diff --git a/.gitignore b/.gitignore
index a99954efe..d086673db 100644
--- a/.gitignore
+++ b/.gitignore
@@ -18,3 +18,5 @@ surfsense_web/test-results/
 surfsense_web/blob-report/
 
 content_research/
+automation-design-plan.md
+automation-frontend-builder-plan.md
diff --git a/README.es.md b/README.es.md
index dea86a793..ea7623617 100644
--- a/README.es.md
+++ b/README.es.md
@@ -41,6 +41,7 @@ NotebookLM es una de las mejores y más útiles plataformas de IA que existen, p
 - **Sin Dependencia de Proveedores** - Configura cualquier modelo LLM, de imagen, TTS y STT.
 - **25+ Fuentes de Datos Externas** - Agrega tus fuentes desde Google Drive, OneDrive, Dropbox, Notion y muchos otros servicios externos.
 - **Soporte Multijugador en Tiempo Real** - Trabaja fácilmente con los miembros de tu equipo en un notebook compartido.
+- **Automatizaciones y Agentes de IA** - Ejecuta agentes de IA según una programación o actívalos en el momento en que un documento llega a una carpeta, y luego escribe los resultados de vuelta en Notion, Slack, Linear y Drive. Crea automatizaciones sin código solo describiéndolas en el chat.
 - **Aplicación de Escritorio** - Obtén asistencia de IA en cualquier aplicación con Quick Assist, General Assist, Screenshot Assist y sincronización de carpetas locales.
 
 ...y más por venir.
@@ -76,48 +77,118 @@ https://github.com/user-attachments/assets/a0a16566-6967-4374-ac51-9b3e07fbecd7
 
 4. Una vez que todo esté indexado, pregunta lo que quieras (Casos de uso):
 
-   - Aplicación de Escritorio — General Assist
+   **Aplicación de Escritorio** (extras nativos, además de todo lo de abajo, no un conjunto aparte)
+
+   - General Assist: abre SurfSense al instante desde cualquier aplicación con un atajo global.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/general_assist.gif" alt="General Assist" /></p>
 
-   - Aplicación de Escritorio — Quick Assist
+   - Quick Assist: selecciona texto en cualquier lugar y pide a la IA que lo explique, reescriba o actúe sobre él.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/quick_assist.gif" alt="Quick Assist" /></p>
 
-   - Aplicación de Escritorio — Screenshot Assist
+   - Screenshot Assist: captura cualquier región de tu pantalla y pregunta a la IA sobre lo que contiene.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/screenshot_assist.gif" alt="Screenshot Assist" /></p>
 
-   - Aplicación de Escritorio — Watch Local Folder
+   - Watch Local Folder: sincroniza automáticamente una carpeta local con tu base de conocimiento. Ideal para bóvedas de Obsidian.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/folder_watch.gif" alt="Watch Local Folder" /></p>
 
-   - Generación de videos
+   **Estudio de Entregables**
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="Generación de Videos" /></p>
+   - AI Report Generator: genera informes de investigación con citas y expórtalos a PDF, DOCX, HTML, LaTeX, EPUB, ODT o texto plano.
 
-   - Búsqueda básica y citaciones
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="AI Report Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="Búsqueda y Citación" /></p>
+   - AI Podcast Generator: convierte cualquier documento o carpeta en un pódcast de IA con dos presentadores en menos de 20 segundos.
 
-   - QNA con mención de documentos
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="AI Podcast Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="QNA con Mención de Documentos" /></p>
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="QNA con Mención de Documentos" /></p>
+   - AI Presentation & Video Maker: crea presentaciones editables y videos narrados a partir de tus fuentes.
 
-   - Generación de informes y exportaciones (PDF, DOCX, HTML, LaTeX, EPUB, ODT, texto plano)
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="AI Presentation and Video Maker" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="Generación de Informes" /></p>
+   - AI Image Generator: genera imágenes de alta calidad directamente desde tus chats y documentos.
 
-   - Generación de podcasts
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="AI Image Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="Generación de Podcasts" /></p>
+   - AI Resume Builder: adapta tu currículum existente a cualquier descripción de empleo y supera el ATS.
+     Prueba indicaciones como estas:
 
-   - Generación de imágenes
+     - "Adapta mi currículum a esta descripción de empleo para superar el ATS y conseguir una entrevista."
+     - "Optimiza mi currículum para ATS haciendo coincidir las palabras clave de esta oferta."
+     - "Reescribe los puntos de mi currículum para resaltar las habilidades que pide este puesto."
+     - "Compara mi currículum con esta descripción de empleo y enumera las carencias a corregir."
+     - "Escribe una carta de presentación a juego con mi currículum y esta descripción de empleo."
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="Generación de Imágenes" /></p>
+   **Búsqueda y Chat**
 
-   - Y más próximamente.
+   - Chat With Your PDFs & Docs: haz preguntas sobre todos tus archivos y obtén respuestas con citas en línea.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Chat With Your PDFs and Docs" /></p>
+
+   - AI Search With Citations: búsqueda híbrida semántica y por palabras clave en toda tu base de conocimiento.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="AI Search With Citations" /></p>
+
+   - Collaborative AI Chat: trabaja en conversaciones de IA con tu equipo en tiempo real.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeChatGif.gif" alt="Collaborative AI Chat" /></p>
+
+   - Comments & Mentions: comenta y menciona a tus compañeros en cualquier mensaje de IA.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeCommentsFlow.gif" alt="Comments and Mentions" /></p>
+
+   **Conectores e Integraciones**
+
+   - Connect & Sync Your Tools: sincroniza Notion, Slack, Google Drive, Gmail, GitHub, Linear y más de 25 fuentes en un único corpus consultable.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ConnectorFlowGif.gif" alt="Connect and Sync Your Tools" /></p>
+
+   - Chat With Uploaded Files: sube PDFs, documentos de Office, imágenes y audio. Consultables al instante.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/DocUploadGif.gif" alt="Chat With Uploaded Files" /></p>
+
+   - Connector Write-Back: deja que el agente publique los resultados de vuelta en Notion, Slack, Linear y Drive.
+     Prueba indicaciones como estas:
+
+     - "Publica este resumen de investigación en mi espacio de Notion."
+     - "Envía estos elementos de acción de la reunión a nuestro canal de Slack."
+     - "Crea un ticket de Jira a partir de este informe de error."
+     - "Abre una incidencia en Linear a partir de esta solicitud de función."
+     - "Guarda este informe generado en Google Drive como un documento."
+
+   - Obsidian & Knowledge Base Sync: mantén tu bóveda de Obsidian y tu base de conocimiento personal sincronizadas.
+
+   **Automatizaciones**
+
+   - Scheduled AI Workflows: ejecuta un agente según una programación: resúmenes diarios, boletines semanales, informes recurrentes.
+     Prueba indicaciones como estas:
+
+     - "Envíame cada mañana un resumen diario de los nuevos documentos en mi base de conocimiento."
+     - "Genera un informe de estado semanal a partir de mi Slack y Gmail cada viernes."
+     - "Ejecuta un informe mensual de análisis de la competencia y guárdalo en mi espacio de trabajo."
+     - "Resume mi actividad de GitHub y Linear en una actualización diaria de standup."
+     - "Crea un informe de investigación semanal recurrente sobre los temas que sigo."
+
+   - Event-Triggered Automations: lanza un agente en el momento en que un documento llega a una carpeta y publica el resultado en tus herramientas.
+     Prueba indicaciones como estas:
+
+     - "Cuando llegue un PDF a mi carpeta de Investigación, genera un resumen de IA con citas."
+     - "Cuando se añadan nuevas notas de reunión, conviértelas en actas con elementos de acción."
+     - "Cuando se suba una factura, extrae el proveedor, el total y la fecha de vencimiento en una tabla."
+     - "Cuando entre un contrato en mi carpeta Legal, señala los términos clave y las fechas de renovación."
+     - "Cuando se añada un currículum a Candidatos, evalúalo frente a la descripción del empleo."
+
+   - Chat-Built Automations: describe una automatización en lenguaje sencillo y SurfSense la crea por ti.
+     Prueba indicaciones como estas:
+
+     - "Crea un agente de IA que me envíe cada mañana un resumen de las nuevas páginas de Notion."
+     - "Crea una automatización sin código que publique un resumen de investigación semanal en Slack."
+     - "Configura un tomador de notas con IA que convierta las nuevas notas de reunión en actas."
+     - "Crea un flujo que extraiga los elementos de acción de las notas de reunión y asigne responsables."
+     - "Automatiza un resumen diario por correo a partir de mi Gmail y Google Drive."
 
 
 ### Auto-Hospedado
@@ -199,6 +270,7 @@ Todas las funciones operan contra tu espacio de búsqueda elegido, por lo que tu
 | **Generación de Videos** | Resúmenes en video cinemáticos vía Veo 3 (solo Ultra) | Disponible (NotebookLM es mejor aquí, mejorando activamente) |
 | **Generación de Presentaciones** | Diapositivas más atractivas pero no editables | Crea presentaciones editables basadas en diapositivas |
 | **Generación de Podcasts** | Resúmenes de audio con hosts e idiomas personalizables | Disponible con múltiples proveedores TTS (NotebookLM es mejor aquí, mejorando activamente) |
+| **Automatizaciones y Agentes de IA** | No | Flujos de trabajo de IA programados, disparadores por eventos en documentos nuevos y automatizaciones sin código creadas por chat con escritura de vuelta a Notion, Slack, Linear y Jira |
 | **Aplicación de Escritorio** | No | Aplicación nativa con General Assist, Quick Assist, Screenshot Assist y sincronización de carpetas locales |
 | **Extensión de Navegador** | No | Extensión multi-navegador para guardar cualquier página web, incluyendo páginas protegidas por autenticación |
 
diff --git a/README.hi.md b/README.hi.md
index 43e24c3ee..10b246385 100644
--- a/README.hi.md
+++ b/README.hi.md
@@ -41,6 +41,7 @@ NotebookLM वहाँ उपलब्ध सबसे अच्छे और 
 - **कोई विक्रेता लॉक-इन नहीं** - किसी भी LLM, इमेज, TTS और STT मॉडल को कॉन्फ़िगर करें।
 - **25+ बाहरी डेटा स्रोत** - Google Drive, OneDrive, Dropbox, Notion और कई अन्य बाहरी सेवाओं से अपने स्रोत जोड़ें।
 - **रीयल-टाइम मल्टीप्लेयर सपोर्ट** - एक साझा notebook में अपनी टीम के सदस्यों के साथ आसानी से काम करें।
+- **AI ऑटोमेशन और एजेंट** - AI एजेंट को शेड्यूल पर चलाएं या जैसे ही कोई दस्तावेज़ किसी फ़ोल्डर में आए उसे ट्रिगर करें, फिर परिणाम वापस Notion, Slack, Linear और Drive में लिखें। चैट में बस वर्णन करके बिना-कोड ऑटोमेशन बनाएं।
 - **डेस्कटॉप ऐप** - Quick Assist, General Assist, Screenshot Assist और लोकल फ़ोल्डर सिंक के साथ किसी भी एप्लिकेशन में AI सहायता प्राप्त करें।
 
 ...और भी बहुत कुछ आने वाला है।
@@ -76,48 +77,118 @@ https://github.com/user-attachments/assets/a0a16566-6967-4374-ac51-9b3e07fbecd7
 
 4. सब कुछ इंडेक्स हो जाने के बाद, कुछ भी पूछें (उपयोग के मामले):
 
-   - डेस्कटॉप ऐप — General Assist
+   **डेस्कटॉप ऐप** (नीचे दी गई सभी सुविधाओं के अलावा नेटिव एक्स्ट्रा, कोई अलग सेट नहीं)
+
+   - General Assist: किसी भी ऐप्लिकेशन से ग्लोबल शॉर्टकट के ज़रिए SurfSense तुरंत खोलें।
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/general_assist.gif" alt="General Assist" /></p>
 
-   - डेस्कटॉप ऐप — Quick Assist
+   - Quick Assist: कहीं भी टेक्स्ट चुनें और AI से उसे समझाने, दोबारा लिखने या उस पर कार्रवाई करने को कहें।
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/quick_assist.gif" alt="Quick Assist" /></p>
 
-   - डेस्कटॉप ऐप — Screenshot Assist
+   - Screenshot Assist: अपनी स्क्रीन का कोई भी हिस्सा कैप्चर करें और AI से उसमें मौजूद चीज़ों के बारे में पूछें।
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/screenshot_assist.gif" alt="Screenshot Assist" /></p>
 
-   - डेस्कटॉप ऐप — Watch Local Folder
+   - Watch Local Folder: किसी लोकल फ़ोल्डर को अपने नॉलेज बेस के साथ अपने-आप सिंक करें। Obsidian vaults के लिए बढ़िया।
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/folder_watch.gif" alt="Watch Local Folder" /></p>
 
-   - वीडियो जनरेशन
+   **डिलीवरेबल स्टूडियो**
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="वीडियो जनरेशन" /></p>
+   - AI Report Generator: उद्धरण सहित रिसर्च रिपोर्ट बनाएं और PDF, DOCX, HTML, LaTeX, EPUB, ODT या सादे टेक्स्ट में एक्सपोर्ट करें।
 
-   - बेसिक सर्च और उद्धरण
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="AI Report Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="सर्च और उद्धरण" /></p>
+   - AI Podcast Generator: किसी भी दस्तावेज़ या फ़ोल्डर को 20 सेकंड से भी कम में दो-होस्ट वाले AI पॉडकास्ट में बदलें।
 
-   - दस्तावेज़ मेंशन QNA
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="AI Podcast Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="दस्तावेज़ मेंशन QNA" /></p>
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="दस्तावेज़ मेंशन QNA" /></p>
+   - AI Presentation & Video Maker: अपने स्रोतों से एडिट करने योग्य स्लाइड डेक और नैरेटेड वीडियो बनाएं।
 
-   - रिपोर्ट जनरेशन और एक्सपोर्ट (PDF, DOCX, HTML, LaTeX, EPUB, ODT, सादा टेक्स्ट)
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="AI Presentation and Video Maker" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="रिपोर्ट जनरेशन" /></p>
+   - AI Image Generator: अपनी चैट और दस्तावेज़ों से सीधे उच्च-गुणवत्ता वाली इमेज बनाएं।
 
-   - पॉडकास्ट जनरेशन
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="AI Image Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="पॉडकास्ट जनरेशन" /></p>
+   - AI Resume Builder: अपने मौजूदा रिज़्यूमे को किसी भी जॉब डिस्क्रिप्शन के अनुसार ढालें और ATS को पार करें।
+     इस तरह के प्रॉम्प्ट आज़माएं:
 
-   - इमेज जनरेशन
+     - "मेरे रिज़्यूमे को इस जॉब डिस्क्रिप्शन के अनुसार ढालें ताकि वह ATS पार करे और इंटरव्यू दिलाए।"
+     - "इस जॉब पोस्टिंग के कीवर्ड्स से मिलान करके मेरे रिज़्यूमे को ATS के लिए ऑप्टिमाइज़ करें।"
+     - "इस भूमिका के लिए ज़रूरी स्किल्स को उभारने के लिए मेरे रिज़्यूमे के बुलेट पॉइंट फिर से लिखें।"
+     - "मेरे रिज़्यूमे की तुलना इस जॉब डिस्क्रिप्शन से करें और सुधारने योग्य कमियों की सूची दें।"
+     - "मेरे रिज़्यूमे और इस जॉब डिस्क्रिप्शन से मेल खाता एक कवर लेटर लिखें।"
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="इमेज जनरेशन" /></p>
+   **सर्च और चैट**
 
-   - और भी बहुत कुछ जल्द आ रहा है।
+   - Chat With Your PDFs & Docs: अपनी सभी फ़ाइलों पर सवाल पूछें और इनलाइन उद्धरणों के साथ जवाब पाएं।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Chat With Your PDFs and Docs" /></p>
+
+   - AI Search With Citations: अपने पूरे नॉलेज बेस में हाइब्रिड सेमांटिक और कीवर्ड सर्च।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="AI Search With Citations" /></p>
+
+   - Collaborative AI Chat: अपनी टीम के साथ रियल टाइम में AI बातचीत पर काम करें।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeChatGif.gif" alt="Collaborative AI Chat" /></p>
+
+   - Comments & Mentions: किसी भी AI संदेश पर टिप्पणी करें और टीम के साथियों को टैग करें।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeCommentsFlow.gif" alt="Comments and Mentions" /></p>
+
+   **कनेक्टर्स और इंटीग्रेशन**
+
+   - Connect & Sync Your Tools: Notion, Slack, Google Drive, Gmail, GitHub, Linear और 25+ स्रोतों को एक खोजने योग्य कॉर्पस में सिंक करें।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ConnectorFlowGif.gif" alt="Connect and Sync Your Tools" /></p>
+
+   - Chat With Uploaded Files: PDF, Office दस्तावेज़, इमेज और ऑडियो अपलोड करें। तुरंत खोजने योग्य।
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/DocUploadGif.gif" alt="Chat With Uploaded Files" /></p>
+
+   - Connector Write-Back: एजेंट को परिणाम वापस Notion, Slack, Linear और Drive में पोस्ट करने दें।
+     इस तरह के प्रॉम्प्ट आज़माएं:
+
+     - "इस रिसर्च सारांश को मेरे Notion वर्कस्पेस में पोस्ट करें।"
+     - "इन मीटिंग एक्शन आइटम्स को हमारे टीम Slack चैनल पर भेजें।"
+     - "इस बग रिपोर्ट से एक Jira टिकट बनाएं।"
+     - "इस फ़ीचर अनुरोध से Linear में एक इश्यू खोलें।"
+     - "इस जनरेट की गई रिपोर्ट को Google Drive में एक डॉक के रूप में सेव करें।"
+
+   - Obsidian & Knowledge Base Sync: अपने Obsidian vault और व्यक्तिगत नॉलेज बेस को सिंक रखें।
+
+   **ऑटोमेशन**
+
+   - Scheduled AI Workflows: किसी एजेंट को शेड्यूल पर चलाएं: रोज़ाना ब्रीफ़, साप्ताहिक डाइजेस्ट, आवर्ती रिपोर्ट।
+     इस तरह के प्रॉम्प्ट आज़माएं:
+
+     - "हर सुबह मेरे नॉलेज बेस में जुड़े नए दस्तावेज़ों का रोज़ाना ब्रीफ़ मुझे ईमेल करें।"
+     - "हर शुक्रवार मेरे Slack और Gmail से एक साप्ताहिक स्टेटस रिपोर्ट बनाएं।"
+     - "एक मासिक प्रतिस्पर्धी विश्लेषण रिपोर्ट चलाएं और उसे मेरे वर्कस्पेस में सेव करें।"
+     - "मेरी GitHub और Linear गतिविधि को एक रोज़ाना standup अपडेट में सारांशित करें।"
+     - "मैं जिन विषयों को ट्रैक करता हूं उन पर एक आवर्ती साप्ताहिक रिसर्च रिपोर्ट बनाएं।"
+
+   - Event-Triggered Automations: जैसे ही कोई दस्तावेज़ किसी फ़ोल्डर में आता है, एजेंट को चलाएं और परिणाम अपने टूल में पोस्ट करें।
+     इस तरह के प्रॉम्प्ट आज़माएं:
+
+     - "जब मेरे Research फ़ोल्डर में कोई PDF आए, तो उद्धरण सहित एक AI सारांश बनाएं।"
+     - "जब नई मीटिंग नोट्स जुड़ें, तो उन्हें एक्शन आइटम्स के साथ मीटिंग मिनट्स में बदलें।"
+     - "जब कोई इनवॉइस अपलोड हो, तो विक्रेता, कुल राशि और देय तिथि को एक तालिका में निकालें।"
+     - "जब मेरे Legal फ़ोल्डर में कोई अनुबंध आए, तो मुख्य शर्तों और नवीनीकरण तिथियों को चिह्नित करें।"
+     - "जब Candidates में कोई रिज़्यूमे जुड़े, तो उसे जॉब डिस्क्रिप्शन के विरुद्ध स्क्रीन करें।"
+
+   - Chat-Built Automations: सरल भाषा में किसी ऑटोमेशन का वर्णन करें और SurfSense उसे आपके लिए बना देगा।
+     इस तरह के प्रॉम्प्ट आज़माएं:
+
+     - "एक AI एजेंट बनाएं जो हर सुबह नई Notion पेजों का सारांश मुझे ईमेल करे।"
+     - "एक नो-कोड ऑटोमेशन बनाएं जो हर सप्ताह एक रिसर्च डाइजेस्ट Slack पर पोस्ट करे।"
+     - "एक AI नोट-टेकर सेट करें जो नई मीटिंग नोट्स को मिनट्स में बदल दे।"
+     - "एक वर्कफ़्लो बनाएं जो मीटिंग नोट्स से एक्शन आइटम्स निकाले और ज़िम्मेदार सौंपे।"
+     - "मेरे Gmail और Google Drive से एक रोज़ाना ईमेल ब्रीफ़ को ऑटोमेट करें।"
 
 
 ### सेल्फ-होस्टेड
@@ -199,6 +270,7 @@ SurfSense एक डेस्कटॉप ऐप भी प्रदान क
 | **वीडियो जनरेशन** | Veo 3 के माध्यम से सिनेमैटिक वीडियो ओवरव्यू (केवल Ultra) | उपलब्ध (NotebookLM यहाँ बेहतर है, सक्रिय रूप से सुधार हो रहा है) |
 | **प्रेजेंटेशन जनरेशन** | बेहतर दिखने वाली स्लाइड्स लेकिन संपादन योग्य नहीं | संपादन योग्य, स्लाइड आधारित प्रेजेंटेशन बनाएं |
 | **पॉडकास्ट जनरेशन** | कस्टमाइज़ेबल होस्ट और भाषाओं के साथ ऑडियो ओवरव्यू | कई TTS प्रदाताओं के साथ उपलब्ध (NotebookLM यहाँ बेहतर है, सक्रिय रूप से सुधार हो रहा है) |
+| **AI ऑटोमेशन और एजेंट** | नहीं | शेड्यूल किए गए AI वर्कफ़्लो, नए दस्तावेज़ों पर इवेंट ट्रिगर, और चैट से बने बिना-कोड ऑटोमेशन, Notion, Slack, Linear और Jira में कनेक्टर राइट-बैक के साथ |
 | **डेस्कटॉप ऐप** | नहीं | General Assist, Quick Assist, Screenshot Assist और लोकल फ़ोल्डर सिंक के साथ नेटिव ऐप |
 | **ब्राउज़र एक्सटेंशन** | नहीं | किसी भी वेबपेज को सहेजने के लिए क्रॉस-ब्राउज़र एक्सटेंशन, प्रमाणीकरण सुरक्षित पेज सहित |
 
diff --git a/README.md b/README.md
index ab9f9e221..a75122892 100644
--- a/README.md
+++ b/README.md
@@ -42,6 +42,7 @@ NotebookLM is one of the best and most useful AI platforms out there, but once y
 - **25+ External Data Sources** - Add your sources from Google Drive, OneDrive, Dropbox, Notion, and many other external services.
 - **Real-Time Multiplayer Support** - Work easily with your team members in a shared notebook.
 - **AI File Sorting** - Automatically organize your documents into a smart folder hierarchy using AI-powered categorization by source, date, and topic.
+- **AI Automations & Agents** - Run AI agents on a schedule or trigger them the moment a document lands in a folder, then write results back to Notion, Slack, Linear, and Drive. Build no-code automations just by describing them in chat.
 - **Desktop App** - Get AI assistance in any application with Quick Assist, General Assist, Screenshot Assist, and local folder sync.
 
 ...and more to come.
@@ -77,48 +78,118 @@ https://github.com/user-attachments/assets/a0a16566-6967-4374-ac51-9b3e07fbecd7
 
 4. Once everything is indexed, Ask Away (Use Cases):
 
-   - Desktop App — General Assist
+   **Desktop App** (native extras on top of everything below, not a separate feature set)
+
+   - General Assist: launch SurfSense instantly from any application with a global shortcut.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/general_assist.gif" alt="General Assist" /></p>
 
-   - Desktop App — Quick Assist
+   - Quick Assist: select text anywhere, then ask AI to explain, rewrite, or act on it.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/quick_assist.gif" alt="Quick Assist" /></p>
 
-   - Desktop App — Screenshot Assist
+   - Screenshot Assist: capture any region of your screen and ask AI about what's in it.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/screenshot_assist.gif" alt="Screenshot Assist" /></p>
 
-   - Desktop App — Watch Local Folder
+   - Watch Local Folder: auto-sync a local folder to your knowledge base. Great for Obsidian vaults.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/folder_watch.gif" alt="Watch Local Folder" /></p>
 
-   - Video Generation
+   **Deliverable Studio**
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="Video Generation" /></p>
+   - AI Report Generator: generate cited research reports and export to PDF, DOCX, HTML, LaTeX, EPUB, ODT, or plain text.
 
-   - Basic search and citation
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="AI Report Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="Search and Citation" /></p>
+   - AI Podcast Generator: turn any document or folder into a two-host AI podcast in under 20 seconds.
 
-   - Document Mention QNA
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="AI Podcast Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Document Mention QNA" /></p>
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Document Mention QNA" /></p>
+   - AI Presentation & Video Maker: create editable slide decks and narrated video overviews from your sources.
 
-   - Report Generations and Exports (PDF, DOCX, HTML, LaTeX, EPUB, ODT, Plain Text)
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="AI Presentation and Video Maker" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="Report Generation" /></p>
+   - AI Image Generator: generate high-quality images straight from your chats and documents.
 
-   - Podcast Generations
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="AI Image Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="Podcast Generation" /></p>
+   - AI Resume Builder: tailor your existing resume to any job description and beat the ATS.
+     Try prompts like these:
 
-   - Image Generations
+     - "Tailor my resume to this job description so it gets past ATS and lands an interview."
+     - "Optimize my resume for ATS by matching the keywords in this job posting."
+     - "Rewrite my resume bullet points to highlight the skills this role is asking for."
+     - "Compare my resume against this job description and list the gaps to fix."
+     - "Write a matching cover letter from my resume and this job description."
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="Image Generation" /></p>
+   **Search & Chat**
 
-   - And more coming soon.
+   - Chat With Your PDFs & Docs: ask questions across all your files and get answers with inline citations.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Chat With Your PDFs and Docs" /></p>
+
+   - AI Search With Citations: hybrid semantic and keyword search across your entire knowledge base.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="AI Search With Citations" /></p>
+
+   - Collaborative AI Chat: work on AI conversations with your team in real time.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeChatGif.gif" alt="Collaborative AI Chat" /></p>
+
+   - Comments & Mentions: comment and tag teammates on any AI message.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeCommentsFlow.gif" alt="Comments and Mentions" /></p>
+
+   **Connectors & Integrations**
+
+   - Connect & Sync Your Tools: sync Notion, Slack, Google Drive, Gmail, GitHub, Linear and 25+ sources into one searchable corpus.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ConnectorFlowGif.gif" alt="Connect and Sync Your Tools" /></p>
+
+   - Chat With Uploaded Files: drop in PDFs, Office docs, images and audio. Instantly searchable.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/DocUploadGif.gif" alt="Chat With Uploaded Files" /></p>
+
+   - Connector Write-Back: let the agent post results back to Notion, Slack, Linear and Drive.
+     Try prompts like these:
+
+     - "Post this research summary to my Notion workspace."
+     - "Send these meeting action items to our team Slack channel."
+     - "Create a Jira ticket from this bug report."
+     - "Open a Linear issue from this feature request."
+     - "Save this generated report to Google Drive as a doc."
+
+   - Obsidian & Knowledge Base Sync: keep your Obsidian vault and personal knowledge base in sync.
+
+   **Automations**
+
+   - Scheduled AI Workflows: run an agent on a schedule: daily briefs, weekly digests, recurring reports.
+     Try prompts like these:
+
+     - "Email me a daily brief of new documents in my knowledge base every morning."
+     - "Generate a weekly status report from my Slack and Gmail every Friday."
+     - "Run a monthly competitor analysis report and save it to my workspace."
+     - "Summarize my GitHub and Linear activity into a daily standup update."
+     - "Create a recurring weekly research report on the topics I track."
+
+   - Event-Triggered Automations: fire an agent the moment a document lands in a folder, then post the result to your tools.
+     Try prompts like these:
+
+     - "When a PDF lands in my Research folder, generate a cited AI summary."
+     - "When new meeting notes are added, turn them into meeting minutes with action items."
+     - "When an invoice is uploaded, extract the vendor, total, and due date into a table."
+     - "When a contract enters my Legal folder, flag key terms and renewal dates."
+     - "When a resume is added to Candidates, screen it against the job description."
+
+   - Chat-Built Automations: describe an automation in plain English and SurfSense builds it for you.
+     Try prompts like these:
+
+     - "Build an AI agent that emails me a summary of new Notion pages each morning."
+     - "Create a no-code automation that posts a weekly research digest to Slack."
+     - "Set up an AI note taker that turns new meeting notes into minutes."
+     - "Make a workflow that extracts action items from meeting notes and assigns owners."
+     - "Automate a daily email brief from my Gmail and Google Drive."
 
 
 ### Self Hosted
@@ -201,6 +272,7 @@ All features operate against your chosen search space, so your answers are alway
 | **Presentation Generation** | Better looking slides but not editable | Create editable, slide-based presentations |
 | **Podcast Generation** | Audio Overviews with customizable hosts and languages | Available with multiple TTS providers (NotebookLM is better here, actively improving) |
 | **AI File Sorting** | No | LLM-powered auto-categorization into source, date, category, and subcategory folders |
+| **AI Automations & Agents** | No | Scheduled AI workflows, event triggers on new documents, and chat-built no-code automations with connector write-back to Notion, Slack, Linear & Jira |
 | **Desktop App** | No | Native app with General Assist, Quick Assist, Screenshot Assist, and local folder sync |
 | **Browser Extension** | No | Cross-browser extension to save any webpage, including auth-protected pages |
 
diff --git a/README.pt-BR.md b/README.pt-BR.md
index fcb004cd6..db77e5132 100644
--- a/README.pt-BR.md
+++ b/README.pt-BR.md
@@ -41,6 +41,7 @@ O NotebookLM é uma das melhores e mais úteis plataformas de IA disponíveis, m
 - **Sem Dependência de Fornecedor** - Configure qualquer modelo LLM, de imagem, TTS e STT.
 - **25+ Fontes de Dados Externas** - Adicione suas fontes do Google Drive, OneDrive, Dropbox, Notion e muitos outros serviços externos.
 - **Suporte Multiplayer em Tempo Real** - Trabalhe facilmente com os membros da sua equipe em um notebook compartilhado.
+- **Automações e Agentes de IA** - Execute agentes de IA em uma programação ou dispare-os no momento em que um documento chega a uma pasta, e escreva os resultados de volta no Notion, Slack, Linear e Drive. Crie automações sem código apenas descrevendo-as no chat.
 - **Aplicativo Desktop** - Obtenha assistência de IA em qualquer aplicativo com Quick Assist, General Assist, Screenshot Assist e sincronização de pastas locais.
 
 ...e mais por vir.
@@ -76,48 +77,118 @@ https://github.com/user-attachments/assets/a0a16566-6967-4374-ac51-9b3e07fbecd7
 
 4. Quando tudo estiver indexado, pergunte o que quiser (Casos de uso):
 
-   - Aplicativo Desktop — General Assist
+   **Aplicativo Desktop** (extras nativos, além de tudo o que está abaixo, não um conjunto separado)
+
+   - General Assist: abra o SurfSense instantaneamente de qualquer aplicativo com um atalho global.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/general_assist.gif" alt="General Assist" /></p>
 
-   - Aplicativo Desktop — Quick Assist
+   - Quick Assist: selecione um texto em qualquer lugar e peça à IA para explicar, reescrever ou agir sobre ele.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/quick_assist.gif" alt="Quick Assist" /></p>
 
-   - Aplicativo Desktop — Screenshot Assist
+   - Screenshot Assist: capture qualquer região da tela e pergunte à IA sobre o que está nela.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/screenshot_assist.gif" alt="Screenshot Assist" /></p>
 
-   - Aplicativo Desktop — Watch Local Folder
+   - Watch Local Folder: sincronize automaticamente uma pasta local com sua base de conhecimento. Ótimo para cofres do Obsidian.
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/folder_watch.gif" alt="Watch Local Folder" /></p>
 
-   - Geração de vídeos
+   **Estúdio de Entregáveis**
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="Geração de Vídeos" /></p>
+   - AI Report Generator: gere relatórios de pesquisa com citações e exporte para PDF, DOCX, HTML, LaTeX, EPUB, ODT ou texto simples.
 
-   - Busca básica e citações
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="AI Report Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="Busca e Citação" /></p>
+   - AI Podcast Generator: transforme qualquer documento ou pasta em um podcast de IA com dois apresentadores em menos de 20 segundos.
 
-   - QNA com menção de documentos
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="AI Podcast Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="QNA com Menção de Documentos" /></p>
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="QNA com Menção de Documentos" /></p>
+   - AI Presentation & Video Maker: crie apresentações editáveis e vídeos narrados a partir das suas fontes.
 
-   - Geração de relatórios e exportações (PDF, DOCX, HTML, LaTeX, EPUB, ODT, texto simples)
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="AI Presentation and Video Maker" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="Geração de Relatórios" /></p>
+   - AI Image Generator: gere imagens de alta qualidade diretamente das suas conversas e documentos.
 
-   - Geração de podcasts
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="AI Image Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="Geração de Podcasts" /></p>
+   - AI Resume Builder: adapte seu currículo atual a qualquer descrição de vaga e supere o ATS.
+     Experimente prompts como estes:
 
-   - Geração de imagens
+     - "Adapte meu currículo a esta descrição de vaga para passar pelo ATS e conseguir uma entrevista."
+     - "Otimize meu currículo para o ATS combinando as palavras-chave desta vaga."
+     - "Reescreva os tópicos do meu currículo para destacar as habilidades que esta vaga exige."
+     - "Compare meu currículo com esta descrição de vaga e liste as lacunas a corrigir."
+     - "Escreva uma carta de apresentação combinando com meu currículo e esta descrição de vaga."
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="Geração de Imagens" /></p>
+   **Busca e Chat**
 
-   - E mais em breve.
+   - Chat With Your PDFs & Docs: faça perguntas sobre todos os seus arquivos e receba respostas com citações inline.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Chat With Your PDFs and Docs" /></p>
+
+   - AI Search With Citations: busca híbrida semântica e por palavra-chave em toda a sua base de conhecimento.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="AI Search With Citations" /></p>
+
+   - Collaborative AI Chat: trabalhe em conversas de IA com sua equipe em tempo real.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeChatGif.gif" alt="Collaborative AI Chat" /></p>
+
+   - Comments & Mentions: comente e marque colegas em qualquer mensagem de IA.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeCommentsFlow.gif" alt="Comments and Mentions" /></p>
+
+   **Conectores e Integrações**
+
+   - Connect & Sync Your Tools: sincronize Notion, Slack, Google Drive, Gmail, GitHub, Linear e mais de 25 fontes em um único acervo pesquisável.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ConnectorFlowGif.gif" alt="Connect and Sync Your Tools" /></p>
+
+   - Chat With Uploaded Files: envie PDFs, documentos do Office, imagens e áudio. Pesquisáveis instantaneamente.
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/DocUploadGif.gif" alt="Chat With Uploaded Files" /></p>
+
+   - Connector Write-Back: deixe o agente publicar os resultados de volta no Notion, Slack, Linear e Drive.
+     Experimente prompts como estes:
+
+     - "Publique este resumo de pesquisa no meu espaço do Notion."
+     - "Envie estes itens de ação da reunião para o nosso canal do Slack."
+     - "Crie um ticket no Jira a partir deste relatório de bug."
+     - "Abra uma issue no Linear a partir desta solicitação de funcionalidade."
+     - "Salve este relatório gerado no Google Drive como um documento."
+
+   - Obsidian & Knowledge Base Sync: mantenha seu cofre do Obsidian e sua base de conhecimento pessoal sincronizados.
+
+   **Automações**
+
+   - Scheduled AI Workflows: execute um agente em uma programação: resumos diários, boletins semanais, relatórios recorrentes.
+     Experimente prompts como estes:
+
+     - "Envie-me todas as manhãs um resumo diário dos novos documentos na minha base de conhecimento."
+     - "Gere um relatório de status semanal a partir do meu Slack e Gmail toda sexta-feira."
+     - "Execute um relatório mensal de análise da concorrência e salve-o no meu espaço de trabalho."
+     - "Resuma minha atividade no GitHub e Linear em uma atualização diária de standup."
+     - "Crie um relatório de pesquisa semanal recorrente sobre os temas que acompanho."
+
+   - Event-Triggered Automations: dispare um agente no momento em que um documento chega a uma pasta e publique o resultado nas suas ferramentas.
+     Experimente prompts como estes:
+
+     - "Quando um PDF chegar à minha pasta de Pesquisa, gere um resumo com IA e citações."
+     - "Quando novas notas de reunião forem adicionadas, transforme-as em atas com itens de ação."
+     - "Quando uma fatura for enviada, extraia o fornecedor, o total e a data de vencimento em uma tabela."
+     - "Quando um contrato entrar na minha pasta Jurídica, sinalize os termos-chave e as datas de renovação."
+     - "Quando um currículo for adicionado a Candidatos, avalie-o em relação à descrição da vaga."
+
+   - Chat-Built Automations: descreva uma automação em linguagem simples e o SurfSense a cria para você.
+     Experimente prompts como estes:
+
+     - "Crie um agente de IA que me envie todas as manhãs um resumo das novas páginas do Notion."
+     - "Crie uma automação sem código que publique um resumo de pesquisa semanal no Slack."
+     - "Configure um anotador com IA que transforme as novas notas de reunião em atas."
+     - "Crie um fluxo que extraia os itens de ação das notas de reunião e atribua responsáveis."
+     - "Automatize um resumo diário por e-mail a partir do meu Gmail e Google Drive."
 
 
 ### Auto-Hospedado
@@ -199,6 +270,7 @@ Todos os recursos operam no espaço de busca escolhido, para que suas respostas
 | **Geração de Vídeos** | Visões gerais cinemáticas via Veo 3 (apenas Ultra) | Disponível (NotebookLM é melhor aqui, melhorando ativamente) |
 | **Geração de Apresentações** | Slides mais bonitos mas não editáveis | Cria apresentações editáveis baseadas em slides |
 | **Geração de Podcasts** | Visões gerais em áudio com hosts e idiomas personalizáveis | Disponível com múltiplos provedores TTS (NotebookLM é melhor aqui, melhorando ativamente) |
+| **Automações e Agentes de IA** | Não | Fluxos de trabalho de IA agendados, gatilhos por eventos em novos documentos e automações sem código criadas por chat com escrita de volta no Notion, Slack, Linear e Jira |
 | **Aplicativo Desktop** | Não | Aplicativo nativo com General Assist, Quick Assist, Screenshot Assist e sincronização de pastas locais |
 | **Extensão de Navegador** | Não | Extensão multi-navegador para salvar qualquer página web, incluindo páginas protegidas por autenticação |
 
diff --git a/README.zh-CN.md b/README.zh-CN.md
index a07f4afdc..d3d5330f6 100644
--- a/README.zh-CN.md
+++ b/README.zh-CN.md
@@ -41,6 +41,7 @@ NotebookLM 是目前最好、最实用的 AI 平台之一，但当你开始经
 - **无供应商锁定** - 配置任何 LLM、图像、TTS 和 STT 模型。
 - **25+ 外部数据源** - 从 Google Drive、OneDrive、Dropbox、Notion 和许多其他外部服务添加你的来源。
 - **实时多人协作支持** - 在共享笔记本中轻松与团队成员协作。
+- **AI 自动化与智能体** - 按计划运行 AI 智能体，或在文档进入文件夹的那一刻触发它们，然后将结果回写到 Notion、Slack、Linear 和 Drive。只需在聊天中描述即可创建无代码自动化。
 - **桌面应用** - 通过 Quick Assist、General Assist、Screenshot Assist 和本地文件夹同步在任何应用程序中获得 AI 助手。
 
 ...更多功能即将推出。
@@ -76,48 +77,118 @@ https://github.com/user-attachments/assets/a0a16566-6967-4374-ac51-9b3e07fbecd7
 
 4. 一切索引完成后，尽管提问（使用场景）：
 
-   - 桌面应用 — General Assist
+   **桌面应用**（在以下所有功能之外的原生附加功能，并非独立的功能集）
+
+   - General Assist：通过全局快捷键，从任意应用中即刻打开 SurfSense。
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/general_assist.gif" alt="General Assist" /></p>
 
-   - 桌面应用 — Quick Assist
+   - Quick Assist：在任意位置选中文本，让 AI 解释、改写或对其执行操作。
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/quick_assist.gif" alt="Quick Assist" /></p>
 
-   - 桌面应用 — Screenshot Assist
+   - Screenshot Assist：截取屏幕上任意区域，并就其中内容向 AI 提问。
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/screenshot_assist.gif" alt="Screenshot Assist" /></p>
 
-   - 桌面应用 — Watch Local Folder
+   - Watch Local Folder：将本地文件夹自动同步到你的知识库。非常适合 Obsidian 库。
 
    <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/folder_watch.gif" alt="Watch Local Folder" /></p>
 
-   - 视频生成
+   **成果工作室**
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="视频生成" /></p>
+   - AI Report Generator：生成带引用的研究报告，并导出为 PDF、DOCX、HTML、LaTeX、EPUB、ODT 或纯文本。
 
-   - 基本搜索和引用
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="AI Report Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="搜索和引用" /></p>
+   - AI Podcast Generator：在 20 秒内将任意文档或文件夹转换为双主持人 AI 播客。
 
-   - 文档提及问答
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="AI Podcast Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="文档提及问答" /></p>
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="文档提及问答" /></p>
+   - AI Presentation & Video Maker：根据你的资料创建可编辑的幻灯片和带旁白的视频概览。
 
-   - 报告生成和导出（PDF、DOCX、HTML、LaTeX、EPUB、ODT、纯文本）
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/video_gen_gif.gif" alt="AI Presentation and Video Maker" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ReportGenGif_compressed.gif" alt="报告生成" /></p>
+   - AI Image Generator：直接从你的聊天和文档生成高质量图像。
 
-   - 播客生成
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="AI Image Generator" /></p>
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/PodcastGenGif.gif" alt="播客生成" /></p>
+   - AI Resume Builder：根据任意职位描述定制你现有的简历，顺利通过 ATS。
+     可以试试这样的提示：
 
-   - 图像生成
+     - “根据这份职位描述定制我的简历，让它通过 ATS 并赢得面试。”
+     - “匹配这份招聘启事中的关键词，为 ATS 优化我的简历。”
+     - “重写我的简历要点，突出这个岗位所需要的技能。”
+     - “将我的简历与这份职位描述对比，列出需要改进的差距。”
+     - “根据我的简历和这份职位描述，写一封相匹配的求职信。”
 
-   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ImageGenGif.gif" alt="图像生成" /></p>
+   **搜索与聊天**
 
-   - 更多功能即将推出。
+   - Chat With Your PDFs & Docs：跨所有文件提问，并获得带内联引用的答案。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BQnaGif_compressed.gif" alt="Chat With Your PDFs and Docs" /></p>
+
+   - AI Search With Citations：在整个知识库中进行语义与关键词的混合搜索。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/BSNCGif.gif" alt="AI Search With Citations" /></p>
+
+   - Collaborative AI Chat：与团队实时协作处理 AI 对话。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeChatGif.gif" alt="Collaborative AI Chat" /></p>
+
+   - Comments & Mentions：在任意 AI 消息上评论并 @ 你的队友。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_realtime/RealTimeCommentsFlow.gif" alt="Comments and Mentions" /></p>
+
+   **连接器与集成**
+
+   - Connect & Sync Your Tools：将 Notion、Slack、Google Drive、Gmail、GitHub、Linear 等 25+ 数据源同步为一个可搜索的语料库。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/ConnectorFlowGif.gif" alt="Connect and Sync Your Tools" /></p>
+
+   - Chat With Uploaded Files：上传 PDF、Office 文档、图像和音频。即刻可搜索。
+
+   <p align="center"><img src="surfsense_web/public/homepage/hero_tutorial/DocUploadGif.gif" alt="Chat With Uploaded Files" /></p>
+
+   - Connector Write-Back：让智能体将结果回写到 Notion、Slack、Linear 和 Drive。
+     可以试试这样的提示：
+
+     - “把这份研究摘要发布到我的 Notion 工作区。”
+     - “把这些会议行动项发送到我们的团队 Slack 频道。”
+     - “根据这份缺陷报告创建一个 Jira 工单。”
+     - “根据这个功能需求在 Linear 中创建一个 issue。”
+     - “把这份生成的报告作为文档保存到 Google Drive。”
+
+   - Obsidian & Knowledge Base Sync：让你的 Obsidian 库与个人知识库保持同步。
+
+   **自动化**
+
+   - Scheduled AI Workflows：按计划运行智能体：每日简报、每周摘要、周期性报告。
+     可以试试这样的提示：
+
+     - “每天早上把我知识库中新增文档的每日简报发邮件给我。”
+     - “每周五根据我的 Slack 和 Gmail 生成一份每周状态报告。”
+     - “每月运行一次竞争对手分析报告并保存到我的工作区。”
+     - “把我的 GitHub 和 Linear 活动汇总成一份每日站会更新。”
+     - “针对我关注的主题创建一份周期性的每周研究报告。”
+
+   - Event-Triggered Automations：在文档进入文件夹的那一刻触发智能体，并将结果发布到你的工具中。
+     可以试试这样的提示：
+
+     - “当一个 PDF 进入我的 Research 文件夹时，生成一份带引用的 AI 摘要。”
+     - “当新增会议记录时，把它整理成带行动项的会议纪要。”
+     - “当上传发票时，把供应商、总额和到期日提取到一张表格中。”
+     - “当一份合同进入我的 Legal 文件夹时，标记关键条款和续约日期。”
+     - “当一份简历加入 Candidates 时，根据职位描述对其进行筛选。”
+
+   - Chat-Built Automations：用通俗的语言描述一个自动化，SurfSense 就会为你构建它。
+     可以试试这样的提示：
+
+     - “创建一个 AI 智能体，每天早上把新增 Notion 页面的摘要发邮件给我。”
+     - “创建一个无代码自动化，每周把研究摘要发布到 Slack。”
+     - “设置一个 AI 笔记助手，把新增会议记录整理成纪要。”
+     - “创建一个工作流，从会议记录中提取行动项并指派负责人。”
+     - “自动化一份来自我的 Gmail 和 Google Drive 的每日邮件简报。”
 
 
 ### 自托管
@@ -199,6 +270,7 @@ SurfSense 还提供桌面应用，将 AI 助手带到您计算机上的每个应
 | **视频生成** | 通过 Veo 3 的电影级视频概览（仅 Ultra） | 可用（NotebookLM 在此方面更好，正在积极改进） |
 | **演示文稿生成** | 更美观的幻灯片但不可编辑 | 创建可编辑的幻灯片式演示文稿 |
 | **播客生成** | 可自定义主持人和语言的音频概览 | 可用，支持多种 TTS 提供商（NotebookLM 在此方面更好，正在积极改进） |
+| **AI 自动化与智能体** | 否 | 定时 AI 工作流、新文档的事件触发，以及通过聊天构建的无代码自动化，支持回写到 Notion、Slack、Linear 和 Jira |
 | **桌面应用** | 否 | 原生应用，包含 General Assist、Quick Assist、Screenshot Assist 和本地文件夹同步 |
 | **浏览器扩展** | 否 | 跨浏览器扩展，保存任何网页，包括需要身份验证的页面 |
 
diff --git a/VERSION b/VERSION
index 2678ff8d6..c4475d3bb 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-0.0.25
+0.0.26
diff --git a/docker/.env.example b/docker/.env.example
index 4de35a5e9..748f03048 100644
--- a/docker/.env.example
+++ b/docker/.env.example
@@ -7,6 +7,9 @@
 # SurfSense version (use "latest" or a specific version like "0.0.14")
 SURFSENSE_VERSION=latest
 
+# Deployment environment: dev or production
+SURFSENSE_ENV=production
+
 # ------------------------------------------------------------------------------
 # Core Settings
 # ------------------------------------------------------------------------------
@@ -304,6 +307,28 @@ STT_SERVICE=local/base
 # LANGSMITH_API_KEY=
 # LANGSMITH_PROJECT=surfsense
 
+# OpenTelemetry traces and metrics.
+# Enable the collector with: docker compose --profile observability up -d
+# SURFSENSE_ENABLE_OTEL=true
+# OTEL_EXPORTER_OTLP_ENDPOINT=http://otel-collector:4317
+# OTEL_EXPORTER_OTLP_PROTOCOL=grpc
+# OTEL_RESOURCE_ATTRIBUTES=service.namespace=surfsense
+#
+# Emergency kill switch.
+# OTEL_SDK_DISABLED=true
+#
+# Grafana Cloud OTLP credentials. These are used only by the collector container.
+# GRAFANA_CLOUD_OTLP_ENDPOINT=https://otlp-gateway-<region>.grafana.net/otlp
+# GRAFANA_CLOUD_INSTANCE_ID=
+# GRAFANA_CLOUD_API_KEY=
+#
+# Optional host port overrides for the bundled OTel Collector. Only change
+# these if the host already uses 4317/4318/13133; backend containers still use
+# the internal Docker endpoint above.
+# OTEL_GRPC_PORT=4317
+# OTEL_HTTP_PORT=4318
+# OTEL_HEALTH_PORT=13133
+
 # ------------------------------------------------------------------------------
 # Advanced (optional)
 # ------------------------------------------------------------------------------
diff --git a/docker/docker-compose.dev.yml b/docker/docker-compose.dev.yml
index 53b8ea1a9..58cb7b42f 100644
--- a/docker/docker-compose.dev.yml
+++ b/docker/docker-compose.dev.yml
@@ -78,6 +78,15 @@ services:
       timeout: 5s
       retries: 5
 
+  otel-lgtm:
+    image: grafana/otel-lgtm:latest
+    ports:
+      - "${OTEL_GRPC_PORT:-4317}:4317"
+      - "${OTEL_HTTP_PORT:-4318}:4318"
+      - "${OTEL_GRAFANA_PORT:-3001}:3000"
+      - "${OTEL_TEMPO_PORT:-3200}:3200"
+    restart: unless-stopped
+
   searxng:
     image: searxng/searxng:2026.3.13-3c1f68c59
     ports:
diff --git a/docker/docker-compose.yml b/docker/docker-compose.yml
index 82d77f826..06a3ac79a 100644
--- a/docker/docker-compose.yml
+++ b/docker/docker-compose.yml
@@ -61,6 +61,29 @@ services:
       timeout: 5s
       retries: 5
 
+  otel-collector:
+    image: otel/opentelemetry-collector-contrib:0.152.1
+    profiles:
+      - observability
+    command: ["--config=/etc/otelcol/config.yaml"]
+    volumes:
+      - ./otel-collector/config.yaml:/etc/otelcol/config.yaml:ro
+    environment:
+      GRAFANA_CLOUD_OTLP_ENDPOINT: ${GRAFANA_CLOUD_OTLP_ENDPOINT:-}
+      GRAFANA_CLOUD_INSTANCE_ID: ${GRAFANA_CLOUD_INSTANCE_ID:-}
+      GRAFANA_CLOUD_API_KEY: ${GRAFANA_CLOUD_API_KEY:-}
+    ports:
+      - "${OTEL_GRPC_PORT:-4317}:4317"
+      - "${OTEL_HTTP_PORT:-4318}:4318"
+      - "${OTEL_HEALTH_PORT:-13133}:13133"
+    mem_limit: 2g
+    restart: unless-stopped
+    healthcheck:
+      test: ["CMD", "/otelcol-contrib", "--version"]
+      interval: 30s
+      timeout: 5s
+      retries: 3
+
   searxng:
     image: searxng/searxng:2026.3.13-3c1f68c59
     volumes:
diff --git a/docker/otel-collector/config.yaml b/docker/otel-collector/config.yaml
new file mode 100644
index 000000000..f495eff9b
--- /dev/null
+++ b/docker/otel-collector/config.yaml
@@ -0,0 +1,81 @@
+extensions:
+  health_check:
+    endpoint: 0.0.0.0:13133
+  basicauth/grafana_cloud:
+    client_auth:
+      username: ${env:GRAFANA_CLOUD_INSTANCE_ID}
+      password: ${env:GRAFANA_CLOUD_API_KEY}
+
+receivers:
+  otlp:
+    protocols:
+      grpc:
+        endpoint: 0.0.0.0:4317
+      http:
+        endpoint: 0.0.0.0:4318
+
+processors:
+  # Percentage limits are calculated against the collector container memory limit.
+  # Keep docker-compose.yml/Coolify memory limit set for predictability.
+  memory_limiter:
+    check_interval: 1s
+    limit_percentage: 80
+    spike_limit_percentage: 25
+
+  attributes/scrub:
+    actions:
+      - key: http.request.header.authorization
+        action: delete
+      - key: http.request.header.cookie
+        action: delete
+      - key: db.statement
+        action: delete
+
+  tail_sampling:
+    decision_wait: 10s
+    num_traces: 50000
+    expected_new_traces_per_sec: 100
+    policies:
+      - name: errors
+        type: status_code
+        status_code:
+          status_codes: [ERROR]
+      - name: slow-requests
+        type: latency
+        latency:
+          threshold_ms: 500
+      - name: baseline
+        type: probabilistic
+        probabilistic:
+          sampling_percentage: 100
+
+  batch:
+    timeout: 5s
+    send_batch_size: 1024
+    send_batch_max_size: 2048
+
+exporters:
+  otlp_http/grafana_cloud:
+    endpoint: ${env:GRAFANA_CLOUD_OTLP_ENDPOINT}
+    auth:
+      authenticator: basicauth/grafana_cloud
+    sending_queue:
+      enabled: true
+      queue_size: 10000
+    retry_on_failure:
+      enabled: true
+      initial_interval: 5s
+      max_interval: 30s
+      max_elapsed_time: 300s
+
+service:
+  extensions: [health_check, basicauth/grafana_cloud]
+  pipelines:
+    traces:
+      receivers: [otlp]
+      processors: [memory_limiter, attributes/scrub, tail_sampling, batch]
+      exporters: [otlp_http/grafana_cloud]
+    metrics:
+      receivers: [otlp]
+      processors: [memory_limiter, batch]
+      exporters: [otlp_http/grafana_cloud]
diff --git a/surfsense_backend/.env.example b/surfsense_backend/.env.example
index 3d442973c..70cf687d8 100644
--- a/surfsense_backend/.env.example
+++ b/surfsense_backend/.env.example
@@ -1,5 +1,8 @@
 DATABASE_URL=postgresql+asyncpg://postgres:postgres@localhost:5432/surfsense
 
+# Deployment environment: dev or production
+SURFSENSE_ENV=dev
+
 #Celery Config
 CELERY_BROKER_URL=redis://localhost:6379/0
 CELERY_RESULT_BACKEND=redis://localhost:6379/0
@@ -303,8 +306,16 @@ LANGSMITH_PROJECT=surfsense
 # SURFSENSE_ENABLE_BUSY_MUTEX=false
 # SURFSENSE_ENABLE_LLM_TOOL_SELECTOR=false   # adds a per-turn LLM call
 
-# Observability — OTel (also requires OTEL_EXPORTER_OTLP_ENDPOINT)
+# Observability - OTel
 # SURFSENSE_ENABLE_OTEL=false
+# OpenTelemetry - endpoint enables export; absent = no-op.
+# Production should point at an OTel Collector. For local docker-compose.dev.yml,
+# use http://otel-lgtm:4317 instead.
+# OTEL_EXPORTER_OTLP_ENDPOINT=http://otel-collector:4317
+# OTEL_EXPORTER_OTLP_PROTOCOL=grpc                        # or http/protobuf
+# OTEL_RESOURCE_ATTRIBUTES=service.namespace=surfsense
+# OTEL_METRIC_EXPORT_INTERVAL=300000                       # ms; 5 minutes
+# OTEL_SDK_DISABLED=true                                  # emergency kill-switch
 
 # Skills + subagents
 # SURFSENSE_ENABLE_SKILLS=false
@@ -346,3 +357,50 @@ LANGSMITH_PROJECT=surfsense
 # updates and deletes — the TTL only bounds staleness for bulk-import
 # paths that bypass the ORM. Set to 0 to disable the cache.
 # SURFSENSE_CONNECTOR_DISCOVERY_TTL_SECONDS=30
+
+# -----------------------------------------------------------------------------
+# `task` boundary controls (Hermes-inspired improvements)
+# -----------------------------------------------------------------------------
+# Wall-clock budget for a single ``task(subagent, ...)`` invocation in
+# seconds. Subagents that run hot (slow image vendors, sluggish embedders,
+# wedged MCP servers) would otherwise pin the orchestrator until the next
+# checkpoint heartbeat fires. On timeout the runtime cancels the underlying
+# coroutine and synthesizes a ToolMessage telling the orchestrator to treat
+# the result as ``status=error``. Set to 0 to disable the cap entirely.
+# Default: 300.0
+# SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS=300
+
+# Batch-mode (``task(tasks=[...])``) concurrency cap and max batch size.
+# Concurrency is enforced via an ``asyncio.Semaphore`` so a runaway fanout
+# cannot starve unrelated subagents (each child still owns an LLM call and
+# its own DB session). Max-size is a hard safety net for prompt-injection /
+# runaway loops; the orchestrator rarely needs more than a handful of
+# concurrent specialists. Set concurrency to 1 to effectively serialise
+# batches without changing the schema.
+# SURFSENSE_TASK_BATCH_CONCURRENCY=3
+# SURFSENSE_TASK_BATCH_MAX_SIZE=8
+
+# Soft per-turn cap on cumulative ``task(...)`` invocations across all
+# subagents. Once the sum of ``state['billable_calls']`` crosses this
+# number, the runtime appends a one-shot warning ToolMessage telling the
+# orchestrator to wrap up rather than launching more specialists. Tunable
+# so heavy-research turns (15+ legitimate specialist calls) don't trip the
+# alarm in production. Set to 0 to disable the warning entirely.
+# SURFSENSE_SUBAGENT_BILLABLE_THRESHOLD=15
+
+# Per-workspace spawn-paused kill switch — set via Redis at runtime, not
+# this env var. The env var below only disables the check itself (useful
+# for local dev without Redis). To pause a workspace in production:
+#     redis-cli SET surfsense:spawn_paused:<search_space_id> 1 EX 600
+#     redis-cli DEL surfsense:spawn_paused:<search_space_id>
+# The check is fail-open: a Redis blip never blocks ``task(...)``.
+# SURFSENSE_TASK_SPAWN_PAUSED_DISABLED=false
+
+# Note on Celery-backed deliverables (generate_podcast,
+# generate_video_presentation): these tools poll the artefact row until
+# it reaches a terminal status — they do NOT use an internal wall-clock
+# budget. The effective ceiling is SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS
+# (above, default 300s) in multi-agent mode and the chat's HTTP / process
+# lifetime in single-agent mode. If your podcasts or videos routinely
+# exceed 5 minutes, raise SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS (or
+# set it to 0 to disable that ceiling entirely).
diff --git a/surfsense_backend/alembic/versions/144_add_automation_tables.py b/surfsense_backend/alembic/versions/144_add_automation_tables.py
new file mode 100644
index 000000000..39f927417
--- /dev/null
+++ b/surfsense_backend/alembic/versions/144_add_automation_tables.py
@@ -0,0 +1,177 @@
+"""Add automation tables (automations, automation_triggers, automation_runs)
+
+Revision ID: 144
+Revises: 143
+Create Date: 2026-05-26
+
+Adds the three tables that back the v1 automation engine, plus the
+three PostgreSQL ENUM types they reference. Matches the SQLAlchemy
+models under ``app.automations.persistence.models`` and the v1 data
+model in ``automation-design-plan.md`` §9.
+
+v1 ships these three tables only. ``domain_events`` is deferred to
+Phase 3 with the event trigger; ``mcp_connections`` / ``mcp_tools``
+are deferred to Phase 4 with the MCP integration.
+"""
+
+from collections.abc import Sequence
+
+from alembic import op
+
+revision: str = "144"
+down_revision: str | None = "143"
+branch_labels: str | Sequence[str] | None = None
+depends_on: str | Sequence[str] | None = None
+
+
+def upgrade() -> None:
+    # ENUM types (PostgreSQL requires types created before tables that use them)
+    op.execute(
+        """
+        CREATE TYPE automation_status AS ENUM (
+            'active', 'paused', 'archived'
+        );
+        """
+    )
+    op.execute(
+        """
+        CREATE TYPE automation_trigger_type AS ENUM (
+            'schedule', 'manual'
+        );
+        """
+    )
+    op.execute(
+        """
+        CREATE TYPE automation_run_status AS ENUM (
+            'pending', 'running', 'succeeded', 'failed',
+            'cancelled', 'timed_out'
+        );
+        """
+    )
+
+    # automations — the editable, versioned automation definition
+    op.execute(
+        """
+        CREATE TABLE automations (
+            id SERIAL PRIMARY KEY,
+            search_space_id INTEGER NOT NULL
+                REFERENCES searchspaces(id) ON DELETE CASCADE,
+            created_by_user_id UUID
+                REFERENCES "user"(id) ON DELETE SET NULL,
+            name VARCHAR(200) NOT NULL,
+            description TEXT,
+            status automation_status NOT NULL DEFAULT 'active',
+            definition JSONB NOT NULL,
+            version INTEGER NOT NULL DEFAULT 1,
+            created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
+            updated_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW()
+        );
+        """
+    )
+    op.execute(
+        "CREATE INDEX ix_automations_search_space_id ON automations(search_space_id);"
+    )
+    op.execute(
+        "CREATE INDEX ix_automations_created_by_user_id ON automations(created_by_user_id);"
+    )
+    op.execute("CREATE INDEX ix_automations_status ON automations(status);")
+    op.execute("CREATE INDEX ix_automations_created_at ON automations(created_at);")
+    op.execute("CREATE INDEX ix_automations_updated_at ON automations(updated_at);")
+
+    # automation_triggers — one row per (automation, trigger-instance) pair
+    op.execute(
+        """
+        CREATE TABLE automation_triggers (
+            id SERIAL PRIMARY KEY,
+            automation_id INTEGER NOT NULL
+                REFERENCES automations(id) ON DELETE CASCADE,
+            type automation_trigger_type NOT NULL,
+            params JSONB NOT NULL,
+            static_inputs JSONB NOT NULL DEFAULT '{}'::jsonb,
+            enabled BOOLEAN NOT NULL DEFAULT true,
+            last_fired_at TIMESTAMP WITH TIME ZONE,
+            next_fire_at TIMESTAMP WITH TIME ZONE,
+            created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW()
+        );
+        """
+    )
+    op.execute(
+        "CREATE INDEX ix_automation_triggers_automation_id ON automation_triggers(automation_id);"
+    )
+    op.execute("CREATE INDEX ix_automation_triggers_type ON automation_triggers(type);")
+    op.execute(
+        "CREATE INDEX ix_automation_triggers_enabled ON automation_triggers(enabled);"
+    )
+    op.execute(
+        "CREATE INDEX ix_automation_triggers_created_at ON automation_triggers(created_at);"
+    )
+    # Partial index for the schedule tick: only enabled schedule triggers
+    # with a scheduled next fire are ever scanned for due rows.
+    op.execute(
+        """
+        CREATE INDEX ix_automation_triggers_due
+            ON automation_triggers (next_fire_at)
+            WHERE enabled = true
+              AND type = 'schedule'
+              AND next_fire_at IS NOT NULL;
+        """
+    )
+
+    # automation_runs — the immutable per-fire execution record
+    op.execute(
+        """
+        CREATE TABLE automation_runs (
+            id SERIAL PRIMARY KEY,
+            automation_id INTEGER NOT NULL
+                REFERENCES automations(id) ON DELETE CASCADE,
+            trigger_id INTEGER
+                REFERENCES automation_triggers(id) ON DELETE SET NULL,
+            status automation_run_status NOT NULL DEFAULT 'pending',
+            definition_snapshot JSONB NOT NULL,
+            inputs JSONB NOT NULL DEFAULT '{}'::jsonb,
+            step_results JSONB NOT NULL DEFAULT '[]'::jsonb,
+            output JSONB,
+            artifacts JSONB NOT NULL DEFAULT '[]'::jsonb,
+            error JSONB,
+            started_at TIMESTAMP WITH TIME ZONE,
+            finished_at TIMESTAMP WITH TIME ZONE,
+            created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW()
+        );
+        """
+    )
+    op.execute(
+        "CREATE INDEX ix_automation_runs_automation_id ON automation_runs(automation_id);"
+    )
+    op.execute(
+        "CREATE INDEX ix_automation_runs_trigger_id ON automation_runs(trigger_id);"
+    )
+    op.execute("CREATE INDEX ix_automation_runs_status ON automation_runs(status);")
+    op.execute(
+        "CREATE INDEX ix_automation_runs_created_at ON automation_runs(created_at);"
+    )
+
+
+def downgrade() -> None:
+    op.execute("DROP INDEX IF EXISTS ix_automation_runs_created_at;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_runs_status;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_runs_trigger_id;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_runs_automation_id;")
+    op.execute("DROP TABLE IF EXISTS automation_runs;")
+
+    op.execute("DROP INDEX IF EXISTS ix_automation_triggers_due;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_triggers_created_at;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_triggers_enabled;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_triggers_type;")
+    op.execute("DROP INDEX IF EXISTS ix_automation_triggers_automation_id;")
+    op.execute("DROP TABLE IF EXISTS automation_triggers;")
+
+    op.execute("DROP INDEX IF EXISTS ix_automations_updated_at;")
+    op.execute("DROP INDEX IF EXISTS ix_automations_created_at;")
+    op.execute("DROP INDEX IF EXISTS ix_automations_status;")
+    op.execute("DROP INDEX IF EXISTS ix_automations_created_by_user_id;")
+    op.execute("DROP INDEX IF EXISTS ix_automations_search_space_id;")
+    op.execute("DROP TABLE IF EXISTS automations;")
+
+    op.execute("DROP TYPE IF EXISTS automation_run_status;")
+    op.execute("DROP TYPE IF EXISTS automation_trigger_type;")
+    op.execute("DROP TYPE IF EXISTS automation_status;")
diff --git a/surfsense_backend/alembic/versions/145_add_automations_permissions_to_roles.py b/surfsense_backend/alembic/versions/145_add_automations_permissions_to_roles.py
new file mode 100644
index 000000000..779656b44
--- /dev/null
+++ b/surfsense_backend/alembic/versions/145_add_automations_permissions_to_roles.py
@@ -0,0 +1,87 @@
+"""Add automations permissions to existing Editor/Viewer roles
+
+Revision ID: 145
+Revises: 144
+Create Date: 2026-05-27
+
+Owners already have ``*`` and need no backfill. Custom (non-system) roles
+are left untouched on purpose: workspace admins manage those explicitly.
+"""
+
+from collections.abc import Sequence
+
+from sqlalchemy import text
+
+from alembic import op
+
+revision: str = "145"
+down_revision: str | None = "144"
+branch_labels: str | Sequence[str] | None = None
+depends_on: str | Sequence[str] | None = None
+
+
+_EDITOR_PERMISSIONS = (
+    "automations:create",
+    "automations:read",
+    "automations:update",
+    "automations:execute",
+)
+_VIEWER_PERMISSIONS = ("automations:read",)
+
+
+def upgrade():
+    connection = op.get_bind()
+
+    for permission in _EDITOR_PERMISSIONS:
+        connection.execute(
+            text(
+                """
+                UPDATE search_space_roles
+                SET permissions = array_append(permissions, :permission)
+                WHERE name = 'Editor'
+                AND NOT (:permission = ANY(permissions))
+                """
+            ),
+            {"permission": permission},
+        )
+
+    for permission in _VIEWER_PERMISSIONS:
+        connection.execute(
+            text(
+                """
+                UPDATE search_space_roles
+                SET permissions = array_append(permissions, :permission)
+                WHERE name = 'Viewer'
+                AND NOT (:permission = ANY(permissions))
+                """
+            ),
+            {"permission": permission},
+        )
+
+
+def downgrade():
+    connection = op.get_bind()
+
+    for permission in _EDITOR_PERMISSIONS:
+        connection.execute(
+            text(
+                """
+                UPDATE search_space_roles
+                SET permissions = array_remove(permissions, :permission)
+                WHERE name = 'Editor'
+                """
+            ),
+            {"permission": permission},
+        )
+
+    for permission in _VIEWER_PERMISSIONS:
+        connection.execute(
+            text(
+                """
+                UPDATE search_space_roles
+                SET permissions = array_remove(permissions, :permission)
+                WHERE name = 'Viewer'
+                """
+            ),
+            {"permission": permission},
+        )
diff --git a/surfsense_backend/alembic/versions/146_drop_surfsense_docs_tables.py b/surfsense_backend/alembic/versions/146_drop_surfsense_docs_tables.py
new file mode 100644
index 000000000..725405834
--- /dev/null
+++ b/surfsense_backend/alembic/versions/146_drop_surfsense_docs_tables.py
@@ -0,0 +1,129 @@
+"""Drop Surfsense docs tables (feature removed end to end)
+
+Revision ID: 146
+Revises: 145
+Create Date: 2026-05-28
+
+Removes the SurfSense product-documentation feature: the
+``surfsense_docs_documents`` and ``surfsense_docs_chunks`` tables (created
+in revision 60) and the GIN trigram index on the title column (added in
+revision 67). The docs were seeded at startup from local MDX files, so no
+user data is lost. Downgrade recreates the tables and indexes.
+"""
+
+from collections.abc import Sequence
+
+from alembic import op
+from app.config import config
+
+# revision identifiers, used by Alembic.
+revision: str = "146"
+down_revision: str | None = "145"
+branch_labels: str | Sequence[str] | None = None
+depends_on: str | Sequence[str] | None = None
+
+# Embedding dimension is required to recreate the vector columns on downgrade.
+EMBEDDING_DIM = config.embedding_model_instance.dimension
+
+
+def upgrade() -> None:
+    """Drop surfsense docs tables and all their indexes."""
+    # Trigram index from revision 67
+    op.execute("DROP INDEX IF EXISTS idx_surfsense_docs_title_trgm")
+
+    # Full-text search indexes
+    op.execute("DROP INDEX IF EXISTS surfsense_docs_chunks_search_index")
+    op.execute("DROP INDEX IF EXISTS surfsense_docs_documents_search_index")
+
+    # Vector indexes
+    op.execute("DROP INDEX IF EXISTS surfsense_docs_chunks_vector_index")
+    op.execute("DROP INDEX IF EXISTS surfsense_docs_documents_vector_index")
+
+    # B-tree indexes
+    op.execute("DROP INDEX IF EXISTS ix_surfsense_docs_chunks_document_id")
+    op.execute("DROP INDEX IF EXISTS ix_surfsense_docs_documents_updated_at")
+    op.execute("DROP INDEX IF EXISTS ix_surfsense_docs_documents_content_hash")
+    op.execute("DROP INDEX IF EXISTS ix_surfsense_docs_documents_source")
+
+    # Tables (chunks first due to FK)
+    op.execute("DROP TABLE IF EXISTS surfsense_docs_chunks")
+    op.execute("DROP TABLE IF EXISTS surfsense_docs_documents")
+
+
+def downgrade() -> None:
+    """Recreate surfsense docs tables and indexes (reverses revisions 60 + 67)."""
+    op.execute(
+        f"""
+        CREATE TABLE IF NOT EXISTS surfsense_docs_documents (
+            id SERIAL PRIMARY KEY,
+            created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
+            source VARCHAR NOT NULL UNIQUE,
+            title VARCHAR NOT NULL,
+            content TEXT NOT NULL,
+            content_hash VARCHAR NOT NULL,
+            embedding vector({EMBEDDING_DIM}),
+            updated_at TIMESTAMP WITH TIME ZONE
+        );
+        """
+    )
+    op.execute(
+        f"""
+        CREATE TABLE IF NOT EXISTS surfsense_docs_chunks (
+            id SERIAL PRIMARY KEY,
+            created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
+            content TEXT NOT NULL,
+            embedding vector({EMBEDDING_DIM}),
+            document_id INTEGER NOT NULL REFERENCES surfsense_docs_documents(id) ON DELETE CASCADE
+        );
+        """
+    )
+
+    # B-tree indexes
+    op.execute(
+        "CREATE INDEX IF NOT EXISTS ix_surfsense_docs_documents_source ON surfsense_docs_documents(source)"
+    )
+    op.execute(
+        "CREATE INDEX IF NOT EXISTS ix_surfsense_docs_documents_content_hash ON surfsense_docs_documents(content_hash)"
+    )
+    op.execute(
+        "CREATE INDEX IF NOT EXISTS ix_surfsense_docs_documents_updated_at ON surfsense_docs_documents(updated_at)"
+    )
+    op.execute(
+        "CREATE INDEX IF NOT EXISTS ix_surfsense_docs_chunks_document_id ON surfsense_docs_chunks(document_id)"
+    )
+
+    # Vector indexes
+    op.execute(
+        """
+        CREATE INDEX IF NOT EXISTS surfsense_docs_documents_vector_index
+        ON surfsense_docs_documents USING hnsw (embedding public.vector_cosine_ops);
+        """
+    )
+    op.execute(
+        """
+        CREATE INDEX IF NOT EXISTS surfsense_docs_chunks_vector_index
+        ON surfsense_docs_chunks USING hnsw (embedding public.vector_cosine_ops);
+        """
+    )
+
+    # Full-text search indexes
+    op.execute(
+        """
+        CREATE INDEX IF NOT EXISTS surfsense_docs_documents_search_index
+        ON surfsense_docs_documents USING gin (to_tsvector('english', content));
+        """
+    )
+    op.execute(
+        """
+        CREATE INDEX IF NOT EXISTS surfsense_docs_chunks_search_index
+        ON surfsense_docs_chunks USING gin (to_tsvector('english', content));
+        """
+    )
+
+    # Trigram index from revision 67
+    op.execute(
+        """
+        CREATE INDEX IF NOT EXISTS idx_surfsense_docs_title_trgm
+        ON surfsense_docs_documents USING gin (title gin_trgm_ops);
+        """
+    )
diff --git a/surfsense_backend/alembic/versions/147_add_event_to_automation_trigger_type.py b/surfsense_backend/alembic/versions/147_add_event_to_automation_trigger_type.py
new file mode 100644
index 000000000..32021a9d1
--- /dev/null
+++ b/surfsense_backend/alembic/versions/147_add_event_to_automation_trigger_type.py
@@ -0,0 +1,47 @@
+"""Add 'event' to automation_trigger_type enum
+
+Revision ID: 147
+Revises: 146
+Create Date: 2026-05-29
+
+Adds the ``event`` value to the ``automation_trigger_type`` enum so automations
+can be triggered by published domain events, alongside the existing
+``schedule`` triggers.
+"""
+
+from collections.abc import Sequence
+
+from alembic import op
+
+# revision identifiers, used by Alembic.
+revision: str = "147"
+down_revision: str | None = "146"
+branch_labels: str | Sequence[str] | None = None
+depends_on: str | Sequence[str] | None = None
+
+ENUM_NAME = "automation_trigger_type"
+NEW_VALUE = "event"
+
+
+def upgrade() -> None:
+    """Safely add 'event' to automation_trigger_type enum if missing."""
+    op.execute(
+        f"""
+    DO $$
+    BEGIN
+        IF NOT EXISTS (
+            SELECT 1 FROM pg_type t
+            JOIN pg_enum e ON t.oid = e.enumtypid
+            WHERE t.typname = '{ENUM_NAME}' AND e.enumlabel = '{NEW_VALUE}'
+        ) THEN
+            ALTER TYPE {ENUM_NAME} ADD VALUE '{NEW_VALUE}';
+        END IF;
+    END
+    $$;
+    """
+    )
+
+
+def downgrade() -> None:
+    """No-op: PostgreSQL does not support removing enum values."""
+    pass
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/agent_cache.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/agent_cache.py
index 03cf7acb8..df1ee1b4c 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/agent_cache.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/agent_cache.py
@@ -57,6 +57,7 @@ async def build_agent_with_cache(
     mcp_tools_by_agent: dict[str, list[BaseTool]],
     disabled_tools: list[str] | None,
     config_id: str | None,
+    image_generation_config_id_override: int | None = None,
 ) -> Any:
     """Compile the multi-agent graph, serving from cache when key components are stable."""
 
@@ -91,7 +92,7 @@ async def build_agent_with_cache(
     # the key, otherwise a hit will leak state across threads. Bump the schema
     # version when the component list changes shape.
     cache_key = stable_hash(
-        "multi-agent-v1",
+        "multi-agent-v2",
         config_id,
         thread_id,
         user_id,
@@ -109,6 +110,10 @@ async def build_agent_with_cache(
         system_prompt_hash(final_system_prompt),
         max_input_tokens,
         sorted(disabled_tools) if disabled_tools else None,
+        # Bound into the generate_image subagent tool at construction time, so it
+        # must key the compiled-agent cache to avoid leaking one automation's
+        # image model into another with the same config_id/search_space.
+        image_generation_config_id_override,
     )
     return await get_cache().get_or_build(cache_key, builder=_build)
 
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/factory.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/factory.py
index 8451b3b7d..44529d243 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/factory.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/runtime/factory.py
@@ -62,8 +62,14 @@ async def create_multi_agent_chat_deep_agent(
     mentioned_document_ids: list[int] | None = None,
     anon_session_id: str | None = None,
     filesystem_selection: FilesystemSelection | None = None,
+    image_generation_config_id: int | None = None,
 ):
-    """Deep agent with SurfSense tools/middleware; registry route subagents behind ``task`` when enabled."""
+    """Deep agent with SurfSense tools/middleware; registry route subagents behind ``task`` when enabled.
+
+    ``image_generation_config_id`` overrides the search space's image model for
+    this invocation (used by automations to run on their captured model). When
+    ``None``, the ``generate_image`` tool resolves the live search-space pref.
+    """
     _t_agent_total = time.perf_counter()
 
     apply_litellm_prompt_caching(llm, agent_config=agent_config, thread_id=thread_id)
@@ -129,6 +135,9 @@ async def create_multi_agent_chat_deep_agent(
         "available_document_types": available_document_types,
         "max_input_tokens": _max_input_tokens,
         "llm": llm,
+        # Per-invocation image model override (automations run on their captured
+        # model). Reaches the generate_image subagent tool via subagent_dependencies.
+        "image_generation_config_id_override": image_generation_config_id,
     }
 
     _t0 = time.perf_counter()
@@ -285,6 +294,7 @@ async def create_multi_agent_chat_deep_agent(
         mcp_tools_by_agent=mcp_tools_by_agent,
         disabled_tools=disabled_tools,
         config_id=config_id,
+        image_generation_config_id_override=image_generation_config_id,
     )
     _perf_log.info(
         "[create_agent] Middleware stack + graph compiled in %.3fs",
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/citations/on.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/citations/on.md
index e61a0bffb..2abd95d5a 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/citations/on.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/citations/on.md
@@ -4,8 +4,8 @@ never invent ids you didn't see. Citation ids are resolved by exact-match
 lookup; a wrong id silently breaks the link, so when in doubt, omit.
 
 ### Channel A — chunk blocks injected this turn
-When `search_surfsense_docs` or `web_search` returns `<document>` /
-`<chunk id='…'>` blocks in this turn:
+When `web_search` returns `<document>` / `<chunk id='…'>` blocks in this
+turn:
 
 1. For each factual statement taken from those chunks, add
    `[citation:chunk_id]` using the **exact** id from a visible
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/private.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/private.md
index 71c86be40..8f2bfca4e 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/private.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/private.md
@@ -20,8 +20,8 @@ it to resolve paths the user describes in natural language ("my Q2 roadmap",
 delegating to a specialist.
 
 `<document>` and `<chunk id='…'>` blocks are chunked indexed content returned
-by KB search (from `search_surfsense_docs`, or backing `<priority_documents>`).
-Each chunk carries a stable `id` attribute.
+by KB search (backing `<priority_documents>`). Each chunk carries a stable
+`id` attribute.
 
 If a block doesn't appear this turn, work from the conversation alone.
 </dynamic_context>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/team.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/team.md
index 592c2ed9c..a5892c23a 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/team.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/dynamic_context/team.md
@@ -20,8 +20,8 @@ week's planning notes") into concrete document references before delegating
 to a specialist.
 
 `<document>` and `<chunk id='…'>` blocks are chunked indexed content returned
-by KB search (from `search_surfsense_docs`, or backing `<priority_documents>`).
-Each chunk carries a stable `id` attribute.
+by KB search (backing `<priority_documents>`). Each chunk carries a stable
+`id` attribute.
 
 If a block doesn't appear this turn, work from the conversation alone.
 </dynamic_context>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/kb_first.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/kb_first.md
index f06a52c1d..80fa4bf8f 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/kb_first.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/kb_first.md
@@ -1,19 +1,21 @@
 <knowledge_base_first>
 CRITICAL — ground factual answers in what you actually receive this turn:
 - injected workspace context (see `<dynamic_context>`),
-- results from your own tool calls (`search_surfsense_docs`, `web_search`,
-  `scrape_webpage`),
+- results from your own tool calls (`web_search`, `scrape_webpage`),
 - or substantive summaries returned by a `task` specialist you invoked.
 
 Do **not** answer factual or informational questions from general knowledge
 unless the user explicitly authorises it after you say you couldn't find
 enough in those sources. The flow when nothing is found:
 
-1. Say you couldn't find enough in their workspace, docs, or tool output.
+1. Say you couldn't find enough in their workspace or tool output.
 2. Ask: *"Would you like me to answer from my general knowledge instead?"*
 3. Only answer from general knowledge after a clear yes.
 
 This rule does NOT apply to: casual conversation · meta-questions about
 SurfSense ("what can you do?") · formatting or analysis of content already
 in chat · clear rewrite/edit instructions · lightweight web research.
+
+For "how do I use SurfSense" / product-documentation questions, point the
+user to https://www.surfsense.com/docs.
 </knowledge_base_first>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/anthropic.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/anthropic.md
index 89154c443..d852f5955 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/anthropic.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/anthropic.md
@@ -5,7 +5,7 @@ Structured reasoning:
 - For non-trivial work, `<thinking>` / short `<plan>` before tool calls is fine.
 
 Professional objectivity:
-- Accuracy over flattery; verify with **search_surfsense_docs**, **web_search**, **scrape_webpage**, or **task** when unsure — don’t invent connector access.
+- Accuracy over flattery; verify with **web_search**, **scrape_webpage**, or **task** when unsure — don’t invent connector access.
 
 Task management:
 - For 3+ steps, use todo tooling; update statuses promptly.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/deepseek.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/deepseek.md
index 4254e9ed5..01d56999f 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/deepseek.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/deepseek.md
@@ -13,6 +13,6 @@ Attribution:
 
 Tool calls:
 - Parallelise independent calls.
-- Prefer **search_surfsense_docs** for SurfSense docs/product questions before **web_search** when that fits the ask.
+- For SurfSense docs/product questions, point the user to https://www.surfsense.com/docs.
 - Don’t invent paths, chunk ids, or URLs — only values from tools or the user.
 </provider_hints>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/google.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/google.md
index dc5073538..32ed959c1 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/google.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/google.md
@@ -7,7 +7,7 @@ Output style:
 - GitHub-flavoured Markdown; monospace-friendly.
 
 Workflow (Understand → Plan → Act → Verify):
-1. **Understand:** parse the ask; use **search_surfsense_docs** / injected workspace context before guessing.
+1. **Understand:** parse the ask; use injected workspace context before guessing.
 2. **Plan:** for multi-step work, a short plan first.
 3. **Act:** only with tools you actually have on this agent (see `<tools>` and `<tool_routing>`). Connector work → **task**.
 4. **Verify:** re-read or re-search only when it materially reduces risk.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/openai_classic.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/openai_classic.md
index 7ff3ec912..8596c42cd 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/openai_classic.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/providers/openai_classic.md
@@ -15,6 +15,7 @@ Output style:
 
 Tool calls:
 - Parallelise independent calls in one turn.
-- Prefer **search_surfsense_docs** for SurfSense-product questions, **web_search** / **scrape_webpage**
-  for fresh public facts; integrations and heavy workflows → **task**.
+- For SurfSense-product questions, point the user to https://www.surfsense.com/docs;
+  use **web_search** / **scrape_webpage** for fresh public facts; integrations and
+  heavy workflows → **task**.
 </provider_hints>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/routing.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/routing.md
index 4e27381d3..28cf0ac63 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/routing.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/routing.md
@@ -3,10 +3,7 @@ You have two execution channels. Pick the one that owns the work — never
 simulate one with the other.
 
 ### 1. Direct tools (you call them yourself)
-- `search_surfsense_docs` — SurfSense product docs (setup, configuration,
-  connector docs, feature behavior).
-- `web_search` — search the public web (anything outside SurfSense docs and
-  the workspace KB).
+- `web_search` — search the public web (anything outside the workspace KB).
 - `scrape_webpage` — fetch the body of a specific public URL.
 - `update_memory` — curate persistent memory (see `<memory_protocol>`).
 - `write_todos` — maintain a structured plan when the turn series spans
@@ -14,6 +11,10 @@ simulate one with the other.
   `in_progress` **before** the `task` call that handles it, `completed`
   once the call returns. Skip for single-step requests.
 
+**Questions about how to use SurfSense itself** (setup, configuration,
+connectors, feature behavior) — point the user to the documentation:
+https://www.surfsense.com/docs. There is no docs-search tool; give the link.
+
 **You have NO filesystem tools.** Any read, write, edit, move, rename, or
 search inside the user's workspace goes through `task(knowledge_base, …)` —
 never via `write_file`, `ls`, or any direct file operation.
@@ -33,6 +34,15 @@ Rules for `task`:
     - Neither's prompt references the other's output, and
     - They target different specialists, OR the same specialist with
       non-overlapping scopes (e.g. reading two unrelated paths).
+- **Batch shape for many-shot fanout.** When a single user request expands
+  to **3 or more independent specialist calls** (e.g. "create five issues
+  from this list"), prefer the batch shape:
+  `task(tasks=[{description, subagent_type}, ...])`. The runtime fans them
+  out concurrently under a small semaphore and aggregates one ToolMessage
+  per child prefixed with `[task <index>]`. Batched children **do not
+  support human-in-the-loop interrupts** — if one needs approval it surfaces
+  an error and you re-dispatch it as a single (non-batched) `task(...)` call.
+  For 1–2 independent calls, just emit two separate `task(...)` calls.
 - **Serialise dependent work across turns.** If one specialist's output
   must inform another's input (e.g. "find the roadmap in my KB, then
   email it to Maya"), invoke them on consecutive turns — first finishes,
@@ -93,4 +103,65 @@ user: "Find my Q2 roadmap doc in the KB and email a summary to Maya."
     task(gmail, "Send an email to Maya with subject 'Q2 roadmap summary'
       and the following body: <summary returned by knowledge_base>.")
 </example>
+
+<example>
+user: "Create issues in Linear for each of these five bugs: <list>"
+→ Many-shot independent fanout — use the batch shape:
+    task(tasks=[
+      {subagent_type: "linear", description: "Create a Linear issue titled
+        '<bug 1 title>' with body '<bug 1 body>'. Return the issue URL."},
+      {subagent_type: "linear", description: "Create a Linear issue titled
+        '<bug 2 title>' with body '<bug 2 body>'. Return the issue URL."},
+      {subagent_type: "linear", description: "Create a Linear issue titled
+        '<bug 3 title>' with body '<bug 3 body>'. Return the issue URL."},
+      {subagent_type: "linear", description: "Create a Linear issue titled
+        '<bug 4 title>' with body '<bug 4 body>'. Return the issue URL."},
+      {subagent_type: "linear", description: "Create a Linear issue titled
+        '<bug 5 title>' with body '<bug 5 body>'. Return the issue URL."},
+    ])
+  Read back the `[task 0]`…`[task 4]` blocks in the combined ToolMessage and
+  verify each via its Receipt's `verifiable_url` per the `<verification>`
+  teaching before confirming to the user.
+</example>
+
+<example>
+user: "Make a 30-second podcast of this conversation."
+→ Celery-backed deliverable. The `deliverables` subagent dispatches the
+  Celery job and then **waits for it to finish** before returning. The
+  call may take 10-60 seconds (or longer for video presentations) —
+  that is intentional, not a hang. You always get back one of two
+  Receipt shapes:
+    task(deliverables, "Generate a podcast titled '<title>' from the
+      following content. Use a 30-second style brief. Return the podcast
+      id and title.\n\n<source content>")
+  Outcomes:
+    - **`status="success"`**: the audio is saved. Tell the user the
+      podcast is **ready** and quote the `external_id` / `preview` so
+      they can find it in the podcast panel.
+    - **`status="failed"`**: surface the Receipt's `error` field
+      verbatim. Do NOT silently re-dispatch — the backend already tried
+      and reported a real error.
+  Same two-way pattern applies to video presentations (which take
+  longer to render, but still return a terminal status). If a
+  `task(deliverables, ...)` invocation itself times out at the subagent
+  layer (separate from the Receipt), that's an operator-side problem
+  with the subagent invoke timeout, not a deliverable failure — pass
+  the message through and stop.
+</example>
+
+<example>
+user: "Post the launch announcement to #general and let me know when it's up."
+→ Mutating subagent + user wants external confirmation. Apply the
+  `<verification>` teaching: the slack subagent's reply is a self-report;
+  check its `evidence.receipts` for a Receipt with `status="success"` and
+  a `verifiable_url`, then fetch that URL to confirm before reporting back.
+  This turn:
+    task(slack, "Post '<launch announcement text>' to #general.
+      Return the message permalink.")
+  Next turn (with the receipt's `verifiable_url` in hand):
+    scrape_webpage(url=<verifiable_url from slack receipt>)
+    → confirm the post is live, then tell the user it's up with the URL.
+  If the slack reply has NO Receipt with `status="success"`, treat it as a
+  silent failure: surface the error verbatim, do not retry.
+</example>
 </routing>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/__init__.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/__init__.py
new file mode 100644
index 000000000..30699a4a1
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/__init__.py
@@ -0,0 +1 @@
+"""``create_automation`` — description + few-shot examples."""
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/description.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/description.md
new file mode 100644
index 000000000..ce6562c97
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/description.md
@@ -0,0 +1,34 @@
+- `create_automation` — Draft and author a new automation. You describe the
+  user's intent; a focused drafter inside the tool turns it into the full
+  automation JSON; the user sees a preview on an approval card and chooses
+  approve or reject. All three phases happen in a single tool call.
+  - Call when the user wants SurfSense to do something on its own: anything
+    recurring or scheduled ("every morning…", "each Monday…", "weekly
+    recap…").
+  - Args:
+    - `intent` (string): restate the user's request **concretely**, in one
+      paragraph. Cover three things:
+      - **What** should run (the action: summarize, recap, post, draft, …).
+      - **When** it should run (schedule + timezone if the user mentioned one;
+        otherwise leave the timezone for the drafter to default to UTC).
+      - **Static values** the automation needs (folder ids, channel names,
+        project keys, parent page ids, …) — list them with their values.
+        If the user did NOT supply one the automation needs, say so
+        explicitly ("the Notion parent page id was not specified") so the
+        drafter leaves a placeholder.
+  - Do NOT prompt the user to confirm before calling — the approval card
+    IS the confirmation. The card shows a structured preview plus the raw
+    JSON; it offers approve/reject only. If the user wants changes after
+    seeing the draft, they reply in chat and you call this tool again with
+    a refined `intent` — that's the edit path.
+  - Returns:
+    - `{status: "saved", automation_id, name}` — confirm briefly to the
+      user ("Saved as automation #N — runs <when>."). Don't dump JSON back.
+    - `{status: "rejected", message}` — the user declined on the card.
+      Acknowledge once ("Understood, I didn't create it.") and stop. Do
+      NOT retry or pitch variants without a fresh user request.
+    - `{status: "invalid", issues, raw?}` — drafting/validation failed
+      before the card was shown. Read the issues, refine your `intent`
+      with the missing details, call again.
+    - `{status: "error", message}` — surface the message verbatim and
+      offer to retry.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/example.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/example.md
new file mode 100644
index 000000000..19311bef0
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/create_automation/example.md
@@ -0,0 +1,13 @@
+<example>
+user: "Every weekday at 9am, summarize new documents in folder 12 and post the summary to Slack channel #daily-digest."
+→ create_automation(intent="Every weekday at 09:00 UTC, summarize documents added to folder_id=12 since the last run, then post the summary to Slack channel '#daily-digest'. Static inputs: folder_id=12, slack_channel='#daily-digest'.")
+tool returns: {"status": "saved", "automation_id": 42, "name": "Daily folder 12 digest"}
+(Reply briefly: "Saved as automation #42 — runs weekdays at 9am UTC.")
+</example>
+
+<example>
+user: "Once a week on Mondays at 7am Paris time, draft a Notion page recapping last week's Jira tickets in project CORE."
+→ create_automation(intent="Every Monday at 07:00 Europe/Paris, read last week's Jira issues in project CORE, then draft a Notion page recapping them. Static inputs: jira_project_key='CORE'. The user did NOT specify which Notion page the recap should sit under — leave notion_parent_page_id as a placeholder.")
+tool returns: {"status": "saved", "automation_id": 51, "name": "Weekly CORE Jira recap"}
+(Reply: "Saved as automation #51. I left the Notion parent page id as a placeholder — set it on the automation before next Monday.")
+</example>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/__init__.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/__init__.py
deleted file mode 100644
index c2cda318e..000000000
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/__init__.py
+++ /dev/null
@@ -1 +0,0 @@
-"""``search_surfsense_docs`` — description + few-shot examples."""
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/description.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/description.md
deleted file mode 100644
index 256d3f3a4..000000000
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/description.md
+++ /dev/null
@@ -1,10 +0,0 @@
-- `search_surfsense_docs` — Search official SurfSense documentation (product
-  help).
-  - Use when the user asks how SurfSense itself works — setup, configuration,
-    connector documentation, feature behavior, anything covered in the
-    product docs.
-  - Not a substitute for `task` when the user wants actions inside a
-    connected service (Gmail, Slack, Jira, Notion, etc.).
-  - Args: `query`, `top_k` (default 10).
-  - Returns doc excerpts; chunk ids may appear for attribution — see
-    `<citations>` for the contract.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/example.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/example.md
deleted file mode 100644
index d53ad8c91..000000000
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/search_surfsense_docs/example.md
+++ /dev/null
@@ -1,15 +0,0 @@
-<example>
-user: "How do I install SurfSense?"
-→ search_surfsense_docs(query="installation setup")
-</example>
-
-<example>
-user: "What connectors does SurfSense support?"
-→ search_surfsense_docs(query="available connectors integrations")
-</example>
-
-<example>
-user: "How do I set up the Notion connector?"
-→ search_surfsense_docs(query="Notion connector setup configuration")
-(Changing data inside Notion itself → `task(notion, …)`, not this tool.)
-</example>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/task/description.md b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/task/description.md
index 2f47d4df1..d6a81d8d3 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/task/description.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/system_prompt/prompts/tools/task/description.md
@@ -4,12 +4,69 @@
     `<specialists>` for the live roster.
   - Each subagent runs in isolation with its own tool stack and context,
     and returns a single synthesized result.
-  - Args:
+  - Args (single mode):
     - `subagent_type` — name of the specialist to invoke (must match an
       entry in `<specialists>`).
     - `description` — the FULL task prompt. The specialist cannot see this
       thread, so include all context and constraints, plus what you need
       back. The specialist will respond in its own format — don't dictate
       one.
+  - Args (batch mode):
+    - `tasks` — array of `{description, subagent_type}` objects to fan out
+      concurrently. Mutually exclusive with single-mode args. Use when a
+      single request expands to **3 or more independent specialist calls**
+      (e.g. "create five issues from this list"). Children run under a
+      small concurrency cap and the runtime returns one ToolMessage block
+      per child, prefixed with `[task <index>]`. **Batched children do not
+      support human-in-the-loop interrupts** — if any child needs approval
+      it surfaces an error and you must re-dispatch that single task as a
+      non-batched `task(...)` call.
   - Routing rules (when to call, how often, how to scope) live in
     `<routing>`.
+  <verification>
+  A subagent's natural-language reply is a **self-report**, not proof. The
+  specialist might claim a Slack message was posted, a Jira issue was
+  created, or a report was generated even when the underlying tool call
+  failed silently or was rate-limited. Treat success language ("Done",
+  "Posted to #general", "Created ENG-42") as a hypothesis, not a fact.
+
+  Two ground-truth signals are always available to verify a mutating
+  subagent's claim:
+
+  1. **`state['receipts']`** — every mutating tool emits a structured
+     `Receipt` (route, type, operation, status, external_id,
+     verifiable_url, preview) into this append-only list. The supervisor
+     never sees the raw list directly, but each subagent's
+     `<output_contract>` carries the matching Receipt(s) under
+     `evidence.receipts`. If a subagent reports success with NO matching
+     Receipt at `status="success"` (or `"pending"` for async deliverables
+     like podcasts/videos), the operation did not happen — treat as
+     failure and surface that to the user verbatim, do not retry blindly.
+
+  2. **`scrape_webpage`** — when a Receipt carries a `verifiable_url`
+     (Notion page URL, Slack permalink, Jira issue URL, Linear identifier
+     URL, etc.), you can fetch that URL and confirm the operation
+     externally. Use this for high-stakes mutations the user explicitly
+     called out (e.g. "send the launch email to the whole team") or when
+     the subagent's self-report contradicts what the user expected.
+
+  **Receipt status semantics — read carefully:**
+
+  - `status="success"`: the mutation already committed in the backend.
+    If a `verifiable_url` is present and the request was high-stakes,
+    you may `scrape_webpage` it to externally confirm. Otherwise trust
+    the Receipt and tell the user it is done. Celery-backed deliverables
+    (podcasts, video presentations) also land here — the subagent
+    already waited for the worker to finish, so a `success` Receipt
+    means the artefact really is saved.
+  - `status="failed"`: a Receipt with this status carries the backend's
+    error in its `error` field. Surface that text verbatim to the user;
+    re-routing or retrying is only appropriate when the user explicitly
+    asks for it.
+  - `status="pending"`: rare today — current mutating tools wait for
+    their backend before returning. If you ever do see a pending
+    Receipt, tell the user the work has been **kicked off** (quote the
+    `external_id` / `preview` so they can find it later), do not
+    `scrape_webpage` it, and do not re-dispatch the same
+    `task(...)` call hoping it will be done "this time".
+  </verification>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/__init__.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/__init__.py
new file mode 100644
index 000000000..d47bbac7e
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/__init__.py
@@ -0,0 +1,7 @@
+"""``create_automation`` — author + persist an automation via a HITL card."""
+
+from __future__ import annotations
+
+from .create import create_create_automation_tool
+
+__all__ = ["create_create_automation_tool"]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/create.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/create.py
new file mode 100644
index 000000000..62d39fcf2
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/create.py
@@ -0,0 +1,214 @@
+"""``create_automation`` — NL intent → drafted JSON → HITL approval card → persisted.
+
+Single tool that:
+
+1. Drafts a structured automation from the user's intent via a focused sub-LLM
+   (system prompt in :mod:`.prompt`).
+2. Surfaces the validated draft in a HITL approval card
+   (``action_type="automation_create"``).
+3. On approval, validates the (possibly edited) payload again and persists
+   it via :class:`AutomationService`.
+
+The main agent only restates the user's request as a single ``intent`` string.
+The drafting sub-LLM owns the JSON shape; the HITL card is the user's review.
+"""
+
+from __future__ import annotations
+
+import json
+import logging
+import re
+from typing import Any
+from uuid import UUID
+
+from fastapi import HTTPException
+from langchain.tools import ToolRuntime
+from langchain_core.messages import HumanMessage
+from langchain_core.tools import tool
+from pydantic import ValidationError
+
+from app.agents.multi_agent_chat.subagents.shared.hitl.approvals.self_gated import (
+    request_approval,
+)
+from app.automations.schemas.api import AutomationCreate
+from app.automations.services.automation import AutomationService
+from app.db import User, async_session_maker
+from app.utils.content_utils import extract_text_content
+
+from .prompt import build_draft_prompt
+
+logger = logging.getLogger(__name__)
+
+_JSON_FENCE = re.compile(r"```(?:json)?\s*(.*?)\s*```", re.DOTALL)
+
+
+def create_create_automation_tool(
+    *,
+    search_space_id: int,
+    user_id: str | UUID,
+    llm: Any,
+):
+    """Factory for the ``create_automation`` tool.
+
+    ``search_space_id`` is injected from the chat session (the model never
+    has to guess it). ``llm`` is the drafting sub-model — we reuse the main
+    agent's LLM and tag the call so it's identifiable in traces. A fresh
+    ``AsyncSession`` is opened per call to avoid stale sessions on
+    compiled-agent cache hits (same pattern as the Notion / memory tools).
+    """
+    uid = UUID(user_id) if isinstance(user_id, str) else user_id
+
+    @tool
+    async def create_automation(intent: str, runtime: ToolRuntime) -> dict[str, Any]:
+        """Draft + save an automation from a natural-language intent.
+
+        Use this when the user wants SurfSense to do something on its own
+        on a schedule (e.g. "every morning summarize folder 12 to Slack").
+        Restate the user's request as ONE concrete ``intent`` string: what
+        should run, when, and which static values (folder ids, channel
+        names, …) it needs.
+
+        The tool drafts the full automation JSON internally, shows the user
+        a structured preview on an approval card, and persists on approval.
+        The card supports approve/reject only — if the user wants edits
+        after seeing the draft, they say so in chat and you call this tool
+        again with a refined intent. Do NOT prompt the user to confirm
+        before calling — the card IS the confirmation.
+
+        Args:
+            intent: Concrete restatement of the user's request. Include
+                the schedule (with timezone if mentioned), the action to
+                take, and any static values. Example: "Every weekday at
+                09:00 UTC, summarize new docs added to folder_id=12 since
+                the last run, then post the summary to Slack channel
+                '#daily-digest'."
+
+        Returns:
+            ``{"status": "saved", "automation_id": int, "name": str}`` on
+            approval + save.
+            ``{"status": "rejected", "message": "..."}`` when the user
+            declines on the card.
+            ``{"status": "invalid", "issues": [...], "raw": ...}`` when
+            the drafter produced output that did not validate (call again
+            with a more precise intent).
+            ``{"status": "error", "message": "..."}`` on drafter or
+            persistence failure.
+
+            IMPORTANT: when status is ``"rejected"`` the user explicitly
+            declined. Acknowledge once and stop — do NOT retry or pitch
+            variants without a fresh user request.
+        """
+        # Models are chosen per-automation on the approval card (premium/BYOK
+        # selectors) and validated when persisted by ``AutomationService.create``
+        # — so there's no fail-fast search-space eligibility gate here. The
+        # search space's current chat/role model selection no longer constrains
+        # whether an automation can be drafted or saved.
+
+        # --- 1. Draft via sub-LLM ---
+        prompt = build_draft_prompt(search_space_id=search_space_id, intent=intent)
+        try:
+            response = await llm.ainvoke(
+                [HumanMessage(content=prompt)],
+                config={"tags": ["surfsense:internal", "automation-draft"]},
+            )
+        except Exception as exc:
+            logger.exception("create_automation drafting LLM call failed")
+            return {"status": "error", "message": f"drafting failed: {exc}"}
+
+        raw_text = extract_text_content(response.content).strip()
+        draft = _extract_json(raw_text)
+        if draft is None:
+            return {
+                "status": "invalid",
+                "issues": ["model output was not parseable JSON"],
+                "raw": raw_text,
+            }
+
+        # search_space_id is injected here so the sub-LLM never has to guess.
+        draft["search_space_id"] = search_space_id
+        try:
+            validated_draft = AutomationCreate.model_validate(draft)
+        except ValidationError as exc:
+            return {
+                "status": "invalid",
+                "issues": _format_validation_issues(exc),
+                "raw": draft,
+            }
+
+        # --- 2. HITL approval card ---
+        try:
+            card_params = validated_draft.model_dump(mode="json", by_alias=True)
+            # search_space_id is session-scoped, not user-editable.
+            card_params.pop("search_space_id", None)
+
+            result = request_approval(
+                action_type="automation_create",
+                tool_name="create_automation",
+                params=card_params,
+                context={"search_space_id": search_space_id},
+                tool_call_id=runtime.tool_call_id,
+            )
+
+            if result.rejected:
+                return {
+                    "status": "rejected",
+                    "message": "User declined. Do not retry or suggest alternatives.",
+                }
+
+            # --- 3. Persist (re-validate in case the user edited) ---
+            final_payload = {**result.params, "search_space_id": search_space_id}
+            try:
+                final_validated = AutomationCreate.model_validate(final_payload)
+            except ValidationError as exc:
+                return {
+                    "status": "invalid",
+                    "issues": _format_validation_issues(exc),
+                }
+
+            async with async_session_maker() as session:
+                user = await session.get(User, uid)
+                if user is None:
+                    return {
+                        "status": "error",
+                        "message": "user not found in this session",
+                    }
+                service = AutomationService(session=session, user=user)
+                created = await service.create(final_validated)
+                return {
+                    "status": "saved",
+                    "automation_id": created.id,
+                    "name": created.name,
+                }
+
+        except HTTPException as exc:
+            return {"status": "error", "message": exc.detail}
+        except Exception as exc:
+            from langgraph.errors import GraphInterrupt
+
+            if isinstance(exc, GraphInterrupt):
+                raise
+            logger.exception("create_automation failed")
+            return {"status": "error", "message": f"persistence failed: {exc}"}
+
+    return create_automation
+
+
+def _extract_json(text: str) -> dict[str, Any] | None:
+    """Pull a JSON object out of the model response, tolerating ``` fences."""
+    if not text:
+        return None
+    candidate = text
+    fence_match = _JSON_FENCE.search(text)
+    if fence_match:
+        candidate = fence_match.group(1)
+    try:
+        parsed = json.loads(candidate)
+    except json.JSONDecodeError:
+        return None
+    return parsed if isinstance(parsed, dict) else None
+
+
+def _format_validation_issues(exc: ValidationError) -> list[str]:
+    return [
+        f"{'.'.join(str(p) for p in err['loc'])}: {err['msg']}" for err in exc.errors()
+    ]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/prompt.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/prompt.py
new file mode 100644
index 000000000..09854aa2e
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/automation/prompt.py
@@ -0,0 +1,178 @@
+"""System prompt for the drafting sub-LLM inside ``create_automation``.
+
+Converts a natural-language ``intent`` into a structured ``AutomationCreate``
+JSON object. That object becomes the payload the HITL approval card surfaces.
+
+Scope split:
+    Real automation JSONs live here — this is the graph that *generates*
+    the JSON. The main agent's prompt fragments (``description.md`` /
+    ``example.md``) only carry intent-string examples; the main agent
+    never sees the schema.
+
+Layout:
+    The prompt is concatenated from four format-safe pieces. ``_HEADER`` /
+    ``_FOOTER`` carry the only ``str.format`` placeholders; ``_SCHEMA`` and
+    ``_FEW_SHOTS`` are plain strings so their JSON literals (and the
+    ``{{ inputs.X }}`` Jinja references in queries) can stay readable
+    without doubled-brace escaping.
+
+Catalog handling:
+    v1 hard-codes the action/trigger catalog (one action, one trigger).
+    When new types ship, swap the inline lines for a render-time pull
+    from ``app.automations.actions`` / ``app.automations.triggers`` via
+    lazy imports inside :func:`build_draft_prompt` so this module never
+    participates in the ``multi_agent_chat`` import cycle.
+"""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+_HEADER = """\
+You are the SurfSense automation drafter. Convert the user intent below
+into a SINGLE JSON object matching the AutomationCreate schema. Output
+ONLY that JSON object — no prose, no markdown fence, no commentary.
+
+Current UTC time (for cron context): {now}
+Target search_space_id: {search_space_id}
+"""
+
+
+_SCHEMA = """
+Required JSON shape:
+{
+  "name": "<1-200 char identifier>",
+  "description": "<one-liner or null>",
+  "definition": {
+    "schema_version": "1.0",
+    "name": "<same as outer name>",
+    "goal": "<one sentence>",
+    "plan": [
+      {
+        "step_id": "<slug>",
+        "action": "agent_task",
+        "params": {
+          "query": "<Jinja string referencing {{ inputs.X }}>",
+          "auto_approve_all": true
+        }
+      }
+    ],
+    "metadata": {"tags": ["..."]}
+  },
+  "triggers": [
+    {
+      "type": "schedule",
+      "params": {"cron": "<5-field cron>", "timezone": "<IANA tz, default UTC>"},
+      "static_inputs": {"<key>": <value>, ...},
+      "enabled": true
+    }
+  ]
+}
+
+v1 catalog (only these are valid):
+- Actions: agent_task — params: query (string, Jinja), auto_approve_all (bool).
+- Triggers: schedule — params: cron (5-field), timezone (IANA, e.g. "UTC",
+  "Europe/Paris"). Has static_inputs (object).
+
+Conventions:
+- Whatever the plan references via {{ inputs.X }} MUST appear either in a
+  trigger's static_inputs OR in definition.inputs.schema_.properties so the
+  executor can resolve it at fire time.
+- static_inputs carries values that stay the same across every fire
+  (folder ids, channel names, project keys, parent page ids). Put them on
+  the trigger that supplies them, not in the plan.
+- If the user did NOT supply a value the plan needs, put "REPLACE_ME" in
+  static_inputs. Do NOT invent ids, channels, or paths.
+- Cron is 5-field (minute hour day-of-month month day-of-week). Use the
+  timezone the user mentioned; default "UTC" when unspecified.
+- Templating variables available at fire time: inputs.* (merged
+  static_inputs + runtime), inputs.fired_at, inputs.last_fired_at.
+"""
+
+
+_FEW_SHOTS = """
+Few-shot examples (intent → JSON output):
+
+### Example 1 — schedule with all static values supplied
+intent: "Every weekday at 09:00 UTC, summarize documents added to folder_id=12 since the last run, then post the summary to Slack channel '#daily-digest'. Static inputs: folder_id=12, slack_channel='#daily-digest'."
+output:
+{
+  "name": "Daily folder 12 digest",
+  "description": "Weekday 09:00 UTC summary of folder 12 documents posted to #daily-digest",
+  "definition": {
+    "schema_version": "1.0",
+    "name": "Daily folder 12 digest",
+    "goal": "Summarize new docs in folder 12 since the last run and post to #daily-digest",
+    "plan": [
+      {
+        "step_id": "summarize_and_post",
+        "action": "agent_task",
+        "params": {
+          "query": "Summarize documents added to folder {{ inputs.folder_id }} since {{ inputs.last_fired_at or 'yesterday' }}, then send the summary to Slack channel {{ inputs.slack_channel }}.",
+          "auto_approve_all": true
+        }
+      }
+    ],
+    "metadata": {"tags": ["daily", "digest", "slack"]}
+  },
+  "triggers": [
+    {
+      "type": "schedule",
+      "params": {"cron": "0 9 * * 1-5", "timezone": "UTC"},
+      "static_inputs": {"folder_id": 12, "slack_channel": "#daily-digest"},
+      "enabled": true
+    }
+  ]
+}
+
+### Example 2 — schedule with a missing value (REPLACE_ME placeholder)
+intent: "Every Monday at 07:00 Europe/Paris, read last week's Jira issues in project CORE, then draft a Notion page recapping them. Static inputs: jira_project_key='CORE'. The user did NOT specify the Notion parent page id — leave it as a placeholder."
+output:
+{
+  "name": "Weekly CORE Jira recap",
+  "description": "Monday 07:00 Europe/Paris recap of last week's CORE Jira issues, drafted to Notion",
+  "definition": {
+    "schema_version": "1.0",
+    "name": "Weekly CORE Jira recap",
+    "goal": "Recap last week's CORE Jira issues into a Notion page",
+    "plan": [
+      {
+        "step_id": "recap",
+        "action": "agent_task",
+        "params": {
+          "query": "List Jira issues in project {{ inputs.jira_project_key }} updated in the 7 days before {{ inputs.fired_at }}. Draft a Notion page under parent id {{ inputs.notion_parent_page_id }} titled 'CORE recap — week of {{ inputs.fired_at }}'.",
+          "auto_approve_all": true
+        }
+      }
+    ],
+    "metadata": {"tags": ["weekly", "recap", "jira", "notion"]}
+  },
+  "triggers": [
+    {
+      "type": "schedule",
+      "params": {"cron": "0 7 * * 1", "timezone": "Europe/Paris"},
+      "static_inputs": {"jira_project_key": "CORE", "notion_parent_page_id": "REPLACE_ME"},
+      "enabled": true
+    }
+  ]
+}
+"""
+
+
+_FOOTER = """
+User intent:
+{intent}
+"""
+
+
+def build_draft_prompt(*, search_space_id: int, intent: str) -> str:
+    """Render the drafting sub-LLM system prompt for the given intent."""
+    return (
+        _HEADER.format(
+            now=datetime.now(UTC).isoformat(timespec="seconds"),
+            search_space_id=search_space_id,
+        )
+        + _SCHEMA
+        + _FEW_SHOTS
+        + _FOOTER.format(intent=intent.strip())
+    )
diff --git a/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/index.py b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/index.py
index 5d309261c..70fb42c0d 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/index.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/main_agent/tools/index.py
@@ -6,10 +6,10 @@ Connector integrations, MCP, deliverables, etc. are delegated via ``task`` subag
 from __future__ import annotations
 
