feat(app): add automated tasks part 1

Author: Marfuen

apps/app/instrumentation-client.ts

@@ -0,0 +1,10 @@
+import { initBotId } from 'botid/client/core';
+
+initBotId({
+  protect: [
+    {
+      path: '/api/tasks-automations/chat',
+      method: 'POST',
+    },
+  ],
+});

apps/app/markdown.d.ts

@@ -0,0 +1,4 @@
+declare module '*.md' {
+  const content: string
+  export default content
+}

apps/app/next.config.ts

@@ -11,7 +11,7 @@ const config: NextConfig = {
       ? `${process.env.STATIC_ASSETS_URL}/app`
       : '',
   reactStrictMode: true,
-  transpilePackages: ['@trycompai/db'],
+  transpilePackages: ['@trycompai/db', '@prisma/client'],
   images: {
     remotePatterns: [
       {

apps/app/package.json

@@ -8,6 +8,7 @@
     "@ai-sdk/provider": "^2.0.0",
     "@ai-sdk/react": "^2.0.0",
     "@ai-sdk/rsc": "^1.0.0",
+    "@aws-sdk/client-lambda": "^3.891.0",
     "@aws-sdk/client-s3": "^3.859.0",
     "@aws-sdk/client-sts": "^3.808.0",
     "@aws-sdk/s3-request-presigner": "^3.859.0",
@@ -49,13 +50,16 @@
     "@trycompai/db": "^1.3.4",
     "@trycompai/email": "workspace:*",
     "@types/canvas-confetti": "^1.9.0",
+    "@types/react-syntax-highlighter": "^15.5.13",
     "@types/three": "^0.180.0",
     "@uploadthing/react": "^7.3.0",
     "@upstash/ratelimit": "^2.0.5",
+    "@vercel/sandbox": "^0.0.21",
     "@vercel/sdk": "^1.7.1",
     "ai": "^5.0.0",
     "axios": "^1.9.0",
     "better-auth": "^1.2.8",
+    "botid": "^1.5.5",
     "canvas-confetti": "^1.9.3",
     "d3": "^7.9.0",
     "dub": "^0.66.1",
@@ -79,9 +83,12 @@
     "react-hotkeys-hook": "^5.1.0",
     "react-intersection-observer": "^9.16.0",
     "react-markdown": "10.1.0",
+    "react-spinners": "^0.17.0",
+    "react-syntax-highlighter": "^15.6.6",
     "react-textarea-autosize": "^8.5.9",
     "react-use-draggable-scroll": "^0.4.7",
     "react-wrap-balancer": "^1.1.1",
+    "rehype-raw": "^7.0.0",
     "remark-gfm": "^4.0.1",
     "remark-parse": "^11.0.0",
     "resend": "^4.4.1",
@@ -91,6 +98,7 @@
     "ts-pattern": "^5.7.0",
     "use-debounce": "^10.0.4",
     "use-long-press": "^3.3.0",
+    "use-stick-to-bottom": "^1.1.1",
     "xml2js": "^0.6.2",
     "zaraz-ts": "^1.2.0",
     "zod": "^3.25.76",

apps/app/src/ai/constants.ts

@@ -0,0 +1,26 @@
+import { type GatewayModelId } from '@ai-sdk/gateway';
+
+export enum Models {
+  AmazonNovaPro = 'amazon/nova-pro',
+  AnthropicClaude4Sonnet = 'anthropic/claude-4-sonnet',
+  GoogleGeminiFlash = 'google/gemini-2.5-flash',
+  MoonshotKimiK2 = 'moonshotai/kimi-k2',
+  OpenAIGPT5 = 'gpt-5',
+  XaiGrok3Fast = 'xai/grok-3-fast',
+}
+
+export const DEFAULT_MODEL = Models.OpenAIGPT5;
+
+export const SUPPORTED_MODELS: GatewayModelId[] = [
+  Models.AmazonNovaPro,
+  Models.AnthropicClaude4Sonnet,
+  Models.GoogleGeminiFlash,
+  Models.MoonshotKimiK2,
+  Models.OpenAIGPT5,
+  Models.XaiGrok3Fast,
+];
+
+export const TEST_PROMPTS = [
+  'I need an automation that calls github to check if trycompai/comp has dependabot enabled.',
+  'Create an automation to list all open issues in a GitHub repository.',
+];

