: string[] | null;
-  restrictReads?: boolean | null;
-  hasPathShares?: boolean | null;
-  pathSharesTableId?: string | null;
-  uploadUrlExpirySeconds?: number | null;
-  downloadUrlExpirySeconds?: number | null;
-  defaultMaxFileSize?: string | null;
-  maxFilenameLength?: number | null;
-  cacheTtlSeconds?: number | null;
-  maxBulkFiles?: number | null;
-  maxBulkTotalSize?: string | null;
-  hasVersioning?: boolean | null;
-  hasContentHash?: boolean | null;
-  hasCustomKeys?: boolean | null;
-  hasAuditLog?: boolean | null;
-  hasConfirmUpload?: boolean | null;
-  confirmUploadDelay?: IntervalInput | null;
-  fileEventsTableId?: string | null;
-  apiName?: string | null;
-  privateApiName?: string | null;
-}
-export interface UpdateStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-  storageModulePatch: StorageModulePatch;
-}
-export interface DeleteStorageModuleInput {
-  clientMutationId?: string;
-  id: string;
-}
-export interface CreateEventsModuleInput {
-  clientMutationId?: string;
-  eventsModule: {
-    databaseId: string;
-    schemaId?: string;
-    privateSchemaId?: string;
-    eventsTableId?: string;
-    eventsTableName?: string;
-    eventAggregatesTableId?: string;
-    eventAggregatesTableName?: string;
-    eventTypesTableId?: string;
-    eventTypesTableName?: string;
-    levelsTableId?: string;
-    levelsTableName?: string;
-    levelRequirementsTableId?: string;
-    levelRequirementsTableName?: string;
-    levelGrantsTableId?: string;
-    levelGrantsTableName?: string;
-    achievementRewardsTableId?: string;
-    achievementRewardsTableName?: string;
-    recordEvent?: string;
-    removeEvent?: string;
-    tgEvent?: string;
-    tgEventToggle?: string;
-    tgEventToggleBool?: string;
-    tgEventBool?: string;
-    upsertAggregate?: string;
-    tgUpdateAggregates?: string;
-    pruneEvents?: string;
-    stepsRequired?: string;
-    levelAchieved?: string;
-    tgCheckAchievements?: string;
-    grantAchievement?: string;
-    tgAchievementReward?: string;
-    interval?: string;
-    retention?: string;
-    premake?: number;
-    scope?: string;
-    prefix?: string;
-    entityTableId?: string;
-    actorTableId?: string;
+    hasConfirmUpload?: boolean;
+    confirmUploadDelay?: IntervalInput;
+    fileEventsTableId?: string;
+    defaultPermissions?: string[];
     apiName?: string;
     privateApiName?: string;
   };
 }
-export interface EventsModulePatch {
+export interface StorageModulePatch {
   databaseId?: string | null;
   schemaId?: string | null;
   privateSchemaId?: string | null;
-  eventsTableId?: string | null;
-  eventsTableName?: string | null;
-  eventAggregatesTableId?: string | null;
-  eventAggregatesTableName?: string | null;
-  eventTypesTableId?: string | null;
-  eventTypesTableName?: string | null;
-  levelsTableId?: string | null;
-  levelsTableName?: string | null;
-  levelRequirementsTableId?: string | null;
-  levelRequirementsTableName?: string | null;
-  levelGrantsTableId?: string | null;
-  levelGrantsTableName?: string | null;
-  achievementRewardsTableId?: string | null;
-  achievementRewardsTableName?: string | null;
-  recordEvent?: string | null;
-  removeEvent?: string | null;
-  tgEvent?: string | null;
-  tgEventToggle?: string | null;
-  tgEventToggleBool?: string | null;
-  tgEventBool?: string | null;
-  upsertAggregate?: string | null;
-  tgUpdateAggregates?: string | null;
-  pruneEvents?: string | null;
-  stepsRequired?: string | null;
-  levelAchieved?: string | null;
-  tgCheckAchievements?: string | null;
-  grantAchievement?: string | null;
-  tgAchievementReward?: string | null;
-  interval?: string | null;
-  retention?: string | null;
-  premake?: number | null;
+  bucketsTableId?: string | null;
+  filesTableId?: string | null;
+  bucketsTableName?: string | null;
+  filesTableName?: string | null;
   scope?: string | null;
   prefix?: string | null;
+  policies?: Record<string, unknown> | null;
+  provisions?: Record<string, unknown> | null;
   entityTableId?: string | null;
-  actorTableId?: string | null;
+  endpoint?: string | null;
+  publicUrlPrefix?: string | null;
+  provider?: string | null;
+  allowedOrigins?: string[] | null;
+  restrictReads?: boolean | null;
+  hasPathShares?: boolean | null;
+  pathSharesTableId?: string | null;
+  uploadUrlExpirySeconds?: number | null;
+  downloadUrlExpirySeconds?: number | null;
+  defaultMaxFileSize?: string | null;
+  maxFilenameLength?: number | null;
+  cacheTtlSeconds?: number | null;
+  maxBulkFiles?: number | null;
+  maxBulkTotalSize?: string | null;
+  hasVersioning?: boolean | null;
+  hasContentHash?: boolean | null;
+  hasCustomKeys?: boolean | null;
+  hasAuditLog?: boolean | null;
+  hasConfirmUpload?: boolean | null;
+  confirmUploadDelay?: IntervalInput | null;
+  fileEventsTableId?: string | null;