 MAIN_AGENT_SURFSENSE_TOOL_NAMES_ORDERED: tuple[str, ...] = (
-    "search_surfsense_docs",
     "web_search",
     "scrape_webpage",
     "update_memory",
+    "create_automation",
 )
 
 MAIN_AGENT_SURFSENSE_TOOL_NAMES: frozenset[str] = frozenset(
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/constants.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/constants.py
index 6c4519f3a..e11f3c3ec 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/constants.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/constants.py
@@ -2,6 +2,8 @@
 
 from __future__ import annotations
 
+import os
+
 # Mirror of deepagents.middleware.subagents._EXCLUDED_STATE_KEYS.
 EXCLUDED_STATE_KEYS = frozenset(
     {
@@ -16,3 +18,72 @@ EXCLUDED_STATE_KEYS = frozenset(
 # Match the parent graph's budget; the LangGraph default of 25 trips on
 # multi-step subagent runs.
 DEFAULT_SUBAGENT_RECURSION_LIMIT = 10_000
+
+
+def _read_timeout_env(name: str, default: float) -> float:
+    """Parse ``name`` from the environment; fall back to ``default`` on bad values.
+
+    Kept as a free function so the module-level constants stay constants
+    after import; tests can monkeypatch this and re-evaluate via
+    ``importlib.reload`` if they need a different value mid-process.
+    """
+    raw = os.environ.get(name)
+    if not raw:
+        return default
+    try:
+        value = float(raw)
+    except (TypeError, ValueError):
+        return default
+    return value if value > 0 else default
+
+
+# Wall-clock budget for a single ``task(subagent, ...)`` invocation.
+# Subagents that run hot (image generation with slow vendors, KB writes
+# behind a sluggish embedder) can otherwise wedge the orchestrator until
+# the next checkpoint heartbeat. ``0`` disables the timeout entirely.
+DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS: float = _read_timeout_env(
+    "SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS",
+    default=300.0,
+)
+
+
+def _read_int_env(name: str, default: int) -> int:
+    raw = os.environ.get(name)
+    if not raw:
+        return default
+    try:
+        value = int(raw)
+    except (TypeError, ValueError):
+        return default
+    return value if value > 0 else default
+
+
+# Maximum number of children that ``task(..., tasks=[...])`` runs in
+# parallel via ``asyncio.gather`` + ``Semaphore``. Bounded so a runaway
+# fanout cannot starve unrelated subagents (each child still owns an
+# LLM call + DB session). Set ``SURFSENSE_TASK_BATCH_CONCURRENCY=1`` to
+# effectively serialise batches without changing the schema.
+DEFAULT_SUBAGENT_BATCH_CONCURRENCY: int = _read_int_env(
+    "SURFSENSE_TASK_BATCH_CONCURRENCY",
+    default=3,
+)
+
+# Max number of children in a single batched ``task`` call. Hard upper
+# bound is a safety net for prompt-injection / runaway loops; the orchestrator
+# rarely needs more than a handful of concurrent specialists.
+MAX_SUBAGENT_BATCH_SIZE: int = _read_int_env(
+    "SURFSENSE_TASK_BATCH_MAX_SIZE",
+    default=8,
+)
+
+
+# Soft threshold for per-turn cumulative ``task(...)`` invocations across
+# **all** subagents. Once the sum of ``state['billable_calls']`` values
+# crosses this number, the runtime appends a one-shot warning ToolMessage
+# instructing the orchestrator to wrap up the turn. Tunable so heavy-research
+# turns (which legitimately need 15+ specialist calls) don't trip the alarm
+# in production. Set to ``0`` to disable the warning entirely.
+DEFAULT_SUBAGENT_BILLABLE_THRESHOLD: int = _read_int_env(
+    "SURFSENSE_SUBAGENT_BILLABLE_THRESHOLD",
+    default=15,
+)
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/middleware.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/middleware.py
index 0119752c1..6cc71f252 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/middleware.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/middleware.py
@@ -16,6 +16,9 @@ from langchain.agents import create_agent
 from langchain.chat_models import init_chat_model
 from langgraph.types import Checkpointer
 
+from app.agents.multi_agent_chat.subagents.shared.spec import (
+    SURF_CONTEXT_HINT_PROVIDER_KEY,
+)
 from app.utils.perf import get_perf_logger
 
 from .task_tool import build_task_tool_with_parent_config
@@ -34,6 +37,7 @@ class SurfSenseCheckpointedSubAgentMiddleware(SubAgentMiddleware):
         subagents: list[SubAgent | CompiledSubAgent],
         system_prompt: str | None = TASK_SYSTEM_PROMPT,
         task_description: str | None = None,
+        search_space_id: int | None = None,
     ) -> None:
         self._surf_checkpointer = checkpointer
         super(SubAgentMiddleware, self).__init__()
@@ -43,8 +47,17 @@ class SurfSenseCheckpointedSubAgentMiddleware(SubAgentMiddleware):
             )
         self._backend = backend
         self._subagents = subagents
+        # Search-space id is captured at build time (the orchestrator runs in
+        # exactly one search space for its lifetime). The spawn-paused kill
+        # switch keys on it so an operator can quarantine one workspace
+        # without affecting the rest of the deployment.
+        self._search_space_id = search_space_id
         subagent_specs = self._surf_compile_subagent_graphs()
-        task_tool = build_task_tool_with_parent_config(subagent_specs, task_description)
+        task_tool = build_task_tool_with_parent_config(
+            subagent_specs,
+            task_description,
+            search_space_id=search_space_id,
+        )
         if system_prompt and subagent_specs:
             agents_desc = "\n".join(
                 f"- {s['name']}: {s['description']}" for s in subagent_specs
@@ -64,6 +77,10 @@ class SurfSenseCheckpointedSubAgentMiddleware(SubAgentMiddleware):
 
         for spec in self._subagents:
             spec_start = time.perf_counter()
+            # Provider may be ``None`` (no hint), in which case task_tool
+            # skips the prepend step. We forward the key unconditionally so
+            # the registry shape is uniform.
+            hint_provider = cast(dict, spec).get(SURF_CONTEXT_HINT_PROVIDER_KEY)
             if "runnable" in spec:
                 compiled = cast(CompiledSubAgent, spec)
                 specs.append(
@@ -71,6 +88,7 @@ class SurfSenseCheckpointedSubAgentMiddleware(SubAgentMiddleware):
                         "name": compiled["name"],
                         "description": compiled["description"],
                         "runnable": compiled["runnable"],
+                        SURF_CONTEXT_HINT_PROVIDER_KEY: hint_provider,
                     }
                 )
                 timings.append(
@@ -108,6 +126,7 @@ class SurfSenseCheckpointedSubAgentMiddleware(SubAgentMiddleware):
                     "name": spec["name"],
                     "description": spec["description"],
                     "runnable": runnable,
+                    SURF_CONTEXT_HINT_PROVIDER_KEY: hint_provider,
                 }
             )
             timings.append(
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/spawn_paused.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/spawn_paused.py
new file mode 100644
index 000000000..2c9e114e0
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/spawn_paused.py
@@ -0,0 +1,84 @@
+"""Per-search-space spawn-paused kill switch for the ``task`` boundary.
+
+When operators see a runaway loop, a vendor outage, or a billing event
+that requires immediate cessation of subagent traffic for a specific
+workspace, they flip a Redis flag and the ``task`` tool short-circuits
+without touching downstream services. The flag is **per-search-space**
+so one tenant's incident never silences the rest of the deployment.
+
+Flag key:    ``surfsense:spawn_paused:{search_space_id}``
+Flag value:  any string-truthy value (we read presence, not contents).
+TTL:         set by whoever toggles the flag — this module never expires
+             keys on its own, since "the flag is on" is itself the signal
+             that a human (or alert) needs to investigate.
+
+The check is best-effort: Redis errors are logged but do not block the
+``task`` invocation. Failing closed (block-on-redis-error) would let a
+single Redis blip take the whole orchestrator offline; failing open
+preserves availability and the alarm bells (rate-limits, cost spikes)
+will surface the underlying outage.
+"""
+
+from __future__ import annotations
+
+import contextlib
+import logging
+import os
+
+from app.config import config
+
+logger = logging.getLogger(__name__)
+
+
+# Operators can disable the check entirely (e.g. local dev without Redis)
+# by setting ``SURFSENSE_TASK_SPAWN_PAUSED_DISABLED=1``. Default is
+# enabled so production never relies on flipping an opt-out flag.
+_DISABLED = os.environ.get(
+    "SURFSENSE_TASK_SPAWN_PAUSED_DISABLED", ""
+).strip().lower() in {
+    "1",
+    "true",
+    "yes",
+    "on",
+}
+
+
+def _flag_key(search_space_id: int) -> str:
+    return f"surfsense:spawn_paused:{search_space_id}"
+
+
+async def is_spawn_paused(search_space_id: int | None) -> bool:
+    """Return ``True`` iff the workspace's spawn-paused flag is set in Redis.
+
+    A ``None`` search-space (e.g. dev paths that did not plumb the id
+    through yet) bypasses the check. So does a Redis outage — see module
+    docstring for the fail-open rationale.
+    """
+    if _DISABLED or search_space_id is None:
+        return False
+    try:
+        # Local import keeps the cold-path import cheap and lets routes
+        # that never call ``task`` skip the redis dependency entirely.
+        import redis.asyncio as aioredis  # type: ignore[import-not-found]
+
+        client = aioredis.from_url(config.REDIS_APP_URL, decode_responses=True)
+        try:
+            raw = await client.get(_flag_key(search_space_id))
+        finally:
+            # ``aclose()`` is the async-safe variant on redis-py >=5; fall back
+            # to ``close()`` for older clients pinned in tests.
+            close = getattr(client, "aclose", None) or getattr(client, "close", None)
+            if callable(close):
+                with contextlib.suppress(Exception):
+                    await close()  # type: ignore[misc]
+        return bool(raw)
+    except Exception:
+        logger.warning(
+            "spawn_paused check failed for search_space_id=%s; failing open.",
+            search_space_id,
+            exc_info=True,
+        )
+        return False
+
+
+__all__ = ["is_spawn_paused"]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/task_tool.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/task_tool.py
index f6a9ff146..eaed9a55f 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/task_tool.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/main_agent/checkpointed_subagent_middleware/task_tool.py
@@ -8,9 +8,12 @@ re-raises any new pending interrupt back to the parent.
 
 from __future__ import annotations
 
+import asyncio
+import json
 import logging
 import time
-from typing import Annotated, Any, NoReturn
+from collections.abc import Awaitable
+from typing import Annotated, Any, NoReturn, TypeVar
 
 from deepagents.middleware.subagents import TASK_TOOL_DESCRIPTION
 from langchain.tools import BaseTool, ToolRuntime
@@ -20,6 +23,11 @@ from langchain_core.tools import StructuredTool
 from langgraph.errors import GraphInterrupt
 from langgraph.types import Command, Interrupt
 
+from app.agents.multi_agent_chat.subagents.shared.spec import (
+    SURF_CONTEXT_HINT_PROVIDER_KEY,
+    ContextHintProvider,
+)
+from app.observability import metrics as ot_metrics, otel as ot
 from app.utils.perf import get_perf_logger
 
 from .config import (
@@ -28,7 +36,13 @@ from .config import (
     has_surfsense_resume,
     subagent_invoke_config,
 )
-from .constants import EXCLUDED_STATE_KEYS
+from .constants import (
+    DEFAULT_SUBAGENT_BATCH_CONCURRENCY,
+    DEFAULT_SUBAGENT_BILLABLE_THRESHOLD,
+    DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS,
+    EXCLUDED_STATE_KEYS,
+    MAX_SUBAGENT_BATCH_SIZE,
+)
 from .propagation import wrap_with_tool_call_id
 from .resume import (
     build_resume_command,
@@ -36,11 +50,70 @@ from .resume import (
     get_first_pending_subagent_interrupt,
     hitlrequest_action_count,
 )
+from .spawn_paused import is_spawn_paused
 
 logger = logging.getLogger(__name__)
 _perf_log = get_perf_logger()
 
 
+class SubagentInvokeTimeoutError(Exception):
+    """Raised when ``subagent.ainvoke`` exceeds the configured wall-clock budget.
+
+    Carries the subagent name and the elapsed seconds so the caller can
+    synthesize a ToolMessage that the orchestrator can act on (re-route,
+    surface to the user, or retry with a smaller scope).
+    """
+
+    def __init__(self, subagent_type: str, elapsed_seconds: float) -> None:
+        super().__init__(
+            f"subagent {subagent_type!r} exceeded "
+            f"{DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS:.0f}s budget "
+            f"(elapsed={elapsed_seconds:.1f}s)"
+        )
+        self.subagent_type = subagent_type
+        self.elapsed_seconds = elapsed_seconds
+
+
+_T = TypeVar("_T")
+
+
+async def _ainvoke_with_timeout[T](
+    coro: Awaitable[_T], *, subagent_type: str, started_at: float
+) -> _T:
+    """Apply :data:`DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS` to ``coro``.
+
+    A non-positive timeout disables the cap (configurable via the
+    ``SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS`` env var). On expiry the
+    underlying task is cancelled and :class:`SubagentInvokeTimeoutError` is
+    raised — the caller wraps it into a synthetic ToolMessage so the
+    orchestrator can decide what to do.
+    """
+    timeout = DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS
+    if timeout <= 0:
+        return await coro
+    try:
+        return await asyncio.wait_for(coro, timeout=timeout)
+    except TimeoutError as exc:
+        elapsed = time.perf_counter() - started_at
+        raise SubagentInvokeTimeoutError(subagent_type, elapsed) from exc
+
+
+def _synthesize_timeout_command(
+    exc: SubagentInvokeTimeoutError, *, tool_call_id: str
+) -> Command:
+    """Turn a :class:`SubagentInvokeTimeoutError` into a ToolMessage the parent can read."""
+    content = (
+        f"Subagent {exc.subagent_type!r} timed out after "
+        f"{exc.elapsed_seconds:.1f}s (budget="
+        f"{DEFAULT_SUBAGENT_INVOKE_TIMEOUT_SECONDS:.0f}s). "
+        "The work was cancelled. Treat as status=error; re-route with a "
+        "narrower scope or different specialist."
+    )
+    return Command(
+        update={"messages": [ToolMessage(content=content, tool_call_id=tool_call_id)]}
+    )
+
+
 def _reraise_stamped_subagent_interrupt(
     gi: GraphInterrupt, tool_call_id: str
 ) -> NoReturn:
@@ -69,11 +142,24 @@ def _reraise_stamped_subagent_interrupt(
 def build_task_tool_with_parent_config(
     subagents: list[dict[str, Any]],
     task_description: str | None = None,
+    *,
+    search_space_id: int | None = None,
 ) -> BaseTool:
     """Upstream ``_build_task_tool`` + parent ``runtime.config`` propagation + resume bridging."""
     subagent_graphs: dict[str, Runnable] = {
         spec["name"]: spec["runnable"] for spec in subagents
     }
+    # Per-subagent context-hint providers (see ``SurfSenseSubagentSpec``).
+    # The mapping is sparse: only routes that opted in via ``pack_subagent``
+    # appear here, and the value is invoked once per ``task(...)`` call to
+    # generate a short string prepended to the subagent's first
+    # ``HumanMessage``. Failures are logged and swallowed — a broken hint
+    # provider must never prevent the underlying task from running.
+    subagent_hint_providers: dict[str, ContextHintProvider] = {
+        spec["name"]: provider
+        for spec in subagents
+        if (provider := spec.get(SURF_CONTEXT_HINT_PROVIDER_KEY)) is not None
+    }
     subagent_description_str = "\n".join(
         f"- {s['name']}: {s['description']}" for s in subagents
     )
@@ -87,6 +173,120 @@ def build_task_tool_with_parent_config(
     else:
         description = task_description
 
+    def _billable_call_update(
+        subagent_type: str, runtime: ToolRuntime
+    ) -> dict[str, Any]:
+        """Build the per-call ``billable_calls`` delta + an optional warning.
+
+        The orchestrator's ``billable_calls`` map is summed by
+        :func:`_int_counter_merge_reducer`, so we always emit
+        ``{subagent_type: 1}`` and let the reducer accumulate. If the
+        cumulative count *after* this call would cross the configured
+        threshold, we also slip a soft ``messages`` entry into the update
+        so the orchestrator can read it on its next step and self-limit.
+        Returning a plain ``dict`` (vs. an extra :class:`Command`) keeps
+        the helper composable with the existing single/batch return paths.
+        """
+        delta: dict[str, Any] = {"billable_calls": {subagent_type: 1}}
+        threshold = DEFAULT_SUBAGENT_BILLABLE_THRESHOLD
+        if threshold <= 0:
+            return delta
+        prior = runtime.state.get("billable_calls") or {}
+        # ``prior`` may be a plain dict or a reducer-managed mapping; only
+        # int values are counted so a malformed checkpoint can't crash us.
+        prior_total = sum(v for v in prior.values() if isinstance(v, int))
+        new_total = prior_total + 1
+        if prior_total < threshold <= new_total:
+            warn = (
+                f"[budget warning] This turn has dispatched {new_total} "
+                f"subagent calls (soft cap = {threshold}). Wrap up the "
+                "user's request with what you have rather than launching "
+                "more specialists; surface a partial answer if needed."
+            )
+            delta["_billable_warn_text"] = warn
+        return delta
+
+    def _attach_billable(
+        cmd: Command, subagent_type: str, runtime: ToolRuntime
+    ) -> Command:
+        """Merge the per-call billable counter (and warning) into ``cmd``."""
+        delta = _billable_call_update(subagent_type, runtime)
+        warn_text = delta.pop("_billable_warn_text", None)
+        # ``cmd.update`` may be a dict or LangGraph ``UpdateDict``; defensively
+        # copy so we don't mutate state shared across other tool returns.
+        update = dict(getattr(cmd, "update", {}) or {})
+        for key, value in delta.items():
+            update[key] = value
+        if warn_text:
+            existing_msgs = list(update.get("messages") or [])
+            existing_msgs.append(
+                ToolMessage(content=warn_text, tool_call_id=runtime.tool_call_id)
+            )
+            update["messages"] = existing_msgs
+        return Command(update=update)
+
+    def _safe_message_text(msg: Any) -> str:
+        """Pull text out of a BaseMessage without trusting the ``.text`` property.
+
+        ``BaseMessage.text`` walks ``content_blocks`` and crashes with
+        ``TypeError: 'NoneType' object is not iterable`` when ``content`` is
+        ``None`` (common for tool-call AIMessages whose payload is purely
+        structured). ``getattr(msg, "text", None)`` does not catch this
+        because Python evaluates the property body before falling back to
+        the default. Read ``content`` directly and coerce defensively.
+        """
+        try:
+            content = getattr(msg, "content", None)
+        except Exception:
+            content = None
+        if content is None:
+            return ""
+        if isinstance(content, str):
+            return content
+        if isinstance(content, list):
+            parts: list[str] = []
+            for block in content:
+                if isinstance(block, str):
+                    parts.append(block)
+                elif isinstance(block, dict):
+                    block_text = block.get("text") or block.get("content")
+                    if isinstance(block_text, str):
+                        parts.append(block_text)
+            return " ".join(parts)
+        return str(content)
+
+    def _build_tool_trace(messages: list[Any]) -> list[dict[str, Any]]:
+        """Compress the subagent's message stream into a compact tool trace.
+
+        Each entry is ``{"tool": <name>, "status": "ok"|"error", "preview":
+        <≤120 chars>}`` so the orchestrator can show "this is what your
+        specialist actually did" without dumping the full message stream
+        back through the prompt. The list is attached to the returned
+        ToolMessage's ``additional_kwargs`` (under ``"surf_tool_trace"``);
+        the LLM never sees it, but UI / observability code can pluck it
+        out of the checkpoint.
+        """
+        trace: list[dict[str, Any]] = []
+        for msg in messages:
+            tool_name = getattr(msg, "name", None)
+            tool_call_id_attr = getattr(msg, "tool_call_id", None)
+            if not tool_name and not tool_call_id_attr:
+                # Only ToolMessages have either field; skip AIMessage /
+                # HumanMessage / SystemMessage frames.
+                continue
+            status = getattr(msg, "status", None) or "ok"
+            preview = _safe_message_text(msg).strip().replace("\n", " ")
+            if len(preview) > 120:
+                preview = preview[:117] + "..."
+            trace.append(
+                {
+                    "tool": tool_name or "<unknown>",
+                    "status": status,
+                    "preview": preview,
+                }
+            )
+        return trace
+
     def _return_command_with_state_update(result: dict, tool_call_id: str) -> Command:
         if "messages" not in result:
             msg = (
@@ -105,15 +305,51 @@ def build_task_tool_with_parent_config(
                 "output to forward back to the user."
             )
             raise ValueError(msg)
-        last_text = getattr(messages[-1], "text", None) or ""
-        message_text = last_text.rstrip()
+        message_text = _safe_message_text(messages[-1]).rstrip()
+        # Tool-trace is purely observability — wrap defensively so a single
+        # malformed frame never bubbles up and kills the whole user turn.
+        try:
+            tool_trace = _build_tool_trace(messages)
+        except Exception:
+            logger.exception(
+                "Failed to build tool_trace for subagent return; "
+                "continuing without trace."
+            )
+            tool_trace = []
+        tool_msg = ToolMessage(message_text, tool_call_id=tool_call_id)
+        if tool_trace:
+            # ``additional_kwargs`` is a free-form dict on BaseMessage; using
+            # a ``surf_`` prefix avoids collision with provider-specific keys
+            # (e.g. Anthropic's ``cache_control``). The LLM doesn't see it;
+            # consumers (UI, observability) read it off the checkpoint.
+            tool_msg.additional_kwargs["surf_tool_trace"] = tool_trace
         return Command(
             update={
                 **state_update,
-                "messages": [ToolMessage(message_text, tool_call_id=tool_call_id)],
+                "messages": [tool_msg],
             }
         )
 
+    def _resolve_context_hint(
+        subagent_type: str, description: str, runtime: ToolRuntime
+    ) -> str | None:
+        """Run the per-subagent hint provider; swallow & log any exception."""
+        provider = subagent_hint_providers.get(subagent_type)
+        if provider is None:
+            return None
+        try:
+            hint = provider(runtime.state, description)
+        except Exception:
+            logger.exception(
+                "Context-hint provider for subagent %r raised; skipping hint.",
+                subagent_type,
+            )
+            return None
+        if not hint or not isinstance(hint, str):
+            return None
+        cleaned = hint.strip()
+        return cleaned or None
+
     def _validate_and_prepare_state(
         subagent_type: str, description: str, runtime: ToolRuntime
     ) -> tuple[Runnable, dict]:
@@ -121,20 +357,306 @@ def build_task_tool_with_parent_config(
         subagent_state = {
             k: v for k, v in runtime.state.items() if k not in EXCLUDED_STATE_KEYS
         }
-        subagent_state["messages"] = [HumanMessage(content=description)]
+        hint = _resolve_context_hint(subagent_type, description, runtime)
+        if hint:
+            # Prepend as a tagged block so the subagent prompt can pattern-match
+            # on the section (and a future change can lift it into its own
+            # ``SystemMessage`` if needed).
+            payload = f"<context_hint>\n{hint}\n</context_hint>\n\n{description}"
+        else:
+            payload = description
+        subagent_state["messages"] = [HumanMessage(content=payload)]
         return subagent, subagent_state
 
+    def _merge_batch_results(
+        results: list[tuple[int, str, dict | str, dict | None]],
+        runtime: ToolRuntime,
+    ) -> Command:
+        """Combine per-child results into one Command with a combined ToolMessage.
+
+        ``results`` is a list of ``(task_index, subagent_type,
+        payload_or_error_text, child_state_update)`` tuples — preserving the
+        input order so the orchestrator can map each block back to the task
+        it dispatched. State updates are merged by reducer for keys outside
+        :data:`EXCLUDED_STATE_KEYS`; everything else (``messages``, ``todos``,
+        etc.) is replaced by the synthesized aggregate ToolMessage. Every
+        child also contributes a ``billable_calls`` increment so cost
+        accounting matches single-mode dispatch.
+        """
+        results.sort(key=lambda r: r[0])
+        merged_state: dict[str, Any] = {}
+        billable_delta: dict[str, int] = {}
+        message_blocks: list[str] = []
+        batch_trace: list[dict[str, Any]] = []
+        for task_index, subagent_type, payload, state_update in results:
+            billable_delta[subagent_type] = billable_delta.get(subagent_type, 0) + 1
+            if isinstance(payload, str):
+                # Pre-flight error or per-task exception text.
+                message_blocks.append(f"[task {task_index}] {payload}")
+                batch_trace.append(
+                    {
+                        "task_index": task_index,
+                        "subagent_type": subagent_type,
+                        "status": "error",
+                        "tool_trace": [],
+                    }
+                )
+                continue
+            messages = payload.get("messages") or []
+            last_text = _safe_message_text(messages[-1]).rstrip() if messages else ""
+            message_blocks.append(f"[task {task_index}] {last_text or '<empty>'}")
+            try:
+                child_trace = _build_tool_trace(messages)
+            except Exception:
+                logger.exception(
+                    "Failed to build tool_trace for batch task_index=%d; continuing.",
+                    task_index,
+                )
+                child_trace = []
+            batch_trace.append(
+                {
+                    "task_index": task_index,
+                    "subagent_type": subagent_type,
+                    "status": "ok",
+                    "tool_trace": child_trace,
+                }
+            )
+            if state_update:
+                # Naive merge: later tasks win on scalar collisions; reducer-backed
+                # fields (``receipts``, ``files`` etc.) accumulate at apply time.
+                merged_state.update(state_update)
+        aggregate = "\n\n".join(message_blocks)
+        aggregate_msg = ToolMessage(
+            content=aggregate, tool_call_id=runtime.tool_call_id
+        )
+        if batch_trace:
+            aggregate_msg.additional_kwargs["surf_tool_trace"] = batch_trace
+        update: dict[str, Any] = {
+            **merged_state,
+            "billable_calls": billable_delta,
+            "messages": [aggregate_msg],
+        }
+        # Soft-cap warning: check the cumulative count after attribution.
+        threshold = DEFAULT_SUBAGENT_BILLABLE_THRESHOLD
+        if threshold > 0:
+            prior = runtime.state.get("billable_calls") or {}
+            prior_total = sum(v for v in prior.values() if isinstance(v, int))
+            new_total = prior_total + sum(billable_delta.values())
+            if prior_total < threshold <= new_total:
+                update["messages"].append(
+                    ToolMessage(
+                        content=(
+                            f"[budget warning] This turn has dispatched "
+                            f"{new_total} subagent calls (soft cap = "
+                            f"{threshold}). Wrap up the user's request with "
+                            "what you have rather than launching more "
+                            "specialists; surface a partial answer if needed."
+                        ),
+                        tool_call_id=runtime.tool_call_id,
+                    )
+                )
+        return Command(update=update)
+
+    async def _ainvoke_one_batch_child(
+        *,
+        task_index: int,
+        subagent_type: str,
+        description: str,
+        runtime: ToolRuntime,
+        semaphore: asyncio.Semaphore,
+    ) -> tuple[int, str, dict | str, dict | None]:
+        """Run one child of a batched ``task`` call under the concurrency cap.
+
+        Errors are returned as plain text in slot 2 so a single child's
+        failure does not abort the whole batch. ``GraphInterrupt`` from a
+        batched child is currently treated as a hard failure for that child
+        only — batched HITL is intentionally out of scope for the v1
+        rollout (see plan tier 2 item 4 risks).
+        """
+        async with semaphore:
+            if subagent_type not in subagent_graphs:
+                allowed_types = ", ".join([f"`{k}`" for k in subagent_graphs])
+                return (
+                    task_index,
+                    subagent_type,
+                    (
+                        f"Subagent {subagent_type!r} does not exist; "
+                        f"allowed: {allowed_types}"
+                    ),
+                    None,
+                )
+            subagent, subagent_state = _validate_and_prepare_state(
+                subagent_type, description, runtime
+            )
+            sub_config = subagent_invoke_config(runtime)
+            started_at = time.perf_counter()
+            try:
+                result = await _ainvoke_with_timeout(
+                    subagent.ainvoke(subagent_state, config=sub_config),
+                    subagent_type=subagent_type,
+                    started_at=started_at,
+                )
+            except SubagentInvokeTimeoutError as exc:
+                logger.warning(
+                    "Batch child %d (%s) timed out after %.1fs",
+                    task_index,
+                    subagent_type,
+                    exc.elapsed_seconds,
+                )
+                return (task_index, subagent_type, str(exc), None)
+            except GraphInterrupt:
+                # Batched HITL is unsupported in v1 — surface as a failure
+                # for this child so the rest of the batch still completes.
+                logger.warning(
+                    "Batch child %d (%s) raised GraphInterrupt; batched HITL "
+                    "is not supported. Re-dispatch this task as a single "
+                    "(non-batched) `task(...)` call to get the HITL prompt.",
+                    task_index,
+                    subagent_type,
+                )
+                return (
+                    task_index,
+                    subagent_type,
+                    (
+                        f"Subagent {subagent_type!r} needs human approval. "
+                        "Re-dispatch this task as a single (non-batched) "
+                        "`task(...)` call so the approval card can be shown."
+                    ),
+                    None,
+                )
+            except Exception as exc:
+                logger.exception(
+                    "Batch child %d (%s) raised: %s",
+                    task_index,
+                    subagent_type,
+                    exc,
+                )
+                return (
+                    task_index,
+                    subagent_type,
+                    f"Subagent {subagent_type!r} error: {exc}",
+                    None,
+                )
+            child_state_update = {
+                k: v for k, v in result.items() if k not in EXCLUDED_STATE_KEYS
+            }
+            return (task_index, subagent_type, result, child_state_update)
+
+    def _coerce_batch_arg(tasks: Any) -> list[dict] | str:
+        """Rescue common LLM-side malformations of the ``tasks`` argument.
+
+        Some providers serialise an array argument as a JSON-encoded string,
+        and small models occasionally hand back a single ``{description,
+        subagent_type}`` dict instead of a one-element array. Both are
+        recovered here with a WARN log so the issue is visible in metrics
+        but the user's turn still completes; truly broken shapes return a
+        plain string that the caller surfaces as the tool error.
+        """
+        if isinstance(tasks, list):
+            return tasks
+        if isinstance(tasks, dict):
+            logger.warning(
+                "task: `tasks` was a single dict; coercing to a 1-element list. "
+                "Orchestrators should send `tasks=[{...}]` directly."
+            )
+            return [tasks]
+        if isinstance(tasks, str):
+            stripped = tasks.strip()
+            if not stripped:
+                return "tasks: argument is empty."
+            try:
+                parsed = json.loads(stripped)
+            except json.JSONDecodeError as exc:
+                return (
+                    f"tasks: argument is a string but not valid JSON ({exc.msg}). "
+                    "Send a JSON array of `{description, subagent_type}` objects."
+                )
+            logger.warning(
+                "task: `tasks` was a JSON-encoded string; parsed to %s. "
+                "Orchestrators should send a JSON array directly.",
+                type(parsed).__name__,
+            )
+            return _coerce_batch_arg(parsed)
+        return (
+            f"tasks: unsupported type {type(tasks).__name__}; expected an array "
+            "of `{description, subagent_type}` objects."
+        )
+
+    async def _adispatch_batch(
+        tasks: list[dict], runtime: ToolRuntime
+    ) -> Command | str:
+        """Fan-out helper for the ``tasks`` array shape.
+
+        Bounded by :data:`MAX_SUBAGENT_BATCH_SIZE` and concurrency-capped
+        at :data:`DEFAULT_SUBAGENT_BATCH_CONCURRENCY`. Returns a single
+        :class:`Command` that the LLM sees as one ToolMessage per child,
+        prefixed with ``[task <index>]`` so it can map back to the input
+        order.
+        """
+        if not tasks:
+            return "tasks: array is empty; nothing to dispatch."
+        if len(tasks) > MAX_SUBAGENT_BATCH_SIZE:
+            return (
+                f"tasks: too many children ({len(tasks)}); "
+                f"max is {MAX_SUBAGENT_BATCH_SIZE}. Split the batch."
+            )
+        normalized: list[tuple[int, str, str]] = []
+        for idx, item in enumerate(tasks):
+            if not isinstance(item, dict):
+                return (
+                    f"tasks[{idx}]: must be an object with description+subagent_type."
+                )
+            description = item.get("description")
+            subagent_type = item.get("subagent_type")
+            if not isinstance(description, str) or not description.strip():
+                return f"tasks[{idx}]: missing or empty 'description'."
+            if not isinstance(subagent_type, str) or not subagent_type.strip():
+                return f"tasks[{idx}]: missing or empty 'subagent_type'."
+            normalized.append((idx, subagent_type.strip(), description))
+        semaphore = asyncio.Semaphore(DEFAULT_SUBAGENT_BATCH_CONCURRENCY)
+        coros = [
+            _ainvoke_one_batch_child(
+                task_index=idx,
+                subagent_type=subagent_type,
+                description=description,
+                runtime=runtime,
+                semaphore=semaphore,
+            )
+            for idx, subagent_type, description in normalized
+        ]
+        results = await asyncio.gather(*coros)
+        return _merge_batch_results(list(results), runtime)
+
     def task(
         description: Annotated[
-            str,
-            "A detailed description of the task for the subagent to perform autonomously. Include all necessary context and specify the expected output format.",
-        ],
+            str | None,
+            "Single-mode: a detailed task description for the subagent. Required unless `tasks` is provided.",
+        ] = None,
         subagent_type: Annotated[
-            str,
-            "The type of subagent to use. Must be one of the available agent types listed in the tool description.",
-        ],
-        runtime: ToolRuntime,
+            str | None,
+            "Single-mode: the type of subagent to use. Required unless `tasks` is provided.",
+        ] = None,
+        runtime: ToolRuntime = None,  # type: ignore[assignment]
+        tasks: Annotated[
+            list[dict] | None,
+            (
+                "Batch-mode: array of `{description, subagent_type}` objects. "
+                "Synchronous path does not support batch mode; orchestrators "
+                "must use the async event loop to fan out."
+            ),
+        ] = None,
     ) -> str | Command:
+        if tasks is not None:
+            return (
+                "task: batch mode (`tasks=[...]`) is only supported on the async "
+                "path. SurfSense orchestrators always run in an event loop, so "
+                "this should never fire — file a bug if you see it."
+            )
+        if not description or not subagent_type:
+            return (
+                "task: must provide either single-mode (`description`+`subagent_type`) "
+                "or batch-mode (`tasks`)."
+            )
         if subagent_type not in subagent_graphs:
             allowed_types = ", ".join([f"`{k}`" for k in subagent_graphs])
             return (
@@ -173,6 +695,9 @@ def build_task_tool_with_parent_config(
                     exc_info=True,
                 )
 
+        invoke_path = "resume" if pending_value is not None else "fresh"
+        invoke_start = time.perf_counter()
+        invoke_outcome = "ok"
         if pending_value is not None:
             resume_value = consume_surfsense_resume(runtime)
             if resume_value is None:
@@ -188,32 +713,157 @@ def build_task_tool_with_parent_config(
             # Prevent the parent's resume payload from leaking into subagent
             # interrupts via langgraph's parent_scratchpad fallback.
             drain_parent_null_resume(runtime)
-            try:
-                result = subagent.invoke(
-                    build_resume_command(resume_value, pending_id),
-                    config=sub_config,
-                )
-            except GraphInterrupt as gi:
-                _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+            with ot.subagent_invoke_span(
+                subagent_type=subagent_type, path=invoke_path
+            ) as sp:
+                try:
+                    result = subagent.invoke(
+                        build_resume_command(resume_value, pending_id),
+                        config=sub_config,
+                    )
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                except GraphInterrupt as gi:
+                    invoke_outcome = "interrupted"
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                    ot_metrics.record_subagent_invoke_duration(
+                        (time.perf_counter() - invoke_start) * 1000,
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    ot_metrics.record_subagent_invoke_outcome(
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                except Exception:
+                    invoke_outcome = "error"
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                    ot_metrics.record_subagent_invoke_duration(
+                        (time.perf_counter() - invoke_start) * 1000,
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    ot_metrics.record_subagent_invoke_outcome(
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    raise
         else:
-            try:
-                result = subagent.invoke(subagent_state, config=sub_config)
-            except GraphInterrupt as gi:
-                _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+            with ot.subagent_invoke_span(
+                subagent_type=subagent_type, path=invoke_path
+            ) as sp:
+                try:
+                    result = subagent.invoke(subagent_state, config=sub_config)
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                except GraphInterrupt as gi:
+                    invoke_outcome = "interrupted"
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                    ot_metrics.record_subagent_invoke_duration(
+                        (time.perf_counter() - invoke_start) * 1000,
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    ot_metrics.record_subagent_invoke_outcome(
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                except Exception:
+                    invoke_outcome = "error"
+                    sp.set_attribute("subagent.outcome", invoke_outcome)
+                    ot_metrics.record_subagent_invoke_duration(
+                        (time.perf_counter() - invoke_start) * 1000,
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    ot_metrics.record_subagent_invoke_outcome(
+                        subagent_type=subagent_type,
+                        path=invoke_path,
+                        outcome=invoke_outcome,
+                    )
+                    raise
+        invoke_elapsed_ms = (time.perf_counter() - invoke_start) * 1000
+        ot_metrics.record_subagent_invoke_duration(
+            invoke_elapsed_ms,
+            subagent_type=subagent_type,
+            path=invoke_path,
+            outcome=invoke_outcome,
+        )
+        ot_metrics.record_subagent_invoke_outcome(
+            subagent_type=subagent_type,
+            path=invoke_path,
+            outcome=invoke_outcome,
+        )
         return _return_command_with_state_update(result, runtime.tool_call_id)
 
     async def atask(
         description: Annotated[
-            str,
-            "A detailed description of the task for the subagent to perform autonomously. Include all necessary context and specify the expected output format.",
-        ],
+            str | None,
+            "Single-mode: a detailed task description for the subagent. Required unless `tasks` is provided.",
+        ] = None,
         subagent_type: Annotated[
-            str,
-            "The type of subagent to use. Must be one of the available agent types listed in the tool description.",
-        ],
-        runtime: ToolRuntime,
+            str | None,
+            "Single-mode: the type of subagent to use. Required unless `tasks` is provided.",
+        ] = None,
+        runtime: ToolRuntime = None,  # type: ignore[assignment]
+        tasks: Annotated[
+            list[dict] | None,
+            (
+                "Batch-mode: array of `{description, subagent_type}` objects "
+                "to fan out concurrently (max "
+                f"{MAX_SUBAGENT_BATCH_SIZE}, concurrency "
+                f"{DEFAULT_SUBAGENT_BATCH_CONCURRENCY}). Mutually exclusive "
+                "with single-mode args. Batched children do not support "
+                "human-in-the-loop interrupts; re-dispatch as single mode "
+                "if a child needs approval."
+            ),
+        ] = None,
     ) -> str | Command:
         atask_start = time.perf_counter()
+        # Kill switch: when ops flips the spawn-paused flag for this
+        # workspace, every ``task(...)`` invocation (single- or batch-mode)
+        # short-circuits with a clear ToolMessage so the orchestrator can
+        # tell the user what happened and stop hammering downstream APIs.
+        if await is_spawn_paused(search_space_id):
+            logger.warning(
+                "[hitl_route] atask SPAWN_PAUSED: search_space_id=%s tool_call_id=%s",
+                search_space_id,
+                runtime.tool_call_id,
+            )
+            return (
+                "task: subagent dispatch is currently paused for this workspace. "
+                "Acknowledge to the user that delegation is temporarily disabled "
+                "(ops kill switch); do not retry until the pause is lifted."
+            )
+        if tasks is not None:
+            if description or subagent_type:
+                return (
+                    "task: cannot combine `tasks` with `description`/`subagent_type`. "
+                    "Use either single-mode (description+subagent_type) or batch-mode (tasks)."
+                )
+            if not runtime.tool_call_id:
+                raise ValueError("Tool call ID is required for subagent invocation")
+            coerced = _coerce_batch_arg(tasks)
+            if isinstance(coerced, str):
+                return coerced
+            logger.info(
+                "[hitl_route] atask BATCH ENTRY: size=%d tool_call_id=%s",
+                len(coerced),
+                runtime.tool_call_id,
+            )
+            return await _adispatch_batch(coerced, runtime)
+        if not description or not subagent_type:
+            return (
+                "task: must provide either single-mode (`description`+`subagent_type`) "
+                "or batch-mode (`tasks`)."
+            )
         logger.info(
             "[hitl_route] atask ENTRY: subagent_type=%r tool_call_id=%s",
             subagent_type,
@@ -274,40 +924,154 @@ def build_task_tool_with_parent_config(
                 # Prevent the parent's resume payload from leaking into subagent
                 # interrupts via langgraph's parent_scratchpad fallback.
                 drain_parent_null_resume(runtime)
-                try:
-                    result = await subagent.ainvoke(
-                        build_resume_command(resume_value, pending_id),
-                        config=sub_config,
-                    )
-                except GraphInterrupt as gi:
-                    ainvoke_outcome = "interrupted"
-                    _perf_log.info(
-                        "[hitl_route] atask EXIT subagent_type=%r path=%s outcome=%s "
-                        "aget_state=%.3fs ainvoke=%.3fs total=%.3fs",
-                        subagent_type,
-                        invoke_path,
-                        ainvoke_outcome,
-                        aget_state_elapsed,
-                        time.perf_counter() - ainvoke_start,
-                        time.perf_counter() - atask_start,
-                    )
-                    _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                with ot.subagent_invoke_span(
+                    subagent_type=subagent_type, path=invoke_path
+                ) as sp:
+                    try:
+                        result = await _ainvoke_with_timeout(
+                            subagent.ainvoke(
+                                build_resume_command(resume_value, pending_id),
+                                config=sub_config,
+                            ),
+                            subagent_type=subagent_type,
+                            started_at=ainvoke_start,
+                        )
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                    except SubagentInvokeTimeoutError as exc:
+                        ainvoke_outcome = "timeout"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        logger.warning(
+                            "Subagent %r ainvoke (resume) timed out after %.1fs",
+                            subagent_type,
+                            exc.elapsed_seconds,
+                        )
+                        return _synthesize_timeout_command(
+                            exc, tool_call_id=runtime.tool_call_id
+                        )
+                    except GraphInterrupt as gi:
+                        ainvoke_outcome = "interrupted"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        _perf_log.info(
+                            "[hitl_route] atask EXIT subagent_type=%r path=%s outcome=%s "
+                            "aget_state=%.3fs ainvoke=%.3fs total=%.3fs",
+                            subagent_type,
+                            invoke_path,
+                            ainvoke_outcome,
+                            aget_state_elapsed,
+                            time.perf_counter() - ainvoke_start,
+                            time.perf_counter() - atask_start,
+                        )
+                        _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                    except Exception:
+                        ainvoke_outcome = "error"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        raise
             else:
-                try:
-                    result = await subagent.ainvoke(subagent_state, config=sub_config)
-                except GraphInterrupt as gi:
-                    ainvoke_outcome = "interrupted"
-                    _perf_log.info(
-                        "[hitl_route] atask EXIT subagent_type=%r path=%s outcome=%s "
-                        "aget_state=%.3fs ainvoke=%.3fs total=%.3fs",
-                        subagent_type,
-                        invoke_path,
-                        ainvoke_outcome,
-                        aget_state_elapsed,
-                        time.perf_counter() - ainvoke_start,
-                        time.perf_counter() - atask_start,
-                    )
-                    _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                with ot.subagent_invoke_span(
+                    subagent_type=subagent_type, path=invoke_path
+                ) as sp:
+                    try:
+                        result = await _ainvoke_with_timeout(
+                            subagent.ainvoke(subagent_state, config=sub_config),
+                            subagent_type=subagent_type,
+                            started_at=ainvoke_start,
+                        )
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                    except SubagentInvokeTimeoutError as exc:
+                        ainvoke_outcome = "timeout"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        logger.warning(
+                            "Subagent %r ainvoke (fresh) timed out after %.1fs",
+                            subagent_type,
+                            exc.elapsed_seconds,
+                        )
+                        return _synthesize_timeout_command(
+                            exc, tool_call_id=runtime.tool_call_id
+                        )
+                    except GraphInterrupt as gi:
+                        ainvoke_outcome = "interrupted"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        _perf_log.info(
+                            "[hitl_route] atask EXIT subagent_type=%r path=%s outcome=%s "
+                            "aget_state=%.3fs ainvoke=%.3fs total=%.3fs",
+                            subagent_type,
+                            invoke_path,
+                            ainvoke_outcome,
+                            aget_state_elapsed,
+                            time.perf_counter() - ainvoke_start,
+                            time.perf_counter() - atask_start,
+                        )
+                        _reraise_stamped_subagent_interrupt(gi, runtime.tool_call_id)
+                    except Exception:
+                        ainvoke_outcome = "error"
+                        sp.set_attribute("subagent.outcome", ainvoke_outcome)
+                        ot_metrics.record_subagent_invoke_duration(
+                            (time.perf_counter() - ainvoke_start) * 1000,
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        ot_metrics.record_subagent_invoke_outcome(
+                            subagent_type=subagent_type,
+                            path=invoke_path,
+                            outcome=ainvoke_outcome,
+                        )
+                        raise
             ainvoke_elapsed = time.perf_counter() - ainvoke_start
         except GraphInterrupt:
             raise
@@ -326,7 +1090,18 @@ def build_task_tool_with_parent_config(
             merge_elapsed,
             time.perf_counter() - atask_start,
         )
-        return cmd
+        ot_metrics.record_subagent_invoke_duration(
+            ainvoke_elapsed * 1000,
+            subagent_type=subagent_type,
+            path=invoke_path,
+            outcome=ainvoke_outcome,
+        )
+        ot_metrics.record_subagent_invoke_outcome(
+            subagent_type=subagent_type,
+            path=invoke_path,
+            outcome=ainvoke_outcome,
+        )
+        return _attach_billable(cmd, subagent_type, runtime)
 
     return StructuredTool.from_function(
         name="task",
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/kb_context_projection.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/kb_context_projection.py
index e8a4c9899..2685d8a9b 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/kb_context_projection.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/kb_context_projection.py
@@ -52,9 +52,7 @@ class KbContextProjectionMiddleware(AgentMiddleware):  # type: ignore[type-arg]
             messages.insert(insert_at, SystemMessage(content=tree_text))
         priority_count = 0
         if priority:
-            priority_count = (
-                len(priority) if hasattr(priority, "__len__") else 1
-            )
+            priority_count = len(priority) if hasattr(priority, "__len__") else 1
             messages.insert(insert_at, _render_priority_message(priority))
         _perf_log.info(
             "[kb_context_projection] tree_chars=%d priority_items=%d elapsed=%.3fs",
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/permissions/ask/request.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/permissions/ask/request.py
index d61d38f34..3db51883d 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/permissions/ask/request.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/shared/permissions/ask/request.py
@@ -17,7 +17,7 @@ from langchain_core.tools import BaseTool
 from langgraph.types import interrupt
 
 from app.agents.new_chat.permissions import Rule
-from app.observability import otel as ot
+from app.observability import metrics as ot_metrics, otel as ot
 
 from .decision import normalize_permission_decision
 from .payload import PERMISSION_ASK_INTERRUPT_TYPE, build_permission_ask_payload
@@ -52,6 +52,8 @@ def request_permission_decision(
         ),
         ot.interrupt_span(interrupt_type=PERMISSION_ASK_INTERRUPT_TYPE),
     ):
+        ot_metrics.record_permission_ask(permission=tool_name)
+        ot_metrics.record_interrupt(interrupt_type=PERMISSION_ASK_INTERRUPT_TYPE)
         decision = interrupt(payload)
     return normalize_permission_decision(decision)
 
diff --git a/surfsense_backend/app/agents/multi_agent_chat/middleware/stack.py b/surfsense_backend/app/agents/multi_agent_chat/middleware/stack.py
index c1ebe31ca..3b20d8915 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/middleware/stack.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/middleware/stack.py
@@ -173,6 +173,7 @@ def build_main_agent_deepagent_middleware(
             subagents=subagents,
             system_prompt=None,
             task_description=TASK_TOOL_DESCRIPTION,
+            search_space_id=search_space_id,
         ),
         resilience.model_call_limit,
         resilience.tool_call_limit,
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/system_prompt.md
index c44f131bb..413791037 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/system_prompt.md
@@ -42,14 +42,16 @@ Return **only** one JSON object (no markdown/prose):
   "evidence": {
     "artifact_type": "report" | "podcast" | "video_presentation" | "resume" | "image" | null,
     "artifact_id": string | null,
-    "artifact_location": string | null
+    "artifact_location": string | null,
+    "receipts": Receipt[] | null
   },
   "next_step": string | null,
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` -> `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` -> `next_step` must be non-null.
-- `status=blocked` due to missing required inputs -> `missing_fields` must be non-null.
+Route-specific rules:
+- `evidence.receipts` quotes the Receipt(s) returned by `generate_report` / `generate_podcast` / `generate_video_presentation` / `generate_resume` / `generate_image` this turn, verbatim. The Receipt's `type` enum is one of `report` | `podcast` | `video_presentation` | `resume` | `image`.
+<include snippet="output_contract_base"/>
 </output_contract>
+
+<include snippet="verifiable_handle"/>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/generate_image.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/generate_image.py
index ab9dbc0ea..094371760 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/generate_image.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/generate_image.py
@@ -4,11 +4,15 @@ import hashlib
 import logging
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.tools import tool
+from langgraph.types import Command
 from litellm import aimage_generation
 from sqlalchemy import select
 from sqlalchemy.ext.asyncio import AsyncSession
 
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.config import config
 from app.db import (
     ImageGeneration,
@@ -59,15 +63,22 @@ def _get_global_image_gen_config(config_id: int) -> dict | None:
 def create_generate_image_tool(
     search_space_id: int,
     db_session: AsyncSession,
+    image_generation_config_id_override: int | None = None,
 ):
-    """Create ``generate_image`` with bound search space; DB work uses a per-call session."""
+    """Create ``generate_image`` with bound search space; DB work uses a per-call session.
+
+    ``image_generation_config_id_override``: when set (automations running on a
+    captured model), use this config id instead of reading the search space's
+    live ``image_generation_config_id``.
+    """
     del db_session  # use a fresh per-call session, see below
 
     @tool
     async def generate_image(
         prompt: str,
+        runtime: ToolRuntime,
         n: int = 1,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """
         Generate an image from a text description using AI image models.
 
@@ -82,22 +93,48 @@ def create_generate_image_tool(
         Returns:
             A dictionary containing the generated image(s) for display in the chat.
         """
+
+        def _failed(payload: dict[str, Any], *, error: str) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="image",
+                    operation="generate",
+                    status="failed",
+                    preview=prompt[:200] if prompt else None,
+                    error=error,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
         try:
             # Use a per-call session so concurrent tool calls don't share an
             # AsyncSession (which is not concurrency-safe). The streaming
             # task's session is shared across every tool; without isolation,
             # autoflushes from a concurrent writer poison this tool too.
             async with shielded_async_session() as session:
-                result = await session.execute(
-                    select(SearchSpace).filter(SearchSpace.id == search_space_id)
-                )
-                search_space = result.scalars().first()
-                if not search_space:
-                    return {"error": "Search space not found"}
+                if image_generation_config_id_override is not None:
+                    # Automation run: use the captured image model, insulated from
+                    # later search-space changes. No search-space read needed.
+                    config_id = (
+                        image_generation_config_id_override or IMAGE_GEN_AUTO_MODE_ID
+                    )
+                else:
+                    result = await session.execute(
+                        select(SearchSpace).filter(SearchSpace.id == search_space_id)
+                    )
+                    search_space = result.scalars().first()
+                    if not search_space:
+                        return _failed(
+                            {"error": "Search space not found"},
+                            error="Search space not found",
+                        )
 
-                config_id = (
-                    search_space.image_generation_config_id or IMAGE_GEN_AUTO_MODE_ID
-                )
+                    config_id = (
+                        search_space.image_generation_config_id
+                        or IMAGE_GEN_AUTO_MODE_ID
+                    )
 
                 # Build generation kwargs
                 # NOTE: size, quality, and style are intentionally NOT passed.
@@ -112,19 +149,19 @@ def create_generate_image_tool(
                 # Call litellm based on config type
                 if is_image_gen_auto_mode(config_id):
                     if not ImageGenRouterService.is_initialized():
-                        return {
-                            "error": "No image generation models configured. "
+                        err = (
+                            "No image generation models configured. "
                             "Please add an image model in Settings > Image Models."
-                        }
+                        )
+                        return _failed({"error": err}, error=err)
                     response = await ImageGenRouterService.aimage_generation(
                         prompt=prompt, model="auto", **gen_kwargs
                     )
                 elif config_id < 0:
                     cfg = _get_global_image_gen_config(config_id)
                     if not cfg:
-                        return {
-                            "error": f"Image generation config {config_id} not found"
-                        }
+                        err = f"Image generation config {config_id} not found"
+                        return _failed({"error": err}, error=err)
 
                     model_string = _build_model_string(
                         cfg.get("provider", ""),
@@ -151,9 +188,8 @@ def create_generate_image_tool(
                     )
                     db_cfg = cfg_result.scalars().first()
                     if not db_cfg:
-                        return {
-                            "error": f"Image generation config {config_id} not found"
-                        }
+                        err = f"Image generation config {config_id} not found"
+                        return _failed({"error": err}, error=err)
 
                     model_string = _build_model_string(
                         db_cfg.provider.value,
@@ -200,7 +236,10 @@ def create_generate_image_tool(
             # Extract image URLs from response
             images = response_dict.get("data", [])
             if not images:
-                return {"error": "No images were generated"}
+                return _failed(
+                    {"error": "No images were generated"},
+                    error="No images were generated",
+                )
 
             first_image = images[0]
             revised_prompt = first_image.get("revised_prompt", prompt)
@@ -219,11 +258,14 @@ def create_generate_image_tool(
                     f"{db_image_gen_id}/image?token={access_token}"
                 )
             else:
-                return {"error": "No displayable image data in the response"}
+                return _failed(
+                    {"error": "No displayable image data in the response"},
+                    error="No displayable image data in the response",
+                )
 
             image_id = f"image-{hashlib.md5(image_url.encode()).hexdigest()[:12]}"
 
-            return {
+            payload = {
                 "id": image_id,
                 "assetId": image_url,
                 "src": image_url,
@@ -236,12 +278,26 @@ def create_generate_image_tool(
                 "prompt": prompt,
                 "image_count": len(images),
             }
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="image",
+                    operation="generate",
+                    status="success",
+                    external_id=str(db_image_gen_id),
+                    verifiable_url=image_url,
+                    preview=(revised_prompt or prompt)[:200],
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
 
         except Exception as e:
             logger.exception("Image generation failed in tool")
-            return {
-                "error": f"Image generation failed: {e!s}",
-                "prompt": prompt,
-            }
+            err = f"Image generation failed: {e!s}"
+            return _failed(
+                {"error": err, "prompt": prompt},
+                error=err,
+            )
 
     return generate_image
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/index.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/index.py
index 5f76f1d52..ddfcbd7fb 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/index.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/index.py
@@ -51,5 +51,8 @@ def load_tools(
         create_generate_image_tool(
             search_space_id=d["search_space_id"],
             db_session=d["db_session"],
+            image_generation_config_id_override=d.get(
+                "image_generation_config_id_override"
+            ),
         ),
     ]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/podcast.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/podcast.py
index 55d9b3565..298257799 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/podcast.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/podcast.py
@@ -1,12 +1,28 @@
-"""Factory for a podcast-generation tool that queues background work and returns an ID for polling."""
+"""Factory for a podcast-generation tool.
 
+Dispatches the heavy generation to Celery and then polls the podcast row
+until it reaches a terminal status (READY/FAILED). The tool always
+returns a real terminal ``Receipt`` — never a pending one. The wait is
+bounded by the existing per-invocation safety net
+(``SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS`` in multi-agent mode,
+HTTP / process lifetime in single-agent mode).
+"""
+
+import logging
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.tools import tool
+from langgraph.types import Command
 from sqlalchemy.ext.asyncio import AsyncSession
 
+from app.agents.shared.deliverable_wait import wait_for_deliverable
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.db import Podcast, PodcastStatus, shielded_async_session
 
+logger = logging.getLogger(__name__)
+
 
 def create_generate_podcast_tool(
     search_space_id: int,
@@ -19,9 +35,10 @@ def create_generate_podcast_tool(
     @tool
     async def generate_podcast(
         source_content: str,
+        runtime: ToolRuntime,
         podcast_title: str = "SurfSense Podcast",
         user_prompt: str | None = None,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """
         Generate a podcast from the provided content.
 
@@ -70,23 +87,99 @@ def create_generate_podcast_tool(
                 user_prompt=user_prompt,
             )
 
-            print(f"[generate_podcast] Created podcast {podcast_id}, task: {task.id}")
+            logger.info(
+                "[generate_podcast] Created podcast %s, task: %s",
+                podcast_id,
+                task.id,
+            )
 
-            return {
-                "status": PodcastStatus.PENDING.value,
+            # Wait until the Celery worker flips the row to a terminal
+            # state. The wait is bounded only by the subagent invoke
+            # timeout (multi-agent) or HTTP lifetime (single-agent) —
+            # see app.agents.shared.deliverable_wait for details.
+            terminal_status, columns, elapsed = await wait_for_deliverable(
+                model=Podcast,
+                row_id=podcast_id,
+                columns=[Podcast.status, Podcast.file_location],
+                terminal_statuses={PodcastStatus.READY, PodcastStatus.FAILED},
+            )
+
+            if terminal_status == PodcastStatus.READY:
+                file_location = columns[1] if columns else None
+                logger.info(
+                    "[generate_podcast] Podcast %s READY in %.2fs (file=%s)",
+                    podcast_id,
+                    elapsed,
+                    file_location,
+                )
+                payload: dict[str, Any] = {
+                    "status": PodcastStatus.READY.value,
+                    "podcast_id": podcast_id,
+                    "title": podcast_title,
+                    "file_location": file_location,
+                    "message": ("Podcast generated and saved to your podcast panel."),
+                }
+                return with_receipt(
+                    payload=payload,
+                    receipt=make_receipt(
+                        route="deliverables",
+                        type="podcast",
+                        operation="generate",
+                        status="success",
+                        external_id=str(podcast_id),
+                        preview=podcast_title,
+                    ),
+                    tool_call_id=runtime.tool_call_id,
+                )
+
+            # Only other terminal state is FAILED.
+            logger.warning(
+                "[generate_podcast] Podcast %s FAILED in %.2fs",
+                podcast_id,
+                elapsed,
+            )
+            err = "Background worker reported FAILED status for this podcast."
+            payload = {
+                "status": PodcastStatus.FAILED.value,
                 "podcast_id": podcast_id,
                 "title": podcast_title,
-                "message": "Podcast generation started. This may take a few minutes.",
+                "error": err,
             }
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="podcast",
+                    operation="generate",
+                    status="failed",
+                    external_id=str(podcast_id),
+                    preview=podcast_title,
+                    error=err,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
 
         except Exception as e:
             error_message = str(e)
-            print(f"[generate_podcast] Error: {error_message}")
-            return {
+            logger.exception("[generate_podcast] Error: %s", error_message)
+            payload = {
                 "status": PodcastStatus.FAILED.value,
                 "error": error_message,
                 "title": podcast_title,
                 "podcast_id": None,
             }
+            receipt = make_receipt(
+                route="deliverables",
+                type="podcast",
+                operation="generate",
+                status="failed",
+                preview=podcast_title,
+                error=error_message,
+            )
+            return with_receipt(
+                payload=payload,
+                receipt=receipt,
+                tool_call_id=runtime.tool_call_id,
+            )
 
     return generate_podcast
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/report.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/report.py
index 385100c62..f12ca8a90 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/report.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/report.py
@@ -6,10 +6,14 @@ import logging
 import re
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.callbacks import dispatch_custom_event
 from langchain_core.messages import HumanMessage
 from langchain_core.tools import tool
+from langgraph.types import Command
 
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.db import Report, shielded_async_session
 from app.services.connector_service import ConnectorService
 from app.services.llm_service import get_document_summary_llm
@@ -573,13 +577,14 @@ def create_generate_report_tool(
     @tool
     async def generate_report(
         topic: str,
+        runtime: ToolRuntime,
         source_content: str = "",
         source_strategy: str = "provided",
         search_queries: list[str] | None = None,
         report_style: str = "detailed",
         user_instructions: str | None = None,
         parent_report_id: int | None = None,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """
         Generate a structured Markdown report artifact from provided content.
 
@@ -692,6 +697,23 @@ def create_generate_report_tool(
         parent_report_content: str | None = None
         report_group_id: int | None = None
 
+        def _failed(payload: dict[str, Any], *, error: str) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="report",
+                    operation="generate",
+                    status="failed",
+                    external_id=str(payload.get("report_id"))
+                    if payload.get("report_id") is not None
+                    else None,
+                    preview=topic,
+                    error=error,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
         async def _save_failed_report(error_msg: str) -> int | None:
             """Persist a failed report row using a short-lived session."""
             try:
@@ -753,12 +775,15 @@ def create_generate_report_tool(
                     "No LLM configured. Please configure a language model in Settings."
                 )
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": topic,
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": topic,
+                    },
+                    error=error_msg,
+                )
 
             # Build the user instructions string
             user_instructions_section = ""
@@ -971,12 +996,15 @@ def create_generate_report_tool(
             if not report_content or not isinstance(report_content, str):
                 error_msg = "LLM returned empty or invalid content"
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": topic,
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": topic,
+                    },
+                    error=error_msg,
+                )
 
             # LLMs often wrap output in ```markdown ... ``` fences — strip them
             report_content = _strip_wrapping_code_fences(report_content)
@@ -984,12 +1012,15 @@ def create_generate_report_tool(
             if not report_content:
                 error_msg = "LLM returned empty or invalid content"
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": topic,
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": topic,
+                    },
+                    error=error_msg,
+                )
 
             # Strip any existing footer(s) carried over from parent version(s)
             while report_content.rstrip().endswith(_REPORT_FOOTER):
@@ -1036,7 +1067,7 @@ def create_generate_report_tool(
                 f"{metadata.get('section_count', 0)} sections"
             )
 
-            return {
+            payload: dict[str, Any] = {
                 "status": "ready",
                 "report_id": saved_report_id,
                 "title": topic,
@@ -1045,17 +1076,32 @@ def create_generate_report_tool(
                 "report_markdown": report_content,
                 "message": f"Report generated successfully: {topic}",
             }
+            receipt = make_receipt(
+                route="deliverables",
+                type="report",
+                operation="generate",
+                status="success",
+                external_id=str(saved_report_id),
+                preview=topic,
+            )
+            return with_receipt(
+                payload=payload,
+                receipt=receipt,
+                tool_call_id=runtime.tool_call_id,
+            )
 
         except Exception as e:
             error_message = str(e)
             logger.exception(f"[generate_report] Error: {error_message}")
             report_id = await _save_failed_report(error_message)
-
-            return {
-                "status": "failed",
-                "error": error_message,
-                "report_id": report_id,
-                "title": topic,
-            }
+            return _failed(
+                {
+                    "status": "failed",
+                    "error": error_message,
+                    "report_id": report_id,
+                    "title": topic,
+                },
+                error=error_message,
+            )
 
     return generate_report
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/resume.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/resume.py
index ece3ce241..ad16b7ba7 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/resume.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/resume.py
@@ -8,10 +8,14 @@ from typing import Any
 
 import pypdf
 import typst
+from langchain.tools import ToolRuntime
 from langchain_core.callbacks import dispatch_custom_event
 from langchain_core.messages import HumanMessage
 from langchain_core.tools import tool
+from langgraph.types import Command
 
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.db import Report, shielded_async_session
 from app.services.llm_service import get_document_summary_llm
 
@@ -429,10 +433,11 @@ def create_generate_resume_tool(
     @tool
     async def generate_resume(
         user_info: str,
+        runtime: ToolRuntime,
         user_instructions: str | None = None,
         parent_report_id: int | None = None,
         max_pages: int = 1,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """
         Generate a professional resume as a Typst document.
 
@@ -476,6 +481,41 @@ def create_generate_resume_tool(
         template = _get_template()
         llm_reference = _build_llm_reference(template)
 
+        def _success(payload: dict[str, Any], *, report_id: int, title: str) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="resume",
+                    operation="generate",
+                    status="success",
+                    external_id=str(report_id),
+                    preview=title,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
+        def _failed(
+            payload: dict[str, Any],
+            *,
+            report_id: int | None,
+            error: str,
+            title: str = "Resume",
+        ) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="resume",
+                    operation="generate",
+                    status="failed",
+                    external_id=str(report_id) if report_id is not None else None,
+                    preview=title,
+                    error=error,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
         async def _save_failed_report(error_msg: str) -> int | None:
             try:
                 async with shielded_async_session() as session:
@@ -514,13 +554,17 @@ def create_generate_resume_tool(
             except ValueError as e:
                 error_msg = str(e)
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": "Resume",
-                    "content_type": "typst",
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": "Resume",
+                        "content_type": "typst",
+                    },
+                    report_id=report_id,
+                    error=error_msg,
+                )
 
             # ── Phase 1: READ ─────────────────────────────────────────────
             async with shielded_async_session() as read_session:
@@ -541,13 +585,17 @@ def create_generate_resume_tool(
                     "No LLM configured. Please configure a language model in Settings."
                 )
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": "Resume",
-                    "content_type": "typst",
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": "Resume",
+                        "content_type": "typst",
+                    },
+                    report_id=report_id,
+                    error=error_msg,
+                )
 
             # ── Phase 2: LLM GENERATION ───────────────────────────────────
 
@@ -588,13 +636,17 @@ def create_generate_resume_tool(
             if not body or not isinstance(body, str):
                 error_msg = "LLM returned empty or invalid content"
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": "Resume",
-                    "content_type": "typst",
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": "Resume",
+                        "content_type": "typst",
+                    },
+                    report_id=report_id,
+                    error=error_msg,
+                )
 
             body = _strip_typst_fences(body)
             body = _strip_imports(body)
@@ -661,13 +713,17 @@ def create_generate_resume_tool(
                         f"{compile_error or 'Unknown compile error'}"
                     )
                     report_id = await _save_failed_report(error_msg)
-                    return {
-                        "status": "failed",
-                        "error": error_msg,
-                        "report_id": report_id,
-                        "title": "Resume",
-                        "content_type": "typst",
-                    }
+                    return _failed(
+                        {
+                            "status": "failed",
+                            "error": error_msg,
+                            "report_id": report_id,
+                            "title": "Resume",
+                            "content_type": "typst",
+                        },
+                        report_id=report_id,
+                        error=error_msg,
+                    )
 
                 actual_pages = _count_pdf_pages(pdf_bytes)
                 if actual_pages <= validated_max_pages:
@@ -700,13 +756,17 @@ def create_generate_resume_tool(
                 ):
                     error_msg = "LLM returned empty content while compressing resume"
                     report_id = await _save_failed_report(error_msg)
-                    return {
-                        "status": "failed",
-                        "error": error_msg,
-                        "report_id": report_id,
-                        "title": "Resume",
-                        "content_type": "typst",
-                    }
+                    return _failed(
+                        {
+                            "status": "failed",
+                            "error": error_msg,
+                            "report_id": report_id,
+                            "title": "Resume",
+                            "content_type": "typst",
+                        },
+                        report_id=report_id,
+                        error=error_msg,
+                    )
 
                 body = _strip_typst_fences(compress_response.content)
                 body = _strip_imports(body)
@@ -718,13 +778,17 @@ def create_generate_resume_tool(
                     f"Hard limit: <= {MAX_RESUME_PAGES} page(s), actual: {actual_pages}."
                 )
                 report_id = await _save_failed_report(error_msg)
-                return {
-                    "status": "failed",
-                    "error": error_msg,
-                    "report_id": report_id,
-                    "title": "Resume",
-                    "content_type": "typst",
-                }
+                return _failed(
+                    {
+                        "status": "failed",
+                        "error": error_msg,
+                        "report_id": report_id,
+                        "title": "Resume",
+                        "content_type": "typst",
+                    },
+                    report_id=report_id,
+                    error=error_msg,
+                )
 
             # ── Phase 4: SAVE ─────────────────────────────────────────────
             dispatch_custom_event(
@@ -768,32 +832,40 @@ def create_generate_resume_tool(
 
             logger.info(f"[generate_resume] Created resume {saved_id}: {resume_title}")
 
-            return {
-                "status": "ready",
-                "report_id": saved_id,
-                "title": resume_title,
-                "content_type": "typst",
-                "is_revision": bool(parent_content),
-                "message": (
-                    f"Resume generated successfully: {resume_title}"
-                    if target_page_met
-                    else (
-                        f"Resume generated, but could not fit the target of <= {validated_max_pages} "
-                        f"page(s). Final length: {actual_pages} page(s)."
-                    )
-                ),
-            }
+            return _success(
+                {
+                    "status": "ready",
+                    "report_id": saved_id,
+                    "title": resume_title,
+                    "content_type": "typst",
+                    "is_revision": bool(parent_content),
+                    "message": (
+                        f"Resume generated successfully: {resume_title}"
+                        if target_page_met
+                        else (
+                            f"Resume generated, but could not fit the target of <= {validated_max_pages} "
+                            f"page(s). Final length: {actual_pages} page(s)."
+                        )
+                    ),
+                },
+                report_id=saved_id,
+                title=resume_title,
+            )
 
         except Exception as e:
             error_message = str(e)
             logger.exception(f"[generate_resume] Error: {error_message}")
             report_id = await _save_failed_report(error_message)
-            return {
-                "status": "failed",
-                "error": error_message,
-                "report_id": report_id,
-                "title": "Resume",
-                "content_type": "typst",
-            }
+            return _failed(
+                {
+                    "status": "failed",
+                    "error": error_message,
+                    "report_id": report_id,
+                    "title": "Resume",
+                    "content_type": "typst",
+                },
+                report_id=report_id,
+                error=error_message,
+            )
 
     return generate_resume
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/video_presentation.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/video_presentation.py
index a9f3447ab..5407c8834 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/video_presentation.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/video_presentation.py
@@ -1,12 +1,29 @@
-"""Factory for a video-presentation tool that queues background work and returns an ID for polling."""
+"""Factory for a video-presentation tool.
 
+Dispatches the heavy generation to Celery and then polls the
+video-presentation row until it reaches a terminal status (READY/FAILED).
+The tool always returns a real terminal ``Receipt`` — never a pending
+one. The wait is bounded by the existing per-invocation safety net
+(``SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS`` in multi-agent mode,
+HTTP / process lifetime in single-agent mode). Video rendering can be
+heavy; raise that ceiling if your generations routinely exceed it.
+"""
+
+import logging
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.tools import tool
+from langgraph.types import Command
 from sqlalchemy.ext.asyncio import AsyncSession
 
+from app.agents.shared.deliverable_wait import wait_for_deliverable
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.db import VideoPresentation, VideoPresentationStatus, shielded_async_session
 
+logger = logging.getLogger(__name__)
+
 
 def create_generate_video_presentation_tool(
     search_space_id: int,
@@ -19,9 +36,10 @@ def create_generate_video_presentation_tool(
     @tool
     async def generate_video_presentation(
         source_content: str,
+        runtime: ToolRuntime,
         video_title: str = "SurfSense Presentation",
         user_prompt: str | None = None,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """Generate a video presentation from the provided content.
 
         Use this tool when the user asks to create a video, presentation, slides, or slide deck.
@@ -56,25 +74,100 @@ def create_generate_video_presentation_tool(
                 user_prompt=user_prompt,
             )
 
-            print(
-                f"[generate_video_presentation] Created video presentation {video_pres_id}, task: {task.id}"
+            logger.info(
+                "[generate_video_presentation] Created video presentation %s, task: %s",
+                video_pres_id,
+                task.id,
             )
 
-            return {
-                "status": VideoPresentationStatus.PENDING.value,
+            # Wait until the Celery worker flips the row to a terminal
+            # state. The wait is bounded only by the subagent invoke
+            # timeout (multi-agent) or HTTP lifetime (single-agent) —
+            # see app.agents.shared.deliverable_wait for details.
+            terminal_status, _columns, elapsed = await wait_for_deliverable(
+                model=VideoPresentation,
+                row_id=video_pres_id,
+                columns=[VideoPresentation.status],
+                terminal_statuses={
+                    VideoPresentationStatus.READY,
+                    VideoPresentationStatus.FAILED,
+                },
+            )
+
+            if terminal_status == VideoPresentationStatus.READY:
+                logger.info(
+                    "[generate_video_presentation] %s READY in %.2fs",
+                    video_pres_id,
+                    elapsed,
+                )
+                payload: dict[str, Any] = {
+                    "status": VideoPresentationStatus.READY.value,
+                    "video_presentation_id": video_pres_id,
+                    "title": video_title,
+                    "message": "Video presentation generated and saved.",
+                }
+                return with_receipt(
+                    payload=payload,
+                    receipt=make_receipt(
+                        route="deliverables",
+                        type="video_presentation",
+                        operation="generate",
+                        status="success",
+                        external_id=str(video_pres_id),
+                        preview=video_title,
+                    ),
+                    tool_call_id=runtime.tool_call_id,
+                )
+
+            # Only other terminal state is FAILED.
+            logger.warning(
+                "[generate_video_presentation] %s FAILED in %.2fs",
+                video_pres_id,
+                elapsed,
+            )
+            err = (
+                "Background worker reported FAILED status for this video presentation."
+            )
+            payload = {
+                "status": VideoPresentationStatus.FAILED.value,
                 "video_presentation_id": video_pres_id,
                 "title": video_title,
-                "message": "Video presentation generation started. This may take a few minutes.",
+                "error": err,
             }
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="video_presentation",
+                    operation="generate",
+                    status="failed",
+                    external_id=str(video_pres_id),
+                    preview=video_title,
+                    error=err,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
 
         except Exception as e:
             error_message = str(e)
-            print(f"[generate_video_presentation] Error: {error_message}")
-            return {
+            logger.exception("[generate_video_presentation] Error: %s", error_message)
+            payload = {
                 "status": VideoPresentationStatus.FAILED.value,
                 "error": error_message,
                 "title": video_title,
                 "video_presentation_id": None,
             }
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="deliverables",
+                    type="video_presentation",
+                    operation="generate",
+                    status="failed",
+                    preview=video_title,
+                    error=error_message,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
 
     return generate_video_presentation
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_cloud.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_cloud.md
index 2ae21c271..c4e36fc73 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_cloud.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_cloud.md
@@ -150,11 +150,12 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
+<include snippet="output_contract_base"/>
+
+Route-specific rules:
 
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
 - `evidence.content_excerpt`: max ~500 characters. Surface a short excerpt or a one-sentence summary, not the full file body. The supervisor already sees the tool's raw output.
 
+<include snippet="verifiable_handle"/>
+
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_desktop.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_desktop.md
index 4e5465aaf..25dafa3df 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_desktop.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/knowledge_base/system_prompt_desktop.md
@@ -33,7 +33,7 @@ Map outcomes to your `status`:
 - Any other `"Error: …"` → `status=error` and relay the tool's message verbatim as `next_step`.
 - HITL rejection → `status=blocked` with `next_step="User declined this filesystem action. Do not retry."`.
 
-You construct the structured `evidence` fields from your own knowledge of what you called and what you observed — the tools do not return them. `chunk_ids` apply only to `<priority_documents>` hits; for local-file operations leave them `null`. Never report values you did not actually see.
+You construct the structured `evidence` fields from your own knowledge of what you called and what you observed — the tools do not return them. Never report values you did not actually see. (`chunk_ids` is always `null` in desktop mode — see "Chunk citations in your prose" below.)
 
 ## Chunk citations in your prose
 
@@ -117,11 +117,12 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
+<include snippet="output_contract_base"/>
+
+Route-specific rules:
 
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
 - `evidence.content_excerpt`: max ~500 characters. Surface a short excerpt or a one-sentence summary, not the full file body. The supervisor already sees the tool's raw output.
 
+<include snippet="verifiable_handle"/>
+
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/memory/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/memory/system_prompt.md
index 13f7b68a5..b656c5019 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/memory/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/memory/system_prompt.md
@@ -6,7 +6,7 @@ Persist durable preferences/facts/instructions with `update_memory` while avoidi
 </goal>
 
 <visibility_scope>
-{{MEMORY_VISIBILITY_POLICY}}
+Memory is search-space-scoped; do not assume cross-workspace visibility.
 </visibility_scope>
 
 <available_tools>
@@ -53,10 +53,8 @@ Return **only** one JSON object (no markdown/prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` -> `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` -> `next_step` must be non-null.
-- `status=blocked` due to missing required inputs -> `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - `evidence.memory_category` is a semantic classification for supervisor logs
   only. It is not the persisted storage format and must not force inline
   `[fact|preference|instruction]` markers into saved memory.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/system_prompt.md
index f1a22ddf1..1b9ccaefa 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/system_prompt.md
@@ -8,7 +8,6 @@ Gather and synthesize evidence using SurfSense research tools with clear citatio
 <available_tools>
 - `web_search`
 - `scrape_webpage`
-- `search_surfsense_docs`
 </available_tools>
 
 <tool_policy>
@@ -46,10 +45,8 @@ Return **only** one JSON object (no markdown/prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` -> `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` -> `next_step` must be non-null.
-- `status=blocked` due to missing required inputs -> `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - `evidence.findings`: max 10 entries, each a single sentence stating one distinct fact. Do not paste raw paragraphs, scraped pages, or quote blocks.
 - `evidence.sources`: max 10 URLs, one per finding when applicable. List each URL once.
 </output_contract>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/__init__.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/__init__.py
index 414cc96f4..7234942b6 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/__init__.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/__init__.py
@@ -1,11 +1,9 @@
-"""Research-stage tools: web search, scrape, and in-product doc search."""
+"""Research-stage tools: web search and scrape."""
 
 from .scrape_webpage import create_scrape_webpage_tool
-from .search_surfsense_docs import create_search_surfsense_docs_tool
 from .web_search import create_web_search_tool
 
 __all__ = [
     "create_scrape_webpage_tool",
-    "create_search_surfsense_docs_tool",
     "create_web_search_tool",
 ]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/index.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/index.py
index ea544a8da..d8abce46c 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/index.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/index.py
@@ -9,7 +9,6 @@ from langchain_core.tools import BaseTool
 from app.agents.new_chat.permissions import Ruleset
 
 from .scrape_webpage import create_scrape_webpage_tool
-from .search_surfsense_docs import create_search_surfsense_docs_tool
 from .web_search import create_web_search_tool
 
 NAME = "research"
@@ -27,5 +26,4 @@ def load_tools(
             available_connectors=d.get("available_connectors"),
         ),
         create_scrape_webpage_tool(firecrawl_api_key=d.get("firecrawl_api_key")),
-        create_search_surfsense_docs_tool(db_session=d["db_session"]),
     ]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/search_surfsense_docs.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/search_surfsense_docs.py
deleted file mode 100644
index ccc5c49e2..000000000
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/builtins/research/tools/search_surfsense_docs.py
+++ /dev/null
@@ -1,145 +0,0 @@
-"""Semantic search over pre-indexed in-app documentation chunks for user how-to questions."""
-
-import asyncio
-import json
-
-from langchain_core.tools import tool
-from sqlalchemy import select
-from sqlalchemy.ext.asyncio import AsyncSession
-
-from app.db import SurfsenseDocsChunk, SurfsenseDocsDocument
-from app.utils.document_converters import embed_text
-from app.utils.surfsense_docs import surfsense_docs_public_url
-
-
-def format_surfsense_docs_results(results: list[tuple]) -> str:
-    """Format (chunk, document) rows as XML with ``doc-`` chunk IDs for citations and UI routing."""
-    if not results:
-        return "No relevant Surfsense documentation found for your query."
-
-    # Group chunks by document
-    grouped: dict[int, dict] = {}
-    for chunk, doc in results:
-        public_url = surfsense_docs_public_url(doc.source)
-        if doc.id not in grouped:
-            grouped[doc.id] = {
-                "document_id": f"doc-{doc.id}",
-                "document_type": "SURFSENSE_DOCS",
-                "title": doc.title,
-                "url": public_url,
-                "metadata": {"source": doc.source, "public_url": public_url},
-                "chunks": [],
-            }
-        grouped[doc.id]["chunks"].append(
-            {
-                "chunk_id": f"doc-{chunk.id}",
-                "content": chunk.content,
-            }
-        )
-
-    # Render XML matching format_documents_for_context structure
-    parts: list[str] = []
-    for g in grouped.values():
-        metadata_json = json.dumps(g["metadata"], ensure_ascii=False)
-
-        parts.append("<document>")
-        parts.append("<document_metadata>")
-        parts.append(f"  <document_id>{g['document_id']}</document_id>")
-        parts.append(f"  <document_type>{g['document_type']}</document_type>")
-        parts.append(f"  <title><![CDATA[{g['title']}]]></title>")
-        parts.append(f"  <url><![CDATA[{g['url']}]]></url>")
-        parts.append(f"  <metadata_json><![CDATA[{metadata_json}]]></metadata_json>")
-        parts.append("</document_metadata>")
-        parts.append("")
-        parts.append("<document_content>")
-
-        for ch in g["chunks"]:
-            parts.append(
-                f"  <chunk id='{ch['chunk_id']}'><![CDATA[{ch['content']}]]></chunk>"
-            )
-
-        parts.append("</document_content>")
-        parts.append("</document>")
-        parts.append("")
-
-    return "\n".join(parts).strip()
-
-
-async def search_surfsense_docs_async(
-    query: str,
-    db_session: AsyncSession,
-    top_k: int = 10,
-) -> str:
-    """
-    Search Surfsense documentation using vector similarity.
-
-    Args:
-        query: The search query about Surfsense usage
-        db_session: Database session for executing queries
-        top_k: Number of results to return
-
-    Returns:
-        Formatted string with relevant documentation content
-    """
-    # Get embedding for the query
-    query_embedding = await asyncio.to_thread(embed_text, query)
-
-    # Vector similarity search on chunks, joining with documents
-    stmt = (
-        select(SurfsenseDocsChunk, SurfsenseDocsDocument)
-        .join(
-            SurfsenseDocsDocument,
-            SurfsenseDocsChunk.document_id == SurfsenseDocsDocument.id,
-        )
-        .order_by(SurfsenseDocsChunk.embedding.op("<=>")(query_embedding))
-        .limit(top_k)
-    )
-
-    result = await db_session.execute(stmt)
-    rows = result.all()
-
-    return format_surfsense_docs_results(rows)
-
-
-def create_search_surfsense_docs_tool(db_session: AsyncSession):
-    """
-    Factory function to create the search_surfsense_docs tool.
-
-    Args:
-        db_session: Database session for executing queries
-
-    Returns:
-        A configured tool function for searching Surfsense documentation
-    """
-
-    @tool
-    async def search_surfsense_docs(query: str, top_k: int = 10) -> str:
-        """
-        Search Surfsense documentation for help with using the application.
-
-        Use this tool when the user asks questions about:
-        - How to use Surfsense features
-        - Installation and setup instructions
-        - Configuration options and settings
-        - Troubleshooting common issues
-        - Available connectors and integrations
-        - Browser extension usage
-        - API documentation
-
-        This searches the official Surfsense documentation that was indexed
-        at deployment time. It does NOT search the user's personal knowledge base.
-
-        Args:
-            query: The search query about Surfsense usage or features
-            top_k: Number of documentation chunks to retrieve (default: 10)
-
-        Returns:
-            Relevant documentation content formatted with chunk IDs for citations
-        """
-        return await search_surfsense_docs_async(
-            query=query,
-            db_session=db_session,
-            top_k=top_k,
-        )
-
-    return search_surfsense_docs
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/airtable/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/airtable/system_prompt.md
index 9434db7a1..e6a639af3 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/airtable/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/airtable/system_prompt.md
@@ -92,12 +92,12 @@ Return **only** one JSON object (no markdown, no prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - For blocked ambiguity, populate `evidence.matched_candidates` with up to 5 options (`id` + `label` — works for any kind of candidate: base, table, field, choice, record, etc.).
 - For discovery-only queries (lists), set `evidence.items` to `{ "total": N }` and list the matched items in `action_summary` (record id, primary-field value, and 1-2 most relevant fields; up to 10 entries, then `"...and N more"`).
 </output_contract>
 
+<include snippet="verifiable_handle"/>
+
 Discover before you mutate; never guess identifiers, choice IDs, or required fields.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/calendar/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/calendar/system_prompt.md
index a663f5b37..9168f4d2b 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/calendar/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/calendar/system_prompt.md
@@ -111,11 +111,12 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+Route-specific rules:
 - For `search_calendar_events` results, set `evidence.items` to `{ "total": N }` and list the matched events in `action_summary` (title, date, start time; up to 10 entries, then `"...and N more"`).
 - For ambiguous matches across `update_calendar_event` / `delete_calendar_event`, populate `evidence.matched_candidates` with up to 5 options (`id` + `label`, where `label` should include the event title and start time for human readability).
 
+<include snippet="verifiable_handle"/>
+
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/clickup/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/clickup/system_prompt.md
index 898197f14..029609670 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/clickup/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/clickup/system_prompt.md
@@ -93,12 +93,12 @@ Return **only** one JSON object (no markdown, no prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - For blocked ambiguity, populate `evidence.matched_candidates` with up to 5 options (`id` + `label` — works for any kind of candidate: task, list, member, status, custom-field choice, etc.).
 - For discovery-only queries (lists), set `evidence.items` to `{ "total": N }` and list the matched items in `action_summary` (task id, title, status, assignees; up to 10 entries, then `"...and N more"`).
 </output_contract>
 
+<include snippet="verifiable_handle"/>
+
 Discover before you mutate; never guess identifiers, list statuses, or assignees.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/confluence/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/confluence/system_prompt.md
index 991ec3d03..5aa687cd0 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/confluence/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/confluence/system_prompt.md
@@ -100,9 +100,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/discord/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/discord/system_prompt.md
index 249f9ec8b..aaabd2ac3 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/discord/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/discord/system_prompt.md
@@ -108,9 +108,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Resolve before you call; verify before you send; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/dropbox/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/dropbox/system_prompt.md
index a963b0ec6..8e498dfdf 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/dropbox/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/dropbox/system_prompt.md
@@ -98,9 +98,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/system_prompt.md
index c04d69ad0..02aff5589 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/system_prompt.md
@@ -110,11 +110,12 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+Route-specific rules:
 - For `search_gmail` results, set `evidence.items` to `{ "total": N }` and list the matched emails in `action_summary` (sender, subject, date; up to 10 entries, then `"...and N more"`).
 - For ambiguous matches across `update_gmail_draft` / `trash_gmail_email` / `read_gmail_email`, populate `evidence.matched_candidates` with up to 5 options (`id` + `label`).
 
+<include snippet="verifiable_handle"/>
+
 Infer before you call; verify before you send; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/tools/send_email.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/tools/send_email.py
index 578233b57..0680e51cb 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/tools/send_email.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/gmail/tools/send_email.py
@@ -5,12 +5,16 @@ from datetime import datetime
 from email.mime.text import MIMEText
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.tools import tool
+from langgraph.types import Command
 from sqlalchemy.ext.asyncio import AsyncSession
 
 from app.agents.multi_agent_chat.subagents.shared.hitl.approvals.self_gated import (
     request_approval,
 )
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.services.gmail import GmailToolMetadataService
 
 logger = logging.getLogger(__name__)
@@ -26,9 +30,10 @@ def create_send_gmail_email_tool(
         to: str,
         subject: str,
         body: str,
+        runtime: ToolRuntime,
         cc: str | None = None,
         bcc: str | None = None,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """Send an email via Gmail.
 
         Use when the user explicitly asks to send an email. This sends the
@@ -60,11 +65,34 @@ def create_send_gmail_email_tool(
         """
         logger.info(f"send_gmail_email called: to='{to}', subject='{subject}'")
 
+        def _emit(
+            payload: dict[str, Any],
+            *,
+            success: bool,
+            external_id: str | None = None,
+            error: str | None = None,
+        ) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="gmail",
+                    type="message",
+                    operation="send",
+                    status="success" if success else "failed",
+                    external_id=external_id,
+                    preview=f"to={to}: {subject}"[:200],
+                    error=error,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
         if db_session is None or search_space_id is None or user_id is None:
-            return {
-                "status": "error",
-                "message": "Gmail tool not properly configured. Please contact support.",
-            }
+            msg = "Gmail tool not properly configured. Please contact support."
+            return _emit(
+                {"status": "error", "message": msg},
+                success=False,
+                error=msg,
+            )
 
         try:
             metadata_service = GmailToolMetadataService(db_session)
@@ -74,16 +102,24 @@ def create_send_gmail_email_tool(
 
             if "error" in context:
                 logger.error(f"Failed to fetch creation context: {context['error']}")
-                return {"status": "error", "message": context["error"]}
+                return _emit(
+                    {"status": "error", "message": context["error"]},
+                    success=False,
+                    error=context["error"],
+                )
 
             accounts = context.get("accounts", [])
             if accounts and all(a.get("auth_expired") for a in accounts):
                 logger.warning("All Gmail accounts have expired authentication")
-                return {
-                    "status": "auth_error",
-                    "message": "All connected Gmail accounts need re-authentication. Please re-authenticate in your connector settings.",
-                    "connector_type": "gmail",
-                }
+                return _emit(
+                    {
+                        "status": "auth_error",
+                        "message": "All connected Gmail accounts need re-authentication. Please re-authenticate in your connector settings.",
+                        "connector_type": "gmail",
+                    },
+                    success=False,
+                    error="auth_expired",
+                )
 
             logger.info(
                 f"Requesting approval for sending Gmail email: to='{to}', subject='{subject}'"
@@ -103,10 +139,14 @@ def create_send_gmail_email_tool(
             )
 
             if result.rejected:
-                return {
-                    "status": "rejected",
-                    "message": "User declined. The email was not sent. Do not ask again or suggest alternatives.",
-                }
+                return _emit(
+                    {
+                        "status": "rejected",
+                        "message": "User declined. The email was not sent. Do not ask again or suggest alternatives.",
+                    },
+                    success=False,
+                    error="user_rejected",
+                )
 
             final_to = result.params.get("to", to)
             final_subject = result.params.get("subject", subject)
@@ -135,10 +175,14 @@ def create_send_gmail_email_tool(
                 )
                 connector = result.scalars().first()
                 if not connector:
-                    return {
-                        "status": "error",
-                        "message": "Selected Gmail connector is invalid or has been disconnected.",
-                    }
+                    msg = (
+                        "Selected Gmail connector is invalid or has been disconnected."
+                    )
+                    return _emit(
+                        {"status": "error", "message": msg},
+                        success=False,
+                        error=msg,
+                    )
                 actual_connector_id = connector.id
             else:
                 result = await db_session.execute(
@@ -150,10 +194,12 @@ def create_send_gmail_email_tool(
                 )
                 connector = result.scalars().first()
                 if not connector:
-                    return {
-                        "status": "error",
-                        "message": "No Gmail connector found. Please connect Gmail in your workspace settings.",
-                    }
+                    msg = "No Gmail connector found. Please connect Gmail in your workspace settings."
+                    return _emit(
+                        {"status": "error", "message": msg},
+                        success=False,
+                        error=msg,
+                    )
                 actual_connector_id = connector.id
 
             logger.info(
@@ -166,10 +212,12 @@ def create_send_gmail_email_tool(
             ):
                 cca_id = connector.config.get("composio_connected_account_id")
                 if not cca_id:
-                    return {
-                        "status": "error",
-                        "message": "Composio connected account ID not found for this Gmail connector.",
-                    }
+                    msg = "Composio connected account ID not found for this Gmail connector."
+                    return _emit(
+                        {"status": "error", "message": msg},
+                        success=False,
+                        error=msg,
+                    )
 
                 from app.services.composio_service import ComposioService
 
@@ -187,7 +235,11 @@ def create_send_gmail_email_tool(
                     bcc=final_bcc,
                 )
                 if error:
-                    return {"status": "error", "message": error}
+                    return _emit(
+                        {"status": "error", "message": error},
+                        success=False,
+                        error=error,
+                    )
                 sent = {"id": sent_message_id, "threadId": sent_thread_id}
             else:
                 from google.oauth2.credentials import Credentials
@@ -275,11 +327,15 @@ def create_send_gmail_email_tool(
                                 actual_connector_id,
                                 exc_info=True,
                             )
-                        return {
-                            "status": "insufficient_permissions",
-                            "connector_id": actual_connector_id,
-                            "message": "This Gmail account needs additional permissions. Please re-authenticate in connector settings.",
-                        }
+                        return _emit(
+                            {
+                                "status": "insufficient_permissions",
+                                "connector_id": actual_connector_id,
+                                "message": "This Gmail account needs additional permissions. Please re-authenticate in connector settings.",
+                            },
+                            success=False,
+                            error="insufficient_permissions",
+                        )
                     raise
 
             logger.info(
@@ -310,12 +366,16 @@ def create_send_gmail_email_tool(
                 logger.warning(f"KB sync after send failed: {kb_err}")
                 kb_message_suffix = " This email will be added to your knowledge base in the next scheduled sync."
 
-            return {
-                "status": "success",
-                "message_id": sent.get("id"),
-                "thread_id": sent.get("threadId"),
-                "message": f"Successfully sent email to '{final_to}' with subject '{final_subject}'.{kb_message_suffix}",
-            }
+            return _emit(
+                {
+                    "status": "success",
+                    "message_id": sent.get("id"),
+                    "thread_id": sent.get("threadId"),
+                    "message": f"Successfully sent email to '{final_to}' with subject '{final_subject}'.{kb_message_suffix}",
+                },
+                success=True,
+                external_id=sent.get("id"),
+            )
 
         except Exception as e:
             from langgraph.errors import GraphInterrupt
@@ -324,9 +384,11 @@ def create_send_gmail_email_tool(
                 raise
 
             logger.error(f"Error sending Gmail email: {e}", exc_info=True)
-            return {
-                "status": "error",
-                "message": "Something went wrong while sending the email. Please try again.",
-            }
+            msg = "Something went wrong while sending the email. Please try again."
+            return _emit(
+                {"status": "error", "message": msg},
+                success=False,
+                error=str(e),
+            )
 
     return send_gmail_email
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/google_drive/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/google_drive/system_prompt.md
index b78e1f7c6..10140d842 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/google_drive/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/google_drive/system_prompt.md
@@ -100,9 +100,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/jira/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/jira/system_prompt.md
index 4dcc56454..d7816dead 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/jira/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/jira/system_prompt.md
@@ -111,12 +111,12 @@ Return **only** one JSON object (no markdown, no prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - For blocked ambiguity, populate `evidence.matched_candidates` with up to 5 options (`id` + `label` — works for any kind of candidate: site, project, issue, user, transition, etc.).
 - For discovery-only queries (lists), set `evidence.items` to `{ "total": N }` and list the matched items in `action_summary` (issue key, summary, status, assignee; up to 10 entries, then `"...and N more"`).
 </output_contract>
 
+<include snippet="verifiable_handle"/>
+
 Discover before you mutate; never guess identifiers, transitions, or required fields.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/linear/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/linear/system_prompt.md
index 1d96a4105..5dfd29112 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/linear/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/linear/system_prompt.md
@@ -101,12 +101,12 @@ Return **only** one JSON object (no markdown, no prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - For blocked ambiguity, populate `evidence.matched_candidates` with up to 5 options (`id` + `label` — works for any kind of candidate: issue, user, project, state, etc.).
 - For discovery-only queries (lists), set `evidence.items` to `{ "total": N }` and list the matched items in `action_summary` (identifier, title, state, assignee; up to 10 entries, then `"...and N more"`).
 </output_contract>
 
+<include snippet="verifiable_handle"/>
+
 Discover before you mutate; never guess identifiers.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/luma/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/luma/system_prompt.md
index 0f42161b3..e483789d5 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/luma/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/luma/system_prompt.md
@@ -101,9 +101,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; verify before you create; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/system_prompt.md
index b38c30167..909c72471 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/system_prompt.md
@@ -99,9 +99,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/tools/delete_page.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/tools/delete_page.py
index 85d0ef22e..c98b25811 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/tools/delete_page.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/notion/tools/delete_page.py
@@ -1,12 +1,16 @@
 import logging
 from typing import Any
 
+from langchain.tools import ToolRuntime
 from langchain_core.tools import tool
+from langgraph.types import Command
 from sqlalchemy.ext.asyncio import AsyncSession
 
 from app.agents.multi_agent_chat.subagents.shared.hitl.approvals.self_gated import (
     request_approval,
 )
+from app.agents.shared.receipt import make_receipt
+from app.agents.shared.receipt_command import with_receipt
 from app.connectors.notion_history import NotionAPIError, NotionHistoryConnector
 from app.services.notion.tool_metadata_service import NotionToolMetadataService
 
@@ -35,8 +39,9 @@ def create_delete_notion_page_tool(
     @tool
     async def delete_notion_page(
         page_title: str,
+        runtime: ToolRuntime,
         delete_from_kb: bool = False,
-    ) -> dict[str, Any]:
+    ) -> Command:
         """Delete (archive) a Notion page.
 