apps/app/src/ai/gateway.ts

@@ -0,0 +1,61 @@
+import { createGatewayProvider } from '@ai-sdk/gateway'
+import { Models } from './constants'
+import type { JSONValue } from 'ai'
+import type { OpenAIResponsesProviderOptions } from '@ai-sdk/openai'
+import type { LanguageModelV2 } from '@ai-sdk/provider'
+
+export async function getAvailableModels() {
+  const gateway = gatewayInstance()
+  const response = await gateway.getAvailableModels()
+  return response.models
+    .map((model) => ({ id: model.id, name: model.name }))
+    .concat([{ id: Models.OpenAIGPT5, name: 'GPT-5' }])
+}
+
+export interface ModelOptions {
+  model: LanguageModelV2
+  providerOptions?: Record<string, Record<string, JSONValue>>
+  headers?: Record<string, string>
+}
+
+export function getModelOptions(
+  modelId: string,
+  options?: { reasoningEffort?: 'minimal' | 'low' | 'medium' }
+): ModelOptions {
+  const gateway = gatewayInstance()
+  if (modelId === Models.OpenAIGPT5) {
+    return {
+      model: gateway(modelId),
+      providerOptions: {
+        openai: {
+          include: ['reasoning.encrypted_content'],
+          reasoningEffort: options?.reasoningEffort ?? 'low',
+          reasoningSummary: 'auto',
+          serviceTier: 'priority',
+        } satisfies OpenAIResponsesProviderOptions,
+      },
+    }
+  }
+
+  if (modelId === Models.AnthropicClaude4Sonnet) {
+    return {
+      model: gateway(modelId),
+      headers: { 'anthropic-beta': 'fine-grained-tool-streaming-2025-05-14' },
+      providerOptions: {
+        anthropic: {
+          cacheControl: { type: 'ephemeral' },
+        },
+      },
+    }
+  }
+
+  return {
+    model: gateway(modelId),
+  }
+}
+
+function gatewayInstance() {
+  return createGatewayProvider({
+    baseURL: process.env.AI_GATEWAY_BASE_URL,
+  })
+}

apps/app/src/ai/messages/data-parts.ts

@@ -0,0 +1,44 @@
+import z from 'zod/v3';
+
+export const errorSchema = z.object({
+  message: z.string(),
+});
+
+export const dataPartSchema = z.object({
+  'create-sandbox': z.object({
+    sandboxId: z.string().optional(),
+    status: z.enum(['loading', 'done', 'error']),
+    error: errorSchema.optional(),
+  }),
+  'generating-files': z.object({
+    paths: z.array(z.string()),
+    status: z.enum(['generating', 'uploading', 'uploaded', 'done', 'error']),
+    error: errorSchema.optional(),
+  }),
+  'run-command': z.object({
+    sandboxId: z.string(),
+    commandId: z.string().optional(),
+    command: z.string(),
+    args: z.array(z.string()),
+    status: z.enum(['executing', 'running', 'waiting', 'done', 'error']),
+    exitCode: z.number().optional(),
+    error: errorSchema.optional(),
+  }),
+  'get-sandbox-url': z.object({
+    url: z.string().optional(),
+    status: z.enum(['loading', 'done']),
+  }),
+  'report-errors': z.object({
+    summary: z.string(),
+    paths: z.array(z.string()).optional(),
+  }),
+  'store-to-s3': z.object({
+    status: z.enum(['uploading', 'done', 'error']),
+    bucket: z.string().optional(),
+    key: z.string().optional(),
+    region: z.string().optional(),
+    error: errorSchema.optional(),
+  }),
+});
+
+export type DataPart = z.infer<typeof dataPartSchema>;

apps/app/src/ai/messages/metadata.ts

@@ -0,0 +1,7 @@
+import z from 'zod/v3'
+
+export const metadataSchema = z.object({
+  model: z.string(),
+})
+
+export type Metadata = z.infer<typeof metadataSchema>