+  defaultPermissions?: string[] | null;
   apiName?: string | null;
   privateApiName?: string | null;
 }
-export interface UpdateEventsModuleInput {
+export interface UpdateStorageModuleInput {
   clientMutationId?: string;
   id: string;
-  eventsModulePatch: EventsModulePatch;
+  storageModulePatch: StorageModulePatch;
 }
-export interface DeleteEventsModuleInput {
+export interface DeleteStorageModuleInput {
   clientMutationId?: string;
   id: string;
 }
@@ -9747,8 +9709,6 @@ export interface CreateEntityTypeProvisionInput {
     outInvocationsTableId?: string;
     outExecutionLogsTableId?: string;
     outSecretDefinitionsTableId?: string;
-    outRequirementsTableId?: string;
-    outConfigRequirementsTableId?: string;
     outGraphModuleId?: string;
     outGraphsTableId?: string;
     outAgentModuleId?: string;
@@ -9791,8 +9751,6 @@ export interface EntityTypeProvisionPatch {
   outInvocationsTableId?: string | null;
   outExecutionLogsTableId?: string | null;
   outSecretDefinitionsTableId?: string | null;
-  outRequirementsTableId?: string | null;
-  outConfigRequirementsTableId?: string | null;
   outGraphModuleId?: string | null;
   outGraphsTableId?: string | null;
   outAgentModuleId?: string | null;
@@ -9806,6 +9764,104 @@ export interface DeleteEntityTypeProvisionInput {
   clientMutationId?: string;
   id: string;
 }
+export interface CreateEventsModuleInput {
+  clientMutationId?: string;
+  eventsModule: {
+    databaseId: string;
+    schemaId?: string;
+    privateSchemaId?: string;
+    eventsTableId?: string;
+    eventsTableName?: string;
+    eventAggregatesTableId?: string;
+    eventAggregatesTableName?: string;
+    eventTypesTableId?: string;
+    eventTypesTableName?: string;
+    levelsTableId?: string;
+    levelsTableName?: string;
+    levelRequirementsTableId?: string;
+    levelRequirementsTableName?: string;
+    levelGrantsTableId?: string;
+    levelGrantsTableName?: string;
+    achievementRewardsTableId?: string;
+    achievementRewardsTableName?: string;
+    recordEvent?: string;
+    removeEvent?: string;
+    tgEvent?: string;
+    tgEventToggle?: string;
+    tgEventToggleBool?: string;
+    tgEventBool?: string;
+    upsertAggregate?: string;
+    tgUpdateAggregates?: string;
+    pruneEvents?: string;
+    stepsRequired?: string;
+    levelAchieved?: string;
+    tgCheckAchievements?: string;
+    grantAchievement?: string;
+    tgAchievementReward?: string;
+    interval?: string;
+    retention?: string;
+    premake?: number;
+    scope?: string;
+    prefix?: string;
+    entityTableId?: string;
+    actorTableId?: string;
+    defaultPermissions?: string[];
+    apiName?: string;
+    privateApiName?: string;
+  };
+}
+export interface EventsModulePatch {
+  databaseId?: string | null;
+  schemaId?: string | null;
+  privateSchemaId?: string | null;
+  eventsTableId?: string | null;
+  eventsTableName?: string | null;
+  eventAggregatesTableId?: string | null;
+  eventAggregatesTableName?: string | null;
+  eventTypesTableId?: string | null;
+  eventTypesTableName?: string | null;
+  levelsTableId?: string | null;
+  levelsTableName?: string | null;
+  levelRequirementsTableId?: string | null;
+  levelRequirementsTableName?: string | null;
+  levelGrantsTableId?: string | null;
+  levelGrantsTableName?: string | null;
+  achievementRewardsTableId?: string | null;
+  achievementRewardsTableName?: string | null;
+  recordEvent?: string | null;
+  removeEvent?: string | null;
+  tgEvent?: string | null;
+  tgEventToggle?: string | null;
+  tgEventToggleBool?: string | null;
+  tgEventBool?: string | null;
+  upsertAggregate?: string | null;
+  tgUpdateAggregates?: string | null;
+  pruneEvents?: string | null;
+  stepsRequired?: string | null;
+  levelAchieved?: string | null;
+  tgCheckAchievements?: string | null;
+  grantAchievement?: string | null;
+  tgAchievementReward?: string | null;
+  interval?: string | null;
+  retention?: string | null;
+  premake?: number | null;
+  scope?: string | null;
+  prefix?: string | null;
+  entityTableId?: string | null;
+  actorTableId?: string | null;
+  defaultPermissions?: string[] | null;
+  apiName?: string | null;
+  privateApiName?: string | null;
+}
+export interface UpdateEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+  eventsModulePatch: EventsModulePatch;
+}
+export interface DeleteEventsModuleInput {
+  clientMutationId?: string;
+  id: string;
+}
 // ============ Connection Fields Map ============
 export const connectionFieldsMap = {
   Blueprint: {
@@ -10205,6 +10261,8 @@ export interface GraphModuleFilter {
   policies?: JSONFilter;
   /** Filter by the object’s `provisions` field. */
   provisions?: JSONFilter;
+  /** Filter by the object’s `defaultPermissions` field. */
+  defaultPermissions?: StringListFilter;
   /** Filter by the object’s `createdAt` field. */