         Use this tool when the user asks you to delete, remove, or archive
@@ -65,14 +70,39 @@ def create_delete_notion_page_tool(
             f"delete_notion_page called: page_title='{page_title}', delete_from_kb={delete_from_kb}"
         )
 
+        def _emit(
+            payload: dict[str, Any],
+            *,
+            status: str,
+            external_id: str | None = None,
+            error: str | None = None,
+        ) -> Command:
+            return with_receipt(
+                payload=payload,
+                receipt=make_receipt(
+                    route="notion",
+                    type="page",
+                    operation="delete",
+                    status="success" if status == "success" else "failed",
+                    external_id=external_id,
+                    preview=page_title,
+                    error=error,
+                ),
+                tool_call_id=runtime.tool_call_id,
+            )
+
         if db_session is None or search_space_id is None or user_id is None:
             logger.error(
                 "Notion tool not properly configured - missing required parameters"
             )
-            return {
-                "status": "error",
-                "message": "Notion tool not properly configured. Please contact support.",
-            }
+            return _emit(
+                {
+                    "status": "error",
+                    "message": "Notion tool not properly configured. Please contact support.",
+                },
+                status="error",
+                error="Notion tool not properly configured. Please contact support.",
+            )
 
         try:
             # Get page context (page_id, account, title) from indexed data
@@ -86,16 +116,18 @@ def create_delete_notion_page_tool(
                 # Check if it's a "not found" error (softer handling for LLM)
                 if "not found" in error_msg.lower():
                     logger.warning(f"Page not found: {error_msg}")
-                    return {
-                        "status": "not_found",
-                        "message": error_msg,
-                    }
+                    return _emit(
+                        {"status": "not_found", "message": error_msg},
+                        status="error",
+                        error=error_msg,
+                    )
                 else:
                     logger.error(f"Failed to fetch delete context: {error_msg}")
-                    return {
-                        "status": "error",
-                        "message": error_msg,
-                    }
+                    return _emit(
+                        {"status": "error", "message": error_msg},
+                        status="error",
+                        error=error_msg,
+                    )
 
             account = context.get("account", {})
             if account.get("auth_expired"):
@@ -103,10 +135,14 @@ def create_delete_notion_page_tool(
                     "Notion account %s has expired authentication",
                     account.get("id"),
                 )
-                return {
-                    "status": "auth_error",
-                    "message": "The Notion account for this page needs re-authentication. Please re-authenticate in your connector settings.",
-                }
+                return _emit(
+                    {
+                        "status": "auth_error",
+                        "message": "The Notion account for this page needs re-authentication. Please re-authenticate in your connector settings.",
+                    },
+                    status="error",
+                    error="auth_expired",
+                )
 
             page_id = context.get("page_id")
             connector_id_from_context = account.get("id")
@@ -129,10 +165,14 @@ def create_delete_notion_page_tool(
 
             if result.rejected:
                 logger.info("Notion page deletion rejected by user")
-                return {
-                    "status": "rejected",
-                    "message": "User declined. Do not retry or suggest alternatives.",
-                }
+                return _emit(
+                    {
+                        "status": "rejected",
+                        "message": "User declined. Do not retry or suggest alternatives.",
+                    },
+                    status="error",
+                    error="user_rejected",
+                )
 
             final_page_id = result.params.get("page_id", page_id)
             final_connector_id = result.params.get(
@@ -165,18 +205,26 @@ def create_delete_notion_page_tool(
                     logger.error(
                         f"Invalid connector_id={final_connector_id} for search_space_id={search_space_id}"
                     )
-                    return {
-                        "status": "error",
-                        "message": "Selected Notion account is invalid or has been disconnected. Please select a valid account.",
-                    }
+                    return _emit(
+                        {
+                            "status": "error",
+                            "message": "Selected Notion account is invalid or has been disconnected. Please select a valid account.",
+                        },
+                        status="error",
+                        error="invalid_connector",
+                    )
                 actual_connector_id = connector.id
                 logger.info(f"Validated Notion connector: id={actual_connector_id}")
             else:
                 logger.error("No connector found for this page")
-                return {
-                    "status": "error",
-                    "message": "No connector found for this page.",
-                }
+                return _emit(
+                    {
+                        "status": "error",
+                        "message": "No connector found for this page.",
+                    },
+                    status="error",
+                    error="no_connector",
+                )
 
             # Create connector instance
             notion_connector = NotionHistoryConnector(
@@ -232,7 +280,13 @@ def create_delete_notion_page_tool(
                         f"{result.get('message', '')} (also removed from knowledge base)"
                     )
 
-            return result
+            status = result.get("status", "error")
+            return _emit(
+                result,
+                status=status,
+                external_id=str(final_page_id) if final_page_id else None,
+                error=None if status == "success" else result.get("message"),
+            )
 
         except Exception as e:
             from langgraph.errors import GraphInterrupt
@@ -245,20 +299,28 @@ def create_delete_notion_page_tool(
             if isinstance(e, NotionAPIError) and (
                 "401" in error_str or "unauthorized" in error_str
             ):
-                return {
-                    "status": "auth_error",
-                    "message": str(e),
-                    "connector_id": connector_id_from_context
-                    if "connector_id_from_context" in dir()
-                    else None,
-                    "connector_type": "notion",
-                }
+                return _emit(
+                    {
+                        "status": "auth_error",
+                        "message": str(e),
+                        "connector_id": connector_id_from_context
+                        if "connector_id_from_context" in dir()
+                        else None,
+                        "connector_type": "notion",
+                    },
+                    status="error",
+                    error=str(e),
+                )
             if isinstance(e, ValueError | NotionAPIError):
                 message = str(e)
             else:
                 message = (
                     "Something went wrong while deleting the page. Please try again."
                 )
-            return {"status": "error", "message": message}
+            return _emit(
+                {"status": "error", "message": message},
+                status="error",
+                error=message,
+            )
 
     return delete_notion_page
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/onedrive/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/onedrive/system_prompt.md
index 8ae444a58..4b45b05a9 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/onedrive/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/onedrive/system_prompt.md
@@ -97,9 +97,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Infer before you call; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/slack/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/slack/system_prompt.md
index 3c24b19c9..e4e0d1f6f 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/slack/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/slack/system_prompt.md
@@ -87,12 +87,12 @@ Return **only** one JSON object (no markdown, no prose):
   "missing_fields": string[] | null,
   "assumptions": string[] | null
 }
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+Route-specific rules:
 - For blocked ambiguity, populate `evidence.matched_candidates` with up to 5 options (`id` + `label` — works for any kind of candidate: channel, user, message, thread).
 - For discovery-only queries (lists), set `evidence.items` to `{ "total": N }` and list the matched items in `action_summary` (channel/user, key identifier, timestamp, short snippet; up to 10 entries, then `"...and N more"`).
 </output_contract>
 