apps/app/src/ai/secrets.ts

@@ -0,0 +1,98 @@
+// Central registry for standard secrets used by automations and tools.
+// AI-friendly design: a flat list with simple fields and helper lookups.
+
+export type SecretProvider = 'github';
+
+export interface SecretEntry {
+  id: string; // stable identifier, e.g. 'github.token'
+  provider: SecretProvider;
+  name: string; // short name within provider, e.g. 'token'
+  envVar: string; // environment variable name, e.g. 'GITHUB_TOKEN'
+  description: string;
+  required: boolean;
+  docsUrl?: string;
+  aliases?: readonly string[]; // additional phrases an AI/user might use
+}
+
+export const SECRETS: readonly SecretEntry[] = [
+  {
+    id: 'github.token',
+    provider: 'github',
+    name: 'token',
+    envVar: 'GITHUB_TOKEN',
+    description:
+      'GitHub token (PAT or App installation token) with read access to repository contents and metadata.',
+    required: true,
+    docsUrl:
+      'https://docs.github.com/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token',
+    aliases: ['github token', 'gh token', 'github_pat', 'github personal access token'],
+  },
+] as const;
+
+// Lightweight indexes for fast lookup
+const SECRET_BY_ID: Readonly<Record<string, SecretEntry>> = Object.freeze(
+  Object.fromEntries(SECRETS.map((s) => [s.id, s])),
+);
+
+const SECRET_BY_ENV: Readonly<Record<string, SecretEntry>> = Object.freeze(
+  Object.fromEntries(SECRETS.map((s) => [s.envVar.toUpperCase(), s])),
+);
+
+export function listSecrets(): readonly SecretEntry[] {
+  return SECRETS;
+}
+
+export function listProviderSecrets(provider: SecretProvider): readonly SecretEntry[] {
+  return SECRETS.filter((s) => s.provider === provider);
+}
+
+export function getSecretById(id: string): SecretEntry | undefined {
+  return SECRET_BY_ID[id];
+}
+
+export function getSecretByEnvVar(envVar: string): SecretEntry | undefined {
+  return SECRET_BY_ENV[envVar.toUpperCase()];
+}
+
+export function getEnvVarNameById(id: string): string | undefined {
+  return getSecretById(id)?.envVar;
+}
+
+// Flexible resolver that accepts: id, env var, provider.name, or an alias phrase
+export function resolveSecretIdentifier(identifier: string): SecretEntry | undefined {
+  const raw = identifier.trim();
+  if (!raw) return undefined;
+
+  // Exact id
+  const byId = getSecretById(raw);
+  if (byId) return byId;
+
+  // Exact env var
+  const byEnv = getSecretByEnvVar(raw);
+  if (byEnv) return byEnv;
+
+  const normalized = raw.toLowerCase().replace(/\s+/g, ' ').trim();
+
+  // provider.name form
+  const dotIdx = normalized.indexOf('.');
+  if (dotIdx > 0) {
+    const provider = normalized.slice(0, dotIdx);
+    const name = normalized.slice(dotIdx + 1);
+    const match = SECRETS.find(
+      (s) => s.provider === (provider as SecretProvider) && s.name.toLowerCase() === name,
+    );
+    if (match) return match;
+  }
+
+  // Alias match
+  const byAlias = SECRETS.find((s) =>
+    (s.aliases ?? []).some((a) => a.toLowerCase() === normalized),
+  );
+  if (byAlias) return byAlias;
+
+  // Provider-keyword fallback: e.g., 'github token'
+  const byTokens = SECRETS.find(
+    (s) => normalized.includes(s.provider) && normalized.includes(s.name.toLowerCase()),
+  );
+  return byTokens;
+}

apps/app/src/ai/tools/create-sandbox.md

@@ -0,0 +1,55 @@
+Use this tool to create a new Vercel Sandbox — an ephemeral, isolated Linux container that serves as your development environment for the current session. This sandbox provides a secure workspace where you can upload files, install dependencies, run commands, start development servers, and preview web apps. Each sandbox is uniquely identified and must be referenced for all subsequent operations (e.g., file generation, command execution, or URL access).
+
+## When to Use This Tool
+
+Use this tool **once per session** when:
+
+1. You begin working on a new user request that requires code execution or file creation
+2. No sandbox currently exists for the session
+3. The user asks to start a new project, scaffold an application, or test code in a live environment
+4. The user requests a fresh or reset environment
+
+## Sandbox Capabilities
+
+After creation, the sandbox allows you to:
+
+- Upload and manage files via `Generate Files`
+- Execute shell commands with `Run Command` and `Wait Command`
+- Access running servers through public URLs using `Get Sandbox URL`
+
+Each sandbox mimics a real-world development environment and supports rapid iteration and testing without polluting the local system. The base system is Amazon Linux 2023 with the following additional packages:
+
+```
+bind-utils bzip2 findutils git gzip iputils libicu libjpeg libpng ncurses-libs openssl openssl-libs pnpm procps tar unzip which whois zstd
+```
+
+You can install additional packages using the `dnf` package manager. You can NEVER use port 8080 as it is reserved for internal applications. When requested, you need to use a different port.
+
+## Best Practices
+
+- Create the sandbox at the beginning of the session or when the user initiates a coding task
+- Track and reuse the sandbox ID throughout the session
+- Do not create a second sandbox unless explicitly instructed
+- If the user requests an environment reset, you may create a new sandbox **after confirming their intent**
+
+## Examples of When to Use This Tool
+
+<example>
+User: Can we start fresh? I want to rebuild the project from scratch.
+Assistant: Got it — I’ll create a new sandbox so we can start clean.
+*Calls Create Sandbox*
+</example>
+
+## When NOT to Use This Tool
+
+Skip using this tool when:
+
+1. A sandbox has already been created for the current session
+2. You only need to upload files (use Generate Files)
+3. You want to execute or wait for a command (use Run Command / Wait Command)
+4. You want to preview the application (use Get Sandbox URL)
+5. The user hasn’t asked to reset the environment
+
+## Summary
+
+Use Create Sandbox to initialize a secure, temporary development environment — but **only once per session**. Treat the sandbox as the core workspace for all follow-up actions unless the user explicitly asks to discard and start anew.