   createdAt?: DatetimeFilter;
   /** Checks for all expressions in this list. */
@@ -11660,51 +11718,6 @@ export type DeleteCryptoAuthModulePayloadSelect = {
     select: CryptoAuthModuleEdgeSelect;
   };
 };
-export interface CreateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was created by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type CreateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface UpdateRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was updated by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type UpdateRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
-export interface DeleteRateLimitMetersModulePayload {
-  clientMutationId?: string | null;
-  /** The `RateLimitMetersModule` that was deleted by this mutation. */
-  rateLimitMetersModule?: RateLimitMetersModule | null;
-  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
-}
-export type DeleteRateLimitMetersModulePayloadSelect = {
-  clientMutationId?: boolean;
-  rateLimitMetersModule?: {
-    select: RateLimitMetersModuleSelect;
-  };
-  rateLimitMetersModuleEdge?: {
-    select: RateLimitMetersModuleEdgeSelect;
-  };
-};
 export interface CreateSessionsModulePayload {
   clientMutationId?: string | null;
   /** The `SessionsModule` that was created by this mutation. */
@@ -11893,41 +11906,86 @@ export interface CreateSecureTableProvisionPayload {
 }
 export type CreateSecureTableProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface UpdateSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was updated by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type UpdateSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface DeleteSecureTableProvisionPayload {
+  clientMutationId?: string | null;
+  /** The `SecureTableProvision` that was deleted by this mutation. */
+  secureTableProvision?: SecureTableProvision | null;
+  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+}
+export type DeleteSecureTableProvisionPayloadSelect = {
+  clientMutationId?: boolean;
+  secureTableProvision?: {
+    select: SecureTableProvisionSelect;
+  };
+  secureTableProvisionEdge?: {
+    select: SecureTableProvisionEdgeSelect;
+  };
+};
+export interface CreateRateLimitMetersModulePayload {
+  clientMutationId?: string | null;
+  /** The `RateLimitMetersModule` that was created by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
+}
+export type CreateRateLimitMetersModulePayloadSelect = {
+  clientMutationId?: boolean;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface UpdateSecureTableProvisionPayload {
+export interface UpdateRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was updated by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was updated by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type UpdateSecureTableProvisionPayloadSelect = {
+export type UpdateRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
-export interface DeleteSecureTableProvisionPayload {
+export interface DeleteRateLimitMetersModulePayload {
   clientMutationId?: string | null;
-  /** The `SecureTableProvision` that was deleted by this mutation. */
-  secureTableProvision?: SecureTableProvision | null;
-  secureTableProvisionEdge?: SecureTableProvisionEdge | null;
+  /** The `RateLimitMetersModule` that was deleted by this mutation. */
+  rateLimitMetersModule?: RateLimitMetersModule | null;
+  rateLimitMetersModuleEdge?: RateLimitMetersModuleEdge | null;
 }
-export type DeleteSecureTableProvisionPayloadSelect = {
+export type DeleteRateLimitMetersModulePayloadSelect = {
   clientMutationId?: boolean;
-  secureTableProvision?: {
-    select: SecureTableProvisionSelect;
+  rateLimitMetersModule?: {
+    select: RateLimitMetersModuleSelect;
   };
-  secureTableProvisionEdge?: {
-    select: SecureTableProvisionEdgeSelect;
+  rateLimitMetersModuleEdge?: {
+    select: RateLimitMetersModuleEdgeSelect;
   };
 };
 export interface CreateInvitesModulePayload {
@@ -12020,51 +12078,6 @@ export type DeleteDatabaseProvisionModulePayloadSelect = {
     select: DatabaseProvisionModuleEdgeSelect;
   };
 };
-export interface CreateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was created by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type CreateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface UpdateNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was updated by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type UpdateNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
-export interface DeleteNamespaceModulePayload {
-  clientMutationId?: string | null;
-  /** The `NamespaceModule` that was deleted by this mutation. */
-  namespaceModule?: NamespaceModule | null;
-  namespaceModuleEdge?: NamespaceModuleEdge | null;
-}
-export type DeleteNamespaceModulePayloadSelect = {
-  clientMutationId?: boolean;