+<include snippet="verifiable_handle"/>
+
 Discover before you post; never guess channel, user, or thread targets.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/teams/system_prompt.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/teams/system_prompt.md
index c3a280f79..9b283acf5 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/teams/system_prompt.md
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/connectors/teams/system_prompt.md
@@ -115,9 +115,8 @@ Return **only** one JSON object (no markdown or prose outside it):
 }
 ```
 
-Rules:
-- `status=success` → `next_step=null`, `missing_fields=null`.
-- `status=partial|blocked|error` → `next_step` must be non-null.
-- `status=blocked` due to missing required inputs → `missing_fields` must be non-null.
+<include snippet="output_contract_base"/>
+
+<include snippet="verifiable_handle"/>
 
 Resolve before you call; verify before you send; map every tool outcome faithfully.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/hitl/approvals/self_gated/request.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/hitl/approvals/self_gated/request.py
index 8729ea85b..2f7e3cd35 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/hitl/approvals/self_gated/request.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/hitl/approvals/self_gated/request.py
@@ -49,6 +49,7 @@ def request_approval(
     params: dict[str, Any],
     context: dict[str, Any] | None = None,
     trusted_tools: list[str] | None = None,
+    tool_call_id: str | None = None,
 ) -> HITLResult:
     """Pause the graph for user approval and return the user's decision.
 
@@ -64,6 +65,10 @@ def request_approval(
             forwarded verbatim to the FE for richer card chrome.
         trusted_tools: Per-session allowlist; when ``tool_name`` is in it the
             interrupt is skipped and the tool runs immediately.
+        tool_call_id: Caller's LangChain tool-call id. Required for tools
+            running directly on the main agent; subagent-mounted tools omit
+            it (the ``task`` chokepoint stamps it on re-raise — see
+            :mod:`...checkpointed_subagent_middleware.propagation`).
 
     Returns:
         :class:`HITLResult` with ``rejected=True`` if the user declined or
@@ -90,6 +95,8 @@ def request_approval(
         interrupt_type=action_type,
         context=context,
     )
+    if tool_call_id:
+        payload["tool_call_id"] = tool_call_id
     approval = interrupt(payload)
 
     parsed = parse_lc_envelope(approval)
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/md_file_reader.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/md_file_reader.py
index 2fce413a6..5694e4326 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/md_file_reader.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/md_file_reader.py
@@ -2,8 +2,11 @@
 
 from __future__ import annotations
 
+from functools import lru_cache
 from importlib import resources
 
+_SHARED_SNIPPETS_PACKAGE = "app.agents.multi_agent_chat.subagents.shared.snippets"
+
 
 def read_md_file(package: str, stem: str) -> str:
     """Load ``{stem}.md`` from ``package`` via importlib resources, or return empty."""
@@ -12,3 +15,13 @@ def read_md_file(package: str, stem: str) -> str:
         return ""
     text = ref.read_text(encoding="utf-8")
     return text.rstrip("\n")
+
+
+@lru_cache(maxsize=64)
+def read_shared_snippet(name: str) -> str:
+    """Load a shared markdown snippet from the snippets package.
+
+    Cached because snippets are static at runtime and resolved many times
+    (once per subagent build, plus per-subagent-per-route).
+    """
+    return read_md_file(_SHARED_SNIPPETS_PACKAGE, name)
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/__init__.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/__init__.py
new file mode 100644
index 000000000..802a8e241
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/__init__.py
@@ -0,0 +1,6 @@
+"""Shared markdown snippets composed into every subagent system prompt.
+
+Resolved at build time by :func:`pack_subagent` in ``subagent_builder.py``
+via the ``<include snippet="NAME"/>`` directive. See ``output_contract_base.md``
+and ``verifiable_handle.md`` for the included content.
+"""
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/output_contract_base.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/output_contract_base.md
new file mode 100644
index 000000000..100daae75
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/output_contract_base.md
@@ -0,0 +1,6 @@
+Rules (universal):
+- `status=success` -> `next_step=null`, `missing_fields=null`.
+- `status=partial|blocked|error` -> `next_step` must be non-null.
+- `status=blocked` due to missing required inputs -> `missing_fields` must be non-null.
+- `assumptions`: any inferences you made about the user's intent; `null` when no inferences were needed.
+- The `evidence` object's fields are documented in your route-specific `<output_contract>` above; never invent fields the tool did not return.
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/verifiable_handle.md b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/verifiable_handle.md
new file mode 100644
index 000000000..bea070ce9
--- /dev/null
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/snippets/verifiable_handle.md
@@ -0,0 +1,10 @@
+<verifiable_handle>
+Mutating tools you call return a structured `Receipt` object alongside their normal payload (see `evidence.receipts` in your `<output_contract>`). The supervisor uses the Receipt's `verifiable_url` and `external_id` to independently confirm the operation succeeded - do not paraphrase, shorten, or guess these values.
+
+Rules:
+- Quote each Receipt's `verifiable_url` and `external_id` **verbatim** in `evidence.receipts`. Copy character-for-character; never retype from memory.
+- If a Receipt has `status="failed"`, set your own `status="error"` and put the Receipt's `error` field in `next_step`.
+- If a Receipt has `status="pending"` (async backends — podcasts, video presentations, anything queued through Celery), report `status=success`, surface the pending Receipt as-is, and tell the supervisor in `action_summary` that the artefact is **being generated in the background** (e.g. "Podcast 38 queued; orchestrator should report it as kicked off, not yet ready"). A pending Receipt almost always lacks `verifiable_url` because the artefact does not exist yet — that is expected, not a defect. Do **not** wait, poll, or retry; control returns to the supervisor immediately and the asset becomes visible to the user out of band via its own UI surface.
+- Never claim a mutation succeeded without a matching Receipt with `status="success"` or `"pending"` in your tool results this turn.
+- For tools that do not return a Receipt (read-only operations, search, lookup), the receipt rules do not apply; only the route-specific `evidence` fields matter.
+</verifiable_handle>
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/spec.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/spec.py
index 797ab535b..f891f94d2 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/spec.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/spec.py
@@ -2,12 +2,30 @@
 
 from __future__ import annotations
 
+from collections.abc import Callable, Mapping
 from dataclasses import dataclass
+from typing import Any
 
 from deepagents import SubAgent
 
 from app.agents.new_chat.permissions import Ruleset
 
+# A context-hint provider receives the parent-agent ``runtime.state`` mapping
+# and the ``description`` the orchestrator wrote, and returns a short string
+# the runtime prepends to the subagent's first ``HumanMessage``. Used for
+# things like "current search-space id is X" or "the user is in workspace Y" —
+# never for full corpora, since the prepended text consumes the subagent's
+# prompt budget on every invocation. Return ``None`` (or an empty string) to
+# skip the hint for this call.
+ContextHintProvider = Callable[[Mapping[str, Any], str], str | None]
+
+# Custom key stashed on the deepagents ``SubAgent`` dict so the provider
+# survives the trip from ``pack_subagent`` → registry → middleware →
+# task_tool. ``deepagents.create_agent`` only extracts the keys it
+# recognises, so an extra key here is dropped silently at compile time.
+# The prefix avoids any collision with future deepagents fields.
+SURF_CONTEXT_HINT_PROVIDER_KEY = "surf_context_hint_provider"
+
 
 @dataclass(frozen=True, slots=True)
 class SurfSenseSubagentSpec:
@@ -20,10 +38,22 @@ class SurfSenseSubagentSpec:
             layers them into the subagent's :class:`PermissionMiddleware`,
             so each subagent owns its own ruleset without aliasing the
             shared rule engine.
+        context_hint_provider: Optional callback invoked once per ``task(...)``
+            invocation, immediately before the subagent runs. Its return
+            value is prepended to the subagent's first ``HumanMessage`` so
+            the subagent can see things it would otherwise have to discover
+            (active search space, KB root, current user timezone, etc.).
+            Kept out of the deepagents ``spec`` because that dict is forwarded
+            verbatim to upstream code and only recognises its own typed keys.
     """
 
     spec: SubAgent
     ruleset: Ruleset
+    context_hint_provider: ContextHintProvider | None = None
 
 
-__all__ = ["SurfSenseSubagentSpec"]
+__all__ = [
+    "SURF_CONTEXT_HINT_PROVIDER_KEY",
+    "ContextHintProvider",
+    "SurfSenseSubagentSpec",
+]
diff --git a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/subagent_builder.py b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/subagent_builder.py
index 7173901f9..5025b32e7 100644
--- a/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/subagent_builder.py
+++ b/surfsense_backend/app/agents/multi_agent_chat/subagents/shared/subagent_builder.py
@@ -2,6 +2,8 @@
 
 from __future__ import annotations
 
+import logging
+import re
 from typing import Any, cast
 
 from deepagents import SubAgent
@@ -12,9 +14,48 @@ from langchain_core.tools import BaseTool
 from app.agents.multi_agent_chat.middleware.shared.permissions import (
     build_permission_mw,
 )
-from app.agents.multi_agent_chat.subagents.shared.spec import SurfSenseSubagentSpec
+from app.agents.multi_agent_chat.subagents.shared.md_file_reader import (
+    read_shared_snippet,
+)
+from app.agents.multi_agent_chat.subagents.shared.spec import (
+    SURF_CONTEXT_HINT_PROVIDER_KEY,
+    ContextHintProvider,
+    SurfSenseSubagentSpec,
+)
 from app.agents.new_chat.permissions import Ruleset
 
+logger = logging.getLogger(__name__)
+
+# ``<include snippet="NAME"/>`` directive. Matches an XML-style self-closing
+# tag whose ``snippet`` attribute names a file in ``shared/snippets/``.
+# Whitespace around the attribute and self-close is tolerated; the snippet
+# name itself must be a bare identifier (letters / digits / underscores) so
+# we never pull a path-traversal value into ``read_shared_snippet``.
+_INCLUDE_DIRECTIVE_RE = re.compile(
+    r"<include\s+snippet=\"(?P<name>[A-Za-z0-9_]+)\"\s*/>"
+)
+
+
+def _resolve_includes(prompt: str, *, subagent_name: str) -> str:
+    """Replace ``<include snippet="X"/>`` directives with the snippet body.
+
+    Unknown snippet names raise; an empty body is treated as unknown so a
+    typo or missing file fails loudly at startup instead of silently
+    shipping a broken prompt to the LLM.
+    """
+
+    def _replace(match: re.Match[str]) -> str:
+        name = match.group("name")
+        body = read_shared_snippet(name)
+        if not body.strip():
+            raise ValueError(
+                f"Subagent {subagent_name!r}: unknown or empty shared "
+                f"snippet {name!r} referenced via <include>."
+            )
+        return body
+
+    return _INCLUDE_DIRECTIVE_RE.sub(_replace, prompt)
+
 
 def _user_allowlist_for(
     dependencies: dict[str, Any], subagent_name: str
@@ -43,6 +84,7 @@ def pack_subagent(
     dependencies: dict[str, Any],
     model: BaseChatModel | None = None,
     middleware_stack: dict[str, Any] | None = None,
+    context_hint_provider: ContextHintProvider | None = None,
 ) -> SurfSenseSubagentSpec:
     """Pack the route-local pieces into one sub-agent spec + its Ruleset.
 
@@ -68,6 +110,8 @@ def pack_subagent(
         msg = f"Subagent {name!r}: system_prompt is empty"
         raise ValueError(msg)
 
+    system_prompt = _resolve_includes(system_prompt, subagent_name=name)
+
     flags = dependencies["flags"]
     user_allowlist = _user_allowlist_for(dependencies, name)
     subagent_rulesets: list[Ruleset] = [ruleset]
@@ -99,4 +143,12 @@ def pack_subagent(
     }
     if model is not None:
         spec_dict["model"] = model
-    return SurfSenseSubagentSpec(spec=cast(SubAgent, spec_dict), ruleset=ruleset)
+    if context_hint_provider is not None:
+        # Stash the callback on the dict so it survives the trip through
+        # registry / middleware unpacking (both treat the spec as opaque).
+        spec_dict[SURF_CONTEXT_HINT_PROVIDER_KEY] = context_hint_provider
+    return SurfSenseSubagentSpec(
+        spec=cast(SubAgent, spec_dict),
+        ruleset=ruleset,
+        context_hint_provider=context_hint_provider,
+    )
diff --git a/surfsense_backend/app/agents/new_chat/anonymous_agent.py b/surfsense_backend/app/agents/new_chat/anonymous_agent.py
new file mode 100644
index 000000000..c783d9a45
--- /dev/null
+++ b/surfsense_backend/app/agents/new_chat/anonymous_agent.py
@@ -0,0 +1,168 @@
+"""Minimal anonymous / free-chat agent.
+
+The no-login chat experience must stay dead simple: the user asks a question
+and the model answers, optionally using ``web_search`` and an optionally
+uploaded **read-only** document. We deliberately bypass the full SurfSense deep
+agent stack (filesystem, file-intent, knowledge-base persistence, subagents,
+skills, memory) because those middlewares stage or persist "documents" that an
+anonymous session can never see again -- which produced phantom
+"I saved it to a file" answers for free users.
+
+For any other SurfSense capability the model is instructed (via the system
+prompt built here) to tell the user to create a free account instead of
+pretending to perform the action.
+"""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+from typing import Any
+
+from deepagents.backends import StateBackend
+from langchain.agents import create_agent
+from langchain.agents.middleware import (
+    ModelCallLimitMiddleware,
+    ToolCallLimitMiddleware,
+)
+from langchain_core.language_models import BaseChatModel
+from langgraph.types import Checkpointer
+
+from app.agents.new_chat.context import SurfSenseContextSchema
+from app.agents.new_chat.middleware import (
+    RetryAfterMiddleware,
+    create_surfsense_compaction_middleware,
+)
+from app.agents.new_chat.tools.web_search import create_web_search_tool
+
+# Cap how much of an uploaded document we inline into the system prompt. The
+# upload endpoint allows files up to several MB, but the doc is re-sent on
+# every turn and counts against the anonymous token quota, so we bound it.
+_MAX_DOC_CHARS = 50_000
+
+
+def build_anonymous_system_prompt(anon_doc: dict[str, Any] | None = None) -> str:
+    """Build the system prompt for the minimal anonymous chat agent.
+
+    The prompt keeps the assistant focused on plain Q/A + web search, inlines
+    any uploaded document as read-only context, and redirects every other
+    SurfSense feature to account registration.
+    """
+    today = datetime.now(UTC).strftime("%A, %B %d, %Y")
+
+    doc_section = ""
+    if anon_doc:
+        title = str(anon_doc.get("title") or "uploaded_document")
+        content = str(anon_doc.get("content") or "")
+        truncated = content[:_MAX_DOC_CHARS]
+        truncation_note = ""
+        if len(content) > _MAX_DOC_CHARS:
+            truncation_note = (
+                "\n\n[Note: the document was truncated because it is large; "
+                "only the beginning is shown.]"
+            )
+        doc_section = (
+            "\n\n## Uploaded document (read-only)\n"
+            f'The user uploaded a document named "{title}". Its contents are '
+            "provided below for reference only. You may read it and answer "
+            "questions about it, but you cannot modify, save, or store it.\n\n"
+            f'<uploaded_document title="{title}">\n'
+            f"{truncated}{truncation_note}\n"
+            "</uploaded_document>"
+        )
+
+    return (
+        "You are SurfSense's free AI assistant, available to everyone without "
+        "login.\n\n"
+        f"Today's date is {today}.\n\n"
+        "## How to help\n"
+        "- Answer the user's questions directly and conversationally. You are "
+        "a straightforward question-and-answer assistant.\n"
+        "- When a question needs current, real-time, or factual information "
+        "from the internet (news, prices, weather, recent events, live data), "
+        "use the `web_search` tool. Otherwise, answer directly from your own "
+        "knowledge.\n"
+        "- Be concise, accurate, and helpful. Use Markdown formatting when it "
+        "improves readability."
+        f"{doc_section}\n\n"
+        "## What is not available here\n"
+        "This is the free, no-login experience. You CANNOT save files or "
+        "notes, generate reports, podcasts, resumes, presentations, or images, "
+        "search or build a knowledge base, connect to apps (Gmail, Google "
+        "Drive, Notion, Slack, Calendar, Discord, and similar), set up "
+        "automations, or remember anything across sessions.\n\n"
+        "If the user asks for any of these, do NOT pretend to do them and "
+        "never claim you saved, created, or stored anything. Instead, briefly "
+        "let them know the feature requires a free SurfSense account and "
+        "invite them to create one at https://www.surfsense.com. Then offer to "
+        "help with what you can do here (answering questions and searching the "
+        "web)."
+    )
+
+
+async def create_anonymous_chat_agent(
+    *,
+    llm: BaseChatModel,
+    checkpointer: Checkpointer,
+    anon_session_id: str | None = None,
+    anon_doc: dict[str, Any] | None = None,
+    enable_web_search: bool = True,
+):
+    """Create a minimal Q/A agent for anonymous / free chat.
+
+    Unlike :func:`create_surfsense_deep_agent`, this agent has no filesystem,
+    file-intent, knowledge-base persistence, subagent, skills, or memory
+    middleware. Its only tool is ``web_search`` (when ``enable_web_search`` is
+    True), and any uploaded document is injected into the system prompt as
+    read-only context.
+
+    Args:
+        llm: The chat model to use (already built by the caller).
+        checkpointer: LangGraph checkpointer for the ephemeral anon thread.
+        anon_session_id: Anonymous session id (used only for telemetry/metadata).
+        anon_doc: Optional ``{"title", "content"}`` for an uploaded document.
+        enable_web_search: When False, the agent runs as a pure LLM with no
+            tools (used when the user toggles web search off).
+    """
+    tools = (
+        [create_web_search_tool(search_space_id=None, available_connectors=None)]
+        if enable_web_search
+        else []
+    )
+
+    # Reliability-only middleware. Nothing here touches the database or
+    # filesystem: call limits guard against loops, compaction summarises long
+    # histories into in-graph state, and retry handles provider rate limits.
+    middleware: list[Any] = [
+        ModelCallLimitMiddleware(thread_limit=120, run_limit=80, exit_behavior="end"),
+    ]
+    if tools:
+        middleware.append(
+            ToolCallLimitMiddleware(
+                thread_limit=300, run_limit=80, exit_behavior="continue"
+            )
+        )
+    middleware.append(create_surfsense_compaction_middleware(llm, StateBackend))
+    middleware.append(RetryAfterMiddleware(max_retries=3))
+
+    system_prompt = build_anonymous_system_prompt(anon_doc)
+
+    agent = create_agent(
+        llm,
+        system_prompt=system_prompt,
+        tools=tools,
+        middleware=middleware,
+        context_schema=SurfSenseContextSchema,
+        checkpointer=checkpointer,
+    )
+    return agent.with_config(
+        {
+            "recursion_limit": 40,
+            "metadata": {
+                "ls_integration": "surfsense_anonymous_chat",
+                "anon_session_id": anon_session_id,
+            },
+        }
+    )
+
+
+__all__ = ["build_anonymous_system_prompt", "create_anonymous_chat_agent"]
diff --git a/surfsense_backend/app/agents/new_chat/context.py b/surfsense_backend/app/agents/new_chat/context.py
index a20a43a66..1b3ea3d20 100644
--- a/surfsense_backend/app/agents/new_chat/context.py
+++ b/surfsense_backend/app/agents/new_chat/context.py
@@ -64,6 +64,8 @@ class SurfSenseContextSchema:
     search_space_id: int | None = None
     mentioned_document_ids: list[int] = field(default_factory=list)
     mentioned_folder_ids: list[int] = field(default_factory=list)
+    mentioned_connector_ids: list[int] = field(default_factory=list)
+    mentioned_connectors: list[dict[str, object]] = field(default_factory=list)
     file_operation_contract: FileOperationContractState | None = None
     turn_id: str | None = None
     request_id: str | None = None
diff --git a/surfsense_backend/app/agents/new_chat/feature_flags.py b/surfsense_backend/app/agents/new_chat/feature_flags.py
index 3cea051ef..27188fac3 100644
--- a/surfsense_backend/app/agents/new_chat/feature_flags.py
+++ b/surfsense_backend/app/agents/new_chat/feature_flags.py
@@ -104,7 +104,7 @@ class AgentFeatureFlags:
     # ``tools/google_drive``, ``tools/dropbox``, ``tools/onedrive``,
     # ``tools/google_calendar``, ``tools/confluence``, ``tools/discord``,
     # ``tools/teams``, ``tools/luma``, ``connected_accounts``,
-    # ``update_memory``, ``search_surfsense_docs``) now acquire fresh
+    # ``update_memory``) now acquire fresh
     # short-lived ``AsyncSession`` instances per call via
     # :data:`async_session_maker`. The factory still accepts ``db_session``
     # for registry compatibility but ``del``'s it immediately — see any
diff --git a/surfsense_backend/app/agents/new_chat/filesystem_state.py b/surfsense_backend/app/agents/new_chat/filesystem_state.py
index cc674be76..de2c94b41 100644
--- a/surfsense_backend/app/agents/new_chat/filesystem_state.py
+++ b/surfsense_backend/app/agents/new_chat/filesystem_state.py
@@ -33,9 +33,11 @@ from typing_extensions import TypedDict
 from app.agents.new_chat.state_reducers import (
     _add_unique_reducer,
     _dict_merge_with_tombstones_reducer,
+    _int_counter_merge_reducer,
     _list_append_reducer,
     _replace_reducer,
 )
+from app.agents.shared.receipt import Receipt
 
 
 class PendingMove(TypedDict, total=False):
@@ -172,6 +174,35 @@ class SurfSenseFilesystemState(FilesystemState):
     workspace_tree_text: NotRequired[Annotated[str, _replace_reducer]]
     """Pre-rendered ``<workspace_tree>`` body; shared with subagents to skip re-render."""
 
+    billable_calls: NotRequired[Annotated[dict[str, int], _int_counter_merge_reducer]]
+    """Per-subagent ``task(...)`` invocation counter, summed across the turn.
+
+    Incremented by ``task_tool.py`` each time a subagent invocation
+    completes (single- or batch-mode). The orchestrator can read this map
+    to self-limit when a runaway loop sends the same specialist 20 calls
+    in a row; the runtime emits a soft warning ToolMessage once the
+    cumulative count crosses :data:`DEFAULT_SUBAGENT_BILLABLE_THRESHOLD`.
+    Cleared by checkpoint rollover (i.e. per turn).
+    """
+
+    receipts: NotRequired[Annotated[list[Receipt], _list_append_reducer]]
+    """Structured Receipt handles emitted by mutating subagent tools this turn.
+
+    Each mutating tool (deliverables, every connector, KB writes via the
+    persistence middleware) wraps its native return into a
+    :class:`~app.agents.shared.receipt.Receipt`
+    and returns it under the ``"receipt"`` key alongside its existing
+    payload. The subagent's tool-call middleware folds the receipt into
+    this list, and ``_return_command_with_state_update`` in
+    ``checkpointed_subagent_middleware/task_tool.py`` carries the list up
+    to the parent automatically (``"receipts"`` is not in
+    ``EXCLUDED_STATE_KEYS``).
+
+    Append-only across the turn; cleared by checkpoint rollover. The
+    orchestrator reads it via the ``<verification>`` teaching to confirm
+    side-effecting subagent claims (see ``shared/snippets/verifiable_handle.md``).
+    """
+
 
 __all__ = [
     "KbAnonDoc",
diff --git a/surfsense_backend/app/agents/new_chat/mention_resolver.py b/surfsense_backend/app/agents/new_chat/mention_resolver.py
index 00bb7e71f..f13dbc6ae 100644
--- a/surfsense_backend/app/agents/new_chat/mention_resolver.py
+++ b/surfsense_backend/app/agents/new_chat/mention_resolver.py
@@ -73,9 +73,8 @@ class ResolvedMentionSet:
     ``@Project Roadmap`` is never shadowed by a shorter prefix
     ``@Project``).
 
-    ``mentioned_document_ids`` collapses doc + surfsense_doc chips into
-    a single ordered, deduped list because the priority middleware
-    treats them uniformly downstream — see
+    ``mentioned_document_ids`` is an ordered, deduped list consumed by
+    the priority middleware downstream — see
     ``KnowledgePriorityMiddleware._compute_priority_paths``.
     """
 
@@ -103,7 +102,6 @@ async def resolve_mentions(
     search_space_id: int,
     mentioned_documents: list[MentionedDocumentInfo] | None,
     mentioned_document_ids: list[int] | None = None,
-    mentioned_surfsense_doc_ids: list[int] | None = None,
     mentioned_folder_ids: list[int] | None = None,
 ) -> ResolvedMentionSet:
     """Resolve every @-mention chip on a turn into virtual paths.
@@ -111,8 +109,7 @@ async def resolve_mentions(
     The function takes both the ``mentioned_documents`` discriminated
     list (chip metadata used for substitution + persistence) and the
     parallel id arrays (``mentioned_document_ids``,
-    ``mentioned_surfsense_doc_ids``, ``mentioned_folder_ids``) for two
-    reasons:
+    ``mentioned_folder_ids``) for two reasons:
 
     * Legacy clients that haven't migrated to the unified chip list
       still send the id arrays — we treat the union as authoritative.
@@ -134,7 +131,7 @@ async def resolve_mentions(
             kind = chip.kind
             if kind == "folder":
                 chip_folder_ids.append(chip.id)
-            else:
+            elif kind == "doc":
                 chip_doc_ids.append(chip.id)
             chip_titles_by_id[(kind, chip.id)] = chip.title
 
@@ -142,7 +139,6 @@ async def resolve_mentions(
         dict.fromkeys(
             [
                 *(mentioned_document_ids or []),
-                *(mentioned_surfsense_doc_ids or []),
                 *chip_doc_ids,
             ]
         )
diff --git a/surfsense_backend/app/agents/new_chat/middleware/compaction.py b/surfsense_backend/app/agents/new_chat/middleware/compaction.py
index 16361e16b..f8d340e5d 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/compaction.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/compaction.py
@@ -34,7 +34,7 @@ from deepagents.middleware.summarization import (
 )
 from langchain_core.messages import SystemMessage
 
-from app.observability import otel as ot
+from app.observability import metrics as ot_metrics, otel as ot
 
 if TYPE_CHECKING:
     from deepagents.backends.protocol import BACKEND_TYPES
@@ -178,6 +178,7 @@ class SurfSenseCompactionMiddleware(SummarizationMiddleware):
             messages_in=len(conversation_messages),
             extra={"compaction.cutoff_index": int(cutoff_index)},
         ):
+            ot_metrics.record_compaction_run(reason="auto")
             messages_to_summarize, preserved_messages = super()._partition_messages(
                 conversation_messages, cutoff_index
             )
diff --git a/surfsense_backend/app/agents/new_chat/middleware/doom_loop.py b/surfsense_backend/app/agents/new_chat/middleware/doom_loop.py
index 850ecd1d2..a7901c010 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/doom_loop.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/doom_loop.py
@@ -47,7 +47,7 @@ from langgraph.config import get_config
 from langgraph.runtime import Runtime
 from langgraph.types import interrupt
 
-from app.observability import otel as ot
+from app.observability import metrics as ot_metrics, otel as ot
 
 logger = logging.getLogger(__name__)
 
@@ -195,6 +195,7 @@ class DoomLoopMiddleware(AgentMiddleware[AgentState[ResponseT], ContextT, Respon
                 "interrupt.tool": (action or {}).get("tool", "<unknown>"),
             },
         ):
+            ot_metrics.record_interrupt(interrupt_type="permission_ask")
             decision = interrupt(
                 {
                     "type": "permission_ask",
diff --git a/surfsense_backend/app/agents/new_chat/middleware/kb_persistence.py b/surfsense_backend/app/agents/new_chat/middleware/kb_persistence.py
index cc30f4897..c88dced85 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/kb_persistence.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/kb_persistence.py
@@ -55,6 +55,7 @@ from app.agents.new_chat.path_resolver import (
     virtual_path_to_doc,
 )
 from app.agents.new_chat.state_reducers import _CLEAR
+from app.agents.shared.receipt import Receipt, make_receipt
 from app.db import (
     AgentActionLog,
     Chunk,
@@ -1392,6 +1393,81 @@ async def commit_staged_filesystem_state(
         "pending_dir_deletes": [_CLEAR],
         "dirty_path_tool_calls": {_CLEAR: True},
     }
+
+    # Emit one Receipt per committed mutation, folded into ``state['receipts']``
+    # via ``_list_append_reducer``. The receipts surface what actually committed
+    # (post-savepoint) rather than what the LLM intended; the orchestrator uses
+    # them as ground truth in the ``<verification>`` teaching. KB writes do not
+    # have public verifiable URLs, so ``verifiable_url`` stays unset.
+    receipts: list[Receipt] = []
+
+    def _kb_receipt(
+        *,
+        type: str,
+        operation: str,
+        path: str,
+        external_id: int | None = None,
+    ) -> None:
+        if not path:
+            return
+        preview = path.rsplit("/", 1)[-1] or path
+        receipts.append(
+            make_receipt(
+                route="knowledge_base",
+                type=type,
+                operation=operation,
+                status="success",
+                external_id=str(external_id) if external_id is not None else path,
+                preview=preview,
+            )
+        )
+
+    for payload in committed_creates:
+        path = str(payload.get("virtualPath") or "")
+        _kb_receipt(
+            type="file",
+            operation="write_file",
+            path=path,
+            external_id=payload.get("id"),
+        )
+    for payload in committed_updates:
+        path = str(payload.get("virtualPath") or "")
+        _kb_receipt(
+            type="file",
+            operation="edit_file",
+            path=path,
+            external_id=payload.get("id"),
+        )
+    for payload in applied_moves:
+        # ``applied_moves`` rows carry the destination ``virtualPath`` because
+        # the move has already landed in the DB by the time we reach this code.
+        path = str(payload.get("virtualPath") or "")
+        _kb_receipt(
+            type="file",
+            operation="move_file",
+            path=path,
+            external_id=payload.get("id"),
+        )
+    for path in staged_dirs:
+        _kb_receipt(type="folder", operation="mkdir", path=path)
+    for payload in committed_deletes:
+        path = str(payload.get("virtualPath") or "")
+        _kb_receipt(
+            type="file",
+            operation="rm",
+            path=path,
+            external_id=payload.get("id"),
+        )
+    for payload in committed_folder_deletes:
+        path = str(payload.get("virtualPath") or "")
+        _kb_receipt(
+            type="folder",
+            operation="rmdir",
+            path=path,
+            external_id=payload.get("id"),
+        )
+    if receipts:
+        delta["receipts"] = receipts
     files_delta: dict[str, Any] = {}
     if temp_paths:
         files_delta.update(dict.fromkeys(temp_paths))
diff --git a/surfsense_backend/app/agents/new_chat/middleware/otel_span.py b/surfsense_backend/app/agents/new_chat/middleware/otel_span.py
index cfe1edae4..ecaa042a9 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/otel_span.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/otel_span.py
@@ -16,13 +16,14 @@ dashboards expect.
 from __future__ import annotations
 
 import logging
+import time
 from collections.abc import Awaitable, Callable
 from typing import TYPE_CHECKING, Any
 
 from langchain.agents.middleware import AgentMiddleware
 from langchain_core.messages import AIMessage, ToolMessage
 
-from app.observability import otel as ot
+from app.observability import metrics as ot_metrics, otel as ot
 
 if TYPE_CHECKING:  # pragma: no cover — type-only
     from langchain.agents.middleware.types import (
@@ -62,14 +63,37 @@ class OtelSpanMiddleware(AgentMiddleware):
             return await handler(request)
 
         model_id, provider = _resolve_model_attrs(request)
+        t0 = time.perf_counter()
         with ot.model_call_span(model_id=model_id, provider=provider) as sp:
+            _annotate_model_request(sp, model_id=model_id, provider=provider)
             try:
                 result = await handler(request)
             except Exception:
+                ot_metrics.record_model_call_duration(
+                    (time.perf_counter() - t0) * 1000,
+                    model=model_id,
+                    provider=provider,
+                )
                 # span context manager records + re-raises
                 raise
             else:
-                _annotate_model_response(sp, result)
+                input_tokens, output_tokens = _annotate_model_response(
+                    sp,
+                    result,
+                    model_id=model_id,
+                    provider=provider,
+                )
+                ot_metrics.record_model_call_duration(
+                    (time.perf_counter() - t0) * 1000,
+                    model=model_id,
+                    provider=provider,
+                )
+                ot_metrics.record_model_token_usage(
+                    input_tokens=input_tokens,
+                    output_tokens=output_tokens,
+                    model=model_id,
+                    provider=provider,
+                )
                 return result
 
     # ------------------------------------------------------------------
@@ -87,9 +111,24 @@ class OtelSpanMiddleware(AgentMiddleware):
         tool_name = _resolve_tool_name(request)
         input_size = _resolve_input_size(request)
 
+        t0 = time.perf_counter()
         with ot.tool_call_span(tool_name, input_size=input_size) as sp:
-            result = await handler(request)
-            _annotate_tool_result(sp, result)
+            try:
+                result = await handler(request)
+            except Exception:
+                ot_metrics.record_tool_call_duration(
+                    (time.perf_counter() - t0) * 1000,
+                    tool_name=tool_name,
+                )
+                ot_metrics.record_tool_call_error(tool_name=tool_name)
+                raise
+            errored = _annotate_tool_result(sp, result)
+            ot_metrics.record_tool_call_duration(
+                (time.perf_counter() - t0) * 1000,
+                tool_name=tool_name,
+            )
+            if errored:
+                ot_metrics.record_tool_call_error(tool_name=tool_name)
             return result
 
 
@@ -154,8 +193,29 @@ def _resolve_input_size(request: Any) -> int | None:
         return None
 
 
-def _annotate_model_response(span: Any, result: Any) -> None:
+def _annotate_model_request(
+    span: Any, *, model_id: str | None, provider: str | None
+) -> None:
+    try:
+        span.set_attribute("gen_ai.operation.name", "chat")
+        if model_id:
+            span.set_attribute("gen_ai.request.model", model_id)
+        if provider:
+            span.set_attribute("gen_ai.provider.name", provider)
+    except Exception:  # pragma: no cover — defensive
+        pass
+
+
+def _annotate_model_response(
+    span: Any,
+    result: Any,
+    *,
+    model_id: str | None = None,
+    provider: str | None = None,
+) -> tuple[int | None, int | None]:
     """Best-effort: attach prompt/completion token counts when available."""
+    input_tokens: int | None = None
+    output_tokens: int | None = None
     try:
         # ModelResponse may be a dataclass with .result containing AIMessage
         msg: Any
@@ -165,22 +225,42 @@ def _annotate_model_response(span: Any, result: Any) -> None:
             inner = getattr(result, "result", None)
             msg = inner[-1] if isinstance(inner, list) and inner else inner
         if msg is None:
-            return
+            return None, None
+        if provider:
+            span.set_attribute("gen_ai.provider.name", provider)
+        if model_id:
+            span.set_attribute("gen_ai.request.model", model_id)
+        response_model = getattr(msg, "response_metadata", {}) or {}
+        if isinstance(response_model, dict):
+            response_model = (
+                response_model.get("model_name")
+                or response_model.get("model")
+                or response_model.get("model_id")
+            )
+        if not response_model:
+            response_model = model_id
+        if response_model:
+            span.set_attribute("gen_ai.response.model", str(response_model))
+        span.set_attribute("gen_ai.operation.name", "chat")
         usage = getattr(msg, "usage_metadata", None) or {}
         if isinstance(usage, dict):
             if (n := usage.get("input_tokens")) is not None:
-                span.set_attribute("tokens.prompt", int(n))
+                input_tokens = int(n)
+                span.set_attribute("gen_ai.usage.input_tokens", input_tokens)
             if (n := usage.get("output_tokens")) is not None:
-                span.set_attribute("tokens.completion", int(n))
+                output_tokens = int(n)
+                span.set_attribute("gen_ai.usage.output_tokens", output_tokens)
             if (n := usage.get("total_tokens")) is not None:
-                span.set_attribute("tokens.total", int(n))
+                span.set_attribute("gen_ai.usage.total_tokens", int(n))
         tool_calls = getattr(msg, "tool_calls", None) or []
         span.set_attribute("model.tool_calls", len(tool_calls))
     except Exception:  # pragma: no cover — defensive
         pass
+    return input_tokens, output_tokens
 
 
-def _annotate_tool_result(span: Any, result: Any) -> None:
+def _annotate_tool_result(span: Any, result: Any) -> bool:
+    errored = False
     try:
         if isinstance(result, ToolMessage):
             content = (
@@ -192,11 +272,14 @@ def _annotate_tool_result(span: Any, result: Any) -> None:
             status = getattr(result, "status", None)
             if isinstance(status, str):
                 span.set_attribute("tool.status", status)
+                errored = status.lower() == "error"
             kwargs = getattr(result, "additional_kwargs", None) or {}
             if isinstance(kwargs, dict) and kwargs.get("error"):
                 span.set_attribute("tool.error", True)
+                errored = True
     except Exception:  # pragma: no cover — defensive
         pass
+    return errored
 
 
 __all__ = ["OtelSpanMiddleware"]
diff --git a/surfsense_backend/app/agents/new_chat/middleware/permission.py b/surfsense_backend/app/agents/new_chat/middleware/permission.py
index f77b7e387..07549bedb 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/permission.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/permission.py
@@ -61,7 +61,7 @@ from app.agents.new_chat.permissions import (
     aggregate_action,
     evaluate_many,
 )
-from app.observability import otel as ot
+from app.observability import metrics as ot_metrics, otel as ot
 
 logger = logging.getLogger(__name__)
 
@@ -284,6 +284,8 @@ class PermissionMiddleware(AgentMiddleware):  # type: ignore[type-arg]
             ),
             ot.interrupt_span(interrupt_type="permission_ask"),
         ):
+            ot_metrics.record_permission_ask(permission=tool_name)
+            ot_metrics.record_interrupt(interrupt_type="permission_ask")
             decision = interrupt(payload)
         return _normalize_permission_decision(decision)
 
diff --git a/surfsense_backend/app/agents/new_chat/middleware/retry_after.py b/surfsense_backend/app/agents/new_chat/middleware/retry_after.py
index 0c3d3d017..321185dee 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/retry_after.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/retry_after.py
@@ -45,6 +45,8 @@ from langchain.agents.middleware.types import (
 from langchain_core.callbacks import adispatch_custom_event, dispatch_custom_event
 from langchain_core.messages import AIMessage
 
+from app.observability import metrics as ot_metrics, otel as ot
+
 logger = logging.getLogger(__name__)
 
 # Names of exception classes for which a retry would not help — context
@@ -198,6 +200,15 @@ class RetryAfterMiddleware(AgentMiddleware[AgentState[ResponseT], ContextT, Resp
                 if not self._should_retry(exc) or attempt >= self.max_retries:
                     raise
                 delay = self._delay_for_attempt(attempt, exc)
+                ot.add_event(
+                    "model.retry.scheduled",
+                    {
+                        "retry.attempt": attempt + 1,
+                        "retry.max": self.max_retries,
+                        "retry.delay_ms": int(delay * 1000),
+                        "retry.reason": ot_metrics.categorize_exception(exc),
+                    },
+                )
                 try:
                     dispatch_custom_event(
                         "surfsense.retrying",
@@ -231,6 +242,15 @@ class RetryAfterMiddleware(AgentMiddleware[AgentState[ResponseT], ContextT, Resp
                 if not self._should_retry(exc) or attempt >= self.max_retries:
                     raise
                 delay = self._delay_for_attempt(attempt, exc)
+                ot.add_event(
+                    "model.retry.scheduled",
+                    {
+                        "retry.attempt": attempt + 1,
+                        "retry.max": self.max_retries,
+                        "retry.delay_ms": int(delay * 1000),
+                        "retry.reason": ot_metrics.categorize_exception(exc),
+                    },
+                )
                 try:
                     await adispatch_custom_event(
                         "surfsense.retrying",
diff --git a/surfsense_backend/app/agents/new_chat/middleware/scoped_model_fallback.py b/surfsense_backend/app/agents/new_chat/middleware/scoped_model_fallback.py
index 99eb2d74a..0294e2839 100644
--- a/surfsense_backend/app/agents/new_chat/middleware/scoped_model_fallback.py
+++ b/surfsense_backend/app/agents/new_chat/middleware/scoped_model_fallback.py
@@ -6,6 +6,8 @@ from typing import TYPE_CHECKING, Any
 
 from langchain.agents.middleware import ModelFallbackMiddleware
 
+from app.observability import metrics as ot_metrics, otel as ot
+
 if TYPE_CHECKING:
     from collections.abc import Awaitable, Callable
 
@@ -55,7 +57,16 @@ class ScopedModelFallbackMiddleware(ModelFallbackMiddleware):
                 raise
             last_exception = e
 
-        for fallback_model in self.models:
+        for attempt, fallback_model in enumerate(self.models, start=1):
+            ot.add_event(
+                "model.fallback",
+                {
+                    "fallback.attempt": attempt,
+                    "fallback.from": attempt - 1,
+                    "fallback.to": attempt,
+                    "fallback.reason": ot_metrics.categorize_exception(last_exception),
+                },
+            )
             try:
                 return handler(request.override(model=fallback_model))
             except Exception as e:
@@ -79,7 +90,16 @@ class ScopedModelFallbackMiddleware(ModelFallbackMiddleware):
                 raise
             last_exception = e
 
-        for fallback_model in self.models:
+        for attempt, fallback_model in enumerate(self.models, start=1):
+            ot.add_event(
+                "model.fallback",
+                {
+                    "fallback.attempt": attempt,
+                    "fallback.from": attempt - 1,
+                    "fallback.to": attempt,
+                    "fallback.reason": ot_metrics.categorize_exception(last_exception),
+                },
+            )
             try:
                 return await handler(request.override(model=fallback_model))
             except Exception as e:
diff --git a/surfsense_backend/app/agents/new_chat/prompts/base/citations_on.md b/surfsense_backend/app/agents/new_chat/prompts/base/citations_on.md
index 56291bf3e..3562ce66e 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/base/citations_on.md
+++ b/surfsense_backend/app/agents/new_chat/prompts/base/citations_on.md
@@ -59,14 +59,13 @@ Do NOT cite document_id. Always use the chunk id.
 - NEVER create your own citation format - use the exact chunk_id values from the documents in the [citation:chunk_id] format
 - NEVER format citations as clickable links or as markdown links like "([citation:5](https://example.com))". Always use plain square brackets only
 - NEVER make up chunk IDs if you are unsure about the chunk_id. It is better to omit the citation than to guess
-- Copy the EXACT chunk id from the XML - if it says `<chunk id='doc-123'>`, use [citation:doc-123]
+- Copy the EXACT chunk id from the XML - if it says `<chunk id='5'>`, use [citation:5]
 - If the chunk id is a URL like `<chunk id='https://example.com/page'>`, use [citation:https://example.com/page]
 </citation_format>
 
 <citation_examples>
 CORRECT citation formats:
 - [citation:5] (numeric chunk ID from knowledge base)
-- [citation:doc-123] (for Surfsense documentation chunks)
 - [citation:https://example.com/article] (URL chunk ID from web search results)
 - [citation:chunk_id1], [citation:chunk_id2], [citation:chunk_id3] (multiple citations)
 
diff --git a/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_private.md b/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_private.md
index 9cc767e7e..073b75fa5 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_private.md
+++ b/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_private.md
@@ -7,7 +7,7 @@ CRITICAL RULE — KNOWLEDGE BASE FIRST, NEVER DEFAULT TO GENERAL KNOWLEDGE:
   2. Ask the user: "Would you like me to answer from my general knowledge instead?"
   3. ONLY provide a general-knowledge answer AFTER the user explicitly says yes.
 - This policy does NOT apply to:
-  * Casual conversation, greetings, or meta-questions about SurfSense itself (e.g., "what can you do?")
+  * Casual conversation, greetings, or meta-questions about SurfSense itself (e.g., "what can you do?"). For "how do I use SurfSense" / product-documentation questions, point the user to https://www.surfsense.com/docs.
   * Formatting, summarization, or analysis of content already present in the conversation
   * Following user instructions that are clearly task-oriented (e.g., "rewrite this in bullet points")
   * Tool-usage actions like generating reports, podcasts, images, or scraping webpages
diff --git a/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_team.md b/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_team.md
index 1d806dbae..1a43ed490 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_team.md
+++ b/surfsense_backend/app/agents/new_chat/prompts/base/kb_only_policy_team.md
@@ -7,7 +7,7 @@ CRITICAL RULE — KNOWLEDGE BASE FIRST, NEVER DEFAULT TO GENERAL KNOWLEDGE:
   2. Ask: "Would you like me to answer from my general knowledge instead?"
   3. ONLY provide a general-knowledge answer AFTER a team member explicitly says yes.
 - This policy does NOT apply to:
-  * Casual conversation, greetings, or meta-questions about SurfSense itself (e.g., "what can you do?")
+  * Casual conversation, greetings, or meta-questions about SurfSense itself (e.g., "what can you do?"). For "how do I use SurfSense" / product-documentation questions, point the user to https://www.surfsense.com/docs.
   * Formatting, summarization, or analysis of content already present in the conversation
   * Following user instructions that are clearly task-oriented (e.g., "rewrite this in bullet points")
   * Tool-usage actions like generating reports, podcasts, images, or scraping webpages
diff --git a/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_private.md b/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_private.md
index b8bb069e2..9121de879 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_private.md
+++ b/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_private.md
@@ -13,6 +13,7 @@ When to use which tool:
 - Knowledge base content (Notion, GitHub, files, notes) → automatically searched
 - Real-time public web data → call web_search
 - Reading a specific webpage → call scrape_webpage
+- SurfSense product / how-to questions (setup, configuration, connectors, feature behavior) → point the user to the documentation: https://www.surfsense.com/docs
 
 **`task` subagents (when to delegate):**
 - **`linear_specialist`** — Linear-only investigations and tool use.
diff --git a/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_team.md b/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_team.md
index b081a2123..c5383be77 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_team.md
+++ b/surfsense_backend/app/agents/new_chat/prompts/base/tool_routing_team.md
@@ -13,6 +13,7 @@ When to use which tool:
 - Knowledge base content (Notion, GitHub, files, notes) → automatically searched
 - Real-time public web data → call web_search
 - Reading a specific webpage → call scrape_webpage
+- SurfSense product / how-to questions (setup, configuration, connectors, feature behavior) → point the user to the documentation: https://www.surfsense.com/docs
 
 **`task` subagents (when to delegate):**
 - **`linear_specialist`** — Linear-only investigations and tool use.
diff --git a/surfsense_backend/app/agents/new_chat/prompts/composer.py b/surfsense_backend/app/agents/new_chat/prompts/composer.py
index 42f8303e6..412665813 100644
--- a/surfsense_backend/app/agents/new_chat/prompts/composer.py
+++ b/surfsense_backend/app/agents/new_chat/prompts/composer.py
@@ -151,7 +151,6 @@ def _read_fragment(subpath: str) -> str:
 # Ordered for reading flow: fundamentals first, then artifact generators,
 # then memory at the end (mirrors the legacy ``_ALL_TOOL_NAMES_ORDERED``).
 ALL_TOOL_NAMES_ORDERED: tuple[str, ...] = (
-    "search_surfsense_docs",
     "web_search",
     "generate_podcast",
     "generate_video_presentation",
diff --git a/surfsense_backend/app/agents/new_chat/prompts/examples/search_surfsense_docs.md b/surfsense_backend/app/agents/new_chat/prompts/examples/search_surfsense_docs.md
deleted file mode 100644
index b90f2b7a7..000000000
--- a/surfsense_backend/app/agents/new_chat/prompts/examples/search_surfsense_docs.md
+++ /dev/null
@@ -1,9 +0,0 @@
-
-- User: "How do I install SurfSense?"
-  - Call: `search_surfsense_docs(query="installation setup")`
-- User: "What connectors does SurfSense support?"
-  - Call: `search_surfsense_docs(query="available connectors integrations")`
-- User: "How do I set up the Notion connector?"
-  - Call: `search_surfsense_docs(query="Notion connector setup configuration")`
-- User: "How do I use Docker to run SurfSense?"
-  - Call: `search_surfsense_docs(query="Docker installation setup")`
diff --git a/surfsense_backend/app/agents/new_chat/prompts/tools/search_surfsense_docs.md b/surfsense_backend/app/agents/new_chat/prompts/tools/search_surfsense_docs.md
deleted file mode 100644
index 133717fec..000000000
--- a/surfsense_backend/app/agents/new_chat/prompts/tools/search_surfsense_docs.md
+++ /dev/null
@@ -1,7 +0,0 @@
-
-- search_surfsense_docs: Search the official SurfSense documentation.
-  - Use this tool when the user asks anything about SurfSense itself (the application they are using).
-  - Args:
-    - query: The search query about SurfSense
-    - top_k: Number of documentation chunks to retrieve (default: 10)
-  - Returns: Documentation content with chunk IDs for citations (prefixed with 'doc-', e.g., [citation:doc-123])
diff --git a/surfsense_backend/app/agents/new_chat/skills/builtin/email-drafting/SKILL.md b/surfsense_backend/app/agents/new_chat/skills/builtin/email-drafting/SKILL.md
index 32e599e98..2dbc8ec43 100644
--- a/surfsense_backend/app/agents/new_chat/skills/builtin/email-drafting/SKILL.md
+++ b/surfsense_backend/app/agents/new_chat/skills/builtin/email-drafting/SKILL.md
@@ -1,7 +1,6 @@
 ---
 name: email-drafting
 description: Draft an email matching the user's voice, with structured intent and CTA
-allowed-tools: search_surfsense_docs
 ---
 
 # Email drafting
diff --git a/surfsense_backend/app/agents/new_chat/skills/builtin/kb-research/SKILL.md b/surfsense_backend/app/agents/new_chat/skills/builtin/kb-research/SKILL.md
index c268278ab..0f0b5ffbb 100644
--- a/surfsense_backend/app/agents/new_chat/skills/builtin/kb-research/SKILL.md
+++ b/surfsense_backend/app/agents/new_chat/skills/builtin/kb-research/SKILL.md
@@ -1,7 +1,7 @@
 ---
 name: kb-research
 description: Structured approach to finding and synthesizing information from the user's knowledge base
-allowed-tools: search_surfsense_docs, scrape_webpage, read_file, ls_tree, grep, web_search
+allowed-tools: scrape_webpage, read_file, ls_tree, grep, web_search
 ---
 
 # Knowledge-base research
diff --git a/surfsense_backend/app/agents/new_chat/skills/builtin/meeting-prep/SKILL.md b/surfsense_backend/app/agents/new_chat/skills/builtin/meeting-prep/SKILL.md
index 9657eb078..5a375fbde 100644
--- a/surfsense_backend/app/agents/new_chat/skills/builtin/meeting-prep/SKILL.md
+++ b/surfsense_backend/app/agents/new_chat/skills/builtin/meeting-prep/SKILL.md
@@ -1,7 +1,7 @@
 ---
 name: meeting-prep
 description: Pull together briefing materials before a scheduled meeting
-allowed-tools: search_surfsense_docs, web_search, scrape_webpage, read_file
+allowed-tools: web_search, scrape_webpage, read_file
 ---
 
 # Meeting preparation
diff --git a/surfsense_backend/app/agents/new_chat/skills/builtin/report-writing/SKILL.md b/surfsense_backend/app/agents/new_chat/skills/builtin/report-writing/SKILL.md
index 17ac2f391..cfea9593f 100644
--- a/surfsense_backend/app/agents/new_chat/skills/builtin/report-writing/SKILL.md
+++ b/surfsense_backend/app/agents/new_chat/skills/builtin/report-writing/SKILL.md
@@ -1,7 +1,7 @@
 ---
 name: report-writing
 description: How to scope, draft, and revise a Markdown report artifact via generate_report
-allowed-tools: generate_report, search_surfsense_docs, read_file
+allowed-tools: generate_report, read_file
 ---
 
 # Report writing
diff --git a/surfsense_backend/app/agents/new_chat/skills/builtin/slack-summary/SKILL.md b/surfsense_backend/app/agents/new_chat/skills/builtin/slack-summary/SKILL.md
index 33b9e72a2..1a4c3da9f 100644
--- a/surfsense_backend/app/agents/new_chat/skills/builtin/slack-summary/SKILL.md
+++ b/surfsense_backend/app/agents/new_chat/skills/builtin/slack-summary/SKILL.md
@@ -1,7 +1,6 @@
 ---
 name: slack-summary
 description: Distill a Slack channel or thread into actionable summary
-allowed-tools: search_surfsense_docs
 ---
 
 # Slack summarization
diff --git a/surfsense_backend/app/agents/new_chat/state_reducers.py b/surfsense_backend/app/agents/new_chat/state_reducers.py
index 89fc86367..c7b7685f0 100644
--- a/surfsense_backend/app/agents/new_chat/state_reducers.py
+++ b/surfsense_backend/app/agents/new_chat/state_reducers.py
@@ -171,6 +171,39 @@ def _dict_merge_with_tombstones_reducer(
     return result
 
 
+def _int_counter_merge_reducer(
+    left: dict[str, int] | None,
+    right: dict[str, int] | None,
+) -> dict[str, int]:
+    """Merge ``right`` into ``left`` by **summing** per-key integer counters.
+
+    Used for state fields that accumulate counts across multiple updates
+    within the same turn (e.g. per-subagent ``billable_calls``). Unknown
+    keys are added; existing keys are summed. ``_CLEAR`` sentinels reset
+    the accumulator the same way the other reducers do, so the orchestrator
+    can wipe the counter at end-of-turn if needed.
+    """
+    if right is None:
+        return dict(left or {})
+
+    if _CLEAR in right or any(_is_clear(k) for k in right):
+        result: dict[str, int] = {}
+        for key, value in right.items():
+            if _is_clear(key):
+                continue
+            if not isinstance(value, int):
+                continue
+            result[key] = result.get(key, 0) + value
+        return result
+
+    base = dict(left or {})
+    for key, value in right.items():
+        if not isinstance(value, int):
+            continue
+        base[key] = base.get(key, 0) + value
+    return base
+
+
 def _initial_filesystem_state() -> dict[str, Any]:
     """Default empty values for SurfSense filesystem state fields.
 
@@ -200,6 +233,7 @@ __all__ = [
     "_add_unique_reducer",
     "_dict_merge_with_tombstones_reducer",
     "_initial_filesystem_state",
+    "_int_counter_merge_reducer",
     "_list_append_reducer",
     "_replace_reducer",
 ]
diff --git a/surfsense_backend/app/agents/new_chat/subagents/config.py b/surfsense_backend/app/agents/new_chat/subagents/config.py
index b993d2b06..2cfd47441 100644
--- a/surfsense_backend/app/agents/new_chat/subagents/config.py
+++ b/surfsense_backend/app/agents/new_chat/subagents/config.py
@@ -46,7 +46,6 @@ logger = logging.getLogger(__name__)
 # ``glob``, ``grep``) plus the SurfSense-side read tools.
 EXPLORE_READ_TOOLS: frozenset[str] = frozenset(
     {
-        "search_surfsense_docs",
         "web_search",
         "scrape_webpage",
         "read_file",
@@ -61,7 +60,6 @@ EXPLORE_READ_TOOLS: frozenset[str] = frozenset(
 # is needed, the parent should hand off to ``explore`` first.
 REPORT_WRITER_TOOLS: frozenset[str] = frozenset(
     {
-        "search_surfsense_docs",
         "read_file",
         "generate_report",
     }
@@ -222,7 +220,6 @@ EXPLORE_SYSTEM_PROMPT = """You are the **explore** subagent for SurfSense.
 Conduct read-only research across the user's knowledge base, the web, and any documents the parent agent has surfaced. Return a synthesized answer with explicit citations — never speculate beyond the sources you have actually inspected.
 
 ## Tools available
-- `search_surfsense_docs` — fast hybrid search over the user's knowledge base.
 - `web_search` — only when the user's KB clearly does not contain the answer.
 - `scrape_webpage` — to read a URL the user or the search results provided.
 - `read_file`, `ls`, `glob`, `grep` — to inspect specific documents or trees the parent has flagged.
@@ -242,7 +239,7 @@ Produce a single high-quality report deliverable using `generate_report`. The pa
 
 ## Workflow
 1. **Outline first.** Before calling `generate_report`, write a one-paragraph outline of the sections you plan to produce. Confirm the outline reflects the parent's instructions.
-2. **Source resolution.** Decide whether to call `search_surfsense_docs` and `read_file` for any final-checks, or whether the parent's earlier tool calls already cover the source set.
+2. **Source resolution.** Decide whether to call `read_file` for any final-checks, or whether the parent's earlier tool calls already cover the source set.
 3. **One report.** Call `generate_report` exactly once with `source_strategy` chosen per the topic and chat history (see the `report-writing` skill).
 4. **Confirm.** End with a one-sentence summary in your final message — never paste the report back into chat; the artifact card renders itself.
 """
diff --git a/surfsense_backend/app/agents/new_chat/tools/__init__.py b/surfsense_backend/app/agents/new_chat/tools/__init__.py
index bc444b0c0..4b5ae3706 100644
--- a/surfsense_backend/app/agents/new_chat/tools/__init__.py
+++ b/surfsense_backend/app/agents/new_chat/tools/__init__.py
@@ -5,7 +5,6 @@ This module contains all the tools available to the SurfSense agent.
 To add a new tool, see the documentation in registry.py.
 
 Available tools:
-- search_surfsense_docs: Search Surfsense documentation for usage help
 - generate_podcast: Generate audio podcasts from content
 - generate_video_presentation: Generate video presentations with slides and narration
 - generate_image: Generate images from text descriptions using AI models
@@ -31,7 +30,6 @@ from .registry import (
     get_tool_by_name,
 )
 from .scrape_webpage import create_scrape_webpage_tool
-from .search_surfsense_docs import create_search_surfsense_docs_tool
 from .update_memory import create_update_memory_tool, create_update_team_memory_tool
 from .video_presentation import create_generate_video_presentation_tool
 
@@ -47,7 +45,6 @@ __all__ = [
     "create_generate_podcast_tool",
     "create_generate_video_presentation_tool",
     "create_scrape_webpage_tool",
-    "create_search_surfsense_docs_tool",
     "create_update_memory_tool",
     "create_update_team_memory_tool",
     "format_documents_for_context",
diff --git a/surfsense_backend/app/agents/new_chat/tools/podcast.py b/surfsense_backend/app/agents/new_chat/tools/podcast.py
index 2c9b7fa0c..83ac98768 100644
--- a/surfsense_backend/app/agents/new_chat/tools/podcast.py
+++ b/surfsense_backend/app/agents/new_chat/tools/podcast.py
@@ -2,17 +2,23 @@
 Podcast generation tool for the SurfSense agent.
 
 This module provides a factory function for creating the generate_podcast tool
-that submits a Celery task for background podcast generation. The frontend
-polls for completion and auto-updates when the podcast is ready.
+that submits a Celery task for background podcast generation. The tool then
+polls the podcast row until it reaches a terminal status (READY/FAILED) and
+returns that status. The wait is bounded by the chat's HTTP / process
+lifetime; see app.agents.shared.deliverable_wait for details.
 """
 
+import logging
 from typing import Any
 
 from langchain_core.tools import tool
 from sqlalchemy.ext.asyncio import AsyncSession
 
+from app.agents.shared.deliverable_wait import wait_for_deliverable
 from app.db import Podcast, PodcastStatus, shielded_async_session
 
+logger = logging.getLogger(__name__)
+
 
 def create_generate_podcast_tool(
     search_space_id: int,
@@ -97,18 +103,53 @@ def create_generate_podcast_tool(
                 user_prompt=user_prompt,
             )
 
-            print(f"[generate_podcast] Created podcast {podcast_id}, task: {task.id}")
+            logger.info(
+                "[generate_podcast] Created podcast %s, task: %s",
+                podcast_id,
+                task.id,
+            )
 
+            # Wait until the Celery worker flips the row to a terminal
+            # state. No internal budget — see deliverable_wait module.
+            terminal_status, columns, elapsed = await wait_for_deliverable(
+                model=Podcast,
+                row_id=podcast_id,
+                columns=[Podcast.status, Podcast.file_location],
+                terminal_statuses={PodcastStatus.READY, PodcastStatus.FAILED},
+            )
+
+            if terminal_status == PodcastStatus.READY:
+                file_location = columns[1] if columns else None
+                logger.info(
+                    "[generate_podcast] Podcast %s READY in %.2fs (file=%s)",
+                    podcast_id,
+                    elapsed,
+                    file_location,
+                )
+                return {
+                    "status": PodcastStatus.READY.value,
+                    "podcast_id": podcast_id,
+                    "title": podcast_title,
+                    "file_location": file_location,
+                    "message": ("Podcast generated and saved to your podcast panel."),
+                }
+
+            # Only other terminal state is FAILED.
+            logger.warning(
+                "[generate_podcast] Podcast %s FAILED in %.2fs",
+                podcast_id,
+                elapsed,
+            )
             return {
-                "status": PodcastStatus.PENDING.value,
+                "status": PodcastStatus.FAILED.value,
                 "podcast_id": podcast_id,
                 "title": podcast_title,
-                "message": "Podcast generation started. This may take a few minutes.",
+                "error": ("Background worker reported FAILED status for this podcast."),
             }
 
         except Exception as e:
             error_message = str(e)
-            print(f"[generate_podcast] Error: {error_message}")
+            logger.exception("[generate_podcast] Error: %s", error_message)
             return {
                 "status": PodcastStatus.FAILED.value,
                 "error": error_message,
diff --git a/surfsense_backend/app/agents/new_chat/tools/registry.py b/surfsense_backend/app/agents/new_chat/tools/registry.py
index b842d7a20..6f011e372 100644
--- a/surfsense_backend/app/agents/new_chat/tools/registry.py
+++ b/surfsense_backend/app/agents/new_chat/tools/registry.py
@@ -101,7 +101,6 @@ from .podcast import create_generate_podcast_tool
 from .report import create_generate_report_tool
 from .resume import create_generate_resume_tool
 from .scrape_webpage import create_scrape_webpage_tool
-from .search_surfsense_docs import create_search_surfsense_docs_tool
 from .teams import (
     create_list_teams_channels_tool,
     create_read_teams_messages_tool,
@@ -150,6 +149,28 @@ class ToolDefinition:
     reverse: Callable[[dict[str, Any], Any], dict[str, Any]] | None = None
 
 
+# =============================================================================
+# Deferred-import factories
+# =============================================================================
+# Used for tools whose impls live under ``multi_agent_chat``. Importing those
+# at module-load time would cycle (``multi_agent_chat`` middleware imports
+# this registry). The import inside the factory runs only when
+# ``build_tools`` is called, by which point ``multi_agent_chat`` is fully
+# initialised.
+
+
+def _build_create_automation_tool(deps: dict[str, Any]) -> BaseTool:
+    from app.agents.multi_agent_chat.main_agent.tools.automation import (
+        create_create_automation_tool,
+    )
+
+    return create_create_automation_tool(
+        search_space_id=deps["search_space_id"],
+        user_id=deps["user_id"],
+        llm=deps["llm"],
+    )
+
+
 # =============================================================================
 # Built-in Tools Registry
 # =============================================================================
@@ -236,15 +257,6 @@ BUILTIN_TOOLS: list[ToolDefinition] = [
         ),
         requires=[],
     ),
-    # Surfsense documentation search tool
-    ToolDefinition(
-        name="search_surfsense_docs",
-        description="Search Surfsense documentation for help with using the application",
-        factory=lambda deps: create_search_surfsense_docs_tool(
-            db_session=deps["db_session"],
-        ),
-        requires=["db_session"],
-    ),
     # =========================================================================
     # SERVICE ACCOUNT DISCOVERY
     # Generic tool for the LLM to discover connected accounts and resolve
@@ -261,6 +273,21 @@ BUILTIN_TOOLS: list[ToolDefinition] = [
         requires=["db_session", "search_space_id", "user_id"],
     ),
     # =========================================================================
+    # AUTOMATION AUTHORING - single HITL tool. The tool takes an NL ``intent``
+    # from the main agent, drafts the full AutomationCreate JSON via a focused
+    # sub-LLM, surfaces it on an approval card, and persists on approval. The
+    # factory defers its import because the impl lives under ``multi_agent_chat``
+    # and that package transitively pulls this registry via middleware;
+    # deferring to ``build_tools`` call-time breaks the cycle without a
+    # parallel registry.
+    # =========================================================================
+    ToolDefinition(
+        name="create_automation",
+        description="Draft an automation from an NL intent; user approves the card; tool saves",
+        factory=_build_create_automation_tool,
+        requires=["search_space_id", "user_id", "llm"],
+    ),
+    # =========================================================================
     # MEMORY TOOL - single update_memory, private or team by thread_visibility
     # =========================================================================
     ToolDefinition(
diff --git a/surfsense_backend/app/agents/new_chat/tools/search_surfsense_docs.py b/surfsense_backend/app/agents/new_chat/tools/search_surfsense_docs.py
deleted file mode 100644
index d8a0efac7..000000000
--- a/surfsense_backend/app/agents/new_chat/tools/search_surfsense_docs.py
+++ /dev/null
@@ -1,174 +0,0 @@
-"""
-Surfsense documentation search tool.
-
-This tool allows the agent to search the pre-indexed Surfsense documentation
-to help users with questions about how to use the application.
-
-The documentation is indexed at deployment time from MDX files and stored
-in dedicated tables (surfsense_docs_documents, surfsense_docs_chunks).
-"""
-
-import asyncio
-import json
-
-from langchain_core.tools import tool
-from sqlalchemy import select
-from sqlalchemy.ext.asyncio import AsyncSession
-
-from app.db import SurfsenseDocsChunk, SurfsenseDocsDocument, async_session_maker
-from app.utils.document_converters import embed_text
-from app.utils.surfsense_docs import surfsense_docs_public_url
-
-
-def format_surfsense_docs_results(results: list[tuple]) -> str:
-    """
-    Format search results into XML structure for the LLM context.
-
-    Uses the same XML structure as format_documents_for_context from knowledge_base.py
-    but with 'doc-' prefix on chunk IDs. This allows:
-    - LLM to use consistent [citation:doc-XXX] format
-    - Frontend to detect 'doc-' prefix and route to surfsense docs endpoint
-
-    Args:
-        results: List of (chunk, document) tuples from the database query
-
-    Returns:
-        Formatted XML string with documentation content and citation-ready chunks
-    """
-    if not results:
-        return "No relevant Surfsense documentation found for your query."
-
-    # Group chunks by document
-    grouped: dict[int, dict] = {}
-    for chunk, doc in results:
-        public_url = surfsense_docs_public_url(doc.source)
-        if doc.id not in grouped:
-            grouped[doc.id] = {
-                "document_id": f"doc-{doc.id}",
-                "document_type": "SURFSENSE_DOCS",
-                "title": doc.title,
-                "url": public_url,
-                "metadata": {"source": doc.source, "public_url": public_url},
-                "chunks": [],
-            }
-        grouped[doc.id]["chunks"].append(
-            {
-                "chunk_id": f"doc-{chunk.id}",
-                "content": chunk.content,
-            }
-        )
-
-    # Render XML matching format_documents_for_context structure
-    parts: list[str] = []
-    for g in grouped.values():
-        metadata_json = json.dumps(g["metadata"], ensure_ascii=False)
-
-        parts.append("<document>")
-        parts.append("<document_metadata>")
-        parts.append(f"  <document_id>{g['document_id']}</document_id>")
-        parts.append(f"  <document_type>{g['document_type']}</document_type>")
-        parts.append(f"  <title><![CDATA[{g['title']}]]></title>")
-        parts.append(f"  <url><![CDATA[{g['url']}]]></url>")
-        parts.append(f"  <metadata_json><![CDATA[{metadata_json}]]></metadata_json>")
-        parts.append("</document_metadata>")
-        parts.append("")
-        parts.append("<document_content>")
-
-        for ch in g["chunks"]:
-            parts.append(
-                f"  <chunk id='{ch['chunk_id']}'><![CDATA[{ch['content']}]]></chunk>"
-            )
-
-        parts.append("</document_content>")
-        parts.append("</document>")
-        parts.append("")
-
-    return "\n".join(parts).strip()
-
-
-async def search_surfsense_docs_async(
-    query: str,
-    db_session: AsyncSession,
-    top_k: int = 10,
-) -> str:
-    """
-    Search Surfsense documentation using vector similarity.
-
-    Args:
-        query: The search query about Surfsense usage
-        db_session: Database session for executing queries
-        top_k: Number of results to return
-
-    Returns:
-        Formatted string with relevant documentation content
-    """
-    # Get embedding for the query
-    query_embedding = await asyncio.to_thread(embed_text, query)
-
-    # Vector similarity search on chunks, joining with documents
-    stmt = (
-        select(SurfsenseDocsChunk, SurfsenseDocsDocument)
-        .join(
-            SurfsenseDocsDocument,
-            SurfsenseDocsChunk.document_id == SurfsenseDocsDocument.id,
-        )
-        .order_by(SurfsenseDocsChunk.embedding.op("<=>")(query_embedding))
-        .limit(top_k)
-    )
-
-    result = await db_session.execute(stmt)
-    rows = result.all()
-
-    return format_surfsense_docs_results(rows)
-
-
-def create_search_surfsense_docs_tool(db_session: AsyncSession):
-    """
-    Factory function to create the search_surfsense_docs tool.
-
-    The tool acquires its own short-lived ``AsyncSession`` per call via
-    :data:`async_session_maker` so the closure is safe to share across
-    HTTP requests by the compiled-agent cache. Capturing a per-request
-    session here would surface stale/closed sessions on cache hits.
-
-    Args:
-        db_session: Reserved for registry compatibility. Per-call sessions
-            are opened via :data:`async_session_maker` inside the tool body.
-
-    Returns:
-        A configured tool function for searching Surfsense documentation
-    """
-    del db_session  # per-call session — see docstring
-
-    @tool
-    async def search_surfsense_docs(query: str, top_k: int = 10) -> str:
-        """
-        Search Surfsense documentation for help with using the application.
-
-        Use this tool when the user asks questions about:
-        - How to use Surfsense features
-        - Installation and setup instructions
-        - Configuration options and settings
-        - Troubleshooting common issues
-        - Available connectors and integrations
-        - Browser extension usage
-        - API documentation
-
-        This searches the official Surfsense documentation that was indexed
-        at deployment time. It does NOT search the user's personal knowledge base.
-
-        Args:
-            query: The search query about Surfsense usage or features
-            top_k: Number of documentation chunks to retrieve (default: 10)
-
-        Returns:
-            Relevant documentation content formatted with chunk IDs for citations
-        """
-        async with async_session_maker() as db_session:
-            return await search_surfsense_docs_async(
-                query=query,
-                db_session=db_session,
-                top_k=top_k,
-            )
-
-    return search_surfsense_docs
diff --git a/surfsense_backend/app/agents/new_chat/tools/video_presentation.py b/surfsense_backend/app/agents/new_chat/tools/video_presentation.py
index 7bf9a1c3b..34f5183ca 100644
--- a/surfsense_backend/app/agents/new_chat/tools/video_presentation.py
+++ b/surfsense_backend/app/agents/new_chat/tools/video_presentation.py
@@ -2,17 +2,23 @@
 Video presentation generation tool for the SurfSense agent.
 
 This module provides a factory function for creating the generate_video_presentation
-tool that submits a Celery task for background video presentation generation.
-The frontend polls for completion and auto-updates when the presentation is ready.
+tool that submits a Celery task for background video presentation generation. The
+tool then polls the row until it reaches a terminal status (READY/FAILED) and
+returns that status. The wait is bounded by the chat's HTTP / process lifetime;
+see app.agents.shared.deliverable_wait for details.
 """
 
+import logging
 from typing import Any
 
 from langchain_core.tools import tool
 from sqlalchemy.ext.asyncio import AsyncSession
 
+from app.agents.shared.deliverable_wait import wait_for_deliverable
 from app.db import VideoPresentation, VideoPresentationStatus, shielded_async_session
 
+logger = logging.getLogger(__name__)
+
 
 def create_generate_video_presentation_tool(
     search_space_id: int,
@@ -72,20 +78,56 @@ def create_generate_video_presentation_tool(
                 user_prompt=user_prompt,
             )
 
-            print(
-                f"[generate_video_presentation] Created video presentation {video_pres_id}, task: {task.id}"
+            logger.info(
+                "[generate_video_presentation] Created video presentation %s, task: %s",
+                video_pres_id,
+                task.id,
             )
 
+            # Wait until the Celery worker flips the row to a terminal
+            # state. No internal budget — see deliverable_wait module.
+            terminal_status, _columns, elapsed = await wait_for_deliverable(
+                model=VideoPresentation,
+                row_id=video_pres_id,
+                columns=[VideoPresentation.status],
+                terminal_statuses={
+                    VideoPresentationStatus.READY,
+                    VideoPresentationStatus.FAILED,
+                },
+            )
+
+            if terminal_status == VideoPresentationStatus.READY:
+                logger.info(
+                    "[generate_video_presentation] %s READY in %.2fs",
+                    video_pres_id,
+                    elapsed,
+                )
+                return {
+                    "status": VideoPresentationStatus.READY.value,
+                    "video_presentation_id": video_pres_id,
+                    "title": video_title,
+                    "message": "Video presentation generated and saved.",
+                }
+
+            # Only other terminal state is FAILED.
+            logger.warning(
+                "[generate_video_presentation] %s FAILED in %.2fs",
+                video_pres_id,
+                elapsed,
+            )
             return {
-                "status": VideoPresentationStatus.PENDING.value,
+                "status": VideoPresentationStatus.FAILED.value,
                 "video_presentation_id": video_pres_id,
                 "title": video_title,
-                "message": "Video presentation generation started. This may take a few minutes.",
+                "error": (
+                    "Background worker reported FAILED status for this "
+                    "video presentation."
+                ),
             }
 
         except Exception as e:
             error_message = str(e)
-            print(f"[generate_video_presentation] Error: {error_message}")
+            logger.exception("[generate_video_presentation] Error: %s", error_message)
             return {
                 "status": VideoPresentationStatus.FAILED.value,
                 "error": error_message,
diff --git a/surfsense_backend/app/agents/shared/__init__.py b/surfsense_backend/app/agents/shared/__init__.py
new file mode 100644
index 000000000..7c46c65ff
--- /dev/null
+++ b/surfsense_backend/app/agents/shared/__init__.py
@@ -0,0 +1,9 @@
+"""Cross-package agent contracts.
+
+Symbols here are intentionally framework-light (no LangGraph / deepagents
+internals) so they can be imported from both ``app.agents.new_chat`` and
+``app.agents.multi_agent_chat`` without creating a circular dependency
+between the two packages. See ``receipt.py`` for the rationale.
+"""
+
+from __future__ import annotations
diff --git a/surfsense_backend/app/agents/shared/deliverable_wait.py b/surfsense_backend/app/agents/shared/deliverable_wait.py
new file mode 100644
index 000000000..abaa017ea
--- /dev/null
+++ b/surfsense_backend/app/agents/shared/deliverable_wait.py
@@ -0,0 +1,123 @@
+"""Shared poll-until-terminal helper for Celery-backed deliverables.
+
+Lives in ``app.agents.shared`` (neutral package, no dependencies on either
+``new_chat`` or ``multi_agent_chat``) so both the flat single-agent tools
+under ``app/agents/new_chat/tools/`` and the multi-agent subagent tools
+under ``app/agents/multi_agent_chat/subagents/builtins/deliverables/tools/``
+can import it without creating a circular dependency.
+
+Background
+----------
+Tools like ``generate_podcast`` and ``generate_video_presentation`` enqueue
+the heavy work to Celery and historically returned immediately with a
+"pending" status. That works for very-long deliverables but hurts UX for
+the common case (most podcasts finish in 10-30 seconds): the agent sends
+a "kicked off, check back in a minute" reply *before* the worker is done,
+so the user never gets a "ready" confirmation.
+
+This helper bridges that gap. The tool dispatches the Celery task as
+before, then polls the artefact row's ``status`` column **until it
+reaches a terminal value** (READY / FAILED). The tool then returns a
+real terminal outcome — never a pending one.
+
+No wall-clock budget here on purpose
+------------------------------------
+Layering a second budget on top of the existing per-invocation safety
+nets just confused the UX. The real ceilings are:
+
+* **Multi-agent mode** — ``SURFSENSE_SUBAGENT_INVOKE_TIMEOUT_SECONDS``
+  (default ``300.0``, ``0`` to disable) caps how long any single
+  ``task(subagent, ...)`` invocation can run. If a deliverable needs
+  longer than this, the subagent invocation is cancelled and the
+  orchestrator surfaces a "subagent timed out" ToolMessage. Operators
+  who routinely generate long videos should raise that ceiling (or set
+  it to ``0`` for true unbounded waits).
+* **Single-agent mode** — the chat's HTTP stream / process lifetime is
+  the only ceiling. Truly indefinite waits work here, but a dead Celery
+  worker will leave the row in PENDING/GENERATING forever; treat that
+  as an operational concern, not a UX concern.
+
+Configuration
+-------------
+None. The poll cadence is hardcoded at 1.5s — small enough to feel
+responsive (~6 polls per typical 10s podcast), large enough to avoid
+hammering the DB under burst traffic. Override at the call site if a
+specific tool needs a different cadence.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+import time
+from enum import Enum
+from typing import Any
+
+from sqlalchemy import select
+from sqlalchemy.orm import InstrumentedAttribute
+
+from app.db import shielded_async_session
+
+logger = logging.getLogger(__name__)
+
+
+_DEFAULT_POLL_INTERVAL_SECONDS: float = 1.5
+
+
+async def wait_for_deliverable(
+    *,
+    model: type,
+    row_id: int,
+    columns: list[InstrumentedAttribute[Any]],
+    terminal_statuses: set[Enum],
+    poll_interval_s: float = _DEFAULT_POLL_INTERVAL_SECONDS,
+) -> tuple[Enum, tuple[Any, ...], float]:
+    """Poll ``model`` row ``row_id`` until ``columns[0]`` reaches a terminal status.
+
+    Blocks until the row's status column matches one of
+    ``terminal_statuses``. There is no internal wall-clock budget; cancel
+    from the outside (subagent timeout, HTTP disconnect, task
+    cancellation) if you need a ceiling. See module docstring.
+
+    The first entry of ``columns`` must be the status column; additional
+    columns (e.g. ``Podcast.file_location``) are returned alongside the
+    final status so callers can build their payload without a second
+    roundtrip.
+
+    A fresh ``shielded_async_session`` is opened per poll so we never
+    hold a transaction across the wait, and a failed poll is logged but
+    does not abort the wait — transient DB hiccups should not collapse
+    the tool call.
+
+    Returns
+    -------
+    ``(terminal_status, columns, elapsed_seconds)``
+        ``columns`` mirrors the requested ``columns`` (including the
+        status itself in position 0).
+    """
+    if not columns:
+        raise ValueError("wait_for_deliverable requires at least the status column")
+
+    start = time.monotonic()
+
+    while True:
+        await asyncio.sleep(poll_interval_s)
+        row: tuple[Any, ...] | None = None
+        try:
+            async with shielded_async_session() as session:
+                result = await session.execute(
+                    select(*columns).where(model.id == row_id)
+                )
+                row = result.first()
+        except Exception as exc:
+            logger.warning(
+                "[deliverable_wait] poll failed model=%s id=%s err=%r",
+                getattr(model, "__name__", str(model)),
+                row_id,
+                exc,
+            )
+
+        if row is not None:
+            status_val = row[0]
+            if status_val in terminal_statuses:
+                return status_val, tuple(row), time.monotonic() - start
diff --git a/surfsense_backend/app/agents/shared/receipt.py b/surfsense_backend/app/agents/shared/receipt.py
new file mode 100644
index 000000000..6f30067ee
--- /dev/null
+++ b/surfsense_backend/app/agents/shared/receipt.py
@@ -0,0 +1,161 @@
+"""Receipt: structured handle returned by every mutating subagent tool.
+
+Generalises the Hermes ``entry`` dict (see ``references/hermes-agent/tools/
+delegate_tool.py:1663-1697``) for our 5 deliverable types + 15 connectors +
+KB writes. The supervisor reads the Receipt to verify what actually happened
+without round-tripping through LLM paraphrase.
+
+**Why this lives under ``app.agents.shared`` and not under either of the
+two agent packages:** the Receipt is a *contract* shared between
+``multi_agent_chat`` (where mutating tools emit it) and ``new_chat``
+(where ``filesystem_state.SurfSenseFilesystemState`` declares the
+``receipts`` reducer that accumulates it, and where
+``middleware.kb_persistence`` emits its own KB-write receipts). Putting
+the contract in either package would create a bidirectional import
+between the two — see the commit that introduced this module for the
+``ImportError`` chain it broke.
+
+Each mutating tool wraps its native return shape into a Receipt via
+:func:`make_receipt` (or builds one directly) and returns it under the
+``"receipt"`` key alongside its existing payload. The subagent boundary
+machinery in ``checkpointed_subagent_middleware.task_tool`` then folds
+the receipt into the parent's ``receipts`` state via the append reducer.
+
+The KB write path is the one exception: file-tool calls cannot emit a
+durable receipt because the actual DB writes happen end-of-turn inside
+:class:`app.agents.new_chat.middleware.kb_persistence.KnowledgeBasePersistenceMiddleware`.
+KB tools therefore emit a *provisional* receipt with ``status="pending"``;
+the persistence middleware flips it to ``"success"`` or ``"failed"``
+before returning control to the parent.
+"""
+
+from __future__ import annotations
+
+from typing import Any, Literal, TypedDict
+
+# Subagent that emitted this receipt.
+ReceiptRoute = Literal[
+    "deliverables",
+    "knowledge_base",
+    "notion",
+    "slack",
+    "gmail",
+    "linear",
+    "jira",
+    "clickup",
+    "confluence",
+    "calendar",
+    "luma",
+    "airtable",
+    "google_drive",
+    "dropbox",
+    "onedrive",
+    "discord",
+    "teams",
+]
+
+# Within-route kind of artefact / external resource the operation touched.
+# Left as ``str`` rather than a giant union so each route file documents
+# its own enum next to its tools.
+ReceiptType = str
+
+# Operation verb. Kept open for the same reason as ``ReceiptType``.
+ReceiptOperation = str
+
+# Pending = async backend (Celery podcast / video) that the orchestrator
+# will surface progress for out of band; persistence-MW flipped this to
+# ``success`` for KB writes that committed.
+ReceiptStatus = Literal["success", "pending", "failed"]
+
+
+class Receipt(TypedDict, total=False):
+    """Structured per-mutation handle returned to the parent subagent.
+
+    All fields are ``NotRequired`` (TypedDict ``total=False``) so each
+    route's tool can populate only the fields it actually has — e.g. Gmail
+    never sets ``verifiable_url`` because Gmail doesn't expose per-message
+    URLs. The receipts state reducer treats missing keys as missing rather
+    than ``null`` so we don't double-count.
+    """
+
+    route: ReceiptRoute
+    """Subagent name. Lets the orchestrator filter ``state['receipts']``
+    by route without re-deriving from ``type``."""
+
+    type: ReceiptType
+    """Within-route kind. e.g. for ``deliverables`` one of ``{report,
+    podcast, video_presentation, resume, image}``; for ``notion`` ``page``;
+    for ``slack`` ``message``."""
+
+    operation: ReceiptOperation
+    """Verb. e.g. ``generate`` (deliverables), ``create`` / ``update`` /
+    ``delete`` (most connectors), ``send`` / ``post`` (chat), ``write_file``
+    / ``edit_file`` / ``rm`` / ``rmdir`` / ``move_file`` / ``mkdir`` (KB)."""
+
+    status: ReceiptStatus
+    """``success`` / ``pending`` / ``failed``. The verification teaching
+    in ``shared/snippets/verifiable_handle.md`` keys off this field."""
+
+    external_id: str | None
+    """Backend identifier. Report row id, Notion ``page_id``, Slack ``ts``,
+    Gmail ``message_id``, Linear identifier, KB ``virtualPath``, etc.
+    ``None`` only when the operation failed before the backend assigned one."""
+
+    verifiable_url: str | None
+    """URL the parent can pass to ``scrape_webpage`` to verify the
+    operation. ``None`` when no public URL exists (Gmail, KB, raw images
+    stored in the DB)."""
+
+    preview: str | None
+    """Short snippet (~200 chars) of what was produced. First lines of
+    a generated report's markdown, transcript opener for a podcast,
+    thumbnail URL for an image. Lets the orchestrator decide whether to
+    re-render in the UI without re-loading the artefact."""
+
+    error: str | None
+    """Filled iff ``status == "failed"``. Plain-text reason; the parent
+    surfaces it in its own ``next_step``."""
+
+
+def make_receipt(
+    *,
+    route: ReceiptRoute,
+    type: str,
+    operation: str,
+    status: ReceiptStatus,
+    external_id: str | None = None,
+    verifiable_url: str | None = None,
+    preview: str | None = None,
+    error: str | None = None,
+) -> Receipt:
+    """Construct a :class:`Receipt` with non-``None`` fields only.
+
+    Drops keys whose value is ``None`` so downstream consumers can use
+    ``"verifiable_url" in receipt`` to distinguish "tool returned no URL"
+    from "tool deliberately surfaced ``null``".
+    """
+    out: dict[str, Any] = {
+        "route": route,
+        "type": type,
+        "operation": operation,
+        "status": status,
+    }
+    if external_id is not None:
+        out["external_id"] = external_id
+    if verifiable_url is not None:
+        out["verifiable_url"] = verifiable_url
+    if preview is not None:
+        out["preview"] = preview
+    if error is not None:
+        out["error"] = error
+    return out  # type: ignore[return-value]
+
+
+__all__ = [
+    "Receipt",
+    "ReceiptOperation",
+    "ReceiptRoute",
+    "ReceiptStatus",
+    "ReceiptType",
+    "make_receipt",
+]
diff --git a/surfsense_backend/app/agents/shared/receipt_command.py b/surfsense_backend/app/agents/shared/receipt_command.py
new file mode 100644
index 000000000..f1c269e90
--- /dev/null
+++ b/surfsense_backend/app/agents/shared/receipt_command.py
@@ -0,0 +1,71 @@
+"""Helper for wrapping a tool result with a Receipt in a ``Command(update=...)``.
+
+Most mutating subagent tools historically returned a plain ``dict`` payload
+which deepagents serialised straight into the ``ToolMessage`` content. To
+participate in the verification teaching from
+``multi_agent_chat/subagents/shared/snippets/verifiable_handle.md`` those
+tools now also need to write a :class:`Receipt` into the parent's
+``state['receipts']`` list (declared on
+:class:`~app.agents.new_chat.filesystem_state.SurfSenseFilesystemState`
+and backed by the append reducer).
+
+:func:`with_receipt` wraps both behaviours: it returns the tool payload as
+a JSON-encoded ``ToolMessage`` AND appends the receipt to state in a single
+:class:`~langgraph.types.Command`. Use it at every ``return`` site of a
+mutating tool — including failure paths (emit a receipt with
+``status="failed"`` and the error message in ``error``).
+"""
+
+from __future__ import annotations
+
+import json
+from typing import Any
+
+from langchain_core.messages import ToolMessage
+from langgraph.types import Command
+
+from app.agents.shared.receipt import Receipt
+
+
+def _content_to_text(payload: dict[str, Any] | str) -> str:
+    """Serialise a tool payload to ``ToolMessage`` content.
+
+    Dicts go through ``json.dumps`` (matching deepagents' default tool-result
+    serialisation); strings are passed through. Anything else is coerced via
+    ``str`` so we never raise here — a mis-typed tool return would already
+    have failed inside the tool body.
+    """
+    if isinstance(payload, str):
+        return payload
+    if isinstance(payload, dict):
+        return json.dumps(payload, default=str)
+    return str(payload)
+
+
+def with_receipt(
+    *,
+    payload: dict[str, Any] | str,
+    receipt: Receipt,
+    tool_call_id: str,
+) -> Command:
+    """Return a Command that ships ``payload`` as a ToolMessage AND appends ``receipt``.
+
+    The append happens via the ``_list_append_reducer`` on the ``receipts``
+    field of :class:`~app.agents.new_chat.filesystem_state.SurfSenseFilesystemState`,
+    so concurrent subagent batches (item 4 in the plan) won't clobber each
+    other's receipts.
+    """
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(
+                    content=_content_to_text(payload),
+                    tool_call_id=tool_call_id,
+                )
+            ],
+            "receipts": [receipt],
+        }
+    )
+
+
+__all__ = ["with_receipt"]
diff --git a/surfsense_backend/app/app.py b/surfsense_backend/app/app.py
index fc6242643..9bd637ba6 100644
--- a/surfsense_backend/app/app.py
+++ b/surfsense_backend/app/app.py
@@ -1,4 +1,5 @@
 import asyncio
+import contextlib
 import gc
 import logging
 import time
@@ -36,13 +37,15 @@ from app.config import (
 )
 from app.db import User, create_db_and_tables, get_async_session
 from app.exceptions import GENERIC_5XX_MESSAGE, ISSUES_URL, SurfSenseError
+from app.observability import metrics as ot_metrics
+from app.observability.bootstrap import init_otel, shutdown_otel
 from app.rate_limiter import get_real_client_ip, limiter
 from app.routes import router as crud_router
 from app.routes.auth_routes import router as auth_router
 from app.schemas import UserCreate, UserRead, UserUpdate
-from app.tasks.surfsense_docs_indexer import seed_surfsense_docs
+from app.session_events import register_session_hooks
 from app.users import SECRET, auth_backend, current_active_user, fastapi_users
-from app.utils.perf import get_perf_logger, log_system_snapshot
+from app.utils.perf import log_system_snapshot
 
 _error_logger = logging.getLogger("surfsense.errors")
 
@@ -127,6 +130,8 @@ def _http_exception_handler(request: Request, exc: HTTPException) -> JSONRespons
       logged server-side.
     """
     rid = _get_request_id(request)
+    if exc.status_code in {401, 403} and request.url.path.startswith("/auth"):
+        ot_metrics.record_auth_failure(reason=_status_to_code(exc.status_code))
     should_sanitize = exc.status_code == 500
 
     # Structured dict details (e.g. {"code": "CAPTCHA_REQUIRED", "message": "..."})
@@ -213,6 +218,7 @@ def _validation_error_handler(
 def _unhandled_exception_handler(request: Request, exc: Exception) -> JSONResponse:
     """Catch-all: log full traceback, return sanitized 500."""
     rid = _get_request_id(request)
+    ot_metrics.record_auth_failure(reason="unhandled_exception")
     _error_logger.error(
         "[%s] Unhandled exception on %s %s",
         rid,
@@ -246,6 +252,7 @@ def _status_to_code(status_code: int, detail: str = "") -> str:
 def _rate_limit_exceeded_handler(request: Request, exc: RateLimitExceeded):
     """Custom 429 handler that returns JSON matching our error envelope."""
     rid = _get_request_id(request)
+    ot_metrics.record_rate_limit_rejection(scope="slowapi")
     retry_after = exc.detail.split("per")[-1].strip() if exc.detail else "60"
     return _build_error_response(
         429,
@@ -306,6 +313,7 @@ def _check_rate_limit_memory(
                 f"Rate limit exceeded (in-memory fallback) on {scope} for IP {client_ip} "
                 f"({len(timestamps)}/{max_requests} in {window_seconds}s)"
             )
+            ot_metrics.record_rate_limit_rejection(scope=scope)
             raise HTTPException(
                 status_code=429,
                 detail="RATE_LIMIT_EXCEEDED",
@@ -349,6 +357,7 @@ def _check_rate_limit(
             f"Rate limit exceeded on {scope} for IP {client_ip} "
             f"({current_count}/{max_requests} in {window_seconds}s)"
         )
+        ot_metrics.record_rate_limit_rejection(scope=scope)
         raise HTTPException(
             status_code=429,
             detail="RATE_LIMIT_EXCEEDED",
@@ -558,6 +567,7 @@ async def lifespan(app: FastAPI):
     gc.set_threshold(700, 10, 5)
 
     _enable_slow_callback_logging(threshold_sec=0.5)
+    init_otel(app)
     await create_db_and_tables()
     await setup_checkpointer_tables()
     initialize_openrouter_integration()
@@ -566,13 +576,6 @@ async def lifespan(app: FastAPI):
     initialize_llm_router()
     initialize_image_gen_router()
     initialize_vision_llm_router()
-    try:
-        await asyncio.wait_for(seed_surfsense_docs(), timeout=120)
-    except TimeoutError:
-        logging.getLogger(__name__).warning(
-            "Surfsense docs seeding timed out after 120s — skipping. "
-            "Docs will be indexed on the next restart."
-        )
 
     # Phase 1.7 — JIT warmup. Bounded so a stuck warmup never delays
     # worker readiness. ``shield`` so Uvicorn cancelling startup
@@ -586,12 +589,14 @@ async def lifespan(app: FastAPI):
             "first real request will pay the full compile cost."
         )
 
+    register_session_hooks()
     log_system_snapshot("startup_complete")
 
     yield
 
     _stop_openrouter_background_refresh()
     await close_checkpointer()
+    shutdown_otel()
 
 
 def registration_allowed():
@@ -676,32 +681,20 @@ class RequestPerfMiddleware(BaseHTTPMiddleware):
     async def dispatch(
         self, request: StarletteRequest, call_next: RequestResponseEndpoint
     ) -> StarletteResponse:
-        perf = get_perf_logger()
         t0 = time.perf_counter()
         response = await call_next(request)
         elapsed_ms = (time.perf_counter() - t0) * 1000
 
         path = request.url.path
-        method = request.method
-        status = response.status_code
-
-        perf.debug(
-            "[request] %s %s -> %d in %.1fms",
-            method,
-            path,
-            status,
-            elapsed_ms,
-        )
 
         if elapsed_ms > _PERF_SLOW_REQUEST_THRESHOLD:
-            perf.warning(
-                "[SLOW_REQUEST] %s %s -> %d in %.1fms (threshold=%.0fms)",
-                method,
-                path,
-                status,
-                elapsed_ms,
-                _PERF_SLOW_REQUEST_THRESHOLD,
-            )
+            with contextlib.suppress(Exception):
+                from opentelemetry import trace
+
+                span = trace.get_current_span()
+                span.set_attribute("slow_request", True)
+                span.set_attribute("surfsense.request.elapsed_ms", elapsed_ms)
+                span.set_attribute("http.route", path)
             log_system_snapshot("slow_request")
 
         return response
diff --git a/surfsense_backend/app/automations/__init__.py b/surfsense_backend/app/automations/__init__.py
new file mode 100644
index 000000000..a4ce8ecc9
--- /dev/null
+++ b/surfsense_backend/app/automations/__init__.py
@@ -0,0 +1,5 @@
+"""Automations engine — see automation-design-plan.md."""
+
+from __future__ import annotations
+
+__all__: list[str] = []
diff --git a/surfsense_backend/app/automations/actions/__init__.py b/surfsense_backend/app/automations/actions/__init__.py
new file mode 100644
index 000000000..ac5a07ac4
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/__init__.py
@@ -0,0 +1,24 @@
+"""Actions domain: registry surface + built-in action packages.
+
+Each action lives in its own subpackage (``agent_task/``, ...) and self-registers
+at import time via its ``definition`` module. Side-effect imports below ensure
+the registry is populated whenever anyone touches the actions package.
+"""
+
+from __future__ import annotations
+
+from .store import all_actions, get_action, register_action
+from .types import ActionContext, ActionDefinition, ActionHandler, ActionHandlerFactory
+
+__all__ = [
+    "ActionContext",
+    "ActionDefinition",
+    "ActionHandler",
+    "ActionHandlerFactory",
+    "all_actions",
+    "get_action",
+    "register_action",
+]
+
+# Built-in actions self-register at import time.
+from . import builtin  # noqa: F401
diff --git a/surfsense_backend/app/automations/actions/builtin/__init__.py b/surfsense_backend/app/automations/actions/builtin/__init__.py
new file mode 100644
index 000000000..f3d21a044
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/__init__.py
@@ -0,0 +1,5 @@
+"""Built-in action types — each in its own subpackage, self-registering at import."""
+
+from __future__ import annotations
+
+from . import agent_task  # noqa: F401
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/__init__.py b/surfsense_backend/app/automations/actions/builtin/agent_task/__init__.py
new file mode 100644
index 000000000..3a42a2815
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/__init__.py
@@ -0,0 +1,15 @@
+"""``agent_task`` action: spin up multi_agent_chat for one rendered query.
+
+Imports ``definition`` for its side-effect (self-registration on the actions
+registry) and re-exports ``build_handler`` for direct consumers.
+"""
+
+from __future__ import annotations
+
+from .factory import build_handler
+from .params import AgentTaskActionParams
+
+__all__ = ["AgentTaskActionParams", "build_handler"]
+
+# Side-effect: register on the actions store.
+from . import definition  # noqa: F401
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/auto_decide.py b/surfsense_backend/app/automations/actions/builtin/agent_task/auto_decide.py
new file mode 100644
index 000000000..357eeb565
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/auto_decide.py
@@ -0,0 +1,39 @@
+"""Synthesize HITL decisions for every pending interrupt (approve-all or reject-all)."""
+
+from __future__ import annotations
+
+from typing import Any
+
+
+def build_auto_decisions(
+    state: Any, decision: str
+) -> tuple[dict[str, dict[str, Any]], dict[str, dict[str, Any]]]:
+    """Return ``(lg_resume_map, surfsense_resume_value)`` covering every pending interrupt.
+
+    ``lg_resume_map`` is keyed by ``Interrupt.id`` for ``Command(resume=...)``;
+    ``surfsense_resume_value`` is keyed by ``tool_call_id`` for the subagent
+    middleware bridge. Action count is read from ``value.action_requests`` when
+    present and falls back to ``1`` for wrapped scalar interrupts.
+    """
+    lg_resume_map: dict[str, dict[str, Any]] = {}
+    routed: dict[str, dict[str, Any]] = {}
+
+    for interrupt_obj in getattr(state, "interrupts", ()) or ():
+        value = getattr(interrupt_obj, "value", None)
+        if not isinstance(value, dict):
+            continue
+        interrupt_id = getattr(interrupt_obj, "id", None)
+        if not isinstance(interrupt_id, str):
+            continue
+
+        action_requests = value.get("action_requests")
+        count = len(action_requests) if isinstance(action_requests, list) else 1
+        decisions = [{"type": decision} for _ in range(count)]
+
+        lg_resume_map[interrupt_id] = {"decisions": decisions}
+
+        tool_call_id = value.get("tool_call_id")
+        if isinstance(tool_call_id, str):
+            routed[tool_call_id] = {"decisions": decisions}
+
+    return lg_resume_map, routed
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/definition.py b/surfsense_backend/app/automations/actions/builtin/agent_task/definition.py
new file mode 100644
index 000000000..cc3fd563a
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/definition.py
@@ -0,0 +1,18 @@
+"""``agent_task`` ``ActionDefinition`` registration."""
+
+from __future__ import annotations
+
+from ...store import register_action
+from ...types import ActionDefinition
+from .factory import build_handler
+from .params import AgentTaskActionParams
+
+AGENT_TASK_ACTION = ActionDefinition(
+    type="agent_task",
+    name="Agent task",
+    description="Run a multi_agent_chat turn from an automation step.",
+    params_model=AgentTaskActionParams,
+    build_handler=build_handler,
+)
+
+register_action(AGENT_TASK_ACTION)
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/dependencies.py b/surfsense_backend/app/automations/actions/builtin/agent_task/dependencies.py
new file mode 100644
index 000000000..e3736cc95
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/dependencies.py
@@ -0,0 +1,112 @@
+"""Build the per-invocation dependencies the multi_agent_chat factory needs."""
+
+from __future__ import annotations
+
+from dataclasses import dataclass
+from typing import Any
+
+from langgraph.checkpoint.memory import InMemorySaver
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.services.model_policy import (
+    AutomationModelPolicyError,
+    assert_automation_models_billable,
+    assert_models_billable,
+)
+from app.db import SearchSpace
+from app.tasks.chat.streaming.flows.shared.llm_bundle import load_llm_bundle
+from app.tasks.chat.streaming.flows.shared.pre_stream_setup import (
+    setup_connector_and_firecrawl,
+)
+
+
+class DependencyError(Exception):
+    """An external dependency (LLM config, connector service, ...) refused to load."""
+
+
+@dataclass(frozen=True, slots=True)
+class AgentDependencies:
+    """Everything ``create_multi_agent_chat_deep_agent`` needs from the environment."""
+
+    llm: Any
+    agent_config: Any
+    connector_service: Any
+    firecrawl_api_key: str | None
+    checkpointer: Any
+
+
+async def build_dependencies(
+    *,
+    session: AsyncSession,
+    search_space_id: int,
+    agent_llm_id: int | None = None,
+    image_generation_config_id: int | None = None,
+    vision_llm_config_id: int | None = None,
+) -> AgentDependencies:
+    """Load the LLM bundle, connector service, and a per-invoke in-memory checkpointer.
+
+    Resolves the agent LLM from the automation's *captured* model snapshot
+    (``agent_llm_id``) so runs are insulated from later chat/search-space model
+    changes. The model policy is enforced here as a runtime backstop: a captured
+    model that is no longer billable (e.g. a premium global config was removed)
+    fails the run clearly instead of silently consuming a free model.
+
+    When ``agent_llm_id`` is ``None`` (no captured snapshot — defensive fallback),
+    fall back to the live search space's ``agent_llm_id`` and validate that.
+    """
+    if agent_llm_id is not None:
+        try:
+            assert_models_billable(
+                agent_llm_id=agent_llm_id,
+                image_generation_config_id=image_generation_config_id,
+                vision_llm_config_id=vision_llm_config_id,
+            )
+        except AutomationModelPolicyError as exc:
+            raise DependencyError(str(exc)) from exc
+        resolved_agent_llm_id = agent_llm_id or 0
+    else:
+        search_space = await session.get(SearchSpace, search_space_id)
+        if search_space is None:
+            raise DependencyError(f"search space {search_space_id} not found")
+        try:
+            assert_automation_models_billable(search_space)
+        except AutomationModelPolicyError as exc:
+            raise DependencyError(str(exc)) from exc
+        resolved_agent_llm_id = search_space.agent_llm_id or 0
+
+    llm, agent_config, err = await load_llm_bundle(
+        session,
+        config_id=resolved_agent_llm_id,
+        search_space_id=search_space_id,
+    )
+    if err is not None or llm is None:
+        raise DependencyError(err or "failed to load agent LLM config")
+
+    connector_service, firecrawl_api_key = await setup_connector_and_firecrawl(
+        session, search_space_id=search_space_id
+    )
+    # Quick fix: use an in-memory checkpointer for automation runs.
+    #
+    # The shared Postgres checkpointer caches DB connections in a
+    # module-level pool. Each cached connection is bound to the asyncio
+    # loop that opened it. Celery throws away the loop after every task,
+    # so the pool ends up full of connections pointing to a dead loop,
+    # and the next Celery task (running on a fresh loop) can't use any
+    # of them — it hangs 30s and fails with
+    # `PoolTimeout: couldn't get a connection after 30.00 sec`.
+    #
+    # InMemorySaver has no cached connections, no loop binding — each
+    # Celery task creates one and drops it on exit.
+    #
+    # TODO(checkpointer): proper fix is to dispose the checkpointer
+    # pool around each Celery task in `run_async_celery_task`, the same
+    # way `_dispose_shared_db_engine` already does for the SQLAlchemy
+    # pool. Then this site can switch back to the shared checkpointer.
+    checkpointer = InMemorySaver()
+    return AgentDependencies(
+        llm=llm,
+        agent_config=agent_config,
+        connector_service=connector_service,
+        firecrawl_api_key=firecrawl_api_key,
+        checkpointer=checkpointer,
+    )
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/factory.py b/surfsense_backend/app/automations/actions/builtin/agent_task/factory.py
new file mode 100644
index 000000000..f4f5d7d37
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/factory.py
@@ -0,0 +1,28 @@
+"""Bind ``ActionContext`` to a callable that runs one ``agent_task`` step."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from ...types import ActionContext, ActionHandler
+from .invoke import run_agent_task
+from .params import AgentTaskActionParams
+
+
+def build_handler(ctx: ActionContext) -> ActionHandler:
+    """Return a handler closure that validates params and runs the agent task."""
+
+    async def handle(params: dict[str, Any]) -> dict[str, Any]:
+        validated = AgentTaskActionParams.model_validate(params)
+        return await run_agent_task(
+            ctx=ctx,
+            query=validated.query,
+            auto_approve_all=validated.auto_approve_all,
+            mentioned_document_ids=validated.mentioned_document_ids,
+            mentioned_folder_ids=validated.mentioned_folder_ids,
+            mentioned_connector_ids=validated.mentioned_connector_ids,
+            mentioned_connectors=validated.mentioned_connectors,
+            mentioned_documents=validated.mentioned_documents,
+        )
+
+    return handle
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/finalize.py b/surfsense_backend/app/automations/actions/builtin/agent_task/finalize.py
new file mode 100644
index 000000000..d5f1f95f6
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/finalize.py
@@ -0,0 +1,44 @@
+"""Extract the agent's final assistant text from the terminal invoke result."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from langchain_core.messages import AIMessage
+
+
+def extract_final_assistant_message(result: Any) -> str | None:
+    """Return the last ``AIMessage`` text content, or ``None`` if there isn't one.
+
+    Multi-part messages (content lists) are flattened by concatenating ``text``
+    parts in order. Non-string content (tool calls, images) is skipped.
+    """
+    if not isinstance(result, dict):
+        return None
+    messages = result.get("messages")
+    if not isinstance(messages, list):
+        return None
+
+    for msg in reversed(messages):
+        if not isinstance(msg, AIMessage):
+            continue
+        return _content_to_text(msg.content)
+    return None
+
+
+def _content_to_text(content: Any) -> str | None:
+    if isinstance(content, str):
+        text = content.strip()
+        return text or None
+    if isinstance(content, list):
+        parts: list[str] = []
+        for part in content:
+            if isinstance(part, str):
+                parts.append(part)
+            elif isinstance(part, dict) and part.get("type") == "text":
+                text = part.get("text")
+                if isinstance(text, str):
+                    parts.append(text)
+        joined = "".join(parts).strip()
+        return joined or None
+    return None
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/invoke.py b/surfsense_backend/app/automations/actions/builtin/agent_task/invoke.py
new file mode 100644
index 000000000..99e295f30
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/invoke.py
@@ -0,0 +1,227 @@
+"""Run one ``agent_task`` invocation: ainvoke + auto-decision resume loop."""
+
+from __future__ import annotations
+
+import time
+import uuid
+from typing import Any
+
+from langchain_core.messages import HumanMessage
+from langgraph.types import Command
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.agents.multi_agent_chat import create_multi_agent_chat_deep_agent
+from app.agents.new_chat.context import SurfSenseContextSchema
+from app.agents.new_chat.mention_resolver import resolve_mentions, substitute_in_text
+from app.db import ChatVisibility, async_session_maker
+from app.schemas.new_chat import MentionedDocumentInfo
+
+from ...types import ActionContext
+from .auto_decide import build_auto_decisions
+from .dependencies import build_dependencies
+from .finalize import extract_final_assistant_message
+
+# Cap on HITL resume iterations. The agent should not need this many turns in one
+# step; treat overshoot as a runaway and fail the step.
+_MAX_RESUMES = 50
+
+
+def _build_connector_block(connectors: list[dict[str, Any]]) -> str | None:
+    """Render the ``<mentioned_connectors>`` context block (same shape as chat).
+
+    Mirrors ``stream_new_chat`` so the agent gets the exact connector accounts
+    the user picked. Returns ``None`` when nothing renders.
+    """
+    lines: list[str] = []
+    for connector in connectors:
+        connector_id = connector.get("id")
+        connector_type = connector.get("connector_type") or connector.get(
+            "document_type"
+        )
+        account_name = connector.get("account_name") or connector.get("title")
+        if connector_id is None or connector_type is None:
+            continue
+        lines.append(
+            f'  - connector_id={connector_id}, connector_type="{connector_type}", '
+            f'account_name="{account_name or ""}"'
+        )
+    if not lines:
+        return None
+    return (
+        "<mentioned_connectors>\n"
+        "The user selected these exact connector accounts with @. "
+        "These entries are selection metadata, not retrieved connector content. "
+        "When a connector-backed tool needs an account, use the matching "
+        "connector_id from this list if the tool supports connector_id:\n"
+        + "\n".join(lines)
+        + "\n</mentioned_connectors>"
+    )
+
+
+async def _resolve_mention_context(
+    session: AsyncSession,
+    *,
+    search_space_id: int,
+    query: str,
+    mentioned_document_ids: list[int] | None,
+    mentioned_folder_ids: list[int] | None,
+    mentioned_connector_ids: list[int] | None,
+    mentioned_connectors: list[MentionedDocumentInfo] | None,
+    mentioned_documents: list[MentionedDocumentInfo] | None,
+) -> tuple[str, SurfSenseContextSchema | None]:
+    """Resolve @-mentions into a rewritten query + per-invocation context.
+
+    Automation always runs in cloud filesystem mode, so we mirror the chat
+    ``new_chat`` flow: substitute ``@title`` tokens with canonical
+    ``/documents/...`` paths, prepend a ``<mentioned_connectors>`` block, and
+    build a ``SurfSenseContextSchema`` that ``KnowledgePriorityMiddleware``
+    reads via ``runtime.context``. Returns ``(query, None)`` unchanged when
+    there are no mentions.
+    """
+    has_mentions = bool(
+        mentioned_document_ids
+        or mentioned_folder_ids
+        or mentioned_connector_ids
+        or mentioned_connectors
+        or mentioned_documents
+    )
+    if not has_mentions:
+        return query, None
+
+    resolved = await resolve_mentions(
+        session,
+        search_space_id=search_space_id,
+        mentioned_documents=mentioned_documents,
+        mentioned_document_ids=mentioned_document_ids,
+        mentioned_folder_ids=mentioned_folder_ids,
+    )
+    agent_query = substitute_in_text(query, resolved.token_to_path)
+
+    # ``SurfSenseContextSchema.mentioned_connectors`` is typed ``list[dict]`` and
+    # the connector block reads dicts, so dump the pydantic chips once.
+    connector_dicts = [c.model_dump() for c in (mentioned_connectors or [])]
+    connector_block = _build_connector_block(connector_dicts)
+    if connector_block:
+        agent_query = f"{connector_block}\n\n<user_query>{agent_query}</user_query>"
+
+    runtime_context = SurfSenseContextSchema(
+        search_space_id=search_space_id,
+        mentioned_document_ids=list(
+            resolved.mentioned_document_ids or (mentioned_document_ids or [])
+        ),
+        mentioned_folder_ids=list(
+            resolved.mentioned_folder_ids or (mentioned_folder_ids or [])
+        ),
+        mentioned_connector_ids=list(mentioned_connector_ids or []),
+        mentioned_connectors=connector_dicts,
+    )
+    return agent_query, runtime_context
+
+
+async def run_agent_task(
+    *,
+    ctx: ActionContext,
+    query: str,
+    auto_approve_all: bool,
+    mentioned_document_ids: list[int] | None = None,
+    mentioned_folder_ids: list[int] | None = None,
+    mentioned_connector_ids: list[int] | None = None,
+    mentioned_connectors: list[MentionedDocumentInfo] | None = None,
+    mentioned_documents: list[MentionedDocumentInfo] | None = None,
+) -> dict[str, Any]:
+    """Invoke multi_agent_chat for one rendered query and return its outcome.
+
+    Opens its own DB session so the executor's bookkeeping session isn't tied
+    up for the entire invocation. The LangGraph ``thread_id`` (a fresh UUID)
+    is returned as ``agent_session_id`` for later inspection.
+
+    @-mentions (files / folders / connectors) chosen in the task input are
+    resolved the same way the chat flow does and forwarded to the agent via the
+    per-invocation ``context`` so they actually scope retrieval.
+    """
+    agent_session_id = str(uuid.uuid4())
+    user_id = str(ctx.creator_user_id) if ctx.creator_user_id else None
+    decision = "approve" if auto_approve_all else "reject"
+
+    async with async_session_maker() as agent_session:
+        deps = await build_dependencies(
+            session=agent_session,
+            search_space_id=ctx.search_space_id,
+            agent_llm_id=ctx.agent_llm_id,
+            image_generation_config_id=ctx.image_generation_config_id,
+            vision_llm_config_id=ctx.vision_llm_config_id,
+        )
+
+        agent = await create_multi_agent_chat_deep_agent(
+            llm=deps.llm,
+            search_space_id=ctx.search_space_id,
+            db_session=agent_session,
+            connector_service=deps.connector_service,
+            checkpointer=deps.checkpointer,
+            user_id=user_id,
+            thread_id=None,
+            agent_config=deps.agent_config,
+            firecrawl_api_key=deps.firecrawl_api_key,
+            thread_visibility=ChatVisibility.PRIVATE,
+            mentioned_document_ids=mentioned_document_ids,
+            image_generation_config_id=ctx.image_generation_config_id,
+        )
+
+        agent_query, runtime_context = await _resolve_mention_context(
+            agent_session,
+            search_space_id=ctx.search_space_id,
+            query=query,
+            mentioned_document_ids=mentioned_document_ids,
+            mentioned_folder_ids=mentioned_folder_ids,
+            mentioned_connector_ids=mentioned_connector_ids,
+            mentioned_connectors=mentioned_connectors,
+            mentioned_documents=mentioned_documents,
+        )
+
+        request_id = f"automation:{ctx.run_id}:{ctx.step_id}"
+        turn_id = f"{request_id}:{int(time.time() * 1000)}"
+        input_state: dict[str, Any] = {
+            "messages": [HumanMessage(content=agent_query)],
+            "search_space_id": ctx.search_space_id,
+            "request_id": request_id,
+            "turn_id": turn_id,
+        }
+        config: dict[str, Any] = {
+            "configurable": {
+                "thread_id": agent_session_id,
+                "request_id": request_id,
+                "turn_id": turn_id,
+            },
+            "recursion_limit": 10_000,
+        }
+        if runtime_context is not None:
+            runtime_context.request_id = request_id
+            runtime_context.turn_id = turn_id
+
+        # The compiled graph declares ``context_schema=SurfSenseContextSchema``;
+        # mentions only reach ``KnowledgePriorityMiddleware`` via ``context=``.
+        invoke_kwargs: dict[str, Any] = {"config": config}
+        if runtime_context is not None:
+            invoke_kwargs["context"] = runtime_context
+
+        result = await agent.ainvoke(input_state, **invoke_kwargs)
+
+        resumes = 0
+        while True:
+            state = await agent.aget_state(config)
+            if not getattr(state, "interrupts", None):
+                break
+            if resumes >= _MAX_RESUMES:
+                raise RuntimeError(
+                    f"agent_task exceeded {_MAX_RESUMES} HITL resume iterations"
+                )
+            lg_resume_map, routed = build_auto_decisions(state, decision)
+            config["configurable"]["surfsense_resume_value"] = routed
+            result = await agent.ainvoke(Command(resume=lg_resume_map), **invoke_kwargs)
+            resumes += 1
+
+    return {
+        "agent_session_id": agent_session_id,
+        "final_message": extract_final_assistant_message(result),
+        "resumes": resumes,
+    }
diff --git a/surfsense_backend/app/automations/actions/builtin/agent_task/params.py b/surfsense_backend/app/automations/actions/builtin/agent_task/params.py
new file mode 100644
index 000000000..ad6f35edb
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/builtin/agent_task/params.py
@@ -0,0 +1,52 @@
+"""``AgentTaskActionParams`` — params for the ``agent_task`` action type."""
+
+from __future__ import annotations
+
+from pydantic import BaseModel, ConfigDict, Field
+
+from app.schemas.new_chat import MentionedDocumentInfo
+
+
+class AgentTaskActionParams(BaseModel):
+    """Run a multi_agent_chat turn from an automation step."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    query: str = Field(
+        ...,
+        min_length=1,
+        description="User query for the agent; rendered at execute time.",
+    )
+    auto_approve_all: bool = Field(
+        default=False,
+        description="If true, every HITL approval is auto-approved; otherwise rejected.",
+    )
+
+    # @-mention references chosen in the task input. Mirror the ``new_chat``
+    # request fields (minus SurfSense product docs) so the run can scope
+    # retrieval to the user's selected files / folders / connectors. All
+    # optional and additive; a task with no mentions behaves as before.
+    mentioned_document_ids: list[int] | None = Field(
+        default=None,
+        description="Knowledge-base document IDs the task references with @.",
+    )
+    mentioned_folder_ids: list[int] | None = Field(
+        default=None,
+        description="Knowledge-base folder IDs the task references with @.",
+    )
+    mentioned_connector_ids: list[int] | None = Field(
+        default=None,
+        description="Concrete connector account IDs the task references with @.",
+    )
+    mentioned_connectors: list[MentionedDocumentInfo] | None = Field(
+        default=None,
+        description="Display/context metadata for the @-mentioned connector accounts.",
+    )
+    mentioned_documents: list[MentionedDocumentInfo] | None = Field(
+        default=None,
+        description=(
+            "Chip metadata (id, title, kind, ...) for every @-mention so the "
+            "run can resolve titles to virtual paths and substitute them in "
+            "the query."
+        ),
+    )
diff --git a/surfsense_backend/app/automations/actions/store.py b/surfsense_backend/app/automations/actions/store.py
new file mode 100644
index 000000000..eff66c4c7
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/store.py
@@ -0,0 +1,23 @@
+"""In-memory action registry. Populated once at process startup."""
+
+from __future__ import annotations
+
+from .types import ActionDefinition
+
+_REGISTRY: dict[str, ActionDefinition] = {}
+
+
+def register_action(action: ActionDefinition) -> None:
+    """Register an action. Raises on duplicate type."""
+    if action.type in _REGISTRY:
+        raise ValueError(f"Action already registered: {action.type!r}")
+    _REGISTRY[action.type] = action
+
+
+def get_action(action_type: str) -> ActionDefinition | None:
+    return _REGISTRY.get(action_type)
+
+
+def all_actions() -> dict[str, ActionDefinition]:
+    """Defensive snapshot of the registry."""
+    return dict(_REGISTRY)
diff --git a/surfsense_backend/app/automations/actions/types.py b/surfsense_backend/app/automations/actions/types.py
new file mode 100644
index 000000000..453721a43
--- /dev/null
+++ b/surfsense_backend/app/automations/actions/types.py
@@ -0,0 +1,46 @@
+"""``ActionDefinition``, ``ActionContext``, and handler/factory signatures."""
+
+from __future__ import annotations
+
+from collections.abc import Awaitable, Callable
+from dataclasses import dataclass
+from typing import Any
+from uuid import UUID
+
+from pydantic import BaseModel
+from sqlalchemy.ext.asyncio import AsyncSession
+
+
+@dataclass(frozen=True, slots=True)
+class ActionContext:
+    """Per-invocation dependencies bound to an action handler at execute time."""
+
+    session: AsyncSession
+    run_id: int
+    step_id: str
+    search_space_id: int
+    creator_user_id: UUID | None
+    # Captured model snapshot from the automation definition (``definition.models``),
+    # resolved per run instead of the live search space. ``None`` falls back to the
+    # search space's current prefs (defensive; should not happen post-capture).
+    agent_llm_id: int | None = None
+    image_generation_config_id: int | None = None
+    vision_llm_config_id: int | None = None
+
+
+ActionHandler = Callable[[dict[str, Any]], Awaitable[Any]]
+ActionHandlerFactory = Callable[[ActionContext], ActionHandler]
+
+
+@dataclass(frozen=True, slots=True)
+class ActionDefinition:
+    type: str
+    name: str
+    description: str
+    params_model: type[BaseModel]
+    build_handler: ActionHandlerFactory
+
+    @property
+    def params_schema(self) -> dict[str, Any]:
+        """JSON Schema (draft 2020-12) derived from ``params_model``."""
+        return self.params_model.model_json_schema()
diff --git a/surfsense_backend/app/automations/api/__init__.py b/surfsense_backend/app/automations/api/__init__.py
new file mode 100644
index 000000000..a18e91a95
--- /dev/null
+++ b/surfsense_backend/app/automations/api/__init__.py
@@ -0,0 +1,16 @@
+"""HTTP layer for the automations feature."""
+
+from __future__ import annotations
+
+from fastapi import APIRouter
+
+from .automation import router as automation_router
+from .run import router as run_router
+from .trigger import router as trigger_router
+
+router = APIRouter()
+router.include_router(automation_router)
+router.include_router(trigger_router)
+router.include_router(run_router)
+
+__all__ = ["router"]
diff --git a/surfsense_backend/app/automations/api/automation.py b/surfsense_backend/app/automations/api/automation.py
new file mode 100644
index 000000000..911ae57a6
--- /dev/null
+++ b/surfsense_backend/app/automations/api/automation.py
@@ -0,0 +1,109 @@
+"""HTTP routes for the ``Automation`` resource."""
+
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, Query, status
+from pydantic import BaseModel
+
+from app.automations.schemas.api import (
+    AutomationCreate,
+    AutomationDetail,
+    AutomationList,
+    AutomationSummary,
+    AutomationUpdate,
+)
+from app.automations.services import AutomationService, get_automation_service
+
+router = APIRouter()
+
+
+class ModelEligibilityViolation(BaseModel):
+    kind: str
+    config_id: int | None
+    reason: str
+
+
+class ModelEligibility(BaseModel):
+    allowed: bool
+    violations: list[ModelEligibilityViolation]
+
+
+@router.post(
+    "/automations",
+    response_model=AutomationDetail,
+    status_code=status.HTTP_201_CREATED,
+)
+async def create_automation(
+    payload: AutomationCreate,
+    service: AutomationService = Depends(get_automation_service),
+) -> AutomationDetail:
+    """Create an automation, optionally with initial triggers (atomic)."""
+    automation = await service.create(payload)
+    return AutomationDetail.model_validate(automation)
+
+
+@router.get("/automations", response_model=AutomationList)
+async def list_automations(
+    search_space_id: int = Query(...),
+    limit: int = Query(default=50, ge=1, le=200),
+    offset: int = Query(default=0, ge=0),
+    service: AutomationService = Depends(get_automation_service),
+) -> AutomationList:
+    """List automations in a search space."""
+    items, total = await service.list(
+        search_space_id=search_space_id, limit=limit, offset=offset
+    )
+    return AutomationList(
+        items=[AutomationSummary.model_validate(a) for a in items],
+        total=total,
+    )
+
+
+@router.get("/automations/model-eligibility", response_model=ModelEligibility)
+async def get_automation_model_eligibility(
+    search_space_id: int = Query(...),
+    service: AutomationService = Depends(get_automation_service),
+) -> ModelEligibility:
+    """Report whether a search space's models are billable for automations.
+
+    Used by the frontend to gate creation: automations may only use premium
+    global models or user BYOK models (free models and Auto mode are blocked).
+
+    NOTE: declared before ``/automations/{automation_id}`` so the literal path
+    isn't captured by the int-typed ``{automation_id}`` route.
+    """
+    result = await service.model_eligibility(search_space_id=search_space_id)
+    return ModelEligibility.model_validate(result)
+
+
+@router.get("/automations/{automation_id}", response_model=AutomationDetail)
+async def get_automation(
+    automation_id: int,
+    service: AutomationService = Depends(get_automation_service),
+) -> AutomationDetail:
+    """Get one automation with its definition and triggers."""
+    automation = await service.get(automation_id)
+    return AutomationDetail.model_validate(automation)
+
+
+@router.patch("/automations/{automation_id}", response_model=AutomationDetail)
+async def update_automation(
+    automation_id: int,
+    patch: AutomationUpdate,
+    service: AutomationService = Depends(get_automation_service),
+) -> AutomationDetail:
+    """Partially update an automation. Triggers are managed separately."""
+    automation = await service.update(automation_id, patch)
+    return AutomationDetail.model_validate(automation)
+
+
+@router.delete(
+    "/automations/{automation_id}",
+    status_code=status.HTTP_204_NO_CONTENT,
+)
+async def delete_automation(
+    automation_id: int,
+    service: AutomationService = Depends(get_automation_service),
+) -> None:
+    """Delete an automation; triggers and runs are removed by FK cascade."""
+    await service.delete(automation_id)
diff --git a/surfsense_backend/app/automations/api/run.py b/surfsense_backend/app/automations/api/run.py
new file mode 100644
index 000000000..b662a5943
--- /dev/null
+++ b/surfsense_backend/app/automations/api/run.py
@@ -0,0 +1,44 @@
+"""HTTP routes for automation run history."""
+
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, Query
+
+from app.automations.schemas.api import RunDetail, RunList, RunSummary
+from app.automations.services import RunService, get_run_service
+
+router = APIRouter()
+
+
+@router.get(
+    "/automations/{automation_id}/runs",
+    response_model=RunList,
+)
+async def list_runs(
+    automation_id: int,
+    limit: int = Query(default=50, ge=1, le=200),
+    offset: int = Query(default=0, ge=0),
+    service: RunService = Depends(get_run_service),
+) -> RunList:
+    """List run history for an automation, newest first."""
+    items, total = await service.list(
+        automation_id=automation_id, limit=limit, offset=offset
+    )
+    return RunList(
+        items=[RunSummary.model_validate(r) for r in items],
+        total=total,
+    )
+
+
+@router.get(
+    "/automations/{automation_id}/runs/{run_id}",
+    response_model=RunDetail,
+)
+async def get_run(
+    automation_id: int,
+    run_id: int,
+    service: RunService = Depends(get_run_service),
+) -> RunDetail:
+    """Get the full record of a single run, including step results and artifacts."""
+    run = await service.get(automation_id=automation_id, run_id=run_id)
+    return RunDetail.model_validate(run)
diff --git a/surfsense_backend/app/automations/api/trigger.py b/surfsense_backend/app/automations/api/trigger.py
new file mode 100644
index 000000000..40e47a86b
--- /dev/null
+++ b/surfsense_backend/app/automations/api/trigger.py
@@ -0,0 +1,55 @@
+"""HTTP routes for triggers attached to an automation."""
+
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, status
+
+from app.automations.schemas.api import TriggerCreate, TriggerDetail, TriggerUpdate
+from app.automations.services import TriggerService, get_trigger_service
+
+router = APIRouter()
+
+
+@router.post(
+    "/automations/{automation_id}/triggers",
+    response_model=TriggerDetail,
+    status_code=status.HTTP_201_CREATED,
+)
+async def add_trigger(
+    automation_id: int,
+    payload: TriggerCreate,
+    service: TriggerService = Depends(get_trigger_service),
+) -> TriggerDetail:
+    """Attach a new trigger to an automation."""
+    trigger = await service.add(automation_id=automation_id, payload=payload)
+    return TriggerDetail.model_validate(trigger)
+
+
+@router.patch(
+    "/automations/{automation_id}/triggers/{trigger_id}",
+    response_model=TriggerDetail,
+)
+async def update_trigger(
+    automation_id: int,
+    trigger_id: int,
+    patch: TriggerUpdate,
+    service: TriggerService = Depends(get_trigger_service),
+) -> TriggerDetail:
+    """Toggle ``enabled`` or replace ``params``. Trigger type is immutable."""
+    trigger = await service.update(
+        automation_id=automation_id, trigger_id=trigger_id, patch=patch
+    )
+    return TriggerDetail.model_validate(trigger)
+
+
+@router.delete(
+    "/automations/{automation_id}/triggers/{trigger_id}",
+    status_code=status.HTTP_204_NO_CONTENT,
+)
+async def remove_trigger(
+    automation_id: int,
+    trigger_id: int,
+    service: TriggerService = Depends(get_trigger_service),
+) -> None:
+    """Detach a trigger from an automation."""
+    await service.remove(automation_id=automation_id, trigger_id=trigger_id)
diff --git a/surfsense_backend/app/automations/dispatch/__init__.py b/surfsense_backend/app/automations/dispatch/__init__.py
new file mode 100644
index 000000000..bab1d122e
--- /dev/null
+++ b/surfsense_backend/app/automations/dispatch/__init__.py
@@ -0,0 +1,8 @@
+"""Generic dispatch primitives shared across trigger types."""
+
+from __future__ import annotations
+
+from .errors import DispatchError
+from .launch import launch_run
+
+__all__ = ["DispatchError", "launch_run"]
diff --git a/surfsense_backend/app/automations/dispatch/errors.py b/surfsense_backend/app/automations/dispatch/errors.py
new file mode 100644
index 000000000..75640a987
--- /dev/null
+++ b/surfsense_backend/app/automations/dispatch/errors.py
@@ -0,0 +1,7 @@
+"""Dispatch errors raised when a fire request cannot be turned into a run."""
+
+from __future__ import annotations
+
+
+class DispatchError(Exception):
+    """A dispatch could not proceed (missing trigger, invalid inputs, ...)."""
diff --git a/surfsense_backend/app/automations/dispatch/inputs.py b/surfsense_backend/app/automations/dispatch/inputs.py
new file mode 100644
index 000000000..61546b993
--- /dev/null
+++ b/surfsense_backend/app/automations/dispatch/inputs.py
@@ -0,0 +1,43 @@
+"""Merge and validate the inputs a run starts with."""
+
+from __future__ import annotations
+
+from typing import Any
+
+import jsonschema
+
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.automations.schemas.definition.envelope import AutomationDefinition
+
+from .errors import DispatchError
+
+
+def prepare_inputs(
+    definition: AutomationDefinition,
+    trigger: AutomationTrigger,
+    runtime_inputs: dict[str, Any] | None,
+) -> dict[str, Any]:
+    """Merge ``trigger.static_inputs`` over ``runtime_inputs``, then validate.
+
+    Static inputs win on key collision.
+    """
+    merged = {**(runtime_inputs or {}), **(trigger.static_inputs or {})}
+    return validate_inputs(definition, merged)
+
+
+def validate_inputs(
+    definition: AutomationDefinition, inputs: dict[str, Any]
+) -> dict[str, Any]:
+    """Validate ``inputs`` against the definition's optional declared schema.
+
+    No declared schema → pass through unchanged so runtime keys (``fired_at``,
+    ``last_fired_at``, ...) still reach the template context. A declared schema
+    that the inputs violate is surfaced as ``DispatchError``.
+    """
+    if definition.inputs is None or not definition.inputs.schema_:
+        return inputs
+    try:
+        jsonschema.validate(instance=inputs, schema=definition.inputs.schema_)
+    except jsonschema.ValidationError as exc:
+        raise DispatchError(f"inputs: {exc.message}") from exc
+    return inputs
diff --git a/surfsense_backend/app/automations/dispatch/launch.py b/surfsense_backend/app/automations/dispatch/launch.py
new file mode 100644
index 000000000..cf7fb53d8
--- /dev/null
+++ b/surfsense_backend/app/automations/dispatch/launch.py
@@ -0,0 +1,60 @@
+"""Launch a run for a trigger that fired: resolve, validate, persist, enqueue.
+
+The trigger-facing entry every selector calls. A selector builds the runtime
+inputs and hands one trigger row here; this resolves and guards its automation,
+snapshots the definition onto a PENDING run, and enqueues execution. The
+snapshot makes the run immune to later edits of the automation.
+"""
+
+from __future__ import annotations
+
+from typing import Any
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.persistence.enums.run_status import RunStatus
+from app.automations.persistence.models.run import AutomationRun
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.automations.schemas.definition.envelope import AutomationDefinition
+from app.automations.tasks.execute_run import automation_run_execute
+
+from .errors import DispatchError
+from .inputs import prepare_inputs
+from .resolve import resolve_active_automation
+
+
+async def launch_run(
+    *,
+    session: AsyncSession,
+    trigger: AutomationTrigger,
+    runtime_inputs: dict[str, Any] | None = None,
+) -> AutomationRun:
+    """Resolve ``trigger``'s active automation and enqueue a PENDING run for it."""
+    automation = await resolve_active_automation(session, trigger)
+
+    try:
+        definition = AutomationDefinition.model_validate(automation.definition)
+    except Exception as exc:
+        raise DispatchError(f"invalid automation definition: {exc}") from exc
+
+    inputs = prepare_inputs(definition, trigger, runtime_inputs)
+    snapshot = definition.model_dump(mode="json", by_alias=True)
+
+    run = AutomationRun(
+        automation_id=automation.id,
+        trigger_id=trigger.id,
+        status=RunStatus.PENDING,
+        definition_snapshot=snapshot,
+        inputs=inputs,
+        step_results=[],
+        artifacts=[],
+    )
+    session.add(run)
+    await session.commit()
+    await session.refresh(run)
+
+    automation_run_execute.apply_async(
+        args=[run.id],
+        time_limit=definition.execution.timeout_seconds,
+    )
+    return run
diff --git a/surfsense_backend/app/automations/dispatch/resolve.py b/surfsense_backend/app/automations/dispatch/resolve.py
new file mode 100644
index 000000000..13efd15ee
--- /dev/null
+++ b/surfsense_backend/app/automations/dispatch/resolve.py
@@ -0,0 +1,40 @@
+"""Resolve the automation behind a trigger and guard that it may run."""
+
+from __future__ import annotations
+
+from sqlalchemy import select
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.persistence.enums.automation_status import AutomationStatus
+from app.automations.persistence.models.automation import Automation
+from app.automations.persistence.models.trigger import AutomationTrigger
+
+from .errors import DispatchError
+
+
+async def resolve_active_automation(
+    session: AsyncSession, trigger: AutomationTrigger
+) -> Automation:
+    """Load ``trigger``'s automation and require it ``ACTIVE``.
+
+    Raises ``DispatchError`` if the automation is missing or not active.
+    """
+    automation = await _load_automation(session, trigger.automation_id)
+    if automation is None:
+        raise DispatchError(
+            f"automation {trigger.automation_id} not found for trigger {trigger.id}"
+        )
+
+    if automation.status != AutomationStatus.ACTIVE:
+        raise DispatchError(
+            f"automation {trigger.automation_id} is {automation.status.value}, not active"
+        )
+
+    return automation
+
+
+async def _load_automation(
+    session: AsyncSession, automation_id: int
+) -> Automation | None:
+    stmt = select(Automation).where(Automation.id == automation_id)
+    return (await session.execute(stmt)).scalar_one_or_none()
diff --git a/surfsense_backend/app/automations/persistence/__init__.py b/surfsense_backend/app/automations/persistence/__init__.py