-  namespaceModule?: {
-    select: NamespaceModuleSelect;
-  };
-  namespaceModuleEdge?: {
-    select: NamespaceModuleEdgeSelect;
-  };
-};
 export interface CreateRealtimeModulePayload {
   clientMutationId?: string | null;
   /** The `RealtimeModule` that was created by this mutation. */
@@ -12155,6 +12168,51 @@ export type DeleteWebauthnAuthModulePayloadSelect = {
     select: WebauthnAuthModuleEdgeSelect;
   };
 };
+export interface CreateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was created by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type CreateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface UpdateNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was updated by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type UpdateNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
+export interface DeleteNamespaceModulePayload {
+  clientMutationId?: string | null;
+  /** The `NamespaceModule` that was deleted by this mutation. */
+  namespaceModule?: NamespaceModule | null;
+  namespaceModuleEdge?: NamespaceModuleEdge | null;
+}
+export type DeleteNamespaceModulePayloadSelect = {
+  clientMutationId?: boolean;
+  namespaceModule?: {
+    select: NamespaceModuleSelect;
+  };
+  namespaceModuleEdge?: {
+    select: NamespaceModuleEdgeSelect;
+  };
+};
 export interface CreateComputeLogModulePayload {
   clientMutationId?: string | null;
   /** The `ComputeLogModule` that was created by this mutation. */
@@ -12335,96 +12393,6 @@ export type DeleteTransferLogModulePayloadSelect = {
     select: TransferLogModuleEdgeSelect;
   };
 };
-export interface CreateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was created by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type CreateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface UpdateDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was updated by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type UpdateDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface DeleteDbUsageModulePayload {
-  clientMutationId?: string | null;
-  /** The `DbUsageModule` that was deleted by this mutation. */
-  dbUsageModule?: DbUsageModule | null;
-  dbUsageModuleEdge?: DbUsageModuleEdge | null;
-}
-export type DeleteDbUsageModulePayloadSelect = {
-  clientMutationId?: boolean;
-  dbUsageModule?: {
-    select: DbUsageModuleSelect;
-  };
-  dbUsageModuleEdge?: {
-    select: DbUsageModuleEdgeSelect;
-  };
-};
-export interface CreateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was created by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type CreateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface UpdateNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was updated by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type UpdateNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
-export interface DeleteNotificationsModulePayload {
-  clientMutationId?: string | null;
-  /** The `NotificationsModule` that was deleted by this mutation. */
-  notificationsModule?: NotificationsModule | null;
-  notificationsModuleEdge?: NotificationsModuleEdge | null;
-}
-export type DeleteNotificationsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  notificationsModule?: {
-    select: NotificationsModuleSelect;
-  };
-  notificationsModuleEdge?: {
-    select: NotificationsModuleEdgeSelect;
-  };
-};
 export interface CreatePlansModulePayload {
   clientMutationId?: string | null;
   /** The `PlansModule` that was created by this mutation. */
@@ -12470,94 +12438,94 @@ export type DeletePlansModulePayloadSelect = {
     select: PlansModuleEdgeSelect;
   };
 };
-export interface CreateHierarchyModulePayload {
+export interface CreateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was created by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was created by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type CreateHierarchyModulePayloadSelect = {
+export type CreateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface UpdateHierarchyModulePayload {
+export interface UpdateDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was updated by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was updated by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type UpdateHierarchyModulePayloadSelect = {
+export type UpdateDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface DeleteHierarchyModulePayload {
+export interface DeleteDbUsageModulePayload {
   clientMutationId?: string | null;
-  /** The `HierarchyModule` that was deleted by this mutation. */
-  hierarchyModule?: HierarchyModule | null;
-  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+  /** The `DbUsageModule` that was deleted by this mutation. */
+  dbUsageModule?: DbUsageModule | null;
+  dbUsageModuleEdge?: DbUsageModuleEdge | null;
 }
-export type DeleteHierarchyModulePayloadSelect = {
+export type DeleteDbUsageModulePayloadSelect = {
   clientMutationId?: boolean;
-  hierarchyModule?: {
-    select: HierarchyModuleSelect;
+  dbUsageModule?: {
+    select: DbUsageModuleSelect;
   };
-  hierarchyModuleEdge?: {
-    select: HierarchyModuleEdgeSelect;
+  dbUsageModuleEdge?: {
+    select: DbUsageModuleEdgeSelect;
   };
 };
-export interface CreateBillingModulePayload {
+export interface CreateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was created by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was created by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type CreateBillingModulePayloadSelect = {
+export type CreateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface UpdateBillingModulePayload {
+export interface UpdateNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was updated by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was updated by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type UpdateBillingModulePayloadSelect = {
+export type UpdateNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
-export interface DeleteBillingModulePayload {
+export interface DeleteNotificationsModulePayload {
   clientMutationId?: string | null;
-  /** The `BillingModule` that was deleted by this mutation. */
-  billingModule?: BillingModule | null;
-  billingModuleEdge?: BillingModuleEdge | null;
+  /** The `NotificationsModule` that was deleted by this mutation. */
+  notificationsModule?: NotificationsModule | null;
+  notificationsModuleEdge?: NotificationsModuleEdge | null;
 }
-export type DeleteBillingModulePayloadSelect = {
+export type DeleteNotificationsModulePayloadSelect = {
   clientMutationId?: boolean;
-  billingModule?: {
-    select: BillingModuleSelect;
+  notificationsModule?: {
+    select: NotificationsModuleSelect;
   };
-  billingModuleEdge?: {
-    select: BillingModuleEdgeSelect;
+  notificationsModuleEdge?: {
+    select: NotificationsModuleEdgeSelect;
   };
 };
 export interface CreateBillingProviderModulePayload {
@@ -12605,6 +12573,96 @@ export type DeleteBillingProviderModulePayloadSelect = {
     select: BillingProviderModuleEdgeSelect;
   };
 };
+export interface CreateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was created by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type CreateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface UpdateFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was updated by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type UpdateFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface DeleteFunctionModulePayload {
+  clientMutationId?: string | null;
+  /** The `FunctionModule` that was deleted by this mutation. */
+  functionModule?: FunctionModule | null;
+  functionModuleEdge?: FunctionModuleEdge | null;
+}
+export type DeleteFunctionModulePayloadSelect = {
+  clientMutationId?: boolean;
+  functionModule?: {
+    select: FunctionModuleSelect;
+  };
+  functionModuleEdge?: {
+    select: FunctionModuleEdgeSelect;
+  };
+};
+export interface CreateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was created by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type CreateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface UpdateHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was updated by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type UpdateHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
+export interface DeleteHierarchyModulePayload {
+  clientMutationId?: string | null;
+  /** The `HierarchyModule` that was deleted by this mutation. */
+  hierarchyModule?: HierarchyModule | null;
+  hierarchyModuleEdge?: HierarchyModuleEdge | null;
+}
+export type DeleteHierarchyModulePayloadSelect = {
+  clientMutationId?: boolean;
+  hierarchyModule?: {
+    select: HierarchyModuleSelect;
+  };
+  hierarchyModuleEdge?: {
+    select: HierarchyModuleEdgeSelect;
+  };
+};
 export interface CreateProfilesModulePayload {
   clientMutationId?: string | null;
   /** The `ProfilesModule` that was created by this mutation. */
@@ -12695,6 +12753,51 @@ export type DeletePermissionsModulePayloadSelect = {
     select: PermissionsModuleEdgeSelect;
   };
 };
+export interface CreateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was created by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type CreateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface UpdateBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was updated by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type UpdateBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
+export interface DeleteBillingModulePayload {
+  clientMutationId?: string | null;
+  /** The `BillingModule` that was deleted by this mutation. */
+  billingModule?: BillingModule | null;
+  billingModuleEdge?: BillingModuleEdge | null;
+}