new file mode 100644
index 000000000..b10aef03d
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/__init__.py
@@ -0,0 +1,15 @@
+"""Models and enums for the automation tables."""
+
+from __future__ import annotations
+
+from .enums import AutomationStatus, RunStatus, TriggerType
+from .models import Automation, AutomationRun, AutomationTrigger
+
+__all__ = [
+    "Automation",
+    "AutomationRun",
+    "AutomationStatus",
+    "AutomationTrigger",
+    "RunStatus",
+    "TriggerType",
+]
diff --git a/surfsense_backend/app/automations/persistence/enums/__init__.py b/surfsense_backend/app/automations/persistence/enums/__init__.py
new file mode 100644
index 000000000..6c2cfcf1f
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/enums/__init__.py
@@ -0,0 +1,13 @@
+"""Enums for the automation tables."""
+
+from __future__ import annotations
+
+from .automation_status import AutomationStatus
+from .run_status import RunStatus
+from .trigger_type import TriggerType
+
+__all__ = [
+    "AutomationStatus",
+    "RunStatus",
+    "TriggerType",
+]
diff --git a/surfsense_backend/app/automations/persistence/enums/automation_status.py b/surfsense_backend/app/automations/persistence/enums/automation_status.py
new file mode 100644
index 000000000..aff6f4683
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/enums/automation_status.py
@@ -0,0 +1,11 @@
+"""Automation lifecycle status."""
+
+from __future__ import annotations
+
+from enum import StrEnum
+
+
+class AutomationStatus(StrEnum):
+    ACTIVE = "active"  # eligible to fire
+    PAUSED = "paused"  # kept, but triggers don't fire
+    ARCHIVED = "archived"  # read-only history
diff --git a/surfsense_backend/app/automations/persistence/enums/run_status.py b/surfsense_backend/app/automations/persistence/enums/run_status.py
new file mode 100644
index 000000000..64dcd49e8
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/enums/run_status.py
@@ -0,0 +1,14 @@
+"""AutomationRun state machine: pending → running → (succeeded|failed|cancelled|timed_out)."""
+
+from __future__ import annotations
+
+from enum import StrEnum
+
+
+class RunStatus(StrEnum):
+    PENDING = "pending"
+    RUNNING = "running"
+    SUCCEEDED = "succeeded"
+    FAILED = "failed"
+    CANCELLED = "cancelled"
+    TIMED_OUT = "timed_out"
diff --git a/surfsense_backend/app/automations/persistence/enums/trigger_type.py b/surfsense_backend/app/automations/persistence/enums/trigger_type.py
new file mode 100644
index 000000000..25bd784b1
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/enums/trigger_type.py
@@ -0,0 +1,16 @@
+"""Trigger-kind discriminator.
+
+``schedule`` and ``event`` are registered. ``manual`` is reserved in the enum
+(mirrors the postgres enum) but is intentionally unregistered pending a redesign
+of the "Run now" UX.
+"""
+
+from __future__ import annotations
+
+from enum import StrEnum
+
+
+class TriggerType(StrEnum):
+    SCHEDULE = "schedule"
+    EVENT = "event"
+    MANUAL = "manual"
diff --git a/surfsense_backend/app/automations/persistence/models/__init__.py b/surfsense_backend/app/automations/persistence/models/__init__.py
new file mode 100644
index 000000000..8b985f025
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/models/__init__.py
@@ -0,0 +1,13 @@
+"""Models, one per table."""
+
+from __future__ import annotations
+
+from .automation import Automation
+from .run import AutomationRun
+from .trigger import AutomationTrigger
+
+__all__ = [
+    "Automation",
+    "AutomationRun",
+    "AutomationTrigger",
+]
diff --git a/surfsense_backend/app/automations/persistence/models/automation.py b/surfsense_backend/app/automations/persistence/models/automation.py
new file mode 100644
index 000000000..cb0b2ed31
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/models/automation.py
@@ -0,0 +1,81 @@
+"""``automations`` table — editable, versioned automation definition."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+from sqlalchemy import (
+    TIMESTAMP,
+    Column,
+    Enum as SQLAlchemyEnum,
+    ForeignKey,
+    Integer,
+    String,
+    Text,
+)
+from sqlalchemy.dialects.postgresql import JSONB, UUID
+from sqlalchemy.orm import relationship
+
+from app.db import BaseModel, TimestampMixin
+
+from ..enums.automation_status import AutomationStatus
+
+
+class Automation(BaseModel, TimestampMixin):
+    __tablename__ = "automations"
+
+    search_space_id = Column(
+        Integer,
+        ForeignKey("searchspaces.id", ondelete="CASCADE"),
+        nullable=False,
+        index=True,
+    )
+
+    created_by_user_id = Column(
+        UUID(as_uuid=True),
+        ForeignKey("user.id", ondelete="SET NULL"),
+        nullable=True,
+        index=True,
+    )
+
+    name = Column(String(200), nullable=False)
+    description = Column(Text, nullable=True)
+
+    status = Column(
+        SQLAlchemyEnum(
+            AutomationStatus,
+            name="automation_status",
+            values_callable=lambda x: [e.value for e in x],
+        ),
+        nullable=False,
+        default=AutomationStatus.ACTIVE,
+        server_default=AutomationStatus.ACTIVE.value,
+        index=True,
+    )
+
+    definition = Column(JSONB, nullable=False)
+
+    version = Column(Integer, nullable=False, default=1, server_default="1")
+
+    updated_at = Column(
+        TIMESTAMP(timezone=True),
+        nullable=False,
+        default=lambda: datetime.now(UTC),
+        onupdate=lambda: datetime.now(UTC),
+        index=True,
+    )
+
+    search_space = relationship("SearchSpace", back_populates="automations")
+    created_by = relationship("User", back_populates="automations")
+    triggers = relationship(
+        "AutomationTrigger",
+        back_populates="automation",
+        cascade="all, delete-orphan",
+        passive_deletes=True,
+    )
+    runs = relationship(
+        "AutomationRun",
+        back_populates="automation",
+        cascade="all, delete-orphan",
+        passive_deletes=True,
+    )
diff --git a/surfsense_backend/app/automations/persistence/models/run.py b/surfsense_backend/app/automations/persistence/models/run.py
new file mode 100644
index 000000000..471b2df77
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/models/run.py
@@ -0,0 +1,66 @@
+"""``automation_runs`` table — immutable per-fire execution record."""
+
+from __future__ import annotations
+
+from sqlalchemy import (
+    TIMESTAMP,
+    Column,
+    Enum as SQLAlchemyEnum,
+    ForeignKey,
+    Integer,
+)
+from sqlalchemy.dialects.postgresql import JSONB
+from sqlalchemy.orm import relationship
+
+from app.db import BaseModel, TimestampMixin
+
+from ..enums.run_status import RunStatus
+
+
+class AutomationRun(BaseModel, TimestampMixin):
+    __tablename__ = "automation_runs"
+
+    automation_id = Column(
+        Integer,
+        ForeignKey("automations.id", ondelete="CASCADE"),
+        nullable=False,
+        index=True,
+    )
+
+    trigger_id = Column(
+        Integer,
+        ForeignKey("automation_triggers.id", ondelete="SET NULL"),
+        nullable=True,
+        index=True,
+    )
+
+    status = Column(
+        SQLAlchemyEnum(
+            RunStatus,
+            name="automation_run_status",
+            values_callable=lambda x: [e.value for e in x],
+        ),
+        nullable=False,
+        default=RunStatus.PENDING,
+        server_default=RunStatus.PENDING.value,
+        index=True,
+    )
+
+    # locked at fire time so historical runs always show the exact code path
+    definition_snapshot = Column(JSONB, nullable=False)
+
+    # merged & validated inputs the run was dispatched with
+    # (trigger.static_inputs union producer runtime data, static wins on collision)
+    inputs = Column(JSONB, nullable=False, server_default="{}")
+    # one entry per executed step; agent_task entries carry their own
+    # `agent_session_id` inside their entry
+    step_results = Column(JSONB, nullable=False, server_default="[]")
+    output = Column(JSONB, nullable=True)
+    artifacts = Column(JSONB, nullable=False, server_default="[]")
+    error = Column(JSONB, nullable=True)
+
+    started_at = Column(TIMESTAMP(timezone=True), nullable=True)
+    finished_at = Column(TIMESTAMP(timezone=True), nullable=True)
+
+    automation = relationship("Automation", back_populates="runs")
+    trigger = relationship("AutomationTrigger", back_populates="runs")
diff --git a/surfsense_backend/app/automations/persistence/models/trigger.py b/surfsense_backend/app/automations/persistence/models/trigger.py
new file mode 100644
index 000000000..de1078acf
--- /dev/null
+++ b/surfsense_backend/app/automations/persistence/models/trigger.py
@@ -0,0 +1,67 @@
+"""``automation_triggers`` table — one row per (automation, trigger-instance) pair."""
+
+from __future__ import annotations
+
+from sqlalchemy import (
+    TIMESTAMP,
+    Boolean,
+    Column,
+    Enum as SQLAlchemyEnum,
+    ForeignKey,
+    Integer,
+)
+from sqlalchemy.dialects.postgresql import JSONB
+from sqlalchemy.orm import relationship
+
+from app.db import BaseModel, TimestampMixin
+
+from ..enums.trigger_type import TriggerType
+
+
+class AutomationTrigger(BaseModel, TimestampMixin):
+    __tablename__ = "automation_triggers"
+
+    automation_id = Column(
+        Integer,
+        ForeignKey("automations.id", ondelete="CASCADE"),
+        nullable=False,
+        index=True,
+    )
+
+    type = Column(
+        SQLAlchemyEnum(
+            TriggerType,
+            name="automation_trigger_type",
+            values_callable=lambda x: [e.value for e in x],
+        ),
+        nullable=False,
+        index=True,
+    )
+
+    params = Column(JSONB, nullable=False)
+
+    # Per-attachment domain values merged into every dispatched run's inputs.
+    # Static wins over runtime data on key collision.
+    static_inputs = Column(JSONB, nullable=False, server_default="{}")
+
+    enabled = Column(
+        Boolean,
+        nullable=False,
+        default=True,
+        server_default="true",
+        index=True,
+    )
+
+    last_fired_at = Column(TIMESTAMP(timezone=True), nullable=True)
+
+    # Precomputed next fire moment in UTC; advanced after each fire by the
+    # schedule tick. NULL means the trigger has never been scheduled (the
+    # tick self-heals on first sight).
+    next_fire_at = Column(TIMESTAMP(timezone=True), nullable=True)
+
+    automation = relationship("Automation", back_populates="triggers")
+    runs = relationship(
+        "AutomationRun",
+        back_populates="trigger",
+        passive_deletes=True,
+    )
diff --git a/surfsense_backend/app/automations/runtime/__init__.py b/surfsense_backend/app/automations/runtime/__init__.py
new file mode 100644
index 000000000..0650882b2
--- /dev/null
+++ b/surfsense_backend/app/automations/runtime/__init__.py
@@ -0,0 +1,7 @@
+"""Automation run executor: plan walker, step dispatch, retries, persistence."""
+
+from __future__ import annotations
+
+from .executor import execute_run
+
+__all__ = ["execute_run"]
diff --git a/surfsense_backend/app/automations/runtime/executor.py b/surfsense_backend/app/automations/runtime/executor.py
new file mode 100644
index 000000000..da249d8e5
--- /dev/null
+++ b/surfsense_backend/app/automations/runtime/executor.py
@@ -0,0 +1,140 @@
+"""Walk an ``AutomationRun``'s snapshot plan to terminal state."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.actions.types import ActionContext
+from app.automations.persistence.enums.run_status import RunStatus
+from app.automations.persistence.models.run import AutomationRun
+from app.automations.schemas.definition.envelope import (
+    AutomationDefinition,
+    AutomationModels,
+)
+from app.automations.schemas.definition.plan_step import PlanStep
+from app.automations.templating import build_run_context
+
+from . import repository
+from .step import execute_step
+
+
+async def execute_run(session: AsyncSession, run_id: int) -> None:
+    """Load run ``run_id`` and execute its snapshot plan to a terminal state."""
+    run = await repository.load_run(session, run_id)
+    if run is None:
+        raise ValueError(f"automation_run {run_id} not found")
+
+    if run.status != RunStatus.PENDING:
+        return
+
+    try:
+        definition = AutomationDefinition.model_validate(run.definition_snapshot)
+    except Exception as exc:
+        await repository.mark_failed(
+            session,
+            run,
+            {
+                "message": f"definition_snapshot invalid: {exc}",
+                "type": type(exc).__name__,
+            },
+        )
+        await session.commit()
+        return
+
+    await repository.mark_running(session, run)
+    await session.commit()
+
+    step_outputs: dict[str, Any] = {}
+
+    for step in definition.plan:
+        template_ctx = _build_template_ctx(run, step_outputs)
+        action_ctx = _build_action_ctx(session, run, step, definition.models)
+        result = await execute_step(
+            step=step,
+            template_context=template_ctx,
+            action_context=action_ctx,
+            default_max_retries=definition.execution.max_retries,
+            default_retry_backoff=definition.execution.retry_backoff,
+            default_timeout_seconds=definition.execution.timeout_seconds,
+        )
+        await repository.append_step_result(session, run, result)
+        await session.commit()
+
+        if result["status"] == "failed":
+            await _run_on_failure(session, run, definition)
+            await repository.mark_failed(session, run, result.get("error"))
+            await session.commit()
+            return
+
+        if result["status"] == "succeeded":
+            step_outputs[step.output_as or step.step_id] = result.get("result")
+
+    await repository.mark_succeeded(session, run)
+    await session.commit()
+
+
+async def _run_on_failure(
+    session: AsyncSession,
+    run: AutomationRun,
+    definition: AutomationDefinition,
+) -> None:
+    """Run the on_failure steps. Their failures don't recurse into more on_failure."""
+    if not definition.execution.on_failure:
+        return
+    template_ctx = _build_template_ctx(run, step_outputs={})
+    for step in definition.execution.on_failure:
+        action_ctx = _build_action_ctx(session, run, step, definition.models)
+        result = await execute_step(
+            step=step,
+            template_context=template_ctx,
+            action_context=action_ctx,
+            default_max_retries=definition.execution.max_retries,
+            default_retry_backoff=definition.execution.retry_backoff,
+            default_timeout_seconds=definition.execution.timeout_seconds,
+        )
+        await repository.append_step_result(session, run, result)
+        await session.commit()
+
+
+def _build_template_ctx(
+    run: AutomationRun, step_outputs: dict[str, Any]
+) -> dict[str, Any]:
+    automation = run.automation
+    trigger = run.trigger
+    return build_run_context(
+        run_id=run.id,
+        automation_id=run.automation_id,
+        automation_name=automation.name if automation else None,
+        automation_version=automation.version if automation else None,
+        search_space_id=automation.search_space_id if automation else None,
+        creator_id=automation.created_by_user_id if automation else None,
+        trigger_id=run.trigger_id,
+        trigger_type=trigger.type.value if trigger else None,
+        started_at=run.started_at,
+        attempt=1,
+        inputs=run.inputs or {},
+        step_outputs=step_outputs,
+    )
+
+
+def _build_action_ctx(
+    session: AsyncSession,
+    run: AutomationRun,
+    step: PlanStep,
+    models: AutomationModels | None,
+) -> ActionContext:
+    automation = run.automation
+    return ActionContext(
+        session=session,
+        run_id=run.id,
+        step_id=step.step_id,
+        search_space_id=automation.search_space_id,
+        creator_user_id=automation.created_by_user_id,
+        agent_llm_id=models.agent_llm_id if models else None,
+        image_generation_config_id=(
+            models.image_generation_config_id if models else None
+        ),
+        vision_llm_config_id=models.vision_llm_config_id if models else None,
+    )
diff --git a/surfsense_backend/app/automations/runtime/repository.py b/surfsense_backend/app/automations/runtime/repository.py
new file mode 100644
index 000000000..a8bdbc55a
--- /dev/null
+++ b/surfsense_backend/app/automations/runtime/repository.py
@@ -0,0 +1,62 @@
+"""Persistence operations on ``AutomationRun``. Pure SQL, no business logic."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+from typing import Any
+
+from sqlalchemy import select
+from sqlalchemy.ext.asyncio import AsyncSession
+from sqlalchemy.orm import selectinload
+
+from app.automations.persistence.enums.run_status import RunStatus
+from app.automations.persistence.models.run import AutomationRun
+
+
+async def load_run(session: AsyncSession, run_id: int) -> AutomationRun | None:
+    """Load a run with its automation and trigger eagerly loaded."""
+    stmt = (
+        select(AutomationRun)
+        .where(AutomationRun.id == run_id)
+        .options(
+            selectinload(AutomationRun.automation),
+            selectinload(AutomationRun.trigger),
+        )
+    )
+    result = await session.execute(stmt)
+    return result.scalar_one_or_none()
+
+
+async def mark_running(session: AsyncSession, run: AutomationRun) -> None:
+    run.status = RunStatus.RUNNING
+    run.started_at = datetime.now(UTC)
+    await session.flush()
+
+
+async def mark_succeeded(session: AsyncSession, run: AutomationRun) -> None:
+    run.status = RunStatus.SUCCEEDED
+    run.finished_at = datetime.now(UTC)
+    await session.flush()
+
+
+async def mark_failed(
+    session: AsyncSession,
+    run: AutomationRun,
+    error: dict[str, Any] | None,
+) -> None:
+    run.status = RunStatus.FAILED
+    run.finished_at = datetime.now(UTC)
+    run.error = error
+    await session.flush()
+
+
+async def append_step_result(
+    session: AsyncSession,
+    run: AutomationRun,
+    step_result: dict[str, Any],
+) -> None:
+    """Append one step result. Reassigns the list so SQLAlchemy detects the change."""
+    current = list(run.step_results or [])
+    current.append(step_result)
+    run.step_results = current
+    await session.flush()
diff --git a/surfsense_backend/app/automations/runtime/retries.py b/surfsense_backend/app/automations/runtime/retries.py
new file mode 100644
index 000000000..d5bfb15ca
--- /dev/null
+++ b/surfsense_backend/app/automations/runtime/retries.py
@@ -0,0 +1,36 @@
+"""Retry policy enforcement for action handlers."""
+
+from __future__ import annotations
+
+import asyncio
+from collections.abc import Awaitable, Callable
+
+
+async def with_retries[T](
+    coro_factory: Callable[[], Awaitable[T]],
+    *,
+    max_retries: int,
+    backoff: str,
+    timeout: int | None,
+) -> tuple[T, int]:
+    """Call ``coro_factory`` up to ``1 + max_retries`` times. Return ``(result, attempts)``."""
+    total = 1 + max(0, max_retries)
+    for attempt in range(1, total + 1):
+        try:
+            coro = coro_factory()
+            if timeout is not None and timeout > 0:
+                return await asyncio.wait_for(coro, timeout=timeout), attempt
+            return await coro, attempt
+        except Exception:
+            if attempt >= total:
+                raise
+            await asyncio.sleep(_backoff_seconds(backoff, attempt))
+    raise RuntimeError("with_retries exhausted without raising or returning")
+
+
+def _backoff_seconds(strategy: str, attempt: int) -> float:
+    if strategy == "exponential":
+        return float(2 ** (attempt - 1))
+    if strategy == "linear":
+        return float(attempt)
+    return 0.0
diff --git a/surfsense_backend/app/automations/runtime/step.py b/surfsense_backend/app/automations/runtime/step.py
new file mode 100644
index 000000000..6e7c9c671
--- /dev/null
+++ b/surfsense_backend/app/automations/runtime/step.py
@@ -0,0 +1,107 @@
+"""Execute one plan step: when-predicate, params render, handler dispatch, retries."""
+
+from __future__ import annotations
+
+from collections.abc import Mapping
+from datetime import UTC, datetime
+from typing import Any
+
+from app.automations.actions import get_action
+from app.automations.actions.types import ActionContext
+from app.automations.schemas.definition.plan_step import PlanStep
+from app.automations.templating import evaluate_predicate, render_value
+
+from .retries import with_retries
+
+
+async def execute_step(
+    *,
+    step: PlanStep,
+    template_context: Mapping[str, Any],
+    action_context: ActionContext,
+    default_max_retries: int,
+    default_retry_backoff: str,
+    default_timeout_seconds: int,
+) -> dict[str, Any]:
+    """Run one step and return its structured result entry."""
+    started_at = datetime.now(UTC)
+
+    if step.when is not None:
+        try:
+            should_run = evaluate_predicate(step.when, template_context)
+        except Exception as exc:
+            return _result(
+                step, "failed", started_at, attempts=0, error=_error(exc, "when")
+            )
+        if not should_run:
+            return _result(step, "skipped", started_at, attempts=0)
+
+    try:
+        resolved_params = render_value(step.params, template_context)
+    except Exception as exc:
+        return _result(
+            step, "failed", started_at, attempts=0, error=_error(exc, "render")
+        )
+
+    action = get_action(step.action)
+    if action is None:
+        return _result(
+            step,
+            "failed",
+            started_at,
+            attempts=0,
+            error={
+                "message": f"action not registered: {step.action}",
+                "type": "ActionNotFound",
+            },
+        )
+
+    handler = action.build_handler(action_context)
+
+    max_retries = (
+        step.max_retries if step.max_retries is not None else default_max_retries
+    )
+    timeout = step.timeout_seconds or default_timeout_seconds
+
+    try:
+        result, attempts = await with_retries(
+            lambda: handler(resolved_params),
+            max_retries=max_retries,
+            backoff=default_retry_backoff,
+            timeout=timeout,
+        )
+    except Exception as exc:
+        return _result(
+            step, "failed", started_at, attempts=max_retries + 1, error=_error(exc)
+        )
+
+    return _result(step, "succeeded", started_at, attempts=attempts, result=result)
+
+
+def _result(
+    step: PlanStep,
+    status: str,
+    started_at: datetime,
+    *,
+    attempts: int,
+    result: Any = None,
+    error: dict[str, Any] | None = None,
+) -> dict[str, Any]:
+    entry: dict[str, Any] = {
+        "step_id": step.step_id,
+        "action": step.action,
+        "status": status,
+        "started_at": started_at.isoformat(),
+        "finished_at": datetime.now(UTC).isoformat(),
+        "attempts": attempts,
+    }
+    if result is not None:
+        entry["result"] = result
+    if error is not None:
+        entry["error"] = error
+    return entry
+
+
+def _error(exc: Exception, phase: str | None = None) -> dict[str, Any]:
+    msg = f"{phase}: {exc}" if phase else str(exc)
+    return {"message": msg, "type": type(exc).__name__}
diff --git a/surfsense_backend/app/automations/schemas/__init__.py b/surfsense_backend/app/automations/schemas/__init__.py
new file mode 100644
index 000000000..2e2d60f12
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/__init__.py
@@ -0,0 +1,27 @@
+"""Schemas for the automation definition envelope.
+
+Per-action and per-trigger params schemas live with the action/trigger
+implementations (``app.automations.actions.<name>.params`` /
+``app.automations.triggers.<name>.params``); only the cross-cutting envelope
+lives here.
+"""
+
+from __future__ import annotations
+
+from .definition import (
+    AutomationDefinition,
+    Execution,
+    Inputs,
+    Metadata,
+    PlanStep,
+    TriggerSpec,
+)
+
+__all__ = [
+    "AutomationDefinition",
+    "Execution",
+    "Inputs",
+    "Metadata",
+    "PlanStep",
+    "TriggerSpec",
+]
diff --git a/surfsense_backend/app/automations/schemas/api/__init__.py b/surfsense_backend/app/automations/schemas/api/__init__.py
new file mode 100644
index 000000000..f49e5c589
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/api/__init__.py
@@ -0,0 +1,27 @@
+"""Request/response schemas for the automations HTTP layer."""
+
+from __future__ import annotations
+
+from .automation import (
+    AutomationCreate,
+    AutomationDetail,
+    AutomationList,
+    AutomationSummary,
+    AutomationUpdate,
+)
+from .run import RunDetail, RunList, RunSummary
+from .trigger import TriggerCreate, TriggerDetail, TriggerUpdate
+
+__all__ = [
+    "AutomationCreate",
+    "AutomationDetail",
+    "AutomationList",
+    "AutomationSummary",
+    "AutomationUpdate",
+    "RunDetail",
+    "RunList",
+    "RunSummary",
+    "TriggerCreate",
+    "TriggerDetail",
+    "TriggerUpdate",
+]
diff --git a/surfsense_backend/app/automations/schemas/api/automation.py b/surfsense_backend/app/automations/schemas/api/automation.py
new file mode 100644
index 000000000..c1defd417
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/api/automation.py
@@ -0,0 +1,64 @@
+"""Request/response schemas for the ``Automation`` resource."""
+
+from __future__ import annotations
+
+from datetime import datetime
+
+from pydantic import BaseModel, ConfigDict, Field
+
+from app.automations.persistence.enums.automation_status import AutomationStatus
+from app.automations.schemas.definition import AutomationDefinition
+
+from .trigger import TriggerCreate, TriggerDetail
+
+
+class AutomationCreate(BaseModel):
+    """Create an automation, optionally with initial triggers (atomic)."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    search_space_id: int
+    name: str = Field(..., min_length=1, max_length=200)
+    description: str | None = None
+    definition: AutomationDefinition
+    triggers: list[TriggerCreate] = Field(default_factory=list)
+
+
+class AutomationUpdate(BaseModel):
+    """Partial update of an automation. Triggers are managed separately."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    name: str | None = Field(default=None, min_length=1, max_length=200)
+    description: str | None = None
+    status: AutomationStatus | None = None
+    definition: AutomationDefinition | None = None
+
+
+class AutomationSummary(BaseModel):
+    """Lightweight automation view for list endpoints."""
+
+    model_config = ConfigDict(from_attributes=True)
+
+    id: int
+    search_space_id: int
+    name: str
+    description: str | None = None
+    status: AutomationStatus
+    version: int
+    created_at: datetime
+    updated_at: datetime
+
+
+class AutomationDetail(AutomationSummary):
+    """Full automation view including definition and attached triggers."""
+
+    definition: AutomationDefinition
+    triggers: list[TriggerDetail] = Field(default_factory=list)
+
+
+class AutomationList(BaseModel):
+    """Paginated list of automations."""
+
+    items: list[AutomationSummary]
+    total: int
diff --git a/surfsense_backend/app/automations/schemas/api/run.py b/surfsense_backend/app/automations/schemas/api/run.py
new file mode 100644
index 000000000..3f6eaab82
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/api/run.py
@@ -0,0 +1,42 @@
+"""Response schemas for run sub-resources."""
+
+from __future__ import annotations
+
+from datetime import datetime
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict
+
+from app.automations.persistence.enums.run_status import RunStatus
+
+
+class RunSummary(BaseModel):
+    """Lightweight run view for list endpoints."""
+
+    model_config = ConfigDict(from_attributes=True)
+
+    id: int
+    automation_id: int
+    trigger_id: int | None = None
+    status: RunStatus
+    started_at: datetime | None = None
+    finished_at: datetime | None = None
+    created_at: datetime
+
+
+class RunDetail(RunSummary):
+    """Full run view including snapshot, results and artifacts."""
+
+    definition_snapshot: dict[str, Any]
+    inputs: dict[str, Any]
+    step_results: list[dict[str, Any]]
+    output: dict[str, Any] | None = None
+    artifacts: list[dict[str, Any]]
+    error: dict[str, Any] | None = None
+
+
+class RunList(BaseModel):
+    """Paginated list of runs."""
+
+    items: list[RunSummary]
+    total: int
diff --git a/surfsense_backend/app/automations/schemas/api/trigger.py b/surfsense_backend/app/automations/schemas/api/trigger.py
new file mode 100644
index 000000000..35176fb9f
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/api/trigger.py
@@ -0,0 +1,46 @@
+"""Request/response schemas for trigger sub-resources."""
+
+from __future__ import annotations
+
+from datetime import datetime
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+from app.automations.persistence.enums.trigger_type import TriggerType
+
+
+class TriggerCreate(BaseModel):
+    """Attach a trigger to an automation."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    type: TriggerType
+    params: dict[str, Any] = Field(default_factory=dict)
+    static_inputs: dict[str, Any] = Field(default_factory=dict)
+    enabled: bool = True
+
+
+class TriggerUpdate(BaseModel):
+    """Partial update of an existing trigger."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: bool | None = None
+    params: dict[str, Any] | None = None
+    static_inputs: dict[str, Any] | None = None
+
+
+class TriggerDetail(BaseModel):
+    """Trigger as returned to clients."""
+
+    model_config = ConfigDict(from_attributes=True)
+
+    id: int
+    type: TriggerType
+    params: dict[str, Any]
+    static_inputs: dict[str, Any]
+    enabled: bool
+    last_fired_at: datetime | None = None
+    next_fire_at: datetime | None = None
+    created_at: datetime
diff --git a/surfsense_backend/app/automations/schemas/definition/__init__.py b/surfsense_backend/app/automations/schemas/definition/__init__.py
new file mode 100644
index 000000000..72404264e
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/__init__.py
@@ -0,0 +1,20 @@
+"""Automation definition envelope and its components."""
+
+from __future__ import annotations
+
+from .envelope import AutomationDefinition, AutomationModels
+from .execution import Execution
+from .inputs import Inputs
+from .metadata import Metadata
+from .plan_step import PlanStep
+from .trigger_spec import TriggerSpec
+
+__all__ = [
+    "AutomationDefinition",
+    "AutomationModels",
+    "Execution",
+    "Inputs",
+    "Metadata",
+    "PlanStep",
+    "TriggerSpec",
+]
diff --git a/surfsense_backend/app/automations/schemas/definition/envelope.py b/surfsense_backend/app/automations/schemas/definition/envelope.py
new file mode 100644
index 000000000..7ca55b1ce
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/envelope.py
@@ -0,0 +1,45 @@
+"""``AutomationDefinition`` — top-level envelope persisted in ``automations.definition``."""
+
+from __future__ import annotations
+
+from pydantic import BaseModel, ConfigDict, Field
+
+from .execution import Execution
+from .inputs import Inputs
+from .metadata import Metadata
+from .plan_step import PlanStep
+from .trigger_spec import TriggerSpec
+
+
+class AutomationModels(BaseModel):
+    """Captured model profile for an automation.
+
+    Snapshotted from the search space's preferences at create time so runs are
+    insulated from later chat/search-space model changes. Config-id conventions
+    match the shared scheme (``0`` Auto, ``< 0`` global, ``> 0`` BYOK).
+    """
+
+    model_config = ConfigDict(extra="forbid")
+
+    agent_llm_id: int = 0
+    image_generation_config_id: int = 0
+    vision_llm_config_id: int = 0
+
+
+class AutomationDefinition(BaseModel):
+    """Top-level shape of an automation."""
+
+    model_config = ConfigDict(extra="forbid")
+
+    schema_version: str = "1.0"
+    name: str = Field(..., min_length=1, max_length=200)
+    goal: str | None = None
+    inputs: Inputs | None = None
+    triggers: list[TriggerSpec] = Field(default_factory=list)
+    plan: list[PlanStep] = Field(..., min_length=1)
+    execution: Execution = Field(default_factory=Execution)
+    metadata: Metadata = Field(default_factory=Metadata)
+    # Captured server-side at create() and preserved across update(); resolved
+    # at runtime instead of the live search space. Optional so drafts/builder
+    # payloads validate without it.
+    models: AutomationModels | None = None
diff --git a/surfsense_backend/app/automations/schemas/definition/execution.py b/surfsense_backend/app/automations/schemas/definition/execution.py
new file mode 100644
index 000000000..bdbad62f8
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/execution.py
@@ -0,0 +1,24 @@
+"""``Execution`` — automation-wide execution defaults (overridable per step)."""
+
+from __future__ import annotations
+
+from typing import Literal
+
+from pydantic import BaseModel, ConfigDict, Field
+
+from .plan_step import PlanStep
+
+
+class Execution(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    timeout_seconds: int = Field(
+        default=600, gt=0, description="Wall-clock cap for the run."
+    )
+    max_retries: int = Field(default=2, ge=0, description="Per-step retry budget.")
+    retry_backoff: Literal["exponential", "linear", "none"] = "exponential"
+    concurrency: Literal["drop_if_running", "queue", "always"] = "drop_if_running"
+    on_failure: list[PlanStep] = Field(
+        default_factory=list,
+        description="Steps run when the main plan fails after retries.",
+    )
diff --git a/surfsense_backend/app/automations/schemas/definition/inputs.py b/surfsense_backend/app/automations/schemas/definition/inputs.py
new file mode 100644
index 000000000..619fd16cd
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/inputs.py
@@ -0,0 +1,21 @@
+"""``Inputs`` — JSON Schema for inputs an automation accepts at fire time."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+class Inputs(BaseModel):
+    model_config = ConfigDict(
+        extra="forbid",
+        populate_by_name=True,
+        serialize_by_alias=True,
+    )
+
+    schema_: dict[str, Any] = Field(
+        ...,
+        alias="schema",
+        description="JSON Schema (draft 2020-12) for accepted inputs.",
+    )
diff --git a/surfsense_backend/app/automations/schemas/definition/metadata.py b/surfsense_backend/app/automations/schemas/definition/metadata.py
new file mode 100644
index 000000000..3ac341d2e
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/metadata.py
@@ -0,0 +1,11 @@
+"""``Metadata`` — free-form metadata on a definition. Extra keys allowed."""
+
+from __future__ import annotations
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+class Metadata(BaseModel):
+    model_config = ConfigDict(extra="allow")
+
+    tags: list[str] = Field(default_factory=list)
diff --git a/surfsense_backend/app/automations/schemas/definition/plan_step.py b/surfsense_backend/app/automations/schemas/definition/plan_step.py
new file mode 100644
index 000000000..0d3bb9dfc
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/plan_step.py
@@ -0,0 +1,30 @@
+"""``PlanStep`` — one step in the sequential plan."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+class PlanStep(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    step_id: str = Field(..., min_length=1, description="Unique within the plan.")
+    action: str = Field(
+        ..., min_length=1, description="Action type; resolved via registry."
+    )
+    when: str | None = Field(
+        default=None,
+        description="Optional predicate; step is skipped when falsy.",
+    )
+    params: dict[str, Any] = Field(
+        default_factory=dict,
+        description="Action-type-specific params; rendered at execute time.",
+    )
+    output_as: str | None = Field(
+        default=None,
+        description="Bind step output under this name. Defaults to step_id.",
+    )
+    max_retries: int | None = Field(default=None, ge=0)
+    timeout_seconds: int | None = Field(default=None, gt=0)
diff --git a/surfsense_backend/app/automations/schemas/definition/trigger_spec.py b/surfsense_backend/app/automations/schemas/definition/trigger_spec.py
new file mode 100644
index 000000000..e6a995bbf
--- /dev/null
+++ b/surfsense_backend/app/automations/schemas/definition/trigger_spec.py
@@ -0,0 +1,19 @@
+"""``TriggerSpec`` — one entry in the definition's ``triggers[]`` array."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+class TriggerSpec(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    type: str = Field(
+        ..., min_length=1, description="Trigger type; resolved via registry."
+    )
+    params: dict[str, Any] = Field(
+        default_factory=dict,
+        description="Type-specific params; validated against the trigger's schema.",
+    )
diff --git a/surfsense_backend/app/automations/services/__init__.py b/surfsense_backend/app/automations/services/__init__.py
new file mode 100644
index 000000000..904a3413a
--- /dev/null
+++ b/surfsense_backend/app/automations/services/__init__.py
@@ -0,0 +1,28 @@
+"""Services for the automations HTTP layer (one service per resource)."""
+
+from __future__ import annotations
+
+from .automation import AutomationService, get_automation_service
+from .model_policy import (
+    AutomationModelPolicyError,
+    assert_automation_models_billable,
+    assert_models_billable,
+    get_automation_model_eligibility,
+    get_model_eligibility,
+)
+from .run import RunService, get_run_service
+from .trigger import TriggerService, get_trigger_service
+
+__all__ = [
+    "AutomationModelPolicyError",
+    "AutomationService",
+    "RunService",
+    "TriggerService",
+    "assert_automation_models_billable",
+    "assert_models_billable",
+    "get_automation_model_eligibility",
+    "get_automation_service",
+    "get_model_eligibility",
+    "get_run_service",
+    "get_trigger_service",
+]
diff --git a/surfsense_backend/app/automations/services/automation.py b/surfsense_backend/app/automations/services/automation.py
new file mode 100644
index 000000000..4227161e2
--- /dev/null
+++ b/surfsense_backend/app/automations/services/automation.py
@@ -0,0 +1,279 @@
+"""``AutomationService`` — orchestration for the ``Automation`` resource."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+from fastapi import Depends, HTTPException
+from pydantic import ValidationError
+from sqlalchemy import func, select
+from sqlalchemy.ext.asyncio import AsyncSession
+from sqlalchemy.orm import selectinload
+
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.persistence.models.automation import Automation
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.automations.schemas.api import (
+    AutomationCreate,
+    AutomationUpdate,
+    TriggerCreate,
+)
+from app.automations.schemas.definition.envelope import AutomationModels
+from app.automations.services.model_policy import (
+    AutomationModelPolicyError,
+    assert_automation_models_billable,
+    assert_models_billable,
+    get_automation_model_eligibility,
+)
+from app.automations.triggers import get_trigger
+from app.automations.triggers.builtin.schedule import compute_next_fire_at
+from app.db import Permission, SearchSpace, User, get_async_session
+from app.users import current_active_user
+from app.utils.rbac import check_permission
+
+
+class AutomationService:
+    """Lifecycle of the ``Automation`` resource."""
+
+    def __init__(self, *, session: AsyncSession, user: User) -> None:
+        self.session = session
+        self.user = user
+
+    async def create(self, payload: AutomationCreate) -> Automation:
+        """Create an automation and its initial triggers in one transaction."""
+        await self._authorize(
+            payload.search_space_id, Permission.AUTOMATIONS_CREATE.value
+        )
+
+        # Capture the model profile onto the definition so runs are insulated
+        # from later chat/search-space model changes. Two sources:
+        #   1. Explicit per-automation selection in ``payload.definition.models``
+        #      (manual builder + chat approval card). Validate the chosen ids.
+        #   2. Fallback (no selection): snapshot the search space's current prefs.
+        # Either way the captured ids are guaranteed billable (premium/BYOK).
+        selected_models = payload.definition.models
+        if selected_models is not None:
+            self._assert_selected_models_billable(selected_models)
+        else:
+            search_space = await self._assert_models_billable(payload.search_space_id)
+            payload.definition.models = AutomationModels(
+                agent_llm_id=search_space.agent_llm_id or 0,
+                image_generation_config_id=search_space.image_generation_config_id or 0,
+                vision_llm_config_id=search_space.vision_llm_config_id or 0,
+            )
+
+        automation = Automation(
+            search_space_id=payload.search_space_id,
+            created_by_user_id=self.user.id,
+            name=payload.name,
+            description=payload.description,
+            definition=payload.definition.model_dump(mode="json", by_alias=True),
+            version=1,
+        )
+        for spec in payload.triggers:
+            automation.triggers.append(_build_trigger(spec))
+
+        self.session.add(automation)
+        await self.session.commit()
+        return await self._get_with_triggers_or_raise(automation.id)
+
+    async def list(
+        self,
+        *,
+        search_space_id: int,
+        limit: int,
+        offset: int,
+    ) -> tuple[list[Automation], int]:
+        """Return a page of automations and the total count."""
+        await self._authorize(search_space_id, Permission.AUTOMATIONS_READ.value)
+
+        base = select(Automation).where(Automation.search_space_id == search_space_id)
+        total = await self.session.scalar(
+            select(func.count()).select_from(base.subquery())
+        )
+
+        rows = (
+            (
+                await self.session.execute(
+                    base.order_by(Automation.created_at.desc())
+                    .limit(limit)
+                    .offset(offset)
+                )
+            )
+            .scalars()
+            .all()
+        )
+        return list(rows), int(total or 0)
+
+    async def get(self, automation_id: int) -> Automation:
+        """Get an automation with its triggers loaded."""
+        automation = await self._get_with_triggers_or_raise(automation_id)
+        await self._authorize(
+            automation.search_space_id, Permission.AUTOMATIONS_READ.value
+        )
+        return automation
+
+    async def update(self, automation_id: int, patch: AutomationUpdate) -> Automation:
+        """Patch fields. Bumps ``version`` when ``definition`` changes."""
+        automation = await self._get_with_triggers_or_raise(automation_id)
+        await self._authorize(
+            automation.search_space_id, Permission.AUTOMATIONS_UPDATE.value
+        )
+
+        data = patch.model_dump(exclude_unset=True)
+
+        if "name" in data:
+            automation.name = data["name"]
+        if "description" in data:
+            automation.description = data["description"]
+        if "status" in data:
+            automation.status = data["status"]
+        if "definition" in data:
+            new_def = patch.definition.model_dump(mode="json", by_alias=True)
+            # Model snapshot handling on edit:
+            #   * absent in the patch  -> preserve the captured snapshot
+            #     (a non-model definition change never silently re-binds the
+            #     automation to the current chat/search-space selection).
+            #   * unchanged from the snapshot -> keep as-is, no re-validation
+            #     (so editing an automation whose captured model later drifted
+            #     out of premium isn't blocked by an unrelated name/schedule edit).
+            #   * genuinely changed -> validate the new selection (422 on a
+            #     non-billable pick), then accept it.
+            existing_models = (automation.definition or {}).get("models")
+            provided_models = new_def.get("models")
+            if provided_models is None:
+                if existing_models is not None:
+                    new_def["models"] = existing_models
+            elif provided_models != existing_models:
+                self._assert_selected_models_billable(patch.definition.models)
+            automation.definition = new_def
+            automation.version += 1
+
+        await self.session.commit()
+        return await self._get_with_triggers_or_raise(automation_id)
+
+    async def delete(self, automation_id: int) -> None:
+        """Delete an automation; FK cascades remove triggers and runs."""
+        automation = await self._get_or_raise(automation_id)
+        await self._authorize(
+            automation.search_space_id, Permission.AUTOMATIONS_DELETE.value
+        )
+        await self.session.delete(automation)
+        await self.session.commit()
+
+    async def _get_or_raise(self, automation_id: int) -> Automation:
+        automation = await self.session.get(Automation, automation_id)
+        if automation is None:
+            raise HTTPException(
+                status_code=404, detail=f"automation {automation_id} not found"
+            )
+        return automation
+
+    async def _get_with_triggers_or_raise(self, automation_id: int) -> Automation:
+        stmt = (
+            select(Automation)
+            .where(Automation.id == automation_id)
+            .options(selectinload(Automation.triggers))
+        )
+        automation = (await self.session.execute(stmt)).scalar_one_or_none()
+        if automation is None:
+            raise HTTPException(
+                status_code=404, detail=f"automation {automation_id} not found"
+            )
+        return automation
+
+    async def model_eligibility(self, *, search_space_id: int) -> dict:
+        """Return whether a search space's models are billable for automations.
+
+        ``{"allowed": bool, "violations": [{kind, config_id, reason}, ...]}``.
+        """
+        await self._authorize(search_space_id, Permission.AUTOMATIONS_READ.value)
+        search_space = await self.session.get(SearchSpace, search_space_id)
+        if search_space is None:
+            raise HTTPException(
+                status_code=404, detail=f"search space {search_space_id} not found"
+            )
+        return get_automation_model_eligibility(search_space)
+
+    async def _assert_models_billable(self, search_space_id: int) -> SearchSpace:
+        """Reject creation when the search space's models aren't billable.
+
+        Automations may only use premium global models or user BYOK models; free
+        global models and Auto mode are blocked. Mirrors the runtime backstop in
+        ``agent_task`` so users can't save an automation that would fail to run.
+
+        Returns the loaded :class:`SearchSpace` so the caller can capture its
+        model prefs without a second DB read.
+        """
+        search_space = await self.session.get(SearchSpace, search_space_id)
+        if search_space is None:
+            raise HTTPException(
+                status_code=404, detail=f"search space {search_space_id} not found"
+            )
+        try:
+            assert_automation_models_billable(search_space)
+        except AutomationModelPolicyError as exc:
+            raise HTTPException(status_code=422, detail=str(exc)) from exc
+        return search_space
+
+    def _assert_selected_models_billable(self, models: AutomationModels) -> None:
+        """Reject creation when an explicitly selected model isn't billable.
+
+        Used when the client supplies ``definition.models`` (per-automation
+        selection from the builder or chat approval card). Same policy as the
+        search-space path: premium global or BYOK only, no free/Auto.
+        """
+        try:
+            assert_models_billable(
+                agent_llm_id=models.agent_llm_id,
+                image_generation_config_id=models.image_generation_config_id,
+                vision_llm_config_id=models.vision_llm_config_id,
+            )
+        except AutomationModelPolicyError as exc:
+            raise HTTPException(status_code=422, detail=str(exc)) from exc
+
+    async def _authorize(self, search_space_id: int, permission: str) -> None:
+        await check_permission(
+            self.session,
+            self.user,
+            search_space_id,
+            permission,
+            f"You don't have permission to {permission.split(':')[1]} automations in this search space",
+        )
+
+
+def _build_trigger(spec: TriggerCreate) -> AutomationTrigger:
+    """Validate trigger params via its registered Pydantic model and build the ORM row."""
+    definition = get_trigger(spec.type.value)
+    if definition is None:
+        raise HTTPException(
+            status_code=422, detail=f"unknown trigger type {spec.type.value!r}"
+        )
+
+    try:
+        validated = definition.params_model.model_validate(spec.params)
+    except ValidationError as exc:
+        raise HTTPException(status_code=422, detail=str(exc)) from exc
+
+    params = validated.model_dump(mode="json")
+
+    next_fire_at = None
+    if spec.type == TriggerType.SCHEDULE and spec.enabled:
+        next_fire_at = compute_next_fire_at(
+            params["cron"], params["timezone"], after=datetime.now(UTC)
+        )
+
+    return AutomationTrigger(
+        type=spec.type,
+        params=params,
+        static_inputs=spec.static_inputs,
+        enabled=spec.enabled,
+        next_fire_at=next_fire_at,
+    )
+
+
+def get_automation_service(
+    session: AsyncSession = Depends(get_async_session),
+    user: User = Depends(current_active_user),
+) -> AutomationService:
+    return AutomationService(session=session, user=user)
diff --git a/surfsense_backend/app/automations/services/model_policy.py b/surfsense_backend/app/automations/services/model_policy.py
new file mode 100644
index 000000000..88e9d5f28
--- /dev/null
+++ b/surfsense_backend/app/automations/services/model_policy.py
@@ -0,0 +1,173 @@
+"""Model-billing policy for automations.
+
+Automations run unattended, so every run must be **billable**: it may only use
+either a premium global model (``billing_tier == "premium"``) or a user-provided
+BYOK model (a positive config id pointing at a per-user/per-space DB row). Free
+global models and Auto mode are blocked, because Auto can dispatch to a free
+deployment and free models aren't metered in premium credits.
+
+Config id conventions (shared across chat / image / vision):
+- ``id == 0``  → Auto mode (``AUTO_MODE_ID`` / ``IMAGE_GEN_AUTO_MODE_ID`` /
+  ``VISION_AUTO_MODE_ID``). Blocked.
+- ``id < 0``   → global YAML/OpenRouter config. Allowed only if premium.
+- ``id > 0``   → user BYOK DB row. Always allowed.
+
+This module is the single source of truth used by both creation-time enforcement
+(``AutomationService.create`` and the ``create_automation`` chat tool) and the
+runtime backstop (``agent_task`` dependencies).
+"""
+
+from __future__ import annotations
+
+from typing import TYPE_CHECKING, Literal
+
+if TYPE_CHECKING:
+    from app.db import SearchSpace
+
+ModelKind = Literal["llm", "image", "vision"]
+
+_KIND_LABEL: dict[ModelKind, str] = {
+    "llm": "agent LLM",
+    "image": "image generation model",
+    "vision": "vision model",
+}
+
+
+def _is_premium_global(kind: ModelKind, config_id: int) -> bool:
+    """Return True if a negative (global) config id is a premium tier model."""
+    from app.config import config as app_config
+
+    cfg: dict | None = None
+    if kind == "llm":
+        from app.agents.new_chat.llm_config import load_global_llm_config_by_id
+
+        cfg = load_global_llm_config_by_id(config_id)
+    elif kind == "image":
+        cfg = next(
+            (
+                c
+                for c in app_config.GLOBAL_IMAGE_GEN_CONFIGS
+                if c.get("id") == config_id
+            ),
+            None,
+        )
+    else:  # vision
+        cfg = next(
+            (
+                c
+                for c in app_config.GLOBAL_VISION_LLM_CONFIGS
+                if c.get("id") == config_id
+            ),
+            None,
+        )
+
+    if not cfg:
+        return False
+    return str(cfg.get("billing_tier", "free")).lower() == "premium"
+
+
+def _classify(kind: ModelKind, config_id: int | None) -> tuple[bool, str]:
+    """Classify a resolved config id as allowed or blocked.
+
+    Returns ``(allowed, reason)``; ``reason`` is empty when allowed.
+    """
+    label = _KIND_LABEL[kind]
+
+    if config_id is None or config_id == 0:
+        return (
+            False,
+            f"The {label} is set to Auto mode. Automations require an explicit "
+            "premium model or your own (BYOK) model so every run is billable.",
+        )
+
+    if config_id > 0:
+        # Positive id → user-owned BYOK config. Always allowed.
+        return True, ""
+
+    # Negative id → global config. Allowed only if premium.
+    if _is_premium_global(kind, config_id):
+        return True, ""
+
+    return (
+        False,
+        f"The {label} is a free model. Automations can only use premium models "
+        "or your own (BYOK) models so every run is billable.",
+    )
+
+
+def get_model_eligibility(
+    *,
+    agent_llm_id: int | None,
+    image_generation_config_id: int | None,
+    vision_llm_config_id: int | None,
+) -> dict:
+    """Return ``{"allowed": bool, "violations": [...]}`` for explicit config ids.
+
+    The ID-based core shared by both the search-space path (creation/eligibility)
+    and the captured-snapshot path (runtime backstop). Each violation is
+    ``{"kind", "config_id", "reason"}``.
+    """
+    checks: list[tuple[ModelKind, int | None]] = [
+        ("llm", agent_llm_id),
+        ("image", image_generation_config_id),
+        ("vision", vision_llm_config_id),
+    ]
+
+    violations: list[dict] = []
+    for kind, config_id in checks:
+        allowed, reason = _classify(kind, config_id)
+        if not allowed:
+            violations.append({"kind": kind, "config_id": config_id, "reason": reason})
+
+    return {"allowed": not violations, "violations": violations}
+
+
+def get_automation_model_eligibility(search_space: SearchSpace) -> dict:
+    """Return ``{"allowed": bool, "violations": [...]}`` for a search space.
+
+    Used by the eligibility endpoint and the chat tool's early check. Thin
+    wrapper over :func:`get_model_eligibility`.
+    """
+    return get_model_eligibility(
+        agent_llm_id=search_space.agent_llm_id,
+        image_generation_config_id=search_space.image_generation_config_id,
+        vision_llm_config_id=search_space.vision_llm_config_id,
+    )
+
+
+class AutomationModelPolicyError(Exception):
+    """Raised when a search space's models are not billable for automations."""
+
+    def __init__(self, violations: list[dict]) -> None:
+        self.violations = violations
+        reasons = "; ".join(v["reason"] for v in violations)
+        super().__init__(
+            reasons or "Automations require premium or BYOK models for all model slots."
+        )
+
+
+def assert_models_billable(
+    *,
+    agent_llm_id: int | None,
+    image_generation_config_id: int | None,
+    vision_llm_config_id: int | None,
+) -> None:
+    """Raise :class:`AutomationModelPolicyError` if any explicit id is not billable.
+
+    The ID-based core used by the runtime backstop against an automation's
+    captured model snapshot.
+    """
+    result = get_model_eligibility(
+        agent_llm_id=agent_llm_id,
+        image_generation_config_id=image_generation_config_id,
+        vision_llm_config_id=vision_llm_config_id,
+    )
+    if not result["allowed"]:
+        raise AutomationModelPolicyError(result["violations"])
+
+
+def assert_automation_models_billable(search_space: SearchSpace) -> None:
+    """Raise :class:`AutomationModelPolicyError` if any model slot is not billable."""
+    result = get_automation_model_eligibility(search_space)
+    if not result["allowed"]:
+        raise AutomationModelPolicyError(result["violations"])
diff --git a/surfsense_backend/app/automations/services/run.py b/surfsense_backend/app/automations/services/run.py
new file mode 100644
index 000000000..3ef80416f
--- /dev/null
+++ b/surfsense_backend/app/automations/services/run.py
@@ -0,0 +1,78 @@
+"""``RunService`` — read-only access to automation run history."""
+
+from __future__ import annotations
+
+from fastapi import Depends, HTTPException
+from sqlalchemy import func, select
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.persistence.models.automation import Automation
+from app.automations.persistence.models.run import AutomationRun
+from app.db import Permission, User, get_async_session
+from app.users import current_active_user
+from app.utils.rbac import check_permission
+
+
+class RunService:
+    """Read-only access to ``AutomationRun`` history."""
+
+    def __init__(self, *, session: AsyncSession, user: User) -> None:
+        self.session = session
+        self.user = user
+
+    async def list(
+        self,
+        *,
+        automation_id: int,
+        limit: int,
+        offset: int,
+    ) -> tuple[list[AutomationRun], int]:
+        """Return a page of runs for an automation, newest first."""
+        await self._authorize(automation_id, Permission.AUTOMATIONS_READ.value)
+
+        base = select(AutomationRun).where(AutomationRun.automation_id == automation_id)
+        total = await self.session.scalar(
+            select(func.count()).select_from(base.subquery())
+        )
+
+        rows = (
+            (
+                await self.session.execute(
+                    base.order_by(AutomationRun.created_at.desc())
+                    .limit(limit)
+                    .offset(offset)
+                )
+            )
+            .scalars()
+            .all()
+        )
+        return list(rows), int(total or 0)
+
+    async def get(self, *, automation_id: int, run_id: int) -> AutomationRun:
+        await self._authorize(automation_id, Permission.AUTOMATIONS_READ.value)
+        run = await self.session.get(AutomationRun, run_id)
+        if run is None or run.automation_id != automation_id:
+            raise HTTPException(status_code=404, detail=f"run {run_id} not found")
+        return run
+
+    async def _authorize(self, automation_id: int, permission: str) -> Automation:
+        automation = await self.session.get(Automation, automation_id)
+        if automation is None:
+            raise HTTPException(
+                status_code=404, detail=f"automation {automation_id} not found"
+            )
+        await check_permission(
+            self.session,
+            self.user,
+            automation.search_space_id,
+            permission,
+            f"You don't have permission to {permission.split(':')[1]} automations in this search space",
+        )
+        return automation
+
+
+def get_run_service(
+    session: AsyncSession = Depends(get_async_session),
+    user: User = Depends(current_active_user),
+) -> RunService:
+    return RunService(session=session, user=user)
diff --git a/surfsense_backend/app/automations/services/trigger.py b/surfsense_backend/app/automations/services/trigger.py
new file mode 100644
index 000000000..523153927
--- /dev/null
+++ b/surfsense_backend/app/automations/services/trigger.py
@@ -0,0 +1,149 @@
+"""``TriggerService`` — lifecycle of triggers attached to an automation."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+from fastapi import Depends, HTTPException
+from pydantic import ValidationError
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.persistence.models.automation import Automation
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.automations.schemas.api import TriggerCreate, TriggerUpdate
+from app.automations.triggers import get_trigger
+from app.automations.triggers.builtin.schedule import compute_next_fire_at
+from app.db import Permission, User, get_async_session
+from app.users import current_active_user
+from app.utils.rbac import check_permission
+
+
+class TriggerService:
+    """Lifecycle of the ``AutomationTrigger`` sub-resource."""
+
+    def __init__(self, *, session: AsyncSession, user: User) -> None:
+        self.session = session
+        self.user = user
+
+    async def add(
+        self, *, automation_id: int, payload: TriggerCreate
+    ) -> AutomationTrigger:
+        automation = await self._authorize_automation(
+            automation_id, Permission.AUTOMATIONS_UPDATE.value
+        )
+
+        validated_params = _validate_params(payload.type, payload.params)
+        trigger = AutomationTrigger(
+            automation_id=automation.id,
+            type=payload.type,
+            params=validated_params,
+            static_inputs=payload.static_inputs,
+            enabled=payload.enabled,
+            next_fire_at=_initial_next_fire(
+                payload.type, validated_params, payload.enabled
+            ),
+        )
+        self.session.add(trigger)
+        await self.session.commit()
+        await self.session.refresh(trigger)
+        return trigger
+
+    async def update(
+        self,
+        *,
+        automation_id: int,
+        trigger_id: int,
+        patch: TriggerUpdate,
+    ) -> AutomationTrigger:
+        await self._authorize_automation(
+            automation_id, Permission.AUTOMATIONS_UPDATE.value
+        )
+        trigger = await self._get_trigger_or_raise(automation_id, trigger_id)
+
+        data = patch.model_dump(exclude_unset=True)
+
+        if "params" in data:
+            trigger.params = _validate_params(trigger.type, data["params"])
+
+        if "static_inputs" in data:
+            trigger.static_inputs = data["static_inputs"]
+
+        if "enabled" in data:
+            trigger.enabled = data["enabled"]
+
+        # Recompute next_fire_at when schedule timing changed or the trigger was
+        # toggled back on.
+        if trigger.type == TriggerType.SCHEDULE:
+            trigger.next_fire_at = _initial_next_fire(
+                trigger.type, trigger.params, trigger.enabled
+            )
+
+        await self.session.commit()
+        await self.session.refresh(trigger)
+        return trigger
+
+    async def remove(self, *, automation_id: int, trigger_id: int) -> None:
+        await self._authorize_automation(
+            automation_id, Permission.AUTOMATIONS_UPDATE.value
+        )
+        trigger = await self._get_trigger_or_raise(automation_id, trigger_id)
+        await self.session.delete(trigger)
+        await self.session.commit()
+
+    async def _authorize_automation(
+        self, automation_id: int, permission: str
+    ) -> Automation:
+        automation = await self.session.get(Automation, automation_id)
+        if automation is None:
+            raise HTTPException(
+                status_code=404, detail=f"automation {automation_id} not found"
+            )
+        await check_permission(
+            self.session,
+            self.user,
+            automation.search_space_id,
+            permission,
+            f"You don't have permission to {permission.split(':')[1]} automations in this search space",
+        )
+        return automation
+
+    async def _get_trigger_or_raise(
+        self, automation_id: int, trigger_id: int
+    ) -> AutomationTrigger:
+        trigger = await self.session.get(AutomationTrigger, trigger_id)
+        if trigger is None or trigger.automation_id != automation_id:
+            raise HTTPException(
+                status_code=404, detail=f"trigger {trigger_id} not found"
+            )
+        return trigger
+
+
+def _validate_params(trigger_type: TriggerType, raw: dict) -> dict:
+    definition = get_trigger(trigger_type.value)
+    if definition is None:
+        raise HTTPException(
+            status_code=422, detail=f"unknown trigger type {trigger_type.value!r}"
+        )
+    try:
+        validated = definition.params_model.model_validate(raw)
+    except ValidationError as exc:
+        raise HTTPException(status_code=422, detail=str(exc)) from exc
+    return validated.model_dump(mode="json")
+
+
+def _initial_next_fire(
+    trigger_type: TriggerType, params: dict, enabled: bool
+) -> datetime | None:
+    if trigger_type != TriggerType.SCHEDULE or not enabled:
+        return None
+    return compute_next_fire_at(
+        params["cron"], params["timezone"], after=datetime.now(UTC)
+    )
+
+
+def get_trigger_service(
+    session: AsyncSession = Depends(get_async_session),
+    user: User = Depends(current_active_user),
+) -> TriggerService:
+    return TriggerService(session=session, user=user)
diff --git a/surfsense_backend/app/automations/tasks/__init__.py b/surfsense_backend/app/automations/tasks/__init__.py
new file mode 100644
index 000000000..6fe0d62e8
--- /dev/null
+++ b/surfsense_backend/app/automations/tasks/__init__.py
@@ -0,0 +1,3 @@
+"""Celery task wrappers for the automation runtime."""
+
+from __future__ import annotations
diff --git a/surfsense_backend/app/automations/tasks/execute_run.py b/surfsense_backend/app/automations/tasks/execute_run.py
new file mode 100644
index 000000000..ed448515d
--- /dev/null
+++ b/surfsense_backend/app/automations/tasks/execute_run.py
@@ -0,0 +1,33 @@
+"""Celery task that runs one automation. Thin wrapper over ``runtime.executor``."""
+
+from __future__ import annotations
+
+import logging
+
+from app.automations.runtime import execute_run
+from app.celery_app import celery_app
+from app.tasks.celery_tasks import (
+    get_celery_session_maker,
+    run_async_celery_task,
+)
+
+logger = logging.getLogger(__name__)
+
+TASK_NAME = "automation_run_execute"
+
+
+@celery_app.task(name=TASK_NAME, bind=True)
+def automation_run_execute(self, run_id: int) -> None:
+    """Execute one ``AutomationRun``. Idempotent: terminal runs no-op."""
+    return run_async_celery_task(lambda: _impl(run_id))
+
+
+async def _impl(run_id: int) -> None:
+    session_maker = get_celery_session_maker()
+    async with session_maker() as session:
+        try:
+            await execute_run(session, run_id)
+        except Exception:
+            logger.exception("automation_run %d failed unexpectedly", run_id)
+            await session.rollback()
+            raise
diff --git a/surfsense_backend/app/automations/templating/__init__.py b/surfsense_backend/app/automations/templating/__init__.py
new file mode 100644
index 000000000..1df1809c7
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/__init__.py
@@ -0,0 +1,13 @@
+"""Sandboxed template engine for automation definitions."""
+
+from __future__ import annotations
+
+from .context import build_run_context
+from .render import evaluate_predicate, render_template, render_value
+
+__all__ = [
+    "build_run_context",
+    "evaluate_predicate",
+    "render_template",
+    "render_value",
+]
diff --git a/surfsense_backend/app/automations/templating/allowlist.py b/surfsense_backend/app/automations/templating/allowlist.py
new file mode 100644
index 000000000..ed0103c8f
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/allowlist.py
@@ -0,0 +1,31 @@
+"""Filter and test names admitted into the sandboxed environment."""
+
+from __future__ import annotations
+
+ALLOWED_FILTERS: tuple[str, ...] = (
+    "default",
+    "first",
+    "join",
+    "last",
+    "length",
+    "lower",
+    "replace",
+    "reverse",
+    "sort",
+    "tojson",
+    "trim",
+    "truncate",
+    "upper",
+    "date",
+    "slugify",
+)
+
+ALLOWED_TESTS: tuple[str, ...] = (
+    "defined",
+    "none",
+    "number",
+    "string",
+    "mapping",
+    "sequence",
+    "boolean",
+)
diff --git a/surfsense_backend/app/automations/templating/context.py b/surfsense_backend/app/automations/templating/context.py
new file mode 100644
index 000000000..96fdb02e9
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/context.py
@@ -0,0 +1,41 @@
+"""Builder for the ``{run, inputs, steps}`` namespace exposed to every template."""
+
+from __future__ import annotations
+
+from collections.abc import Mapping
+from datetime import datetime
+from typing import Any
+
+
+def build_run_context(
+    *,
+    run_id: int,
+    automation_id: int,
+    automation_name: str | None,
+    automation_version: int | None,
+    search_space_id: int | None,
+    creator_id: Any,
+    trigger_id: int | None,
+    trigger_type: str | None,
+    started_at: datetime | None,
+    attempt: int,
+    inputs: Mapping[str, Any],
+    step_outputs: Mapping[str, Any],
+) -> dict[str, Any]:
+    """Build the ``{run, inputs, steps}`` namespace exposed to every template."""
+    return {
+        "run": {
+            "id": run_id,
+            "automation_id": automation_id,
+            "automation_name": automation_name,
+            "automation_version": automation_version,
+            "search_space_id": search_space_id,
+            "creator_id": creator_id,
+            "trigger_id": trigger_id,
+            "trigger_type": trigger_type,
+            "started_at": started_at,
+            "attempt": attempt,
+        },
+        "inputs": dict(inputs),
+        "steps": dict(step_outputs),
+    }
diff --git a/surfsense_backend/app/automations/templating/environment.py b/surfsense_backend/app/automations/templating/environment.py
new file mode 100644
index 000000000..6ac5f7361
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/environment.py
@@ -0,0 +1,43 @@
+"""SandboxedEnvironment construction with the audited filter/test allowlist."""
+
+from __future__ import annotations
+
+import json
+from datetime import datetime
+from typing import Any
+
+from jinja2 import StrictUndefined
+from jinja2.sandbox import SandboxedEnvironment
+
+from .allowlist import ALLOWED_FILTERS, ALLOWED_TESTS
+from .filters import filter_date, filter_slugify
+
+
+def _finalize(value: Any) -> Any:
+    """Stringify common non-string values at output sites."""
+    if value is None:
+        return ""
+    if isinstance(value, str):
+        return value
+    if isinstance(value, datetime):
+        return value.isoformat()
+    if isinstance(value, list | dict):
+        return json.dumps(value, ensure_ascii=False, default=str)
+    return value
+
+
+def _build_env() -> SandboxedEnvironment:
+    env = SandboxedEnvironment(
+        autoescape=False,
+        undefined=StrictUndefined,
+        finalize=_finalize,
+    )
+    env.globals.clear()
+    env.filters = {k: v for k, v in env.filters.items() if k in ALLOWED_FILTERS}
+    env.filters["date"] = filter_date
+    env.filters["slugify"] = filter_slugify
+    env.tests = {k: v for k, v in env.tests.items() if k in ALLOWED_TESTS}
+    return env
+
+
+ENV: SandboxedEnvironment = _build_env()
diff --git a/surfsense_backend/app/automations/templating/filters.py b/surfsense_backend/app/automations/templating/filters.py
new file mode 100644
index 000000000..65f66eb37
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/filters.py
@@ -0,0 +1,29 @@
+"""Custom Jinja filters registered into the sandboxed environment."""
+
+from __future__ import annotations
+
+import re
+from typing import Any
+
+
+def filter_date(value: Any, fmt: str = "%Y-%m-%d") -> str:
+    """Format a datetime-like value with ``strftime``. Strings pass through."""
+    if value is None:
+        return ""
+    if isinstance(value, str):
+        return value
+    if hasattr(value, "strftime"):
+        return value.strftime(fmt)
+    raise ValueError(f"date filter requires datetime-like, got {type(value).__name__}")
+
+
+_SLUG_NONALNUM = re.compile(r"[^a-z0-9]+")
+_SLUG_DASHES = re.compile(r"-+")
+
+
+def filter_slugify(value: Any) -> str:
+    """Lowercase, replace non-alphanumerics with hyphens, collapse and trim."""
+    s = str(value).lower()
+    s = _SLUG_NONALNUM.sub("-", s)
+    s = _SLUG_DASHES.sub("-", s)
+    return s.strip("-")
diff --git a/surfsense_backend/app/automations/templating/render.py b/surfsense_backend/app/automations/templating/render.py
new file mode 100644
index 000000000..42721ddeb
--- /dev/null
+++ b/surfsense_backend/app/automations/templating/render.py
@@ -0,0 +1,29 @@
+"""Render templates and evaluate predicates against the sandboxed environment."""
+
+from __future__ import annotations
+
+from collections.abc import Mapping
+from typing import Any
+
+from .environment import ENV
+
+
+def render_template(template: str, context: Mapping[str, Any]) -> str:
+    """Render ``template`` with ``context``."""
+    return ENV.from_string(template).render(**context)
+
+
+def evaluate_predicate(expression: str, context: Mapping[str, Any]) -> bool:
+    """Evaluate a Jinja expression (not a template body) and coerce to bool."""
+    return bool(ENV.compile_expression(expression)(**context))
+
+
+def render_value(value: Any, context: Mapping[str, Any]) -> Any:
+    """Recursively render every string in a JSON-like value structure."""
+    if isinstance(value, str):
+        return render_template(value, context)
+    if isinstance(value, dict):
+        return {k: render_value(v, context) for k, v in value.items()}
+    if isinstance(value, list):
+        return [render_value(v, context) for v in value]
+    return value
diff --git a/surfsense_backend/app/automations/triggers/__init__.py b/surfsense_backend/app/automations/triggers/__init__.py
new file mode 100644
index 000000000..9d28ddf5f
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/__init__.py
@@ -0,0 +1,19 @@
+"""Triggers domain: registry surface + built-in trigger packages.
+
+Built-in trigger types live under ``builtin/`` and self-register at import time.
+"""
+
+from __future__ import annotations
+
+from .store import all_triggers, get_trigger, register_trigger
+from .types import TriggerDefinition
+
+__all__ = [
+    "TriggerDefinition",
+    "all_triggers",
+    "get_trigger",
+    "register_trigger",
+]
+
+# Built-in triggers self-register at import time.
+from . import builtin  # noqa: F401
diff --git a/surfsense_backend/app/automations/triggers/builtin/__init__.py b/surfsense_backend/app/automations/triggers/builtin/__init__.py
new file mode 100644
index 000000000..17d8e914b
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/__init__.py
@@ -0,0 +1,5 @@
+"""Built-in trigger types — each in its own subpackage, self-registering at import."""
+
+from __future__ import annotations
+
+from . import event, schedule  # noqa: F401
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/__init__.py b/surfsense_backend/app/automations/triggers/builtin/event/__init__.py
new file mode 100644
index 000000000..8dc89dfa1
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/__init__.py
@@ -0,0 +1,29 @@
+"""``event`` trigger: fire an automation when a matching domain event is published.
+
+Subscribes to the event bus and matches events against a user-authored JSON
+filter (see :mod:`.filter`).
+"""
+
+from __future__ import annotations
+
+from app.event_bus import bus
+
+from .filter import FilterError, matches
+from .inputs import event_runtime_inputs
+from .match import trigger_matches_event
+from .params import EventTriggerParams
+from .source import on_event
+
+__all__ = [
+    "EventTriggerParams",
+    "FilterError",
+    "event_runtime_inputs",
+    "matches",
+    "trigger_matches_event",
+]
+
+# Side-effect: register on the triggers store.
+from . import definition  # noqa: F401
+
+# Side-effect: react to published events.
+bus.subscribe(on_event)
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/definition.py b/surfsense_backend/app/automations/triggers/builtin/event/definition.py
new file mode 100644
index 000000000..b1ef6d4e2
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/definition.py
@@ -0,0 +1,16 @@
+"""``event`` ``TriggerDefinition`` registration."""
+
+from __future__ import annotations
+
+from app.automations.triggers.store import register_trigger
+from app.automations.triggers.types import TriggerDefinition
+
+from .params import EventTriggerParams
+
+EVENT_TRIGGER = TriggerDefinition(
+    type="event",
+    description="Fire when a matching domain event is published.",
+    params_model=EventTriggerParams,
+)
+
+register_trigger(EVENT_TRIGGER)
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/filter.py b/surfsense_backend/app/automations/triggers/builtin/event/filter.py
new file mode 100644
index 000000000..742281fc6
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/filter.py
@@ -0,0 +1,77 @@
+"""Pure JSON filter grammar: ``matches(filter_expr, payload) -> bool``.
+
+The ``event`` trigger uses it to decide whether an event fires the automation.
+"""
+
+from __future__ import annotations
+
+import operator
+from collections.abc import Callable
+from typing import Any
+
+
+class FilterError(ValueError):
+    """Unknown operator in a filter. Raised (not silently false) so a bad filter
+    fails at authoring time instead of quietly disabling the trigger."""
+
+
+# Scalar comparison operators: (actual, operand) -> bool.
+_COMPARATORS: dict[str, Callable[[Any, Any], bool]] = {
+    "$eq": operator.eq,
+    "$ne": operator.ne,
+    "$gt": operator.gt,
+    "$gte": operator.ge,
+    "$lt": operator.lt,
+    "$lte": operator.le,
+    "$in": lambda actual, operand: actual in operand,
+    "$nin": lambda actual, operand: actual not in operand,
+}
+
+# Sentinel for "the payload has no such field" — distinct from a present None.
+_MISSING = object()
+
+
+def matches(filter_expr: dict[str, Any], payload: dict[str, Any]) -> bool:
+    """Return ``True`` when ``payload`` satisfies every constraint in ``filter_expr``.
+
+    An empty filter expresses "no constraints" and matches every payload.
+    Sibling keys (fields and logical operators alike) are ANDed together.
+    """
+    for key, value in filter_expr.items():
+        if key == "$and":
+            if not all(matches(sub, payload) for sub in value):
+                return False
+        elif key == "$or":
+            if not any(matches(sub, payload) for sub in value):
+                return False
+        elif key == "$not":
+            if matches(value, payload):
+                return False
+        elif key.startswith("$"):
+            raise FilterError(f"unknown logical operator: {key}")
+        elif not _match_condition(value, payload.get(key, _MISSING)):
+            return False
+    return True
+
+
+def _match_condition(condition: Any, actual: Any) -> bool:
+    """Match one field's ``actual`` value against its ``condition``.
+
+    A dict condition is an operator object (``{"$gt": 10}``); every operator in
+    it must hold. Any other value is an implicit equality check. A field absent
+    from the payload (``actual is _MISSING``) fails every constraint.
+    """
+    if actual is _MISSING:
+        return False
+    if isinstance(condition, dict):
+        return all(
+            _apply_operator(op, operand, actual) for op, operand in condition.items()
+        )
+    return actual == condition
+
+
+def _apply_operator(op: str, operand: Any, actual: Any) -> bool:
+    comparator = _COMPARATORS.get(op)
+    if comparator is not None:
+        return comparator(actual, operand)
+    raise FilterError(f"unknown operator: {op}")
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/inputs.py b/surfsense_backend/app/automations/triggers/builtin/event/inputs.py
new file mode 100644
index 000000000..e597c0b66
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/inputs.py
@@ -0,0 +1,17 @@
+"""Build run inputs from a published event."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from app.event_bus import Event
+
+
+def event_runtime_inputs(event: Event) -> dict[str, Any]:
+    """Flatten the event payload and stamp event metadata as run inputs."""
+    return {
+        **event.payload,
+        "event_type": event.event_type,
+        "event_id": event.event_id,
+        "occurred_at": event.occurred_at.isoformat(),
+    }
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/match.py b/surfsense_backend/app/automations/triggers/builtin/event/match.py
new file mode 100644
index 000000000..b67a3d49a
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/match.py
@@ -0,0 +1,16 @@
+"""Pure predicate: does an event trigger fire for a given event?"""
+
+from __future__ import annotations
+
+from typing import Any
+
+from app.event_bus import Event
+
+from .filter import matches
+
+
+def trigger_matches_event(params: dict[str, Any], event: Event) -> bool:
+    """True when an event trigger configured with ``params`` should fire for ``event``."""
+    if params.get("event_type") != event.event_type:
+        return False
+    return matches(params.get("filter") or {}, event.payload)
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/params.py b/surfsense_backend/app/automations/triggers/builtin/event/params.py
new file mode 100644
index 000000000..cd28702c0
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/params.py
@@ -0,0 +1,23 @@
+"""``EventTriggerParams`` — params for the ``event`` trigger type."""
+
+from __future__ import annotations
+
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+class EventTriggerParams(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    event_type: str = Field(
+        ...,
+        min_length=1,
+        description="Event type to listen for.",
+        examples=["document.indexed"],
+    )
+    filter: dict[str, Any] = Field(
+        default_factory=dict,
+        description="JSON filter matched against the event payload.",
+        examples=[{"document_type": "FILE"}],
+    )
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/selector.py b/surfsense_backend/app/automations/triggers/builtin/event/selector.py
new file mode 100644
index 000000000..ee00a6094
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/selector.py
@@ -0,0 +1,73 @@
+"""Event selector (worker task): pick the triggers an event fires, start each.
+
+The source enqueues this with a serialized event. Here we load the enabled
+``event`` triggers for that event type, keep the ones whose filter matches the
+payload, and start a run for each. Per-trigger failures are isolated.
+"""
+
+from __future__ import annotations
+
+import logging
+from typing import Any
+
+from sqlalchemy import select
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.dispatch import launch_run
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.celery_app import celery_app
+from app.event_bus import Event
+from app.tasks.celery_tasks import get_celery_session_maker, run_async_celery_task
+
+from .inputs import event_runtime_inputs
+from .match import trigger_matches_event
+from .source import TASK_NAME
+
+logger = logging.getLogger(__name__)
+
+
+@celery_app.task(name=TASK_NAME)
+def automation_event_select(event: dict[str, Any]) -> None:
+    """Select and start the runs an event fires."""
+    return run_async_celery_task(lambda: _select_and_start(event))
+
+
+async def _select_and_start(event_dict: dict[str, Any]) -> None:
+    event = Event.model_validate(event_dict)
+    session_maker = get_celery_session_maker()
+    async with session_maker() as session:
+        for trigger in await _eligible(session, event=event):
+            await _start_one(session, trigger=trigger, event=event)
+
+
+async def _eligible(session: AsyncSession, *, event: Event) -> list[AutomationTrigger]:
+    """Enabled ``event`` triggers for this event type whose filter matches."""
+    stmt = select(AutomationTrigger).where(
+        AutomationTrigger.type == TriggerType.EVENT,
+        AutomationTrigger.enabled.is_(True),
+        AutomationTrigger.params["event_type"].astext == event.event_type,
+    )
+    triggers = (await session.execute(stmt)).scalars().all()
+    return [t for t in triggers if trigger_matches_event(t.params, event)]
+
+
+async def _start_one(
+    session: AsyncSession, *, trigger: AutomationTrigger, event: Event
+) -> None:
+    try:
+        run = await launch_run(
+            session=session,
+            trigger=trigger,
+            runtime_inputs=event_runtime_inputs(event),
+        )
+        logger.info(
+            "event fire: trigger=%d automation=%d run=%d event=%s",
+            trigger.id,
+            trigger.automation_id,
+            run.id,
+            event.event_id,
+        )
+    except Exception:
+        logger.exception("event fire failed for trigger %d", trigger.id)
+        await session.rollback()
diff --git a/surfsense_backend/app/automations/triggers/builtin/event/source.py b/surfsense_backend/app/automations/triggers/builtin/event/source.py
new file mode 100644
index 000000000..b8e067b12
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/event/source.py
@@ -0,0 +1,19 @@
+"""Event trigger source: the bus subscriber that enqueues the selector.
+
+Runs in whatever process published the event, so it stays thin — it only hands
+the event to a worker (the selector does the DB matching).
+"""
+
+from __future__ import annotations
+
+from app.event_bus import Event
+
+TASK_NAME = "automation_event_select"
+
+
+async def on_event(event: Event) -> None:
+    """Enqueue the selector for ``event``."""
+    # Lazy import: keeps app.celery_app out of the triggers-package import graph.
+    from app.celery_app import celery_app
+
+    celery_app.send_task(TASK_NAME, kwargs={"event": event.model_dump(mode="json")})
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/__init__.py b/surfsense_backend/app/automations/triggers/builtin/schedule/__init__.py
new file mode 100644
index 000000000..0267b0577
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/__init__.py
@@ -0,0 +1,16 @@
+"""``schedule`` trigger: fired on a cron schedule in a given timezone."""
+
+from __future__ import annotations
+
+from .cron import InvalidCronError, compute_next_fire_at, validate_cron
+from .params import ScheduleTriggerParams
+
+__all__ = [
+    "InvalidCronError",
+    "ScheduleTriggerParams",
+    "compute_next_fire_at",
+    "validate_cron",
+]
+
+# Side-effect: register on the triggers store.
+from . import definition  # noqa: F401
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/cron.py b/surfsense_backend/app/automations/triggers/builtin/schedule/cron.py
new file mode 100644
index 000000000..a8401e4a3
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/cron.py
@@ -0,0 +1,41 @@
+"""Cron math for the ``schedule`` trigger: validate + advance ``next_fire_at``."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+from zoneinfo import ZoneInfo, ZoneInfoNotFoundError
+
+from croniter import CroniterBadCronError, croniter
+
+
+class InvalidCronError(ValueError):
+    """Raised when a cron expression or timezone fails validation."""
+
+
+def validate_cron(cron: str, timezone: str) -> None:
+    """Raise ``InvalidCronError`` if cron or timezone are unusable."""
+    try:
+        ZoneInfo(timezone)
+    except ZoneInfoNotFoundError as exc:
+        raise InvalidCronError(f"unknown timezone {timezone!r}") from exc
+
+    try:
+        croniter(cron)
+    except (CroniterBadCronError, ValueError) as exc:
+        raise InvalidCronError(f"invalid cron {cron!r}: {exc}") from exc
+
+
+def compute_next_fire_at(cron: str, timezone: str, *, after: datetime) -> datetime:
+    """Return the next moment matching ``cron`` in ``timezone`` strictly after ``after``.
+
+    The result is normalized to UTC for storage. ``after`` is converted into the
+    given timezone before evaluation so DST and IANA rules apply correctly.
+    """
+    tz = ZoneInfo(timezone)
+    base = (
+        after.astimezone(tz)
+        if after.tzinfo
+        else after.replace(tzinfo=UTC).astimezone(tz)
+    )
+    nxt: datetime = croniter(cron, base).get_next(datetime)
+    return nxt.astimezone(UTC)
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/definition.py b/surfsense_backend/app/automations/triggers/builtin/schedule/definition.py
new file mode 100644
index 000000000..a6b0b9b8e
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/definition.py
@@ -0,0 +1,16 @@
+"""``schedule`` ``TriggerDefinition`` registration."""
+
+from __future__ import annotations
+
+from app.automations.triggers.store import register_trigger
+from app.automations.triggers.types import TriggerDefinition
+
+from .params import ScheduleTriggerParams
+
+SCHEDULE_TRIGGER = TriggerDefinition(
+    type="schedule",
+    description="Fire on a cron schedule in a given timezone.",
+    params_model=ScheduleTriggerParams,
+)
+
+register_trigger(SCHEDULE_TRIGGER)
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/inputs.py b/surfsense_backend/app/automations/triggers/builtin/schedule/inputs.py
new file mode 100644
index 000000000..947975b28
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/inputs.py
@@ -0,0 +1,27 @@
+"""Build run inputs from a schedule fire."""
+
+from __future__ import annotations
+
+from datetime import datetime
+from typing import Any
+
+
+def schedule_runtime_inputs(
+    *,
+    fired_at: datetime,
+    scheduled_for: datetime,
+    previous_last_fired_at: datetime | None,
+) -> dict[str, Any]:
+    """Calendar context for a scheduled run.
+
+    - ``fired_at`` — actual fire time
+    - ``scheduled_for`` — cron-derived target time for this fire
+    - ``last_fired_at`` — previous fire time, or null on first fire
+    """
+    return {
+        "fired_at": fired_at.isoformat(),
+        "scheduled_for": scheduled_for.isoformat(),
+        "last_fired_at": (
+            previous_last_fired_at.isoformat() if previous_last_fired_at else None
+        ),
+    }
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/params.py b/surfsense_backend/app/automations/triggers/builtin/schedule/params.py
new file mode 100644
index 000000000..f3945a1b8
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/params.py
@@ -0,0 +1,24 @@
+"""``ScheduleTriggerParams`` — params for the ``schedule`` trigger type."""
+
+from __future__ import annotations
+
+from pydantic import BaseModel, ConfigDict, Field, model_validator
+
+from .cron import InvalidCronError, validate_cron
+
+
+class ScheduleTriggerParams(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    cron: str = Field(
+        ..., description="Five-field cron expression.", examples=["0 9 * * 1-5"]
+    )
+    timezone: str = Field(..., description="IANA timezone.", examples=["Africa/Kigali"])
+
+    @model_validator(mode="after")
+    def _validate(self) -> ScheduleTriggerParams:
+        try:
+            validate_cron(self.cron, self.timezone)
+        except InvalidCronError as exc:
+            raise ValueError(str(exc)) from exc
+        return self
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/selector.py b/surfsense_backend/app/automations/triggers/builtin/schedule/selector.py
new file mode 100644
index 000000000..be592fe12
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/selector.py
@@ -0,0 +1,182 @@
+"""Schedule selector (worker task): claim due triggers and start each.
+
+Beat ticks this every minute. Two passes:
+
+1. **Self-heal**: enabled schedule triggers with NULL ``next_fire_at`` get it
+   computed from their ``cron`` + ``timezone`` (fresh inserts, restored rows).
+2. **Claim & start**: due rows are locked ``FOR UPDATE SKIP LOCKED``, their
+   ``next_fire_at`` is advanced and ``last_fired_at`` set, and a run is started
+   for each. A missed fire stays missed (``catchup=False`` semantics).
+"""
+
+from __future__ import annotations
+
+import logging
+from dataclasses import dataclass
+from datetime import UTC, datetime
+
+from sqlalchemy import select
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.dispatch import launch_run
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.persistence.models.trigger import AutomationTrigger
+from app.celery_app import celery_app
+from app.tasks.celery_tasks import get_celery_session_maker, run_async_celery_task
+
+from .cron import InvalidCronError, compute_next_fire_at
+from .inputs import schedule_runtime_inputs
+from .source import TASK_NAME
+
+logger = logging.getLogger(__name__)
+
+# Cap rows touched per tick so a backlog of due triggers can't starve the
+# worker; remaining rows fire on the next tick.
+_TICK_BATCH = 200
+
+
+@dataclass(frozen=True, slots=True)
+class _Claim:
+    """Per-trigger fire context captured before row state is mutated."""
+
+    trigger_id: int
+    scheduled_for: datetime
+    previous_last_fired_at: datetime | None
+
+
+@celery_app.task(name=TASK_NAME)
+def automation_schedule_select() -> None:
+    """Tick once: self-heal NULL next_fire_at, claim due rows, start each."""
+    return run_async_celery_task(_tick)
+
+
+async def _tick() -> None:
+    session_maker = get_celery_session_maker()
+    async with session_maker() as session:
+        now = datetime.now(UTC)
+
+        await _self_heal_null_next_fire(session, now=now)
+
+        claims = await _claim_due_triggers(session, now=now)
+        if not claims:
+            return
+
+        for claim in claims:
+            await _start_one(session, claim=claim, fired_at=now)
+
+
+async def _self_heal_null_next_fire(session: AsyncSession, *, now: datetime) -> None:
+    """Backfill ``next_fire_at`` for enabled schedule triggers missing it."""
+    stmt = (
+        select(AutomationTrigger)
+        .where(
+            AutomationTrigger.type == TriggerType.SCHEDULE,
+            AutomationTrigger.enabled.is_(True),
+            AutomationTrigger.next_fire_at.is_(None),
+        )
+        .limit(_TICK_BATCH)
+    )
+    triggers = (await session.execute(stmt)).scalars().all()
+    if not triggers:
+        return
+
+    for trigger in triggers:
+        try:
+            trigger.next_fire_at = compute_next_fire_at(
+                trigger.params["cron"],
+                trigger.params["timezone"],
+                after=now,
+            )
+        except (InvalidCronError, KeyError, TypeError) as exc:
+            logger.warning(
+                "automation_trigger %d has invalid schedule params, disabling: %s",
+                trigger.id,
+                exc,
+            )
+            trigger.enabled = False
+
+    await session.commit()
+
+
+async def _claim_due_triggers(session: AsyncSession, *, now: datetime) -> list[_Claim]:
+    """Lock and advance due rows; return per-trigger fire context."""
+    stmt = (
+        select(AutomationTrigger)
+        .where(
+            AutomationTrigger.type == TriggerType.SCHEDULE,
+            AutomationTrigger.enabled.is_(True),
+            AutomationTrigger.next_fire_at.isnot(None),
+            AutomationTrigger.next_fire_at <= now,
+        )
+        .order_by(AutomationTrigger.next_fire_at)
+        .limit(_TICK_BATCH)
+        .with_for_update(skip_locked=True)
+    )
+    triggers = (await session.execute(stmt)).scalars().all()
+    if not triggers:
+        return []
+
+    claims: list[_Claim] = []
+    for trigger in triggers:
+        # Snapshot fire-context BEFORE we advance the row.
+        scheduled_for = trigger.next_fire_at
+        previous_last_fired_at = trigger.last_fired_at
+
+        try:
+            trigger.next_fire_at = compute_next_fire_at(
+                trigger.params["cron"],
+                trigger.params["timezone"],
+                after=now,
+            )
+        except (InvalidCronError, KeyError, TypeError) as exc:
+            logger.warning(
+                "automation_trigger %d has invalid schedule params, disabling: %s",
+                trigger.id,
+                exc,
+            )
+            trigger.enabled = False
+            continue
+
+        trigger.last_fired_at = now
+        claims.append(
+            _Claim(
+                trigger_id=trigger.id,
+                scheduled_for=scheduled_for,
+                previous_last_fired_at=previous_last_fired_at,
+            )
+        )
+
+    await session.commit()
+    return claims
+
+
+async def _start_one(
+    session: AsyncSession, *, claim: _Claim, fired_at: datetime
+) -> None:
+    """Reload the trigger post-commit and start a run for it."""
+    trigger = await session.get(AutomationTrigger, claim.trigger_id)
+    if trigger is None:
+        return
+
+    try:
+        run = await launch_run(
+            session=session,
+            trigger=trigger,
+            runtime_inputs=schedule_runtime_inputs(
+                fired_at=fired_at,
+                scheduled_for=claim.scheduled_for,
+                previous_last_fired_at=claim.previous_last_fired_at,
+            ),
+        )
+        logger.info(
+            "scheduled fire: trigger=%d automation=%d run=%d",
+            claim.trigger_id,
+            trigger.automation_id,
+            run.id,
+        )
+    except Exception:
+        logger.exception(
+            "scheduled fire failed for trigger %d (next attempt at next match)",
+            claim.trigger_id,
+        )
+        await session.rollback()
diff --git a/surfsense_backend/app/automations/triggers/builtin/schedule/source.py b/surfsense_backend/app/automations/triggers/builtin/schedule/source.py
new file mode 100644
index 000000000..997c17562
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/builtin/schedule/source.py
@@ -0,0 +1,20 @@
+"""Schedule trigger source: Celery Beat ticks the selector every minute.
+
+``BEAT_SCHEDULE`` is merged into ``celery_app.conf.beat_schedule``. Per-row cron
+math is precomputed (the ``next_fire_at`` column), so each tick is an indexed
+lookup rather than N cron evaluations.
+"""
+
+from __future__ import annotations
+
+from celery.schedules import crontab
+
+TASK_NAME = "automation_schedule_select"
+
+BEAT_SCHEDULE = {
+    "automation-schedule-select": {
+        "task": TASK_NAME,
+        "schedule": crontab(minute="*"),
+        "options": {"expires": 50},
+    },
+}
diff --git a/surfsense_backend/app/automations/triggers/store.py b/surfsense_backend/app/automations/triggers/store.py
new file mode 100644
index 000000000..af0fafac7
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/store.py
@@ -0,0 +1,23 @@
+"""In-memory trigger registry. Populated once at process startup."""
+
+from __future__ import annotations
+
+from .types import TriggerDefinition
+
+_REGISTRY: dict[str, TriggerDefinition] = {}
+
+
+def register_trigger(trigger: TriggerDefinition) -> None:
+    """Register a trigger. Raises on duplicate type."""
+    if trigger.type in _REGISTRY:
+        raise ValueError(f"Trigger already registered: {trigger.type!r}")
+    _REGISTRY[trigger.type] = trigger
+
+
+def get_trigger(trigger_type: str) -> TriggerDefinition | None:
+    return _REGISTRY.get(trigger_type)
+
+
+def all_triggers() -> dict[str, TriggerDefinition]:
+    """Defensive snapshot of the registry."""
+    return dict(_REGISTRY)
diff --git a/surfsense_backend/app/automations/triggers/types.py b/surfsense_backend/app/automations/triggers/types.py
new file mode 100644
index 000000000..aa2808e4d
--- /dev/null
+++ b/surfsense_backend/app/automations/triggers/types.py
@@ -0,0 +1,20 @@
+"""``TriggerDefinition`` dataclass. Declarative; firing is the dispatcher's job."""
+
+from __future__ import annotations
+
+from dataclasses import dataclass
+from typing import Any
+
+from pydantic import BaseModel
+
+
+@dataclass(frozen=True, slots=True)
+class TriggerDefinition:
+    type: str
+    description: str
+    params_model: type[BaseModel]
+
+    @property
+    def params_schema(self) -> dict[str, Any]:
+        """JSON Schema (draft 2020-12) derived from ``params_model``."""
+        return self.params_model.model_json_schema()
diff --git a/surfsense_backend/app/celery_app.py b/surfsense_backend/app/celery_app.py
index 74710d5e1..99e34e8ca 100644
--- a/surfsense_backend/app/celery_app.py
+++ b/surfsense_backend/app/celery_app.py
@@ -1,16 +1,103 @@
 """Celery application configuration and setup."""
 
+import contextlib
 import os
+import time
 
 from celery import Celery
 from celery.schedules import crontab
-from celery.signals import worker_process_init
+from celery.signals import (
+    before_task_publish,
+    task_postrun,
+    task_prerun,
+    worker_process_init,
+)
 from dotenv import load_dotenv
 
+try:
+    from opentelemetry import trace
+except ImportError:  # pragma: no cover - optional OTel dependency
+    trace = None  # type: ignore[assignment]
+
 # Load environment variables
 load_dotenv()
 
 
+@before_task_publish.connect
+def _stamp_enqueue_time(headers=None, **_kwargs):
+    """Stamp enqueue time so workers can measure queue wait."""
+    if headers is None:
+        return
+    with contextlib.suppress(Exception):
+        headers["surfsense.enqueued_at_ns"] = str(time.monotonic_ns())
+
+
+@task_prerun.connect
+def _record_queue_latency(task=None, **_kwargs):
+    """Record queue latency and stash task metadata for span enrichment."""
+    if task is None:
+        return
+    try:
+        from app.observability import metrics as ot_metrics
+
+        task_name = getattr(task, "name", None) or "unknown"
+        operation = ot_metrics.parse_celery_task_label(task_name)
+        request = getattr(task, "request", None)
+        delivery_info = getattr(request, "delivery_info", None) or {}
+        queue = delivery_info.get("routing_key") or "unknown"
+        scheduled = bool(
+            getattr(request, "eta", None) or getattr(request, "expires", None)
+        )
+
+        with contextlib.suppress(Exception):
+            request.surfsense_operation = operation
+            request.surfsense_queue = queue
+            request.surfsense_scheduled = scheduled
+
+        headers = getattr(request, "headers", None) or {}
+        enqueued_ns = headers.get("surfsense.enqueued_at_ns")
+        if enqueued_ns is None:
+            return
+
+        elapsed_s = (time.monotonic_ns() - int(enqueued_ns)) / 1e9
+        with contextlib.suppress(Exception):
+            request.surfsense_queue_latency_ms = elapsed_s * 1000
+
+        ot_metrics.record_celery_queue_latency(
+            elapsed_s,
+            task_name=task_name,
+            queue=queue,
+            scheduled=scheduled,
+            operation=operation,
+        )
+    except Exception:
+        pass
+
+
+@task_postrun.connect
+def _set_celery_span_attributes(task=None, **_kwargs):
+    """Attach derived queue metadata to the active Celery run span."""
+    if task is None or trace is None:
+        return
+
+    try:
+        request = getattr(task, "request", None)
+        if request is None:
+            return
+
+        span = trace.get_current_span()
+
+        operation = getattr(request, "surfsense_operation", None)
+        if operation:
+            span.set_attribute("celery.task.operation", operation)
+
+        latency_ms = getattr(request, "surfsense_queue_latency_ms", None)
+        if latency_ms is not None:
+            span.set_attribute("celery.queue.latency_ms", latency_ms)
+    except Exception:
+        pass
+
+
 @worker_process_init.connect
 def init_worker(**kwargs):
     """Initialize the LLM Router and Image Gen Router when a Celery worker process starts.
@@ -18,6 +105,10 @@ def init_worker(**kwargs):
     This ensures the Auto mode (LiteLLM Router) is available for background tasks
     like document summarization and image generation.
     """
+    from app.observability.bootstrap import init_otel
+
+    init_otel(app=None, traces=True, metrics=True, logs=True)
+
     from app.config import (
         initialize_image_gen_router,
         initialize_llm_router,
@@ -97,6 +188,9 @@ celery_app = Celery(
         "app.tasks.celery_tasks.document_reindex_tasks",
         "app.tasks.celery_tasks.stale_notification_cleanup_task",
         "app.tasks.celery_tasks.stripe_reconciliation_task",
+        "app.automations.tasks.execute_run",
+        "app.automations.triggers.builtin.schedule.selector",
+        "app.automations.triggers.builtin.event.selector",
     ],
 )
 
@@ -154,6 +248,12 @@ celery_app.conf.update(
     },
 )
 
+# Imported late (after celery_app is built) to keep the automations triggers
+# package out of this module's top-level import graph.
+from app.automations.triggers.builtin.schedule.source import (  # noqa: E402
+    BEAT_SCHEDULE as SCHEDULE_BEAT_SCHEDULE,
+)
+
 # Configure Celery Beat schedule
 # This uses a meta-scheduler pattern: instead of creating individual Beat schedules
 # for each connector, we have ONE schedule that checks the database at the configured interval
@@ -191,4 +291,7 @@ celery_app.conf.beat_schedule = {
             "expires": 60,
         },
     },
+    # Fire due automation schedule triggers (Beat entry owned by the schedule
+    # trigger; see app.automations.triggers.builtin.schedule.source).
+    **SCHEDULE_BEAT_SCHEDULE,
 }
diff --git a/surfsense_backend/app/db.py b/surfsense_backend/app/db.py
index 9fc27fb1f..d6ee9ff88 100644
--- a/surfsense_backend/app/db.py
+++ b/surfsense_backend/app/db.py
@@ -439,6 +439,13 @@ class Permission(StrEnum):
     PUBLIC_SHARING_CREATE = "public_sharing:create"
     PUBLIC_SHARING_DELETE = "public_sharing:delete"
 
+    # Automations
+    AUTOMATIONS_CREATE = "automations:create"
+    AUTOMATIONS_READ = "automations:read"
+    AUTOMATIONS_UPDATE = "automations:update"
+    AUTOMATIONS_DELETE = "automations:delete"
+    AUTOMATIONS_EXECUTE = "automations:execute"
+
     # Full access wildcard
     FULL_ACCESS = "*"
 
@@ -494,6 +501,11 @@ DEFAULT_ROLE_PERMISSIONS = {
         # Public Sharing (can create and view, no delete)
         Permission.PUBLIC_SHARING_VIEW.value,
         Permission.PUBLIC_SHARING_CREATE.value,
+        # Automations (no delete)
+        Permission.AUTOMATIONS_CREATE.value,
+        Permission.AUTOMATIONS_READ.value,
+        Permission.AUTOMATIONS_UPDATE.value,
+        Permission.AUTOMATIONS_EXECUTE.value,
     ],
     "Viewer": [
         # Documents (read only)
@@ -525,6 +537,8 @@ DEFAULT_ROLE_PERMISSIONS = {
         Permission.SETTINGS_VIEW.value,
         # Public Sharing (view only)
         Permission.PUBLIC_SHARING_VIEW.value,
+        # Automations (read only)
+        Permission.AUTOMATIONS_READ.value,
     ],
 }
 
@@ -1136,46 +1150,6 @@ class Chunk(BaseModel, TimestampMixin):
     document = relationship("Document", back_populates="chunks")
 
 
-class SurfsenseDocsDocument(BaseModel, TimestampMixin):
-    """
-    Surfsense documentation storage.
-    Indexed at migration time from MDX files.
-    """
-
-    __tablename__ = "surfsense_docs_documents"
-
-    source = Column(
-        String, nullable=False, unique=True, index=True
-    )  # File path: "connectors/slack.mdx"
-    title = Column(String, nullable=False)
-    content = Column(Text, nullable=False)
-    content_hash = Column(String, nullable=False, index=True)  # For detecting changes
-    embedding = Column(Vector(config.embedding_model_instance.dimension))
-    updated_at = Column(TIMESTAMP(timezone=True), nullable=True, index=True)
-
-    chunks = relationship(
-        "SurfsenseDocsChunk",
-        back_populates="document",
-        cascade="all, delete-orphan",
-    )
-
-
-class SurfsenseDocsChunk(BaseModel, TimestampMixin):
-    """Chunk storage for Surfsense documentation."""
-
-    __tablename__ = "surfsense_docs_chunks"
-
-    content = Column(Text, nullable=False)
-    embedding = Column(Vector(config.embedding_model_instance.dimension))
-
-    document_id = Column(
-        Integer,
-        ForeignKey("surfsense_docs_documents.id", ondelete="CASCADE"),
-        nullable=False,
-    )
-    document = relationship("SurfsenseDocsDocument", back_populates="chunks")
-
-
 class Podcast(BaseModel, TimestampMixin):
     """Podcast model for storing generated podcasts."""
 
@@ -1533,6 +1507,14 @@ class SearchSpace(BaseModel, TimestampMixin):
         cascade="all, delete-orphan",
     )
 
+    automations = relationship(
+        "Automation",
+        back_populates="search_space",
+        order_by="Automation.id",
+        cascade="all, delete-orphan",
+        passive_deletes=True,
+    )
+
     # RBAC relationships
     roles = relationship(
         "SearchSpaceRole",
@@ -2125,6 +2107,13 @@ if config.AUTH_TYPE == "GOOGLE":
             passive_deletes=True,
         )
 
+        # Automations created by this user
+        automations = relationship(
+            "Automation",
+            back_populates="created_by",
+            passive_deletes=True,
+        )
+
         # Incentive tasks completed by this user
         incentive_tasks = relationship(
             "UserIncentiveTask",
@@ -2257,6 +2246,13 @@ else:
             passive_deletes=True,
         )
 
+        # Automations created by this user
+        automations = relationship(
+            "Automation",
+            back_populates="created_by",
+            passive_deletes=True,
+        )
+
         # Incentive tasks completed by this user
         incentive_tasks = relationship(
             "UserIncentiveTask",
@@ -2560,6 +2556,15 @@ class RefreshToken(Base, TimestampMixin):
         return not self.is_expired and not self.is_revoked
 
 
+# Register model packages that live outside this file so their classes
+# are present in Base.metadata before configure_mappers() resolves any
+# string-based relationship() references.
+from app.automations.persistence import (  # noqa: E402, F401
+    Automation,
+    AutomationRun,
+    AutomationTrigger,
+)
+
 engine = create_async_engine(
     DATABASE_URL,
     pool_size=30,
@@ -2635,11 +2640,6 @@ async def setup_indexes():
                 "CREATE INDEX IF NOT EXISTS idx_documents_search_space_updated ON documents (search_space_id, updated_at DESC NULLS LAST) INCLUDE (id, title, document_type)"
             )
         )
-        await conn.execute(
-            text(
-                "CREATE INDEX IF NOT EXISTS idx_surfsense_docs_title_trgm ON surfsense_docs_documents USING gin (title gin_trgm_ops)"
-            )
-        )
 
 
 async def create_db_and_tables():
diff --git a/surfsense_backend/app/etl_pipeline/etl_pipeline_service.py b/surfsense_backend/app/etl_pipeline/etl_pipeline_service.py
index 87e8138fd..a2f4d0bbd 100644
--- a/surfsense_backend/app/etl_pipeline/etl_pipeline_service.py
+++ b/surfsense_backend/app/etl_pipeline/etl_pipeline_service.py
@@ -1,4 +1,7 @@
+import contextlib
 import logging
+import time
+from pathlib import PurePosixPath
 
 from app.config import config as app_config
 from app.etl_pipeline.etl_document import EtlRequest, EtlResult
@@ -10,6 +13,11 @@ from app.etl_pipeline.file_classifier import FileCategory, classify_file
 from app.etl_pipeline.parsers.audio import transcribe_audio
 from app.etl_pipeline.parsers.direct_convert import convert_file_directly
 from app.etl_pipeline.parsers.plaintext import read_plaintext
+from app.observability import metrics as ot_metrics, otel as ot
+
+
+def _file_extension(filename: str) -> str:
+    return PurePosixPath(filename).suffix.lower() or "none"
 
 
 class EtlPipelineService:
@@ -20,49 +28,93 @@ class EtlPipelineService:
 
     async def extract(self, request: EtlRequest) -> EtlResult:
         category = classify_file(request.filename)
+        start = time.perf_counter()
+        status = "success"
+        error_category: str | None = None
+        result: EtlResult | None = None
+        with ot.etl_extract_span(
+            content_type=category.value,
+            file_extension=_file_extension(request.filename),
+            processing_mode=request.processing_mode.value,
+        ) as sp:
+            try:
+                if category == FileCategory.UNSUPPORTED:
+                    raise EtlUnsupportedFileError(
+                        f"File type not supported for parsing: {request.filename}"
+                    )
 
-        if category == FileCategory.UNSUPPORTED:
-            raise EtlUnsupportedFileError(
-                f"File type not supported for parsing: {request.filename}"
-            )
+                if category == FileCategory.PLAINTEXT:
+                    content = read_plaintext(request.file_path)
+                    result = EtlResult(
+                        markdown_content=content,
+                        etl_service="PLAINTEXT",
+                        content_type="plaintext",
+                    )
+                    return result
 
-        if category == FileCategory.PLAINTEXT:
-            content = read_plaintext(request.file_path)
-            return EtlResult(
-                markdown_content=content,
-                etl_service="PLAINTEXT",
-                content_type="plaintext",
-            )
+                if category == FileCategory.DIRECT_CONVERT:
+                    content = convert_file_directly(request.file_path, request.filename)
+                    result = EtlResult(
+                        markdown_content=content,
+                        etl_service="DIRECT_CONVERT",
+                        content_type="direct_convert",
+                    )
+                    return result
 
-        if category == FileCategory.DIRECT_CONVERT:
-            content = convert_file_directly(request.file_path, request.filename)
-            return EtlResult(
-                markdown_content=content,
-                etl_service="DIRECT_CONVERT",
-                content_type="direct_convert",
-            )
+                if category == FileCategory.AUDIO:
+                    content = await transcribe_audio(
+                        request.file_path, request.filename
+                    )
+                    result = EtlResult(
+                        markdown_content=content,
+                        etl_service="AUDIO",
+                        content_type="audio",
+                    )
+                    return result
 
-        if category == FileCategory.AUDIO:
-            content = await transcribe_audio(request.file_path, request.filename)
-            return EtlResult(
-                markdown_content=content,
-                etl_service="AUDIO",
-                content_type="audio",
-            )
+                if category == FileCategory.IMAGE:
+                    result = await self._extract_image(request)
+                    return result
 
-        if category == FileCategory.IMAGE:
-            return await self._extract_image(request)
-
-        return await self._extract_document(request)
+                result = await self._extract_document(request)
+                return result
+            except Exception as exc:
+                status = "error"
+                error_category = ot_metrics.categorize_exception(exc)
+                raise
+            finally:
+                with contextlib.suppress(Exception):
+                    if result is not None:
+                        sp.set_attribute("etl.service", result.etl_service)
+                        sp.set_attribute("content.type", result.content_type)
+                    sp.set_attribute("etl.status", status)
+                    ot_metrics.record_etl_extract_duration(
+                        time.perf_counter() - start,
+                        etl_service=result.etl_service if result else None,
+                        content_type=result.content_type if result else category.value,
+                        status=status,
+                    )
+                    ot_metrics.record_etl_extract_outcome(
+                        etl_service=result.etl_service if result else None,
+                        content_type=result.content_type if result else category.value,
+                        status=status,
+                        error_category=error_category,
+                    )
 
     async def _extract_image(self, request: EtlRequest) -> EtlResult:
         if self._vision_llm:
             try:
                 from app.etl_pipeline.parsers.vision_llm import parse_with_vision_llm
 
-                content = await parse_with_vision_llm(
-                    request.file_path, request.filename, self._vision_llm
-                )
+                with ot.etl_parse_span(
+                    etl_service="VISION_LLM",
+                    content_type="image",
+                    file_extension=_file_extension(request.filename),
+                ) as sp:
+                    content = await parse_with_vision_llm(
+                        request.file_path, request.filename, self._vision_llm
+                    )
+                    sp.set_attribute("etl.status", "success")
                 return EtlResult(
                     markdown_content=content,
                     etl_service="VISION_LLM",
@@ -87,14 +139,34 @@ class EtlPipelineService:
                         request.filename,
                         exc_info=True,
                     )
+                ot.add_event(
+                    "etl.fallback",
+                    {
+                        "fallback.from": "vision_llm",
+                        "fallback.to": "document_parser",
+                        "fallback.reason": ot_metrics.categorize_exception(exc),
+                    },
+                )
         else:
             logging.info(
                 "No vision LLM provided, falling back to document parser for %s",
                 request.filename,
             )
+            ot.add_event(
+                "etl.fallback",
+                {
+                    "fallback.from": "vision_llm",
+                    "fallback.to": "document_parser",
+                    "fallback.reason": "not_configured",
+                },
+            )
 
         try:
-            return await self._extract_document(request)
+            with ot.etl_ocr_span(
+                etl_service=app_config.ETL_SERVICE,
+                file_extension=_file_extension(request.filename),
+            ):
+                return await self._extract_document(request)
         except (EtlUnsupportedFileError, EtlServiceUnavailableError):
             raise EtlUnsupportedFileError(
                 f"Cannot process image {request.filename}: vision LLM "
@@ -121,18 +193,27 @@ class EtlPipelineService:
                 f"File type {ext} is not supported by {etl_service}"
             )
 
-        if etl_service == "DOCLING":
-            from app.etl_pipeline.parsers.docling import parse_with_docling
+        with ot.etl_parse_span(
+            etl_service=etl_service,
+            content_type="document",
+            file_extension=ext,
+            processing_mode=request.processing_mode.value,
+        ) as sp:
+            if etl_service == "DOCLING":
+                from app.etl_pipeline.parsers.docling import parse_with_docling
 
-            content = await parse_with_docling(request.file_path, request.filename)
-        elif etl_service == "UNSTRUCTURED":
-            from app.etl_pipeline.parsers.unstructured import parse_with_unstructured
+                content = await parse_with_docling(request.file_path, request.filename)
+            elif etl_service == "UNSTRUCTURED":
+                from app.etl_pipeline.parsers.unstructured import (
+                    parse_with_unstructured,
+                )
 
-            content = await parse_with_unstructured(request.file_path)
-        elif etl_service == "LLAMACLOUD":
-            content = await self._extract_with_llamacloud(request)
-        else:
-            raise EtlServiceUnavailableError(f"Unknown ETL_SERVICE: {etl_service}")
+                content = await parse_with_unstructured(request.file_path)
+            elif etl_service == "LLAMACLOUD":
+                content = await self._extract_with_llamacloud(request)
+            else:
+                raise EtlServiceUnavailableError(f"Unknown ETL_SERVICE: {etl_service}")
+            sp.set_attribute("etl.status", "success")
 
         # When the operator opts into vision-LLM at ingest, walk the
         # original file's embedded images and append a structured
@@ -171,9 +252,14 @@ class EtlPipelineService:
         async def _ocr_image(image_path: str, image_name: str) -> str:
             try:
                 sub = EtlPipelineService(vision_llm=None)
-                ocr_result = await sub.extract(
-                    EtlRequest(file_path=image_path, filename=image_name)
-                )
+                with ot.etl_picture_ocr_span(
+                    file_extension=_file_extension(image_name)
+                ) as sp:
+                    ocr_result = await sub.extract(
+                        EtlRequest(file_path=image_path, filename=image_name)
+                    )
+                    sp.set_attribute("etl.service", ocr_result.etl_service)
+                    sp.set_attribute("etl.status", "success")
             except (
                 EtlUnsupportedFileError,
                 EtlServiceUnavailableError,
@@ -181,20 +267,42 @@ class EtlPipelineService:
                 # Common case: the configured ETL service can't OCR
                 # this image format (or no service is configured at
                 # all). Don't spam warnings -- just no OCR for it.
+                ot.add_event(
+                    "etl.ocr.skipped",
+                    {
+                        "skip.reason": "unsupported_format",
+                        "error.category": ot_metrics.categorize_exception(exc),
+                    },
+                )
                 logging.debug("Skipping per-image OCR for %s: %s", image_name, exc)
                 return ""
             return ocr_result.markdown_content
 
         try:
-            result = await describe_pictures(
-                request.file_path,
-                request.filename,
-                self._vision_llm,
-                ocr_runner=_ocr_image,
-            )
-        except Exception:
+            with ot.etl_picture_describe_span() as sp:
+                result = await describe_pictures(
+                    request.file_path,
+                    request.filename,
+                    self._vision_llm,
+                    ocr_runner=_ocr_image,
+                )
+                sp.set_attribute("image.described.count", len(result.descriptions))
+                sp.set_attribute("image.failed.count", result.failed)
+                sp.set_attribute("image.skipped.too_small", result.skipped_too_small)
+                sp.set_attribute("image.skipped.too_large", result.skipped_too_large)
+                sp.set_attribute("image.skipped.duplicate", result.skipped_duplicate)
+                sp.set_attribute("etl.status", "success")
+        except Exception as exc:
             # Picture description is additive; never let it fail an
             # otherwise-successful document extraction.
+            ot.add_event(
+                "etl.degraded",
+                {
+                    "degraded.reason": "picture_describe_failed",
+                    "degraded.action": "return_parser_output",
+                    "error.category": ot_metrics.categorize_exception(exc),
+                },
+            )
             logging.warning(
                 "Picture description failed for %s, returning parser output unchanged",
                 request.filename,
@@ -247,7 +355,15 @@ class EtlPipelineService:
                 return await parse_with_azure_doc_intelligence(
                     request.file_path, processing_mode=mode_value
                 )
-            except Exception:
+            except Exception as exc:
+                ot.add_event(
+                    "etl.fallback",
+                    {
+                        "fallback.from": "azure_di",
+                        "fallback.to": "llamacloud",
+                        "fallback.reason": ot_metrics.categorize_exception(exc),
+                    },
+                )
                 logging.warning(
                     "Azure Document Intelligence failed for %s, "
                     "falling back to LlamaCloud",
diff --git a/surfsense_backend/app/event_bus/__init__.py b/surfsense_backend/app/event_bus/__init__.py
new file mode 100644
index 000000000..da5735fe6
--- /dev/null
+++ b/surfsense_backend/app/event_bus/__init__.py
@@ -0,0 +1,25 @@
+"""In-process domain event bus.
+
+Domain-agnostic pub/sub. Producers ``await bus.publish(...)``; subscribers
+``bus.subscribe(...)``. Domain modules depend on it, never the reverse.
+
+    from app.event_bus import bus
+    await bus.publish("document.indexed", {"document_id": 42}, search_space_id=7)
+"""
+
+from __future__ import annotations
+
+from . import events  # noqa: F401  — populates the event-type catalog
+from .bus import EventBus, Subscriber, bus
+from .catalog import EventCatalog, EventType, catalog
+from .event import Event
+
+__all__ = [
+    "Event",
+    "EventBus",
+    "EventCatalog",
+    "EventType",
+    "Subscriber",
+    "bus",
+    "catalog",
+]
diff --git a/surfsense_backend/app/event_bus/bus.py b/surfsense_backend/app/event_bus/bus.py
new file mode 100644
index 000000000..38c93ba7c
--- /dev/null
+++ b/surfsense_backend/app/event_bus/bus.py
@@ -0,0 +1,77 @@
+"""In-process pub/sub. Streams :class:`Event` values from producers to listeners.
+
+Boundary-crossing (Celery, DB, workers) is a subscriber's job — e.g. the
+``event`` trigger enqueues its own task.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+from collections.abc import Awaitable, Callable
+from typing import Any
+
+from .event import Event
+
+logger = logging.getLogger(__name__)
+
+Subscriber = Callable[[Event], Awaitable[None]]
+
+
+class EventBus:
+    """An in-process pub/sub bus with a per-instance subscriber registry."""
+
+    def __init__(self) -> None:
+        self._subscribers: list[Subscriber] = []
+
+    def subscribe(self, handler: Subscriber) -> Subscriber:
+        """Register ``handler`` for every event. Idempotent; returns the handler
+        so it works as a decorator."""
+        if handler not in self._subscribers:
+            self._subscribers.append(handler)
+        return handler
+
+    def subscribers(self) -> list[Subscriber]:
+        """Defensive snapshot of the registered subscribers."""
+        return list(self._subscribers)
+
+    async def publish(
+        self,
+        event_type: str,
+        payload: dict[str, Any] | None = None,
+        *,
+        search_space_id: int,
+    ) -> None:
+        """Stamp an :class:`Event` and fan it out. Call after your commit."""
+        event = Event(
+            event_type=event_type,
+            payload=payload or {},
+            search_space_id=search_space_id,
+        )
+        await self.dispatch(event)
+
+    async def dispatch(self, event: Event) -> None:
+        """Fan ``event`` out concurrently. Subscriber failures are logged and
+        isolated; never propagate."""
+        subscribers = self.subscribers()
+        if not subscribers:
+            return
+
+        results = await asyncio.gather(
+            *(handler(event) for handler in subscribers),
+            return_exceptions=True,
+        )
+
+        for handler, result in zip(subscribers, results, strict=True):
+            if isinstance(result, Exception):
+                logger.error(
+                    "event subscriber %r failed for event %s (%s)",
+                    getattr(handler, "__qualname__", handler),
+                    event.event_id,
+                    event.event_type,
+                    exc_info=result,
+                )
+
+
+# Process-wide bus. Producers publish to it; subscribers register on it.
+bus = EventBus()
diff --git a/surfsense_backend/app/event_bus/catalog.py b/surfsense_backend/app/event_bus/catalog.py
new file mode 100644
index 000000000..a50be689f
--- /dev/null
+++ b/surfsense_backend/app/event_bus/catalog.py
@@ -0,0 +1,48 @@
+"""Event type catalog: the deliberate contract behind each event.
+
+``EventType`` declares a dotted name and the shape of its payload.
+``EventCatalog`` is the registry — populated once at import by each event type
+module. ``catalog`` is the process-wide singleton.
+"""
+
+from __future__ import annotations
+
+from dataclasses import dataclass
+from typing import Any
+
+from pydantic import BaseModel
+
+
+@dataclass(frozen=True, slots=True)
+class EventType:
+    type: str
+    description: str
+    payload_model: type[BaseModel]
+
+    @property
+    def payload_schema(self) -> dict[str, Any]:
+        """JSON Schema (draft 2020-12) derived from ``payload_model``."""
+        return self.payload_model.model_json_schema()
+
+
+class EventCatalog:
+    """Registry of known event types. Populated at import; read at runtime."""
+
+    def __init__(self) -> None:
+        self._registry: dict[str, EventType] = {}
+
+    def register(self, event_type: EventType) -> None:
+        """Register an event type. Raises on duplicate type."""
+        if event_type.type in self._registry:
+            raise ValueError(f"Event type already registered: {event_type.type!r}")
+        self._registry[event_type.type] = event_type
+
+    def get(self, type_: str) -> EventType | None:
+        return self._registry.get(type_)
+
+    def all(self) -> dict[str, EventType]:
+        """Defensive snapshot of the registry."""
+        return dict(self._registry)
+
+
+catalog = EventCatalog()
diff --git a/surfsense_backend/app/event_bus/event.py b/surfsense_backend/app/event_bus/event.py
new file mode 100644
index 000000000..5dc3f7081
--- /dev/null
+++ b/surfsense_backend/app/event_bus/event.py
@@ -0,0 +1,38 @@
+"""The ``Event`` value object — the only shape that crosses the bus.
+
+An immutable fact: something named happened, with this payload, in this space,
+at this time. JSON round-trippable so a subscriber can queue it to a worker.
+"""
+
+from __future__ import annotations
+
+import uuid
+from datetime import UTC, datetime
+from typing import Any
+
+from pydantic import BaseModel, ConfigDict, Field
+
+
+def _new_event_id() -> str:
+    return uuid.uuid4().hex
+
+
+def _now() -> datetime:
+    return datetime.now(UTC)
+
+
+class Event(BaseModel):
+    """A published domain fact.
+
+    ``event_type`` is a dotted namespace (``document.indexed``, etc). ``payload`` is
+    JSON-serializable. ``search_space_id`` scopes delivery. ``event_id`` and
+    ``occurred_at`` are engine-stamped.
+    """
+
+    model_config = ConfigDict(frozen=True)
+
+    event_type: str
+    payload: dict[str, Any] = Field(default_factory=dict)
+    search_space_id: int
+    event_id: str = Field(default_factory=_new_event_id)
+    occurred_at: datetime = Field(default_factory=_now)
diff --git a/surfsense_backend/app/event_bus/events/__init__.py b/surfsense_backend/app/event_bus/events/__init__.py
new file mode 100644
index 000000000..47c0e64c1
--- /dev/null
+++ b/surfsense_backend/app/event_bus/events/__init__.py
@@ -0,0 +1,5 @@
+"""Domain event type definitions — each in its own module, self-registering at import."""
+
+from __future__ import annotations
+
+from . import document_entered_folder  # noqa: F401
diff --git a/surfsense_backend/app/event_bus/events/document_entered_folder.py b/surfsense_backend/app/event_bus/events/document_entered_folder.py
new file mode 100644
index 000000000..fc4e2de14
--- /dev/null
+++ b/surfsense_backend/app/event_bus/events/document_entered_folder.py
@@ -0,0 +1,86 @@
+"""``document.entered_folder``: a document became a member of a folder.
+
+Fires once per arrival, however the document got there (upload, AI sort, move).
+The payload carries the fields a user can filter a trigger on.
+"""
+
+from __future__ import annotations
+
+from pydantic import BaseModel, ConfigDict, computed_field
+
+from app.event_bus.catalog import EventType, catalog
+
+EVENT_TYPE = "document.entered_folder"
+
+
+class DocumentEnteredFolderPayload(BaseModel):
+    """Snapshot of the document at the moment it entered ``folder_id``.
+
+    ``previous_folder_id`` is the folder it left, or ``None`` for a first
+    placement. ``is_move`` derives from it and is emitted for filtering.
+    """
+
+    model_config = ConfigDict(extra="forbid")
+
+    document_id: int
+    folder_id: int
+    previous_folder_id: int | None = None
+    document_type: str
+    title: str
+    connector_id: int | None = None
+    created_by_id: str | None = None
+
+    @computed_field
+    @property
+    def is_move(self) -> bool:
+        return self.previous_folder_id is not None
+
+
+catalog.register(
+    EventType(
+        type=EVENT_TYPE,
+        description="A document became a member of a folder.",
+        payload_model=DocumentEnteredFolderPayload,
+    )
+)
+
+
+def payload_if_entered_folder(
+    *,
+    document_id: int,
+    search_space_id: int,
+    new_folder_id: int | None,
+    previous_folder_id: int | None,
+    folder_id_changed: bool,
+    status_state: str,
+    document_type: str,
+    title: str,
+    connector_id: int | None,
+    created_by_id: str | None,
+) -> dict | None:
+    """Return a publish payload if this commit represents a folder arrival, else None.
+
+    ``folder_id_changed`` comes from SQLAlchemy attribute history — it is True
+    only when ``folder_id`` actually changed in this transaction, preventing
+    spurious events on unrelated saves.
+    """
+    if not folder_id_changed:
+        return None
+    if new_folder_id is None:
+        return None
+    if status_state != "ready":
+        return None
+
+    return {
+        "event_type": EVENT_TYPE,
+        "search_space_id": search_space_id,
+        "payload": {
+            "document_id": document_id,
+            "folder_id": new_folder_id,
+            "previous_folder_id": previous_folder_id,
+            "document_type": document_type,
+            "title": title,
+            "connector_id": connector_id,
+            "created_by_id": created_by_id,
+        },
+    }
diff --git a/surfsense_backend/app/indexing_pipeline/indexing_pipeline_service.py b/surfsense_backend/app/indexing_pipeline/indexing_pipeline_service.py
index 2339647ea..282bd6034 100644
--- a/surfsense_backend/app/indexing_pipeline/indexing_pipeline_service.py
+++ b/surfsense_backend/app/indexing_pipeline/indexing_pipeline_service.py
@@ -2,6 +2,7 @@ import asyncio
 import contextlib
 import hashlib
 import logging
+import sys
 import time
 from collections.abc import Awaitable, Callable
 from dataclasses import dataclass, field
@@ -57,6 +58,7 @@ from app.indexing_pipeline.pipeline_logger import (
     log_retryable_llm_error,
     log_unexpected_error,
 )
+from app.observability import metrics as ot_metrics, otel as ot
 from app.utils.perf import get_perf_logger
 
 
@@ -362,6 +364,16 @@ class IndexingPipelineService:
         )
         perf = get_perf_logger()
         t_index = time.perf_counter()
+        document_type = (
+            document.document_type.value
+            if getattr(document, "document_type", None)
+            else None
+        )
+        persist_span_cm = ot.kb_persist_span(
+            document_type=document_type,
+        )
+        persist_span = persist_span_cm.__enter__()
+        outcome_status = "failed"
         try:
             log_index_started(ctx)
             document.status = DocumentStatus.processing()
@@ -429,34 +441,41 @@ class IndexingPipelineService:
                 time.perf_counter() - t_index,
             )
             log_index_success(ctx, chunk_count=len(chunks))
+            outcome_status = "success"
 
             await self._enqueue_ai_sort_if_enabled(document)
 
         except RETRYABLE_LLM_ERRORS as e:
+            ot.record_error(persist_span, e)
             log_retryable_llm_error(ctx, e)
+            outcome_status = "requeued"
             await rollback_and_persist_failure(
                 self.session, document, llm_retryable_message(e)
             )
 
         except PERMANENT_LLM_ERRORS as e:
+            ot.record_error(persist_span, e)
             log_permanent_llm_error(ctx, e)
             await rollback_and_persist_failure(
                 self.session, document, llm_permanent_message(e)
             )
 
         except RecursionError as e:
+            ot.record_error(persist_span, e)
             log_chunking_overflow(ctx, e)
             await rollback_and_persist_failure(
                 self.session, document, PipelineMessages.CHUNKING_OVERFLOW
             )
 
         except EMBEDDING_ERRORS as e:
+            ot.record_error(persist_span, e)
             log_embedding_error(ctx, e)
             await rollback_and_persist_failure(
                 self.session, document, embedding_message(e)
             )
 
         except Exception as e:
+            ot.record_error(persist_span, e)
             log_unexpected_error(ctx, e)
             await rollback_and_persist_failure(
                 self.session, document, safe_exception_message(e)
@@ -465,6 +484,17 @@ class IndexingPipelineService:
         with contextlib.suppress(Exception):
             await self.session.refresh(document)
 
+        with contextlib.suppress(Exception):
+            persist_span.set_attribute("indexing.status", outcome_status)
+        ot_metrics.record_indexing_document_duration(
+            time.perf_counter() - t_index,
+            document_type=document_type,
+        )
+        ot_metrics.record_indexing_document_outcome(
+            document_type=document_type,
+            status=outcome_status,
+        )
+        persist_span_cm.__exit__(*sys.exc_info())
         return document
 
     async def _enqueue_ai_sort_if_enabled(self, document: Document) -> None:
diff --git a/surfsense_backend/app/observability/__init__.py b/surfsense_backend/app/observability/__init__.py
index dbf082561..a675b1dae 100644
--- a/surfsense_backend/app/observability/__init__.py
+++ b/surfsense_backend/app/observability/__init__.py
@@ -5,3 +5,5 @@ small wrapper around the optional ``opentelemetry`` instrumentation. The
 wrapper is a no-op when OTEL is not configured, so importing it from
 performance-critical paths is safe.
 """
+
+__all__ = ["bootstrap", "metrics", "otel"]
diff --git a/surfsense_backend/app/observability/bootstrap.py b/surfsense_backend/app/observability/bootstrap.py
new file mode 100644
index 000000000..70008d43d
--- /dev/null
+++ b/surfsense_backend/app/observability/bootstrap.py
@@ -0,0 +1,390 @@
+"""Programmatic OpenTelemetry bootstrap for SurfSense backend processes."""
+
+from __future__ import annotations
+
+import contextlib
+import logging
+import os
+import socket
+from importlib import metadata
+from typing import Any
+from urllib.parse import urlsplit, urlunsplit
+
+from app.observability import otel
+
+logger = logging.getLogger(__name__)
+
+_BOOL_TRUE = {"1", "true", "yes", "on"}
+
+_TRACES_INITIALIZED = False
+_METRICS_INITIALIZED = False
+_LOGS_INITIALIZED = False
+_FASTAPI_INSTRUMENTED = False
+_SQLALCHEMY_INSTRUMENTED = False
+_PSYCOPG_INSTRUMENTED = False
+_REDIS_INSTRUMENTED = False
+_HTTPX_INSTRUMENTED = False
+_CELERY_INSTRUMENTED = False
+
+_TRACER_PROVIDER: Any | None = None
+_METER_PROVIDER: Any | None = None
+
+
+def _env_truthy(name: str) -> bool:
+    return os.environ.get(name, "").strip().lower() in _BOOL_TRUE
+
+
+def is_otel_disabled() -> bool:
+    """Return true when either SurfSense or OTel's spec kill switch is set."""
+    return _env_truthy("SURFSENSE_DISABLE_OTEL") or _env_truthy("OTEL_SDK_DISABLED")
+
+
+def is_otel_configured() -> bool:
+    """Return true when this process should export OTel signals."""
+    return bool(
+        os.environ.get("OTEL_EXPORTER_OTLP_ENDPOINT")
+        or os.environ.get("OTEL_EXPORTER_OTLP_TRACES_ENDPOINT")
+        or os.environ.get("OTEL_EXPORTER_OTLP_METRICS_ENDPOINT")
+    )
+
+
+def _package_version() -> str:
+    with contextlib.suppress(metadata.PackageNotFoundError):
+        return metadata.version("surf-new-backend")
+    return "unknown"
+
+
+def _deployment_environment() -> str:
+    return os.environ.get("SURFSENSE_ENV", "dev")
+
+
+def _build_resource():
+    from opentelemetry.sdk.resources import Resource
+
+    deployment_environment = _deployment_environment()
+    return Resource.create(
+        {
+            "service.name": os.environ.get("OTEL_SERVICE_NAME", "surfsense-backend"),
+            "service.version": _package_version(),
+            "service.instance.id": socket.gethostname(),
+            "deployment.environment.name": deployment_environment,
+            # Compatibility alias for Grafana onboarding checks that still use
+            # the older semantic-convention key.
+            "deployment.environment": deployment_environment,
+        }
+    )
+
+
+def _otlp_protocol() -> str:
+    return os.environ.get("OTEL_EXPORTER_OTLP_PROTOCOL", "grpc").strip().lower()
+
+
+def _trace_exporter():
+    if _otlp_protocol() == "http/protobuf":
+        from opentelemetry.exporter.otlp.proto.http.trace_exporter import (
+            OTLPSpanExporter,
+        )
+
+        endpoint = os.environ.get("OTEL_EXPORTER_OTLP_TRACES_ENDPOINT")
+        return OTLPSpanExporter(endpoint=endpoint) if endpoint else OTLPSpanExporter()
+
+    from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter
+
+    endpoint = os.environ.get("OTEL_EXPORTER_OTLP_TRACES_ENDPOINT")
+    return OTLPSpanExporter(endpoint=endpoint) if endpoint else OTLPSpanExporter()
+
+
+def _metric_exporter():
+    if _otlp_protocol() == "http/protobuf":
+        from opentelemetry.exporter.otlp.proto.http.metric_exporter import (
+            OTLPMetricExporter,
+        )
+
+        endpoint = os.environ.get("OTEL_EXPORTER_OTLP_METRICS_ENDPOINT")
+        return (
+            OTLPMetricExporter(endpoint=endpoint) if endpoint else OTLPMetricExporter()
+        )
+
+    from opentelemetry.exporter.otlp.proto.grpc.metric_exporter import (
+        OTLPMetricExporter,
+    )
+
+    endpoint = os.environ.get("OTEL_EXPORTER_OTLP_METRICS_ENDPOINT")
+    return OTLPMetricExporter(endpoint=endpoint) if endpoint else OTLPMetricExporter()
+
+
+def _safe_instrument(name: str, instrument: Any) -> bool:
+    try:
+        instrument()
+    except Exception:
+        logger.warning("OpenTelemetry %s instrumentation failed", name, exc_info=True)
+        return False
+    return True
+
+
+def _url_without_query(raw_url: Any) -> str | None:
+    try:
+        parts = urlsplit(str(raw_url))
+    except Exception:
+        return None
+    if not parts.scheme or not parts.netloc:
+        return None
+    return urlunsplit((parts.scheme, parts.netloc, parts.path or "/", "", ""))
+
+
+def _sanitize_http_span_url(span: Any, request: Any) -> None:
+    sanitized = _url_without_query(getattr(request, "url", None))
+    if not sanitized:
+        return
+    with contextlib.suppress(Exception):
+        # Keep both old and current semantic-convention names safe. The
+        # collector can drop one later without needing application changes.
+        span.set_attribute("http.url", sanitized)
+        span.set_attribute("url.full", sanitized)
+
+
+def _instrument_fastapi(app: Any | None) -> None:
+    global _FASTAPI_INSTRUMENTED
+    if app is None or _FASTAPI_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.fastapi import FastAPIInstrumentor
+
+        FastAPIInstrumentor.instrument_app(
+            app,
+            excluded_urls="/health,/ready,/metrics",
+        )
+
+    if _safe_instrument("FastAPI", _run):
+        _FASTAPI_INSTRUMENTED = True
+
+
+def instrument_sqlalchemy_engine(engine: Any) -> None:
+    """Instrument a SQLAlchemy engine once per process."""
+    global _SQLALCHEMY_INSTRUMENTED
+    if _SQLALCHEMY_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.sqlalchemy import SQLAlchemyInstrumentor
+
+        SQLAlchemyInstrumentor().instrument(
+            engine=getattr(engine, "sync_engine", engine),
+            enable_commenter=True,
+        )
+
+    if _safe_instrument("SQLAlchemy", _run):
+        _SQLALCHEMY_INSTRUMENTED = True
+
+
+def _instrument_sqlalchemy() -> None:
+    if _SQLALCHEMY_INSTRUMENTED:
+        return
+    with contextlib.suppress(Exception):
+        from app.db import engine
+
+        instrument_sqlalchemy_engine(engine)
+
+
+def _instrument_psycopg() -> None:
+    global _PSYCOPG_INSTRUMENTED
+    if _PSYCOPG_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.psycopg import PsycopgInstrumentor
+
+        PsycopgInstrumentor().instrument()
+
+    if _safe_instrument("psycopg", _run):
+        _PSYCOPG_INSTRUMENTED = True
+
+
+def _instrument_redis() -> None:
+    global _REDIS_INSTRUMENTED
+    if _REDIS_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.redis import RedisInstrumentor
+
+        RedisInstrumentor().instrument()
+
+    if _safe_instrument("Redis", _run):
+        _REDIS_INSTRUMENTED = True
+
+
+def _instrument_httpx() -> None:
+    global _HTTPX_INSTRUMENTED
+    if _HTTPX_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.httpx import HTTPXClientInstrumentor
+
+        HTTPXClientInstrumentor().instrument(
+            request_hook=lambda span, request: _sanitize_http_span_url(span, request),
+            response_hook=lambda span, request, _response: _sanitize_http_span_url(
+                span, request
+            ),
+        )
+
+    if _safe_instrument("HTTPX", _run):
+        _HTTPX_INSTRUMENTED = True
+
+
+def instrument_celery() -> None:
+    """Instrument Celery producer/consumer hooks once per process."""
+    global _CELERY_INSTRUMENTED
+    if _CELERY_INSTRUMENTED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.celery import CeleryInstrumentor
+
+        CeleryInstrumentor().instrument()
+
+    if _safe_instrument("Celery", _run):
+        _CELERY_INSTRUMENTED = True
+
+
+def _instrument_libraries(app: Any | None) -> None:
+    _instrument_fastapi(app)
+    _instrument_sqlalchemy()
+    _instrument_psycopg()
+    _instrument_redis()
+    _instrument_httpx()
+    instrument_celery()
+
+
+def init_traces(app: Any | None = None) -> None:
+    """Install the tracer provider, span processor, exporter, and instrumentors."""
+    global _TRACER_PROVIDER, _TRACES_INITIALIZED
+    if _TRACES_INITIALIZED:
+        _instrument_fastapi(app)
+        return
+
+    from opentelemetry import trace
+    from opentelemetry.sdk.trace import TracerProvider
+    from opentelemetry.sdk.trace.export import BatchSpanProcessor
+    from opentelemetry.sdk.trace.sampling import ALWAYS_ON, ParentBased
+
+    provider = TracerProvider(
+        resource=_build_resource(),
+        sampler=ParentBased(ALWAYS_ON),
+    )
+    provider.add_span_processor(BatchSpanProcessor(_trace_exporter()))
+
+    try:
+        trace.set_tracer_provider(provider)
+    except Exception:
+        logger.warning(
+            "OpenTelemetry tracer provider was already set; reusing existing provider",
+            exc_info=True,
+        )
+        _TRACER_PROVIDER = trace.get_tracer_provider()
+    else:
+        _TRACER_PROVIDER = provider
+
+    _TRACES_INITIALIZED = True
+    otel.reload_for_tests()
+    _instrument_libraries(app)
+
+
+def init_metrics() -> None:
+    """Install the meter provider, metric reader, exporter, and custom gauges."""
+    global _METER_PROVIDER, _METRICS_INITIALIZED
+    if _METRICS_INITIALIZED:
+        return
+
+    from opentelemetry import metrics
+    from opentelemetry.sdk.metrics import MeterProvider
+    from opentelemetry.sdk.metrics.export import PeriodicExportingMetricReader
+
+    interval_ms = int(os.environ.get("OTEL_METRIC_EXPORT_INTERVAL", "60000"))
+    reader = PeriodicExportingMetricReader(
+        _metric_exporter(),
+        export_interval_millis=interval_ms,
+    )
+    provider = MeterProvider(metric_readers=[reader], resource=_build_resource())
+
+    try:
+        metrics.set_meter_provider(provider)
+    except Exception:
+        logger.warning(
+            "OpenTelemetry meter provider was already set; reusing existing provider",
+            exc_info=True,
+        )
+        _METER_PROVIDER = metrics.get_meter_provider()
+    else:
+        _METER_PROVIDER = provider
+
+    _METRICS_INITIALIZED = True
+    from app.observability.metrics import register_runtime_observables
+
+    register_runtime_observables()
+
+
+def init_logs() -> None:
+    """Enable trace/span correlation fields on stdlib LogRecords."""
+    global _LOGS_INITIALIZED
+    if _LOGS_INITIALIZED:
+        return
+
+    def _run() -> None:
+        from opentelemetry.instrumentation.logging import LoggingInstrumentor
+
+        # Required for stdlib LogRecords to receive otelTraceID/otelSpanID.
+        # logging.basicConfig is already installed by main.py, so this does not
+        # take over formatting in normal app startup.
+        LoggingInstrumentor().instrument(set_logging_format=True)
+
+    if _safe_instrument("logging", _run):
+        _LOGS_INITIALIZED = True
+
+
+def init_otel(
+    app: Any | None = None,
+    *,
+    traces: bool = True,
+    metrics: bool = True,
+    logs: bool = True,
+) -> None:
+    """Initialize OpenTelemetry for a FastAPI or Celery process."""
+    if is_otel_disabled() or not is_otel_configured():
+        otel.reload_for_tests()
+        return
+
+    if traces:
+        init_traces(app)
+    if metrics:
+        init_metrics()
+    if logs:
+        init_logs()
+
+
+def shutdown_otel(timeout_millis: int = 5000) -> None:
+    """Best-effort flush and shutdown for installed providers."""
+    for provider in (_TRACER_PROVIDER, _METER_PROVIDER):
+        if provider is None:
+            continue
+        with contextlib.suppress(Exception):
+            provider.force_flush(timeout_millis=timeout_millis)
+        with contextlib.suppress(Exception):
+            provider.shutdown()
+
+
+__all__ = [
+    "_BOOL_TRUE",
+    "_build_resource",
+    "init_logs",
+    "init_metrics",
+    "init_otel",
+    "init_traces",
+    "instrument_celery",
+    "instrument_sqlalchemy_engine",
+    "is_otel_configured",
+    "is_otel_disabled",
+    "shutdown_otel",
+]
diff --git a/surfsense_backend/app/observability/metrics.py b/surfsense_backend/app/observability/metrics.py
new file mode 100644
index 000000000..798a6e2f7
--- /dev/null
+++ b/surfsense_backend/app/observability/metrics.py
@@ -0,0 +1,684 @@
+"""Custom OpenTelemetry metrics for SurfSense.
+
+This module owns all SurfSense-specific metric instruments. Callers use the
+small helper functions below instead of constructing instruments directly so
+attribute names and cardinality stay consistent across the backend.
+"""
+
+from __future__ import annotations
+
+import contextlib
+import gc
+import logging
+from functools import lru_cache
+from importlib import metadata
+from typing import Any
+
+from app.observability import otel
+
+logger = logging.getLogger(__name__)
+
+_INSTRUMENTATION_NAME = "surfsense.platform"
+_OBSERVABLES_REGISTERED = False
+_ERROR_CATEGORY_UNKNOWN = "unknown"
+
+_ERROR_CATEGORY_HINTS: tuple[tuple[str, tuple[str, ...]], ...] = (
+    ("rate_limited", ("ratelimit", "rate_limit", "toomanyrequests", "429")),
+    ("auth_failed", ("authentication", "auth", "unauthorized", "forbidden")),
+    ("quota_exhausted", ("quota", "insufficient", "credit", "billing")),
+    ("timeout", ("timeout", "timedout", "deadline")),
+    ("network_failed", ("connection", "connect", "network", "dns", "socket")),
+    ("server_error", ("internalserver", "serviceunavailable", "badgateway", "gateway")),
+    ("lock_contention", ("lock", "busy", "contention", "alreadyrunning")),
+    ("unsupported_format", ("unsupported", "format", "filetype")),
+    ("provider_error", ("provider", "apierror", "apistatus", "badrequest")),
+)
+
+
+def _package_version() -> str:
+    with contextlib.suppress(metadata.PackageNotFoundError):
+        return metadata.version("surf-new-backend")
+    return "unknown"
+
+
+def _is_enabled() -> bool:
+    return otel.is_enabled()
+
+
+def _clean_attrs(attrs: dict[str, Any]) -> dict[str, str | int | float | bool]:
+    """Drop empty values and coerce low-cardinality attrs to OTel-safe scalars."""
+    cleaned: dict[str, str | int | float | bool] = {}
+    for key, value in attrs.items():
+        if value is None:
+            continue
+        if isinstance(value, bool | int | float):
+            cleaned[key] = value
+            continue
+        text = str(value)
+        if text:
+            cleaned[key] = text
+    return cleaned
+
+
+def _attrs_with_optional_error_category(
+    attrs: dict[str, Any], error_category: str | None
+) -> dict[str, Any]:
+    if error_category:
+        return {**attrs, "error.category": error_category}
+    return attrs
+
+
+def categorize_exception(exc: BaseException | None) -> str:
+    """Return a low-cardinality category for an exception."""
+    if exc is None:
+        return _ERROR_CATEGORY_UNKNOWN
+    haystack = " ".join(
+        cls.__name__.replace("-", "").replace("_", "").lower()
+        for cls in type(exc).__mro__
+    )
+    for category, hints in _ERROR_CATEGORY_HINTS:
+        if any(hint in haystack for hint in hints):
+            return category
+    return _ERROR_CATEGORY_UNKNOWN
+
+
+def parse_celery_task_label(task_name: str | None) -> str:
+    """Return the operation token from a Celery task name."""
+    if not task_name:
+        return "unknown"
+    operation = str(task_name).split("_", 1)[0].strip()
+    return operation or "unknown"
+
+
+def _record(callable_obj: Any, value: int | float, attrs: dict[str, Any]) -> None:
+    if not _is_enabled():
+        return
+    with contextlib.suppress(Exception):
+        callable_obj.record(value, _clean_attrs(attrs))
+
+
+def _add(callable_obj: Any, value: int, attrs: dict[str, Any]) -> None:
+    if not _is_enabled():
+        return
+    with contextlib.suppress(Exception):
+        callable_obj.add(value, _clean_attrs(attrs))
+
+
+@lru_cache(maxsize=1)
+def _get_meter():
+    from opentelemetry import metrics
+
+    return metrics.get_meter(_INSTRUMENTATION_NAME, _package_version())
+
+
+@lru_cache(maxsize=1)
+def _model_call_duration():
+    return _get_meter().create_histogram(
+        "surfsense.model.call.duration",
+        unit="ms",
+        description="Duration of SurfSense LLM model calls.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _model_token_usage():
+    return _get_meter().create_histogram(
+        "gen_ai.client.token.usage",
+        unit="{token}",
+        description="Token usage reported by GenAI model responses.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _tool_call_duration():
+    return _get_meter().create_histogram(
+        "surfsense.tool.call.duration",
+        unit="ms",
+        description="Duration of SurfSense agent tool calls.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _tool_call_errors():
+    return _get_meter().create_counter(
+        "surfsense.tool.call.errors",
+        description="Count of SurfSense agent tool call errors.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _kb_search_duration():
+    return _get_meter().create_histogram(
+        "surfsense.kb.search.duration",
+        unit="ms",
+        description="Duration of SurfSense knowledge-base search calls.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _compaction_runs():
+    return _get_meter().create_counter(
+        "surfsense.compaction.runs",
+        description="Count of SurfSense conversation compaction runs.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _permission_asks():
+    return _get_meter().create_counter(
+        "surfsense.permission.asks",
+        description="Count of SurfSense permission asks.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _interrupts():
+    return _get_meter().create_counter(
+        "surfsense.interrupt.raised",
+        description="Count of SurfSense interrupts raised.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _indexing_document_duration():
+    return _get_meter().create_histogram(
+        "surfsense.indexing.document.duration",
+        unit="s",
+        description="Duration of SurfSense document indexing.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _indexing_document_outcome():
+    return _get_meter().create_counter(
+        "surfsense.indexing.document.outcome",
+        description="Count of SurfSense document indexing outcomes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _connector_sync_duration():
+    return _get_meter().create_histogram(
+        "surfsense.connector.sync.duration",
+        unit="s",
+        description="Duration of SurfSense connector sync tasks.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _connector_sync_outcome():
+    return _get_meter().create_counter(
+        "surfsense.connector.sync.outcome",
+        description="Count of SurfSense connector sync outcomes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _auth_failures():
+    return _get_meter().create_counter(
+        "surfsense.auth.failures",
+        description="Count of SurfSense authentication failures.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _rate_limit_rejections():
+    return _get_meter().create_counter(
+        "surfsense.rate_limit.rejections",
+        description="Count of SurfSense rate-limit rejections.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _perf_elapsed():
+    return _get_meter().create_histogram(
+        "surfsense.perf.elapsed_ms",
+        unit="ms",
+        description="Elapsed time recorded by SurfSense perf timers.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _chat_request_duration():
+    return _get_meter().create_histogram(
+        "surfsense.chat.request.duration",
+        unit="ms",
+        description="Duration of SurfSense streamed chat requests.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _chat_request_outcome():
+    return _get_meter().create_counter(
+        "surfsense.chat.request.outcome",
+        description="Count of SurfSense chat request outcomes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _subagent_invoke_duration():
+    return _get_meter().create_histogram(
+        "surfsense.subagent.invoke.duration",
+        unit="ms",
+        description="Duration of SurfSense subagent invocations.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _subagent_invoke_outcome():
+    return _get_meter().create_counter(
+        "surfsense.subagent.invoke.outcome",
+        description="Count of SurfSense subagent invocation outcomes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _etl_extract_duration():
+    return _get_meter().create_histogram(
+        "surfsense.etl.extract.duration",
+        unit="s",
+        description="Duration of SurfSense ETL extraction.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _etl_extract_outcome():
+    return _get_meter().create_counter(
+        "surfsense.etl.extract.outcome",
+        description="Count of SurfSense ETL extraction outcomes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _celery_heartbeat_refreshes():
+    return _get_meter().create_counter(
+        "surfsense.celery.heartbeat.refreshes",
+        description="Count of SurfSense Celery heartbeat refreshes.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _celery_heartbeat_failures():
+    return _get_meter().create_counter(
+        "surfsense.celery.heartbeat.failures",
+        description="Count of SurfSense Celery heartbeat failures.",
+    )
+
+
+@lru_cache(maxsize=1)
+def _celery_queue_latency():
+    return _get_meter().create_histogram(
+        "surfsense.celery.queue.latency",
+        unit="s",
+        description="Time SurfSense Celery tasks spend waiting in queue.",
+    )
+
+
+def record_model_call_duration(
+    duration_ms: float, *, model: str | None, provider: str | None
+) -> None:
+    _record(
+        _model_call_duration(),
+        duration_ms,
+        {
+            "gen_ai.request.model": model,
+            "gen_ai.provider.name": provider,
+        },
+    )
+
+
+def record_model_token_usage(
+    *,
+    input_tokens: int | None,
+    output_tokens: int | None,
+    model: str | None,
+    provider: str | None,
+) -> None:
+    base = {
+        "gen_ai.request.model": model,
+        "gen_ai.provider.name": provider,
+        "gen_ai.operation.name": "chat",
+    }
+    if input_tokens is not None:
+        _record(
+            _model_token_usage(),
+            int(input_tokens),
+            {**base, "gen_ai.token.type": "input"},
+        )
+    if output_tokens is not None:
+        _record(
+            _model_token_usage(),
+            int(output_tokens),
+            {**base, "gen_ai.token.type": "output"},
+        )
+
+
+def record_tool_call_duration(duration_ms: float, *, tool_name: str) -> None:
+    _record(_tool_call_duration(), duration_ms, {"tool.name": tool_name})
+
+
+def record_tool_call_error(*, tool_name: str) -> None:
+    _add(_tool_call_errors(), 1, {"tool.name": tool_name})
+
+
+def record_kb_search_duration(
+    duration_ms: float, *, search_space_id: int | None, surface: str
+) -> None:
+    _record(
+        _kb_search_duration(),
+        duration_ms,
+        {"search_space.id": search_space_id, "search.surface": surface},
+    )
+
+
+def record_compaction_run(*, reason: str | None) -> None:
+    _add(_compaction_runs(), 1, {"compaction.reason": reason or "unknown"})
+
+
+def record_permission_ask(*, permission: str) -> None:
+    _add(_permission_asks(), 1, {"permission.permission": permission})
+
+
+def record_interrupt(*, interrupt_type: str) -> None:
+    _add(_interrupts(), 1, {"interrupt.type": interrupt_type})
+
+
+def record_indexing_document_duration(
+    duration_s: float, *, document_type: str | None
+) -> None:
+    _record(
+        _indexing_document_duration(),
+        duration_s,
+        {"document.type": document_type or "unknown"},
+    )
+
+
+def record_indexing_document_outcome(*, document_type: str | None, status: str) -> None:
+    _add(
+        _indexing_document_outcome(),
+        1,
+        {"document.type": document_type or "unknown", "status": status},
+    )
+
+
+def record_connector_sync_duration(
+    duration_s: float, *, connector_type: str | None
+) -> None:
+    _record(
+        _connector_sync_duration(),
+        duration_s,
+        {"connector.type": connector_type or "unknown"},
+    )
+
+
+def record_connector_sync_outcome(
+    *, connector_type: str | None, status: str, error_category: str | None = None
+) -> None:
+    _add(
+        _connector_sync_outcome(),
+        1,
+        _attrs_with_optional_error_category(
+            {"connector.type": connector_type or "unknown", "status": status},
+            error_category,
+        ),
+    )
+
+
+def record_auth_failure(*, reason: str) -> None:
+    _add(_auth_failures(), 1, {"reason": reason})
+
+
+def record_rate_limit_rejection(*, scope: str) -> None:
+    _add(_rate_limit_rejections(), 1, {"scope": scope})
+
+
+def record_perf_elapsed(duration_ms: float, *, label: str) -> None:
+    _record(_perf_elapsed(), duration_ms, {"label": label})
+
+
+def record_chat_request_duration(
+    duration_ms: float,
+    *,
+    flow: str,
+    outcome: str,
+    agent_mode: str | None = None,
+) -> None:
+    _record(
+        _chat_request_duration(),
+        duration_ms,
+        {"chat.flow": flow, "outcome": outcome, "agent.mode": agent_mode},
+    )
+
+
+def record_chat_request_outcome(
+    *,
+    flow: str,
+    outcome: str,
+    agent_mode: str | None = None,
+    error_category: str | None = None,
+) -> None:
+    _add(
+        _chat_request_outcome(),
+        1,
+        _attrs_with_optional_error_category(
+            {"chat.flow": flow, "outcome": outcome, "agent.mode": agent_mode},
+            error_category,
+        ),
+    )
+
+
+def record_subagent_invoke_duration(
+    duration_ms: float,
+    *,
+    subagent_type: str,
+    path: str | None,
+    outcome: str,
+) -> None:
+    _record(
+        _subagent_invoke_duration(),
+        duration_ms,
+        {
+            "subagent.type": subagent_type,
+            "subagent.path": path or "unknown",
+            "outcome": outcome,
+        },
+    )
+
+
+def record_subagent_invoke_outcome(
+    *,
+    subagent_type: str,
+    path: str | None,
+    outcome: str,
+) -> None:
+    _add(
+        _subagent_invoke_outcome(),
+        1,
+        {
+            "subagent.type": subagent_type,
+            "subagent.path": path or "unknown",
+            "outcome": outcome,
+        },
+    )
+
+
+def record_etl_extract_duration(
+    duration_s: float,
+    *,
+    etl_service: str | None,
+    content_type: str | None,
+    status: str,
+) -> None:
+    _record(
+        _etl_extract_duration(),
+        duration_s,
+        {
+            "etl.service": etl_service or "unknown",
+            "content.type": content_type or "unknown",
+            "status": status,
+        },
+    )
+
+
+def record_etl_extract_outcome(
+    *,
+    etl_service: str | None,
+    content_type: str | None,
+    status: str,
+    error_category: str | None = None,
+) -> None:
+    _add(
+        _etl_extract_outcome(),
+        1,
+        _attrs_with_optional_error_category(
+            {
+                "etl.service": etl_service or "unknown",
+                "content.type": content_type or "unknown",
+                "status": status,
+            },
+            error_category,
+        ),
+    )
+
+
+def record_celery_heartbeat_refresh(*, heartbeat_type: str) -> None:
+    _add(_celery_heartbeat_refreshes(), 1, {"heartbeat.type": heartbeat_type})
+
+
+def record_celery_heartbeat_failure(*, heartbeat_type: str) -> None:
+    _add(_celery_heartbeat_failures(), 1, {"heartbeat.type": heartbeat_type})
+
+
+def record_celery_queue_latency(
+    duration_s: float,
+    *,
+    task_name: str | None,
+    queue: str | None,
+    scheduled: bool,
+    operation: str | None,
+) -> None:
+    _record(
+        _celery_queue_latency(),
+        duration_s,
+        {
+            "task.name": task_name or "unknown",
+            "task.queue": queue or "unknown",
+            "task.scheduled": bool(scheduled),
+            "operation": operation or "unknown",
+        },
+    )
+
+
+def _runtime_snapshot_value(key: str, transform: Any = None) -> list[Any]:
+    from opentelemetry.metrics import Observation
+
+    from app.utils.perf import system_snapshot
+
+    snap = system_snapshot()
+    value = snap.get(key)
+    if not isinstance(value, int | float) or value < 0:
+        return []
+    if transform is not None:
+        value = transform(value)
+    return [Observation(value)]
+
+
+def _observe_gc_collections(_options: Any) -> list[Any]:
+    from opentelemetry.metrics import Observation
+
+    return [
+        Observation(count, {"generation": str(generation)})
+        for generation, count in enumerate(gc.get_count())
+    ]
+
+
+def register_runtime_observables() -> None:
+    """Register process/runtime observable gauges once per process."""
+    global _OBSERVABLES_REGISTERED
+    if _OBSERVABLES_REGISTERED or not _is_enabled():
+        return
+
+    meter = _get_meter()
+    try:
+        # Each callback returns the value for a single gauge except GC, whose
+        # callback carries a generation attribute.
+        meter.create_observable_gauge(
+            "process.runtime.cpython.memory.rss",
+            callbacks=[
+                lambda _options: _runtime_snapshot_value(
+                    "rss_mb", lambda v: float(v) * 1024 * 1024
+                )
+            ],
+            unit="By",
+            description="Resident set size of the SurfSense backend process.",
+        )
+        meter.create_observable_gauge(
+            "process.runtime.cpython.cpu.utilization",
+            callbacks=[
+                lambda _options: _runtime_snapshot_value(
+                    "cpu_percent", lambda v: float(v) / 100.0
+                )
+            ],
+            unit="1",
+            description="CPU utilization of the SurfSense backend process.",
+        )
+        meter.create_observable_gauge(
+            "process.runtime.cpython.threads",
+            callbacks=[lambda _options: _runtime_snapshot_value("threads")],
+            unit="{thread}",
+            description="Thread count of the SurfSense backend process.",
+        )
+        meter.create_observable_gauge(
+            "process.runtime.cpython.open_fds",
+            callbacks=[lambda _options: _runtime_snapshot_value("open_fds")],
+            unit="{fd}",
+            description="Open file descriptor count of the SurfSense backend process.",
+        )
+        meter.create_observable_gauge(
+            "python.asyncio.tasks",
+            callbacks=[lambda _options: _runtime_snapshot_value("asyncio_tasks")],
+            unit="{task}",
+            description="Live asyncio task count in the current event loop.",
+        )
+        meter.create_observable_gauge(
+            "process.runtime.cpython.gc.collections",
+            callbacks=[_observe_gc_collections],
+            unit="{collection}",
+            description="CPython GC counters by generation.",
+        )
+    except Exception:
+        logger.warning("Failed to register OTel runtime observables", exc_info=True)
+        return
+
+    _OBSERVABLES_REGISTERED = True
+
+
+__all__ = [
+    "categorize_exception",
+    "parse_celery_task_label",
+    "record_auth_failure",
+    "record_celery_heartbeat_failure",
+    "record_celery_heartbeat_refresh",
+    "record_celery_queue_latency",
+    "record_chat_request_duration",
+    "record_chat_request_outcome",
+    "record_compaction_run",
+    "record_connector_sync_duration",
+    "record_connector_sync_outcome",
+    "record_etl_extract_duration",
+    "record_etl_extract_outcome",
+    "record_indexing_document_duration",
+    "record_indexing_document_outcome",
+    "record_interrupt",
+    "record_kb_search_duration",
+    "record_model_call_duration",
+    "record_model_token_usage",
+    "record_perf_elapsed",
+    "record_permission_ask",
+    "record_rate_limit_rejection",
+    "record_subagent_invoke_duration",
+    "record_subagent_invoke_outcome",
+    "record_tool_call_duration",
+    "record_tool_call_error",
+    "register_runtime_observables",
+]
diff --git a/surfsense_backend/app/observability/otel.py b/surfsense_backend/app/observability/otel.py
index 6791ab499..ad2178f39 100644
--- a/surfsense_backend/app/observability/otel.py
+++ b/surfsense_backend/app/observability/otel.py
@@ -66,6 +66,8 @@ def _resolve_enabled() -> bool:
     # Honor an explicit kill-switch first.
     if os.environ.get("SURFSENSE_DISABLE_OTEL", "").lower() in {"1", "true", "yes"}:
         return False
+    if os.environ.get("OTEL_SDK_DISABLED", "").lower() in {"1", "true", "yes", "on"}:
+        return False
     # Treat a configured endpoint as the canonical "OTel is wired up" signal.
     if os.environ.get("OTEL_EXPORTER_OTLP_ENDPOINT"):
         return True
@@ -90,6 +92,48 @@ def is_enabled() -> bool:
     return _ENABLED
 
 
+def _clean_event_attrs(attrs: dict[str, Any]) -> dict[str, str | int | float | bool]:
+    """Coerce event attributes to OTel-safe scalar values."""
+    cleaned: dict[str, str | int | float | bool] = {}
+    for key, value in attrs.items():
+        if value is None:
+            continue
+        if isinstance(value, bool | int | float):
+            cleaned[key] = value
+            continue
+        text = str(value)
+        if text:
+            cleaned[key] = text
+    return cleaned
+
+
+def add_event(name: str, attributes: dict[str, Any] | None = None) -> None:
+    """Attach an event to the current active span.
+
+    This is intentionally no-op and exception-safe when OTel is disabled,
+    unavailable, or no span is currently recording.
+    """
+    if not _ENABLED or _ot_trace is None:
+        return
+    with contextlib.suppress(Exception):
+        sp = _ot_trace.get_current_span()
+        if sp is None or not sp.is_recording():
+            return
+        sp.add_event(
+            name,
+            attributes=_clean_event_attrs(attributes) if attributes else None,
+        )
+
+
+def record_error(span_obj: Any, exc: BaseException) -> None:
+    """Record an exception and mark a span as errored without re-raising."""
+    if not _ENABLED:
+        return
+    with contextlib.suppress(Exception):
+        span_obj.record_exception(exc)
+        span_obj.set_status(_OtStatus(_OtStatusCode.ERROR, str(exc)))
+
+
 def _get_tracer():
     if not _OTEL_AVAILABLE:
         return None
@@ -198,8 +242,11 @@ def model_call_span(
     attrs: dict[str, Any] = {}
     if model_id:
         attrs["model.id"] = model_id
+        attrs["gen_ai.request.model"] = model_id
     if provider:
         attrs["model.provider"] = provider
+        attrs["gen_ai.provider.name"] = provider
+    attrs["gen_ai.operation.name"] = "chat"
     if extra:
         attrs.update(extra)
     return span("model.call", attributes=attrs)
@@ -239,6 +286,152 @@ def kb_persist_span(
     return span("kb.persist", attributes=attrs)
 
 
+def chat_request_span(
+    *,
+    chat_id: int | None = None,
+    search_space_id: int | None = None,
+    flow: str | None = None,
+    request_id: str | None = None,
+    turn_id: str | None = None,
+    filesystem_mode: str | None = None,
+    client_platform: str | None = None,
+    agent_mode: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Parent span for a single streamed chat or resume turn."""
+    attrs: dict[str, Any] = {}
+    if chat_id is not None:
+        attrs["chat.id"] = int(chat_id)
+    if search_space_id is not None:
+        attrs["search_space.id"] = int(search_space_id)
+    if flow:
+        attrs["chat.flow"] = flow
+    if request_id:
+        attrs["request.id"] = request_id
+    if turn_id:
+        attrs["turn.id"] = turn_id
+    if filesystem_mode:
+        attrs["filesystem.mode"] = filesystem_mode
+    if client_platform:
+        attrs["client.platform"] = client_platform
+    if agent_mode:
+        attrs["agent.mode"] = agent_mode
+    if extra:
+        attrs.update(extra)
+    return span("chat.request", attributes=attrs)
+
+
+def subagent_invoke_span(
+    *,
+    subagent_type: str,
+    path: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around invoking a delegated subagent from the main agent."""
+    attrs: dict[str, Any] = {"subagent.type": subagent_type}
+    if path:
+        attrs["subagent.path"] = path
+    if extra:
+        attrs.update(extra)
+    return span("subagent.invoke", attributes=attrs)
+
+
+def connector_sync_span(
+    *,
+    connector_type: str | None,
+    extra: dict[str, Any] | None = None,
+):
+    """Business-level span around connector indexing task execution."""
+    attrs: dict[str, Any] = {"connector.type": connector_type or "unknown"}
+    if extra:
+        attrs.update(extra)
+    return span("connector.sync", attributes=attrs)
+
+
+def etl_extract_span(
+    *,
+    content_type: str | None = None,
+    file_extension: str | None = None,
+    processing_mode: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around top-level ETL extraction for a file."""
+    attrs: dict[str, Any] = {}
+    if content_type:
+        attrs["content.type"] = content_type
+    if file_extension:
+        attrs["file.extension"] = file_extension
+    if processing_mode:
+        attrs["processing.mode"] = processing_mode
+    if extra:
+        attrs.update(extra)
+    return span("etl.extract", attributes=attrs)
+
+
+def etl_parse_span(
+    *,
+    etl_service: str | None,
+    content_type: str | None = None,
+    file_extension: str | None = None,
+    processing_mode: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around a concrete ETL parser/backend call."""
+    attrs: dict[str, Any] = {"etl.service": etl_service or "unknown"}
+    if content_type:
+        attrs["content.type"] = content_type
+    if file_extension:
+        attrs["file.extension"] = file_extension
+    if processing_mode:
+        attrs["processing.mode"] = processing_mode
+    if extra:
+        attrs.update(extra)
+    return span("etl.parse", attributes=attrs)
+
+
+def etl_ocr_span(
+    *,
+    etl_service: str | None,
+    file_extension: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around OCR extraction from image content."""
+    attrs: dict[str, Any] = {"etl.service": etl_service or "unknown"}
+    if file_extension:
+        attrs["file.extension"] = file_extension
+    if extra:
+        attrs.update(extra)
+    return span("etl.ocr", attributes=attrs)
+
+
+def etl_picture_describe_span(
+    *,
+    image_count: int | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around describing embedded images in a document."""
+    attrs: dict[str, Any] = {}
+    if image_count is not None:
+        attrs["image.count"] = int(image_count)
+    if extra:
+        attrs.update(extra)
+    return span("etl.picture.describe", attributes=attrs)
+
+
+def etl_picture_ocr_span(
+    *,
+    file_extension: str | None = None,
+    extra: dict[str, Any] | None = None,
+):
+    """Span around per-image OCR during picture description."""
+    attrs: dict[str, Any] = {}
+    if file_extension:
+        attrs["file.extension"] = file_extension
+    if extra:
+        attrs.update(extra)
+    return span("etl.picture.ocr", attributes=attrs)
+
+
 def compaction_span(
     *,
     reason: str | None = None,
@@ -301,14 +494,24 @@ def reload_for_tests() -> bool:
 
 
 __all__ = [
+    "add_event",
+    "chat_request_span",
     "compaction_span",
+    "connector_sync_span",
+    "etl_extract_span",
+    "etl_ocr_span",
+    "etl_parse_span",
+    "etl_picture_describe_span",
+    "etl_picture_ocr_span",
     "interrupt_span",
     "is_enabled",
     "kb_persist_span",
     "kb_search_span",
     "model_call_span",
     "permission_asked_span",
+    "record_error",
     "reload_for_tests",
     "span",
+    "subagent_invoke_span",
     "tool_call_span",
 ]
diff --git a/surfsense_backend/app/retriever/chunks_hybrid_search.py b/surfsense_backend/app/retriever/chunks_hybrid_search.py
index e32c6c43d..47f7fe6b1 100644
--- a/surfsense_backend/app/retriever/chunks_hybrid_search.py
+++ b/surfsense_backend/app/retriever/chunks_hybrid_search.py
@@ -1,13 +1,51 @@
 import asyncio
 import contextlib
+import functools
 import time
 from datetime import datetime
 
+from app.observability import metrics as ot_metrics, otel as ot
 from app.utils.perf import get_perf_logger
 
 _MAX_FETCH_CHUNKS_PER_DOC = 20
 
 
+def _instrument_search(mode: str):
+    def _decorator(func):
+        @functools.wraps(func)
+        async def _wrapper(
+            self, query_text: str, top_k: int, search_space_id: int, *args, **kwargs
+        ):
+            t0 = time.perf_counter()
+            with ot.kb_search_span(
+                search_space_id=search_space_id,
+                query_chars=len(query_text),
+                extra={"search.surface": "chunks", "search.mode": mode},
+            ) as sp:
+                try:
+                    result = await func(
+                        self, query_text, top_k, search_space_id, *args, **kwargs
+                    )
+                except Exception:
+                    ot_metrics.record_kb_search_duration(
+                        (time.perf_counter() - t0) * 1000,
+                        search_space_id=search_space_id,
+                        surface="chunks",
+                    )
+                    raise
+                sp.set_attribute("result.count", len(result))
+                ot_metrics.record_kb_search_duration(
+                    (time.perf_counter() - t0) * 1000,
+                    search_space_id=search_space_id,
+                    surface="chunks",
+                )
+                return result
+
+        return _wrapper
+
+    return _decorator
+
+
 class ChucksHybridSearchRetriever:
     def __init__(self, db_session):
         """
@@ -18,6 +56,7 @@ class ChucksHybridSearchRetriever:
         """
         self.db_session = db_session
 
+    @_instrument_search("vector")
     async def vector_search(
         self,
         query_text: str,
@@ -88,6 +127,7 @@ class ChucksHybridSearchRetriever:
 
         return chunks
 
+    @_instrument_search("full_text")
     async def full_text_search(
         self,
         query_text: str,
@@ -153,6 +193,7 @@ class ChucksHybridSearchRetriever:
 
         return chunks
 
+    @_instrument_search("hybrid")
     async def hybrid_search(
         self,
         query_text: str,
diff --git a/surfsense_backend/app/retriever/documents_hybrid_search.py b/surfsense_backend/app/retriever/documents_hybrid_search.py
index 3eabdb004..9ce86d404 100644
--- a/surfsense_backend/app/retriever/documents_hybrid_search.py
+++ b/surfsense_backend/app/retriever/documents_hybrid_search.py
@@ -1,12 +1,50 @@
 import contextlib
+import functools
 import time
 from datetime import datetime
 
+from app.observability import metrics as ot_metrics, otel as ot
 from app.utils.perf import get_perf_logger
 
 _MAX_FETCH_CHUNKS_PER_DOC = 20
 
 
+def _instrument_search(mode: str):
+    def _decorator(func):
+        @functools.wraps(func)
+        async def _wrapper(
+            self, query_text: str, top_k: int, search_space_id: int, *args, **kwargs
+        ):
+            t0 = time.perf_counter()
+            with ot.kb_search_span(
+                search_space_id=search_space_id,
+                query_chars=len(query_text),
+                extra={"search.surface": "documents", "search.mode": mode},
+            ) as sp:
+                try:
+                    result = await func(
+                        self, query_text, top_k, search_space_id, *args, **kwargs
+                    )
+                except Exception:
+                    ot_metrics.record_kb_search_duration(
+                        (time.perf_counter() - t0) * 1000,
+                        search_space_id=search_space_id,
+                        surface="documents",
+                    )
+                    raise
+                sp.set_attribute("result.count", len(result))
+                ot_metrics.record_kb_search_duration(
+                    (time.perf_counter() - t0) * 1000,
+                    search_space_id=search_space_id,
+                    surface="documents",
+                )
+                return result
+
+        return _wrapper
+
+    return _decorator
+
+
 class DocumentHybridSearchRetriever:
     def __init__(self, db_session):
         """
@@ -17,6 +55,7 @@ class DocumentHybridSearchRetriever:
         """
         self.db_session = db_session
 
+    @_instrument_search("vector")
     async def vector_search(
         self,
         query_text: str,
@@ -81,6 +120,7 @@ class DocumentHybridSearchRetriever:
 
         return documents
 
+    @_instrument_search("full_text")
     async def full_text_search(
         self,
         query_text: str,
@@ -145,6 +185,7 @@ class DocumentHybridSearchRetriever:
 
         return documents
 
+    @_instrument_search("hybrid")
     async def hybrid_search(
         self,
         query_text: str,
diff --git a/surfsense_backend/app/routes/__init__.py b/surfsense_backend/app/routes/__init__.py
index ec4d1650f..8373f13c3 100644
--- a/surfsense_backend/app/routes/__init__.py
+++ b/surfsense_backend/app/routes/__init__.py
@@ -1,5 +1,7 @@
 from fastapi import APIRouter
 
+from app.automations.api import router as automations_router
+
 from .agent_action_log_route import router as agent_action_log_router
 from .agent_flags_route import router as agent_flags_router
 from .agent_permissions_route import router as agent_permissions_router
@@ -53,7 +55,6 @@ from .search_source_connectors_routes import router as search_source_connectors_
 from .search_spaces_routes import router as search_spaces_router
 from .slack_add_connector_route import router as slack_add_connector_router
 from .stripe_routes import router as stripe_router
-from .surfsense_docs_routes import router as surfsense_docs_router
 from .team_memory_routes import router as team_memory_router
 from .teams_add_connector_route import router as teams_add_connector_router
 from .video_presentations_routes import router as video_presentations_router
@@ -106,7 +107,6 @@ router.include_router(new_llm_config_router)  # LLM configs with prompt configur
 router.include_router(model_list_router)  # Dynamic model catalogue from OpenRouter
 router.include_router(logs_router)
 router.include_router(circleback_webhook_router)  # Circleback meeting webhooks
-router.include_router(surfsense_docs_router)  # Surfsense documentation for citations
 router.include_router(notifications_router)  # Notifications with Zero sync
 router.include_router(
     mcp_oauth_router
@@ -119,3 +119,4 @@ router.include_router(youtube_router)  # YouTube playlist resolution
 router.include_router(prompts_router)
 router.include_router(memory_router)  # User personal memory (memory.md style)
 router.include_router(team_memory_router)  # Search-space team memory
+router.include_router(automations_router)  # Automations CRUD + run history
diff --git a/surfsense_backend/app/routes/anonymous_chat_routes.py b/surfsense_backend/app/routes/anonymous_chat_routes.py
index f9d694e5a..eb952e684 100644
--- a/surfsense_backend/app/routes/anonymous_chat_routes.py
+++ b/surfsense_backend/app/routes/anonymous_chat_routes.py
@@ -351,10 +351,9 @@ async def stream_anonymous_chat(
     async def _generate():
         from langchain_core.messages import AIMessage, HumanMessage
 
-        from app.agents.new_chat.chat_deepagent import create_surfsense_deep_agent
+        from app.agents.new_chat.anonymous_agent import create_anonymous_chat_agent
         from app.agents.new_chat.checkpointer import get_checkpointer
         from app.db import shielded_async_session
-        from app.services.connector_service import ConnectorService
         from app.services.new_streaming_service import VercelStreamingService
         from app.services.token_tracking_service import start_turn
         from app.tasks.chat.stream_new_chat import StreamResult, _stream_agent_events
@@ -363,24 +362,23 @@ async def stream_anonymous_chat(
         streaming_service = VercelStreamingService()
 
         try:
-            async with shielded_async_session() as session:
-                connector_service = ConnectorService(session, search_space_id=None)
+            async with shielded_async_session():
                 checkpointer = await get_checkpointer()
 
                 anon_thread_id = f"anon-{session_id}-{request_id}"
 
-                agent = await create_surfsense_deep_agent(
+                # Load the optional uploaded document as read-only context.
+                anon_doc = await _load_anon_document(session_id)
+
+                # Minimal Q/A agent: web_search only (when enabled), no
+                # filesystem / persistence / subagents. The uploaded document
+                # is injected into the system prompt as read-only context.
+                agent = await create_anonymous_chat_agent(
                     llm=llm,
-                    search_space_id=0,
-                    db_session=session,
-                    connector_service=connector_service,
                     checkpointer=checkpointer,
-                    user_id=None,
-                    thread_id=None,
-                    agent_config=agent_config,
-                    enabled_tools=list(enabled_for_agent),
-                    disabled_tools=None,
                     anon_session_id=session_id,
+                    anon_doc=anon_doc,
+                    enable_web_search="web_search" in enabled_for_agent,
                 )
 
                 langchain_messages = []
@@ -396,7 +394,6 @@ async def stream_anonymous_chat(
 
                 input_state = {
                     "messages": langchain_messages,
-                    "search_space_id": 0,
                 }
 
                 langgraph_config = {
@@ -500,6 +497,38 @@ ANON_ALLOWED_EXTENSIONS = PLAINTEXT_EXTENSIONS | DIRECT_CONVERT_EXTENSIONS
 ANON_DOC_REDIS_PREFIX = "anon:doc:"
 
 
+async def _load_anon_document(session_id: str) -> dict[str, Any] | None:
+    """Read the anonymous session's uploaded document from Redis.
+
+    Returns ``{"title", "content"}`` for read-only injection into the agent's
+    system prompt, or ``None`` when nothing was uploaded for this session.
+    """
+    import json as _json
+
+    import redis.asyncio as aioredis
+
+    redis_client = aioredis.from_url(config.REDIS_APP_URL, decode_responses=True)
+    redis_key = f"{ANON_DOC_REDIS_PREFIX}{session_id}"
+    try:
+        data = await redis_client.get(redis_key)
+        if not data:
+            return None
+        payload = _json.loads(data)
+    except Exception as exc:  # pragma: no cover - defensive
+        logger.warning("Failed to load anonymous document from Redis: %s", exc)
+        return None
+    finally:
+        await redis_client.aclose()
+
+    content = str(payload.get("content") or "")
+    if not content:
+        return None
+    return {
+        "title": str(payload.get("filename") or "uploaded_document"),
+        "content": content,
+    }
+
+
 class AnonDocResponse(BaseModel):
     filename: str
     size_bytes: int
diff --git a/surfsense_backend/app/routes/folders_routes.py b/surfsense_backend/app/routes/folders_routes.py
index 2dc9bceac..dca55f31e 100644
--- a/surfsense_backend/app/routes/folders_routes.py
+++ b/surfsense_backend/app/routes/folders_routes.py
@@ -525,11 +525,8 @@ async def bulk_move_documents(
                     detail="Cannot move documents to a folder in a different search space",
                 )
 
-        await session.execute(
-            Document.__table__.update()
-            .where(Document.id.in_(request.document_ids))
-            .values(folder_id=request.folder_id)
-        )
+        for doc in documents:
+            doc.folder_id = request.folder_id
         await session.commit()
         return {"message": f"{len(request.document_ids)} documents moved successfully"}
 
diff --git a/surfsense_backend/app/routes/new_chat_routes.py b/surfsense_backend/app/routes/new_chat_routes.py
index 44fc1c392..63b7732a9 100644
--- a/surfsense_backend/app/routes/new_chat_routes.py
+++ b/surfsense_backend/app/routes/new_chat_routes.py
@@ -1771,6 +1771,11 @@ async def handle_new_chat(
             if request.mentioned_documents
             else None
         )
+        mentioned_connectors_payload = (
+            [doc.model_dump() for doc in request.mentioned_connectors]
+            if request.mentioned_connectors
+            else None
+        )
 
         return StreamingResponse(
             stream_new_chat(
@@ -1780,8 +1785,9 @@ async def handle_new_chat(
                 user_id=str(user.id),
                 llm_config_id=llm_config_id,
                 mentioned_document_ids=request.mentioned_document_ids,
-                mentioned_surfsense_doc_ids=request.mentioned_surfsense_doc_ids,
                 mentioned_folder_ids=request.mentioned_folder_ids,
+                mentioned_connector_ids=request.mentioned_connector_ids,
+                mentioned_connectors=mentioned_connectors_payload,
                 mentioned_documents=mentioned_documents_payload,
                 needs_history_bootstrap=thread.needs_history_bootstrap,
                 thread_visibility=thread.visibility,
@@ -2258,6 +2264,11 @@ async def regenerate_response(
                 if request.mentioned_documents
                 else None
             )
+            mentioned_connectors_payload = (
+                [doc.model_dump() for doc in request.mentioned_connectors]
+                if request.mentioned_connectors
+                else None
+            )
             try:
                 async for chunk in stream_new_chat(
                     user_query=str(user_query_to_use),
@@ -2266,8 +2277,9 @@ async def regenerate_response(
                     user_id=str(user.id),
                     llm_config_id=llm_config_id,
                     mentioned_document_ids=request.mentioned_document_ids,
-                    mentioned_surfsense_doc_ids=request.mentioned_surfsense_doc_ids,
                     mentioned_folder_ids=request.mentioned_folder_ids,
+                    mentioned_connector_ids=request.mentioned_connector_ids,
+                    mentioned_connectors=mentioned_connectors_payload,
                     mentioned_documents=mentioned_documents_payload,
                     checkpoint_id=target_checkpoint_id,
                     needs_history_bootstrap=thread.needs_history_bootstrap,
diff --git a/surfsense_backend/app/routes/rbac_routes.py b/surfsense_backend/app/routes/rbac_routes.py
index 38ae31269..3b91e456d 100644
--- a/surfsense_backend/app/routes/rbac_routes.py
+++ b/surfsense_backend/app/routes/rbac_routes.py
@@ -107,6 +107,12 @@ PERMISSION_DESCRIPTIONS = {
     "settings:view": "View search space settings",
     "settings:update": "Modify search space settings",
     "settings:delete": "Delete the entire search space",
+    # Automations
+    "automations:create": "Create automations from chat or JSON",
+    "automations:read": "View automations, their triggers, and run history",
+    "automations:update": "Edit automations and manage their triggers",
+    "automations:delete": "Remove automations from the search space",
+    "automations:execute": "Manually fire automations",
     # Full access
     "*": "Full access to all features and settings",
 }
diff --git a/surfsense_backend/app/routes/search_source_connectors_routes.py b/surfsense_backend/app/routes/search_source_connectors_routes.py
index 1338fe16b..3060fdf4a 100644
--- a/surfsense_backend/app/routes/search_source_connectors_routes.py
+++ b/surfsense_backend/app/routes/search_source_connectors_routes.py
@@ -43,6 +43,7 @@ from app.db import (
     async_session_maker,
     get_async_session,
 )
+from app.observability import metrics as ot_metrics, otel as ot
 from app.schemas import (
     GoogleDriveIndexRequest,
     MCPConnectorCreate,
@@ -104,7 +105,9 @@ async def _run_indexing_heartbeat_loop(notification_id: int) -> None:
             await asyncio.sleep(HEARTBEAT_REFRESH_INTERVAL)
             try:
                 get_heartbeat_redis_client().setex(key, HEARTBEAT_TTL_SECONDS, "alive")
+                ot_metrics.record_celery_heartbeat_refresh(heartbeat_type="connector")
             except Exception as e:
+                ot_metrics.record_celery_heartbeat_failure(heartbeat_type="connector")
                 logger.warning(
                     f"Failed to refresh Redis heartbeat for notification "
                     f"{notification_id}: {e}"
@@ -1243,6 +1246,12 @@ async def _persist_auth_expired(session: AsyncSession, connector_id: int) -> Non
     """Flag a connector as auth_expired so the frontend shows a re-auth prompt."""
     from sqlalchemy.orm.attributes import flag_modified
 
+    ot.add_event(
+        "connector.auth.expired",
+        {
+            "error.category": "auth_failed",
+        },
+    )
     try:
         result = await session.execute(
             select(SearchSourceConnector).where(
@@ -1302,6 +1311,13 @@ async def _run_indexing_with_notifications(
     try:
         connector_lock_acquired = acquire_connector_indexing_lock(connector_id)
         if not connector_lock_acquired:
+            ot.add_event(
+                "connector.sync.skipped",
+                {
+                    "skip.reason": "lock_contention",
+                    "error.category": "lock_contention",
+                },
+            )
             logger.info(
                 f"Skipping indexing for connector {connector_id} "
                 "(another worker already holds Redis connector lock)"
@@ -1338,7 +1354,13 @@ async def _run_indexing_with_notifications(
                     get_heartbeat_redis_client().setex(
                         heartbeat_key, HEARTBEAT_TTL_SECONDS, "0"
                     )
+                    ot_metrics.record_celery_heartbeat_refresh(
+                        heartbeat_type="connector"
+                    )
                 except Exception as e:
+                    ot_metrics.record_celery_heartbeat_failure(
+                        heartbeat_type="connector"
+                    )
                     logger.warning(f"Failed to set initial Redis heartbeat: {e}")
 
                 # Start a background coroutine that refreshes the
@@ -1366,6 +1388,15 @@ async def _run_indexing_with_notifications(
         ) -> None:
             """Callback to update notification during API retries (rate limits, etc.)"""
             nonlocal notification
+            ot.add_event(
+                "connector.retry.scheduled",
+                {
+                    "retry.reason": retry_reason,
+                    "retry.attempt": attempt,
+                    "retry.max": max_attempts,
+                    "retry.delay_ms": int(wait_seconds * 1000),
+                },
+            )
             if notification:
                 try:
                     await session.refresh(notification)
@@ -1397,8 +1428,14 @@ async def _run_indexing_with_notifications(
                     get_heartbeat_redis_client().setex(
                         heartbeat_key, HEARTBEAT_TTL_SECONDS, str(indexed_count)
                     )
+                    ot_metrics.record_celery_heartbeat_refresh(
+                        heartbeat_type="connector"
+                    )
                 except Exception as e:
                     # Don't let Redis errors break the indexing
+                    ot_metrics.record_celery_heartbeat_failure(
+                        heartbeat_type="connector"
+                    )
                     logger.warning(f"Failed to set Redis heartbeat: {e}")
 
                 try:
diff --git a/surfsense_backend/app/routes/surfsense_docs_routes.py b/surfsense_backend/app/routes/surfsense_docs_routes.py
deleted file mode 100644
index 0d5428dec..000000000
--- a/surfsense_backend/app/routes/surfsense_docs_routes.py
+++ /dev/null
@@ -1,172 +0,0 @@
-"""
-Routes for Surfsense documentation.
-
-These endpoints support the citation system for Surfsense docs,
-allowing the frontend to fetch document details when a user clicks
-on a [citation:doc-XXX] link.
-"""
-
-from fastapi import APIRouter, Depends, HTTPException
-from sqlalchemy import func, select
-from sqlalchemy.ext.asyncio import AsyncSession
-from sqlalchemy.orm import selectinload
-
-from app.db import (
-    SurfsenseDocsChunk,
-    SurfsenseDocsDocument,
-    User,
-    get_async_session,
-)
-from app.schemas import PaginatedResponse
-from app.schemas.surfsense_docs import (
-    SurfsenseDocsChunkRead,
-    SurfsenseDocsDocumentRead,
-    SurfsenseDocsDocumentWithChunksRead,
-)
-from app.users import current_active_user
-from app.utils.surfsense_docs import surfsense_docs_public_url
-
-router = APIRouter()
-
-
-@router.get(
-    "/surfsense-docs/by-chunk/{chunk_id}",
-    response_model=SurfsenseDocsDocumentWithChunksRead,
-)
-async def get_surfsense_doc_by_chunk_id(
-    chunk_id: int,
-    session: AsyncSession = Depends(get_async_session),
-    user: User = Depends(current_active_user),
-):
-    """
-    Retrieves a Surfsense documentation document based on a chunk ID.
-
-    This endpoint is used by the frontend to resolve [citation:doc-XXX] links.
-    """
-    try:
-        # Get the chunk
-        chunk_result = await session.execute(
-            select(SurfsenseDocsChunk).filter(SurfsenseDocsChunk.id == chunk_id)
-        )
-        chunk = chunk_result.scalars().first()
-
-        if not chunk:
-            raise HTTPException(
-                status_code=404,
-                detail=f"Surfsense docs chunk with id {chunk_id} not found",
-            )
-
-        # Get the associated document with all its chunks
-        document_result = await session.execute(
-            select(SurfsenseDocsDocument)
-            .options(selectinload(SurfsenseDocsDocument.chunks))
-            .filter(SurfsenseDocsDocument.id == chunk.document_id)
-        )
-        document = document_result.scalars().first()
-
-        if not document:
-            raise HTTPException(
-                status_code=404,
-                detail="Surfsense docs document not found",
-            )
-
-        # Sort chunks by ID
-        sorted_chunks = sorted(document.chunks, key=lambda x: x.id)
-
-        return SurfsenseDocsDocumentWithChunksRead(
-            id=document.id,
-            title=document.title,
-            source=document.source,
-            public_url=surfsense_docs_public_url(document.source),
-            content=document.content,
-            chunks=[
-                SurfsenseDocsChunkRead(id=c.id, content=c.content)
-                for c in sorted_chunks
-            ],
-        )
-    except HTTPException:
-        raise
-    except Exception as e:
-        raise HTTPException(
-            status_code=500,
-            detail=f"Failed to retrieve Surfsense documentation: {e!s}",
-        ) from e
-
-
-@router.get(
-    "/surfsense-docs",
-    response_model=PaginatedResponse[SurfsenseDocsDocumentRead],
-)
-async def list_surfsense_docs(
-    page: int = 0,
-    page_size: int = 50,
-    title: str | None = None,
-    session: AsyncSession = Depends(get_async_session),
-    user: User = Depends(current_active_user),
-):
-    """
-    List all Surfsense documentation documents.
-
-    Args:
-        page: Zero-based page index.
-        page_size: Number of items per page (default: 50).
-        title: Optional title filter (case-insensitive substring match).
-        session: Database session (injected).
-        user: Current authenticated user (injected).
-
-    Returns:
-        PaginatedResponse[SurfsenseDocsDocumentRead]: Paginated list of Surfsense docs.
-    """
-    try:
-        # Base query
-        query = select(SurfsenseDocsDocument)
-        count_query = select(func.count()).select_from(SurfsenseDocsDocument)
-
-        # Filter by title if provided
-        if title and title.strip():
-            query = query.filter(SurfsenseDocsDocument.title.ilike(f"%{title}%"))
-            count_query = count_query.filter(
-                SurfsenseDocsDocument.title.ilike(f"%{title}%")
-            )
-
-        # Get total count
-        total_result = await session.execute(count_query)
-        total = total_result.scalar() or 0
-
-        # Calculate offset
-        offset = page * page_size
-
-        # Get paginated results
-        result = await session.execute(
-            query.order_by(SurfsenseDocsDocument.title).offset(offset).limit(page_size)
-        )
-        docs = result.scalars().all()
-
-        # Convert to response format
-        items = [
-            SurfsenseDocsDocumentRead(
-                id=doc.id,
-                title=doc.title,
-                source=doc.source,
-                public_url=surfsense_docs_public_url(doc.source),
-                content=doc.content,
-                created_at=doc.created_at,
-                updated_at=doc.updated_at,
-            )
-            for doc in docs
-        ]
-
-        has_more = (offset + len(items)) < total
-
-        return PaginatedResponse(
-            items=items,
-            total=total,
-            page=page,
-            page_size=page_size,
-            has_more=has_more,
-        )
-    except Exception as e:
-        raise HTTPException(
-            status_code=500,
-            detail=f"Failed to list Surfsense documentation: {e!s}",
-        ) from e
diff --git a/surfsense_backend/app/schemas/new_chat.py b/surfsense_backend/app/schemas/new_chat.py
index c5315cce5..ab95f9b6b 100644
--- a/surfsense_backend/app/schemas/new_chat.py
+++ b/surfsense_backend/app/schemas/new_chat.py
@@ -203,13 +203,11 @@ class NewChatUserImagePart(BaseModel):
 class MentionedDocumentInfo(BaseModel):
     """Display metadata for a single ``@``-mention chip.
 
-    Carries either a knowledge-base document or a knowledge-base folder
-    (discriminated by ``kind``). The full triple
-    ``{id, title, document_type}`` is forwarded by the frontend mention
-    chip so the server can embed it in the persisted user message
-    ``ContentPart[]`` (single ``mentioned-documents`` part). The
-    history loader then renders the chips on reload without an extra
-    fetch — mirrors the pre-refactor frontend ``persistUserTurn`` shape.
+    Carries a knowledge-base document, knowledge-base folder, or
+    connected account (discriminated by ``kind``). Each kind uses its
+    real identity fields: docs carry ``document_type``, folders carry
+    only their folder id/title, and connectors carry ``connector_type``
+    plus account metadata.
 
     ``kind`` defaults to ``"doc"`` so legacy clients and persisted rows
     that predate folder mentions deserialise unchanged.
@@ -217,18 +215,18 @@ class MentionedDocumentInfo(BaseModel):
 
     id: int
     title: str = Field(..., min_length=1, max_length=500)
-    document_type: str = Field(..., min_length=1, max_length=100)
-    kind: Literal["doc", "folder"] = Field(
+    document_type: str | None = Field(default=None, min_length=1, max_length=100)
+    kind: Literal["doc", "folder", "connector"] = Field(
         default="doc",
         description=(
             "Discriminator for the chip's referent: ``doc`` is a "
             "knowledge-base ``Document`` row, ``folder`` is a "
-            "knowledge-base ``Folder`` row. Folders carry the sentinel "
-            "``document_type='FOLDER'`` to keep the frontend dedup key "
-            "``(kind:document_type:id)`` from colliding doc and folder "
-            "ids that happen to share an integer value."
+            "knowledge-base ``Folder`` row, and ``connector`` is a "
+            "concrete connected account."
         ),
     )
+    connector_type: str | None = Field(default=None, max_length=100)
+    account_name: str | None = Field(default=None, max_length=255)
 
 
 class NewChatRequest(BaseModel):
@@ -241,9 +239,6 @@ class NewChatRequest(BaseModel):
     mentioned_document_ids: list[int] | None = (
         None  # Optional document IDs mentioned with @ in the chat
     )
-    mentioned_surfsense_doc_ids: list[int] | None = (
-        None  # Optional SurfSense documentation IDs mentioned with @ in the chat
-    )
     mentioned_folder_ids: list[int] | None = Field(
         default=None,
         description=(
@@ -266,6 +261,18 @@ class NewChatRequest(BaseModel):
             "a mentioned-documents part."
         ),
     )
+    mentioned_connector_ids: list[int] | None = Field(
+        default=None,
+        description="Optional concrete connector account IDs the user @-mentioned.",
+    )
+    mentioned_connectors: list[MentionedDocumentInfo] | None = Field(
+        default=None,
+        description=(
+            "Display/context metadata for selected connector accounts. "
+            "Kept separate from document/folder id arrays so tools can "
+            "prefer the exact account the user selected."
+        ),
+    )
     disabled_tools: list[str] | None = (
         None  # Optional list of tool names the user has disabled from the UI
     )
@@ -316,7 +323,6 @@ class RegenerateRequest(BaseModel):
         None  # New user query (for edit). None = reload with same query
     )
     mentioned_document_ids: list[int] | None = None
-    mentioned_surfsense_doc_ids: list[int] | None = None
     mentioned_folder_ids: list[int] | None = Field(
         default=None,
         description=(
@@ -335,6 +341,8 @@ class RegenerateRequest(BaseModel):
             "new user message. None means no chip metadata."
         ),
     )
+    mentioned_connector_ids: list[int] | None = None
+    mentioned_connectors: list[MentionedDocumentInfo] | None = None
     disabled_tools: list[str] | None = None
     filesystem_mode: Literal["cloud", "desktop_local_folder"] = "cloud"
     client_platform: Literal["web", "desktop"] = "web"
diff --git a/surfsense_backend/app/schemas/surfsense_docs.py b/surfsense_backend/app/schemas/surfsense_docs.py
deleted file mode 100644
index 3adf25032..000000000
--- a/surfsense_backend/app/schemas/surfsense_docs.py
+++ /dev/null
@@ -1,43 +0,0 @@
-"""
-Schemas for Surfsense documentation.
-"""
-
-from datetime import datetime
-
-from pydantic import BaseModel, ConfigDict
-
-
-class SurfsenseDocsChunkRead(BaseModel):
-    """Schema for a Surfsense docs chunk."""
-
-    id: int
-    content: str
-
-    model_config = ConfigDict(from_attributes=True)
-
-
-class SurfsenseDocsDocumentRead(BaseModel):
-    """Schema for a Surfsense docs document (without chunks)."""
-
-    id: int
-    title: str
-    source: str
-    public_url: str
-    content: str
-    created_at: datetime | None = None
-    updated_at: datetime | None = None
-
-    model_config = ConfigDict(from_attributes=True)
-
-
-class SurfsenseDocsDocumentWithChunksRead(BaseModel):
-    """Schema for a Surfsense docs document with its chunks."""
-
-    id: int
-    title: str
-    source: str
-    public_url: str
-    content: str
-    chunks: list[SurfsenseDocsChunkRead]
-
-    model_config = ConfigDict(from_attributes=True)
diff --git a/surfsense_backend/app/services/composio_service.py b/surfsense_backend/app/services/composio_service.py
index d73a0d4ce..920f51d84 100644
--- a/surfsense_backend/app/services/composio_service.py
+++ b/surfsense_backend/app/services/composio_service.py
@@ -835,7 +835,14 @@ class ComposioService:
             )
 
             if not result.get("success"):
-                return [], None, result.get("error", "Unknown error")
+                # 4-tuple to match this function's declared return shape
+                # ``(messages, next_page_token, result_size_estimate, error)``.
+                # The error branch previously dropped the
+                # ``result_size_estimate`` slot, which crashed the caller's
+                # unpack with ``ValueError: not enough values to unpack
+                # (expected 4, got 3)`` and hid the real Composio error
+                # (e.g. expired connected account / invalid API key).
+                return [], None, None, result.get("error", "Unknown error")
 
             data = result.get("data", {})
 
diff --git a/surfsense_backend/app/services/gmail/kb_sync_service.py b/surfsense_backend/app/services/gmail/kb_sync_service.py
index 6ff5f3c2b..85e25fcb6 100644
--- a/surfsense_backend/app/services/gmail/kb_sync_service.py
+++ b/surfsense_backend/app/services/gmail/kb_sync_service.py
@@ -101,9 +101,7 @@ class GmailKBSyncService:
             else:
                 logger.warning("No LLM configured -- using fallback summary")
                 summary_content = f"Gmail Message: {subject}\n\n{indexable_content}"
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(indexable_content)
             now_str = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
diff --git a/surfsense_backend/app/services/google_calendar/kb_sync_service.py b/surfsense_backend/app/services/google_calendar/kb_sync_service.py
index 1f017ec4d..e59868aff 100644
--- a/surfsense_backend/app/services/google_calendar/kb_sync_service.py
+++ b/surfsense_backend/app/services/google_calendar/kb_sync_service.py
@@ -116,9 +116,7 @@ class GoogleCalendarKBSyncService:
                 summary_content = (
                     f"Google Calendar Event: {event_summary}\n\n{indexable_content}"
                 )
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(indexable_content)
             now_str = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
@@ -297,9 +295,7 @@ class GoogleCalendarKBSyncService:
                 summary_content = (
                     f"Google Calendar Event: {event_summary}\n\n{indexable_content}"
                 )
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(indexable_content)
             now_str = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
diff --git a/surfsense_backend/app/services/jira/kb_sync_service.py b/surfsense_backend/app/services/jira/kb_sync_service.py
index 5f6668377..37001a476 100644
--- a/surfsense_backend/app/services/jira/kb_sync_service.py
+++ b/surfsense_backend/app/services/jira/kb_sync_service.py
@@ -98,9 +98,7 @@ class JiraKBSyncService:
                 summary_content = (
                     f"Jira Issue {issue_identifier}: {issue_title}\n\n{issue_content}"
                 )
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(issue_content)
             now_str = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
@@ -214,9 +212,7 @@ class JiraKBSyncService:
                 summary_content = (
                     f"Jira Issue {issue_identifier}: {issue_title}\n\n{issue_content}"
                 )
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(issue_content)
 
diff --git a/surfsense_backend/app/services/llm_service.py b/surfsense_backend/app/services/llm_service.py
index fa97fb33a..aadb60cde 100644
--- a/surfsense_backend/app/services/llm_service.py
+++ b/surfsense_backend/app/services/llm_service.py
@@ -682,11 +682,7 @@ def get_planner_llm() -> ChatLiteLLM | None:
     from app.agents.new_chat.llm_config import create_chat_litellm_from_config
 
     planner_cfg = next(
-        (
-            cfg
-            for cfg in config.GLOBAL_LLM_CONFIGS
-            if cfg.get("is_planner") is True
-        ),
+        (cfg for cfg in config.GLOBAL_LLM_CONFIGS if cfg.get("is_planner") is True),
         None,
     )
     if not planner_cfg:
diff --git a/surfsense_backend/app/services/onedrive/kb_sync_service.py b/surfsense_backend/app/services/onedrive/kb_sync_service.py
index e1da3b4a1..731f081dd 100644
--- a/surfsense_backend/app/services/onedrive/kb_sync_service.py
+++ b/surfsense_backend/app/services/onedrive/kb_sync_service.py
@@ -96,9 +96,7 @@ class OneDriveKBSyncService:
             else:
                 logger.warning("No LLM configured — using fallback summary")
                 summary_content = f"OneDrive File: {file_name}\n\n{indexable_content}"
-                summary_embedding = await asyncio.to_thread(
-                    embed_text, summary_content
-                )
+                summary_embedding = await asyncio.to_thread(embed_text, summary_content)
 
             chunks = await create_document_chunks(indexable_content)
             now_str = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
diff --git a/surfsense_backend/app/session_events.py b/surfsense_backend/app/session_events.py
new file mode 100644
index 000000000..048df2b46
--- /dev/null
+++ b/surfsense_backend/app/session_events.py
@@ -0,0 +1,103 @@
+"""SQLAlchemy session event hooks — wired once at app startup.
+
+Detects document folder arrivals across every ORM commit and publishes
+``document.entered_folder`` events to the bus after the transaction is durable.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+
+from sqlalchemy import event
+from sqlalchemy.orm import Session, attributes
+
+from app.db import Document, DocumentStatus
+from app.event_bus.bus import EventBus, bus as default_bus
+from app.event_bus.events.document_entered_folder import payload_if_entered_folder
+
+logger = logging.getLogger(__name__)
+
+_PENDING_KEY = "_entered_folder_pending"
+
+
+def _after_flush(session: Session, flush_context: object) -> None:
+    """Collect folder-arrival candidates while attribute history is still available."""
+    pending: list[dict] = []
+
+    for obj in list(session.new) + list(session.dirty):
+        if not isinstance(obj, Document):
+            continue
+
+        history = attributes.get_history(obj, "folder_id")
+        if not history.added:
+            continue
+
+        new_folder_id = history.added[0]
+        previous_folder_id = history.deleted[0] if history.deleted else None
+
+        result = payload_if_entered_folder(
+            document_id=obj.id,
+            search_space_id=obj.search_space_id,
+            new_folder_id=new_folder_id,
+            previous_folder_id=previous_folder_id,
+            folder_id_changed=True,
+            status_state=DocumentStatus.get_state(obj.status) or "",
+            document_type=obj.document_type.value if obj.document_type else "",
+            title=obj.title or "",
+            connector_id=obj.connector_id,
+            created_by_id=str(obj.created_by_id) if obj.created_by_id else None,
+        )
+        if result is not None:
+            pending.append(result)
+
+    setattr(session, _PENDING_KEY, pending)
+
+
+def _after_commit(session: Session) -> None:
+    """Publish collected events now that the transaction is durable."""
+    pending: list[dict] = getattr(session, _PENDING_KEY, [])
+    if not pending:
+        return
+    setattr(session, _PENDING_KEY, [])
+
+    try:
+        loop = asyncio.get_running_loop()
+    except RuntimeError:
+        logger.warning("No running event loop — skipping %d event(s)", len(pending))
+        return
+
+    tasks = [
+        loop.create_task(
+            default_bus.publish(
+                item["event_type"],
+                item["payload"],
+                search_space_id=item["search_space_id"],
+            )
+        )
+        for item in pending
+    ]
+    for task in tasks:
+        task.add_done_callback(
+            lambda t: (
+                logger.error("event publish failed: %s", t.exception())
+                if not t.cancelled() and t.exception()
+                else None
+            )
+        )
+
+
+def _after_rollback(session: Session) -> None:
+    """Discard any pending events — the transaction did not commit."""
+    setattr(session, _PENDING_KEY, [])
+
+
+def register_session_hooks(bus: EventBus = default_bus) -> None:
+    """Register document folder-arrival hooks on the SQLAlchemy Session class.
+
+    Call once at application startup (e.g. in ``app.app`` lifespan). Idempotent
+    — SQLAlchemy deduplicates identical listener registrations.
+    """
+    event.listen(Session, "after_flush", _after_flush)
+    event.listen(Session, "after_commit", _after_commit)
+    event.listen(Session, "after_rollback", _after_rollback)
diff --git a/surfsense_backend/app/tasks/celery_tasks/__init__.py b/surfsense_backend/app/tasks/celery_tasks/__init__.py
index b23359f36..6ea7a2e68 100644
--- a/surfsense_backend/app/tasks/celery_tasks/__init__.py
+++ b/surfsense_backend/app/tasks/celery_tasks/__init__.py
@@ -37,6 +37,10 @@ def get_celery_session_maker() -> async_sessionmaker:
             poolclass=NullPool,
             echo=False,
         )
+        with contextlib.suppress(Exception):
+            from app.observability.bootstrap import instrument_sqlalchemy_engine
+
+            instrument_sqlalchemy_engine(_celery_engine)
         _celery_session_maker = async_sessionmaker(
             _celery_engine, expire_on_commit=False
         )
diff --git a/surfsense_backend/app/tasks/celery_tasks/connector_tasks.py b/surfsense_backend/app/tasks/celery_tasks/connector_tasks.py
index 08d96cfa0..50f757473 100644
--- a/surfsense_backend/app/tasks/celery_tasks/connector_tasks.py
+++ b/surfsense_backend/app/tasks/celery_tasks/connector_tasks.py
@@ -1,14 +1,52 @@
 """Celery tasks for connector indexing."""
 
 import logging
+import time
 import traceback
+from collections.abc import Awaitable, Callable
+
+from celery import current_task
 
 from app.celery_app import celery_app
-from app.tasks.celery_tasks import get_celery_session_maker, run_async_celery_task
+from app.observability import metrics as ot_metrics, otel as ot
+from app.tasks.celery_tasks import (
+    get_celery_session_maker,
+    run_async_celery_task as _run_async_celery_task,
+)
 
 logger = logging.getLogger(__name__)
 
 
+def run_async_celery_task[T](coro_factory: Callable[[], Awaitable[T]]) -> T:
+    """Run connector sync work and record aggregate connector metrics."""
+    task_name = getattr(current_task, "name", None) or "unknown"
+    t0 = time.perf_counter()
+    status = "failed"
+    error_category: str | None = None
+    try:
+        with ot.connector_sync_span(connector_type=task_name) as sp:
+            try:
+                result = _run_async_celery_task(coro_factory)
+                sp.set_attribute("connector.status", "success")
+            except Exception as exc:
+                error_category = ot_metrics.categorize_exception(exc)
+                sp.set_attribute("connector.error.category", error_category)
+                raise
+        status = "success"
+        return result
+    finally:
+        elapsed_s = time.perf_counter() - t0
+        ot_metrics.record_connector_sync_duration(
+            elapsed_s,
+            connector_type=task_name,
+        )
+        ot_metrics.record_connector_sync_outcome(
+            connector_type=task_name,
+            status=status,
+            error_category=error_category,
+        )
+
+
 def _handle_greenlet_error(e: Exception, task_name: str, connector_id: int) -> None:
     """
     Handle greenlet_spawn errors with detailed logging for debugging.
diff --git a/surfsense_backend/app/tasks/celery_tasks/document_tasks.py b/surfsense_backend/app/tasks/celery_tasks/document_tasks.py
index c78e376bd..1f9609968 100644
--- a/surfsense_backend/app/tasks/celery_tasks/document_tasks.py
+++ b/surfsense_backend/app/tasks/celery_tasks/document_tasks.py
@@ -9,6 +9,7 @@ from uuid import UUID
 
 from app.celery_app import celery_app
 from app.config import config
+from app.observability import metrics as ot_metrics
 from app.services.notification_service import NotificationService
 from app.services.task_logging_service import TaskLoggingService
 from app.tasks.celery_tasks import get_celery_session_maker, run_async_celery_task
@@ -59,7 +60,9 @@ def _start_heartbeat(notification_id: int) -> None:
     try:
         key = _get_heartbeat_key(notification_id)
         _get_doc_heartbeat_redis().setex(key, HEARTBEAT_TTL_SECONDS, "started")
+        ot_metrics.record_celery_heartbeat_refresh(heartbeat_type="document")
     except Exception as e:
+        ot_metrics.record_celery_heartbeat_failure(heartbeat_type="document")
         logger.warning(
             f"Failed to set initial heartbeat for notification {notification_id}: {e}"
         )
@@ -87,7 +90,9 @@ async def _run_heartbeat_loop(notification_id: int):
             await asyncio.sleep(HEARTBEAT_REFRESH_INTERVAL)
             try:
                 _get_doc_heartbeat_redis().setex(key, HEARTBEAT_TTL_SECONDS, "alive")
+                ot_metrics.record_celery_heartbeat_refresh(heartbeat_type="document")
             except Exception as e:
+                ot_metrics.record_celery_heartbeat_failure(heartbeat_type="document")
                 logger.warning(
                     f"Failed to refresh heartbeat for notification {notification_id}: {e}"
                 )
diff --git a/surfsense_backend/app/tasks/chat/persistence.py b/surfsense_backend/app/tasks/chat/persistence.py
index 37be50705..9d100c13c 100644
--- a/surfsense_backend/app/tasks/chat/persistence.py
+++ b/surfsense_backend/app/tasks/chat/persistence.py
@@ -109,7 +109,7 @@ def _build_user_content(
         [{"type": "text", "text": "..."},
          {"type": "image", "image": "data:..."},
          {"type": "mentioned-documents", "documents": [{"id": int,
-            "title": str, "document_type": str, "kind": "doc" | "folder"},
+            "title": str, "kind": "doc" | "folder" | "connector", ...},
             ...]}]
 
     The companion reader is
@@ -117,8 +117,8 @@ def _build_user_content(
     which expects exactly this shape — keep them in sync.
 
     ``mentioned_documents``: optional list of mention chip dicts. Each
-    dict may include a ``kind`` discriminator (``"doc"`` or ``"folder"``)
-    so the persisted ContentPart round-trips folder chips on reload.
+    dict may include a ``kind`` discriminator so the persisted
+    ContentPart round-trips folder and connector chips on reload.
     When ``kind`` is missing we default to ``"doc"`` so legacy clients
     that haven't migrated to the union schema still persist correctly.
     """
@@ -134,18 +134,27 @@ def _build_user_content(
             doc_id = doc.get("id")
             title = doc.get("title")
             document_type = doc.get("document_type")
-            if doc_id is None or title is None or document_type is None:
-                continue
             kind_raw = doc.get("kind", "doc")
-            kind = kind_raw if kind_raw in ("doc", "folder") else "doc"
-            normalized.append(
-                {
-                    "id": doc_id,
-                    "title": str(title),
-                    "document_type": str(document_type),
-                    "kind": kind,
-                }
-            )
+            kind = kind_raw if kind_raw in ("doc", "folder", "connector") else "doc"
+            if doc_id is None or title is None:
+                continue
+            if kind == "doc" and document_type is None:
+                continue
+            item = {
+                "id": doc_id,
+                "title": str(title),
+                "kind": kind,
+            }
+            if document_type is not None:
+                item["document_type"] = str(document_type)
+            if kind == "connector":
+                connector_type = doc.get("connector_type")
+                if connector_type is None:
+                    continue
+                account_name = doc.get("account_name") or title
+                item["connector_type"] = str(connector_type)
+                item["account_name"] = str(account_name)
+            normalized.append(item)
         if normalized:
             parts.append({"type": "mentioned-documents", "documents": normalized})
     return parts
diff --git a/surfsense_backend/app/tasks/chat/stream_new_chat.py b/surfsense_backend/app/tasks/chat/stream_new_chat.py
index c9faa1691..e150cf494 100644
--- a/surfsense_backend/app/tasks/chat/stream_new_chat.py
+++ b/surfsense_backend/app/tasks/chat/stream_new_chat.py
@@ -14,6 +14,7 @@ import contextlib
 import gc
 import json
 import logging
+import sys
 import time
 from collections.abc import AsyncGenerator
 from dataclasses import dataclass, field
@@ -24,7 +25,6 @@ from uuid import UUID
 import anyio
 from langchain_core.messages import HumanMessage
 from sqlalchemy.future import select
-from sqlalchemy.orm import selectinload
 
 from app.agents.multi_agent_chat import create_multi_agent_chat_deep_agent
 from app.agents.new_chat.chat_deepagent import create_surfsense_deep_agent
@@ -54,10 +54,10 @@ from app.db import (
     NewChatThread,
     Report,
     SearchSourceConnectorType,
-    SurfsenseDocsDocument,
     async_session_maker,
     shielded_async_session,
 )
+from app.observability import metrics as ot_metrics, otel as ot
 from app.prompts import TITLE_GENERATION_PROMPT
 from app.services.auto_model_pin_service import (
     mark_runtime_cooldown,
@@ -75,7 +75,6 @@ from app.tasks.chat.streaming.helpers.interrupt_inspector import (
 )
 from app.utils.content_utils import bootstrap_history_from_db
 from app.utils.perf import get_perf_logger, log_system_snapshot, trim_native_heap
-from app.utils.surfsense_docs import surfsense_docs_public_url
 from app.utils.user_message_multimodal import build_human_message_content
 
 _background_tasks: set[asyncio.Task] = set()
@@ -196,58 +195,6 @@ def _extract_chunk_parts(chunk: Any) -> dict[str, Any]:
     return out
 
 
-def format_mentioned_surfsense_docs_as_context(
-    documents: list[SurfsenseDocsDocument],
-) -> str:
-    """Format mentioned SurfSense documentation as context for the agent."""
-    if not documents:
-        return ""
-
-    context_parts = ["<mentioned_surfsense_docs>"]
-    context_parts.append(
-        "The user has explicitly mentioned the following SurfSense documentation pages. "
-        "These are official documentation about how to use SurfSense and should be used to answer questions about the application. "
-        "Use [citation:CHUNK_ID] format for citations (e.g., [citation:doc-123])."
-    )
-
-    for doc in documents:
-        public_url = surfsense_docs_public_url(doc.source)
-        metadata_json = json.dumps(
-            {"source": doc.source, "public_url": public_url}, ensure_ascii=False
-        )
-
-        context_parts.append("<document>")
-        context_parts.append("<document_metadata>")
-        context_parts.append(f"  <document_id>doc-{doc.id}</document_id>")
-        context_parts.append("  <document_type>SURFSENSE_DOCS</document_type>")
-        context_parts.append(f"  <title><![CDATA[{doc.title}]]></title>")
-        context_parts.append(f"  <url><![CDATA[{public_url}]]></url>")
-        context_parts.append(
-            f"  <metadata_json><![CDATA[{metadata_json}]]></metadata_json>"
-        )
-        context_parts.append("</document_metadata>")
-        context_parts.append("")
-        context_parts.append("<document_content>")
-
-        if hasattr(doc, "chunks") and doc.chunks:
-            for chunk in doc.chunks:
-                context_parts.append(
-                    f"  <chunk id='doc-{chunk.id}'><![CDATA[{chunk.content}]]></chunk>"
-                )
-        else:
-            context_parts.append(
-                f"  <chunk id='doc-0'><![CDATA[{doc.content}]]></chunk>"
-            )
-
-        context_parts.append("</document_content>")
-        context_parts.append("</document>")
-        context_parts.append("")
-
-    context_parts.append("</mentioned_surfsense_docs>")
-
-    return "\n".join(context_parts)
-
-
 def extract_todos_from_deepagents(command_output) -> dict:
     """
     Extract todos from deepagents' TodoListMiddleware Command output.
@@ -835,8 +782,9 @@ async def stream_new_chat(
     user_id: str | None = None,
     llm_config_id: int = -1,
     mentioned_document_ids: list[int] | None = None,
-    mentioned_surfsense_doc_ids: list[int] | None = None,
     mentioned_folder_ids: list[int] | None = None,
+    mentioned_connector_ids: list[int] | None = None,
+    mentioned_connectors: list[dict[str, Any]] | None = None,
     mentioned_documents: list[dict[str, Any]] | None = None,
     checkpoint_id: str | None = None,
     needs_history_bootstrap: bool = False,
@@ -865,7 +813,6 @@ async def stream_new_chat(
         llm_config_id: The LLM configuration ID (default: -1 for first global config)
         needs_history_bootstrap: If True, load message history from DB (for cloned chats)
         mentioned_document_ids: Optional list of document IDs mentioned with @ in the chat
-        mentioned_surfsense_doc_ids: Optional list of SurfSense doc IDs mentioned with @ in the chat
         mentioned_folder_ids: Optional list of knowledge-base folder IDs mentioned with @ (cloud mode)
         checkpoint_id: Optional checkpoint ID to rewind/fork from (for edit/reload operations)
 
@@ -883,6 +830,20 @@ async def stream_new_chat(
     stream_result.turn_id = f"{chat_id}:{int(time.time() * 1000)}"
     stream_result.filesystem_mode = fs_mode
     stream_result.client_platform = fs_platform
+    chat_agent_mode = "unknown"
+    chat_outcome = "success"
+    chat_error_category: str | None = None
+    chat_span_cm = ot.chat_request_span(
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        flow=flow,
+        request_id=request_id,
+        turn_id=stream_result.turn_id,
+        filesystem_mode=fs_mode,
+        client_platform=fs_platform,
+        agent_mode=chat_agent_mode,
+    )
+    chat_span = chat_span_cm.__enter__()
     _log_file_contract("turn_start", stream_result)
     _perf_log.info(
         "[stream_new_chat] filesystem_mode=%s client_platform=%s",
@@ -971,6 +932,14 @@ async def stream_new_chat(
                     requires_image_input=_requires_image_input,
                 )
             ).resolved_llm_config_id
+            ot.add_event(
+                "model.pin.resolved",
+                {
+                    "pin.requested_id": requested_llm_config_id,
+                    "pin.resolved_id": llm_config_id,
+                    "pin.requires_image_input": _requires_image_input,
+                },
+            )
         except ValueError as pin_error:
             # Auto-pin's "no vision-capable cfg" path raises a ValueError
             # whose message we map to the friendly image-input SSE error
@@ -987,6 +956,13 @@ async def stream_new_chat(
                 if error_code == "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT"
                 else "server_error"
             )
+            if error_code == "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT":
+                ot.add_event(
+                    "quota.denied",
+                    {
+                        "quota.code": error_code,
+                    },
+                )
             yield _emit_stream_error(
                 message=str(pin_error),
                 error_kind=error_kind,
@@ -1041,6 +1017,12 @@ async def stream_new_chat(
                 model_label = (
                     agent_config.config_name or agent_config.model_name or "model"
                 )
+                ot.add_event(
+                    "quota.denied",
+                    {
+                        "quota.code": "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT",
+                    },
+                )
                 yield _emit_stream_error(
                     message=(
                         f"The selected model ({model_label}) does not support "
@@ -1084,6 +1066,12 @@ async def stream_new_chat(
                 )
             _premium_reserved_micros = reserve_amount_micros
             if not quota_result.allowed:
+                ot.add_event(
+                    "quota.denied",
+                    {
+                        "quota.code": "PREMIUM_QUOTA_EXHAUSTED",
+                    },
+                )
                 if requested_llm_config_id == 0:
                     try:
                         llm_config_id = (
@@ -1097,6 +1085,13 @@ async def stream_new_chat(
                                 requires_image_input=_requires_image_input,
                             )
                         ).resolved_llm_config_id
+                        ot.add_event(
+                            "model.repin",
+                            {
+                                "repin.reason": "premium_quota_exhausted",
+                                "repin.to_config_id": llm_config_id,
+                            },
+                        )
                     except ValueError as pin_error:
                         yield _emit_stream_error(
                             message=str(pin_error),
@@ -1189,6 +1184,9 @@ async def stream_new_chat(
         from app.config import config as _app_config
 
         use_multi_agent = bool(_app_config.MULTI_AGENT_CHAT_ENABLED)
+        chat_agent_mode = "multi" if use_multi_agent else "single"
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("agent.mode", chat_agent_mode)
 
         _t0 = time.perf_counter()
         agent_factory = (
@@ -1240,19 +1238,7 @@ async def stream_new_chat(
 
         # Mentioned KB documents are now handled by KnowledgeBaseSearchMiddleware
         # which merges them into the scoped filesystem with full document
-        # structure. Only SurfSense docs and report context are inlined here.
-
-        # Fetch mentioned SurfSense docs if any
-        mentioned_surfsense_docs: list[SurfsenseDocsDocument] = []
-        if mentioned_surfsense_doc_ids:
-            result = await session.execute(
-                select(SurfsenseDocsDocument)
-                .options(selectinload(SurfsenseDocsDocument.chunks))
-                .filter(
-                    SurfsenseDocsDocument.id.in_(mentioned_surfsense_doc_ids),
-                )
-            )
-            mentioned_surfsense_docs = list(result.scalars().all())
+        # structure. Only report context is inlined here.
 
         # Fetch the most recent report(s) in this thread so the LLM can
         # easily find report_id for versioning decisions, instead of
@@ -1286,10 +1272,7 @@ async def stream_new_chat(
         agent_user_query = user_query
         accepted_folder_ids: list[int] = []
         if fs_mode == FilesystemMode.CLOUD.value and (
-            mentioned_document_ids
-            or mentioned_surfsense_doc_ids
-            or mentioned_folder_ids
-            or mentioned_documents
+            mentioned_document_ids or mentioned_folder_ids or mentioned_documents
         ):
             from app.schemas.new_chat import (
                 MentionedDocumentInfo as _MentionedDocumentInfo,
@@ -1315,22 +1298,43 @@ async def stream_new_chat(
                 search_space_id=search_space_id,
                 mentioned_documents=chip_objs,
                 mentioned_document_ids=mentioned_document_ids,
-                mentioned_surfsense_doc_ids=mentioned_surfsense_doc_ids,
                 mentioned_folder_ids=mentioned_folder_ids,
             )
             agent_user_query = substitute_in_text(user_query, resolved.token_to_path)
             accepted_folder_ids = resolved.mentioned_folder_ids
 
-        # Format the user query with context (SurfSense docs + reports only).
+        # Format the user query with context (reports only).
         # Uses ``agent_user_query`` so the LLM sees backtick-wrapped paths
         # instead of bare ``@title`` tokens.
         final_query = agent_user_query
         context_parts = []
 
-        if mentioned_surfsense_docs:
-            context_parts.append(
-                format_mentioned_surfsense_docs_as_context(mentioned_surfsense_docs)
-            )
+        if mentioned_connectors:
+            connector_lines = []
+            for connector in mentioned_connectors:
+                if not isinstance(connector, dict):
+                    continue
+                connector_id = connector.get("id")
+                connector_type = connector.get("connector_type") or connector.get(
+                    "document_type"
+                )
+                account_name = connector.get("account_name") or connector.get("title")
+                if connector_id is None or connector_type is None:
+                    continue
+                connector_lines.append(
+                    f'  - connector_id={connector_id}, connector_type="{connector_type}", '
+                    f'account_name="{account_name or ""}"'
+                )
+            if connector_lines:
+                context_parts.append(
+                    "<mentioned_connectors>\n"
+                    "The user selected these exact connector accounts with @. "
+                    "These entries are selection metadata, not retrieved connector content. "
+                    "When a connector-backed tool needs an account, use the matching "
+                    "connector_id from this list if the tool supports connector_id:\n"
+                    + "\n".join(connector_lines)
+                    + "\n</mentioned_connectors>"
+                )
 
         # Surface report IDs prominently so the LLM doesn't have to
         # retrieve them from old tool responses in conversation history.
@@ -1535,12 +1539,8 @@ async def stream_new_chat(
         stream_result.content_builder = AssistantContentBuilder()
 
         # Initial thinking step - analyzing the request
-        if mentioned_surfsense_docs:
-            initial_title = "Analyzing referenced content"
-            action_verb = "Analyzing"
-        else:
-            initial_title = "Understanding your request"
-            action_verb = "Processing"
+        initial_title = "Understanding your request"
+        action_verb = "Processing"
 
         processing_parts = []
         if user_query.strip():
@@ -1551,18 +1551,6 @@ async def stream_new_chat(
         else:
             processing_parts.append("(message)")
 
-        if mentioned_surfsense_docs:
-            doc_names = []
-            for doc in mentioned_surfsense_docs:
-                title = doc.title
-                if len(title) > 30:
-                    title = title[:27] + "..."
-                doc_names.append(title)
-            if len(doc_names) == 1:
-                processing_parts.append(f"[{doc_names[0]}]")
-            else:
-                processing_parts.append(f"[{len(doc_names)} docs]")
-
         initial_items = [f"{action_verb}: {' '.join(processing_parts)}"]
         initial_step_id = "thinking-1"
 
@@ -1582,10 +1570,10 @@ async def stream_new_chat(
             items=initial_items,
         )
 
-        # These ORM objects (with eagerly-loaded chunks) can be very large.
-        # They're only needed to build context strings already copied into
-        # final_query / langchain_messages — release them before streaming.
-        del mentioned_surfsense_docs, recent_reports
+        # These ORM objects can be large. They're only needed to build context
+        # strings already copied into final_query / langchain_messages —
+        # release them before streaming.
+        del recent_reports
         del langchain_messages, final_query
 
         # Check if this is the first assistant response so we can generate
@@ -1725,6 +1713,8 @@ async def stream_new_chat(
             mentioned_folder_ids=list(
                 accepted_folder_ids or mentioned_folder_ids or []
             ),
+            mentioned_connector_ids=list(mentioned_connector_ids or []),
+            mentioned_connectors=list(mentioned_connectors or []),
             request_id=request_id,
             turn_id=stream_result.turn_id,
         )
@@ -1863,6 +1853,14 @@ async def stream_new_chat(
                     llm_config_id,
                     time.perf_counter() - _t0,
                 )
+                ot.add_event(
+                    "chat.rate_limit.recovered",
+                    {
+                        "recovery.reason": "provider_rate_limited",
+                        "recovery.previous_config_id": previous_config_id,
+                        "recovery.fallback_config_id": llm_config_id,
+                    },
+                )
                 _log_chat_stream_error(
                     flow=flow,
                     error_kind="rate_limited",
@@ -1893,6 +1891,12 @@ async def stream_new_chat(
         log_system_snapshot("stream_new_chat_END")
 
         if stream_result.is_interrupted:
+            ot.add_event(
+                "chat.interrupted",
+                {
+                    "chat.flow": flow,
+                },
+            )
             if title_task is not None and not title_task.done():
                 title_task.cancel()
 
@@ -2011,6 +2015,12 @@ async def stream_new_chat(
             user_message,
             error_extra,
         ) = _classify_stream_exception(e, flow_label="chat")
+        chat_outcome = error_code or error_kind or "error"
+        chat_error_category = ot_metrics.categorize_exception(e)
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("chat.outcome", chat_outcome)
+            chat_span.set_attribute("error.category", chat_error_category)
+            ot.record_error(chat_span, e)
         error_message = f"Error during chat: {e!s}"
         print(f"[stream_new_chat] {error_message}")
         print(f"[stream_new_chat] Exception type: {type(e).__name__}")
@@ -2201,6 +2211,21 @@ async def stream_new_chat(
             )
         trim_native_heap()
         log_system_snapshot("stream_new_chat_END")
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("chat.outcome", chat_outcome)
+            ot_metrics.record_chat_request_duration(
+                (time.perf_counter() - _t_total) * 1000,
+                flow=flow,
+                outcome=chat_outcome,
+                agent_mode=chat_agent_mode,
+            )
+            ot_metrics.record_chat_request_outcome(
+                flow=flow,
+                outcome=chat_outcome,
+                agent_mode=chat_agent_mode,
+                error_category=chat_error_category,
+            )
+        chat_span_cm.__exit__(*sys.exc_info())
 
 
 async def stream_resume_chat(
@@ -2225,6 +2250,20 @@ async def stream_resume_chat(
     stream_result.turn_id = f"{chat_id}:{int(time.time() * 1000)}"
     stream_result.filesystem_mode = fs_mode
     stream_result.client_platform = fs_platform
+    chat_agent_mode = "unknown"
+    chat_outcome = "success"
+    chat_error_category: str | None = None
+    chat_span_cm = ot.chat_request_span(
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        flow="resume",
+        request_id=request_id,
+        turn_id=stream_result.turn_id,
+        filesystem_mode=fs_mode,
+        client_platform=fs_platform,
+        agent_mode=chat_agent_mode,
+    )
+    chat_span = chat_span_cm.__enter__()
     _log_file_contract("turn_start", stream_result)
     _perf_log.info(
         "[stream_resume] filesystem_mode=%s client_platform=%s",
@@ -2297,6 +2336,14 @@ async def stream_resume_chat(
                     selected_llm_config_id=llm_config_id,
                 )
             ).resolved_llm_config_id
+            ot.add_event(
+                "model.pin.resolved",
+                {
+                    "pin.requested_id": requested_llm_config_id,
+                    "pin.resolved_id": llm_config_id,
+                    "pin.requires_image_input": False,
+                },
+            )
         except ValueError as pin_error:
             yield _emit_stream_error(
                 message=str(pin_error),
@@ -2353,6 +2400,12 @@ async def stream_resume_chat(
                 )
             _resume_premium_reserved_micros = reserve_amount_micros
             if not quota_result.allowed:
+                ot.add_event(
+                    "quota.denied",
+                    {
+                        "quota.code": "PREMIUM_QUOTA_EXHAUSTED",
+                    },
+                )
                 if requested_llm_config_id == 0:
                     try:
                         llm_config_id = (
@@ -2365,6 +2418,13 @@ async def stream_resume_chat(
                                 force_repin_free=True,
                             )
                         ).resolved_llm_config_id
+                        ot.add_event(
+                            "model.repin",
+                            {
+                                "repin.reason": "premium_quota_exhausted",
+                                "repin.to_config_id": llm_config_id,
+                            },
+                        )
                     except ValueError as pin_error:
                         yield _emit_stream_error(
                             message=str(pin_error),
@@ -2454,6 +2514,9 @@ async def stream_resume_chat(
         visibility = thread_visibility or ChatVisibility.PRIVATE
         from app.config import config as _app_config
 
+        chat_agent_mode = "multi" if _app_config.MULTI_AGENT_CHAT_ENABLED else "single"
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("agent.mode", chat_agent_mode)
         _t0 = time.perf_counter()
         agent_factory = (
             create_multi_agent_chat_deep_agent
@@ -2695,6 +2758,14 @@ async def stream_resume_chat(
                     llm_config_id,
                     time.perf_counter() - _t0,
                 )
+                ot.add_event(
+                    "chat.rate_limit.recovered",
+                    {
+                        "recovery.reason": "provider_rate_limited",
+                        "recovery.previous_config_id": previous_config_id,
+                        "recovery.fallback_config_id": llm_config_id,
+                    },
+                )
                 _log_chat_stream_error(
                     flow="resume",
                     error_kind="rate_limited",
@@ -2722,6 +2793,12 @@ async def stream_resume_chat(
             chat_id,
         )
         if stream_result.is_interrupted:
+            ot.add_event(
+                "chat.interrupted",
+                {
+                    "chat.flow": "resume",
+                },
+            )
             usage_summary = accumulator.per_message_summary()
             _perf_log.info(
                 "[token_usage] interrupted resume_chat: calls=%d total=%d cost_micros=%d summary=%s",
@@ -2815,6 +2892,12 @@ async def stream_resume_chat(
             user_message,
             error_extra,
         ) = _classify_stream_exception(e, flow_label="resume")
+        chat_outcome = error_code or error_kind or "error"
+        chat_error_category = ot_metrics.categorize_exception(e)
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("chat.outcome", chat_outcome)
+            chat_span.set_attribute("error.category", chat_error_category)
+            ot.record_error(chat_span, e)
         error_message = f"Error during resume: {e!s}"
         print(f"[stream_resume_chat] {error_message}")
         print(f"[stream_resume_chat] Traceback:\n{traceback.format_exc()}")
@@ -2964,3 +3047,18 @@ async def stream_resume_chat(
             )
         trim_native_heap()
         log_system_snapshot("stream_resume_chat_END")
+        with contextlib.suppress(Exception):
+            chat_span.set_attribute("chat.outcome", chat_outcome)
+            ot_metrics.record_chat_request_duration(
+                (time.perf_counter() - _t_total) * 1000,
+                flow="resume",
+                outcome=chat_outcome,
+                agent_mode=chat_agent_mode,
+            )
+            ot_metrics.record_chat_request_outcome(
+                flow="resume",
+                outcome=chat_outcome,
+                agent_mode=chat_agent_mode,
+                error_category=chat_error_category,
+            )
+        chat_span_cm.__exit__(*sys.exc_info())
diff --git a/surfsense_backend/app/tasks/chat/streaming/agent/__init__.py b/surfsense_backend/app/tasks/chat/streaming/agent/__init__.py
new file mode 100644
index 000000000..260dcb3f2
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/agent/__init__.py
@@ -0,0 +1,8 @@
+"""Agent construction and per-turn event-loop drivers."""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.agent.builder import build_main_agent_for_thread
+from app.tasks.chat.streaming.agent.event_loop import stream_agent_events
+
+__all__ = ["build_main_agent_for_thread", "stream_agent_events"]
diff --git a/surfsense_backend/app/tasks/chat/streaming/agent/builder.py b/surfsense_backend/app/tasks/chat/streaming/agent/builder.py
new file mode 100644
index 000000000..0db42edbf
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/agent/builder.py
@@ -0,0 +1,49 @@
+"""Single per-thread agent (re)build path.
+
+A graph swap mid-turn would corrupt checkpointer state for the same
+``thread_id``, so both the initial build and any mid-stream 429 recovery rebuild
+must funnel through this single function.
+"""
+
+from __future__ import annotations
+
+from typing import Any
+
+from app.agents.new_chat.filesystem_selection import FilesystemSelection
+from app.agents.new_chat.llm_config import AgentConfig
+from app.db import ChatVisibility
+from app.services.connector_service import ConnectorService
+
+
+async def build_main_agent_for_thread(
+    agent_factory: Any,
+    *,
+    llm: Any,
+    search_space_id: int,
+    db_session: Any,
+    connector_service: ConnectorService,
+    checkpointer: Any,
+    user_id: str | None,
+    thread_id: int | None,
+    agent_config: AgentConfig | None,
+    firecrawl_api_key: str | None,
+    thread_visibility: ChatVisibility | None,
+    filesystem_selection: FilesystemSelection | None,
+    disabled_tools: list[str] | None = None,
+    mentioned_document_ids: list[int] | None = None,
+) -> Any:
+    return await agent_factory(
+        llm=llm,
+        search_space_id=search_space_id,
+        db_session=db_session,
+        connector_service=connector_service,
+        checkpointer=checkpointer,
+        user_id=user_id,
+        thread_id=thread_id,
+        agent_config=agent_config,
+        firecrawl_api_key=firecrawl_api_key,
+        thread_visibility=thread_visibility,
+        filesystem_selection=filesystem_selection,
+        disabled_tools=disabled_tools,
+        mentioned_document_ids=mentioned_document_ids,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/agent/event_loop.py b/surfsense_backend/app/tasks/chat/streaming/agent/event_loop.py
new file mode 100644
index 000000000..b77bd3890
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/agent/event_loop.py
@@ -0,0 +1,175 @@
+"""Per-turn agent event-loop driver.
+
+Drives ``stream_output`` (graph_stream relay) for one agent turn, then runs the
+post-stream agent-state inspection: safety-net commit of any staged filesystem
+state (in case ``aafter_agent`` was skipped), file-operation contract scoring,
+intent classification, and interrupt detection.
+"""
+
+from __future__ import annotations
+
+from collections.abc import AsyncGenerator
+from typing import Any
+
+from app.agents.new_chat.filesystem_selection import FilesystemMode
+from app.agents.new_chat.middleware.kb_persistence import (
+    commit_staged_filesystem_state,
+)
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.streaming.contract.file_contract import (
+    contract_enforcement_active,
+    evaluate_file_contract_outcome,
+    log_file_contract,
+)
+from app.tasks.chat.streaming.graph_stream.event_stream import stream_output
+from app.tasks.chat.streaming.helpers.interrupt_inspector import (
+    all_interrupt_values,
+)
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.tasks.chat.streaming.shared.utils import safe_float
+from app.utils.perf import get_perf_logger
+
+_perf_log = get_perf_logger()
+
+
+async def stream_agent_events(
+    agent: Any,
+    config: dict[str, Any],
+    input_data: Any,
+    streaming_service: VercelStreamingService,
+    result: StreamResult,
+    step_prefix: str = "thinking",
+    initial_step_id: str | None = None,
+    initial_step_title: str = "",
+    initial_step_items: list[str] | None = None,
+    *,
+    fallback_commit_search_space_id: int | None = None,
+    fallback_commit_created_by_id: str | None = None,
+    fallback_commit_filesystem_mode: FilesystemMode = FilesystemMode.CLOUD,
+    fallback_commit_thread_id: int | None = None,
+    runtime_context: Any = None,
+    content_builder: Any | None = None,
+) -> AsyncGenerator[str, None]:
+    """Stream and format ``astream_events`` from the agent.
+
+    Yields SSE-formatted strings; after exhausting, ``result`` carries
+    ``accumulated_text`` and interrupt state. See ``StreamResult`` for the
+    side-channel surface populated by the underlying relay.
+    """
+    async for sse in stream_output(
+        agent=agent,
+        config=config,
+        input_data=input_data,
+        streaming_service=streaming_service,
+        result=result,
+        step_prefix=step_prefix,
+        initial_step_id=initial_step_id,
+        initial_step_title=initial_step_title,
+        initial_step_items=initial_step_items,
+        content_builder=content_builder,
+        runtime_context=runtime_context,
+    ):
+        yield sse
+
+    accumulated_text = result.accumulated_text
+
+    state = await agent.aget_state(config)
+    state_values = getattr(state, "values", {}) or {}
+
+    # Safety net: if astream_events was cancelled before
+    # KnowledgeBasePersistenceMiddleware.aafter_agent ran, any staged work
+    # (dirty_paths / staged_dirs / pending_moves / pending_deletes /
+    # pending_dir_deletes) is still in the checkpointed state. Run the SAME
+    # shared commit helper so the turn's writes don't get lost on client
+    # disconnect, then push the delta back into the graph using ``as_node=...``
+    # so reducers fire as if the after_agent hook produced it.
+    if (
+        fallback_commit_filesystem_mode == FilesystemMode.CLOUD
+        and fallback_commit_search_space_id is not None
+        and (
+            (state_values.get("dirty_paths") or [])
+            or (state_values.get("staged_dirs") or [])
+            or (state_values.get("pending_moves") or [])
+            or (state_values.get("pending_deletes") or [])
+            or (state_values.get("pending_dir_deletes") or [])
+        )
+    ):
+        try:
+            delta = await commit_staged_filesystem_state(
+                state_values,
+                search_space_id=fallback_commit_search_space_id,
+                created_by_id=fallback_commit_created_by_id,
+                filesystem_mode=fallback_commit_filesystem_mode,
+                thread_id=fallback_commit_thread_id,
+                dispatch_events=False,
+            )
+            if delta:
+                await agent.aupdate_state(
+                    config,
+                    delta,
+                    as_node="KnowledgeBasePersistenceMiddleware.after_agent",
+                )
+        except Exception as exc:
+            _perf_log.warning("[stream_agent_events] safety-net commit failed: %s", exc)
+
+    contract_state = state_values.get("file_operation_contract") or {}
+    contract_turn_id = contract_state.get("turn_id")
+    current_turn_id = config.get("configurable", {}).get("turn_id", "")
+    intent_value = contract_state.get("intent")
+    if (
+        isinstance(intent_value, str)
+        and intent_value in ("chat_only", "file_write", "file_read")
+        and contract_turn_id == current_turn_id
+    ):
+        result.intent_detected = intent_value
+    if (
+        isinstance(intent_value, str)
+        and intent_value in ("chat_only", "file_write", "file_read")
+        and contract_turn_id != current_turn_id
+    ):
+        # Ignore stale intent contracts from previous turns/checkpoints.
+        result.intent_detected = "chat_only"
+    result.intent_confidence = (
+        safe_float(contract_state.get("confidence"), default=0.0)
+        if contract_turn_id == current_turn_id
+        else 0.0
+    )
+
+    if result.intent_detected == "file_write":
+        result.commit_gate_passed, result.commit_gate_reason = (
+            evaluate_file_contract_outcome(result)
+        )
+        if not result.commit_gate_passed and contract_enforcement_active(result):
+            gate_notice = (
+                "I could not complete the requested file write because no successful "
+                "write_file/edit_file operation was confirmed."
+            )
+            gate_text_id = streaming_service.generate_text_id()
+            yield streaming_service.format_text_start(gate_text_id)
+            if content_builder is not None:
+                content_builder.on_text_start(gate_text_id)
+            yield streaming_service.format_text_delta(gate_text_id, gate_notice)
+            if content_builder is not None:
+                content_builder.on_text_delta(gate_text_id, gate_notice)
+            yield streaming_service.format_text_end(gate_text_id)
+            if content_builder is not None:
+                content_builder.on_text_end(gate_text_id)
+            yield streaming_service.format_terminal_info(gate_notice, "error")
+            accumulated_text = gate_notice
+    else:
+        result.commit_gate_passed = True
+        result.commit_gate_reason = ""
+
+    result.accumulated_text = accumulated_text
+    log_file_contract("turn_outcome", result)
+
+    pending_values = all_interrupt_values(state)
+    if pending_values:
+        result.is_interrupted = True
+        # One frame per paused subagent so each parallel HITL renders its own
+        # approval card on the wire. Order matches ``state.interrupts``, which
+        # the resume slicer in
+        # ``checkpointed_subagent_middleware.resume_routing`` consumes in the
+        # same order — keeping emit and resume in lock-step.
+        for interrupt_value in pending_values:
+            yield streaming_service.format_interrupt_request(interrupt_value)
diff --git a/surfsense_backend/app/tasks/chat/streaming/context/__init__.py b/surfsense_backend/app/tasks/chat/streaming/context/__init__.py
new file mode 100644
index 000000000..4cf58d76f
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/context/__init__.py
@@ -0,0 +1,11 @@
+"""Pre-agent context shaping: todos extraction."""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.context.deepagents_todos import (
+    extract_todos_from_deepagents,
+)
+
+__all__ = [
+    "extract_todos_from_deepagents",
+]
diff --git a/surfsense_backend/app/tasks/chat/streaming/context/deepagents_todos.py b/surfsense_backend/app/tasks/chat/streaming/context/deepagents_todos.py
new file mode 100644
index 000000000..b9cbf6506
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/context/deepagents_todos.py
@@ -0,0 +1,25 @@
+"""Extract todos from a deepagents ``TodoListMiddleware`` ``Command`` output."""
+
+from __future__ import annotations
+
+from typing import Any
+
+
+def extract_todos_from_deepagents(command_output: Any) -> dict:
+    """Normalize todos out of a deepagents ``Command`` or dict payload.
+
+    deepagents returns a ``Command`` whose ``update['todos']`` is a list of
+    ``{'content': str, 'status': str}`` dicts. The UI expects the same shape,
+    so no transformation is required — only extraction.
+    """
+    todos_data: list = []
+    if hasattr(command_output, "update"):
+        update = command_output.update
+        todos_data = update.get("todos", [])
+    elif isinstance(command_output, dict):
+        if "todos" in command_output:
+            todos_data = command_output.get("todos", [])
+        elif "update" in command_output and isinstance(command_output["update"], dict):
+            todos_data = command_output["update"].get("todos", [])
+
+    return {"todos": todos_data}
diff --git a/surfsense_backend/app/tasks/chat/streaming/contract/__init__.py b/surfsense_backend/app/tasks/chat/streaming/contract/__init__.py
new file mode 100644
index 000000000..4562b362c
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/contract/__init__.py
@@ -0,0 +1,15 @@
+"""File-operation contract evaluation and logging."""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.contract.file_contract import (
+    contract_enforcement_active,
+    evaluate_file_contract_outcome,
+    log_file_contract,
+)
+
+__all__ = [
+    "contract_enforcement_active",
+    "evaluate_file_contract_outcome",
+    "log_file_contract",
+]
diff --git a/surfsense_backend/app/tasks/chat/streaming/contract/file_contract.py b/surfsense_backend/app/tasks/chat/streaming/contract/file_contract.py
new file mode 100644
index 000000000..f21f5da02
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/contract/file_contract.py
@@ -0,0 +1,53 @@
+"""File-operation contract: when to enforce, how to score, how to log."""
+
+from __future__ import annotations
+
+import json
+from typing import Any
+
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.utils.perf import get_perf_logger
+
+_perf_log = get_perf_logger()
+
+
+def contract_enforcement_active(result: StreamResult) -> bool:
+    # Enforce only in desktop local-folder mode. Kept deterministic, no
+    # env-driven progression modes.
+    return result.filesystem_mode == "desktop_local_folder"
+
+
+def evaluate_file_contract_outcome(result: StreamResult) -> tuple[bool, str]:
+    if result.intent_detected != "file_write":
+        return True, ""
+    if not result.write_attempted:
+        return False, "no_write_attempt"
+    if not result.write_succeeded:
+        return False, "write_failed"
+    if not result.verification_succeeded:
+        return False, "verification_failed"
+    return True, ""
+
+
+def log_file_contract(stage: str, result: StreamResult, **extra: Any) -> None:
+    payload: dict[str, Any] = {
+        "stage": stage,
+        "request_id": result.request_id or "unknown",
+        "turn_id": result.turn_id or "unknown",
+        "chat_id": (
+            result.turn_id.split(":", 1)[0] if ":" in result.turn_id else "unknown"
+        ),
+        "filesystem_mode": result.filesystem_mode,
+        "client_platform": result.client_platform,
+        "intent_detected": result.intent_detected,
+        "intent_confidence": result.intent_confidence,
+        "write_attempted": result.write_attempted,
+        "write_succeeded": result.write_succeeded,
+        "verification_succeeded": result.verification_succeeded,
+        "commit_gate_passed": result.commit_gate_passed,
+        "commit_gate_reason": result.commit_gate_reason or None,
+    }
+    payload.update(extra)
+    _perf_log.info(
+        "[file_operation_contract] %s", json.dumps(payload, ensure_ascii=False)
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/__init__.py b/surfsense_backend/app/tasks/chat/streaming/flows/__init__.py
new file mode 100644
index 000000000..522db2fad
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/__init__.py
@@ -0,0 +1,17 @@
+"""Top-level streaming flows: ``new_chat`` and ``resume_chat`` orchestrators.
+
+Re-exports the public entry points so callers can write::
+
+    from app.tasks.chat.streaming.flows import stream_new_chat, stream_resume_chat
+
+The orchestrators themselves live under ``new_chat/orchestrator.py`` and
+``resume_chat/orchestrator.py`` (slim composition of the per-concern modules in
+each flow folder and the building blocks in ``shared/``).
+"""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.flows.new_chat import stream_new_chat
+from app.tasks.chat.streaming.flows.resume_chat import stream_resume_chat
+
+__all__ = ["stream_new_chat", "stream_resume_chat"]
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/__init__.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/__init__.py
new file mode 100644
index 000000000..566d5e0d9
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/__init__.py
@@ -0,0 +1,12 @@
+"""New-chat streaming flow.
+
+The public entry point ``stream_new_chat`` is the slim coroutine in
+``orchestrator.py`` that composes the per-concern modules in this folder and
+the building blocks under ``flows/shared/``.
+"""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.flows.new_chat.orchestrator import stream_new_chat
+
+__all__ = ["stream_new_chat"]
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/auto_pin.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/auto_pin.py
new file mode 100644
index 000000000..af496cee7
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/auto_pin.py
@@ -0,0 +1,91 @@
+"""Resolve the auto-pin for the *initial* turn config.
+
+Auto-pin (``selected_llm_config_id=0``) picks the best eligible LLM config for
+this thread / search space / user, optionally filtered to vision-capable
+configs when the turn carries images.
+
+Errors classified here:
+
+  * ``MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT`` — the auto-pin pool has no
+    vision-capable cfg for an image-bearing turn. The same gate fires later
+    in ``llm_capability`` for explicit selections; mapping both to the same
+    code keeps the FE error UI consistent.
+  * ``SERVER_ERROR`` — any other ``ValueError`` from the resolver.
+
+This module owns *initial* pin resolution; the rate-limit recovery loop has
+its own narrower auto-pin call (with ``exclude_config_ids``) in
+``flows/shared/rate_limit_recovery``.
+"""
+
+from __future__ import annotations
+
+from dataclasses import dataclass
+from typing import Literal
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.observability import otel as ot
+from app.services.auto_model_pin_service import resolve_or_get_pinned_llm_config_id
+
+
+@dataclass
+class AutoPinResult:
+    """Outcome of ``resolve_initial_auto_pin``.
+
+    ``llm_config_id`` is set when ``error`` is ``None``; ``error`` carries the
+    classified user-facing message plus error code/kind so the orchestrator can
+    emit one terminal-error SSE frame.
+    """
+
+    llm_config_id: int | None
+    error: tuple[str, str, Literal["user_error", "server_error"]] | None
+
+
+async def resolve_initial_auto_pin(
+    session: AsyncSession,
+    *,
+    chat_id: int,
+    search_space_id: int,
+    user_id: str | None,
+    selected_llm_config_id: int,
+    requires_image_input: bool,
+    requested_llm_config_id: int,
+) -> AutoPinResult:
+    """Run the resolver and classify any ``ValueError`` for the SSE error path."""
+    try:
+        pinned = await resolve_or_get_pinned_llm_config_id(
+            session,
+            thread_id=chat_id,
+            search_space_id=search_space_id,
+            user_id=user_id,
+            selected_llm_config_id=selected_llm_config_id,
+            requires_image_input=requires_image_input,
+        )
+        ot.add_event(
+            "model.pin.resolved",
+            {
+                "pin.requested_id": requested_llm_config_id,
+                "pin.resolved_id": pinned.resolved_llm_config_id,
+                "pin.requires_image_input": requires_image_input,
+            },
+        )
+        return AutoPinResult(llm_config_id=pinned.resolved_llm_config_id, error=None)
+    except ValueError as pin_error:
+        # The "no vision-capable cfg" path raises a ValueError whose message
+        # we map to the friendly image-input SSE error so the user sees the
+        # same message regardless of whether the gate fired in the resolver or
+        # in ``llm_capability.assert_vision_capability_for_image_turn``.
+        is_vision_failure = requires_image_input and "vision-capable" in str(pin_error)
+        error_code = (
+            "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT"
+            if is_vision_failure
+            else "SERVER_ERROR"
+        )
+        error_kind: Literal["user_error", "server_error"] = (
+            "user_error" if is_vision_failure else "server_error"
+        )
+        if is_vision_failure:
+            ot.add_event("quota.denied", {"quota.code": error_code})
+        return AutoPinResult(
+            llm_config_id=None, error=(str(pin_error), error_code, error_kind)
+        )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/initial_thinking_step.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/initial_thinking_step.py
new file mode 100644
index 000000000..e727200eb
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/initial_thinking_step.py
@@ -0,0 +1,77 @@
+"""Build and emit the first ``thinking-1`` step for a new-chat turn.
+
+The step title and "Processing X" items are derived from what the user sent
+(text snippet, image count) so the FE can render a meaningful placeholder
+while the agent stream warms up.
+
+``thinking-1`` is the canonical id for this step — every subsequent
+``thinking-N`` produced by ``stream_agent_events`` folds into the same
+singleton ``data-thinking-steps`` part on the FE.
+"""
+
+from __future__ import annotations
+
+from collections.abc import Iterator
+from dataclasses import dataclass
+from typing import Any
+
+from app.services.new_streaming_service import VercelStreamingService
+
+
+@dataclass
+class InitialThinkingStep:
+    """Resolved fields passed both into the SSE frame and the builder hook.
+
+    ``items`` is the bullet list under the step title; ``title`` is the
+    one-line step header. ``step_id`` is hard-coded ``thinking-1`` so the FE
+    Timeline can de-duplicate against the prior assistant message on resume.
+    """
+
+    step_id: str
+    title: str
+    items: list[str]
+
+
+def build_initial_thinking_step(
+    *,
+    user_query: str,
+    user_image_data_urls: list[str] | None,
+) -> InitialThinkingStep:
+    title = "Understanding your request"
+    action_verb = "Processing"
+
+    processing_parts: list[str] = []
+    if user_query.strip():
+        query_text = user_query[:80] + ("..." if len(user_query) > 80 else "")
+        processing_parts.append(query_text)
+    elif user_image_data_urls:
+        processing_parts.append(f"[{len(user_image_data_urls)} image(s)]")
+    else:
+        processing_parts.append("(message)")
+
+    items = [f"{action_verb}: {' '.join(processing_parts)}"]
+    return InitialThinkingStep(step_id="thinking-1", title=title, items=items)
+
+
+def iter_initial_thinking_step_frame(
+    step: InitialThinkingStep,
+    *,
+    streaming_service: VercelStreamingService,
+    content_builder: Any | None,
+) -> Iterator[str]:
+    """Drive both the SSE emission and the builder hook for the initial step.
+
+    The FE folds this step into the same singleton ``data-thinking-steps`` part
+    as everything the agent stream emits later, so we mirror that fold
+    server-side by driving the builder lifecycle ourselves.
+    """
+    if content_builder is not None:
+        content_builder.on_thinking_step(
+            step.step_id, step.title, "in_progress", step.items
+        )
+    yield streaming_service.format_thinking_step(
+        step_id=step.step_id,
+        title=step.title,
+        status="in_progress",
+        items=step.items,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/input_state.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/input_state.py
new file mode 100644
index 000000000..0c6704bd1
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/input_state.py
@@ -0,0 +1,227 @@
+r"""Assemble the LangGraph ``input_state`` for the new-chat turn.
+
+Pipeline:
+
+  1. **History bootstrap** — only for cloned chats with no LangGraph checkpoint
+     yet; flips the per-thread ``needs_history_bootstrap`` flag back to False
+     once the rows are loaded.
+  2. **Recent reports** — top 3 by id desc with non-null content, so the LLM
+     can resolve ``report_id`` for versioning without spelunking history.
+  3. **@-mention resolve** (cloud mode) — substitute ``@title`` tokens in the
+     query with canonical ``\`/documents/...\``` paths the LLM expects.
+  4. **Context block render** — XML-wrap recent reports, prepend to the
+     rewritten query, optionally prefix with display name for SEARCH_SPACE
+     visibility.
+  5. **HumanMessage** — multimodal content if images are attached.
+
+Returns the assembled ``input_state`` dict plus side-channel data the
+orchestrator needs downstream (``accepted_folder_ids`` for runtime context).
+"""
+
+from __future__ import annotations
+
+import logging
+from dataclasses import dataclass
+from typing import Any
+
+from langchain_core.messages import HumanMessage
+from sqlalchemy.ext.asyncio import AsyncSession
+from sqlalchemy.future import select
+
+from app.agents.new_chat.filesystem_selection import FilesystemMode
+from app.agents.new_chat.mention_resolver import resolve_mentions, substitute_in_text
+from app.db import (
+    ChatVisibility,
+    NewChatThread,
+    Report,
+)
+from app.utils.content_utils import bootstrap_history_from_db
+from app.utils.user_message_multimodal import build_human_message_content
+
+logger = logging.getLogger(__name__)
+
+
+@dataclass
+class NewChatInputState:
+    """Everything ``build_new_chat_input_state`` produces.
+
+    ``input_state`` is fed straight to the agent. ``accepted_folder_ids``
+    feeds the runtime context (the resolver may have dropped some chips).
+    """
+
+    input_state: dict[str, Any]
+    accepted_folder_ids: list[int]
+
+
+async def build_new_chat_input_state(
+    session: AsyncSession,
+    *,
+    chat_id: int,
+    search_space_id: int,
+    user_query: str,
+    user_image_data_urls: list[str] | None,
+    mentioned_document_ids: list[int] | None,
+    mentioned_folder_ids: list[int] | None,
+    mentioned_documents: list[dict[str, Any]] | None,
+    needs_history_bootstrap: bool,
+    thread_visibility: ChatVisibility,
+    current_user_display_name: str | None,
+    filesystem_mode: str,
+    request_id: str | None,
+    turn_id: str,
+) -> NewChatInputState:
+    langchain_messages: list[Any] = []
+
+    if needs_history_bootstrap:
+        langchain_messages = await bootstrap_history_from_db(
+            session, chat_id, thread_visibility=thread_visibility
+        )
+        thread_result = await session.execute(
+            select(NewChatThread).filter(NewChatThread.id == chat_id)
+        )
+        thread = thread_result.scalars().first()
+        if thread:
+            thread.needs_history_bootstrap = False
+            await session.commit()
+
+    # Top 3 reports keyed by id desc (newest first) with content present,
+    # surfaced inline so the LLM resolves ``report_id`` for versioning without
+    # digging through conversation history.
+    recent_reports_result = await session.execute(
+        select(Report)
+        .filter(
+            Report.thread_id == chat_id,
+            Report.content.isnot(None),
+        )
+        .order_by(Report.id.desc())
+        .limit(3)
+    )
+    recent_reports = list(recent_reports_result.scalars().all())
+
+    agent_user_query, accepted_folder_ids = await _resolve_mentions_for_query(
+        session,
+        search_space_id=search_space_id,
+        user_query=user_query,
+        filesystem_mode=filesystem_mode,
+        mentioned_document_ids=mentioned_document_ids,
+        mentioned_folder_ids=mentioned_folder_ids,
+        mentioned_documents=mentioned_documents,
+    )
+
+    final_query = _render_query_with_context(
+        agent_user_query=agent_user_query,
+        recent_reports=recent_reports,
+    )
+
+    if thread_visibility == ChatVisibility.SEARCH_SPACE and current_user_display_name:
+        final_query = f"**[{current_user_display_name}]:** {final_query}"
+
+    human_content = build_human_message_content(
+        final_query, list(user_image_data_urls or ())
+    )
+    langchain_messages.append(HumanMessage(content=human_content))
+
+    input_state = {
+        "messages": langchain_messages,
+        "search_space_id": search_space_id,
+        "request_id": request_id or "unknown",
+        "turn_id": turn_id,
+    }
+
+    return NewChatInputState(
+        input_state=input_state,
+        accepted_folder_ids=accepted_folder_ids,
+    )
+
+
+async def _resolve_mentions_for_query(
+    session: AsyncSession,
+    *,
+    search_space_id: int,
+    user_query: str,
+    filesystem_mode: str,
+    mentioned_document_ids: list[int] | None,
+    mentioned_folder_ids: list[int] | None,
+    mentioned_documents: list[dict[str, Any]] | None,
+) -> tuple[str, list[int]]:
+    r"""Resolve @-mention chips and rewrite the user query to canonical paths.
+
+    Cloud mode only: local-folder mode keeps the legacy ``@title`` text path
+    (mention support there is a follow-up task — the path scheme is
+    mount-rooted and the picker UI both need separate work).
+
+    The substitution lands in the returned ``agent_user_query`` ONLY — the
+    original ``user_query`` (with ``@title`` tokens) flows untouched into
+    ``persist_user_turn`` so chip rendering on reload still works
+    (``UserTextPart`` → ``parseMentionSegments`` matches ``@title``, not
+    ``\`/documents/...\```). It also feeds the human-readable surfaces — SSE
+    "Processing X" status, auto thread title, memory seed — which all want
+    what the user typed.
+    """
+    agent_user_query = user_query
+    accepted_folder_ids: list[int] = []
+
+    has_any_mention = bool(
+        mentioned_document_ids or mentioned_folder_ids or mentioned_documents
+    )
+    if filesystem_mode != FilesystemMode.CLOUD.value or not has_any_mention:
+        return agent_user_query, accepted_folder_ids
+
+    from app.schemas.new_chat import MentionedDocumentInfo
+
+    chip_objs: list[MentionedDocumentInfo] | None = None
+    if mentioned_documents:
+        chip_objs = []
+        for raw in mentioned_documents:
+            if isinstance(raw, MentionedDocumentInfo):
+                chip_objs.append(raw)
+                continue
+            try:
+                chip_objs.append(MentionedDocumentInfo.model_validate(raw))
+            except Exception:
+                logger.debug("stream_new_chat: dropping malformed mention chip %r", raw)
+
+    resolved = await resolve_mentions(
+        session,
+        search_space_id=search_space_id,
+        mentioned_documents=chip_objs,
+        mentioned_document_ids=mentioned_document_ids,
+        mentioned_folder_ids=mentioned_folder_ids,
+    )
+    agent_user_query = substitute_in_text(user_query, resolved.token_to_path)
+    accepted_folder_ids = resolved.mentioned_folder_ids
+    return agent_user_query, accepted_folder_ids
+
+
+def _render_query_with_context(
+    *,
+    agent_user_query: str,
+    recent_reports: list[Report],
+) -> str:
+    """Prepend recent-reports XML block to the user query."""
+    context_parts: list[str] = []
+
+    if recent_reports:
+        report_lines: list[str] = []
+        for r in recent_reports:
+            report_lines.append(
+                f'  - report_id={r.id}, title="{r.title}", '
+                f'style="{r.report_style or "detailed"}"'
+            )
+        reports_listing = "\n".join(report_lines)
+        context_parts.append(
+            "<report_context>\n"
+            "Previously generated reports in this conversation:\n"
+            f"{reports_listing}\n\n"
+            "If the user wants to MODIFY, REVISE, UPDATE, or ADD to one of "
+            "these reports, set parent_report_id to the relevant report_id above.\n"
+            "If the user wants a completely NEW report on a different topic, "
+            "leave parent_report_id unset.\n"
+            "</report_context>"
+        )
+
+    if context_parts:
+        context = "\n\n".join(context_parts)
+        return f"{context}\n\n<user_query>{agent_user_query}</user_query>"
+
+    return agent_user_query
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/llm_capability.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/llm_capability.py
new file mode 100644
index 000000000..9f4e5d2d8
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/llm_capability.py
@@ -0,0 +1,60 @@
+"""Vision-capability gate for image-bearing turns.
+
+Capability safety net for explicit (non-auto-pin) selections: a turn carrying
+user-uploaded images cannot be routed to a chat config that LiteLLM's
+authoritative model map *explicitly* marks as text-only (``supports_vision``
+set to False). The check is intentionally narrow — it only fires when LiteLLM
+is *certain* the model can't accept image input; unknown / unmapped /
+vision-capable models pass through.
+
+Without this guard a known-text-only model would 404 at the provider with
+``"No endpoints found that support image input"``, surfacing as an opaque
+``SERVER_ERROR`` SSE chunk; failing here lets us return a friendly message that
+tells the user what to change.
+"""
+
+from __future__ import annotations
+
+from app.agents.new_chat.llm_config import AgentConfig
+from app.observability import otel as ot
+
+
+def check_image_input_capability(
+    *,
+    user_image_data_urls: list[str] | None,
+    agent_config: AgentConfig | None,
+) -> tuple[str, str] | None:
+    """Return ``(user_message, error_code)`` when the gate trips, else ``None``.
+
+    The caller emits one terminal-error SSE frame on a non-``None`` return.
+    """
+    if not (user_image_data_urls and agent_config is not None):
+        return None
+
+    from app.services.provider_capabilities import is_known_text_only_chat_model
+
+    agent_litellm_params = agent_config.litellm_params or {}
+    agent_base_model = (
+        agent_litellm_params.get("base_model")
+        if isinstance(agent_litellm_params, dict)
+        else None
+    )
+    if not is_known_text_only_chat_model(
+        provider=agent_config.provider,
+        model_name=agent_config.model_name,
+        base_model=agent_base_model,
+        custom_provider=agent_config.custom_provider,
+    ):
+        return None
+
+    model_label = agent_config.config_name or agent_config.model_name or "model"
+    ot.add_event("quota.denied", {"quota.code": "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT"})
+    return (
+        (
+            f"The selected model ({model_label}) does not support "
+            "image input. Switch to a vision-capable model "
+            "(e.g. GPT-4o, Claude, Gemini) or remove the image "
+            "attachment and try again."
+        ),
+        "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT",
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/orchestrator.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/orchestrator.py
new file mode 100644
index 000000000..1892320d3
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/orchestrator.py
@@ -0,0 +1,863 @@
+"""``stream_new_chat`` — public entry point for a fresh chat turn.
+
+Slim composition layer over the per-concern modules in this folder and the
+building blocks under ``flows/shared/``. Each phase corresponds to a numbered
+block in the surrounding code so the on-the-wire ordering stays explicit:
+
+  1. Validation / config — auto-pin, LLM bundle, capability, premium reserve.
+  2. Concurrent persistence + pre-stream setup — spawn DB writes, build the
+     connector, fetch the checkpointer, build the agent.
+  3. Input assembly — history bootstrap, mentions, surfsense docs, reports.
+  4. First SSE frames — message_start, start_step, turn-info, turn-status.
+  5. Persistence join + message-id frames (ghost-thread protection).
+  6. Initial thinking step + title task + runtime context.
+  7. Stream loop with in-stream rate-limit recovery + mid-stream title emit.
+  8. Finalize — premium debit, token-usage SSE, finish frames.
+  9. Exception branch — classify, emit terminal error, finish frames.
+ 10. Finally — premium release, session close, assistant finalize, GC, span.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import contextlib
+import logging
+import time
+from collections.abc import AsyncGenerator
+from functools import partial
+from typing import Any, Literal
+
+import anyio
+
+from app.agents.multi_agent_chat import create_multi_agent_chat_deep_agent
+from app.agents.new_chat.chat_deepagent import create_surfsense_deep_agent
+from app.agents.new_chat.filesystem_selection import FilesystemMode, FilesystemSelection
+from app.agents.new_chat.middleware.busy_mutex import end_turn
+from app.config import config as _app_config
+from app.db import ChatVisibility, async_session_maker
+from app.observability import otel as ot