+export type DeleteBillingModulePayloadSelect = {
+  clientMutationId?: boolean;
+  billingModule?: {
+    select: BillingModuleSelect;
+  };
+  billingModuleEdge?: {
+    select: BillingModuleEdgeSelect;
+  };
+};
 export interface CreateRelationProvisionPayload {
   clientMutationId?: string | null;
   /** The `RelationProvision` that was created by this mutation. */
@@ -12731,58 +12834,13 @@ export interface DeleteRelationProvisionPayload {
   relationProvision?: RelationProvision | null;
   relationProvisionEdge?: RelationProvisionEdge | null;
 }
-export type DeleteRelationProvisionPayloadSelect = {
-  clientMutationId?: boolean;
-  relationProvision?: {
-    select: RelationProvisionSelect;
-  };
-  relationProvisionEdge?: {
-    select: RelationProvisionEdgeSelect;
-  };
-};
-export interface CreateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was created by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type CreateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface UpdateFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was updated by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type UpdateFunctionModulePayloadSelect = {
-  clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
-  };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
-  };
-};
-export interface DeleteFunctionModulePayload {
-  clientMutationId?: string | null;
-  /** The `FunctionModule` that was deleted by this mutation. */
-  functionModule?: FunctionModule | null;
-  functionModuleEdge?: FunctionModuleEdge | null;
-}
-export type DeleteFunctionModulePayloadSelect = {
+export type DeleteRelationProvisionPayloadSelect = {
   clientMutationId?: boolean;
-  functionModule?: {
-    select: FunctionModuleSelect;
+  relationProvision?: {
+    select: RelationProvisionSelect;
   };
-  functionModuleEdge?: {
-    select: FunctionModuleEdgeSelect;
+  relationProvisionEdge?: {
+    select: RelationProvisionEdgeSelect;
   };
 };
 export interface CreateUserAuthModulePayload {
@@ -13010,51 +13068,6 @@ export type DeleteStorageModulePayloadSelect = {
     select: StorageModuleEdgeSelect;
   };
 };
-export interface CreateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was created by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type CreateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface UpdateEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was updated by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type UpdateEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
-export interface DeleteEventsModulePayload {
-  clientMutationId?: string | null;
-  /** The `EventsModule` that was deleted by this mutation. */
-  eventsModule?: EventsModule | null;
-  eventsModuleEdge?: EventsModuleEdge | null;
-}
-export type DeleteEventsModulePayloadSelect = {
-  clientMutationId?: boolean;
-  eventsModule?: {
-    select: EventsModuleSelect;
-  };
-  eventsModuleEdge?: {
-    select: EventsModuleEdgeSelect;
-  };
-};
 export interface CreateEntityTypeProvisionPayload {
   clientMutationId?: string | null;
   /** The `EntityTypeProvision` that was created by this mutation. */
@@ -13100,6 +13113,51 @@ export type DeleteEntityTypeProvisionPayloadSelect = {
     select: EntityTypeProvisionEdgeSelect;
   };
 };
+export interface CreateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was created by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type CreateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface UpdateEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was updated by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type UpdateEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
+export interface DeleteEventsModulePayload {
+  clientMutationId?: string | null;
+  /** The `EventsModule` that was deleted by this mutation. */
+  eventsModule?: EventsModule | null;
+  eventsModuleEdge?: EventsModuleEdge | null;
+}
+export type DeleteEventsModulePayloadSelect = {
+  clientMutationId?: boolean;
+  eventsModule?: {
+    select: EventsModuleSelect;
+  };
+  eventsModuleEdge?: {
+    select: EventsModuleEdgeSelect;
+  };
+};
 export interface ProvisionTableRecord {
   outTableId?: string | null;
   outFields?: string[] | null;
@@ -13408,18 +13466,6 @@ export type CryptoAuthModuleEdgeSelect = {
     select: CryptoAuthModuleSelect;
   };
 };
-/** A `RateLimitMetersModule` edge in the connection. */
-export interface RateLimitMetersModuleEdge {
-  cursor?: string | null;
-  /** The `RateLimitMetersModule` at the end of the edge. */
-  node?: RateLimitMetersModule | null;
-}
-export type RateLimitMetersModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: RateLimitMetersModuleSelect;
-  };
-};
 /** A `SessionsModule` edge in the connection. */
 export interface SessionsModuleEdge {
   cursor?: string | null;
@@ -13480,6 +13526,18 @@ export type SecureTableProvisionEdgeSelect = {