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.content_builder import AssistantContentBuilder
+from app.tasks.chat.streaming.agent.builder import build_main_agent_for_thread
+from app.tasks.chat.streaming.contract.file_contract import log_file_contract
+from app.tasks.chat.streaming.errors.emitter import emit_stream_terminal_error
+from app.tasks.chat.streaming.flows.new_chat.auto_pin import resolve_initial_auto_pin
+from app.tasks.chat.streaming.flows.new_chat.initial_thinking_step import (
+    build_initial_thinking_step,
+    iter_initial_thinking_step_frame,
+)
+from app.tasks.chat.streaming.flows.new_chat.input_state import (
+    build_new_chat_input_state,
+)
+from app.tasks.chat.streaming.flows.new_chat.llm_capability import (
+    check_image_input_capability,
+)
+from app.tasks.chat.streaming.flows.new_chat.persistence_spawn import (
+    await_persist_task,
+    spawn_persist_assistant_shell_task,
+    spawn_persist_user_task,
+    spawn_set_ai_responding_bg,
+)
+from app.tasks.chat.streaming.flows.new_chat.runtime_context import (
+    build_new_chat_runtime_context,
+)
+from app.tasks.chat.streaming.flows.new_chat.title_gen import (
+    await_pending_title_update,
+    maybe_emit_title_update,
+    spawn_title_task,
+)
+from app.tasks.chat.streaming.flows.shared.assistant_finalize import (
+    finalize_assistant_message,
+)
+from app.tasks.chat.streaming.flows.shared.finalize_emit import iter_token_usage_frame
+from app.tasks.chat.streaming.flows.shared.finally_cleanup import (
+    close_session_and_clear_ai_responding,
+    run_gc_pass,
+)
+from app.tasks.chat.streaming.flows.shared.first_frames import (
+    iter_final_frames,
+    iter_initial_frames,
+)
+from app.tasks.chat.streaming.flows.shared.llm_bundle import load_llm_bundle
+from app.tasks.chat.streaming.flows.shared.pre_stream_setup import (
+    get_chat_checkpointer,
+    setup_connector_and_firecrawl,
+)
+from app.tasks.chat.streaming.flows.shared.premium_quota import (
+    PremiumReservation,
+    finalize_premium,
+    needs_premium_quota,
+    release_premium,
+    reserve_premium,
+)
+from app.tasks.chat.streaming.flows.shared.rate_limit_recovery import (
+    can_recover_provider_rate_limit,
+    log_rate_limit_recovered,
+    reroute_to_next_auto_pin,
+)
+from app.tasks.chat.streaming.flows.shared.span import (
+    close_chat_request_span,
+    open_chat_request_span,
+    set_agent_mode,
+)
+from app.tasks.chat.streaming.flows.shared.stream_loop import run_stream_loop
+from app.tasks.chat.streaming.flows.shared.terminal_error import (
+    handle_terminal_exception,
+)
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.utils.perf import get_perf_logger, log_system_snapshot
+
+logger = logging.getLogger(__name__)
+_perf_log = get_perf_logger()
+
+# Holds spawned background tasks (set_ai_responding, persist_user, persist_asst)
+# so the GC doesn't drop them before they finish. Kept at module level so it
+# survives across turns within one process.
+_background_tasks: set[asyncio.Task] = set()
+
+
+async def stream_new_chat(
+    user_query: str,
+    search_space_id: int,
+    chat_id: int,
+    user_id: str | None = None,
+    llm_config_id: int = -1,
+    mentioned_document_ids: list[int] | None = None,
+    mentioned_folder_ids: list[int] | None = None,
+    mentioned_documents: list[dict[str, Any]] | None = None,
+    checkpoint_id: str | None = None,
+    needs_history_bootstrap: bool = False,
+    thread_visibility: ChatVisibility | None = None,
+    current_user_display_name: str | None = None,
+    disabled_tools: list[str] | None = None,
+    filesystem_selection: FilesystemSelection | None = None,
+    request_id: str | None = None,
+    user_image_data_urls: list[str] | None = None,
+    flow: Literal["new", "regenerate"] = "new",
+) -> AsyncGenerator[str, None]:
+    """Stream a new chat turn using the SurfSense deep agent.
+
+    Uses the Vercel AI SDK Data Stream Protocol (SSE). ``chat_id`` is the
+    LangGraph thread id (durable conversation memory via the checkpointer).
+    Manages its own database session so cleanup runs even when Starlette
+    cancels the task on client disconnect.
+    """
+    streaming_service = VercelStreamingService()
+    stream_result = StreamResult()
+    _t_total = time.perf_counter()
+    fs_mode = filesystem_selection.mode.value if filesystem_selection else "cloud"
+    fs_platform = (
+        filesystem_selection.client_platform.value if filesystem_selection else "web"
+    )
+    stream_result.request_id = request_id
+    stream_result.turn_id = f"{chat_id}:{int(time.time() * 1000)}"
+    stream_result.filesystem_mode = fs_mode
+    stream_result.client_platform = fs_platform
+
+    chat_agent_mode = "unknown"
+    chat_outcome = "success"
+    chat_error_category: str | None = None
+    chat_span_cm, chat_span = open_chat_request_span(
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        flow=flow,
+        request_id=request_id,
+        turn_id=stream_result.turn_id,
+        filesystem_mode=fs_mode,
+        client_platform=fs_platform,
+        agent_mode=chat_agent_mode,
+    )
+    log_file_contract("turn_start", stream_result)
+    _perf_log.info(
+        "[stream_new_chat] filesystem_mode=%s client_platform=%s",
+        fs_mode,
+        fs_platform,
+    )
+    log_system_snapshot("stream_new_chat_START")
+
+    from app.services.token_tracking_service import start_turn
+
+    accumulator = start_turn()
+
+    premium_reservation: PremiumReservation | None = None
+    busy_error_raised = False
+
+    emit_stream_error = partial(
+        emit_stream_terminal_error,
+        streaming_service=streaming_service,
+        flow=flow,
+        request_id=request_id,
+        thread_id=chat_id,
+        search_space_id=search_space_id,
+        user_id=user_id,
+    )
+
+    session = async_session_maker()
+    # Declared at function scope so SSE-yield join points and the finally
+    # clause see them on every exit path.
+    persist_user_task: asyncio.Task[int | None] | None = None
+    persist_asst_task: asyncio.Task[int | None] | None = None
+    try:
+        spawn_set_ai_responding_bg(
+            chat_id=chat_id, user_id=user_id, background_tasks=_background_tasks
+        )
+
+        # --- Block 1: LLM config + capability ---
+
+        requested_llm_config_id = llm_config_id
+        requires_image_input = bool(user_image_data_urls)
+
+        _t0 = time.perf_counter()
+        pin_result = await resolve_initial_auto_pin(
+            session,
+            chat_id=chat_id,
+            search_space_id=search_space_id,
+            user_id=user_id,
+            selected_llm_config_id=llm_config_id,
+            requires_image_input=requires_image_input,
+            requested_llm_config_id=requested_llm_config_id,
+        )
+        if pin_result.error is not None:
+            message, error_code, error_kind = pin_result.error
+            yield emit_stream_error(
+                message=message, error_kind=error_kind, error_code=error_code
+            )
+            yield streaming_service.format_done()
+            return
+        llm_config_id = pin_result.llm_config_id  # type: ignore[assignment]
+
+        llm, agent_config, llm_load_error = await load_llm_bundle(
+            session, config_id=llm_config_id, search_space_id=search_space_id
+        )
+        if llm_load_error:
+            yield emit_stream_error(
+                message=llm_load_error,
+                error_kind="server_error",
+                error_code="SERVER_ERROR",
+            )
+            yield streaming_service.format_done()
+            return
+        _perf_log.info(
+            "[stream_new_chat] LLM config loaded in %.3fs (config_id=%s)",
+            time.perf_counter() - _t0,
+            llm_config_id,
+        )
+
+        capability_error = check_image_input_capability(
+            user_image_data_urls=user_image_data_urls, agent_config=agent_config
+        )
+        if capability_error is not None:
+            message, error_code = capability_error
+            yield emit_stream_error(
+                message=message,
+                error_kind="user_error",
+                error_code=error_code,
+            )
+            yield streaming_service.format_done()
+            return
+
+        if needs_premium_quota(agent_config, user_id):
+            premium_reservation = await reserve_premium(
+                agent_config=agent_config,
+                user_id=user_id,  # type: ignore[arg-type]
+            )
+            if not premium_reservation.allowed:
+                ot.add_event("quota.denied", {"quota.code": "PREMIUM_QUOTA_EXHAUSTED"})
+                if requested_llm_config_id == 0:
+                    pin_fallback = await resolve_initial_auto_pin(
+                        session,
+                        chat_id=chat_id,
+                        search_space_id=search_space_id,
+                        user_id=user_id,
+                        selected_llm_config_id=0,
+                        requires_image_input=requires_image_input,
+                        requested_llm_config_id=requested_llm_config_id,
+                    )
+                    if pin_fallback.error is not None:
+                        message, error_code, error_kind = pin_fallback.error
+                        yield emit_stream_error(
+                            message=message,
+                            error_kind=error_kind,
+                            error_code=error_code,
+                        )
+                        yield streaming_service.format_done()
+                        return
+                    llm_config_id = pin_fallback.llm_config_id  # type: ignore[assignment]
+                    ot.add_event(
+                        "model.repin",
+                        {
+                            "repin.reason": "premium_quota_exhausted",
+                            "repin.to_config_id": llm_config_id,
+                        },
+                    )
+                    llm, agent_config, llm_load_error = await load_llm_bundle(
+                        session,
+                        config_id=llm_config_id,
+                        search_space_id=search_space_id,
+                    )
+                    if llm_load_error:
+                        yield emit_stream_error(
+                            message=llm_load_error,
+                            error_kind="server_error",
+                            error_code="SERVER_ERROR",
+                        )
+                        yield streaming_service.format_done()
+                        return
+                    premium_reservation = None
+                    # Re-route to free fallback logged via the structured
+                    # stream-error logger so cost/analytics see the auto-switch.
+                    from app.tasks.chat.streaming.errors.classifier import (
+                        log_chat_stream_error,
+                    )
+
+                    log_chat_stream_error(
+                        flow=flow,
+                        error_kind="premium_quota_exhausted",
+                        error_code="PREMIUM_QUOTA_EXHAUSTED",
+                        severity="info",
+                        is_expected=True,
+                        request_id=request_id,
+                        thread_id=chat_id,
+                        search_space_id=search_space_id,
+                        user_id=user_id,
+                        message=(
+                            "Premium quota exhausted on pinned model; "
+                            "auto-fallback switched to a free model"
+                        ),
+                        extra={
+                            "fallback_config_id": llm_config_id,
+                            "auto_fallback": True,
+                        },
+                    )
+                else:
+                    yield emit_stream_error(
+                        message=(
+                            "Buy more tokens to continue with this model, or "
+                            "switch to a free model"
+                        ),
+                        error_kind="premium_quota_exhausted",
+                        error_code="PREMIUM_QUOTA_EXHAUSTED",
+                        severity="info",
+                        is_expected=True,
+                        extra={
+                            "resolved_config_id": llm_config_id,
+                            "auto_fallback": False,
+                        },
+                    )
+                    yield streaming_service.format_done()
+                    return
+
+        if not llm:
+            yield emit_stream_error(
+                message="Failed to create LLM instance",
+                error_kind="server_error",
+                error_code="SERVER_ERROR",
+            )
+            yield streaming_service.format_done()
+            return
+
+        # --- Block 2: Spawn concurrent persistence; build pre-stream setup ---
+
+        persist_user_task = spawn_persist_user_task(
+            chat_id=chat_id,
+            user_id=user_id,
+            turn_id=stream_result.turn_id,
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+            mentioned_documents=mentioned_documents,
+            background_tasks=_background_tasks,
+        )
+        persist_asst_task = spawn_persist_assistant_shell_task(
+            chat_id=chat_id,
+            user_id=user_id,
+            turn_id=stream_result.turn_id,
+            background_tasks=_background_tasks,
+        )
+
+        _t0 = time.perf_counter()
+        connector_service, firecrawl_api_key = await setup_connector_and_firecrawl(
+            session, search_space_id=search_space_id
+        )
+        _perf_log.info(
+            "[stream_new_chat] Connector service + firecrawl key in %.3fs",
+            time.perf_counter() - _t0,
+        )
+
+        _t0 = time.perf_counter()
+        checkpointer = await get_chat_checkpointer()
+        _perf_log.info(
+            "[stream_new_chat] Checkpointer ready in %.3fs", time.perf_counter() - _t0
+        )
+
+        visibility = thread_visibility or ChatVisibility.PRIVATE
+        use_multi_agent = bool(_app_config.MULTI_AGENT_CHAT_ENABLED)
+        chat_agent_mode = "multi" if use_multi_agent else "single"
+        set_agent_mode(chat_span, chat_agent_mode)
+
+        _t0 = time.perf_counter()
+        agent_factory = (
+            create_multi_agent_chat_deep_agent
+            if use_multi_agent
+            else create_surfsense_deep_agent
+        )
+        # Build the agent inline. Provider 429s surface through the in-stream
+        # recovery loop below, which repins the thread to an eligible
+        # alternative config and rebuilds the agent before the user sees any
+        # output.
+        agent = await build_main_agent_for_thread(
+            agent_factory,
+            llm=llm,
+            search_space_id=search_space_id,
+            db_session=session,
+            connector_service=connector_service,
+            checkpointer=checkpointer,
+            user_id=user_id,
+            thread_id=chat_id,
+            agent_config=agent_config,
+            firecrawl_api_key=firecrawl_api_key,
+            thread_visibility=visibility,
+            filesystem_selection=filesystem_selection,
+            disabled_tools=disabled_tools,
+            mentioned_document_ids=mentioned_document_ids,
+        )
+        _perf_log.info(
+            "[stream_new_chat] Agent created in %.3fs", time.perf_counter() - _t0
+        )
+
+        # --- Block 3: Input assembly ---
+
+        _t0 = time.perf_counter()
+        assembled = await build_new_chat_input_state(
+            session,
+            chat_id=chat_id,
+            search_space_id=search_space_id,
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+            mentioned_document_ids=mentioned_document_ids,
+            mentioned_folder_ids=mentioned_folder_ids,
+            mentioned_documents=mentioned_documents,
+            needs_history_bootstrap=needs_history_bootstrap,
+            thread_visibility=visibility,
+            current_user_display_name=current_user_display_name,
+            filesystem_mode=fs_mode,
+            request_id=request_id,
+            turn_id=stream_result.turn_id,
+        )
+        input_state = assembled.input_state
+        accepted_folder_ids = assembled.accepted_folder_ids
+        _perf_log.info(
+            "[stream_new_chat] History bootstrap + doc/report queries in %.3fs",
+            time.perf_counter() - _t0,
+        )
+
+        # All pre-streaming DB reads done. Commit to release the transaction
+        # and its ACCESS SHARE locks so we don't block DDL (e.g. migrations)
+        # for the entire LLM streaming duration. Tools that need DB access
+        # during streaming start their own short-lived transactions (or use
+        # isolated sessions).
+        await session.commit()
+        # Detach heavy ORM objects (documents with chunks, reports, etc.)
+        # from the session identity map now that we've extracted what we
+        # need. Without this they accumulate in memory for the entire
+        # streaming duration (which can be several minutes).
+        session.expunge_all()
+
+        _perf_log.info(
+            "[stream_new_chat] Total pre-stream setup in %.3fs (chat_id=%s)",
+            time.perf_counter() - _t_total,
+            chat_id,
+        )
+
+        configurable: dict[str, Any] = {
+            "thread_id": str(chat_id),
+            "request_id": request_id or "unknown",
+            "turn_id": stream_result.turn_id,
+        }
+        if checkpoint_id:
+            configurable["checkpoint_id"] = checkpoint_id
+
+        config = {
+            "configurable": configurable,
+            # Effectively uncapped, matching the agent-level ``with_config``
+            # default in ``chat_deepagent.create_agent`` and the unbounded
+            # ``while(true)`` in OpenCode's ``session/processor.ts``. Real
+            # circuit-breakers live in middleware (``DoomLoopMiddleware``,
+            # plus ``enable_tool_call_limit`` / ``enable_model_call_limit``).
+            # The original 25 (and our previous 80 bump) hit users on
+            # legitimate multi-tool plans.
+            "recursion_limit": 10_000,
+        }
+
+        # --- Block 4: First SSE frames ---
+
+        for sse in iter_initial_frames(
+            streaming_service, turn_id=stream_result.turn_id
+        ):
+            yield sse
+
+        # --- Block 5: Persistence join + message-id frames ---
+
+        user_message_id = await await_persist_task(
+            persist_user_task,
+            chat_id=chat_id,
+            turn_id=stream_result.turn_id,
+            log_label="persist_user_task",
+        )
+        if user_message_id is None:
+            yield emit_stream_error(
+                message="We couldn't save your message. Please try again in a moment.",
+                error_kind="server_error",
+                error_code="MESSAGE_PERSIST_FAILED",
+            )
+            for sse in iter_final_frames(streaming_service):
+                yield sse
+            return
+
+        # Emit canonical user message id BEFORE any LLM streaming so the FE
+        # can rename its optimistic ``msg-user-XXX`` placeholder to
+        # ``msg-{user_message_id}`` and unlock features gated on a real DB id
+        # (comments, edit-from-this-message). See B4 in the
+        # ``sse-based_message_id_handshake`` plan.
+        yield streaming_service.format_data(
+            "user-message-id",
+            {"message_id": user_message_id, "turn_id": stream_result.turn_id},
+        )
+
+        assistant_message_id = await await_persist_task(
+            persist_asst_task,
+            chat_id=chat_id,
+            turn_id=stream_result.turn_id,
+            log_label="persist_asst_task",
+        )
+        if assistant_message_id is None:
+            # Genuine DB failure — abort the turn rather than stream into a
+            # void. The user row is already persisted so the legacy
+            # ghost-thread gate isn't reopened.
+            yield emit_stream_error(
+                message=(
+                    "We couldn't initialize the assistant message. Please try again."
+                ),
+                error_kind="server_error",
+                error_code="MESSAGE_PERSIST_FAILED",
+            )
+            for sse in iter_final_frames(streaming_service):
+                yield sse
+            return
+
+        yield streaming_service.format_data(
+            "assistant-message-id",
+            {"message_id": assistant_message_id, "turn_id": stream_result.turn_id},
+        )
+
+        stream_result.assistant_message_id = assistant_message_id
+        stream_result.content_builder = AssistantContentBuilder()
+
+        # --- Block 6: Initial thinking step + title task + runtime context ---
+
+        initial_step = build_initial_thinking_step(
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+        )
+        for sse in iter_initial_thinking_step_frame(
+            initial_step,
+            streaming_service=streaming_service,
+            content_builder=stream_result.content_builder,
+        ):
+            yield sse
+
+        initial_step_id = initial_step.step_id
+        initial_step_title = initial_step.title
+        initial_step_items = initial_step.items
+        # Drop the heavy ORM objects + the container that holds them so they
+        # aren't retained for the entire streaming duration. ``input_state``
+        # already carries the langchain_messages list independently.
+        del assembled
+
+        title_task = spawn_title_task(
+            chat_id=chat_id,
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+            assistant_message_id=assistant_message_id,
+            llm=llm,
+            agent_config=agent_config,
+        )
+        title_emitted = False
+
+        runtime_context = build_new_chat_runtime_context(
+            search_space_id=search_space_id,
+            mentioned_document_ids=mentioned_document_ids,
+            accepted_folder_ids=accepted_folder_ids,
+            mentioned_folder_ids=mentioned_folder_ids,
+            request_id=request_id,
+            turn_id=stream_result.turn_id,
+        )
+
+        # --- Block 7: Stream loop ---
+
+        _t_stream_start = time.perf_counter()
+        runtime_rate_limit_recovered = False
+
+        def _on_first_event() -> None:
+            _perf_log.info(
+                "[stream_new_chat] First agent event in %.3fs (time since stream start), "
+                "%.3fs (total since request start) (chat_id=%s)",
+                time.perf_counter() - _t_stream_start,
+                time.perf_counter() - _t_total,
+                chat_id,
+            )
+
+        async def _recover(exc: BaseException, first_event_seen: bool):
+            nonlocal llm_config_id, llm, agent_config, runtime_rate_limit_recovered
+            nonlocal title_task
+            if not can_recover_provider_rate_limit(
+                exc,
+                first_event_seen=first_event_seen,
+                runtime_rate_limit_recovered=runtime_rate_limit_recovered,
+                requested_llm_config_id=requested_llm_config_id,
+                current_llm_config_id=llm_config_id,
+            ):
+                return None
+            runtime_rate_limit_recovered = True
+            previous_config_id = llm_config_id
+            llm_config_id = await reroute_to_next_auto_pin(
+                session,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                current_llm_config_id=llm_config_id,
+                requires_image_input=requires_image_input,
+            )
+            new_llm, new_agent_config, llm_load_err = await load_llm_bundle(
+                session, config_id=llm_config_id, search_space_id=search_space_id
+            )
+            if llm_load_err:
+                # Re-raise the original so the terminal-error path classifies
+                # it correctly (don't swallow as "config load error").
+                return None
+            llm = new_llm
+            agent_config = new_agent_config
+
+            # Title gen used the initial llm object. After a runtime repin we
+            # keep the stream focused on response recovery and skip title gen
+            # for this turn.
+            if title_task is not None and not title_task.done():
+                title_task.cancel()
+            title_task = None
+
+            _t_rebuild = time.perf_counter()
+            new_agent = await build_main_agent_for_thread(
+                agent_factory,
+                llm=llm,
+                search_space_id=search_space_id,
+                db_session=session,
+                connector_service=connector_service,
+                checkpointer=checkpointer,
+                user_id=user_id,
+                thread_id=chat_id,
+                agent_config=agent_config,
+                firecrawl_api_key=firecrawl_api_key,
+                thread_visibility=visibility,
+                filesystem_selection=filesystem_selection,
+                disabled_tools=disabled_tools,
+                mentioned_document_ids=mentioned_document_ids,
+            )
+            _perf_log.info(
+                "[stream_new_chat] Runtime rate-limit recovery repinned "
+                "config_id=%s -> %s and rebuilt agent in %.3fs",
+                previous_config_id,
+                llm_config_id,
+                time.perf_counter() - _t_rebuild,
+            )
+            log_rate_limit_recovered(
+                flow=flow,
+                request_id=request_id,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                previous_config_id=previous_config_id,
+                new_config_id=llm_config_id,
+            )
+            return new_agent
+
+        async for sse in run_stream_loop(
+            agent=agent,
+            streaming_service=streaming_service,
+            config=config,
+            input_data=input_state,
+            stream_result=stream_result,
+            step_prefix="thinking",
+            initial_step_id=initial_step_id,
+            initial_step_title=initial_step_title,
+            initial_step_items=initial_step_items,
+            fallback_commit_search_space_id=search_space_id,
+            fallback_commit_created_by_id=user_id,
+            fallback_commit_filesystem_mode=(
+                filesystem_selection.mode
+                if filesystem_selection
+                else FilesystemMode.CLOUD
+            ),
+            fallback_commit_thread_id=chat_id,
+            runtime_context=runtime_context,
+            content_builder=stream_result.content_builder,
+            recover=_recover,
+            on_first_event=_on_first_event,
+        ):
+            yield sse
+            # Inject the title update mid-stream as soon as the background
+            # task finishes; gated so we emit at most once.
+            async for title_sse in maybe_emit_title_update(
+                title_task=title_task,
+                title_emitted=title_emitted,
+                chat_id=chat_id,
+                accumulator=accumulator,
+                streaming_service=streaming_service,
+            ):
+                yield title_sse
+                title_emitted = True
+            # Account for the case where the task completed but produced no
+            # title — flip the flag anyway so we don't keep checking it.
+            if title_task is not None and title_task.done() and not title_emitted:
+                title_emitted = True
+
+        _perf_log.info(
+            "[stream_new_chat] Agent stream completed in %.3fs (chat_id=%s)",
+            time.perf_counter() - _t_stream_start,
+            chat_id,
+        )
+        log_system_snapshot("stream_new_chat_END")
+
+        # --- Block 8: Finalize ---
+
+        if stream_result.is_interrupted:
+            ot.add_event("chat.interrupted", {"chat.flow": flow})
+            if title_task is not None and not title_task.done():
+                title_task.cancel()
+            for sse in iter_token_usage_frame(
+                streaming_service,
+                accumulator=accumulator,
+                log_label="interrupted new_chat",
+            ):
+                yield sse
+            yield streaming_service.format_finish_step()
+            yield streaming_service.format_finish()
+            yield streaming_service.format_done()
+            return
+
+        async for title_sse in await_pending_title_update(
+            title_task=title_task,
+            title_emitted=title_emitted,
+            chat_id=chat_id,
+            accumulator=accumulator,
+            streaming_service=streaming_service,
+        ):
+            yield title_sse
+
+        # Finalize premium credit debit with the actual provider cost reported
+        # by LiteLLM, summed across every call in the turn. Mirrors the
+        # pre-cost behaviour of "premium turn → all calls count" so free
+        # sub-agent calls during a premium turn still contribute to the bill
+        # (they're $0 in practice anyway).
+        if premium_reservation is not None and user_id:
+            await finalize_premium(
+                reservation=premium_reservation,
+                user_id=user_id,
+                accumulator=accumulator,
+            )
+            premium_reservation = None
+
+        for sse in iter_token_usage_frame(
+            streaming_service, accumulator=accumulator, log_label="normal new_chat"
+        ):
+            yield sse
+
+        for sse in iter_final_frames(streaming_service):
+            yield sse
+
+    except Exception as exc:
+        frames, summary = handle_terminal_exception(
+            exc,
+            flow=flow,
+            flow_label="chat",
+            log_prefix="stream_new_chat",
+            streaming_service=streaming_service,
+            request_id=request_id,
+            chat_id=chat_id,
+            search_space_id=search_space_id,
+            user_id=user_id,
+            chat_span=chat_span,
+        )
+        if summary["busy_error_raised"]:
+            busy_error_raised = True
+        chat_outcome = summary["chat_outcome"]
+        chat_error_category = summary["chat_error_category"]
+        for sse in frames:
+            yield sse
+
+    finally:
+        # Shield the ENTIRE async cleanup from anyio cancel-scope cancellation.
+        # Starlette's BaseHTTPMiddleware uses anyio task groups; on client
+        # disconnect, it cancels the scope with level-triggered cancellation
+        # — every unshielded ``await`` would raise CancelledError immediately.
+        # Without this the very first ``await`` (session.rollback) would
+        # raise, ``except Exception`` wouldn't catch it (CancelledError is a
+        # BaseException), and the rest of cleanup — including session.close()
+        # — would never run.
+        with anyio.CancelScope(shield=True):
+            # Authoritative fallback cleanup for lock/cancel state. Middleware
+            # teardown can be skipped on some client-abort paths.
+            end_turn(str(chat_id))
+
+            if premium_reservation is not None and user_id:
+                await release_premium(reservation=premium_reservation, user_id=user_id)
+
+            await close_session_and_clear_ai_responding(session, chat_id)
+
+            await finalize_assistant_message(
+                stream_result=stream_result,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                accumulator=accumulator,
+                log_prefix="stream_new_chat",
+            )
+
+        # Persist any sandbox-produced files to local storage so they remain
+        # downloadable after the Daytona sandbox auto-deletes.
+        if stream_result and stream_result.sandbox_files:
+            with contextlib.suppress(Exception):
+                from app.agents.new_chat.sandbox import (
+                    is_sandbox_enabled,
+                    persist_and_delete_sandbox,
+                )
+
+                if is_sandbox_enabled():
+                    with anyio.CancelScope(shield=True):
+                        await persist_and_delete_sandbox(
+                            chat_id, stream_result.sandbox_files
+                        )
+
+        # ``aafter_agent`` doesn't fire on ``interrupt()`` or early bailout.
+        # Skip on ``BusyError`` (caller never acquired the lock).
+        if not busy_error_raised:
+            with contextlib.suppress(Exception):
+                end_turn(str(chat_id))
+                _perf_log.info(
+                    "[stream_new_chat] end_turn cleanup (chat_id=%s)", chat_id
+                )
+
+        # Break circular refs held by the agent graph, tools, and LLM
+        # wrappers so the GC can reclaim them in a single pass.
+        agent = llm = connector_service = None
+        input_state = stream_result = None
+        session = None
+
+        run_gc_pass(log_prefix="stream_new_chat", chat_id=chat_id)
+        close_chat_request_span(
+            span_cm=chat_span_cm,
+            span=chat_span,
+            chat_outcome=chat_outcome,
+            chat_agent_mode=chat_agent_mode,
+            flow=flow,
+            chat_error_category=chat_error_category,
+            duration_seconds=time.perf_counter() - _t_total,
+        )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/persistence_spawn.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/persistence_spawn.py
new file mode 100644
index 000000000..9ea5d2ad6
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/persistence_spawn.py
@@ -0,0 +1,129 @@
+"""Concurrent persistence tasks spawned right after the initial validation gate.
+
+These run *during* the rest of the pre-stream setup so we don't serialize
+their latency against agent construction. Awaiting them at the SSE message-id
+yield sites preserves the ghost-thread protection (the user-row INSERT must
+succeed before any LLM streaming begins).
+
+The ``set_ai_responding`` flag flip runs fully fire-and-forget on its own
+shielded session — failures only delay the "AI is responding…" UI flag, not
+the response itself.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+from typing import Any
+from uuid import UUID
+
+from app.db import shielded_async_session
+from app.services.chat_session_state_service import set_ai_responding
+from app.tasks.chat.persistence import (
+    persist_assistant_shell,
+    persist_user_turn,
+)
+
+logger = logging.getLogger(__name__)
+
+
+def spawn_set_ai_responding_bg(
+    *,
+    chat_id: int,
+    user_id: str | None,
+    background_tasks: set[asyncio.Task[Any]],
+) -> None:
+    """Fire-and-forget: flip the per-thread AI-responding flag on its own session.
+
+    Errors are swallowed and logged — the worst case is a stale UI flag, which
+    is preferable to delaying the SSE stream behind a flag write.
+    """
+    if not user_id:
+        return
+
+    async def _bg_set_ai_responding() -> None:
+        try:
+            async with shielded_async_session() as s:
+                await set_ai_responding(s, chat_id, UUID(user_id))
+        except Exception:
+            logger.warning(
+                "set_ai_responding failed (chat_id=%s)",
+                chat_id,
+                exc_info=True,
+            )
+
+    t = asyncio.create_task(_bg_set_ai_responding())
+    background_tasks.add(t)
+    t.add_done_callback(background_tasks.discard)
+
+
+def spawn_persist_user_task(
+    *,
+    chat_id: int,
+    user_id: str | None,
+    turn_id: str,
+    user_query: str,
+    user_image_data_urls: list[str] | None,
+    mentioned_documents: list[dict[str, Any]] | None,
+    background_tasks: set[asyncio.Task[Any]],
+) -> asyncio.Task[int | None]:
+    """Spawn the user-row INSERT; await at the user-message-id yield site."""
+    task = asyncio.create_task(
+        persist_user_turn(
+            chat_id=chat_id,
+            user_id=user_id,
+            turn_id=turn_id,
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+            mentioned_documents=mentioned_documents,
+        )
+    )
+    background_tasks.add(task)
+    task.add_done_callback(background_tasks.discard)
+    return task
+
+
+def spawn_persist_assistant_shell_task(
+    *,
+    chat_id: int,
+    user_id: str | None,
+    turn_id: str,
+    background_tasks: set[asyncio.Task[Any]],
+) -> asyncio.Task[int | None]:
+    """Spawn the assistant-shell INSERT; await at the assistant-message-id yield site."""
+    task = asyncio.create_task(
+        persist_assistant_shell(
+            chat_id=chat_id,
+            user_id=user_id,
+            turn_id=turn_id,
+        )
+    )
+    background_tasks.add(task)
+    task.add_done_callback(background_tasks.discard)
+    return task
+
+
+async def await_persist_task(
+    task: asyncio.Task[int | None] | None,
+    *,
+    chat_id: int,
+    turn_id: str,
+    log_label: str,
+) -> int | None:
+    """Join a spawned persistence task with ``shield`` + uniform error handling.
+
+    ``shield`` keeps the DB write alive if the SSE generator is cancelled by
+    client disconnect mid-await. Returns ``None`` on failure; the caller
+    abort-paths the turn with a friendly error SSE.
+    """
+    if task is None:
+        return None
+    try:
+        return await asyncio.shield(task)
+    except asyncio.CancelledError:
+        raise
+    except Exception:
+        logger.exception(
+            "%s failed (chat_id=%s, turn_id=%s)", log_label, chat_id, turn_id
+        )
+        return None
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/runtime_context.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/runtime_context.py
new file mode 100644
index 000000000..cf1e8c3fb
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/runtime_context.py
@@ -0,0 +1,36 @@
+"""Build the per-invocation ``SurfSenseContextSchema`` for a new-chat turn.
+
+Carries the per-turn read inputs that middlewares read via
+``runtime.context.*`` instead of from their ``__init__`` closures, so the same
+compiled-agent instance can serve multiple turns with different
+mention lists / request ids / turn ids without rebuilding the graph.
+"""
+
+from __future__ import annotations
+
+from app.agents.new_chat.context import SurfSenseContextSchema
+
+
+def build_new_chat_runtime_context(
+    *,
+    search_space_id: int,
+    mentioned_document_ids: list[int] | None,
+    accepted_folder_ids: list[int],
+    mentioned_folder_ids: list[int] | None,
+    request_id: str | None,
+    turn_id: str,
+) -> SurfSenseContextSchema:
+    """``mentioned_document_ids`` is consumed by ``KnowledgePriorityMiddleware``.
+
+    ``accepted_folder_ids`` (post-resolve) wins over the raw
+    ``mentioned_folder_ids`` from the request: the resolver drops chips that
+    pointed at deleted folders or folders the caller can't see, so middlewares
+    only get authorized ids.
+    """
+    return SurfSenseContextSchema(
+        search_space_id=search_space_id,
+        mentioned_document_ids=list(mentioned_document_ids or []),
+        mentioned_folder_ids=list(accepted_folder_ids or mentioned_folder_ids or []),
+        request_id=request_id,
+        turn_id=turn_id,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/title_gen.py b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/title_gen.py
new file mode 100644
index 000000000..7db45941b
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/new_chat/title_gen.py
@@ -0,0 +1,233 @@
+"""Background thread-title generation (first-response only).
+
+The first assistant response in a thread gets a short auto-generated title
+inserted into ``new_chat_threads.title``. We:
+
+  1. Spawn the generation as an ``asyncio.Task`` so it runs in parallel with
+     the agent stream (no extra TTFT).
+  2. Probe inside the task (on its own shielded session) whether this is
+     actually the first response — newer turns short-circuit to ``None``.
+  3. Inject the resulting ``thread-title-update`` SSE frame on the first agent
+     event after the task completes (mid-stream interlock), or right before
+     the finish frames (post-stream join) if the task hadn't finished yet.
+
+Usage tokens come directly off the response (LiteLLM's async callback fires
+via fire-and-forget ``create_task``, so the ``TokenTrackingCallback`` would
+run too late). We also blank the per-task accumulator so the late callback
+doesn't double-count.
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+from typing import TYPE_CHECKING, Any
+
+from sqlalchemy.future import select
+
+from app.db import NewChatMessage, NewChatThread, shielded_async_session
+from app.prompts import TITLE_GENERATION_PROMPT
+from app.services.new_streaming_service import VercelStreamingService
+
+if TYPE_CHECKING:
+    from app.agents.new_chat.llm_config import AgentConfig
+    from app.services.token_tracking_service import TokenAccumulator
+
+
+logger = logging.getLogger(__name__)
+
+
+def spawn_title_task(
+    *,
+    chat_id: int,
+    user_query: str,
+    user_image_data_urls: list[str] | None,
+    assistant_message_id: int | None,
+    llm: Any,
+    agent_config: AgentConfig | None,
+) -> asyncio.Task[tuple[str | None, dict | None]] | None:
+    """Spawn ``_generate_title``; returns ``None`` when prerequisites aren't met.
+
+    Title gen is gated on a real ``assistant_message_id`` so a stream that
+    aborts before persistence can never leave a thread with a title and no
+    anchoring rows.
+    """
+    if assistant_message_id is None:
+        return None
+    return asyncio.create_task(
+        _generate_title(
+            chat_id=chat_id,
+            user_query=user_query,
+            user_image_data_urls=user_image_data_urls,
+            assistant_message_id=assistant_message_id,
+            llm=llm,
+            agent_config=agent_config,
+        )
+    )
+
+
+async def _generate_title(
+    *,
+    chat_id: int,
+    user_query: str,
+    user_image_data_urls: list[str] | None,
+    assistant_message_id: int,
+    llm: Any,
+    agent_config: AgentConfig | None,
+) -> tuple[str | None, dict | None]:
+    """Probe is-first-response, then call ``acompletion``. Returns ``(title, usage)``."""
+    try:
+        from litellm import acompletion
+
+        from app.services.llm_router_service import LLMRouterService
+        from app.services.provider_api_base import resolve_api_base
+        from app.services.token_tracking_service import _turn_accumulator
+
+        # Excludes this turn's own assistant row (pre-written by
+        # ``persist_assistant_shell``) — without the ``!=`` filter the gate
+        # would false-negative on every turn after the first.
+        try:
+            async with shielded_async_session() as probe_session:
+                probe_result = await probe_session.execute(
+                    select(NewChatMessage.id)
+                    .filter(
+                        NewChatMessage.thread_id == chat_id,
+                        NewChatMessage.role == "assistant",
+                        NewChatMessage.id != assistant_message_id,
+                    )
+                    .limit(1)
+                )
+                is_first_response = probe_result.scalars().first() is None
+        except Exception:
+            logger.warning(
+                "[TitleGen] first-response probe failed (chat_id=%s)",
+                chat_id,
+                exc_info=True,
+            )
+            return None, None
+
+        if not is_first_response:
+            return None, None
+
+        _turn_accumulator.set(None)
+
+        title_seed = user_query.strip() or (
+            f"[{len(user_image_data_urls or [])} image(s)]"
+            if user_image_data_urls
+            else ""
+        )
+        prompt = TITLE_GENERATION_PROMPT.replace(
+            "{user_query}", title_seed[:500] or "(message)"
+        )
+        messages = [{"role": "user", "content": prompt}]
+
+        if getattr(llm, "model", None) == "auto":
+            router = LLMRouterService.get_router()
+            response = await router.acompletion(model="auto", messages=messages)
+        else:
+            # Apply the same ``api_base`` cascade chat / vision / image-gen
+            # call sites use so we never inherit ``litellm.api_base``
+            # (commonly set by ``AZURE_OPENAI_ENDPOINT``) when the chat
+            # config itself ships an empty ``api_base``. Without this the
+            # title-gen on an OpenRouter chat config would 404 against the
+            # inherited Azure endpoint — see ``provider_api_base`` for the
+            # same bug repro on the image-gen / vision paths.
+            raw_model = getattr(llm, "model", "") or ""
+            provider_prefix = raw_model.split("/", 1)[0] if "/" in raw_model else None
+            provider_value = agent_config.provider if agent_config is not None else None
+            title_api_base = resolve_api_base(
+                provider=provider_value,
+                provider_prefix=provider_prefix,
+                config_api_base=getattr(llm, "api_base", None),
+            )
+            response = await acompletion(
+                model=raw_model,
+                messages=messages,
+                api_key=getattr(llm, "api_key", None),
+                api_base=title_api_base,
+            )
+
+        usage_info = None
+        usage = getattr(response, "usage", None)
+        if usage:
+            raw_model = getattr(llm, "model", "") or ""
+            model_name = (
+                raw_model.split("/", 1)[-1]
+                if "/" in raw_model
+                else (raw_model or response.model or "unknown")
+            )
+            usage_info = {
+                "model": model_name,
+                "prompt_tokens": getattr(usage, "prompt_tokens", 0) or 0,
+                "completion_tokens": getattr(usage, "completion_tokens", 0) or 0,
+                "total_tokens": getattr(usage, "total_tokens", 0) or 0,
+            }
+
+        raw_title = response.choices[0].message.content.strip()
+        if raw_title and len(raw_title) <= 100:
+            return raw_title.strip("\"'"), usage_info
+        return None, usage_info
+    except Exception:
+        logger.exception("[TitleGen] _generate_title failed")
+        return None, None
+
+
+async def maybe_emit_title_update(
+    *,
+    title_task: asyncio.Task[tuple[str | None, dict | None]] | None,
+    title_emitted: bool,
+    chat_id: int,
+    accumulator: TokenAccumulator,
+    streaming_service: VercelStreamingService,
+):
+    """Inject one ``thread-title-update`` SSE if the task completed.
+
+    Yields the SSE frame (when applicable). Returns nothing; the orchestrator
+    flips ``title_emitted`` itself after iterating so we don't fight Python's
+    nonlocal-in-generator semantics.
+    """
+    if title_task is None or title_emitted or not title_task.done():
+        return
+    generated_title, title_usage = title_task.result()
+    if title_usage:
+        accumulator.add(**title_usage)
+    if generated_title:
+        async with shielded_async_session() as title_session:
+            title_thread_result = await title_session.execute(
+                select(NewChatThread).filter(NewChatThread.id == chat_id)
+            )
+            title_thread = title_thread_result.scalars().first()
+            if title_thread:
+                title_thread.title = generated_title
+                await title_session.commit()
+        yield streaming_service.format_thread_title_update(chat_id, generated_title)
+
+
+async def await_pending_title_update(
+    *,
+    title_task: asyncio.Task[tuple[str | None, dict | None]] | None,
+    title_emitted: bool,
+    chat_id: int,
+    accumulator: TokenAccumulator,
+    streaming_service: VercelStreamingService,
+):
+    """If the task hadn't completed during the stream, await it now and emit.
+
+    Used right before the finish frames in the success path. Mirror of
+    ``maybe_emit_title_update`` but unconditionally awaits.
+    """
+    if title_task is None or title_emitted:
+        return
+    generated_title, title_usage = await title_task
+    if title_usage:
+        accumulator.add(**title_usage)
+    if generated_title:
+        async with shielded_async_session() as title_session:
+            title_thread_result = await title_session.execute(
+                select(NewChatThread).filter(NewChatThread.id == chat_id)
+            )
+            title_thread = title_thread_result.scalars().first()
+            if title_thread:
+                title_thread.title = generated_title
+                await title_session.commit()
+        yield streaming_service.format_thread_title_update(chat_id, generated_title)
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/__init__.py b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/__init__.py
new file mode 100644
index 000000000..ed0683e19
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/__init__.py
@@ -0,0 +1,12 @@
+"""Resume-chat streaming flow.
+
+Public entry point ``stream_resume_chat`` is the slim coroutine in
+``orchestrator.py`` that composes the per-concern modules in this folder and
+the building blocks under ``flows/shared/``.
+"""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.flows.resume_chat.orchestrator import stream_resume_chat
+
+__all__ = ["stream_resume_chat"]
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/assistant_shell.py b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/assistant_shell.py
new file mode 100644
index 000000000..2f34387f8
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/assistant_shell.py
@@ -0,0 +1,31 @@
+"""Pre-write a fresh assistant row for this resume turn.
+
+The original (interrupted) ``stream_new_chat`` invocation already persisted
+its own assistant row anchored to a different ``turn_id``; resume allocates a
+new ``turn_id`` (per-request, see ``orchestrator``) so we need a separate row
+keyed on the same ``(thread_id, turn_id, ASSISTANT)`` invariant.
+
+Idempotent against migration 141's partial unique index — recovers the
+existing id on retry.
+
+Resume does NOT emit ``data-user-message-id``: the user row is from the
+original interrupted turn (different ``turn_id``) and is never re-persisted
+here. See B5 in the ``sse-based_message_id_handshake`` plan.
+"""
+
+from __future__ import annotations
+
+from app.tasks.chat.persistence import persist_assistant_shell
+
+
+async def persist_resume_assistant_shell(
+    *,
+    chat_id: int,
+    user_id: str | None,
+    turn_id: str,
+) -> int | None:
+    return await persist_assistant_shell(
+        chat_id=chat_id,
+        user_id=user_id,
+        turn_id=turn_id,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/orchestrator.py b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/orchestrator.py
new file mode 100644
index 000000000..e1b95aa63
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/orchestrator.py
@@ -0,0 +1,624 @@
+"""``stream_resume_chat`` — public entry point for a HITL resume turn.
+
+Slim composition layer over the per-concern modules in this folder and the
+building blocks under ``flows/shared/``. Mirrors ``stream_new_chat`` but:
+
+  * No user-message persistence (the original turn already wrote it).
+  * No mentions / surfsense-doc / report context assembly (seeded by original).
+  * No title generation (only fires on first-response).
+  * Synchronous ``persist_assistant_shell`` call (we have no other in-flight
+    pre-stream work to overlap it with).
+  * ``input_data`` is a ``Command(resume=lg_resume_map)`` instead of a
+    LangChain message list.
+"""
+
+from __future__ import annotations
+
+import contextlib
+import logging
+import time
+from collections.abc import AsyncGenerator
+from functools import partial
+from uuid import UUID
+
+import anyio
+
+from app.agents.multi_agent_chat import create_multi_agent_chat_deep_agent
+from app.agents.new_chat.chat_deepagent import create_surfsense_deep_agent
+from app.agents.new_chat.filesystem_selection import FilesystemMode, FilesystemSelection
+from app.agents.new_chat.middleware.busy_mutex import end_turn
+from app.config import config as _app_config
+from app.db import ChatVisibility, async_session_maker
+from app.observability import otel as ot
+from app.services.chat_session_state_service import set_ai_responding
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.content_builder import AssistantContentBuilder
+from app.tasks.chat.streaming.agent.builder import build_main_agent_for_thread
+from app.tasks.chat.streaming.contract.file_contract import log_file_contract
+from app.tasks.chat.streaming.errors.emitter import emit_stream_terminal_error
+from app.tasks.chat.streaming.flows.resume_chat.assistant_shell import (
+    persist_resume_assistant_shell,
+)
+from app.tasks.chat.streaming.flows.resume_chat.resume_routing import (
+    build_resume_routing,
+)
+from app.tasks.chat.streaming.flows.resume_chat.runtime_context import (
+    build_resume_chat_runtime_context,
+)
+from app.tasks.chat.streaming.flows.shared.assistant_finalize import (
+    finalize_assistant_message,
+)
+from app.tasks.chat.streaming.flows.shared.finalize_emit import iter_token_usage_frame
+from app.tasks.chat.streaming.flows.shared.finally_cleanup import (
+    close_session_and_clear_ai_responding,
+    run_gc_pass,
+)
+from app.tasks.chat.streaming.flows.shared.first_frames import (
+    iter_final_frames,
+    iter_initial_frames,
+)
+from app.tasks.chat.streaming.flows.shared.llm_bundle import load_llm_bundle
+from app.tasks.chat.streaming.flows.shared.pre_stream_setup import (
+    get_chat_checkpointer,
+    setup_connector_and_firecrawl,
+)
+from app.tasks.chat.streaming.flows.shared.premium_quota import (
+    PremiumReservation,
+    finalize_premium,
+    needs_premium_quota,
+    release_premium,
+    reserve_premium,
+)
+from app.tasks.chat.streaming.flows.shared.rate_limit_recovery import (
+    can_recover_provider_rate_limit,
+    log_rate_limit_recovered,
+    reroute_to_next_auto_pin,
+)
+from app.tasks.chat.streaming.flows.shared.span import (
+    close_chat_request_span,
+    open_chat_request_span,
+    set_agent_mode,
+)
+from app.tasks.chat.streaming.flows.shared.stream_loop import run_stream_loop
+from app.tasks.chat.streaming.flows.shared.terminal_error import (
+    handle_terminal_exception,
+)
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.tasks.chat.streaming.shared.utils import resume_step_prefix
+from app.utils.perf import get_perf_logger
+
+logger = logging.getLogger(__name__)
+_perf_log = get_perf_logger()
+
+
+async def stream_resume_chat(
+    chat_id: int,
+    search_space_id: int,
+    decisions: list[dict],
+    user_id: str | None = None,
+    llm_config_id: int = -1,
+    thread_visibility: ChatVisibility | None = None,
+    filesystem_selection: FilesystemSelection | None = None,
+    request_id: str | None = None,
+    disabled_tools: list[str] | None = None,
+) -> AsyncGenerator[str, None]:
+    """Resume a paused HITL turn with the user's decisions.
+
+    Mirrors ``stream_new_chat`` except for the resume-specific routing of
+    ``decisions`` to per-``tool_call_id`` slices (``build_resume_routing``).
+    """
+    streaming_service = VercelStreamingService()
+    stream_result = StreamResult()
+    _t_total = time.perf_counter()
+    fs_mode = filesystem_selection.mode.value if filesystem_selection else "cloud"
+    fs_platform = (
+        filesystem_selection.client_platform.value if filesystem_selection else "web"
+    )
+    stream_result.request_id = request_id
+    stream_result.turn_id = f"{chat_id}:{int(time.time() * 1000)}"
+    stream_result.filesystem_mode = fs_mode
+    stream_result.client_platform = fs_platform
+
+    chat_agent_mode = "unknown"
+    chat_outcome = "success"
+    chat_error_category: str | None = None
+    chat_span_cm, chat_span = open_chat_request_span(
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        flow="resume",
+        request_id=request_id,
+        turn_id=stream_result.turn_id,
+        filesystem_mode=fs_mode,
+        client_platform=fs_platform,
+        agent_mode=chat_agent_mode,
+    )
+    log_file_contract("turn_start", stream_result)
+    _perf_log.info(
+        "[stream_resume] filesystem_mode=%s client_platform=%s",
+        fs_mode,
+        fs_platform,
+    )
+
+    from app.services.token_tracking_service import start_turn
+
+    accumulator = start_turn()
+
+    premium_reservation: PremiumReservation | None = None
+    busy_error_raised = False
+
+    emit_stream_error = partial(
+        emit_stream_terminal_error,
+        streaming_service=streaming_service,
+        flow="resume",
+        request_id=request_id,
+        thread_id=chat_id,
+        search_space_id=search_space_id,
+        user_id=user_id,
+    )
+
+    session = async_session_maker()
+    try:
+        if user_id:
+            await set_ai_responding(session, chat_id, UUID(user_id))
+
+        requested_llm_config_id = llm_config_id
+
+        # --- LLM config ---
+
+        _t0 = time.perf_counter()
+        try:
+            from app.services.auto_model_pin_service import (
+                resolve_or_get_pinned_llm_config_id,
+            )
+
+            pinned = await resolve_or_get_pinned_llm_config_id(
+                session,
+                thread_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                selected_llm_config_id=llm_config_id,
+            )
+            llm_config_id = pinned.resolved_llm_config_id
+            ot.add_event(
+                "model.pin.resolved",
+                {
+                    "pin.requested_id": requested_llm_config_id,
+                    "pin.resolved_id": llm_config_id,
+                    "pin.requires_image_input": False,
+                },
+            )
+        except ValueError as pin_error:
+            yield emit_stream_error(
+                message=str(pin_error),
+                error_kind="server_error",
+                error_code="SERVER_ERROR",
+            )
+            yield streaming_service.format_done()
+            return
+
+        llm, agent_config, llm_load_error = await load_llm_bundle(
+            session, config_id=llm_config_id, search_space_id=search_space_id
+        )
+        if llm_load_error:
+            yield emit_stream_error(
+                message=llm_load_error,
+                error_kind="server_error",
+                error_code="SERVER_ERROR",
+            )
+            yield streaming_service.format_done()
+            return
+        _perf_log.info(
+            "[stream_resume] LLM config loaded in %.3fs", time.perf_counter() - _t0
+        )
+
+        if needs_premium_quota(agent_config, user_id):
+            premium_reservation = await reserve_premium(
+                agent_config=agent_config,
+                user_id=user_id,  # type: ignore[arg-type]
+            )
+            if not premium_reservation.allowed:
+                ot.add_event("quota.denied", {"quota.code": "PREMIUM_QUOTA_EXHAUSTED"})
+                if requested_llm_config_id == 0:
+                    try:
+                        pinned_fb = await resolve_or_get_pinned_llm_config_id(
+                            session,
+                            thread_id=chat_id,
+                            search_space_id=search_space_id,
+                            user_id=user_id,
+                            selected_llm_config_id=0,
+                            force_repin_free=True,
+                        )
+                        llm_config_id = pinned_fb.resolved_llm_config_id
+                        ot.add_event(
+                            "model.repin",
+                            {
+                                "repin.reason": "premium_quota_exhausted",
+                                "repin.to_config_id": llm_config_id,
+                            },
+                        )
+                    except ValueError as pin_error:
+                        yield emit_stream_error(
+                            message=str(pin_error),
+                            error_kind="server_error",
+                            error_code="SERVER_ERROR",
+                        )
+                        yield streaming_service.format_done()
+                        return
+                    llm, agent_config, llm_load_error = await load_llm_bundle(
+                        session,
+                        config_id=llm_config_id,
+                        search_space_id=search_space_id,
+                    )
+                    if llm_load_error:
+                        yield emit_stream_error(
+                            message=llm_load_error,
+                            error_kind="server_error",
+                            error_code="SERVER_ERROR",
+                        )
+                        yield streaming_service.format_done()
+                        return
+                    premium_reservation = None
+                    from app.tasks.chat.streaming.errors.classifier import (
+                        log_chat_stream_error,
+                    )
+
+                    log_chat_stream_error(
+                        flow="resume",
+                        error_kind="premium_quota_exhausted",
+                        error_code="PREMIUM_QUOTA_EXHAUSTED",
+                        severity="info",
+                        is_expected=True,
+                        request_id=request_id,
+                        thread_id=chat_id,
+                        search_space_id=search_space_id,
+                        user_id=user_id,
+                        message=(
+                            "Premium quota exhausted on pinned model; "
+                            "auto-fallback switched to a free model"
+                        ),
+                        extra={
+                            "fallback_config_id": llm_config_id,
+                            "auto_fallback": True,
+                        },
+                    )
+                else:
+                    yield emit_stream_error(
+                        message=(
+                            "Buy more tokens to continue with this model, or "
+                            "switch to a free model"
+                        ),
+                        error_kind="premium_quota_exhausted",
+                        error_code="PREMIUM_QUOTA_EXHAUSTED",
+                        severity="info",
+                        is_expected=True,
+                        extra={
+                            "resolved_config_id": llm_config_id,
+                            "auto_fallback": False,
+                        },
+                    )
+                    yield streaming_service.format_done()
+                    return
+
+        if not llm:
+            yield emit_stream_error(
+                message="Failed to create LLM instance",
+                error_kind="server_error",
+                error_code="SERVER_ERROR",
+            )
+            yield streaming_service.format_done()
+            return
+
+        # --- Pre-stream setup ---
+
+        _t0 = time.perf_counter()
+        connector_service, firecrawl_api_key = await setup_connector_and_firecrawl(
+            session, search_space_id=search_space_id
+        )
+        _perf_log.info(
+            "[stream_resume] Connector service + firecrawl key in %.3fs",
+            time.perf_counter() - _t0,
+        )
+
+        _t0 = time.perf_counter()
+        checkpointer = await get_chat_checkpointer()
+        _perf_log.info(
+            "[stream_resume] Checkpointer ready in %.3fs", time.perf_counter() - _t0
+        )
+
+        visibility = thread_visibility or ChatVisibility.PRIVATE
+        use_multi_agent = bool(_app_config.MULTI_AGENT_CHAT_ENABLED)
+        chat_agent_mode = "multi" if use_multi_agent else "single"
+        set_agent_mode(chat_span, chat_agent_mode)
+
+        _t0 = time.perf_counter()
+        agent_factory = (
+            create_multi_agent_chat_deep_agent
+            if use_multi_agent
+            else create_surfsense_deep_agent
+        )
+        agent = await build_main_agent_for_thread(
+            agent_factory,
+            llm=llm,
+            search_space_id=search_space_id,
+            db_session=session,
+            connector_service=connector_service,
+            checkpointer=checkpointer,
+            user_id=user_id,
+            thread_id=chat_id,
+            agent_config=agent_config,
+            firecrawl_api_key=firecrawl_api_key,
+            thread_visibility=visibility,
+            filesystem_selection=filesystem_selection,
+            disabled_tools=disabled_tools,
+        )
+        _perf_log.info(
+            "[stream_resume] Agent created in %.3fs", time.perf_counter() - _t0
+        )
+
+        # Release the transaction before streaming (same rationale as stream_new_chat).
+        await session.commit()
+        session.expunge_all()
+
+        _perf_log.info(
+            "[stream_resume] Total pre-stream setup in %.3fs (chat_id=%s)",
+            time.perf_counter() - _t_total,
+            chat_id,
+        )
+
+        # --- Resume routing ---
+
+        from langgraph.types import Command
+
+        routing = await build_resume_routing(
+            agent, chat_id=chat_id, decisions=decisions
+        )
+
+        config = {
+            "configurable": {
+                "thread_id": str(chat_id),
+                "request_id": request_id or "unknown",
+                "turn_id": stream_result.turn_id,
+                # Per-``tool_call_id`` resume slices read by
+                # ``SurfSenseCheckpointedSubAgentMiddleware``. Parallel
+                # siblings each pop their own entry, so they never race.
+                "surfsense_resume_value": routing.routed_resume_value,
+            },
+            # Same rationale as ``stream_new_chat``: effectively uncapped to
+            # mirror the agent default and OpenCode's session loop. Doom-loop
+            # / call-limit middleware enforce the real ceiling.
+            "recursion_limit": 10_000,
+        }
+
+        # --- First SSE frames ---
+
+        for sse in iter_initial_frames(
+            streaming_service, turn_id=stream_result.turn_id
+        ):
+            yield sse
+
+        # --- Assistant-shell persistence + id frame ---
+
+        assistant_message_id = await persist_resume_assistant_shell(
+            chat_id=chat_id,
+            user_id=user_id,
+            turn_id=stream_result.turn_id,
+        )
+        if assistant_message_id is None:
+            yield emit_stream_error(
+                message=(
+                    "We couldn't initialize the assistant message. Please try again."
+                ),
+                error_kind="server_error",
+                error_code="MESSAGE_PERSIST_FAILED",
+            )
+            for sse in iter_final_frames(streaming_service):
+                yield sse
+            return
+
+        yield streaming_service.format_data(
+            "assistant-message-id",
+            {"message_id": assistant_message_id, "turn_id": stream_result.turn_id},
+        )
+
+        stream_result.assistant_message_id = assistant_message_id
+        stream_result.content_builder = AssistantContentBuilder()
+
+        runtime_context = build_resume_chat_runtime_context(
+            search_space_id=search_space_id,
+            request_id=request_id,
+            turn_id=stream_result.turn_id,
+        )
+
+        # --- Stream loop ---
+
+        _t_stream_start = time.perf_counter()
+        runtime_rate_limit_recovered = False
+
+        def _on_first_event() -> None:
+            _perf_log.info(
+                "[stream_resume] First agent event in %.3fs (stream), %.3fs (total) (chat_id=%s)",
+                time.perf_counter() - _t_stream_start,
+                time.perf_counter() - _t_total,
+                chat_id,
+            )
+
+        async def _recover(exc: BaseException, first_event_seen: bool):
+            nonlocal llm_config_id, llm, agent_config, runtime_rate_limit_recovered
+            if not can_recover_provider_rate_limit(
+                exc,
+                first_event_seen=first_event_seen,
+                runtime_rate_limit_recovered=runtime_rate_limit_recovered,
+                requested_llm_config_id=requested_llm_config_id,
+                current_llm_config_id=llm_config_id,
+            ):
+                return None
+            runtime_rate_limit_recovered = True
+            previous_config_id = llm_config_id
+            llm_config_id = await reroute_to_next_auto_pin(
+                session,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                current_llm_config_id=llm_config_id,
+                requires_image_input=False,
+            )
+            new_llm, new_agent_config, llm_load_err = await load_llm_bundle(
+                session, config_id=llm_config_id, search_space_id=search_space_id
+            )
+            if llm_load_err:
+                return None
+            llm = new_llm
+            agent_config = new_agent_config
+
+            _t_rebuild = time.perf_counter()
+            new_agent = await build_main_agent_for_thread(
+                agent_factory,
+                llm=llm,
+                search_space_id=search_space_id,
+                db_session=session,
+                connector_service=connector_service,
+                checkpointer=checkpointer,
+                user_id=user_id,
+                thread_id=chat_id,
+                agent_config=agent_config,
+                firecrawl_api_key=firecrawl_api_key,
+                thread_visibility=visibility,
+                filesystem_selection=filesystem_selection,
+                disabled_tools=disabled_tools,
+            )
+            _perf_log.info(
+                "[stream_resume] Runtime rate-limit recovery repinned "
+                "config_id=%s -> %s and rebuilt agent in %.3fs",
+                previous_config_id,
+                llm_config_id,
+                time.perf_counter() - _t_rebuild,
+            )
+            log_rate_limit_recovered(
+                flow="resume",
+                request_id=request_id,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                previous_config_id=previous_config_id,
+                new_config_id=llm_config_id,
+            )
+            return new_agent
+
+        async for sse in run_stream_loop(
+            agent=agent,
+            streaming_service=streaming_service,
+            config=config,
+            input_data=Command(resume=routing.lg_resume_map),
+            stream_result=stream_result,
+            step_prefix=resume_step_prefix(stream_result.turn_id),
+            fallback_commit_search_space_id=search_space_id,
+            fallback_commit_created_by_id=user_id,
+            fallback_commit_filesystem_mode=(
+                filesystem_selection.mode
+                if filesystem_selection
+                else FilesystemMode.CLOUD
+            ),
+            fallback_commit_thread_id=chat_id,
+            runtime_context=runtime_context,
+            content_builder=stream_result.content_builder,
+            recover=_recover,
+            on_first_event=_on_first_event,
+        ):
+            yield sse
+
+        _perf_log.info(
+            "[stream_resume] Agent stream completed in %.3fs (chat_id=%s)",
+            time.perf_counter() - _t_stream_start,
+            chat_id,
+        )
+
+        # --- Finalize ---
+
+        if stream_result.is_interrupted:
+            ot.add_event("chat.interrupted", {"chat.flow": "resume"})
+            for sse in iter_token_usage_frame(
+                streaming_service,
+                accumulator=accumulator,
+                log_label="interrupted resume_chat",
+            ):
+                yield sse
+            yield streaming_service.format_finish_step()
+            yield streaming_service.format_finish()
+            yield streaming_service.format_done()
+            return
+
+        if premium_reservation is not None and user_id:
+            await finalize_premium(
+                reservation=premium_reservation,
+                user_id=user_id,
+                accumulator=accumulator,
+            )
+            premium_reservation = None
+
+        for sse in iter_token_usage_frame(
+            streaming_service, accumulator=accumulator, log_label="normal resume_chat"
+        ):
+            yield sse
+
+        for sse in iter_final_frames(streaming_service):
+            yield sse
+
+    except Exception as exc:
+        frames, summary = handle_terminal_exception(
+            exc,
+            flow="resume",
+            flow_label="resume",
+            log_prefix="stream_resume_chat",
+            streaming_service=streaming_service,
+            request_id=request_id,
+            chat_id=chat_id,
+            search_space_id=search_space_id,
+            user_id=user_id,
+            chat_span=chat_span,
+        )
+        if summary["busy_error_raised"]:
+            busy_error_raised = True
+        chat_outcome = summary["chat_outcome"]
+        chat_error_category = summary["chat_error_category"]
+        for sse in frames:
+            yield sse
+
+    finally:
+        with anyio.CancelScope(shield=True):
+            end_turn(str(chat_id))
+
+            if premium_reservation is not None and user_id:
+                await release_premium(reservation=premium_reservation, user_id=user_id)
+
+            await close_session_and_clear_ai_responding(session, chat_id)
+
+            await finalize_assistant_message(
+                stream_result=stream_result,
+                chat_id=chat_id,
+                search_space_id=search_space_id,
+                user_id=user_id,
+                accumulator=accumulator,
+                log_prefix="stream_resume",
+            )
+
+        # Release the lock from the original interrupted turn or any
+        # re-interrupt/bailout. Skip on ``BusyError`` (lock not held here).
+        if not busy_error_raised:
+            with contextlib.suppress(Exception):
+                end_turn(str(chat_id))
+                _perf_log.info("[stream_resume] end_turn cleanup (chat_id=%s)", chat_id)
+
+        agent = llm = connector_service = None
+        stream_result = None
+        session = None
+
+        run_gc_pass(log_prefix="stream_resume", chat_id=chat_id)
+        close_chat_request_span(
+            span_cm=chat_span_cm,
+            span=chat_span,
+            chat_outcome=chat_outcome,
+            chat_agent_mode=chat_agent_mode,
+            flow="resume",
+            chat_error_category=chat_error_category,
+            duration_seconds=time.perf_counter() - _t_total,
+        )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/resume_routing.py b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/resume_routing.py
new file mode 100644
index 000000000..7f4f67aac
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/resume_routing.py
@@ -0,0 +1,63 @@
+"""Route a flat ``decisions`` list back to the right paused subagent.
+
+Each pending interrupt is stamped with its originating ``tool_call_id`` (see
+``checkpointed_subagent_middleware.propagation``) so the resume slicer can
+re-target each ``HumanReview`` decision at the right ``tool_call_id``.
+
+LangGraph rejects scalar ``Command(resume=...)`` when multiple interrupts are
+pending (parallel HITL); the mapped form works for the single-pause case too,
+so we always use it.
+"""
+
+from __future__ import annotations
+
+import logging
+from dataclasses import dataclass
+from typing import Any
+
+from app.utils.perf import get_perf_logger
+
+_perf_log = get_perf_logger()
+logger = logging.getLogger(__name__)
+
+
+@dataclass
+class ResumeRoutingPayload:
+    """Resolved per-``tool_call_id`` resume slices + the lg-shaped resume map."""
+
+    routed_resume_value: dict[str, Any]
+    lg_resume_map: dict[str, Any]
+
+
+async def build_resume_routing(
+    agent: Any,
+    *,
+    chat_id: int,
+    decisions: list[dict],
+) -> ResumeRoutingPayload:
+    """Read parent_state, collect pending tool-calls, slice decisions, build map.
+
+    The middleware reads its per-``tool_call_id`` resume slice from the
+    ``surfsense_resume_value`` configurable; parallel siblings each pop their
+    own entry so they never race.
+    """
+    from app.agents.multi_agent_chat.middleware.main_agent.checkpointed_subagent_middleware.resume_routing import (
+        build_lg_resume_map,
+        collect_pending_tool_calls,
+        slice_decisions_by_tool_call,
+    )
+
+    parent_state = await agent.aget_state({"configurable": {"thread_id": str(chat_id)}})
+    pending = collect_pending_tool_calls(parent_state)
+    _perf_log.info(
+        "[hitl_route] resume_entry chat_id=%s decisions=%d pending_subagents=%d",
+        chat_id,
+        len(decisions),
+        len(pending),
+    )
+    routed_resume_value = slice_decisions_by_tool_call(decisions, pending)
+    lg_resume_map = build_lg_resume_map(parent_state, routed_resume_value)
+    return ResumeRoutingPayload(
+        routed_resume_value=routed_resume_value,
+        lg_resume_map=lg_resume_map,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/runtime_context.py b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/runtime_context.py
new file mode 100644
index 000000000..59d5d8ca7
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/resume_chat/runtime_context.py
@@ -0,0 +1,23 @@
+"""Build the per-invocation ``SurfSenseContextSchema`` for a resume turn.
+
+Resume doesn't carry new ``mentioned_document_ids`` (those are seeded by the
+original turn). We still build the context so future middleware extensions
+can rely on ``runtime.context`` always being populated.
+"""
+
+from __future__ import annotations
+
+from app.agents.new_chat.context import SurfSenseContextSchema
+
+
+def build_resume_chat_runtime_context(
+    *,
+    search_space_id: int,
+    request_id: str | None,
+    turn_id: str,
+) -> SurfSenseContextSchema:
+    return SurfSenseContextSchema(
+        search_space_id=search_space_id,
+        request_id=request_id,
+        turn_id=turn_id,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/__init__.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/__init__.py
new file mode 100644
index 000000000..b65acc43c
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/__init__.py
@@ -0,0 +1,3 @@
+"""Building blocks shared by ``new_chat`` and ``resume_chat`` orchestrators."""
+
+from __future__ import annotations
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/assistant_finalize.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/assistant_finalize.py
new file mode 100644
index 000000000..be1f102f3
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/assistant_finalize.py
@@ -0,0 +1,107 @@
+"""Server-side assistant-message + token_usage finalization.
+
+Runs inside the streaming flow's ``finally`` block, after the main session has
+been closed (uses its own shielded session, so we don't fight the same DB
+connection).
+
+Idempotent against the legacy frontend ``appendMessage`` recovery branch:
+
+  * the assistant row was already INSERTed by ``persist_assistant_shell``
+    earlier in the turn, so this just UPDATEs it with the rich
+    ``ContentPart[]`` projection from the builder.
+  * ``token_usage`` uses ``INSERT ... ON CONFLICT DO NOTHING`` against the
+    partial unique index from migration 142, so a racing append_message
+    recovery branch can never double-write.
+
+``mark_interrupted`` closes any open text/reasoning blocks and flips running
+tool-calls (no result) to ``state=aborted`` so the persisted JSONB reflects a
+coherent end-state even on client disconnect.
+
+Never raises (best-effort, logs only).
+"""
+
+from __future__ import annotations
+
+from typing import TYPE_CHECKING
+
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.utils.perf import get_perf_logger
+
+if TYPE_CHECKING:
+    from app.services.token_tracking_service import TokenAccumulator
+
+_perf_log = get_perf_logger()
+
+
+async def finalize_assistant_message(
+    *,
+    stream_result: StreamResult | None,
+    chat_id: int,
+    search_space_id: int,
+    user_id: str | None,
+    accumulator: TokenAccumulator,
+    log_prefix: str,
+) -> None:
+    """Snapshot the content builder and persist the final assistant payload.
+
+    No-op when ``stream_result`` was never populated, the turn never reached
+    ``persist_assistant_shell`` (no ``assistant_message_id``), or the turn id
+    was never assigned.
+    """
+    if not (
+        stream_result and stream_result.turn_id and stream_result.assistant_message_id
+    ):
+        return
+
+    from app.tasks.chat.persistence import finalize_assistant_turn
+
+    builder_stats: dict[str, int] | None = None
+    if stream_result.content_builder is not None:
+        stream_result.content_builder.mark_interrupted()
+        # Snapshot stats BEFORE ``snapshot()`` deepcopies so the perf log
+        # records the actual finalised payload (post-mark_interrupted), not
+        # the live-mutating builder state.
+        builder_stats = stream_result.content_builder.stats()
+        content_payload = stream_result.content_builder.snapshot()
+    else:
+        # Defensive fallback — we always set the builder alongside
+        # ``assistant_message_id`` in the orchestrator, so this branch only
+        # fires if a future refactor ever decouples them. Persist whatever
+        # accumulated text we captured so the row at least renders.
+        content_payload = [
+            {
+                "type": "text",
+                "text": stream_result.accumulated_text or "",
+            }
+        ]
+
+    if builder_stats is not None:
+        _perf_log.info(
+            "[%s] finalize_payload chat_id=%s "
+            "message_id=%s parts=%d bytes=%d text=%d "
+            "reasoning=%d tool_calls=%d "
+            "tool_calls_completed=%d tool_calls_aborted=%d "
+            "thinking_step_parts=%d step_separators=%d",
+            log_prefix,
+            chat_id,
+            stream_result.assistant_message_id,
+            builder_stats["parts"],
+            builder_stats["bytes"],
+            builder_stats["text"],
+            builder_stats["reasoning"],
+            builder_stats["tool_calls"],
+            builder_stats["tool_calls_completed"],
+            builder_stats["tool_calls_aborted"],
+            builder_stats["thinking_step_parts"],
+            builder_stats["step_separators"],
+        )
+
+    await finalize_assistant_turn(
+        message_id=stream_result.assistant_message_id,
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        user_id=user_id,
+        turn_id=stream_result.turn_id,
+        content=content_payload,
+        accumulator=accumulator,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/finalize_emit.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/finalize_emit.py
new file mode 100644
index 000000000..e5de3f6a4
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/finalize_emit.py
@@ -0,0 +1,54 @@
+"""Emit the per-turn token-usage SSE frame from the accumulator.
+
+``per_message_summary()`` returns ``None`` when the turn made no chargeable
+LLM calls (e.g. interrupt-on-input). In that case we skip the frame; the
+frontend has no usage to render.
+"""
+
+from __future__ import annotations
+
+import logging
+from typing import TYPE_CHECKING
+
+from app.services.new_streaming_service import VercelStreamingService
+from app.utils.perf import get_perf_logger
+
+if TYPE_CHECKING:
+    from app.services.token_tracking_service import TokenAccumulator
+
+_perf_log = get_perf_logger()
+logger = logging.getLogger(__name__)
+
+
+def iter_token_usage_frame(
+    streaming_service: VercelStreamingService,
+    *,
+    accumulator: TokenAccumulator,
+    log_label: str,
+):
+    """Yield zero or one ``data: token-usage`` SSE frame.
+
+    Side effect: logs a one-line ``[token_usage] {log_label}: ...`` summary so
+    cost analysis can grep call/total/cost across all flows.
+    """
+    usage_summary = accumulator.per_message_summary()
+    _perf_log.info(
+        "[token_usage] %s: calls=%d total=%d cost_micros=%d summary=%s",
+        log_label,
+        len(accumulator.calls),
+        accumulator.grand_total,
+        accumulator.total_cost_micros,
+        usage_summary,
+    )
+    if usage_summary:
+        yield streaming_service.format_data(
+            "token-usage",
+            {
+                "usage": usage_summary,
+                "prompt_tokens": accumulator.total_prompt_tokens,
+                "completion_tokens": accumulator.total_completion_tokens,
+                "total_tokens": accumulator.grand_total,
+                "cost_micros": accumulator.total_cost_micros,
+                "call_details": accumulator.serialized_calls(),
+            },
+        )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/finally_cleanup.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/finally_cleanup.py
new file mode 100644
index 000000000..f9454775e
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/finally_cleanup.py
@@ -0,0 +1,67 @@
+"""Shared finally-block helpers: session close, GC pass, native-heap trim.
+
+These are called from inside an ``anyio.CancelScope(shield=True)`` block in
+each flow's ``finally`` (Starlette's BaseHTTPMiddleware cancels the scope on
+client disconnect; without the shield the very first ``await`` would raise
+``CancelledError`` and the rest of cleanup — including ``session.close()`` —
+would never run).
+"""
+
+from __future__ import annotations
+
+import contextlib
+import gc
+import logging
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.db import shielded_async_session
+from app.services.chat_session_state_service import clear_ai_responding
+from app.utils.perf import get_perf_logger, log_system_snapshot, trim_native_heap
+
+_perf_log = get_perf_logger()
+logger = logging.getLogger(__name__)
+
+
+async def close_session_and_clear_ai_responding(
+    session: AsyncSession, chat_id: int
+) -> None:
+    """Rollback + clear AI-responding flag + expunge_all + close.
+
+    On rollback failure we fall back to a fresh shielded session for the flag
+    clear so a UI is never stuck on "AI is responding…" after a crash.
+    """
+    try:
+        await session.rollback()
+        await clear_ai_responding(session, chat_id)
+    except Exception:
+        try:
+            async with shielded_async_session() as fresh_session:
+                await clear_ai_responding(fresh_session, chat_id)
+        except Exception:
+            logger.warning("Failed to clear AI responding state for thread %s", chat_id)
+
+    with contextlib.suppress(Exception):
+        session.expunge_all()
+
+    with contextlib.suppress(Exception):
+        await session.close()
+
+
+def run_gc_pass(*, log_prefix: str, chat_id: int) -> None:
+    """One full gen0/1/2 pass + native-heap trim + END system snapshot.
+
+    Breaking circular refs held by the agent graph, tools, and LLM wrappers
+    needs to happen in the caller (set the locals to ``None``) — this just
+    runs the collector and logs how many objects came back.
+    """
+    collected = gc.collect(0) + gc.collect(1) + gc.collect(2)
+    if collected:
+        _perf_log.info(
+            "[%s] gc.collect() reclaimed %d objects (chat_id=%s)",
+            log_prefix,
+            collected,
+            chat_id,
+        )
+    trim_native_heap()
+    log_system_snapshot(f"{log_prefix}_END")
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/first_frames.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/first_frames.py
new file mode 100644
index 000000000..5e568b1e8
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/first_frames.py
@@ -0,0 +1,40 @@
+"""Initial SSE frames every flow emits right after pre-stream setup.
+
+Order matters: ``message_start`` opens the assistant message, ``start_step``
+opens the first thinking step, ``turn-info`` lets the frontend stamp the
+correlation id onto the in-flight message, and ``turn-status: busy`` flips the
+UI into the streaming state.
+"""
+
+from __future__ import annotations
+
+from collections.abc import Iterator
+
+from app.services.new_streaming_service import VercelStreamingService
+
+
+def iter_initial_frames(
+    streaming_service: VercelStreamingService,
+    *,
+    turn_id: str,
+) -> Iterator[str]:
+    """Yield the four canonical opening frames in order.
+
+    ``turn-info`` carries ``chat_turn_id`` so even pure-text turns (which
+    never produce a tool / action-log event) still teach the frontend the
+    turn correlation id used for ``appendMessage`` durable storage.
+    """
+    yield streaming_service.format_message_start()
+    yield streaming_service.format_start_step()
+    yield streaming_service.format_data("turn-info", {"chat_turn_id": turn_id})
+    yield streaming_service.format_data("turn-status", {"status": "busy"})
+
+
+def iter_final_frames(
+    streaming_service: VercelStreamingService,
+) -> Iterator[str]:
+    """Yield ``turn-status: idle`` plus the finish/done trailer in order."""
+    yield streaming_service.format_data("turn-status", {"status": "idle"})
+    yield streaming_service.format_finish_step()
+    yield streaming_service.format_finish()
+    yield streaming_service.format_done()
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/llm_bundle.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/llm_bundle.py
new file mode 100644
index 000000000..2f334114c
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/llm_bundle.py
@@ -0,0 +1,57 @@
+"""Load an LLM + AgentConfig bundle for a given config id.
+
+Handles both code paths uniformly:
+- ``config_id >= 0`` → database-backed ``NewLLMConfig`` row (per-user/per-space).
+- ``config_id < 0``  → YAML-defined global LLM config (built-in defaults).
+
+Returns ``(llm, agent_config, error_message)``; on success ``error_message`` is
+``None``. The caller emits the friendly SSE error frame.
+"""
+
+from __future__ import annotations
+
+from typing import Any
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.agents.new_chat.llm_config import (
+    AgentConfig,
+    create_chat_litellm_from_agent_config,
+    create_chat_litellm_from_config,
+    load_agent_config,
+    load_global_llm_config_by_id,
+)
+
+
+async def load_llm_bundle(
+    session: AsyncSession,
+    *,
+    config_id: int,
+    search_space_id: int,
+) -> tuple[Any, AgentConfig | None, str | None]:
+    if config_id >= 0:
+        loaded_agent_config = await load_agent_config(
+            session=session,
+            config_id=config_id,
+            search_space_id=search_space_id,
+        )
+        if not loaded_agent_config:
+            return (
+                None,
+                None,
+                f"Failed to load NewLLMConfig with id {config_id}",
+            )
+        return (
+            create_chat_litellm_from_agent_config(loaded_agent_config),
+            loaded_agent_config,
+            None,
+        )
+
+    loaded_llm_config = load_global_llm_config_by_id(config_id)
+    if not loaded_llm_config:
+        return None, None, f"Failed to load LLM config with id {config_id}"
+    return (
+        create_chat_litellm_from_config(loaded_llm_config),
+        AgentConfig.from_yaml_config(loaded_llm_config),
+        None,
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/pre_stream_setup.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/pre_stream_setup.py
new file mode 100644
index 000000000..ec92306dd
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/pre_stream_setup.py
@@ -0,0 +1,40 @@
+"""Pre-stream setup: connector service, firecrawl key, checkpointer."""
+
+from __future__ import annotations
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.agents.new_chat.checkpointer import get_checkpointer
+from app.db import SearchSourceConnectorType
+from app.services.connector_service import ConnectorService
+
+
+async def setup_connector_and_firecrawl(
+    session: AsyncSession,
+    *,
+    search_space_id: int,
+) -> tuple[ConnectorService, str | None]:
+    """Build the per-turn connector service and pull the firecrawl API key.
+
+    Returns ``(connector_service, firecrawl_api_key)``. ``firecrawl_api_key`` is
+    ``None`` when no web-crawler connector is configured (the agent simply
+    skips firecrawl-backed tools in that case).
+    """
+    connector_service = ConnectorService(session, search_space_id=search_space_id)
+    firecrawl_api_key: str | None = None
+    webcrawler_connector = await connector_service.get_connector_by_type(
+        SearchSourceConnectorType.WEBCRAWLER_CONNECTOR, search_space_id
+    )
+    if webcrawler_connector and webcrawler_connector.config:
+        firecrawl_api_key = webcrawler_connector.config.get("FIRECRAWL_API_KEY")
+    return connector_service, firecrawl_api_key
+
+
+async def get_chat_checkpointer():
+    """Resolve the PostgreSQL checkpointer for persistent conversation memory.
+
+    Thin wrapper around ``app.agents.new_chat.checkpointer.get_checkpointer`` so
+    flow orchestrators can rely on a streaming-local symbol and we have a hook
+    point if the checkpointer source ever needs to vary per flow.
+    """
+    return await get_checkpointer()
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/premium_quota.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/premium_quota.py
new file mode 100644
index 000000000..cbf44764c
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/premium_quota.py
@@ -0,0 +1,132 @@
+"""Premium credit (USD micro-units) reserve / finalize / release lifecycle.
+
+Both ``stream_new_chat`` and ``stream_resume_chat`` reserve premium credits up
+front (so a single LLM call can't run away with the budget), then finalize the
+actual provider cost reported by LiteLLM when the turn completes successfully,
+or release the reservation on the cancellation / interrupted-without-finalize
+paths.
+
+State is held by the orchestrator as a simple ``PremiumReservation`` tuple
+so reservation, fallback-on-denied, finalize, and release can all be reasoned
+about from one place.
+"""
+
+from __future__ import annotations
+
+import logging
+import uuid as _uuid
+from dataclasses import dataclass
+from typing import TYPE_CHECKING
+from uuid import UUID
+
+from app.agents.new_chat.llm_config import AgentConfig
+from app.db import shielded_async_session
+
+if TYPE_CHECKING:
+    from app.services.token_tracking_service import TokenAccumulator
+
+
+@dataclass
+class PremiumReservation:
+    """Active premium-credit reservation for one turn.
+
+    ``request_id`` is the per-reservation idempotency key (also passed to
+    ``finalize``/``release`` so racing branches resolve to the same row).
+    ``reserved_micros`` is the up-front estimate; ``finalize`` debits the
+    actual cost, ``release`` returns it untouched.
+    """
+
+    request_id: str
+    reserved_micros: int
+    allowed: bool
+
+
+def needs_premium_quota(agent_config: AgentConfig | None, user_id: str | None) -> bool:
+    return bool(agent_config is not None and user_id and agent_config.is_premium)
+
+
+async def reserve_premium(
+    *,
+    agent_config: AgentConfig,
+    user_id: str,
+) -> PremiumReservation:
+    """Reserve estimated micros up front; returns the reservation handle."""
+    from app.services.token_quota_service import (
+        TokenQuotaService,
+        estimate_call_reserve_micros,
+    )
+
+    request_id = _uuid.uuid4().hex[:16]
+    litellm_params = agent_config.litellm_params or {}
+    base_model = (
+        (litellm_params.get("base_model") if isinstance(litellm_params, dict) else None)
+        or agent_config.model_name
+        or ""
+    )
+    reserve_amount_micros = estimate_call_reserve_micros(
+        base_model=base_model,
+        quota_reserve_tokens=agent_config.quota_reserve_tokens,
+    )
+    async with shielded_async_session() as quota_session:
+        quota_result = await TokenQuotaService.premium_reserve(
+            db_session=quota_session,
+            user_id=UUID(user_id),
+            request_id=request_id,
+            reserve_micros=reserve_amount_micros,
+        )
+    return PremiumReservation(
+        request_id=request_id,
+        reserved_micros=reserve_amount_micros,
+        allowed=quota_result.allowed,
+    )
+
+
+async def finalize_premium(
+    *,
+    reservation: PremiumReservation,
+    user_id: str,
+    accumulator: TokenAccumulator,
+) -> None:
+    """Finalize debit using the actual provider cost reported by LiteLLM.
+
+    Best-effort: failures here must not bubble up to the SSE stream — the user
+    has already received their tokens; we log and move on.
+    """
+    try:
+        from app.services.token_quota_service import TokenQuotaService
+
+        async with shielded_async_session() as quota_session:
+            await TokenQuotaService.premium_finalize(
+                db_session=quota_session,
+                user_id=UUID(user_id),
+                request_id=reservation.request_id,
+                actual_micros=accumulator.total_cost_micros,
+                reserved_micros=reservation.reserved_micros,
+            )
+    except Exception:
+        logging.getLogger(__name__).warning(
+            "Failed to finalize premium quota for user %s",
+            user_id,
+            exc_info=True,
+        )
+
+
+async def release_premium(
+    *,
+    reservation: PremiumReservation,
+    user_id: str,
+) -> None:
+    """Release the reservation on cancellation paths; never raises."""
+    try:
+        from app.services.token_quota_service import TokenQuotaService
+
+        async with shielded_async_session() as quota_session:
+            await TokenQuotaService.premium_release(
+                db_session=quota_session,
+                user_id=UUID(user_id),
+                reserved_micros=reservation.reserved_micros,
+            )
+    except Exception:
+        logging.getLogger(__name__).warning(
+            "Failed to release premium quota for user %s", user_id
+        )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/rate_limit_recovery.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/rate_limit_recovery.py
new file mode 100644
index 000000000..6b3857594
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/rate_limit_recovery.py
@@ -0,0 +1,129 @@
+"""Shared steps for the in-stream provider rate-limit recovery loop.
+
+Both flows wrap ``run_stream_loop`` with a flow-specific ``recover`` closure;
+the *guard*, the *auto-pin reroute*, and the *post-recovery telemetry* are the
+same on both sides and live here so behaviour can't drift.
+
+The orchestrator owns the parts that genuinely diverge:
+
+  * cancelling the title task (new_chat only),
+  * passing ``mentioned_document_ids`` to ``build_main_agent_for_thread``,
+  * the log prefix (``stream_new_chat`` vs ``stream_resume``).
+"""
+
+from __future__ import annotations
+
+from typing import Literal
+
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.agents.new_chat.middleware.busy_mutex import end_turn
+from app.observability import otel as ot
+from app.services.auto_model_pin_service import (
+    mark_runtime_cooldown,
+    resolve_or_get_pinned_llm_config_id,
+)
+from app.tasks.chat.streaming.errors.classifier import (
+    is_provider_rate_limited,
+    log_chat_stream_error,
+)
+
+
+def can_recover_provider_rate_limit(
+    exc: BaseException,
+    *,
+    first_event_seen: bool,
+    runtime_rate_limit_recovered: bool,
+    requested_llm_config_id: int,
+    current_llm_config_id: int,
+) -> bool:
+    """Guard: only the first auto-pin → provider-rate-limited failure recovers.
+
+    All conditions must hold:
+
+      * ``runtime_rate_limit_recovered is False`` — at most one recovery per turn.
+      * ``requested_llm_config_id == 0`` — caller opted into auto-pin (id=0).
+      * ``current_llm_config_id < 0`` — currently on a YAML config (the only
+        kind the auto-pin pool draws from).
+      * ``first_event_seen is False`` — we haven't sent any SSE to the user yet,
+        so a silent rebuild + retry is invisible.
+      * The exception is provider-side rate-limited (HTTP 429 or known shape).
+    """
+    return (
+        not runtime_rate_limit_recovered
+        and requested_llm_config_id == 0
+        and current_llm_config_id < 0
+        and not first_event_seen
+        and is_provider_rate_limited(exc)
+    )
+
+
+async def reroute_to_next_auto_pin(
+    session: AsyncSession,
+    *,
+    chat_id: int,
+    search_space_id: int,
+    user_id: str | None,
+    current_llm_config_id: int,
+    requires_image_input: bool,
+) -> int:
+    """Release lock, cool down the failing config, pick a new auto-pin id.
+
+    Returns the new ``llm_config_id``. ``end_turn`` is called because the failed
+    attempt may still hold the per-thread busy mutex (middleware teardown can
+    lag behind raised provider errors) — the same-request retry would otherwise
+    bounce on ``BusyError``.
+    """
+    end_turn(str(chat_id))
+    mark_runtime_cooldown(current_llm_config_id, reason="provider_rate_limited")
+    pinned = await resolve_or_get_pinned_llm_config_id(
+        session,
+        thread_id=chat_id,
+        search_space_id=search_space_id,
+        user_id=user_id,
+        selected_llm_config_id=0,
+        exclude_config_ids={current_llm_config_id},
+        requires_image_input=requires_image_input,
+    )
+    return pinned.resolved_llm_config_id
+
+
+def log_rate_limit_recovered(
+    *,
+    flow: Literal["new", "regenerate", "resume"],
+    request_id: str | None,
+    chat_id: int,
+    search_space_id: int,
+    user_id: str | None,
+    previous_config_id: int,
+    new_config_id: int,
+) -> None:
+    """Emit the OTEL event + structured ``[chat_stream_error]`` log line."""
+    ot.add_event(
+        "chat.rate_limit.recovered",
+        {
+            "recovery.reason": "provider_rate_limited",
+            "recovery.previous_config_id": previous_config_id,
+            "recovery.fallback_config_id": new_config_id,
+        },
+    )
+    log_chat_stream_error(
+        flow=flow,
+        error_kind="rate_limited",
+        error_code="RATE_LIMITED",
+        severity="info",
+        is_expected=True,
+        request_id=request_id,
+        thread_id=chat_id,
+        search_space_id=search_space_id,
+        user_id=user_id,
+        message=(
+            "Auto-pinned model hit runtime rate limit; switched to "
+            "another eligible model and retried."
+        ),
+        extra={
+            "auto_runtime_recover": True,
+            "previous_config_id": previous_config_id,
+            "fallback_config_id": new_config_id,
+        },
+    )
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/span.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/span.py
new file mode 100644
index 000000000..74b9682ed
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/span.py
@@ -0,0 +1,79 @@
+"""OpenTelemetry chat-request span wrapper for streaming flows."""
+
+from __future__ import annotations
+
+import contextlib
+import sys
+from typing import Any, Literal
+
+from app.observability import metrics as ot_metrics, otel as ot
+
+
+def open_chat_request_span(
+    *,
+    chat_id: int,
+    search_space_id: int,
+    flow: Literal["new", "regenerate", "resume"],
+    request_id: str | None,
+    turn_id: str,
+    filesystem_mode: str,
+    client_platform: str,
+    agent_mode: str,
+) -> tuple[Any, Any]:
+    """Open the per-request span; returns ``(span_cm, span)`` for finally-close."""
+    span_cm = ot.chat_request_span(
+        chat_id=chat_id,
+        search_space_id=search_space_id,
+        flow=flow,
+        request_id=request_id,
+        turn_id=turn_id,
+        filesystem_mode=filesystem_mode,
+        client_platform=client_platform,
+        agent_mode=agent_mode,
+    )
+    span = span_cm.__enter__()
+    return span_cm, span
+
+
+def set_agent_mode(span: Any, agent_mode: str) -> None:
+    """Tag the span with the resolved agent mode (single / multi)."""
+    with contextlib.suppress(Exception):
+        span.set_attribute("agent.mode", agent_mode)
+
+
+def close_chat_request_span(
+    *,
+    span_cm: Any,
+    span: Any,
+    chat_outcome: str,
+    chat_agent_mode: str,
+    flow: Literal["new", "regenerate", "resume"],
+    chat_error_category: str | None,
+    duration_seconds: float,
+) -> None:
+    """Record metrics + close the span. Swallows errors (finally-block context)."""
+    with contextlib.suppress(Exception):
+        span.set_attribute("chat.outcome", chat_outcome)
+        ot_metrics.record_chat_request_duration(
+            duration_seconds * 1000,
+            flow=flow,
+            outcome=chat_outcome,
+            agent_mode=chat_agent_mode,
+        )
+        ot_metrics.record_chat_request_outcome(
+            flow=flow,
+            outcome=chat_outcome,
+            agent_mode=chat_agent_mode,
+            error_category=chat_error_category,
+        )
+    span_cm.__exit__(*sys.exc_info())
+
+
+def record_outcome_attrs(
+    span: Any, *, chat_outcome: str, chat_error_category: str | None
+) -> None:
+    """Stamp outcome + error.category on the span (used in the except branch)."""
+    with contextlib.suppress(Exception):
+        span.set_attribute("chat.outcome", chat_outcome)
+        if chat_error_category is not None:
+            span.set_attribute("error.category", chat_error_category)
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/stream_loop.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/stream_loop.py
new file mode 100644
index 000000000..6cf0df855
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/stream_loop.py
@@ -0,0 +1,85 @@
+"""Drive ``stream_agent_events`` with in-stream rate-limit recovery.
+
+Both ``stream_new_chat`` and ``stream_resume_chat`` wrap the agent event loop
+in a ``while True`` that catches the *first* provider rate-limit error
+(``can_runtime_recover``) before any SSE event reaches the user, rebuilds the
+agent on an alternative auto-pin, and retries the turn.
+
+The recovery callback is flow-specific (different ``mentioned_document_ids``
+contract, different logging label, etc.) — this module owns the loop shape,
+the caller owns the rebuild.
+"""
+
+from __future__ import annotations
+
+from collections.abc import AsyncGenerator, Awaitable, Callable
+from typing import Any
+
+from app.agents.new_chat.filesystem_selection import FilesystemMode
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.streaming.agent.event_loop import stream_agent_events
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+
+# Returns the rebuilt agent on a successful recovery, or ``None`` to re-raise
+# the original exception (and let the orchestrator's terminal-error path
+# handle it).
+RecoverFn = Callable[[BaseException, bool], Awaitable[Any | None]]
+
+
+async def run_stream_loop(
+    *,
+    agent: Any,
+    streaming_service: VercelStreamingService,
+    config: dict[str, Any],
+    input_data: Any,
+    stream_result: StreamResult,
+    step_prefix: str = "thinking",
+    initial_step_id: str | None = None,
+    initial_step_title: str = "",
+    initial_step_items: list[str] | None = None,
+    fallback_commit_search_space_id: int | None,
+    fallback_commit_created_by_id: str | None,
+    fallback_commit_filesystem_mode: FilesystemMode,
+    fallback_commit_thread_id: int | None,
+    runtime_context: Any,
+    content_builder: Any | None,
+    recover: RecoverFn,
+    on_first_event: Callable[[], None] | None = None,
+) -> AsyncGenerator[str, None]:
+    """Yield SSE frames; rebuild and retry once on a pre-first-event rate limit.
+
+    ``on_first_event`` fires after the first frame is observed (used by both
+    flows to write a one-time ``First agent event in N.NNNs`` perf line).
+    """
+    first_event_logged = False
+    while True:
+        try:
+            async for sse in stream_agent_events(
+                agent=agent,
+                config=config,
+                input_data=input_data,
+                streaming_service=streaming_service,
+                result=stream_result,
+                step_prefix=step_prefix,
+                initial_step_id=initial_step_id,
+                initial_step_title=initial_step_title,
+                initial_step_items=initial_step_items,
+                fallback_commit_search_space_id=fallback_commit_search_space_id,
+                fallback_commit_created_by_id=fallback_commit_created_by_id,
+                fallback_commit_filesystem_mode=fallback_commit_filesystem_mode,
+                fallback_commit_thread_id=fallback_commit_thread_id,
+                runtime_context=runtime_context,
+                content_builder=content_builder,
+            ):
+                if not first_event_logged:
+                    if on_first_event is not None:
+                        on_first_event()
+                    first_event_logged = True
+                yield sse
+            return
+        except Exception as exc:
+            new_agent = await recover(exc, first_event_logged)
+            if new_agent is None:
+                raise
+            agent = new_agent
+            continue
diff --git a/surfsense_backend/app/tasks/chat/streaming/flows/shared/terminal_error.py b/surfsense_backend/app/tasks/chat/streaming/flows/shared/terminal_error.py
new file mode 100644
index 000000000..b305dba23
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/flows/shared/terminal_error.py
@@ -0,0 +1,119 @@
+"""Handle the ``except Exception`` branch of a streaming flow.
+
+Classifies the exception, records OpenTelemetry attributes, emits one terminal
+error SSE frame and the trailing ``turn-status: idle`` + finish/done frames.
+
+Used by both ``stream_new_chat`` and ``stream_resume_chat``; flow-specific bits
+(label, span, BusyError tracking) are passed by the caller.
+"""
+
+from __future__ import annotations
+
+import logging
+import traceback
+from collections.abc import Iterator
+from typing import Any, Literal
+
+from app.agents.new_chat.errors import BusyError
+from app.observability import metrics as ot_metrics, otel as ot
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.streaming.errors.classifier import classify_stream_exception
+from app.tasks.chat.streaming.errors.emitter import emit_stream_terminal_error
+from app.tasks.chat.streaming.flows.shared.first_frames import iter_final_frames
+from app.tasks.chat.streaming.flows.shared.span import record_outcome_attrs
+
+logger = logging.getLogger(__name__)
+
+
+def handle_terminal_exception(
+    exc: Exception,
+    *,
+    flow: Literal["new", "regenerate", "resume"],
+    flow_label: str,
+    log_prefix: str,
+    streaming_service: VercelStreamingService,
+    request_id: str | None,
+    chat_id: int,
+    search_space_id: int,
+    user_id: str | None,
+    chat_span: Any,
+) -> tuple[Iterator[str], dict[str, Any]]:
+    """Classify, log, and produce the SSE frames for a terminal exception.
+
+    Returns ``(frame_iterator, summary)``. ``summary`` carries::
+
+      - ``busy_error_raised``: bool — caller must skip the lock-release path
+        when True (caller never acquired the busy mutex).
+      - ``chat_outcome``: str  — span outcome attribute.
+      - ``chat_error_category``: str — categorized error label for metrics.
+    """
+    busy_error_raised = isinstance(exc, BusyError)
+
+    (
+        error_kind,
+        error_code,
+        severity,
+        is_expected,
+        user_message,
+        error_extra,
+    ) = classify_stream_exception(exc, flow_label=flow_label)
+    chat_outcome = error_code or error_kind or "error"
+    chat_error_category = ot_metrics.categorize_exception(exc)
+    record_outcome_attrs(
+        chat_span,
+        chat_outcome=chat_outcome,
+        chat_error_category=chat_error_category,
+    )
+    with __suppress():
+        ot.record_error(chat_span, exc)
+    error_message = f"Error during {flow_label}: {exc!s}"
+    # Match the original behavior: log full traceback via ``print`` so it lands
+    # in stderr regardless of the logger config.
+    print(f"[{log_prefix}] {error_message}")
+    print(f"[{log_prefix}] Exception type: {type(exc).__name__}")
+    print(f"[{log_prefix}] Traceback:\n{traceback.format_exc()}")
+
+    def _iter_frames() -> Iterator[str]:
+        if error_code == "TURN_CANCELLING":
+            status_payload: dict[str, Any] = {"status": "cancelling"}
+            if error_extra:
+                status_payload.update(error_extra)
+            yield streaming_service.format_data("turn-status", status_payload)
+        else:
+            yield streaming_service.format_data("turn-status", {"status": "busy"})
+
+        yield emit_stream_terminal_error(
+            streaming_service=streaming_service,
+            flow=flow,
+            request_id=request_id,
+            thread_id=chat_id,
+            search_space_id=search_space_id,
+            user_id=user_id,
+            message=user_message,
+            error_kind=error_kind,
+            error_code=error_code,
+            severity=severity,
+            is_expected=is_expected,
+            extra=error_extra,
+        )
+        yield from iter_final_frames(streaming_service)
+
+    return (
+        _iter_frames(),
+        {
+            "busy_error_raised": busy_error_raised,
+            "chat_outcome": chat_outcome,
+            "chat_error_category": chat_error_category,
+        },
+    )
+
+
+def __suppress():
+    """Local single-use ``contextlib.suppress(Exception)`` factory.
+
+    Inlined here so callers don't import ``contextlib`` just for the
+    ``record_error`` call site.
+    """
+    import contextlib
+
+    return contextlib.suppress(Exception)
diff --git a/surfsense_backend/app/tasks/chat/streaming/handlers/tool_end.py b/surfsense_backend/app/tasks/chat/streaming/handlers/tool_end.py
index ad4a17d08..2ff810447 100644
--- a/surfsense_backend/app/tasks/chat/streaming/handlers/tool_end.py
+++ b/surfsense_backend/app/tasks/chat/streaming/handlers/tool_end.py
@@ -6,6 +6,9 @@ import json
 from collections.abc import Iterator
 from typing import Any
 
+from langchain_core.messages import ToolMessage
+from langgraph.types import Command
+
 from app.tasks.chat.streaming.handlers.tools import (
     ToolCompletionEmissionContext,
     iter_tool_completion_emission_frames,
@@ -19,6 +22,38 @@ from app.tasks.chat.streaming.relay.task_span import (
 from app.tasks.chat.streaming.relay.thinking_step_sse import emit_thinking_step_frame
 
 
+def _unwrap_command_output(raw_output: Any) -> Any:
+    """Replace a ``Command`` from a tool return with its inner ``ToolMessage``.
+
+    Tools that participate in receipt-style state writes (see
+    ``app.agents.shared.receipt_command.with_receipt``) return a
+    ``Command(update={"messages": [ToolMessage(...)], "receipts": [...]})``.
+    LangChain's ``on_tool_end`` event surfaces that ``Command`` verbatim as
+    ``data.output``, which the rest of this handler can't introspect: it has
+    no ``.content``, isn't a ``dict``, and stringifies to ``"Command(...)"``.
+    That stringified payload reaches the frontend and breaks tool-specific
+    UI components (e.g. the podcast card) that look for ``status`` /
+    ``podcast_id`` at the top level.
+
+    We extract the first ``ToolMessage`` from the Command's ``messages`` list
+    so downstream code can read ``.content`` normally. Commands that don't
+    contain a ``ToolMessage`` (rare, e.g. pure state updates) are returned
+    unchanged — the existing ``str(raw_output)`` fallback handles them.
+    """
+    if not isinstance(raw_output, Command):
+        return raw_output
+    update = raw_output.update
+    if not isinstance(update, dict):
+        return raw_output
+    messages = update.get("messages")
+    if not isinstance(messages, list):
+        return raw_output
+    for msg in messages:
+        if isinstance(msg, ToolMessage):
+            return msg
+    return raw_output
+
+
 def iter_tool_end_frames(
     event: dict[str, Any],
     *,
@@ -33,7 +68,7 @@ def iter_tool_end_frames(
     state.active_tool_depth = max(0, state.active_tool_depth - 1)
     run_id = event.get("run_id", "")
     tool_name = event.get("name", "unknown_tool")
-    raw_output = event.get("data", {}).get("output", "")
+    raw_output = _unwrap_command_output(event.get("data", {}).get("output", ""))
     staged_file_path = state.file_path_by_run.pop(run_id, None) if run_id else None
 
     if hasattr(raw_output, "content"):
diff --git a/surfsense_backend/app/tasks/chat/streaming/handlers/tools/deliverables/generate_video_presentation/emission.py b/surfsense_backend/app/tasks/chat/streaming/handlers/tools/deliverables/generate_video_presentation/emission.py
index 21e27d4c3..51a67f369 100644
--- a/surfsense_backend/app/tasks/chat/streaming/handlers/tools/deliverables/generate_video_presentation/emission.py
+++ b/surfsense_backend/app/tasks/chat/streaming/handlers/tools/deliverables/generate_video_presentation/emission.py
@@ -15,12 +15,24 @@ def iter_completion_emission_frames(
     out = ctx.tool_output
     payload = out if isinstance(out, dict) else {"result": out}
     yield ctx.emit_tool_output_card(payload)
-    if isinstance(out, dict) and out.get("status") == "pending":
+    if not isinstance(out, dict):
+        return
+    status = out.get("status")
+    # ``ready`` is the live success status now that the tool waits for the
+    # Celery worker to reach a terminal state. ``pending`` is retained as a
+    # legacy branch for old saved chats that pre-date the wait-for-terminal
+    # change (see ``app.agents.shared.deliverable_wait``).
+    if status == "ready":
+        yield ctx.streaming_service.format_terminal_info(
+            f"Video presentation generated successfully: {out.get('title', 'Presentation')}",
+            "success",
+        )
+    elif status == "pending":
         yield ctx.streaming_service.format_terminal_info(
             f"Video presentation queued: {out.get('title', 'Presentation')}",
             "success",
         )
-    elif isinstance(out, dict) and out.get("status") == "failed":
+    elif status == "failed":
         error_msg = out.get("error", "Unknown error")
         yield ctx.streaming_service.format_terminal_info(
             f"Presentation generation failed: {error_msg}",
diff --git a/surfsense_backend/app/tasks/chat/streaming/shared/__init__.py b/surfsense_backend/app/tasks/chat/streaming/shared/__init__.py
new file mode 100644
index 000000000..6c9f1f6b5
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/shared/__init__.py
@@ -0,0 +1,15 @@
+"""Shared building blocks used across every streaming flow."""
+
+from __future__ import annotations
+
+from app.tasks.chat.streaming.shared.stream_result import StreamResult
+from app.tasks.chat.streaming.shared.utils import (
+    resume_step_prefix,
+    safe_float,
+)
+
+__all__ = [
+    "StreamResult",
+    "resume_step_prefix",
+    "safe_float",
+]
diff --git a/surfsense_backend/app/tasks/chat/streaming/shared/stream_result.py b/surfsense_backend/app/tasks/chat/streaming/shared/stream_result.py
new file mode 100644
index 000000000..a940e8a9f
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/shared/stream_result.py
@@ -0,0 +1,37 @@
+"""Per-turn streaming state shared between the orchestrator and event loop."""
+
+from __future__ import annotations
+
+from dataclasses import dataclass, field
+from typing import Any
+
+
+@dataclass
+class StreamResult:
+    accumulated_text: str = ""
+    is_interrupted: bool = False
+    sandbox_files: list[str] = field(default_factory=list)
+    request_id: str | None = None
+    turn_id: str = ""
+    filesystem_mode: str = "cloud"
+    client_platform: str = "web"
+    intent_detected: str = "chat_only"
+    intent_confidence: float = 0.0
+    write_attempted: bool = False
+    write_succeeded: bool = False
+    verification_succeeded: bool = False
+    commit_gate_passed: bool = True
+    commit_gate_reason: str = ""
+    # Pre-allocated assistant ``new_chat_messages.id`` for this turn, captured by
+    # ``persist_assistant_shell`` right after the user row is persisted. ``None``
+    # for the legacy/anonymous code paths that don't opt in to server-side
+    # ``ContentPart[]`` projection.
+    assistant_message_id: int | None = None
+    # In-memory mirror of the FE's assistant-ui ``ContentPartsState``, populated
+    # by the lifecycle methods called from the streaming event loop at each
+    # ``streaming_service.format_*`` yield site. Snapshot in the streaming
+    # ``finally`` to produce the rich JSONB persisted by
+    # ``finalize_assistant_turn``. ``repr=False`` keeps the log-on-error path
+    # (``StreamResult`` is logged in some error branches) from dumping a
+    # potentially-large parts list.
+    content_builder: Any | None = field(default=None, repr=False)
diff --git a/surfsense_backend/app/tasks/chat/streaming/shared/utils.py b/surfsense_backend/app/tasks/chat/streaming/shared/utils.py
new file mode 100644
index 000000000..fe6901543
--- /dev/null
+++ b/surfsense_backend/app/tasks/chat/streaming/shared/utils.py
@@ -0,0 +1,27 @@
+"""Small utilities used by streaming orchestrators and phases."""
+
+from __future__ import annotations
+
+from typing import Any
+
+
+def resume_step_prefix(turn_id: str) -> str:
+    """Per-turn ``step_prefix`` for resume invocations.
+
+    Each ``stream_agent_events`` call constructs a fresh
+    ``AgentEventRelayState`` with ``thinking_step_counter=0``, so two consecutive
+    resume turns would otherwise both emit ``thinking-resume-1``, ``-2`` etc.
+    The frontend rehydrates ``currentThinkingSteps`` from the immediate prior
+    assistant message at the start of every resume — if the new stream's IDs
+    collide with the seeded ones, React renders sibling Timeline rows with the
+    same key. Salting with ``turn_id`` guarantees disjoint IDs across resumes
+    within one thread.
+    """
+    return f"thinking-resume-{turn_id}"
+
+
+def safe_float(value: Any, default: float = 0.0) -> float:
+    try:
+        return float(value)
+    except (TypeError, ValueError):
+        return default
diff --git a/surfsense_backend/app/tasks/surfsense_docs_indexer.py b/surfsense_backend/app/tasks/surfsense_docs_indexer.py
deleted file mode 100644
index db88c8700..000000000
--- a/surfsense_backend/app/tasks/surfsense_docs_indexer.py
+++ /dev/null
@@ -1,249 +0,0 @@
-"""
-Surfsense documentation indexer.
-Indexes MDX documentation files at startup.
-"""
-
-import hashlib
-import logging
-import re
-from datetime import UTC, datetime
-from pathlib import Path
-
-from sqlalchemy import delete as sa_delete, select
-from sqlalchemy.ext.asyncio import AsyncSession
-from sqlalchemy.orm import selectinload
-from sqlalchemy.orm.attributes import set_committed_value
-
-from app.config import config
-from app.db import SurfsenseDocsChunk, SurfsenseDocsDocument, async_session_maker
-from app.utils.document_converters import embed_text
-
-logger = logging.getLogger(__name__)
-
-
-async def _safe_set_docs_chunks(
-    session: AsyncSession, document: SurfsenseDocsDocument, chunks: list
-) -> None:
-    """safe_set_chunks variant for the SurfsenseDocsDocument/Chunk models."""
-    if document.id is not None:
-        await session.execute(
-            sa_delete(SurfsenseDocsChunk).where(
-                SurfsenseDocsChunk.document_id == document.id
-            )
-        )
-        for chunk in chunks:
-            chunk.document_id = document.id
-
-    set_committed_value(document, "chunks", chunks)
-    session.add_all(chunks)
-
-
-# Path to docs relative to project root
-DOCS_DIR = (
-    Path(__file__).resolve().parent.parent.parent.parent
-    / "surfsense_web"
-    / "content"
-    / "docs"
-)
-
-
-def parse_mdx_frontmatter(content: str) -> tuple[str, str]:
-    """
-    Parse MDX file to extract frontmatter title and content.
-
-    Args:
-        content: Raw MDX file content
-
-    Returns:
-        Tuple of (title, content_without_frontmatter)
-    """
-    # Match frontmatter between --- markers
-    frontmatter_pattern = r"^---\s*\n(.*?)\n---\s*\n"
-    match = re.match(frontmatter_pattern, content, re.DOTALL)
-
-    if match:
-        frontmatter = match.group(1)
-        content_without_frontmatter = content[match.end() :]
-
-        # Extract title from frontmatter
-        title_match = re.search(r"^title:\s*(.+)$", frontmatter, re.MULTILINE)
-        title = title_match.group(1).strip() if title_match else "Untitled"
-
-        # Remove quotes if present
-        title = title.strip("\"'")
-
-        return title, content_without_frontmatter.strip()
-
-    return "Untitled", content.strip()
-
-
-def get_all_mdx_files() -> list[Path]:
-    """
-    Get all MDX files from the docs directory.
-
-    Returns:
-        List of Path objects for each MDX file
-    """
-    if not DOCS_DIR.exists():
-        logger.warning(f"Docs directory not found: {DOCS_DIR}")
-        return []
-
-    return list(DOCS_DIR.rglob("*.mdx"))
-
-
-def generate_surfsense_docs_content_hash(content: str) -> str:
-    """Generate SHA-256 hash for Surfsense docs content."""
-    return hashlib.sha256(content.encode("utf-8")).hexdigest()
-
-
-def create_surfsense_docs_chunks(content: str) -> list[SurfsenseDocsChunk]:
-    """
-    Create chunks from Surfsense documentation content.
-
-    Args:
-        content: Document content to chunk
-
-    Returns:
-        List of SurfsenseDocsChunk objects with embeddings
-    """
-    return [
-        SurfsenseDocsChunk(
-            content=chunk.text,
-            embedding=embed_text(chunk.text),
-        )
-        for chunk in config.chunker_instance.chunk(content)
-    ]
-
-
-async def index_surfsense_docs(session: AsyncSession) -> tuple[int, int, int, int]:
-    """
-    Index all Surfsense documentation files.
-
-    Args:
-        session: SQLAlchemy async session
-
-    Returns:
-        Tuple of (created, updated, skipped, deleted) counts
-    """
-    created = 0
-    updated = 0
-    skipped = 0
-    deleted = 0
-
-    # Get all existing docs from database
-    existing_docs_result = await session.execute(
-        select(SurfsenseDocsDocument).options(
-            selectinload(SurfsenseDocsDocument.chunks)
-        )
-    )
-    existing_docs = {doc.source: doc for doc in existing_docs_result.scalars().all()}
-
-    # Track which sources we've processed
-    processed_sources = set()
-
-    # Get all MDX files
-    mdx_files = get_all_mdx_files()
-    logger.info(f"Found {len(mdx_files)} MDX files to index")
-
-    for mdx_file in mdx_files:
-        try:
-            source = str(mdx_file.relative_to(DOCS_DIR))
-            processed_sources.add(source)
-
-            # Read file content
-            raw_content = mdx_file.read_text(encoding="utf-8")
-            title, content = parse_mdx_frontmatter(raw_content)
-            content_hash = generate_surfsense_docs_content_hash(raw_content)
-
-            if source in existing_docs:
-                existing_doc = existing_docs[source]
-
-                # Check if content changed
-                if existing_doc.content_hash == content_hash:
-                    logger.debug(f"Skipping unchanged: {source}")
-                    skipped += 1
-                    continue
-
-                # Content changed - update document
-                logger.info(f"Updating changed document: {source}")
-
-                # Create new chunks
-                chunks = create_surfsense_docs_chunks(content)
-
-                # Update document fields
-                existing_doc.title = title
-                existing_doc.content = content
-                existing_doc.content_hash = content_hash
-                existing_doc.embedding = embed_text(content)
-                await _safe_set_docs_chunks(session, existing_doc, chunks)
-                existing_doc.updated_at = datetime.now(UTC)
-
-                updated += 1
-            else:
-                # New document - create it
-                logger.info(f"Creating new document: {source}")
-
-                chunks = create_surfsense_docs_chunks(content)
-
-                document = SurfsenseDocsDocument(
-                    source=source,
-                    title=title,
-                    content=content,
-                    content_hash=content_hash,
-                    embedding=embed_text(content),
-                    chunks=chunks,
-                    updated_at=datetime.now(UTC),
-                )
-
-                session.add(document)
-                created += 1
-
-        except Exception as e:
-            logger.error(f"Error processing {mdx_file}: {e}", exc_info=True)
-            continue
-
-    # Delete documents for removed files
-    for source, doc in existing_docs.items():
-        if source not in processed_sources:
-            logger.info(f"Deleting removed document: {source}")
-            await session.delete(doc)
-            deleted += 1
-
-    # Commit all changes
-    await session.commit()
-
-    logger.info(
-        f"Indexing complete: {created} created, {updated} updated, "
-        f"{skipped} skipped, {deleted} deleted"
-    )
-
-    return created, updated, skipped, deleted
-
-
-async def seed_surfsense_docs() -> tuple[int, int, int, int]:
-    """
-    Seed Surfsense documentation into the database.
-
-    This function indexes all MDX files from the docs directory.
-    It handles creating, updating, and deleting docs based on content changes.
-
-    Returns:
-        Tuple of (created, updated, skipped, deleted) counts
-        Returns (0, 0, 0, 0) if an error occurs
-    """
-    logger.info("Starting Surfsense docs indexing...")
-
-    try:
-        async with async_session_maker() as session:
-            created, updated, skipped, deleted = await index_surfsense_docs(session)
-
-        logger.info(
-            f"Surfsense docs indexing complete: "
-            f"created={created}, updated={updated}, skipped={skipped}, deleted={deleted}"
-        )
-
-        return created, updated, skipped, deleted
-
-    except Exception as e:
-        logger.error(f"Failed to seed Surfsense docs: {e}", exc_info=True)
-        return 0, 0, 0, 0
diff --git a/surfsense_backend/app/utils/document_converters.py b/surfsense_backend/app/utils/document_converters.py
index 9bc8103c5..059d91806 100644
--- a/surfsense_backend/app/utils/document_converters.py
+++ b/surfsense_backend/app/utils/document_converters.py
@@ -222,9 +222,7 @@ async def generate_document_summary(
     else:
         enhanced_summary_content = summary_content
 
-    summary_embedding = await asyncio.to_thread(
-        embed_text, enhanced_summary_content
-    )
+    summary_embedding = await asyncio.to_thread(embed_text, enhanced_summary_content)
 
     return enhanced_summary_content, summary_embedding
 
diff --git a/surfsense_backend/app/utils/perf.py b/surfsense_backend/app/utils/perf.py
index b2b26897c..541ee5756 100644
--- a/surfsense_backend/app/utils/perf.py
+++ b/surfsense_backend/app/utils/perf.py
@@ -16,6 +16,8 @@ import time
 from contextlib import asynccontextmanager, contextmanager
 from typing import Any
 
+from app.observability import metrics as ot_metrics
+
 _perf_log: logging.Logger | None = None
 _last_rss_mb: float = 0.0
 
@@ -50,6 +52,7 @@ def perf_timer(label: str, *, extra: dict[str, Any] | None = None):
     if extra:
         suffix = " " + " ".join(f"{k}={v}" for k, v in extra.items())
     log.info("%s in %.3fs%s", label, elapsed, suffix)
+    ot_metrics.record_perf_elapsed(elapsed * 1000, label=label)
 
 
 @asynccontextmanager
@@ -68,6 +71,7 @@ async def perf_async_timer(label: str, *, extra: dict[str, Any] | None = None):
     if extra:
         suffix = " " + " ".join(f"{k}={v}" for k, v in extra.items())
     log.info("%s in %.3fs%s", label, elapsed, suffix)
+    ot_metrics.record_perf_elapsed(elapsed * 1000, label=label)
 
 
 def system_snapshot() -> dict[str, Any]:
diff --git a/surfsense_backend/app/utils/surfsense_docs.py b/surfsense_backend/app/utils/surfsense_docs.py
deleted file mode 100644
index 9a6ab11a9..000000000
--- a/surfsense_backend/app/utils/surfsense_docs.py
+++ /dev/null
@@ -1,13 +0,0 @@
-"""Utilities for SurfSense's built-in documentation index."""
-
-from pathlib import PurePosixPath
-
-DOCS_PUBLIC_ROOT = PurePosixPath("/docs")
-
-
-def surfsense_docs_public_url(source: str) -> str:
-    """Return the public docs route for an indexed documentation source path."""
-    docs_path = PurePosixPath(source).with_suffix("")
-    if docs_path.name == "index":
-        docs_path = docs_path.parent
-    return (DOCS_PUBLIC_ROOT / docs_path).as_posix()
diff --git a/surfsense_backend/main.py b/surfsense_backend/main.py
index 4a7a9b7b1..54911a34d 100644
--- a/surfsense_backend/main.py
+++ b/surfsense_backend/main.py
@@ -12,9 +12,26 @@ if sys.platform == "win32":
 
 from app.config.uvicorn import load_uvicorn_config
 
+_old_log_record_factory = logging.getLogRecordFactory()
+
+
+def _otel_safe_log_record_factory(*args, **kwargs):
+    record = _old_log_record_factory(*args, **kwargs)
+    if not hasattr(record, "otelTraceID"):
+        record.otelTraceID = "0"
+    if not hasattr(record, "otelSpanID"):
+        record.otelSpanID = "0"
+    return record
+
+
+logging.setLogRecordFactory(_otel_safe_log_record_factory)
+
 logging.basicConfig(
     level=logging.INFO,
-    format="%(asctime)s - %(name)s - %(levelname)s - %(message)s",
+    format=(
+        "%(asctime)s - %(name)s - %(levelname)s - "
+        "[trace_id=%(otelTraceID)s span_id=%(otelSpanID)s] %(message)s"
+    ),
     datefmt="%Y-%m-%d %H:%M:%S",
 )
 
diff --git a/surfsense_backend/pyproject.toml b/surfsense_backend/pyproject.toml
index cd2a6921a..51405ec74 100644
--- a/surfsense_backend/pyproject.toml
+++ b/surfsense_backend/pyproject.toml
@@ -1,6 +1,6 @@
 [project]
 name = "surf-new-backend"
-version = "0.0.25"
+version = "0.0.26"
 description = "SurfSense Backend"
 requires-python = ">=3.12"
 dependencies = [
@@ -76,6 +76,18 @@ dependencies = [
     "litellm>=1.83.7",
     "langchain-litellm>=0.6.4",
     "deepagents>=0.4.12,<0.5",
+    "opentelemetry-api>=1.40.0",
+    "opentelemetry-sdk>=1.40.0",
+    "opentelemetry-exporter-otlp>=1.40.0",
+    "opentelemetry-semantic-conventions>=0.61b0",
+    "opentelemetry-instrumentation-fastapi>=0.61b0",
+    "opentelemetry-instrumentation-sqlalchemy>=0.61b0",
+    "opentelemetry-instrumentation-psycopg>=0.61b0",
+    "opentelemetry-instrumentation-redis>=0.61b0",
+    "opentelemetry-instrumentation-httpx>=0.61b0",
+    "opentelemetry-instrumentation-celery>=0.61b0",
+    "opentelemetry-instrumentation-logging>=0.61b0",
+    "croniter>=2.0.0",
 ]
 
 [dependency-groups]
diff --git a/surfsense_backend/scripts/seed_surfsense_docs.py b/surfsense_backend/scripts/seed_surfsense_docs.py
deleted file mode 100644
index 68899c2aa..000000000
--- a/surfsense_backend/scripts/seed_surfsense_docs.py
+++ /dev/null
@@ -1,40 +0,0 @@
-#!/usr/bin/env python
-"""
-Seed Surfsense documentation into the database.
-
-CLI wrapper for the seed_surfsense_docs function.
-Can be run manually for debugging or re-indexing.
-
-Usage:
-    python scripts/seed_surfsense_docs.py
-"""
-
-import asyncio
-import sys
-from pathlib import Path
-
-# Add the parent directory to the path so we can import app modules
-sys.path.insert(0, str(Path(__file__).resolve().parent.parent))
-
-from app.tasks.surfsense_docs_indexer import seed_surfsense_docs
-
-
-def main():
-    """CLI entry point for seeding Surfsense docs."""
-    print("=" * 50)
-    print("  Surfsense Documentation Seeding")
-    print("=" * 50)
-
-    created, updated, skipped, deleted = asyncio.run(seed_surfsense_docs())
-
-    print()
-    print("Results:")
-    print(f"  Created: {created}")
-    print(f"  Updated: {updated}")
-    print(f"  Skipped: {skipped}")
-    print(f"  Deleted: {deleted}")
-    print("=" * 50)
-
-
-if __name__ == "__main__":
-    main()
diff --git a/surfsense_backend/tests/unit/agents/new_chat/test_default_permissions_layering.py b/surfsense_backend/tests/unit/agents/new_chat/test_default_permissions_layering.py
index ac6b5d95c..2f222e148 100644
--- a/surfsense_backend/tests/unit/agents/new_chat/test_default_permissions_layering.py
+++ b/surfsense_backend/tests/unit/agents/new_chat/test_default_permissions_layering.py
@@ -60,7 +60,6 @@ class TestReadOnlyToolsAllowed:
             "glob",
             "web_search",
             "scrape_webpage",
-            "search_surfsense_docs",
             "get_connected_accounts",
             "write_todos",
             "task",
diff --git a/surfsense_backend/tests/unit/agents/new_chat/test_otel_span.py b/surfsense_backend/tests/unit/agents/new_chat/test_otel_span.py
index 55434c04d..dc59c6dac 100644
--- a/surfsense_backend/tests/unit/agents/new_chat/test_otel_span.py
+++ b/surfsense_backend/tests/unit/agents/new_chat/test_otel_span.py
@@ -23,6 +23,7 @@ pytestmark = pytest.mark.unit
 @pytest.fixture(autouse=True)
 def _disable_otel(monkeypatch: pytest.MonkeyPatch):
     monkeypatch.delenv("OTEL_EXPORTER_OTLP_ENDPOINT", raising=False)
+    monkeypatch.delenv("OTEL_SDK_DISABLED", raising=False)
     monkeypatch.setenv("SURFSENSE_DISABLE_OTEL", "true")
     from app.observability import otel as ot
 
@@ -99,16 +100,17 @@ class TestAnnotateModelResponse:
                 "total_tokens": 150,
             },
         )
-        _annotate_model_response(sp, msg)
-        sp.set_attribute.assert_any_call("tokens.prompt", 100)
-        sp.set_attribute.assert_any_call("tokens.completion", 50)
-        sp.set_attribute.assert_any_call("tokens.total", 150)
+        assert _annotate_model_response(sp, msg) == (100, 50)
+        sp.set_attribute.assert_any_call("gen_ai.usage.input_tokens", 100)
+        sp.set_attribute.assert_any_call("gen_ai.usage.output_tokens", 50)
+        sp.set_attribute.assert_any_call("gen_ai.usage.total_tokens", 150)
+        sp.set_attribute.assert_any_call("gen_ai.operation.name", "chat")
 
     def test_handles_response_with_no_metadata(self) -> None:
         sp = MagicMock()
         msg = AIMessage(content="hello")
         # Should not raise even when usage_metadata is missing
-        _annotate_model_response(sp, msg)
+        assert _annotate_model_response(sp, msg) == (None, None)
 
 
 class TestAnnotateToolResult:
@@ -119,7 +121,7 @@ class TestAnnotateToolResult:
             tool_call_id="abc",
             status="success",
         )
-        _annotate_tool_result(sp, result)
+        assert _annotate_tool_result(sp, result) is False
         sp.set_attribute.assert_any_call("tool.output.size", len("result text"))
         sp.set_attribute.assert_any_call("tool.status", "success")
 
@@ -130,7 +132,7 @@ class TestAnnotateToolResult:
             tool_call_id="abc",
             additional_kwargs={"error": {"code": "x"}},
         )
-        _annotate_tool_result(sp, result)
+        assert _annotate_tool_result(sp, result) is True
         sp.set_attribute.assert_any_call("tool.error", True)
 
 
@@ -193,3 +195,91 @@ class TestMiddlewareIntegration:
             assert result.content == "enabled"
         finally:
             ot.reload_for_tests()
+
+    async def test_enabled_model_call_records_metrics(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+        monkeypatch.setenv("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")
+        from app.observability import otel as ot
+
+        duration_calls: list[dict[str, Any]] = []
+        token_calls: list[dict[str, Any]] = []
+        monkeypatch.setattr(
+            "app.agents.new_chat.middleware.otel_span.ot_metrics.record_model_call_duration",
+            lambda duration_ms, **attrs: duration_calls.append(
+                {"duration_ms": duration_ms, **attrs}
+            ),
+        )
+        monkeypatch.setattr(
+            "app.agents.new_chat.middleware.otel_span.ot_metrics.record_model_token_usage",
+            lambda **attrs: token_calls.append(attrs),
+        )
+
+        ot.reload_for_tests()
+        try:
+            mw = OtelSpanMiddleware()
+
+            async def handler(req):
+                return AIMessage(
+                    content="enabled",
+                    usage_metadata={
+                        "input_tokens": 3,
+                        "output_tokens": 5,
+                        "total_tokens": 8,
+                    },
+                )
+
+            request = MagicMock()
+            request.model = MagicMock()
+            request.model.model_name = "gpt-4o"
+            request.model.provider = "openai"
+            await mw.awrap_model_call(request, handler)
+
+            assert duration_calls
+            assert token_calls == [
+                {
+                    "input_tokens": 3,
+                    "output_tokens": 5,
+                    "model": "gpt-4o",
+                    "provider": "openai",
+                }
+            ]
+        finally:
+            ot.reload_for_tests()
+
+    async def test_enabled_tool_call_records_error_metric(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+        monkeypatch.setenv("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")
+        from app.observability import otel as ot
+
+        errors: list[str] = []
+        monkeypatch.setattr(
+            "app.agents.new_chat.middleware.otel_span.ot_metrics.record_tool_call_error",
+            lambda *, tool_name: errors.append(tool_name),
+        )
+        monkeypatch.setattr(
+            "app.agents.new_chat.middleware.otel_span.ot_metrics.record_tool_call_duration",
+            lambda *args, **kwargs: None,
+        )
+
+        ot.reload_for_tests()
+        try:
+            mw = OtelSpanMiddleware()
+
+            async def handler(req):
+                return ToolMessage(
+                    content="failed",
+                    tool_call_id="abc",
+                    status="error",
+                )
+
+            request = MagicMock()
+            request.tool = MagicMock()
+            request.tool.name = "web_search"
+            await mw.awrap_tool_call(request, handler)
+            assert errors == ["web_search"]
+        finally:
+            ot.reload_for_tests()
diff --git a/surfsense_backend/tests/unit/agents/new_chat/test_specialized_subagents.py b/surfsense_backend/tests/unit/agents/new_chat/test_specialized_subagents.py
index 3035cc8e0..3c7fe5336 100644
--- a/surfsense_backend/tests/unit/agents/new_chat/test_specialized_subagents.py
+++ b/surfsense_backend/tests/unit/agents/new_chat/test_specialized_subagents.py