     select: SecureTableProvisionSelect;
   };
 };
+/** A `RateLimitMetersModule` edge in the connection. */
+export interface RateLimitMetersModuleEdge {
+  cursor?: string | null;
+  /** The `RateLimitMetersModule` at the end of the edge. */
+  node?: RateLimitMetersModule | null;
+}
+export type RateLimitMetersModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: RateLimitMetersModuleSelect;
+  };
+};
 /** A `InvitesModule` edge in the connection. */
 export interface InvitesModuleEdge {
   cursor?: string | null;
@@ -13504,18 +13562,6 @@ export type DatabaseProvisionModuleEdgeSelect = {
     select: DatabaseProvisionModuleSelect;
   };
 };
-/** A `NamespaceModule` edge in the connection. */
-export interface NamespaceModuleEdge {
-  cursor?: string | null;
-  /** The `NamespaceModule` at the end of the edge. */
-  node?: NamespaceModule | null;
-}
-export type NamespaceModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: NamespaceModuleSelect;
-  };
-};
 /** A `RealtimeModule` edge in the connection. */
 export interface RealtimeModuleEdge {
   cursor?: string | null;
@@ -13540,6 +13586,18 @@ export type WebauthnAuthModuleEdgeSelect = {
     select: WebauthnAuthModuleSelect;
   };
 };
+/** A `NamespaceModule` edge in the connection. */
+export interface NamespaceModuleEdge {
+  cursor?: string | null;
+  /** The `NamespaceModule` at the end of the edge. */
+  node?: NamespaceModule | null;
+}
+export type NamespaceModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: NamespaceModuleSelect;
+  };
+};
 /** A `ComputeLogModule` edge in the connection. */
 export interface ComputeLogModuleEdge {
   cursor?: string | null;
@@ -13588,6 +13646,18 @@ export type TransferLogModuleEdgeSelect = {
     select: TransferLogModuleSelect;
   };
 };
+/** A `PlansModule` edge in the connection. */
+export interface PlansModuleEdge {
+  cursor?: string | null;
+  /** The `PlansModule` at the end of the edge. */
+  node?: PlansModule | null;
+}
+export type PlansModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: PlansModuleSelect;
+  };
+};
 /** A `DbUsageModule` edge in the connection. */
 export interface DbUsageModuleEdge {
   cursor?: string | null;
@@ -13612,52 +13682,40 @@ export type NotificationsModuleEdgeSelect = {
     select: NotificationsModuleSelect;
   };
 };
-/** A `PlansModule` edge in the connection. */
-export interface PlansModuleEdge {
-  cursor?: string | null;
-  /** The `PlansModule` at the end of the edge. */
-  node?: PlansModule | null;
-}
-export type PlansModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: PlansModuleSelect;
-  };
-};
-/** A `HierarchyModule` edge in the connection. */
-export interface HierarchyModuleEdge {
+/** A `BillingProviderModule` edge in the connection. */
+export interface BillingProviderModuleEdge {
   cursor?: string | null;
-  /** The `HierarchyModule` at the end of the edge. */
-  node?: HierarchyModule | null;
+  /** The `BillingProviderModule` at the end of the edge. */
+  node?: BillingProviderModule | null;
 }
-export type HierarchyModuleEdgeSelect = {
+export type BillingProviderModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: HierarchyModuleSelect;
+    select: BillingProviderModuleSelect;
   };
 };
-/** A `BillingModule` edge in the connection. */
-export interface BillingModuleEdge {
+/** A `FunctionModule` edge in the connection. */
+export interface FunctionModuleEdge {
   cursor?: string | null;
-  /** The `BillingModule` at the end of the edge. */
-  node?: BillingModule | null;
+  /** The `FunctionModule` at the end of the edge. */
+  node?: FunctionModule | null;
 }
-export type BillingModuleEdgeSelect = {
+export type FunctionModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingModuleSelect;
+    select: FunctionModuleSelect;
   };
 };
-/** A `BillingProviderModule` edge in the connection. */
-export interface BillingProviderModuleEdge {
+/** A `HierarchyModule` edge in the connection. */
+export interface HierarchyModuleEdge {
   cursor?: string | null;
-  /** The `BillingProviderModule` at the end of the edge. */
-  node?: BillingProviderModule | null;
+  /** The `HierarchyModule` at the end of the edge. */
+  node?: HierarchyModule | null;
 }
-export type BillingProviderModuleEdgeSelect = {
+export type HierarchyModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: BillingProviderModuleSelect;
+    select: HierarchyModuleSelect;
   };
 };
 /** A `ProfilesModule` edge in the connection. */
@@ -13684,28 +13742,28 @@ export type PermissionsModuleEdgeSelect = {
     select: PermissionsModuleSelect;
   };
 };
-/** A `RelationProvision` edge in the connection. */
-export interface RelationProvisionEdge {
+/** A `BillingModule` edge in the connection. */
+export interface BillingModuleEdge {
   cursor?: string | null;
-  /** The `RelationProvision` at the end of the edge. */
-  node?: RelationProvision | null;
+  /** The `BillingModule` at the end of the edge. */
+  node?: BillingModule | null;
 }
-export type RelationProvisionEdgeSelect = {
+export type BillingModuleEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: RelationProvisionSelect;
+    select: BillingModuleSelect;
   };
 };
-/** A `FunctionModule` edge in the connection. */
-export interface FunctionModuleEdge {
+/** A `RelationProvision` edge in the connection. */
+export interface RelationProvisionEdge {
   cursor?: string | null;
-  /** The `FunctionModule` at the end of the edge. */
-  node?: FunctionModule | null;
+  /** The `RelationProvision` at the end of the edge. */
+  node?: RelationProvision | null;
 }
-export type FunctionModuleEdgeSelect = {
+export type RelationProvisionEdgeSelect = {
   cursor?: boolean;
   node?: {
-    select: FunctionModuleSelect;
+    select: RelationProvisionSelect;
   };
 };
 /** A `UserAuthModule` edge in the connection. */
@@ -13768,18 +13826,6 @@ export type StorageModuleEdgeSelect = {
     select: StorageModuleSelect;
   };
 };
-/** A `EventsModule` edge in the connection. */
-export interface EventsModuleEdge {
-  cursor?: string | null;
-  /** The `EventsModule` at the end of the edge. */
-  node?: EventsModule | null;
-}
-export type EventsModuleEdgeSelect = {
-  cursor?: boolean;
-  node?: {
-    select: EventsModuleSelect;
-  };
-};
 /** A `EntityTypeProvision` edge in the connection. */
 export interface EntityTypeProvisionEdge {
   cursor?: string | null;
@@ -13792,3 +13838,15 @@ export type EntityTypeProvisionEdgeSelect = {
     select: EntityTypeProvisionSelect;
   };
 };
+/** A `EventsModule` edge in the connection. */
+export interface EventsModuleEdge {
+  cursor?: string | null;
+  /** The `EventsModule` at the end of the edge. */
+  node?: EventsModule | null;
+}
+export type EventsModuleEdgeSelect = {
+  cursor?: boolean;
+  node?: {
+    select: EventsModuleSelect;
+  };
+};
diff --git a/sdk/constructive-sdk/src/modules/orm/models/index.ts b/sdk/constructive-sdk/src/modules/orm/models/index.ts
index 7afef56c9..04d6464e6 100644
--- a/sdk/constructive-sdk/src/modules/orm/models/index.ts
+++ b/sdk/constructive-sdk/src/modules/orm/models/index.ts
@@ -27,35 +27,35 @@ export { BlueprintModel } from './blueprint';
 export { BlueprintTemplateModel } from './blueprintTemplate';
 export { BlueprintConstructionModel } from './blueprintConstruction';
 export { CryptoAuthModuleModel } from './cryptoAuthModule';
-export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { SessionsModuleModel } from './sessionsModule';
 export { ConfigSecretsModuleModel } from './configSecretsModule';
 export { MerkleStoreModuleModel } from './merkleStoreModule';
 export { GraphModuleModel } from './graphModule';
 export { SecureTableProvisionModel } from './secureTableProvision';
+export { RateLimitMetersModuleModel } from './rateLimitMetersModule';
 export { InvitesModuleModel } from './invitesModule';
 export { DatabaseProvisionModuleModel } from './databaseProvisionModule';
-export { NamespaceModuleModel } from './namespaceModule';
 export { RealtimeModuleModel } from './realtimeModule';
 export { WebauthnAuthModuleModel } from './webauthnAuthModule';
+export { NamespaceModuleModel } from './namespaceModule';
 export { ComputeLogModuleModel } from './computeLogModule';
 export { InferenceLogModuleModel } from './inferenceLogModule';
 export { StorageLogModuleModel } from './storageLogModule';
 export { TransferLogModuleModel } from './transferLogModule';
+export { PlansModuleModel } from './plansModule';
 export { DbUsageModuleModel } from './dbUsageModule';
 export { NotificationsModuleModel } from './notificationsModule';
-export { PlansModuleModel } from './plansModule';
-export { HierarchyModuleModel } from './hierarchyModule';
-export { BillingModuleModel } from './billingModule';
 export { BillingProviderModuleModel } from './billingProviderModule';
+export { FunctionModuleModel } from './functionModule';
+export { HierarchyModuleModel } from './hierarchyModule';
 export { ProfilesModuleModel } from './profilesModule';
 export { PermissionsModuleModel } from './permissionsModule';
+export { BillingModuleModel } from './billingModule';
 export { RelationProvisionModel } from './relationProvision';
-export { FunctionModuleModel } from './functionModule';
 export { UserAuthModuleModel } from './userAuthModule';
 export { AgentModuleModel } from './agentModule';
 export { LimitsModuleModel } from './limitsModule';
 export { MembershipsModuleModel } from './membershipsModule';
 export { StorageModuleModel } from './storageModule';
-export { EventsModuleModel } from './eventsModule';
 export { EntityTypeProvisionModel } from './entityTypeProvision';
+export { EventsModuleModel } from './eventsModule';