@@ -22,12 +22,6 @@ from app.agents.new_chat.subagents.config import (
 # ---------------------------------------------------------------------------
 
 
-@tool
-def search_surfsense_docs(query: str) -> str:
-    """Search the user's KB."""
-    return ""
-
-
 @tool
 def web_search(query: str) -> str:
     """Search the public web."""
@@ -95,7 +89,6 @@ def generate_report(topic: str) -> str:
 
 
 ALL_TOOLS = [
-    search_surfsense_docs,
     web_search,
     scrape_webpage,
     read_file,
@@ -161,7 +154,7 @@ class TestReportWriterSubagent:
         names = {t.name for t in spec["tools"]}  # type: ignore[index]
         assert names == REPORT_WRITER_TOOLS & {t.name for t in ALL_TOOLS}
         assert "generate_report" in names
-        assert "search_surfsense_docs" in names
+        assert "read_file" in names
 
     def test_deny_rules_block_writes_but_allow_generate_report(self) -> None:
         spec = build_report_writer_subagent(tools=ALL_TOOLS)
@@ -272,9 +265,9 @@ class TestFilterToolsWarningSuppression:
             # Allowed set asks for two registry tools (one present, one
             # not) plus a bunch of middleware-provided names.
             _filter_tools(
-                [search_surfsense_docs],
+                [web_search],
                 allowed_names={
-                    "search_surfsense_docs",
+                    "web_search",
                     "scrape_webpage",  # legitimately missing → should warn
                     "read_file",  # mw-provided → suppressed
                     "ls",
@@ -322,7 +315,6 @@ class TestDenyPatternsCoverage:
 
     def test_deny_patterns_do_not_match_safe_read_tools(self) -> None:
         canonical_reads = [
-            "search_surfsense_docs",
             "read_file",
             "ls_tree",
             "grep",
diff --git a/surfsense_backend/tests/unit/automations/__init__.py b/surfsense_backend/tests/unit/automations/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/actions/__init__.py b/surfsense_backend/tests/unit/automations/actions/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/actions/builtin/__init__.py b/surfsense_backend/tests/unit/automations/actions/builtin/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/__init__.py b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_auto_decide.py b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_auto_decide.py
new file mode 100644
index 000000000..d8f45eadf
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_auto_decide.py
@@ -0,0 +1,73 @@
+"""Lock ``build_auto_decisions`` — the HITL auto-approve/reject wire mapper.
+
+``build_auto_decisions`` walks ``state.interrupts`` (duck-typed) and produces
+two parallel resume maps: one keyed by LangGraph ``Interrupt.id`` and one
+keyed by ``tool_call_id`` for the subagent middleware bridge. Both carry
+the same decision payload.
+"""
+
+from __future__ import annotations
+
+from types import SimpleNamespace
+from typing import Any
+
+import pytest
+
+from app.automations.actions.builtin.agent_task.auto_decide import build_auto_decisions
+
+pytestmark = pytest.mark.unit
+
+
+def _state(interrupts: list[Any]) -> SimpleNamespace:
+    """Build a duck-typed LangGraph state stub carrying ``interrupts``."""
+    return SimpleNamespace(interrupts=interrupts)
+
+
+def _interrupt(*, id_: str, value: Any) -> SimpleNamespace:
+    """Build a duck-typed interrupt with the canonical ``(id, value)`` shape."""
+    return SimpleNamespace(id=id_, value=value)
+
+
+def test_build_auto_decisions_produces_one_decision_per_action_request() -> None:
+    """An interrupt carrying N ``action_requests`` produces N decisions of
+    the requested type in both maps. This is the canonical batched-HITL
+    wire shape — losing a decision would leave a pending action stuck."""
+    interrupt = _interrupt(
+        id_="lg-1",
+        value={
+            "tool_call_id": "tc-1",
+            "action_requests": [{"id": "a"}, {"id": "b"}],
+        },
+    )
+
+    lg_map, routed = build_auto_decisions(_state([interrupt]), "approve")
+
+    assert lg_map == {"lg-1": {"decisions": [{"type": "approve"}, {"type": "approve"}]}}
+    assert routed == {"tc-1": {"decisions": [{"type": "approve"}, {"type": "approve"}]}}
+
+
+def test_build_auto_decisions_defaults_to_one_decision_for_scalar_interrupt() -> None:
+    """When an interrupt's value has no ``action_requests`` list, the
+    function defaults to a single decision. Locks compatibility with
+    older single-action interrupt shapes still emitted by some tools."""
+    interrupt = _interrupt(id_="lg-2", value={"tool_call_id": "tc-2"})
+
+    lg_map, routed = build_auto_decisions(_state([interrupt]), "reject")
+
+    assert lg_map == {"lg-2": {"decisions": [{"type": "reject"}]}}
+    assert routed == {"tc-2": {"decisions": [{"type": "reject"}]}}
+
+
+def test_build_auto_decisions_skips_interrupts_with_invalid_shape() -> None:
+    """Interrupts missing the canonical ``(str id, dict value)`` shape are
+    skipped silently rather than crashing the resume loop. Locks the
+    resilience contract — a malformed interrupt from a misbehaving tool
+    shouldn't take down the whole agent_task step."""
+    good = _interrupt(id_="lg-good", value={"tool_call_id": "tc-good"})
+    bad_value = _interrupt(id_="lg-bad-value", value="not a dict")
+    bad_id = _interrupt(id_=None, value={"tool_call_id": "tc-bad-id"})  # type: ignore[arg-type]
+
+    lg_map, routed = build_auto_decisions(_state([good, bad_value, bad_id]), "approve")
+
+    assert lg_map == {"lg-good": {"decisions": [{"type": "approve"}]}}
+    assert routed == {"tc-good": {"decisions": [{"type": "approve"}]}}
diff --git a/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_dependencies.py b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_dependencies.py
new file mode 100644
index 000000000..ac20b2608
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_dependencies.py
@@ -0,0 +1,174 @@
+"""Lock the runtime model-policy backstop in ``build_dependencies``.
+
+Automations resolve their LLM from the *captured* ``agent_llm_id`` snapshot (so
+runs are insulated from later chat/search-space model changes), and the model
+policy is re-checked at run time so a captured model that is no longer billable
+fails the run clearly. When no snapshot is present, resolution falls back to the
+live search space.
+"""
+
+from __future__ import annotations
+
+from types import SimpleNamespace
+from typing import Any
+
+import pytest
+
+import app.automations.actions.agent_task.dependencies as deps_mod
+from app.automations.actions.agent_task.dependencies import (
+    DependencyError,
+    build_dependencies,
+)
+from app.automations.services.model_policy import AutomationModelPolicyError
+
+pytestmark = pytest.mark.unit
+
+
+class _FakeSession:
+    """Minimal async session whose ``get`` returns a preset search space."""
+
+    def __init__(self, search_space: Any) -> None:
+        self._search_space = search_space
+
+    async def get(self, _model: Any, _pk: int) -> Any:
+        return self._search_space
+
+
+@pytest.fixture
+def patched_side_effects(monkeypatch: pytest.MonkeyPatch):
+    """Stub the connector setup + checkpointer so only policy/LLM logic runs."""
+
+    async def _fake_setup(_session, *, search_space_id):
+        return (SimpleNamespace(name="connector"), "fc-key")
+
+    monkeypatch.setattr(deps_mod, "setup_connector_and_firecrawl", _fake_setup)
+    return None
+
+
+async def test_build_dependencies_resolves_captured_agent_llm_id(
+    monkeypatch: pytest.MonkeyPatch, patched_side_effects
+) -> None:
+    """The bundle loads with the *captured* ``agent_llm_id``, not the live search space."""
+    captured: dict[str, Any] = {}
+
+    async def _fake_load(_session, *, config_id, search_space_id):
+        captured["config_id"] = config_id
+        captured["search_space_id"] = search_space_id
+        return (SimpleNamespace(name="llm"), SimpleNamespace(name="agent_config"), None)
+
+    monkeypatch.setattr(deps_mod, "load_llm_bundle", _fake_load)
+    # Captured path validates the explicit ids; passes for this test.
+    monkeypatch.setattr(deps_mod, "assert_models_billable", lambda **_kw: None)
+    # A different value on the live search space proves we ignore it when a
+    # snapshot is supplied.
+    monkeypatch.setattr(
+        deps_mod,
+        "assert_automation_models_billable",
+        lambda _ss: pytest.fail("search-space policy should not run on captured path"),
+    )
+
+    search_space = SimpleNamespace(agent_llm_id=-99)
+    result = await build_dependencies(
+        session=_FakeSession(search_space),
+        search_space_id=42,
+        agent_llm_id=-7,
+        image_generation_config_id=5,
+        vision_llm_config_id=-1,
+    )
+
+    assert captured == {"config_id": -7, "search_space_id": 42}
+    assert result.llm.name == "llm"
+    assert result.firecrawl_api_key == "fc-key"
+
+
+async def test_build_dependencies_validates_captured_ids(
+    monkeypatch: pytest.MonkeyPatch, patched_side_effects
+) -> None:
+    """The captured ids (not the search space) are what gets policy-checked."""
+    seen: dict[str, Any] = {}
+
+    def _capture(**kwargs):
+        seen.update(kwargs)
+
+    monkeypatch.setattr(deps_mod, "assert_models_billable", _capture)
+
+    async def _fake_load(_session, *, config_id, search_space_id):
+        return (SimpleNamespace(name="llm"), SimpleNamespace(name="agent_config"), None)
+
+    monkeypatch.setattr(deps_mod, "load_llm_bundle", _fake_load)
+
+    await build_dependencies(
+        session=_FakeSession(SimpleNamespace(agent_llm_id=0)),
+        search_space_id=42,
+        agent_llm_id=-7,
+        image_generation_config_id=5,
+        vision_llm_config_id=-1,
+    )
+
+    assert seen == {
+        "agent_llm_id": -7,
+        "image_generation_config_id": 5,
+        "vision_llm_config_id": -1,
+    }
+
+
+async def test_build_dependencies_raises_on_captured_policy_violation(
+    monkeypatch: pytest.MonkeyPatch, patched_side_effects
+) -> None:
+    """A blocked captured model raises ``DependencyError`` so the step fails clearly."""
+
+    def _raise(**_kw):
+        raise AutomationModelPolicyError(
+            [{"kind": "image", "config_id": -2, "reason": "free model"}]
+        )
+
+    monkeypatch.setattr(deps_mod, "assert_models_billable", _raise)
+    monkeypatch.setattr(
+        deps_mod,
+        "load_llm_bundle",
+        lambda *a, **k: pytest.fail("load_llm_bundle should not be called"),
+    )
+
+    with pytest.raises(DependencyError):
+        await build_dependencies(
+            session=_FakeSession(SimpleNamespace(agent_llm_id=-7)),
+            search_space_id=42,
+            agent_llm_id=-7,
+            image_generation_config_id=-2,
+            vision_llm_config_id=-1,
+        )
+
+
+async def test_build_dependencies_falls_back_to_search_space(
+    monkeypatch: pytest.MonkeyPatch, patched_side_effects
+) -> None:
+    """With no captured snapshot, resolve + validate the live search space."""
+    captured: dict[str, Any] = {}
+
+    async def _fake_load(_session, *, config_id, search_space_id):
+        captured["config_id"] = config_id
+        return (SimpleNamespace(name="llm"), SimpleNamespace(name="agent_config"), None)
+
+    monkeypatch.setattr(deps_mod, "load_llm_bundle", _fake_load)
+    monkeypatch.setattr(deps_mod, "assert_automation_models_billable", lambda _ss: None)
+    monkeypatch.setattr(
+        deps_mod,
+        "assert_models_billable",
+        lambda **_kw: pytest.fail("captured policy should not run on fallback path"),
+    )
+
+    search_space = SimpleNamespace(agent_llm_id=-7)
+    result = await build_dependencies(
+        session=_FakeSession(search_space), search_space_id=42
+    )
+
+    assert captured == {"config_id": -7}
+    assert result.llm.name == "llm"
+
+
+async def test_build_dependencies_raises_when_search_space_missing(
+    patched_side_effects,
+) -> None:
+    """A missing search space (fallback path) surfaces as a ``DependencyError``."""
+    with pytest.raises(DependencyError):
+        await build_dependencies(session=_FakeSession(None), search_space_id=999)
diff --git a/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_finalize.py b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_finalize.py
new file mode 100644
index 000000000..9e2143438
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/actions/builtin/agent_task/test_finalize.py
@@ -0,0 +1,86 @@
+"""Lock ``extract_final_assistant_message`` — what surfaces in run output.
+
+Each scenario is one shape the agent runtime is observed to produce.
+Locking these means we can refactor the extractor without losing
+backwards compatibility with already-stored ``run.output`` payloads.
+"""
+
+from __future__ import annotations
+
+import pytest
+from langchain_core.messages import AIMessage, HumanMessage, ToolMessage
+
+from app.automations.actions.builtin.agent_task.finalize import (
+    extract_final_assistant_message,
+)
+
+pytestmark = pytest.mark.unit
+
+
+def test_extract_returns_last_ai_message_string_content() -> None:
+    """The canonical shape: the agent's final ``AIMessage`` carries a
+    plain string. That string is returned verbatim, trimmed."""
+    result = {
+        "messages": [
+            HumanMessage(content="ask"),
+            AIMessage(content="the answer"),
+        ]
+    }
+
+    assert extract_final_assistant_message(result) == "the answer"
+
+
+def test_extract_concatenates_text_parts_and_skips_non_text_parts() -> None:
+    """Multi-part AIMessage content (Anthropic / OpenAI list shape) joins
+    its ``text`` parts in order; non-text parts (tool_use, images, ...)
+    are skipped. Locks the wire shape used when the model emits tool
+    calls alongside narrative text in the same turn."""
+    result = {
+        "messages": [
+            AIMessage(
+                content=[
+                    {"type": "text", "text": "Hello "},
+                    {"type": "tool_use", "name": "search", "input": {}},
+                    {"type": "text", "text": "world"},
+                ]
+            )
+        ]
+    }
+
+    assert extract_final_assistant_message(result) == "Hello world"
+
+
+def test_extract_returns_last_ai_message_skipping_tool_messages() -> None:
+    """When the transcript ends with tool calls and tool results, the
+    extractor still walks back to the **last** ``AIMessage`` (the agent's
+    final narrative answer). Locks resilience against trailing
+    ``ToolMessage`` payloads in the transcript."""
+    result = {
+        "messages": [
+            HumanMessage(content="ask"),
+            AIMessage(content="thinking..."),
+            ToolMessage(content="tool output", tool_call_id="tc-1"),
+            AIMessage(content="final answer"),
+            ToolMessage(content="trailing tool noise", tool_call_id="tc-2"),
+        ]
+    }
+
+    assert extract_final_assistant_message(result) == "final answer"
+
+
+def test_extract_returns_none_when_no_assistant_text_is_present() -> None:
+    """No ``AIMessage`` with extractable text → ``None`` rather than the
+    empty string. Lets callers branch on "did the agent actually say
+    anything?" rather than guess whether ``""`` means silence or empty
+    output. Empty-string contents are normalized to ``None`` too."""
+    no_ai = {"messages": [HumanMessage(content="just a question")]}
+    only_tools = {
+        "messages": [
+            AIMessage(content=[{"type": "tool_use", "name": "x", "input": {}}])
+        ]
+    }
+    empty_string = {"messages": [AIMessage(content="   ")]}
+
+    assert extract_final_assistant_message(no_ai) is None
+    assert extract_final_assistant_message(only_tools) is None
+    assert extract_final_assistant_message(empty_string) is None
diff --git a/surfsense_backend/tests/unit/automations/conftest.py b/surfsense_backend/tests/unit/automations/conftest.py
new file mode 100644
index 000000000..0fbf03234
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/conftest.py
@@ -0,0 +1,39 @@
+"""Shared fixtures for the ``app.automations`` unit-test tree.
+
+Provides registry isolation: the built-in ``schedule`` trigger and
+``agent_task`` action self-register at import time. Tests that register
+additional triggers/actions (or assert on the registry contents) must
+not leak that state to other tests. These fixtures snapshot and restore
+the module-level registry dicts.
+"""
+
+from __future__ import annotations
+
+from collections.abc import Iterator
+
+import pytest
+
+from app.automations.actions import store as action_store
+from app.automations.triggers import store as trigger_store
+
+
+@pytest.fixture
+def isolated_action_registry() -> Iterator[None]:
+    """Snapshot and restore the action registry around a test."""
+    snapshot = dict(action_store._REGISTRY)
+    try:
+        yield
+    finally:
+        action_store._REGISTRY.clear()
+        action_store._REGISTRY.update(snapshot)
+
+
+@pytest.fixture
+def isolated_trigger_registry() -> Iterator[None]:
+    """Snapshot and restore the trigger registry around a test."""
+    snapshot = dict(trigger_store._REGISTRY)
+    try:
+        yield
+    finally:
+        trigger_store._REGISTRY.clear()
+        trigger_store._REGISTRY.update(snapshot)
diff --git a/surfsense_backend/tests/unit/automations/dispatch/__init__.py b/surfsense_backend/tests/unit/automations/dispatch/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/dispatch/test_errors.py b/surfsense_backend/tests/unit/automations/dispatch/test_errors.py
new file mode 100644
index 000000000..89c1bede9
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/dispatch/test_errors.py
@@ -0,0 +1,28 @@
+"""Lock the ``DispatchError`` exception contract.
+
+``DispatchError`` is the uniform exception type the dispatch layer raises
+for any "cannot turn this fire request into a run" condition. Other
+modules (templates of error envelopes, run records) compare on
+``isinstance(exc, DispatchError)``, so the inheritance is the contract.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.dispatch.errors import DispatchError
+
+pytestmark = pytest.mark.unit
+
+
+def test_dispatch_error_is_exception_subclass_and_carries_message() -> None:
+    """Lifting a string into ``DispatchError`` preserves the message and
+    behaves as a regular ``Exception`` for ``isinstance`` / ``raise`` /
+    ``except`` consumers."""
+    error = DispatchError("missing trigger")
+
+    assert isinstance(error, Exception)
+    assert str(error) == "missing trigger"
+
+    with pytest.raises(DispatchError):
+        raise error
diff --git a/surfsense_backend/tests/unit/automations/dispatch/test_inputs.py b/surfsense_backend/tests/unit/automations/dispatch/test_inputs.py
new file mode 100644
index 000000000..2744982a0
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/dispatch/test_inputs.py
@@ -0,0 +1,74 @@
+"""Lock the input-validation contract enforced before a run is enqueued.
+
+``validate_inputs`` is the pure schema check that ``enqueue_run`` runs against
+merged inputs. ``enqueue_run`` itself needs a real DB session, so tests target
+this pure function directly; the contract — not the symbol — is what's locked.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.dispatch.errors import DispatchError
+from app.automations.dispatch.inputs import validate_inputs
+from app.automations.schemas.definition.envelope import AutomationDefinition
+from app.automations.schemas.definition.inputs import Inputs
+from app.automations.schemas.definition.plan_step import PlanStep
+
+pytestmark = pytest.mark.unit
+
+
+def _minimal_definition(*, inputs: Inputs | None = None) -> AutomationDefinition:
+    """One-step definition with an optional declared input schema."""
+    return AutomationDefinition(
+        name="test",
+        inputs=inputs,
+        plan=[PlanStep(step_id="s1", action="agent_task")],
+    )
+
+
+def test_validate_inputs_passes_through_when_no_schema_is_declared() -> None:
+    """When the definition declares no input schema, runtime inputs reach
+    the template context **unchanged**. Regression site: previously this
+    branch returned ``{}``, which stripped runtime keys like ``fired_at``
+    and ``last_fired_at`` and made Jinja blow up on ``{{ inputs.* }}``.
+    """
+    definition = _minimal_definition(inputs=None)
+    runtime_inputs = {
+        "fired_at": "2026-01-01T00:00:00+00:00",
+        "last_fired_at": None,
+        "static_key": "value",
+    }
+
+    assert validate_inputs(definition, runtime_inputs) == runtime_inputs
+
+
+def test_validate_inputs_returns_inputs_when_they_match_declared_schema() -> None:
+    """With a declared JSON schema, inputs that satisfy it pass through
+    unchanged (validation succeeds; the function does not coerce or
+    strip extra fields not mentioned in the schema)."""
+    schema = {
+        "type": "object",
+        "properties": {"topic": {"type": "string"}},
+        "required": ["topic"],
+    }
+    definition = _minimal_definition(inputs=Inputs(schema=schema))
+
+    inputs = {"topic": "weekly report"}
+
+    assert validate_inputs(definition, inputs) == inputs
+
+
+def test_validate_inputs_raises_dispatch_error_when_inputs_violate_schema() -> None:
+    """Inputs that don't match the declared schema must surface as
+    ``DispatchError`` (not the raw ``jsonschema.ValidationError``), so every
+    caller can handle one dispatch-domain exception type uniformly."""
+    schema = {
+        "type": "object",
+        "properties": {"topic": {"type": "string"}},
+        "required": ["topic"],
+    }
+    definition = _minimal_definition(inputs=Inputs(schema=schema))
+
+    with pytest.raises(DispatchError):
+        validate_inputs(definition, {"topic": 42})  # type violates string
diff --git a/surfsense_backend/tests/unit/automations/runtime/__init__.py b/surfsense_backend/tests/unit/automations/runtime/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/runtime/test_execute_step.py b/surfsense_backend/tests/unit/automations/runtime/test_execute_step.py
new file mode 100644
index 000000000..9b203fdba
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/runtime/test_execute_step.py
@@ -0,0 +1,272 @@
+"""Lock the ``execute_step`` orchestration contract.
+
+Covers the pure step-execution logic: predicate gate, params rendering,
+action lookup, retry budget, error shaping. The ``ActionContext.session``
+is never touched by ``execute_step`` itself (it's only forwarded to the
+handler), so unit tests pass ``None`` cast to the type.
+"""
+
+from __future__ import annotations
+
+from typing import Any, cast
+
+import pytest
+from pydantic import BaseModel
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.actions.store import register_action
+from app.automations.actions.types import ActionContext, ActionDefinition
+from app.automations.runtime.step import execute_step
+from app.automations.schemas.definition.plan_step import PlanStep
+
+pytestmark = pytest.mark.unit
+
+
+class _AnyParams(BaseModel):
+    """Open params model used by test actions — they never validate."""
+
+    model_config = {"extra": "allow"}
+
+
+def _action_context() -> ActionContext:
+    """Minimal context: session is unused by ``execute_step``, only forwarded."""
+    return ActionContext(
+        session=cast(AsyncSession, None),
+        run_id=1,
+        step_id="s1",
+        search_space_id=1,
+        creator_user_id=None,
+    )
+
+
+async def test_execute_step_runs_registered_action_handler_and_wraps_result(
+    isolated_action_registry: None,
+) -> None:
+    """A step pointing at a registered action runs its handler with the
+    step's params and returns a ``succeeded`` entry carrying the handler's
+    output plus ``attempts=1`` (one try, no retries triggered)."""
+    invocations: list[dict[str, Any]] = []
+
+    async def echo(params: dict[str, Any]) -> dict[str, Any]:
+        invocations.append(params)
+        return {"echoed": params["value"]}
+
+    register_action(
+        ActionDefinition(
+            type="test_echo",
+            name="Echo",
+            description="Test action.",
+            params_model=_AnyParams,
+            build_handler=lambda _ctx: echo,
+        )
+    )
+
+    step = PlanStep(step_id="s1", action="test_echo", params={"value": "hello"})
+
+    result = await execute_step(
+        step=step,
+        template_context={},
+        action_context=_action_context(),
+        default_max_retries=0,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert result["status"] == "succeeded"
+    assert result["step_id"] == "s1"
+    assert result["action"] == "test_echo"
+    assert result["attempts"] == 1
+    assert result["result"] == {"echoed": "hello"}
+    assert invocations == [{"value": "hello"}]
+
+
+async def test_execute_step_skips_step_when_predicate_is_falsy(
+    isolated_action_registry: None,
+) -> None:
+    """If ``step.when`` evaluates to falsy in the template context, the
+    handler is **not** invoked, the result entry has ``status=skipped``
+    and ``attempts=0``, and no ``result`` key is present."""
+    invoked = False
+
+    async def must_not_run(_params: dict[str, Any]) -> dict[str, Any]:
+        nonlocal invoked
+        invoked = True
+        return {}
+
+    register_action(
+        ActionDefinition(
+            type="test_guarded",
+            name="Guarded",
+            description="Test action that should not run.",
+            params_model=_AnyParams,
+            build_handler=lambda _ctx: must_not_run,
+        )
+    )
+
+    step = PlanStep(
+        step_id="s1",
+        action="test_guarded",
+        when="inputs.enabled",
+        params={},
+    )
+
+    result = await execute_step(
+        step=step,
+        template_context={"inputs": {"enabled": False}},
+        action_context=_action_context(),
+        default_max_retries=0,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert result["status"] == "skipped"
+    assert result["attempts"] == 0
+    assert "result" not in result
+    assert invoked is False
+
+
+async def test_execute_step_fails_when_step_references_an_unknown_action(
+    isolated_action_registry: None,
+) -> None:
+    """A step pointing at an action that isn't in the registry must fail
+    with ``ActionNotFound`` rather than crashing. Catches typos in the
+    plan and removed actions without the run going off the rails."""
+    step = PlanStep(step_id="s1", action="no_such_action", params={})
+
+    result = await execute_step(
+        step=step,
+        template_context={},
+        action_context=_action_context(),
+        default_max_retries=0,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert result["status"] == "failed"
+    assert result["attempts"] == 0
+    assert result["error"]["type"] == "ActionNotFound"
+    assert "no_such_action" in result["error"]["message"]
+
+
+async def test_execute_step_retries_failing_handler_up_to_default_budget(
+    isolated_action_registry: None,
+) -> None:
+    """A handler that raises on every attempt consumes the retry budget
+    (1 initial try + ``default_max_retries`` retries) and the step ends
+    ``failed`` with the exception's type and message surfaced through
+    the error envelope."""
+    calls = 0
+
+    async def always_fails(_params: dict[str, Any]) -> dict[str, Any]:
+        nonlocal calls
+        calls += 1
+        raise RuntimeError("boom")
+
+    register_action(
+        ActionDefinition(
+            type="test_fails",
+            name="Fails",
+            description="Always raises.",
+            params_model=_AnyParams,
+            build_handler=lambda _ctx: always_fails,
+        )
+    )
+
+    step = PlanStep(step_id="s1", action="test_fails", params={})
+
+    result = await execute_step(
+        step=step,
+        template_context={},
+        action_context=_action_context(),
+        default_max_retries=2,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert result["status"] == "failed"
+    assert result["attempts"] == 3
+    assert calls == 3
+    assert result["error"]["type"] == "RuntimeError"
+    assert "boom" in result["error"]["message"]
+
+
+async def test_execute_step_succeeds_when_handler_recovers_within_retry_budget(
+    isolated_action_registry: None,
+) -> None:
+    """A handler that fails the first N times and then succeeds yields a
+    ``succeeded`` entry with ``attempts == N + 1``. Locks that retries
+    can actually recover (not just exhaust)."""
+    calls = 0
+
+    async def flaky(_params: dict[str, Any]) -> dict[str, Any]:
+        nonlocal calls
+        calls += 1
+        if calls < 3:
+            raise RuntimeError("transient")
+        return {"ok": True}
+
+    register_action(
+        ActionDefinition(
+            type="test_flaky",
+            name="Flaky",
+            description="Fails twice, succeeds third time.",
+            params_model=_AnyParams,
+            build_handler=lambda _ctx: flaky,
+        )
+    )
+
+    step = PlanStep(step_id="s1", action="test_flaky", params={})
+
+    result = await execute_step(
+        step=step,
+        template_context={},
+        action_context=_action_context(),
+        default_max_retries=2,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert result["status"] == "succeeded"
+    assert result["attempts"] == 3
+    assert result["result"] == {"ok": True}
+    assert calls == 3
+
+
+async def test_execute_step_renders_step_params_through_template_engine(
+    isolated_action_registry: None,
+) -> None:
+    """Step params are rendered against the template context before the
+    handler is invoked. String values containing Jinja expressions get
+    substituted from ``inputs`` and ``steps`` in the run context."""
+    received: list[dict[str, Any]] = []
+
+    async def capture(params: dict[str, Any]) -> dict[str, Any]:
+        received.append(params)
+        return {}
+
+    register_action(
+        ActionDefinition(
+            type="test_capture",
+            name="Capture",
+            description="Captures the params passed in.",
+            params_model=_AnyParams,
+            build_handler=lambda _ctx: capture,
+        )
+    )
+
+    step = PlanStep(
+        step_id="s1",
+        action="test_capture",
+        params={"message": "Hello {{ inputs.name }}"},
+    )
+
+    await execute_step(
+        step=step,
+        template_context={"inputs": {"name": "World"}, "steps": {}},
+        action_context=_action_context(),
+        default_max_retries=0,
+        default_retry_backoff="none",
+        default_timeout_seconds=30,
+    )
+
+    assert received == [{"message": "Hello World"}]
diff --git a/surfsense_backend/tests/unit/automations/runtime/test_executor_action_ctx.py b/surfsense_backend/tests/unit/automations/runtime/test_executor_action_ctx.py
new file mode 100644
index 000000000..d7e3c4a0c
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/runtime/test_executor_action_ctx.py
@@ -0,0 +1,59 @@
+"""Lock that the executor propagates the captured model snapshot into the
+``ActionContext``, so runs resolve their own model (insulated from chat /
+search-space changes) and not the live search space.
+"""
+
+from __future__ import annotations
+
+from types import SimpleNamespace
+from typing import cast
+
+import pytest
+from sqlalchemy.ext.asyncio import AsyncSession
+
+from app.automations.runtime.executor import _build_action_ctx
+from app.automations.schemas.definition.envelope import AutomationModels
+from app.automations.schemas.definition.plan_step import PlanStep
+
+pytestmark = pytest.mark.unit
+
+
+def _run() -> SimpleNamespace:
+    return SimpleNamespace(
+        id=1,
+        automation=SimpleNamespace(search_space_id=42, created_by_user_id="u-1"),
+    )
+
+
+def test_build_action_ctx_propagates_captured_models() -> None:
+    """``definition.models`` flows onto the ActionContext model fields."""
+    models = AutomationModels(
+        agent_llm_id=-1,
+        image_generation_config_id=5,
+        vision_llm_config_id=-1,
+    )
+    ctx = _build_action_ctx(
+        cast(AsyncSession, None),
+        _run(),
+        PlanStep(step_id="s1", action="agent_task"),
+        models,
+    )
+
+    assert ctx.search_space_id == 42
+    assert ctx.agent_llm_id == -1
+    assert ctx.image_generation_config_id == 5
+    assert ctx.vision_llm_config_id == -1
+
+
+def test_build_action_ctx_none_models_leaves_fields_none() -> None:
+    """No captured snapshot → model fields are None (defensive fallback path)."""
+    ctx = _build_action_ctx(
+        cast(AsyncSession, None),
+        _run(),
+        PlanStep(step_id="s1", action="agent_task"),
+        None,
+    )
+
+    assert ctx.agent_llm_id is None
+    assert ctx.image_generation_config_id is None
+    assert ctx.vision_llm_config_id is None
diff --git a/surfsense_backend/tests/unit/automations/runtime/test_retries.py b/surfsense_backend/tests/unit/automations/runtime/test_retries.py
new file mode 100644
index 000000000..05fd02ab6
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/runtime/test_retries.py
@@ -0,0 +1,74 @@
+"""Lock the ``with_retries`` policy: budget, recovery, exhaustion, timeout, backoff.
+
+Tests with ``backoff="none"`` to keep wall-clock time zero. Backoff sleep
+values themselves are observed by monkeypatching ``asyncio.sleep`` so we
+don't introduce flakiness via real timing.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.runtime.retries import with_retries
+
+pytestmark = pytest.mark.unit
+
+
+async def test_with_retries_returns_result_and_attempts_one_on_first_success() -> None:
+    """A coroutine that succeeds on the first call returns its result
+    paired with ``attempts=1`` — no retry consumed."""
+    calls = 0
+
+    async def succeed() -> str:
+        nonlocal calls
+        calls += 1
+        return "ok"
+
+    result, attempts = await with_retries(
+        succeed, max_retries=2, backoff="none", timeout=None
+    )
+
+    assert result == "ok"
+    assert attempts == 1
+    assert calls == 1
+
+
+async def test_with_retries_returns_attempt_count_when_succeeding_after_failures() -> (
+    None
+):
+    """A coroutine that fails twice then succeeds returns ``attempts=3``
+    (the actual attempt that produced the result). Locks the contract
+    that the caller can distinguish first-try success from a recovery."""
+    calls = 0
+
+    async def flaky() -> str:
+        nonlocal calls
+        calls += 1
+        if calls < 3:
+            raise RuntimeError("transient")
+        return "ok"
+
+    result, attempts = await with_retries(
+        flaky, max_retries=5, backoff="none", timeout=None
+    )
+
+    assert result == "ok"
+    assert attempts == 3
+    assert calls == 3
+
+
+async def test_with_retries_reraises_after_exhausting_the_budget() -> None:
+    """When the coroutine raises on every attempt within
+    ``1 + max_retries`` tries, the last exception propagates and the
+    handler is called exactly ``1 + max_retries`` times."""
+    calls = 0
+
+    async def always_fails() -> str:
+        nonlocal calls
+        calls += 1
+        raise RuntimeError(f"boom-{calls}")
+
+    with pytest.raises(RuntimeError, match="boom-3"):
+        await with_retries(always_fails, max_retries=2, backoff="none", timeout=None)
+
+    assert calls == 3  # 1 initial + 2 retries
diff --git a/surfsense_backend/tests/unit/automations/schemas/__init__.py b/surfsense_backend/tests/unit/automations/schemas/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/schemas/api/__init__.py b/surfsense_backend/tests/unit/automations/schemas/api/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/schemas/api/test_api_automation.py b/surfsense_backend/tests/unit/automations/schemas/api/test_api_automation.py
new file mode 100644
index 000000000..6ae3ce794
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/api/test_api_automation.py
@@ -0,0 +1,82 @@
+"""Lock the request-side automation API schemas — the public validation gate."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.api.automation import AutomationCreate, AutomationUpdate
+
+pytestmark = pytest.mark.unit
+
+
+_VALID_DEFINITION = {
+    "name": "Test",
+    "plan": [{"step_id": "s1", "action": "agent_task"}],
+}
+
+
+def test_automation_create_accepts_valid_minimal_payload() -> None:
+    """Happy path: just search_space_id, name, and a valid definition.
+    Triggers default to ``[]`` so users can attach them later."""
+    payload = AutomationCreate.model_validate(
+        {
+            "search_space_id": 1,
+            "name": "Daily digest",
+            "definition": _VALID_DEFINITION,
+        }
+    )
+
+    assert payload.name == "Daily digest"
+    assert payload.description is None
+    assert payload.triggers == []
+
+
+def test_automation_create_cascades_validation_into_nested_definition() -> None:
+    """A bad ``definition`` (e.g. empty plan) fails at the API boundary,
+    not at the DB layer. Locks the cascade so corrupt definitions can't
+    sneak through a misshapen wire payload."""
+    with pytest.raises(ValidationError):
+        AutomationCreate.model_validate(
+            {
+                "search_space_id": 1,
+                "name": "Bad",
+                "definition": {"name": "X", "plan": []},  # empty plan
+            }
+        )
+
+
+def test_automation_create_rejects_unknown_top_level_field() -> None:
+    """``extra='forbid'`` catches typos in API payloads at the boundary."""
+    with pytest.raises(ValidationError):
+        AutomationCreate.model_validate(
+            {
+                "search_space_id": 1,
+                "name": "X",
+                "definition": _VALID_DEFINITION,
+                "owner": "tg",  # not allowed
+            }
+        )
+
+
+def test_automation_create_rejects_empty_name() -> None:
+    """Name is required and constrained to 1..200 chars."""
+    with pytest.raises(ValidationError):
+        AutomationCreate.model_validate(
+            {
+                "search_space_id": 1,
+                "name": "",
+                "definition": _VALID_DEFINITION,
+            }
+        )
+
+
+def test_automation_update_accepts_partial_payload_with_no_fields() -> None:
+    """All fields on ``AutomationUpdate`` are optional. An empty body is
+    a valid no-op update (the service layer decides what to do with it)."""
+    update = AutomationUpdate.model_validate({})
+
+    assert update.name is None
+    assert update.description is None
+    assert update.status is None
+    assert update.definition is None
diff --git a/surfsense_backend/tests/unit/automations/schemas/api/test_api_trigger.py b/surfsense_backend/tests/unit/automations/schemas/api/test_api_trigger.py
new file mode 100644
index 000000000..cabfc41af
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/api/test_api_trigger.py
@@ -0,0 +1,47 @@
+"""Lock the request-side trigger API schemas."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.schemas.api.trigger import TriggerCreate, TriggerUpdate
+
+pytestmark = pytest.mark.unit
+
+
+def test_trigger_create_uses_safe_defaults_for_optional_fields() -> None:
+    """Defaults: empty ``params`` and ``static_inputs``, ``enabled=True``.
+    These let callers create a trigger with just ``type`` + the params
+    the trigger requires."""
+    trigger = TriggerCreate(type=TriggerType.SCHEDULE)  # type: ignore[arg-type]
+
+    assert trigger.type is TriggerType.SCHEDULE
+    assert trigger.params == {}
+    assert trigger.static_inputs == {}
+    assert trigger.enabled is True
+
+
+def test_trigger_create_rejects_unknown_trigger_type_string() -> None:
+    """``type`` is a ``TriggerType`` enum, so any string outside the
+    enum's known values fails validation at the boundary."""
+    with pytest.raises(ValidationError):
+        TriggerCreate.model_validate({"type": "webhook"})  # not in TriggerType
+
+
+def test_trigger_create_rejects_unknown_field() -> None:
+    """``extra='forbid'`` catches typos in trigger payloads."""
+    with pytest.raises(ValidationError):
+        TriggerCreate.model_validate(
+            {"type": "schedule", "param": {}}  # typo: param vs params
+        )
+
+
+def test_trigger_update_accepts_partial_payload_with_no_fields() -> None:
+    """``TriggerUpdate`` is fully optional — empty body is valid (no-op)."""
+    update = TriggerUpdate()
+
+    assert update.enabled is None
+    assert update.params is None
+    assert update.static_inputs is None
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/__init__.py b/surfsense_backend/tests/unit/automations/schemas/definition/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_envelope.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_envelope.py
new file mode 100644
index 000000000..25e193ffa
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_envelope.py
@@ -0,0 +1,90 @@
+"""Lock the ``AutomationDefinition`` envelope contract."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.definition.envelope import (
+    AutomationDefinition,
+    AutomationModels,
+)
+from app.automations.schemas.definition.plan_step import PlanStep
+
+pytestmark = pytest.mark.unit
+
+
+def test_automation_definition_accepts_minimal_valid_input_with_sensible_defaults() -> (
+    None
+):
+    """A definition with just ``name`` + a one-step ``plan`` is valid and
+    fills in the rest with safe defaults so users don't have to write
+    out every section to get started."""
+    definition = AutomationDefinition(
+        name="Daily digest",
+        plan=[PlanStep(step_id="s1", action="agent_task")],
+    )
+
+    assert definition.name == "Daily digest"
+    assert definition.schema_version == "1.0"
+    assert definition.goal is None
+    assert definition.inputs is None
+    assert definition.triggers == []
+    # ``models`` is optional (populated server-side at create()).
+    assert definition.models is None
+
+
+def test_automation_definition_models_round_trip() -> None:
+    """The captured ``models`` snapshot survives a model_dump/validate round-trip."""
+    definition = AutomationDefinition(
+        name="Daily digest",
+        plan=[PlanStep(step_id="s1", action="agent_task")],
+        models=AutomationModels(
+            agent_llm_id=-1,
+            image_generation_config_id=5,
+            vision_llm_config_id=-1,
+        ),
+    )
+
+    dumped = definition.model_dump(mode="json", by_alias=True)
+    assert dumped["models"] == {
+        "agent_llm_id": -1,
+        "image_generation_config_id": 5,
+        "vision_llm_config_id": -1,
+    }
+
+    restored = AutomationDefinition.model_validate(dumped)
+    assert restored.models is not None
+    assert restored.models.agent_llm_id == -1
+    assert restored.models.image_generation_config_id == 5
+    assert restored.models.vision_llm_config_id == -1
+
+
+def test_automation_definition_rejects_unknown_top_level_field() -> None:
+    """``extra='forbid'`` catches typos at validation time (e.g. ``pln``
+    instead of ``plan``) before the bad definition reaches storage."""
+    with pytest.raises(ValidationError):
+        AutomationDefinition.model_validate(
+            {
+                "name": "X",
+                "plan": [{"step_id": "s1", "action": "agent_task"}],
+                "extra_field": "unexpected",
+            }
+        )
+
+
+def test_automation_definition_rejects_empty_plan() -> None:
+    """An automation with no plan steps has nothing to execute and must
+    be rejected at validation time."""
+    with pytest.raises(ValidationError):
+        AutomationDefinition(name="X", plan=[])
+
+
+def test_automation_definition_rejects_empty_name() -> None:
+    """Name is required and must be non-empty so list views and audit
+    logs have something meaningful to display."""
+    with pytest.raises(ValidationError):
+        AutomationDefinition(
+            name="",
+            plan=[PlanStep(step_id="s1", action="agent_task")],
+        )
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_execution.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_execution.py
new file mode 100644
index 000000000..15adefab0
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_execution.py
@@ -0,0 +1,49 @@
+"""Lock the ``Execution`` defaults + literal-constraint contract.
+
+These defaults control production behavior of every automation that
+doesn't override them; the defaults *are* the contract.
+"""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.definition.execution import Execution
+
+pytestmark = pytest.mark.unit
+
+
+def test_execution_uses_production_defaults_when_no_overrides_provided() -> None:
+    """The defaults shipped to prod: 10-minute wall clock, 2 retries
+    per step, exponential backoff, drop overlapping runs. Changing any
+    of these is a behavioral release-note change."""
+    execution = Execution()
+
+    assert execution.timeout_seconds == 600
+    assert execution.max_retries == 2
+    assert execution.retry_backoff == "exponential"
+    assert execution.concurrency == "drop_if_running"
+    assert execution.on_failure == []
+
+
+def test_execution_rejects_unknown_retry_backoff_strategy() -> None:
+    """``retry_backoff`` is constrained to a closed set — typos like
+    ``"expontential"`` must fail validation, not silently coerce."""
+    with pytest.raises(ValidationError):
+        Execution(retry_backoff="expontential")  # type: ignore[arg-type]
+
+
+def test_execution_rejects_unknown_concurrency_strategy() -> None:
+    """Same closed-set constraint on ``concurrency``."""
+    with pytest.raises(ValidationError):
+        Execution(concurrency="parallel")  # type: ignore[arg-type]
+
+
+def test_execution_rejects_invalid_numeric_bounds() -> None:
+    """``timeout_seconds > 0`` and ``max_retries >= 0``. Zero or negative
+    values would produce nonsensical run behavior."""
+    with pytest.raises(ValidationError):
+        Execution(timeout_seconds=0)
+    with pytest.raises(ValidationError):
+        Execution(max_retries=-1)
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_inputs.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_inputs.py
new file mode 100644
index 000000000..5dc24463f
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_inputs.py
@@ -0,0 +1,39 @@
+"""Lock the ``Inputs`` JSON ``schema``-alias roundtrip.
+
+The field is ``schema_`` in Python (``schema`` shadows a Pydantic builtin)
+but is wire-named ``schema``. Locking the roundtrip means JSON definitions
+authored anywhere (UI raw editor, NL drafter, CLI export) speak the same
+wire shape.
+"""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.definition.inputs import Inputs
+
+pytestmark = pytest.mark.unit
+
+
+def test_inputs_parses_wire_field_named_schema_into_schema_attribute() -> None:
+    """JSON payloads use ``schema`` (the convention). The model stores it
+    on the Python attribute ``schema_`` without shadowing the builtin."""
+    parsed = Inputs.model_validate({"schema": {"type": "object"}})
+
+    assert parsed.schema_ == {"type": "object"}
+
+
+def test_inputs_serializes_schema_attribute_back_to_wire_field_named_schema() -> None:
+    """Round-trip: serializing emits ``schema`` (alias), not ``schema_``.
+    Locks the consumer-visible JSON shape regardless of the Python name."""
+    inputs = Inputs(schema={"type": "object"})  # type: ignore[call-arg]
+
+    assert inputs.model_dump() == {"schema": {"type": "object"}}
+
+
+def test_inputs_rejects_unknown_field() -> None:
+    """``extra='forbid'`` catches typos like ``shema`` so bad definitions
+    don't silently lose their input declaration."""
+    with pytest.raises(ValidationError):
+        Inputs.model_validate({"schema": {}, "extra": "x"})
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_metadata.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_metadata.py
new file mode 100644
index 000000000..9ac90bb3f
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_metadata.py
@@ -0,0 +1,37 @@
+"""Lock the ``Metadata`` ``extra='allow'`` contract — the only schema
+that does. Free-form annotations on definitions (e.g. ``owner``,
+``project``, ``created_by_ai``) need to round-trip through the envelope
+without being rejected.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.schemas.definition.metadata import Metadata
+
+pytestmark = pytest.mark.unit
+
+
+def test_metadata_preserves_unknown_keys() -> None:
+    """Unlike every other definition sub-schema, ``Metadata`` allows
+    extra keys and round-trips them — that's its purpose."""
+    metadata = Metadata.model_validate(
+        {
+            "tags": ["weekly", "report"],
+            "owner": "tg",
+            "created_by_ai": True,
+        }
+    )
+
+    dumped = metadata.model_dump()
+
+    assert dumped["tags"] == ["weekly", "report"]
+    assert dumped["owner"] == "tg"
+    assert dumped["created_by_ai"] is True
+
+
+def test_metadata_defaults_tags_to_empty_list() -> None:
+    """No tags is the common case; the default is the empty list so
+    callers can append without a None check."""
+    assert Metadata().tags == []
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_plan_step.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_plan_step.py
new file mode 100644
index 000000000..6896a7f5a
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_plan_step.py
@@ -0,0 +1,52 @@
+"""Lock the ``PlanStep`` validation contract."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.definition.plan_step import PlanStep
+
+pytestmark = pytest.mark.unit
+
+
+def test_plan_step_accepts_minimal_input_with_safe_defaults() -> None:
+    """A step with just ``step_id`` + ``action`` is valid. Defaults
+    (no when, empty params, no output_as override, no retry/timeout
+    override) let the run inherit automation-wide defaults."""
+    step = PlanStep(step_id="s1", action="agent_task")
+
+    assert step.step_id == "s1"
+    assert step.action == "agent_task"
+    assert step.when is None
+    assert step.params == {}
+    assert step.output_as is None
+    assert step.max_retries is None
+    assert step.timeout_seconds is None
+
+
+def test_plan_step_rejects_empty_step_id_and_action() -> None:
+    """``step_id`` and ``action`` are addressing primitives — empty
+    strings would silently break runtime lookups."""
+    with pytest.raises(ValidationError):
+        PlanStep(step_id="", action="agent_task")
+    with pytest.raises(ValidationError):
+        PlanStep(step_id="s1", action="")
+
+
+def test_plan_step_rejects_negative_max_retries_and_non_positive_timeout() -> None:
+    """Numeric constraints: ``max_retries >= 0`` and ``timeout_seconds > 0``.
+    Negative budgets or zero timeouts produce nonsensical run behavior."""
+    with pytest.raises(ValidationError):
+        PlanStep(step_id="s1", action="agent_task", max_retries=-1)
+    with pytest.raises(ValidationError):
+        PlanStep(step_id="s1", action="agent_task", timeout_seconds=0)
+
+
+def test_plan_step_rejects_unknown_field() -> None:
+    """``extra='forbid'`` catches typos like ``actoin`` (instead of
+    ``action``) before the bad step reaches storage."""
+    with pytest.raises(ValidationError):
+        PlanStep.model_validate(
+            {"step_id": "s1", "action": "agent_task", "actoin": "agent_task"}
+        )
diff --git a/surfsense_backend/tests/unit/automations/schemas/definition/test_trigger_spec.py b/surfsense_backend/tests/unit/automations/schemas/definition/test_trigger_spec.py
new file mode 100644
index 000000000..cf1a52466
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/schemas/definition/test_trigger_spec.py
@@ -0,0 +1,33 @@
+"""Lock the ``TriggerSpec`` validation contract — the entry shape used
+inside an automation's ``triggers[]`` array.
+"""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.schemas.definition.trigger_spec import TriggerSpec
+
+pytestmark = pytest.mark.unit
+
+
+def test_trigger_spec_accepts_type_with_default_empty_params() -> None:
+    """``type`` is required; ``params`` defaults to ``{}`` so triggers
+    that take no params don't need an explicit body."""
+    spec = TriggerSpec(type="schedule")
+
+    assert spec.type == "schedule"
+    assert spec.params == {}
+
+
+def test_trigger_spec_rejects_empty_type() -> None:
+    """``type`` is the registry lookup key — empty would silently miss."""
+    with pytest.raises(ValidationError):
+        TriggerSpec(type="")
+
+
+def test_trigger_spec_rejects_unknown_field() -> None:
+    """``extra='forbid'`` catches typos at definition-validation time."""
+    with pytest.raises(ValidationError):
+        TriggerSpec.model_validate({"type": "schedule", "paramz": {}})
diff --git a/surfsense_backend/tests/unit/automations/services/__init__.py b/surfsense_backend/tests/unit/automations/services/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/services/test_automation_service_policy.py b/surfsense_backend/tests/unit/automations/services/test_automation_service_policy.py
new file mode 100644
index 000000000..0bbff39dc
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/services/test_automation_service_policy.py
@@ -0,0 +1,493 @@
+"""Lock creation-time model-policy enforcement in ``AutomationService``.
+
+Creation (REST + manual builder) rejects search spaces whose models aren't
+billable for automations with HTTP 422, mirroring the runtime backstop. These
+tests isolate the new ``_assert_models_billable`` / ``model_eligibility`` paths
+without touching the DB commit.
+"""
+
+from __future__ import annotations
+
+from types import SimpleNamespace
+from typing import Any
+
+import pytest
+from fastapi import HTTPException
+
+import app.automations.services.automation as automation_mod
+from app.automations.schemas.api import AutomationCreate, AutomationUpdate
+from app.automations.schemas.definition.envelope import (
+    AutomationDefinition,
+    AutomationModels,
+)
+from app.automations.schemas.definition.plan_step import PlanStep
+from app.automations.services.automation import AutomationService
+from app.automations.services.model_policy import AutomationModelPolicyError
+
+pytestmark = pytest.mark.unit
+
+
+class _FakeSession:
+    def __init__(self, search_space: Any) -> None:
+        self._search_space = search_space
+        self.added: list[Any] = []
+        self.commits = 0
+
+    async def get(self, _model: Any, _pk: int) -> Any:
+        return self._search_space
+
+    def add(self, obj: Any) -> None:
+        self.added.append(obj)
+
+    async def commit(self) -> None:
+        self.commits += 1
+
+
+def _service(search_space: Any) -> AutomationService:
+    return AutomationService(
+        session=_FakeSession(search_space), user=SimpleNamespace(id="u-1")
+    )
+
+
+def _definition(**kwargs: Any) -> AutomationDefinition:
+    return AutomationDefinition(
+        name="A",
+        plan=[PlanStep(step_id="s1", action="agent_task")],
+        **kwargs,
+    )
+
+
+async def test_assert_models_billable_raises_422_on_violation(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A blocked model maps the policy error to HTTP 422."""
+
+    def _raise(_ss):
+        raise AutomationModelPolicyError(
+            [{"kind": "llm", "config_id": 0, "reason": "Auto mode"}]
+        )
+
+    monkeypatch.setattr(automation_mod, "assert_automation_models_billable", _raise)
+
+    service = _service(SimpleNamespace(agent_llm_id=0))
+    with pytest.raises(HTTPException) as exc_info:
+        await service._assert_models_billable(1)
+
+    assert exc_info.value.status_code == 422
+
+
+async def test_assert_models_billable_raises_404_when_missing(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A missing search space is a 404, not a policy error."""
+    monkeypatch.setattr(
+        automation_mod, "assert_automation_models_billable", lambda _ss: None
+    )
+
+    service = _service(None)
+    with pytest.raises(HTTPException) as exc_info:
+        await service._assert_models_billable(999)
+
+    assert exc_info.value.status_code == 404
+
+
+async def test_assert_models_billable_returns_search_space_when_ok(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """When the policy accepts, the loaded search space is returned for reuse."""
+    monkeypatch.setattr(
+        automation_mod, "assert_automation_models_billable", lambda _ss: None
+    )
+
+    search_space = SimpleNamespace(agent_llm_id=-1)
+    service = _service(search_space)
+    assert await service._assert_models_billable(1) is search_space
+
+
+async def test_create_injects_captured_models_from_search_space(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """create() snapshots the search space's model prefs onto the definition."""
+    monkeypatch.setattr(
+        automation_mod, "assert_automation_models_billable", lambda _ss: None
+    )
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+
+    async def _return_added(self, _aid):
+        return self.session.added[-1]
+
+    monkeypatch.setattr(AutomationService, "_get_with_triggers_or_raise", _return_added)
+
+    search_space = SimpleNamespace(
+        agent_llm_id=-1,
+        image_generation_config_id=5,
+        vision_llm_config_id=-1,
+    )
+    service = _service(search_space)
+    payload = AutomationCreate(
+        search_space_id=1,
+        name="A",
+        definition=_definition(),
+    )
+
+    automation = await service.create(payload)
+
+    assert automation.definition["models"] == {
+        "agent_llm_id": -1,
+        "image_generation_config_id": 5,
+        "vision_llm_config_id": -1,
+    }
+
+
+async def test_create_treats_unset_prefs_as_auto_zero(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """``None`` search-space prefs are captured as ``0`` (Auto) ids."""
+    monkeypatch.setattr(
+        automation_mod, "assert_automation_models_billable", lambda _ss: None
+    )
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+
+    async def _return_added(self, _aid):
+        return self.session.added[-1]
+
+    monkeypatch.setattr(AutomationService, "_get_with_triggers_or_raise", _return_added)
+
+    search_space = SimpleNamespace(
+        agent_llm_id=None,
+        image_generation_config_id=None,
+        vision_llm_config_id=None,
+    )
+    service = _service(search_space)
+    payload = AutomationCreate(search_space_id=1, name="A", definition=_definition())
+
+    automation = await service.create(payload)
+
+    assert automation.definition["models"] == {
+        "agent_llm_id": 0,
+        "image_generation_config_id": 0,
+        "vision_llm_config_id": 0,
+    }
+
+
+async def test_create_honors_selected_models_when_provided(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """When the payload carries ``definition.models`` they are validated + kept.
+
+    The search-space snapshot path is bypassed entirely (no
+    ``assert_automation_models_billable`` call).
+    """
+
+    def _fail_snapshot(_ss):
+        raise AssertionError("snapshot path should not run when models are provided")
+
+    monkeypatch.setattr(
+        automation_mod, "assert_automation_models_billable", _fail_snapshot
+    )
+    validated: dict[str, Any] = {}
+
+    def _assert_ok(*, agent_llm_id, image_generation_config_id, vision_llm_config_id):
+        validated["ids"] = (
+            agent_llm_id,
+            image_generation_config_id,
+            vision_llm_config_id,
+        )
+
+    monkeypatch.setattr(automation_mod, "assert_models_billable", _assert_ok)
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    async def _return_added(self, _aid):
+        return self.session.added[-1]
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+    monkeypatch.setattr(AutomationService, "_get_with_triggers_or_raise", _return_added)
+
+    service = _service(SimpleNamespace(agent_llm_id=-99))
+    payload = AutomationCreate(
+        search_space_id=1,
+        name="A",
+        definition=_definition(
+            models=AutomationModels(
+                agent_llm_id=-1,
+                image_generation_config_id=7,
+                vision_llm_config_id=-2,
+            )
+        ),
+    )
+
+    automation = await service.create(payload)
+
+    assert validated["ids"] == (-1, 7, -2)
+    assert automation.definition["models"] == {
+        "agent_llm_id": -1,
+        "image_generation_config_id": 7,
+        "vision_llm_config_id": -2,
+    }
+
+
+async def test_create_rejects_unbillable_selected_models(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A non-billable explicit selection maps the policy error to HTTP 422."""
+
+    def _raise(*, agent_llm_id, image_generation_config_id, vision_llm_config_id):
+        raise AutomationModelPolicyError(
+            [{"kind": "llm", "config_id": -3, "reason": "free model"}]
+        )
+
+    monkeypatch.setattr(automation_mod, "assert_models_billable", _raise)
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+
+    service = _service(SimpleNamespace(agent_llm_id=-3))
+    payload = AutomationCreate(
+        search_space_id=1,
+        name="A",
+        definition=_definition(
+            models=AutomationModels(
+                agent_llm_id=-3,
+                image_generation_config_id=7,
+                vision_llm_config_id=-2,
+            )
+        ),
+    )
+
+    with pytest.raises(HTTPException) as exc_info:
+        await service.create(payload)
+
+    assert exc_info.value.status_code == 422
+
+
+async def test_update_preserves_captured_models(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A definition edit carries over the previously captured ``models``."""
+    captured = {
+        "agent_llm_id": -1,
+        "image_generation_config_id": 5,
+        "vision_llm_config_id": -1,
+    }
+    existing = SimpleNamespace(
+        search_space_id=1,
+        definition={"name": "A", "plan": [], "models": captured},
+        version=3,
+    )
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    async def _return_existing(self, _aid):
+        return existing
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+    monkeypatch.setattr(
+        AutomationService, "_get_with_triggers_or_raise", _return_existing
+    )
+
+    service = _service(SimpleNamespace())
+    # The incoming patch definition has no ``models`` (frontend strips it).
+    patch = AutomationUpdate(definition=_definition())
+
+    result = await service.update(7, patch)
+
+    assert result.definition["models"] == captured
+    assert result.version == 4
+
+
+async def test_update_honors_changed_models_when_valid(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A definition edit with a *changed* models block validates + keeps it."""
+    existing = SimpleNamespace(
+        search_space_id=1,
+        definition={
+            "name": "A",
+            "plan": [],
+            "models": {
+                "agent_llm_id": -1,
+                "image_generation_config_id": 5,
+                "vision_llm_config_id": -1,
+            },
+        },
+        version=3,
+    )
+    validated: dict[str, Any] = {}
+
+    def _assert_ok(*, agent_llm_id, image_generation_config_id, vision_llm_config_id):
+        validated["ids"] = (
+            agent_llm_id,
+            image_generation_config_id,
+            vision_llm_config_id,
+        )
+
+    monkeypatch.setattr(automation_mod, "assert_models_billable", _assert_ok)
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    async def _return_existing(self, _aid):
+        return existing
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+    monkeypatch.setattr(
+        AutomationService, "_get_with_triggers_or_raise", _return_existing
+    )
+
+    service = _service(SimpleNamespace())
+    patch = AutomationUpdate(
+        definition=_definition(
+            models=AutomationModels(
+                agent_llm_id=-2,
+                image_generation_config_id=9,
+                vision_llm_config_id=-2,
+            )
+        )
+    )
+
+    result = await service.update(7, patch)
+
+    assert validated["ids"] == (-2, 9, -2)
+    assert result.definition["models"] == {
+        "agent_llm_id": -2,
+        "image_generation_config_id": 9,
+        "vision_llm_config_id": -2,
+    }
+    assert result.version == 4
+
+
+async def test_update_rejects_changed_unbillable_models(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """A *changed* non-billable models block is rejected with HTTP 422."""
+    existing = SimpleNamespace(
+        search_space_id=1,
+        definition={
+            "name": "A",
+            "plan": [],
+            "models": {
+                "agent_llm_id": -1,
+                "image_generation_config_id": 5,
+                "vision_llm_config_id": -1,
+            },
+        },
+        version=3,
+    )
+
+    def _raise(*, agent_llm_id, image_generation_config_id, vision_llm_config_id):
+        raise AutomationModelPolicyError(
+            [{"kind": "llm", "config_id": -7, "reason": "free model"}]
+        )
+
+    monkeypatch.setattr(automation_mod, "assert_models_billable", _raise)
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    async def _return_existing(self, _aid):
+        return existing
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+    monkeypatch.setattr(
+        AutomationService, "_get_with_triggers_or_raise", _return_existing
+    )
+
+    service = _service(SimpleNamespace())
+    patch = AutomationUpdate(
+        definition=_definition(
+            models=AutomationModels(
+                agent_llm_id=-7,
+                image_generation_config_id=5,
+                vision_llm_config_id=-1,
+            )
+        )
+    )
+
+    with pytest.raises(HTTPException) as exc_info:
+        await service.update(7, patch)
+
+    assert exc_info.value.status_code == 422
+
+
+async def test_update_keeps_unchanged_models_without_revalidation(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """An unchanged models block is kept as-is and is NOT re-validated.
+
+    Lets users edit an automation whose captured model later drifted out of
+    premium without an unrelated edit tripping the policy check.
+    """
+    captured = {
+        "agent_llm_id": -1,
+        "image_generation_config_id": 5,
+        "vision_llm_config_id": -1,
+    }
+    existing = SimpleNamespace(
+        search_space_id=1,
+        definition={"name": "A", "plan": [], "models": captured},
+        version=3,
+    )
+
+    def _fail(*_a, **_k):
+        raise AssertionError("unchanged models must not be re-validated")
+
+    monkeypatch.setattr(automation_mod, "assert_models_billable", _fail)
+
+    async def _noop_authorize(self, *_a, **_k):
+        return None
+
+    async def _return_existing(self, _aid):
+        return existing
+
+    monkeypatch.setattr(AutomationService, "_authorize", _noop_authorize)
+    monkeypatch.setattr(
+        AutomationService, "_get_with_triggers_or_raise", _return_existing
+    )
+
+    service = _service(SimpleNamespace())
+    patch = AutomationUpdate(
+        definition=_definition(models=AutomationModels(**captured))
+    )
+
+    result = await service.update(7, patch)
+
+    assert result.definition["models"] == captured
+    assert result.version == 4
+
+
+async def test_model_eligibility_authorizes_and_returns_payload(
+    monkeypatch: pytest.MonkeyPatch,
+) -> None:
+    """``model_eligibility`` checks read access then returns the eligibility dict."""
+    authorized: dict[str, Any] = {}
+
+    async def _fake_check_permission(_session, _user, ss_id, permission, _msg):
+        authorized["search_space_id"] = ss_id
+        authorized["permission"] = permission
+
+    monkeypatch.setattr(automation_mod, "check_permission", _fake_check_permission)
+    monkeypatch.setattr(
+        automation_mod,
+        "get_automation_model_eligibility",
+        lambda _ss: {"allowed": False, "violations": [{"kind": "image"}]},
+    )
+
+    service = _service(SimpleNamespace(agent_llm_id=-2))
+    result = await service.model_eligibility(search_space_id=5)
+
+    assert result == {"allowed": False, "violations": [{"kind": "image"}]}
+    assert authorized["search_space_id"] == 5
+    assert authorized["permission"] == "automations:read"
diff --git a/surfsense_backend/tests/unit/automations/services/test_model_policy.py b/surfsense_backend/tests/unit/automations/services/test_model_policy.py
new file mode 100644
index 000000000..2a471b4e9
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/services/test_model_policy.py
@@ -0,0 +1,196 @@
+"""Lock the automation model-billing policy.
+
+Automations may only run on billable models: premium global configs
+(``billing_tier == "premium"``) or user BYOK configs (positive id). Free
+globals and Auto mode (id == 0 / None) are blocked. These tests pin that rule
+across all three model slots (chat LLM, image, vision).
+"""
+
+from __future__ import annotations
+
+from types import SimpleNamespace
+
+import pytest
+
+import app.automations.services.model_policy as model_policy
+from app.automations.services.model_policy import (
+    AutomationModelPolicyError,
+    assert_automation_models_billable,
+    assert_models_billable,
+    get_automation_model_eligibility,
+    get_model_eligibility,
+)
+
+pytestmark = pytest.mark.unit
+
+
+def _search_space(*, llm: int | None, image: int | None, vision: int | None):
+    """Minimal stand-in for the ``SearchSpace`` ORM row the policy reads."""
+    return SimpleNamespace(
+        agent_llm_id=llm,
+        image_generation_config_id=image,
+        vision_llm_config_id=vision,
+    )
+
+
+@pytest.fixture
+def patched_globals(monkeypatch: pytest.MonkeyPatch):
+    """Stub the global config sources the policy consults for negative ids.
+
+    Negative ids: -1 is premium, -2 is free, for each of llm/image/vision.
+    """
+    llm_configs = {
+        -1: {"id": -1, "billing_tier": "premium"},
+        -2: {"id": -2, "billing_tier": "free"},
+    }
+    monkeypatch.setattr(
+        "app.agents.new_chat.llm_config.load_global_llm_config_by_id",
+        lambda cid: llm_configs.get(cid),
+    )
+
+    from app.config import config as app_config
+
+    monkeypatch.setattr(
+        app_config,
+        "GLOBAL_IMAGE_GEN_CONFIGS",
+        [
+            {"id": -1, "billing_tier": "premium"},
+            {"id": -2, "billing_tier": "free"},
+        ],
+        raising=False,
+    )
+    monkeypatch.setattr(
+        app_config,
+        "GLOBAL_VISION_LLM_CONFIGS",
+        [
+            {"id": -1, "billing_tier": "premium"},
+            {"id": -2, "billing_tier": "free"},
+        ],
+        raising=False,
+    )
+    return None
+
+
+@pytest.mark.parametrize("kind", ["llm", "image", "vision"])
+def test_byok_positive_id_is_allowed(kind: str, patched_globals) -> None:
+    """A positive config id is a user-owned BYOK model — always billable."""
+    allowed, reason = model_policy._classify(kind, 7)
+    assert allowed is True
+    assert reason == ""
+
+
+@pytest.mark.parametrize("kind", ["llm", "image", "vision"])
+@pytest.mark.parametrize("config_id", [0, None])
+def test_auto_mode_is_blocked(kind: str, config_id, patched_globals) -> None:
+    """Auto mode (id 0) and an unset slot (None) are blocked."""
+    allowed, reason = model_policy._classify(kind, config_id)
+    assert allowed is False
+    assert "Auto mode" in reason
+
+
+@pytest.mark.parametrize("kind", ["llm", "image", "vision"])
+def test_premium_global_is_allowed(kind: str, patched_globals) -> None:
+    """A negative (global) id with premium billing tier is allowed."""
+    allowed, reason = model_policy._classify(kind, -1)
+    assert allowed is True
+    assert reason == ""
+
+
+@pytest.mark.parametrize("kind", ["llm", "image", "vision"])
+def test_free_global_is_blocked(kind: str, patched_globals) -> None:
+    """A negative (global) id with a free billing tier is blocked."""
+    allowed, reason = model_policy._classify(kind, -2)
+    assert allowed is False
+    assert "free model" in reason
+
+
+@pytest.mark.parametrize("kind", ["llm", "image", "vision"])
+def test_unknown_global_id_is_blocked(kind: str, patched_globals) -> None:
+    """A negative id that resolves to no config is treated as not premium."""
+    allowed, _ = model_policy._classify(kind, -999)
+    assert allowed is False
+
+
+def test_eligibility_all_billable(patched_globals) -> None:
+    """Premium LLM + BYOK image + premium vision → allowed, no violations."""
+    search_space = _search_space(llm=-1, image=5, vision=-1)
+    result = get_automation_model_eligibility(search_space)
+    assert result == {"allowed": True, "violations": []}
+
+
+def test_eligibility_reports_each_violation(patched_globals) -> None:
+    """A free LLM, Auto image, and free vision each produce a violation."""
+    search_space = _search_space(llm=-2, image=0, vision=-2)
+    result = get_automation_model_eligibility(search_space)
+
+    assert result["allowed"] is False
+    kinds = {v["kind"] for v in result["violations"]}
+    assert kinds == {"llm", "image", "vision"}
+    # config_id is echoed back for the UI / settings deep-link.
+    by_kind = {v["kind"]: v["config_id"] for v in result["violations"]}
+    assert by_kind == {"llm": -2, "image": 0, "vision": -2}
+
+
+def test_assert_raises_with_violations(patched_globals) -> None:
+    """``assert_automation_models_billable`` raises when any slot is blocked."""
+    search_space = _search_space(llm=0, image=5, vision=-1)
+    with pytest.raises(AutomationModelPolicyError) as exc_info:
+        assert_automation_models_billable(search_space)
+
+    assert len(exc_info.value.violations) == 1
+    assert exc_info.value.violations[0]["kind"] == "llm"
+
+
+def test_assert_passes_when_all_billable(patched_globals) -> None:
+    """No exception when every slot is premium or BYOK."""
+    search_space = _search_space(llm=3, image=-1, vision=4)
+    assert assert_automation_models_billable(search_space) is None
+
+
+# --- ID-based core (used by the runtime backstop against captured snapshots) ---
+
+
+def test_get_model_eligibility_all_billable(patched_globals) -> None:
+    """Premium LLM + BYOK image + premium vision (explicit ids) → allowed."""
+    result = get_model_eligibility(
+        agent_llm_id=-1, image_generation_config_id=5, vision_llm_config_id=-1
+    )
+    assert result == {"allowed": True, "violations": []}
+
+
+def test_get_model_eligibility_reports_each_violation(patched_globals) -> None:
+    """Free LLM, Auto image, free vision (explicit ids) each produce a violation."""
+    result = get_model_eligibility(
+        agent_llm_id=-2, image_generation_config_id=0, vision_llm_config_id=-2
+    )
+    assert result["allowed"] is False
+    by_kind = {v["kind"]: v["config_id"] for v in result["violations"]}
+    assert by_kind == {"llm": -2, "image": 0, "vision": -2}
+
+
+def test_assert_models_billable_raises(patched_globals) -> None:
+    """``assert_models_billable`` raises when any explicit id is blocked."""
+    with pytest.raises(AutomationModelPolicyError) as exc_info:
+        assert_models_billable(
+            agent_llm_id=0, image_generation_config_id=5, vision_llm_config_id=-1
+        )
+    assert len(exc_info.value.violations) == 1
+    assert exc_info.value.violations[0]["kind"] == "llm"
+
+
+def test_assert_models_billable_passes(patched_globals) -> None:
+    """No exception when every explicit id is premium or BYOK."""
+    assert (
+        assert_models_billable(
+            agent_llm_id=3, image_generation_config_id=-1, vision_llm_config_id=4
+        )
+        is None
+    )
+
+
+def test_search_space_wrapper_delegates_to_core(patched_globals) -> None:
+    """The search-space wrapper produces the same result as the ID core."""
+    search_space = _search_space(llm=-2, image=0, vision=-2)
+    assert get_automation_model_eligibility(search_space) == get_model_eligibility(
+        agent_llm_id=-2, image_generation_config_id=0, vision_llm_config_id=-2
+    )
diff --git a/surfsense_backend/tests/unit/automations/templating/__init__.py b/surfsense_backend/tests/unit/automations/templating/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/templating/test_context.py b/surfsense_backend/tests/unit/automations/templating/test_context.py
new file mode 100644
index 000000000..54f372e77
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/templating/test_context.py
@@ -0,0 +1,53 @@
+"""Lock the ``{run, inputs, steps}`` namespace exposed to every template."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+from uuid import UUID
+
+import pytest
+
+from app.automations.templating.context import build_run_context
+
+pytestmark = pytest.mark.unit
+
+
+def test_build_run_context_exposes_run_inputs_and_steps_namespaces() -> None:
+    """The namespace handed to templates groups run metadata under ``run``,
+    runtime + static inputs under ``inputs``, and step outputs (keyed by
+    ``output_as`` / ``step_id``) under ``steps``. Locks the contract that
+    every plan template body relies on."""
+    creator = UUID("00000000-0000-0000-0000-000000000001")
+    started = datetime(2026, 5, 28, 14, 30, tzinfo=UTC)
+
+    ctx = build_run_context(
+        run_id=42,
+        automation_id=7,
+        automation_name="Weekly digest",
+        automation_version=3,
+        search_space_id=1,
+        creator_id=creator,
+        trigger_id=11,
+        trigger_type="schedule",
+        started_at=started,
+        attempt=2,
+        inputs={"topic": "weekly"},
+        step_outputs={"summarize": {"text": "ok"}},
+    )
+
+    assert ctx == {
+        "run": {
+            "id": 42,
+            "automation_id": 7,
+            "automation_name": "Weekly digest",
+            "automation_version": 3,
+            "search_space_id": 1,
+            "creator_id": creator,
+            "trigger_id": 11,
+            "trigger_type": "schedule",
+            "started_at": started,
+            "attempt": 2,
+        },
+        "inputs": {"topic": "weekly"},
+        "steps": {"summarize": {"text": "ok"}},
+    }
diff --git a/surfsense_backend/tests/unit/automations/templating/test_environment.py b/surfsense_backend/tests/unit/automations/templating/test_environment.py
new file mode 100644
index 000000000..64850c9c5
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/templating/test_environment.py
@@ -0,0 +1,53 @@
+"""Lock the sandbox boundary: disallowed filters/tests reject, finalize coerces non-strings.
+
+These behaviors live in ``environment.py`` but are observed through the
+public ``render_template`` surface — the same surface every step uses.
+"""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+import pytest
+from jinja2.exceptions import TemplateError
+
+from app.automations.templating.render import render_template
+
+pytestmark = pytest.mark.unit
+
+
+def test_environment_rejects_filters_not_in_the_allowlist() -> None:
+    """A template that pipes through a Jinja built-in **not** in the
+    allowlist (e.g. ``pprint``) must fail rather than rendering. Locks
+    the sandbox surface against accidental re-introduction of removed
+    filters."""
+    with pytest.raises(TemplateError):
+        render_template("{{ value | pprint }}", {"value": {"k": 1}})
+
+
+def test_environment_finalizes_datetime_output_to_iso_string() -> None:
+    """A datetime that lands directly at an output site is stringified
+    via ``isoformat()`` rather than producing ``str(datetime)`` (which
+    has a space separator). Locks the wire shape templates produce
+    when emitting ``inputs.fired_at`` and other datetime values."""
+    dt = datetime(2026, 5, 28, 14, 30, tzinfo=UTC)
+
+    assert (
+        render_template("{{ moment }}", {"moment": dt}) == "2026-05-28T14:30:00+00:00"
+    )
+
+
+def test_environment_finalizes_none_output_to_empty_string() -> None:
+    """A ``None`` at an output site becomes the empty string. Lets
+    templates write ``{{ inputs.last_fired_at }}`` unconditionally on
+    the first run without exploding on the null."""
+    assert render_template("{{ missing }}", {"missing": None}) == ""
+
+
+def test_environment_finalizes_dict_output_to_json() -> None:
+    """A dict at an output site is JSON-serialized. Same for lists.
+    Locks the wire shape so users embedding structured values into
+    prompts get deterministic, parseable output."""
+    rendered = render_template("{{ payload }}", {"payload": {"a": 1, "b": [2, 3]}})
+
+    assert rendered == '{"a": 1, "b": [2, 3]}'
diff --git a/surfsense_backend/tests/unit/automations/templating/test_filters.py b/surfsense_backend/tests/unit/automations/templating/test_filters.py
new file mode 100644
index 000000000..cf83ee337
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/templating/test_filters.py
@@ -0,0 +1,42 @@
+"""Lock the custom Jinja filters: ``date`` and ``slugify``."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+import pytest
+
+from app.automations.templating.filters import filter_date, filter_slugify
+
+pytestmark = pytest.mark.unit
+
+
+def test_filter_slugify_produces_url_safe_slug_from_typical_title() -> None:
+    """``filter_slugify`` lowercases, replaces non-alphanumerics with
+    hyphens, collapses repeats, and trims edge hyphens — the standard
+    URL-slug contract users expect when piping titles into paths."""
+    assert filter_slugify("Hello, World! 2026") == "hello-world-2026"
+
+
+def test_filter_date_formats_datetime_with_strftime_format() -> None:
+    """``filter_date`` calls ``strftime`` on datetime-like values with the
+    provided format. Default format yields ISO date (YYYY-MM-DD)."""
+    dt = datetime(2026, 5, 28, 14, 30, tzinfo=UTC)
+
+    assert filter_date(dt) == "2026-05-28"
+    assert filter_date(dt, "%Y/%m/%d %H:%M") == "2026/05/28 14:30"
+
+
+def test_filter_date_returns_empty_string_for_none() -> None:
+    """``None`` (e.g., a never-fired ``last_fired_at``) renders as the
+    empty string rather than the literal ``"None"`` or raising. This is
+    what lets templates write ``{{ inputs.last_fired_at | date }}``
+    unconditionally on the first run."""
+    assert filter_date(None) == ""
+
+
+def test_filter_date_passes_strings_through_unchanged() -> None:
+    """Already-formatted ISO strings (the JSON-serialized shape of
+    runtime inputs like ``fired_at``) pass through unchanged so callers
+    don't have to special-case the type."""
+    assert filter_date("2026-05-28T14:30:00+00:00") == "2026-05-28T14:30:00+00:00"
diff --git a/surfsense_backend/tests/unit/automations/templating/test_render.py b/surfsense_backend/tests/unit/automations/templating/test_render.py
new file mode 100644
index 000000000..42a7c7082
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/templating/test_render.py
@@ -0,0 +1,59 @@
+"""Lock the public template-rendering surface: render, predicate, recursive."""
+
+from __future__ import annotations
+
+import pytest
+from jinja2 import UndefinedError
+
+from app.automations.templating.render import (
+    evaluate_predicate,
+    render_template,
+    render_value,
+)
+
+pytestmark = pytest.mark.unit
+
+
+def test_render_template_substitutes_context_variables() -> None:
+    """A template referencing a context variable produces the substituted
+    string. Most basic contract of the template engine."""
+    result = render_template("Hello {{ name }}!", {"name": "World"})
+
+    assert result == "Hello World!"
+
+
+def test_render_template_raises_on_undefined_variable() -> None:
+    """Referencing a variable that isn't in the context raises rather than
+    rendering the empty string. Locks the StrictUndefined safety net so
+    template typos surface as run failures instead of silent corruption."""
+    with pytest.raises(UndefinedError):
+        render_template("Hello {{ missing }}!", {})
+
+
+def test_evaluate_predicate_returns_truthy_outcome_of_expression() -> None:
+    """``evaluate_predicate`` compiles a Jinja **expression** (not template
+    body) and coerces the value to ``bool``. Drives ``step.when`` gating."""
+    assert evaluate_predicate("inputs.count > 0", {"inputs": {"count": 3}}) is True
+    assert evaluate_predicate("inputs.count > 0", {"inputs": {"count": 0}}) is False
+
+
+def test_render_value_renders_strings_recursively_through_dicts_and_lists() -> None:
+    """``render_value`` walks dicts and lists, renders string leaves through
+    the template engine, and leaves non-strings untouched. This is the
+    primitive ``execute_step`` uses to render step params at run time."""
+    context = {"inputs": {"name": "World"}, "topic": "weekly"}
+
+    rendered = render_value(
+        {
+            "greeting": "Hello {{ inputs.name }}",
+            "tags": ["{{ topic }}", "static"],
+            "config": {"retries": 3, "label": "{{ topic }}-{{ inputs.name }}"},
+        },
+        context,
+    )
+
+    assert rendered == {
+        "greeting": "Hello World",
+        "tags": ["weekly", "static"],
+        "config": {"retries": 3, "label": "weekly-World"},
+    }
diff --git a/surfsense_backend/tests/unit/automations/test_definition_types.py b/surfsense_backend/tests/unit/automations/test_definition_types.py
new file mode 100644
index 000000000..2320b61d3
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/test_definition_types.py
@@ -0,0 +1,56 @@
+"""Lock the ``params_schema`` derivation on action + trigger definitions.
+
+Both definition dataclasses expose ``params_schema`` as the JSON Schema
+of their ``params_model``. This is what the registry endpoints surface
+to the UI as the "what shape do these params take?" contract.
+"""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import BaseModel
+
+from app.automations.actions.types import ActionDefinition
+from app.automations.triggers.types import TriggerDefinition
+
+pytestmark = pytest.mark.unit
+
+
+class _Topic(BaseModel):
+    """Model with one required string field — minimal schema fingerprint."""
+
+    topic: str
+
+
+def test_action_definition_params_schema_reflects_params_model() -> None:
+    """``ActionDefinition.params_schema`` returns a JSON Schema derived
+    from the Pydantic ``params_model`` — required fields and types are
+    visible to clients consuming the registry endpoint."""
+    definition = ActionDefinition(
+        type="t",
+        name="N",
+        description="D",
+        params_model=_Topic,
+        build_handler=lambda _ctx: lambda _p: {},  # type: ignore[arg-type,return-value]
+    )
+
+    schema = definition.params_schema
+
+    assert schema["type"] == "object"
+    assert schema["properties"]["topic"]["type"] == "string"
+    assert "topic" in schema["required"]
+
+
+def test_trigger_definition_params_schema_reflects_params_model() -> None:
+    """Same JSON-Schema derivation contract on the trigger side."""
+    definition = TriggerDefinition(
+        type="t",
+        description="D",
+        params_model=_Topic,
+    )
+
+    schema = definition.params_schema
+
+    assert schema["type"] == "object"
+    assert schema["properties"]["topic"]["type"] == "string"
+    assert "topic" in schema["required"]
diff --git a/surfsense_backend/tests/unit/automations/test_import_registrations.py b/surfsense_backend/tests/unit/automations/test_import_registrations.py
new file mode 100644
index 000000000..35b1effa7
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/test_import_registrations.py
@@ -0,0 +1,37 @@
+"""Lock the bundled import side-effects.
+
+Importing ``app.automations`` (the package) registers the v1 bundled
+action (``agent_task``) and the v1 bundled trigger (``schedule``). If the
+import chain breaks (e.g. someone removes ``from . import definition``
+in a sub-package ``__init__``), the system would silently launch with an
+empty registry. These tests are the canary.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+import app.automations  # noqa: F401  (force the package import + its side-effects)
+from app.automations.actions.store import get_action
+from app.automations.persistence.enums.trigger_type import TriggerType
+from app.automations.triggers.store import get_trigger
+
+pytestmark = pytest.mark.unit
+
+
+def test_bundled_agent_task_action_is_registered_after_package_import() -> None:
+    """``agent_task`` — the v1 default action — must be discoverable in
+    the registry after the package is imported."""
+    definition = get_action("agent_task")
+
+    assert definition is not None
+    assert definition.type == "agent_task"
+
+
+def test_bundled_schedule_trigger_is_registered_after_package_import() -> None:
+    """``schedule`` — the only v1 trigger — must be discoverable in the
+    registry after the package is imported."""
+    definition = get_trigger(TriggerType.SCHEDULE.value)
+
+    assert definition is not None
+    assert definition.type == TriggerType.SCHEDULE.value
diff --git a/surfsense_backend/tests/unit/automations/test_persistence_enums.py b/surfsense_backend/tests/unit/automations/test_persistence_enums.py
new file mode 100644
index 000000000..23da613ed
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/test_persistence_enums.py
@@ -0,0 +1,45 @@
+"""Lock the persistence enum string values + members.
+
+These enums are mirrored by Postgres enum types, embedded in stored DB
+rows, and surfaced in the JSON API. Renaming a value (or removing a
+member) silently breaks production data and previously-issued API
+responses, so the strings + the set of members are the contract.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.persistence.enums.automation_status import AutomationStatus
+from app.automations.persistence.enums.run_status import RunStatus
+from app.automations.persistence.enums.trigger_type import TriggerType
+
+pytestmark = pytest.mark.unit
+
+
+def test_automation_status_string_values_are_stable() -> None:
+    """The exact strings persisted to Postgres and served in API JSON."""
+    assert {member.value for member in AutomationStatus} == {
+        "active",
+        "paused",
+        "archived",
+    }
+
+
+def test_run_status_string_values_are_stable() -> None:
+    """Run lifecycle states embedded in the ``automation_runs`` table."""
+    assert {member.value for member in RunStatus} == {
+        "pending",
+        "running",
+        "succeeded",
+        "failed",
+        "cancelled",
+        "timed_out",
+    }
+
+
+def test_trigger_type_keeps_manual_member_even_though_unregistered() -> None:
+    """``schedule`` and ``event`` are registered; ``MANUAL`` is reserved
+    (mirrors the Postgres enum) but the trigger store does not register it.
+    The enum must keep every member so DB rows and migrations stay valid."""
+    assert {member.value for member in TriggerType} == {"schedule", "event", "manual"}
diff --git a/surfsense_backend/tests/unit/automations/test_stores.py b/surfsense_backend/tests/unit/automations/test_stores.py
new file mode 100644
index 000000000..d005d7be7
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/test_stores.py
@@ -0,0 +1,117 @@
+"""Lock the trigger + action registry contracts.
+
+Both stores share the same API shape (register/get/all + duplicate-raise),
+so they're tested together to keep the contract visible side-by-side.
+"""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import BaseModel
+
+from app.automations.actions.store import (
+    get_action,
+    register_action,
+)
+from app.automations.actions.types import ActionDefinition
+from app.automations.triggers.store import (
+    all_triggers,
+    get_trigger,
+    register_trigger,
+)
+from app.automations.triggers.types import TriggerDefinition
+
+pytestmark = pytest.mark.unit
+
+
+class _Params(BaseModel):
+    """Empty params model used by test-only registrations."""
+
+
+def _trigger(type_: str = "test_trigger") -> TriggerDefinition:
+    return TriggerDefinition(
+        type=type_, description="Test trigger.", params_model=_Params
+    )
+
+
+def _action(type_: str = "test_action") -> ActionDefinition:
+    return ActionDefinition(
+        type=type_,
+        name="Test",
+        description="Test action.",
+        params_model=_Params,
+        build_handler=lambda _ctx: lambda _p: {},  # type: ignore[arg-type,return-value]
+    )
+
+
+def test_register_trigger_then_get_trigger_returns_the_same_definition(
+    isolated_trigger_registry: None,
+) -> None:
+    """The canonical round-trip: register, look up by type, get the same
+    definition back. Locks the basic registry contract."""
+    definition = _trigger()
+    register_trigger(definition)
+
+    assert get_trigger("test_trigger") is definition
+
+
+def test_register_action_then_get_action_returns_the_same_definition(
+    isolated_action_registry: None,
+) -> None:
+    """Same round-trip contract for the action registry."""
+    definition = _action()
+    register_action(definition)
+
+    assert get_action("test_action") is definition
+
+
+def test_get_trigger_returns_none_for_unknown_type(
+    isolated_trigger_registry: None,
+) -> None:
+    """An unknown type returns ``None`` (not raises). Lets callers like
+    the dispatcher branch on "is this trigger still registered?" without
+    try/except."""
+    assert get_trigger("never_registered") is None
+
+
+def test_get_action_returns_none_for_unknown_type(
+    isolated_action_registry: None,
+) -> None:
+    """Same ``None``-not-raise contract on the action side."""
+    assert get_action("never_registered") is None
+
+
+def test_register_trigger_rejects_duplicate_type(
+    isolated_trigger_registry: None,
+) -> None:
+    """Re-registering the same ``type`` raises rather than silently
+    overwriting. Locks the safety net against accidental double-import
+    (e.g., circular imports re-running the registration block)."""
+    register_trigger(_trigger())
+
+    with pytest.raises(ValueError, match="test_trigger"):
+        register_trigger(_trigger())
+
+
+def test_register_action_rejects_duplicate_type(
+    isolated_action_registry: None,
+) -> None:
+    """Same duplicate-rejection contract on the action side."""
+    register_action(_action())
+
+    with pytest.raises(ValueError, match="test_action"):
+        register_action(_action())
+
+
+def test_all_triggers_returns_defensive_snapshot(
+    isolated_trigger_registry: None,
+) -> None:
+    """``all_triggers()`` returns a copy: mutating the returned dict does
+    not corrupt the internal registry. Locks the snapshot contract that
+    UI/listing endpoints rely on."""
+    register_trigger(_trigger("snapshot_test"))
+
+    snapshot = all_triggers()
+    snapshot.pop("snapshot_test")
+
+    assert get_trigger("snapshot_test") is not None
diff --git a/surfsense_backend/tests/unit/automations/triggers/__init__.py b/surfsense_backend/tests/unit/automations/triggers/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/__init__.py b/surfsense_backend/tests/unit/automations/triggers/builtin/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/__init__.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_definition.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_definition.py
new file mode 100644
index 000000000..479943cc2
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_definition.py
@@ -0,0 +1,18 @@
+"""The ``event`` trigger self-registers on the triggers store at import."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.triggers import get_trigger
+from app.automations.triggers.builtin.event.params import EventTriggerParams
+
+pytestmark = pytest.mark.unit
+
+
+def test_event_trigger_is_registered() -> None:
+    definition = get_trigger("event")
+
+    assert definition is not None
+    assert definition.type == "event"
+    assert definition.params_model is EventTriggerParams
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_filter.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_filter.py
new file mode 100644
index 000000000..9ddc3503a
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_filter.py
@@ -0,0 +1,115 @@
+"""Behavior tests for the ``matches`` filter grammar."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.triggers.builtin.event.filter import FilterError, matches
+
+pytestmark = pytest.mark.unit
+
+
+def test_empty_filter_matches_any_payload() -> None:
+    assert matches({}, {"document_id": 42, "document_type": "FILE"}) is True
+    assert matches({}, {}) is True
+
+
+def test_scalar_value_is_implicit_equality() -> None:
+    flt = {"document_type": "FILE"}
+    assert matches(flt, {"document_type": "FILE"}) is True
+    assert matches(flt, {"document_type": "WEBPAGE"}) is False
+
+
+def test_multiple_fields_are_anded() -> None:
+    flt = {"document_type": "FILE", "search_space_id": 7}
+    assert matches(flt, {"document_type": "FILE", "search_space_id": 7}) is True
+    assert matches(flt, {"document_type": "FILE", "search_space_id": 9}) is False
+
+
+def test_gt_operator_compares_greater_than() -> None:
+    flt = {"page_count": {"$gt": 10}}
+    assert matches(flt, {"page_count": 20}) is True
+    assert matches(flt, {"page_count": 10}) is False
+    assert matches(flt, {"page_count": 5}) is False
+
+
+def test_remaining_comparison_operators() -> None:
+    assert matches({"n": {"$gte": 10}}, {"n": 10}) is True
+    assert matches({"n": {"$gte": 10}}, {"n": 9}) is False
+
+    assert matches({"n": {"$lt": 10}}, {"n": 9}) is True
+    assert matches({"n": {"$lt": 10}}, {"n": 10}) is False
+
+    assert matches({"n": {"$lte": 10}}, {"n": 10}) is True
+    assert matches({"n": {"$lte": 10}}, {"n": 11}) is False
+
+    assert matches({"s": {"$eq": "FILE"}}, {"s": "FILE"}) is True
+    assert matches({"s": {"$eq": "FILE"}}, {"s": "WEB"}) is False
+
+    assert matches({"s": {"$ne": "FILE"}}, {"s": "WEB"}) is True
+    assert matches({"s": {"$ne": "FILE"}}, {"s": "FILE"}) is False
+
+
+def test_multiple_operators_on_one_field_are_anded() -> None:
+    flt = {"n": {"$gte": 10, "$lt": 20}}
+    assert matches(flt, {"n": 15}) is True
+    assert matches(flt, {"n": 10}) is True
+    assert matches(flt, {"n": 20}) is False
+    assert matches(flt, {"n": 5}) is False
+
+
+def test_in_and_nin_membership_operators() -> None:
+    flt_in = {"document_type": {"$in": ["FILE", "WEBPAGE"]}}
+    assert matches(flt_in, {"document_type": "FILE"}) is True
+    assert matches(flt_in, {"document_type": "SLACK"}) is False
+
+    flt_nin = {"document_type": {"$nin": ["FILE", "WEBPAGE"]}}
+    assert matches(flt_nin, {"document_type": "SLACK"}) is True
+    assert matches(flt_nin, {"document_type": "FILE"}) is False
+
+
+def test_or_matches_when_any_branch_holds() -> None:
+    flt = {"$or": [{"document_type": "FILE"}, {"document_type": "WEBPAGE"}]}
+    assert matches(flt, {"document_type": "WEBPAGE"}) is True
+    assert matches(flt, {"document_type": "SLACK"}) is False
+
+
+def test_and_matches_when_every_branch_holds() -> None:
+    flt = {"$and": [{"n": {"$gt": 5}}, {"n": {"$lt": 10}}]}
+    assert matches(flt, {"n": 7}) is True
+    assert matches(flt, {"n": 12}) is False
+
+
+def test_not_inverts_its_subexpression() -> None:
+    flt = {"$not": {"document_type": "FILE"}}
+    assert matches(flt, {"document_type": "WEBPAGE"}) is True
+    assert matches(flt, {"document_type": "FILE"}) is False
+
+
+def test_missing_field_never_matches_and_never_raises() -> None:
+    # Conservative: an absent field fails the constraint, and comparisons must
+    # not raise on the missing value — including $ne (absence isn't "not equal").
+    assert matches({"document_type": "FILE"}, {}) is False
+    assert matches({"page_count": {"$gt": 5}}, {}) is False
+    assert matches({"document_type": {"$in": ["FILE"]}}, {}) is False
+    assert matches({"document_type": {"$ne": "FILE"}}, {}) is False
+
+
+def test_logical_operators_compose_with_fields() -> None:
+    flt = {
+        "search_space_id": 7,
+        "$or": [{"document_type": "FILE"}, {"document_type": "WEBPAGE"}],
+    }
+    assert matches(flt, {"search_space_id": 7, "document_type": "FILE"}) is True
+    assert matches(flt, {"search_space_id": 9, "document_type": "FILE"}) is False
+    assert matches(flt, {"search_space_id": 7, "document_type": "SLACK"}) is False
+
+
+def test_unknown_field_operator_raises_filter_error() -> None:
+    with pytest.raises(FilterError):
+        matches({"n": {"$regex": "x"}}, {"n": "xyz"})
+
+
+def test_unknown_logical_operator_raises_filter_error() -> None:
+    with pytest.raises(FilterError):
+        matches({"$nor": [{"document_type": "FILE"}]}, {"document_type": "FILE"})
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_inputs.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_inputs.py
new file mode 100644
index 000000000..e6191d7a7
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_inputs.py
@@ -0,0 +1,26 @@
+"""An event hands its payload + metadata to the run as inputs."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.triggers.builtin.event.inputs import event_runtime_inputs
+from app.event_bus import Event
+
+pytestmark = pytest.mark.unit
+
+
+def test_runtime_inputs_flatten_payload_with_event_metadata() -> None:
+    event = Event(
+        event_type="document.indexed",
+        payload={"document_id": 42, "document_type": "FILE"},
+        search_space_id=7,
+    )
+
+    inputs = event_runtime_inputs(event)
+
+    assert inputs["document_id"] == 42
+    assert inputs["document_type"] == "FILE"
+    assert inputs["event_type"] == "document.indexed"
+    assert inputs["event_id"] == event.event_id
+    assert inputs["occurred_at"] == event.occurred_at.isoformat()
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_match.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_match.py
new file mode 100644
index 000000000..d83db97a4
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_match.py
@@ -0,0 +1,39 @@
+"""Which triggers an event fires: event_type equality + filter match."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.triggers.builtin.event.match import trigger_matches_event
+from app.event_bus import Event
+
+pytestmark = pytest.mark.unit
+
+
+def _event(event_type: str = "document.indexed", **payload) -> Event:
+    return Event(event_type=event_type, payload=payload, search_space_id=7)
+
+
+def test_matches_when_event_type_equal_and_filter_passes() -> None:
+    params = {"event_type": "document.indexed", "filter": {"document_type": "FILE"}}
+    assert trigger_matches_event(params, _event(document_type="FILE")) is True
+
+
+def test_no_match_when_event_type_differs() -> None:
+    params = {"event_type": "document.indexed", "filter": {}}
+    assert trigger_matches_event(params, _event("podcast.generated")) is False
+
+
+def test_no_match_when_filter_rejects_payload() -> None:
+    params = {"event_type": "document.indexed", "filter": {"document_type": "FILE"}}
+    assert trigger_matches_event(params, _event(document_type="WEBPAGE")) is False
+
+
+def test_empty_filter_matches_any_payload_of_that_type() -> None:
+    params = {"event_type": "document.indexed", "filter": {}}
+    assert trigger_matches_event(params, _event(document_type="ANYTHING")) is True
+
+
+def test_missing_filter_key_is_treated_as_empty() -> None:
+    params = {"event_type": "document.indexed"}
+    assert trigger_matches_event(params, _event(document_type="X")) is True
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_params.py b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_params.py
new file mode 100644
index 000000000..fef3b0b94
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/event/test_params.py
@@ -0,0 +1,40 @@
+"""``EventTriggerParams`` contract: an event_type to listen for + an optional filter."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.automations.triggers.builtin.event.params import EventTriggerParams
+
+pytestmark = pytest.mark.unit
+
+
+def test_accepts_event_type_and_filter() -> None:
+    params = EventTriggerParams(
+        event_type="document.indexed",
+        filter={"document_type": "FILE"},
+    )
+
+    assert params.event_type == "document.indexed"
+    assert params.filter == {"document_type": "FILE"}
+
+
+def test_filter_defaults_to_empty() -> None:
+    params = EventTriggerParams(event_type="document.indexed")
+
+    assert params.filter == {}
+
+
+def test_event_type_is_required() -> None:
+    with pytest.raises(ValueError):
+        EventTriggerParams(filter={"x": 1})
+
+
+def test_event_type_must_not_be_blank() -> None:
+    with pytest.raises(ValueError):
+        EventTriggerParams(event_type="")
+
+
+def test_extra_keys_are_forbidden() -> None:
+    with pytest.raises(ValueError):
+        EventTriggerParams(event_type="document.indexed", typo=True)
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/__init__.py b/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_cron.py b/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_cron.py
new file mode 100644
index 000000000..618b82f2a
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_cron.py
@@ -0,0 +1,86 @@
+"""Lock the cron + timezone + UTC normalization contract."""
+
+from __future__ import annotations
+
+from datetime import UTC, datetime
+
+import pytest
+
+from app.automations.triggers.builtin.schedule.cron import (
+    InvalidCronError,
+    compute_next_fire_at,
+    validate_cron,
+)
+
+pytestmark = pytest.mark.unit
+
+
+def test_compute_next_fire_at_returns_next_match_normalized_to_utc() -> None:
+    """``compute_next_fire_at`` evaluates the cron in the given IANA timezone
+    and returns the next strictly-later match expressed in UTC.
+
+    Setup: ``0 9 * * 1-5`` (09:00 Monday-Friday) in ``Africa/Kigali``
+    (UTC+2, no DST). With ``after`` = Tuesday 05:00 UTC (= 07:00 local),
+    the next fire is the same Tuesday at 09:00 local = 07:00 UTC.
+    """
+    after = datetime(2026, 5, 26, 5, 0, tzinfo=UTC)  # Tue 07:00 Kigali
+
+    next_fire = compute_next_fire_at("0 9 * * 1-5", "Africa/Kigali", after=after)
+
+    assert next_fire == datetime(2026, 5, 26, 7, 0, tzinfo=UTC)
+
+
+def test_compute_next_fire_at_respects_dst_offset_change() -> None:
+    """A daily cron in a DST-observing tz fires at the same local hour
+    across the DST boundary, which produces a different UTC offset on
+    either side of the transition.
+
+    Setup: ``0 9 * * *`` (09:00 every day) in ``America/New_York``.
+    NY is UTC-5 in winter (EST), UTC-4 in summer (EDT). Evaluating from
+    each side of the spring-forward in 2026 (Sun Mar 8 at 02:00 → 03:00):
+
+    - winter: ``after`` = 2026-02-15 (EST, UTC-5) → next 09:00 EST = 14:00 UTC
+    - summer: ``after`` = 2026-04-15 (EDT, UTC-4) → next 09:00 EDT = 13:00 UTC
+    """
+    winter_after = datetime(2026, 2, 15, 0, 0, tzinfo=UTC)
+    summer_after = datetime(2026, 4, 15, 0, 0, tzinfo=UTC)
+
+    winter_fire = compute_next_fire_at(
+        "0 9 * * *", "America/New_York", after=winter_after
+    )
+    summer_fire = compute_next_fire_at(
+        "0 9 * * *", "America/New_York", after=summer_after
+    )
+
+    assert winter_fire == datetime(2026, 2, 15, 14, 0, tzinfo=UTC)
+    assert summer_fire == datetime(2026, 4, 15, 13, 0, tzinfo=UTC)
+
+
+def test_compute_next_fire_at_is_strictly_after_when_after_equals_a_match() -> None:
+    """When ``after`` lands exactly on a cron match, the result jumps to the
+    next match — never the same instant. Required so the schedule-tick
+    can pass ``next_fire_at`` itself as ``after`` to advance to the
+    following slot without double-firing.
+
+    Setup: weekday 09:00 Kigali. ``after`` = Mon 09:00 Kigali = 07:00 UTC
+    (an exact match) → next fire must be Tue 09:00 Kigali = next day 07:00 UTC.
+    """
+    after = datetime(2026, 5, 25, 7, 0, tzinfo=UTC)  # Mon 09:00 Kigali — exact match
+
+    next_fire = compute_next_fire_at("0 9 * * 1-5", "Africa/Kigali", after=after)
+
+    assert next_fire == datetime(2026, 5, 26, 7, 0, tzinfo=UTC)  # Tue 09:00 Kigali
+
+
+def test_validate_cron_rejects_malformed_cron_expression() -> None:
+    """A syntactically invalid cron must be rejected at validation time so
+    bad triggers can't reach storage and explode at fire time."""
+    with pytest.raises(InvalidCronError):
+        validate_cron("this is not cron", "UTC")
+
+
+def test_validate_cron_rejects_unknown_timezone() -> None:
+    """A non-IANA timezone string must be rejected at validation time —
+    the same protective gate as the cron expression itself."""
+    with pytest.raises(InvalidCronError):
+        validate_cron("0 9 * * *", "Mars/Olympus_Mons")
diff --git a/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_params.py b/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_params.py
new file mode 100644
index 000000000..bd9ebc621
--- /dev/null
+++ b/surfsense_backend/tests/unit/automations/triggers/builtin/schedule/test_params.py
@@ -0,0 +1,34 @@
+"""Lock the ``ScheduleTriggerParams`` validation contract."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import ValidationError
+
+from app.automations.triggers.builtin.schedule.params import ScheduleTriggerParams
+
+pytestmark = pytest.mark.unit
+
+
+def test_schedule_params_accept_valid_cron_and_iana_timezone() -> None:
+    """A well-formed cron + IANA timezone yields a populated model.
+    Locks the round-trip path users go through when creating a trigger."""
+    params = ScheduleTriggerParams(cron="0 9 * * 1-5", timezone="Africa/Kigali")
+
+    assert params.cron == "0 9 * * 1-5"
+    assert params.timezone == "Africa/Kigali"
+
+
+def test_schedule_params_reject_malformed_cron_with_validation_error() -> None:
+    """``InvalidCronError`` from ``validate_cron`` must surface as
+    Pydantic ``ValidationError`` so the FastAPI layer returns 422 instead
+    of letting the bad value reach storage."""
+    with pytest.raises(ValidationError):
+        ScheduleTriggerParams(cron="not cron", timezone="UTC")
+
+
+def test_schedule_params_reject_unknown_timezone_with_validation_error() -> None:
+    """An unknown timezone is rejected at the API boundary — same gate
+    as the cron expression itself."""
+    with pytest.raises(ValidationError):
+        ScheduleTriggerParams(cron="0 9 * * *", timezone="Mars/Olympus_Mons")
diff --git a/surfsense_backend/tests/unit/event_bus/__init__.py b/surfsense_backend/tests/unit/event_bus/__init__.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/surfsense_backend/tests/unit/event_bus/conftest.py b/surfsense_backend/tests/unit/event_bus/conftest.py
new file mode 100644
index 000000000..81ba4e464
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/conftest.py
@@ -0,0 +1,25 @@
+"""Shared fixtures for the ``app.event_bus`` unit-test tree.
+
+The event-type catalog is a module-level registry populated at import. Tests
+that register their own event types (or assert on registry contents) snapshot
+and restore it so state never leaks between tests.
+"""
+
+from __future__ import annotations
+
+from collections.abc import Iterator
+
+import pytest
+
+from app.event_bus.catalog import catalog
+
+
+@pytest.fixture
+def isolated_event_catalog() -> Iterator[None]:
+    """Snapshot and restore the event-type catalog around a test."""
+    snapshot = dict(catalog._registry)
+    try:
+        yield
+    finally:
+        catalog._registry.clear()
+        catalog._registry.update(snapshot)
diff --git a/surfsense_backend/tests/unit/event_bus/test_bus.py b/surfsense_backend/tests/unit/event_bus/test_bus.py
new file mode 100644
index 000000000..6c970760f
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/test_bus.py
@@ -0,0 +1,181 @@
+"""``EventBus`` contract: subscribe, publish (stamp + fan out), dispatch.
+
+Each test uses a fresh ``EventBus`` — no shared global state.
+"""
+
+from __future__ import annotations
+
+import pytest
+
+from app.event_bus import Event, EventBus
+
+pytestmark = pytest.mark.unit
+
+
+def _event() -> Event:
+    return Event(event_type="x.happened", payload={"k": "v"}, search_space_id=1)
+
+
+async def _noop(_event: Event) -> None:
+    return None
+
+
+async def _other(_event: Event) -> None:
+    return None
+
+
+# --- registry -------------------------------------------------------------
+
+
+def test_subscribe_then_subscribers_returns_the_handler() -> None:
+    bus = EventBus()
+    bus.subscribe(_noop)
+
+    assert _noop in bus.subscribers()
+
+
+def test_subscribe_is_idempotent_for_the_same_handler() -> None:
+    """Registering the same handler twice must not make it fire twice."""
+    bus = EventBus()
+    bus.subscribe(_noop)
+    bus.subscribe(_noop)
+
+    assert bus.subscribers().count(_noop) == 1
+
+
+def test_distinct_handlers_both_register() -> None:
+    bus = EventBus()
+    bus.subscribe(_noop)
+    bus.subscribe(_other)
+
+    registered = bus.subscribers()
+    assert _noop in registered
+    assert _other in registered
+
+
+def test_subscribers_returns_a_defensive_snapshot() -> None:
+    """Mutating the returned list must not corrupt the registry."""
+    bus = EventBus()
+    bus.subscribe(_noop)
+
+    snapshot = bus.subscribers()
+    snapshot.clear()
+
+    assert _noop in bus.subscribers()
+
+
+def test_subscribe_returns_handler_so_it_can_be_used_as_a_decorator() -> None:
+    bus = EventBus()
+    returned = bus.subscribe(_other)
+
+    assert returned is _other
+
+
+def test_two_buses_do_not_share_subscribers() -> None:
+    """The registry is per-instance, not global."""
+    a = EventBus()
+    b = EventBus()
+    a.subscribe(_noop)
+
+    assert _noop in a.subscribers()
+    assert _noop not in b.subscribers()
+
+
+# --- dispatch -------------------------------------------------------------
+
+
+async def test_dispatch_delivers_event_to_every_subscriber() -> None:
+    bus = EventBus()
+    seen: list[tuple[str, Event]] = []
+
+    async def first(event: Event) -> None:
+        seen.append(("first", event))
+
+    async def second(event: Event) -> None:
+        seen.append(("second", event))
+
+    bus.subscribe(first)
+    bus.subscribe(second)
+
+    event = _event()
+    await bus.dispatch(event)
+
+    assert ("first", event) in seen
+    assert ("second", event) in seen
+
+
+async def test_dispatch_isolates_a_failing_subscriber() -> None:
+    """A subscriber that raises must not stop a healthy one from running."""
+    bus = EventBus()
+    healthy_ran = False
+
+    async def boom(_event: Event) -> None:
+        raise RuntimeError("subscriber blew up")
+
+    async def healthy(_event: Event) -> None:
+        nonlocal healthy_ran
+        healthy_ran = True
+
+    bus.subscribe(boom)
+    bus.subscribe(healthy)
+
+    await bus.dispatch(_event())
+
+    assert healthy_ran is True
+
+
+async def test_dispatch_never_propagates_subscriber_errors() -> None:
+    """``dispatch`` itself must not raise even if every subscriber fails."""
+    bus = EventBus()
+
+    async def boom(_event: Event) -> None:
+        raise ValueError("nope")
+
+    bus.subscribe(boom)
+
+    await bus.dispatch(_event())  # must not raise
+
+
+async def test_dispatch_with_no_subscribers_is_a_noop() -> None:
+    bus = EventBus()
+    await bus.dispatch(_event())  # must not raise
+
+
+# --- publish --------------------------------------------------------------
+
+
+async def test_publish_builds_a_stamped_event_and_fans_it_out() -> None:
+    bus = EventBus()
+    received: list[Event] = []
+
+    async def handler(event: Event) -> None:
+        received.append(event)
+
+    bus.subscribe(handler)
+    await bus.publish("document.indexed", {"document_id": 42}, search_space_id=7)
+
+    assert len(received) == 1
+    event = received[0]
+    assert event.event_type == "document.indexed"
+    assert event.payload == {"document_id": 42}
+    assert event.search_space_id == 7
+    # Engine-stamped identity/time on the way through.
+    assert event.event_id
+    assert event.occurred_at
+
+
+async def test_publish_defaults_payload_to_empty_dict() -> None:
+    bus = EventBus()
+    received: list[Event] = []
+
+    async def handler(event: Event) -> None:
+        received.append(event)
+
+    bus.subscribe(handler)
+    await bus.publish("x.happened", search_space_id=1)
+
+    assert received[0].payload == {}
+
+
+async def test_publish_with_no_subscribers_is_a_noop() -> None:
+    await EventBus().publish("x.happened", search_space_id=1)  # must not raise
diff --git a/surfsense_backend/tests/unit/event_bus/test_catalog.py b/surfsense_backend/tests/unit/event_bus/test_catalog.py
new file mode 100644
index 000000000..b09482bea
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/test_catalog.py
@@ -0,0 +1,77 @@
+"""EventCatalog contract: register, look up, snapshot, derive schema."""
+
+from __future__ import annotations
+
+import pytest
+from pydantic import BaseModel
+
+from app.event_bus.catalog import EventCatalog, EventType
+
+pytestmark = pytest.mark.unit
+
+
+class _SamplePayload(BaseModel):
+    document_id: int
+
+
+def _event_type(type_: str = "test.thing") -> EventType:
+    return EventType(
+        type=type_,
+        description="A thing happened.",
+        payload_model=_SamplePayload,
+    )
+
+
+def test_register_then_get_returns_the_event_type(isolated_event_catalog: None) -> None:
+    from app.event_bus.catalog import catalog
+
+    catalog.register(_event_type())
+
+    assert catalog.get("test.thing") is not None
+    assert catalog.get("test.thing").type == "test.thing"
+
+
+def test_get_unknown_type_returns_none(isolated_event_catalog: None) -> None:
+    from app.event_bus.catalog import catalog
+
+    assert catalog.get("does.not.exist") is None
+
+
+def test_register_duplicate_type_raises(isolated_event_catalog: None) -> None:
+    """A type is a contract; registering it twice is a bug, not an override."""
+    from app.event_bus.catalog import catalog
+
+    catalog.register(_event_type())
+
+    with pytest.raises(ValueError, match="already registered"):
+        catalog.register(_event_type())
+
+
+def test_all_is_a_defensive_snapshot(isolated_event_catalog: None) -> None:
+    """Mutating the returned dict must not corrupt the registry."""
+    from app.event_bus.catalog import catalog
+
+    catalog.register(_event_type())
+
+    snapshot = catalog.all()
+    snapshot.clear()
+
+    assert catalog.get("test.thing") is not None
+
+
+def test_payload_schema_is_derived_from_the_payload_model() -> None:
+    """The JSON Schema a UI/validator consumes comes from the payload model."""
+    event_type = _event_type()
+
+    assert event_type.payload_schema == _SamplePayload.model_json_schema()
+
+
+def test_each_catalog_instance_has_its_own_registry() -> None:
+    """Two EventCatalog instances are fully independent."""
+    a = EventCatalog()
+    b = EventCatalog()
+
+    a.register(_event_type())
+
+    assert a.get("test.thing") is not None
+    assert b.get("test.thing") is None
diff --git a/surfsense_backend/tests/unit/event_bus/test_document_entered_folder.py b/surfsense_backend/tests/unit/event_bus/test_document_entered_folder.py
new file mode 100644
index 000000000..6044b539e
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/test_document_entered_folder.py
@@ -0,0 +1,56 @@
+"""``document.entered_folder`` payload contract + catalog registration."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.event_bus.catalog import catalog
+from app.event_bus.events.document_entered_folder import (
+    EVENT_TYPE,
+    DocumentEnteredFolderPayload,
+)
+
+pytestmark = pytest.mark.unit
+
+
+def _payload(**overrides: object) -> DocumentEnteredFolderPayload:
+    base: dict[str, object] = {
+        "document_id": 42,
+        "folder_id": 7,
+        "document_type": "FILE",
+        "title": "Q3 report.pdf",
+    }
+    base.update(overrides)
+    return DocumentEnteredFolderPayload(**base)
+
+
+def test_payload_carries_the_filterable_fields() -> None:
+    payload = _payload(connector_id=12, created_by_id="abc")
+
+    assert payload.document_id == 42
+    assert payload.folder_id == 7
+    assert payload.document_type == "FILE"
+    assert payload.connector_id == 12
+
+
+def test_first_placement_is_not_a_move() -> None:
+    """No previous folder (created or AI-sorted into place) → not a move."""
+    assert _payload(previous_folder_id=None).is_move is False
+
+
+def test_change_between_folders_is_a_move() -> None:
+    assert _payload(previous_folder_id=3).is_move is True
+
+
+def test_is_move_is_serialized_for_filtering() -> None:
+    """Filters match against the dumped payload, so ``is_move`` must appear there."""
+    dumped = _payload(previous_folder_id=3).model_dump()
+
+    assert dumped["is_move"] is True
+
+
+def test_event_type_is_registered_in_the_catalog() -> None:
+    registered = catalog.get(EVENT_TYPE)
+
+    assert registered is not None
+    assert registered.payload_model is DocumentEnteredFolderPayload
diff --git a/surfsense_backend/tests/unit/event_bus/test_entered_folder_predicate.py b/surfsense_backend/tests/unit/event_bus/test_entered_folder_predicate.py
new file mode 100644
index 000000000..1f71e3abb
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/test_entered_folder_predicate.py
@@ -0,0 +1,58 @@
+"""payload_if_entered_folder: decides whether a document commit warrants an event."""
+
+from __future__ import annotations
+
+from typing import Any
+
+import pytest
+
+from app.event_bus.events.document_entered_folder import payload_if_entered_folder
+
+pytestmark = pytest.mark.unit
+
+
+def _call(**overrides: Any) -> dict[str, Any] | None:
+    defaults: dict[str, Any] = {
+        "document_id": 1,
+        "search_space_id": 10,
+        "new_folder_id": 7,
+        "previous_folder_id": None,
+        "folder_id_changed": True,
+        "status_state": "ready",
+        "document_type": "FILE",
+        "title": "report.pdf",
+        "connector_id": None,
+        "created_by_id": None,
+    }
+    defaults.update(overrides)
+    return payload_if_entered_folder(**defaults)
+
+
+def test_folder_set_ready_fires() -> None:
+    result = _call()
+
+    assert result is not None
+    assert result["event_type"] == "document.entered_folder"
+    assert result["search_space_id"] == 10
+    assert result["payload"]["folder_id"] == 7
+    assert result["payload"]["previous_folder_id"] is None
+
+
+def test_no_folder_is_silent() -> None:
+    assert _call(new_folder_id=None) is None
+
+
+def test_not_ready_is_silent() -> None:
+    assert _call(status_state="processing") is None
+
+
+def test_folder_unchanged_is_silent() -> None:
+    assert _call(folder_id_changed=False) is None
+
+
+def test_move_carries_previous_folder_id() -> None:
+    result = _call(previous_folder_id=3, new_folder_id=7)
+
+    assert result is not None
+    assert result["payload"]["previous_folder_id"] == 3
+    assert result["payload"]["folder_id"] == 7
diff --git a/surfsense_backend/tests/unit/event_bus/test_event.py b/surfsense_backend/tests/unit/event_bus/test_event.py
new file mode 100644
index 000000000..d09cb4364
--- /dev/null
+++ b/surfsense_backend/tests/unit/event_bus/test_event.py
@@ -0,0 +1,53 @@
+"""``Event`` contract: carry caller facts + engine-stamped id/time, round-trip JSON."""
+
+from __future__ import annotations
+
+from datetime import datetime
+
+import pytest
+
+from app.event_bus.event import Event
+
+pytestmark = pytest.mark.unit
+
+
+def test_event_carries_caller_supplied_facts() -> None:
+    """The three caller inputs are stored verbatim."""
+    event = Event(
+        event_type="document.indexed",
+        payload={"document_id": 42, "content_type": "pdf"},
+        search_space_id=7,
+    )
+
+    assert event.event_type == "document.indexed"
+    assert event.payload == {"document_id": 42, "content_type": "pdf"}
+    assert event.search_space_id == 7
+
+
+def test_event_stamps_identity_and_time_when_not_supplied() -> None:
+    """Engine stamps id + time so subscribers can dedup/order."""
+    event = Event(event_type="x.happened", payload={}, search_space_id=1)
+
+    assert event.event_id
+    assert isinstance(event.occurred_at, datetime)
+
+
+def test_event_ids_are_unique_per_instance() -> None:
+    """Two events published with identical content are still distinct facts."""
+    first = Event(event_type="x.happened", payload={}, search_space_id=1)
+    second = Event(event_type="x.happened", payload={}, search_space_id=1)
+
+    assert first.event_id != second.event_id
+
+
+def test_event_survives_json_round_trip() -> None:
+    """Serialize → deserialize reproduces the event (subscribers queue it as JSON)."""
+    original = Event(
+        event_type="podcast.generated",
+        payload={"podcast_id": 9, "duration_s": 123.5},
+        search_space_id=3,
+    )
+
+    restored = Event.model_validate_json(original.model_dump_json())
+
+    assert restored == original
diff --git a/surfsense_backend/tests/unit/observability/test_helpers.py b/surfsense_backend/tests/unit/observability/test_helpers.py
new file mode 100644
index 000000000..ae60c1939
--- /dev/null
+++ b/surfsense_backend/tests/unit/observability/test_helpers.py
@@ -0,0 +1,101 @@
+"""Tests for pure observability helper functions."""
+
+from __future__ import annotations
+
+import pytest
+
+from app.observability import metrics as ot_metrics, otel as ot
+
+pytestmark = pytest.mark.unit
+
+
+@pytest.fixture(autouse=True)
+def _disable_otel(monkeypatch: pytest.MonkeyPatch):
+    monkeypatch.delenv("OTEL_EXPORTER_OTLP_ENDPOINT", raising=False)
+    monkeypatch.setenv("SURFSENSE_DISABLE_OTEL", "true")
+    ot.reload_for_tests()
+    yield
+    ot.reload_for_tests()
+
+
+@pytest.mark.parametrize(
+    ("task_name", "expected"),
+    [
+        ("reindex_document", "reindex"),
+        ("delete_document_background", "delete"),
+        ("delete_folder_documents_background", "delete"),
+        ("delete_search_space_background", "delete"),
+        ("process_extension_document", "process"),
+        ("process_youtube_video", "process"),
+        ("process_file_upload", "process"),
+        ("process_file_upload_with_document", "process"),
+        ("process_circleback_meeting", "process"),
+        ("generate_video_presentation", "generate"),
+        ("generate_content_podcast", "generate"),
+        ("cleanup_stale_indexing_notifications", "cleanup"),
+        ("reconcile_pending_stripe_page_purchases", "reconcile"),
+        ("reconcile_pending_stripe_token_purchases", "reconcile"),
+        ("check_periodic_schedules", "check"),
+        ("ai_sort_search_space", "ai"),
+        ("index_notion_pages", "index"),
+        ("index_github_repos", "index"),
+        ("index_google_drive_files", "index"),
+        ("index_composio_connector", "index"),
+        ("index_obsidian_attachment", "index"),
+        ("index_local_folder", "index"),
+        ("index_uploaded_folder_files", "index"),
+        ("noseparator", "noseparator"),
+        ("", "unknown"),
+    ],
+)
+def test_parse_celery_task_label(task_name: str, expected: str) -> None:
+    assert ot_metrics.parse_celery_task_label(task_name) == expected
+
+
+def test_parse_celery_task_label_handles_none() -> None:
+    assert ot_metrics.parse_celery_task_label(None) == "unknown"
+
+
+@pytest.mark.parametrize(
+    ("exc", "expected"),
+    [
+        (type("RateLimitError", (Exception,), {})(), "rate_limited"),
+        (type("AuthenticationError", (Exception,), {})(), "auth_failed"),
+        (type("QuotaInsufficientError", (Exception,), {})(), "quota_exhausted"),
+        (TimeoutError(), "timeout"),
+        (type("APIConnectionError", (Exception,), {})(), "network_failed"),
+        (type("ServiceUnavailableError", (Exception,), {})(), "server_error"),
+        (type("LockContentionError", (Exception,), {})(), "lock_contention"),
+        (type("UnsupportedFormatError", (Exception,), {})(), "unsupported_format"),
+        (type("ProviderError", (Exception,), {})(), "provider_error"),
+        (RuntimeError("plain"), "unknown"),
+    ],
+)
+def test_categorize_exception(exc: BaseException, expected: str) -> None:
+    assert ot_metrics.categorize_exception(exc) == expected
+
+
+def test_record_celery_queue_latency_noops_when_disabled() -> None:
+    ot_metrics.record_celery_queue_latency(
+        0.5,
+        task_name="index_notion_pages",
+        queue="surfsense.connectors",
+        scheduled=False,
+        operation="index",
+    )
+
+
+def test_add_event_noops_when_disabled() -> None:
+    ot.add_event("test.event", {"value": 1})
+
+
+def test_add_event_noops_without_current_span(monkeypatch: pytest.MonkeyPatch) -> None:
+    class FakeTrace:
+        @staticmethod
+        def get_current_span():
+            return None
+
+    monkeypatch.setattr(ot, "_ENABLED", True)
+    monkeypatch.setattr(ot, "_ot_trace", FakeTrace())
+
+    ot.add_event("test.event", {"value": 1})
diff --git a/surfsense_backend/tests/unit/observability/test_otel.py b/surfsense_backend/tests/unit/observability/test_otel.py
index fc5813973..d3718e7b9 100644
--- a/surfsense_backend/tests/unit/observability/test_otel.py
+++ b/surfsense_backend/tests/unit/observability/test_otel.py
@@ -4,7 +4,7 @@ from __future__ import annotations
 
 import pytest
 
-from app.observability import otel
+from app.observability import bootstrap, metrics, otel
 
 pytestmark = pytest.mark.unit
 
@@ -12,7 +12,14 @@ pytestmark = pytest.mark.unit
 @pytest.fixture(autouse=True)
 def _reset_otel_state(monkeypatch: pytest.MonkeyPatch):
     """Force a clean OTel disabled state per test, then restore after."""
-    for env in ("OTEL_EXPORTER_OTLP_ENDPOINT", "SURFSENSE_DISABLE_OTEL"):
+    for env in (
+        "OTEL_EXPORTER_OTLP_ENDPOINT",
+        "OTEL_EXPORTER_OTLP_PROTOCOL",
+        "OTEL_EXPORTER_OTLP_TRACES_ENDPOINT",
+        "OTEL_EXPORTER_OTLP_METRICS_ENDPOINT",
+        "SURFSENSE_DISABLE_OTEL",
+        "OTEL_SDK_DISABLED",
+    ):
         monkeypatch.delenv(env, raising=False)
     monkeypatch.setenv("SURFSENSE_DISABLE_OTEL", "true")
     otel.reload_for_tests()
@@ -36,6 +43,195 @@ def test_kill_switch_overrides_endpoint(monkeypatch: pytest.MonkeyPatch) -> None
     assert otel.reload_for_tests() is False
 
 
+def test_spec_kill_switch_overrides_endpoint(monkeypatch: pytest.MonkeyPatch) -> None:
+    monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+    monkeypatch.setenv("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")
+    monkeypatch.setenv("OTEL_SDK_DISABLED", "true")
+    assert otel.reload_for_tests() is False
+
+
+class TestBootstrapConfig:
+    def test_disabled_checks_both_kill_switches(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+        monkeypatch.delenv("OTEL_SDK_DISABLED", raising=False)
+        assert bootstrap.is_otel_disabled() is False
+
+        monkeypatch.setenv("OTEL_SDK_DISABLED", "on")
+        assert bootstrap.is_otel_disabled() is True
+
+    def test_configured_by_shared_or_signal_endpoint(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+        assert bootstrap.is_otel_configured() is False
+
+        monkeypatch.setenv(
+            "OTEL_EXPORTER_OTLP_TRACES_ENDPOINT", "http://localhost:4317"
+        )
+        assert bootstrap.is_otel_configured() is True
+
+    def test_init_otel_noops_when_disabled(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        called = {"traces": False}
+
+        def fake_init_traces(app=None):
+            del app
+            called["traces"] = True
+
+        monkeypatch.setenv("SURFSENSE_DISABLE_OTEL", "true")
+        monkeypatch.setenv("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")
+        monkeypatch.setattr(bootstrap, "init_traces", fake_init_traces)
+
+        bootstrap.init_otel()
+        assert called["traces"] is False
+
+    def test_init_otel_dispatches_enabled_signals(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        called: list[str] = []
+
+        monkeypatch.delenv("SURFSENSE_DISABLE_OTEL", raising=False)
+        monkeypatch.setenv("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")
+        monkeypatch.setattr(
+            bootstrap, "init_traces", lambda app=None: called.append("traces")
+        )
+        monkeypatch.setattr(bootstrap, "init_metrics", lambda: called.append("metrics"))
+        monkeypatch.setattr(bootstrap, "init_logs", lambda: called.append("logs"))
+
+        bootstrap.init_otel()
+        assert called == ["traces", "metrics", "logs"]
+
+    def test_resource_defaults_include_service_metadata(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.setenv("OTEL_SERVICE_NAME", "custom-backend")
+        monkeypatch.setenv("SURFSENSE_ENV", "test")
+
+        resource = bootstrap._build_resource()
+        attrs = dict(resource.attributes)
+        assert attrs["service.name"] == "custom-backend"
+        assert attrs["deployment.environment.name"] == "test"
+        assert attrs["deployment.environment"] == "test"
+        assert attrs["service.instance.id"]
+
+    def test_deployment_environment_uses_surfsense_env_only(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        monkeypatch.delenv("SURFSENSE_ENV", raising=False)
+
+        assert bootstrap._deployment_environment() == "dev"
+
+        monkeypatch.setenv("SURFSENSE_ENV", "production")
+
+        assert bootstrap._deployment_environment() == "production"
+
+    def test_shutdown_is_safe_without_providers(self) -> None:
+        bootstrap.shutdown_otel()
+
+    def test_init_logs_enables_log_correlation(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        calls: list[dict[str, object]] = []
+
+        class FakeLoggingInstrumentor:
+            def instrument(self, **kwargs: object) -> None:
+                calls.append(kwargs)
+
+        def fake_safe_instrument(name: str, callback):
+            assert name == "logging"
+            monkeypatch.setattr(
+                "opentelemetry.instrumentation.logging.LoggingInstrumentor",
+                FakeLoggingInstrumentor,
+            )
+            callback()
+            return True
+
+        monkeypatch.setattr(bootstrap, "_LOGS_INITIALIZED", False)
+        monkeypatch.setattr(bootstrap, "_safe_instrument", fake_safe_instrument)
+
+        bootstrap.init_logs()
+
+        assert calls == [{"set_logging_format": True}]
+
+
+class TestMetricHelpers:
+    def test_all_metric_helpers_noop_safely_when_disabled(self) -> None:
+        metrics.record_model_call_duration(12.5, model="gpt-4o", provider="openai")
+        metrics.record_model_token_usage(
+            input_tokens=10,
+            output_tokens=5,
+            model="gpt-4o",
+            provider="openai",
+        )
+        metrics.record_tool_call_duration(3.0, tool_name="web_search")
+        metrics.record_tool_call_error(tool_name="web_search")
+        metrics.record_kb_search_duration(
+            4.0,
+            search_space_id=1,
+            surface="documents",
+        )
+        metrics.record_compaction_run(reason="auto")
+        metrics.record_permission_ask(permission="write_file")
+        metrics.record_interrupt(interrupt_type="permission_ask")
+        metrics.record_indexing_document_duration(1.2, document_type="FILE")
+        metrics.record_indexing_document_outcome(document_type="FILE", status="success")
+        metrics.record_connector_sync_duration(
+            2.3,
+            connector_type="index_notion_pages",
+        )
+        metrics.record_connector_sync_outcome(
+            connector_type="index_notion_pages",
+            status="success",
+        )
+        metrics.record_auth_failure(reason="UNAUTHORIZED")
+        metrics.record_rate_limit_rejection(scope="login")
+        metrics.record_perf_elapsed(7.0, label="[test]")
+
+    def test_runtime_observables_register_once(
+        self, monkeypatch: pytest.MonkeyPatch
+    ) -> None:
+        class FakeMeter:
+            def __init__(self) -> None:
+                self.names: list[str] = []
+
+            def create_observable_gauge(self, name: str, **kwargs) -> None:
+                del kwargs
+                self.names.append(name)
+
+        fake_meter = FakeMeter()
+        monkeypatch.setattr(metrics, "_OBSERVABLES_REGISTERED", False)
+        monkeypatch.setattr(metrics, "_is_enabled", lambda: True)
+        monkeypatch.setattr(metrics, "_get_meter", lambda: fake_meter)
+
+        metrics.register_runtime_observables()
+        metrics.register_runtime_observables()
+
+        assert len(fake_meter.names) == 6
+        assert fake_meter.names.count("python.asyncio.tasks") == 1
+        monkeypatch.setattr(metrics, "_OBSERVABLES_REGISTERED", False)
+
+
+def test_log_record_factory_provides_zero_otel_fields() -> None:
+    import logging
+
+    import main  # noqa: F401
+
+    record = logging.getLogRecordFactory()(
+        "test",
+        logging.INFO,
+        __file__,
+        1,
+        "hello",
+        (),
+        None,
+    )
+    assert record.otelTraceID == "0"
+    assert record.otelSpanID == "0"
+
+
 class TestNoopSpansWhenDisabled:
     def test_generic_span_yields_noop(self) -> None:
         with otel.span("any.thing", attributes={"x": 1}) as sp:
diff --git a/surfsense_backend/tests/unit/observability/test_retriever_otel.py b/surfsense_backend/tests/unit/observability/test_retriever_otel.py
new file mode 100644
index 000000000..9712a3150
--- /dev/null
+++ b/surfsense_backend/tests/unit/observability/test_retriever_otel.py
@@ -0,0 +1,61 @@
+"""Tests for retriever OTel wrappers."""
+
+from __future__ import annotations
+
+from contextlib import contextmanager
+from typing import Any
+
+import pytest
+
+from app.retriever.documents_hybrid_search import _instrument_search
+
+pytestmark = pytest.mark.unit
+
+
+class _Span:
+    def __init__(self) -> None:
+        self.attrs: dict[str, Any] = {}
+
+    def set_attribute(self, key: str, value: Any) -> None:
+        self.attrs[key] = value
+
+
+@contextmanager
+def _fake_span(**kwargs):
+    span = _Span()
+    span.attrs.update(kwargs)
+    yield span
+
+
+@pytest.mark.asyncio
+async def test_retriever_wrapper_records_one_span_and_metric(monkeypatch) -> None:
+    calls: list[dict[str, Any]] = []
+
+    monkeypatch.setattr(
+        "app.retriever.documents_hybrid_search.ot.kb_search_span",
+        lambda **kwargs: _fake_span(**kwargs),
+    )
+    monkeypatch.setattr(
+        "app.retriever.documents_hybrid_search.ot_metrics.record_kb_search_duration",
+        lambda duration_ms, **attrs: calls.append(
+            {"duration_ms": duration_ms, **attrs}
+        ),
+    )
+
+    class Retriever:
+        @_instrument_search("hybrid")
+        async def search(
+            self,
+            query_text: str,
+            top_k: int,
+            search_space_id: int,
+        ) -> list[str]:
+            del query_text, top_k, search_space_id
+            return ["doc-1", "doc-2"]
+
+    result = await Retriever().search("hello", 3, 42)
+
+    assert result == ["doc-1", "doc-2"]
+    assert len(calls) == 1
+    assert calls[0]["search_space_id"] == 42
+    assert calls[0]["surface"] == "documents"
diff --git a/surfsense_backend/tests/unit/tasks/chat/streaming/test_parallel_refactor_parity.py b/surfsense_backend/tests/unit/tasks/chat/streaming/test_parallel_refactor_parity.py
new file mode 100644
index 000000000..e014bb911
--- /dev/null
+++ b/surfsense_backend/tests/unit/tasks/chat/streaming/test_parallel_refactor_parity.py
@@ -0,0 +1,557 @@
+"""Parity gate for the parallel refactor of ``stream_new_chat.py``.
+
+The new tree under ``app.tasks.chat.streaming.flows`` is built side-by-side with
+the legacy monolithic ``app.tasks.chat.stream_new_chat`` so we can cut over
+atomically. This file pins externally-observable behaviour at module
+boundaries so a divergence between the two trees fails loudly *before* the
+cutover.
+
+What we verify:
+
+  1. **Signature parity** — ``stream_new_chat`` / ``stream_resume_chat`` from
+     the new tree have the same call signature as the originals.
+  2. **Helper extraction parity** — the SRP modules in ``flows/`` produce the
+     same outputs as the inline code in the legacy file for representative
+     inputs (initial thinking step, image-capability gate, runtime context,
+     SSE frame sequences, token-usage frame shape, persistence guards).
+  3. **Wrapper delegation** — wrappers like ``load_llm_bundle`` /
+     ``can_recover_provider_rate_limit`` exist and are addressable.
+
+Delete this file along with ``stream_new_chat.py`` once the cutover is done
+(see the parent refactor plan).
+"""
+
+from __future__ import annotations
+
+import asyncio
+import inspect
+from typing import Any
+from unittest.mock import AsyncMock, patch
+
+import pytest
+
+from app.agents.new_chat.context import SurfSenseContextSchema
+from app.services.new_streaming_service import VercelStreamingService
+from app.tasks.chat.stream_new_chat import (
+    stream_new_chat as old_stream_new_chat,
+    stream_resume_chat as old_stream_resume_chat,
+)
+from app.tasks.chat.streaming.flows import (
+    stream_new_chat as new_stream_new_chat,
+    stream_resume_chat as new_stream_resume_chat,
+)
+from app.tasks.chat.streaming.flows.new_chat.initial_thinking_step import (
+    build_initial_thinking_step,
+)
+from app.tasks.chat.streaming.flows.new_chat.llm_capability import (
+    check_image_input_capability,
+)
+from app.tasks.chat.streaming.flows.new_chat.persistence_spawn import (
+    await_persist_task,
+    spawn_persist_assistant_shell_task,
+    spawn_persist_user_task,
+    spawn_set_ai_responding_bg,
+)
+from app.tasks.chat.streaming.flows.new_chat.runtime_context import (
+    build_new_chat_runtime_context,
+)
+from app.tasks.chat.streaming.flows.resume_chat.runtime_context import (
+    build_resume_chat_runtime_context,
+)
+from app.tasks.chat.streaming.flows.shared.finalize_emit import iter_token_usage_frame
+from app.tasks.chat.streaming.flows.shared.first_frames import (
+    iter_final_frames,
+    iter_initial_frames,
+)
+from app.tasks.chat.streaming.flows.shared.llm_bundle import load_llm_bundle
+from app.tasks.chat.streaming.flows.shared.premium_quota import (
+    PremiumReservation,
+    needs_premium_quota,
+)
+from app.tasks.chat.streaming.flows.shared.rate_limit_recovery import (
+    can_recover_provider_rate_limit,
+)
+
+pytestmark = pytest.mark.unit
+
+
+# --------------------------------------------------------------------- signature
+
+
+def _normalize_annotation(ann: Any) -> str:
+    """Compare-friendly form for an annotation.
+
+    The legacy ``stream_new_chat.py`` does NOT use ``from __future__ import
+    annotations``, so its annotations are evaluated at import time and come
+    back as type objects / typing generics. The new tree DOES use it, so its
+    annotations are PEP-563 strings.
+
+    Both reprs describe the same types — strip the module prefixes / typing
+    namespace + the ``<class 'X'>`` wrapper so we compare the canonical
+    declared form.
+    """
+    if ann is inspect.Signature.empty:
+        return ""
+    raw = ann if isinstance(ann, str) else repr(ann)
+    cleaned = (
+        raw.replace("typing.", "")
+        .replace("collections.abc.", "")
+        .replace("app.db.", "")
+        .replace("app.agents.new_chat.filesystem_selection.", "")
+        .replace("app.agents.new_chat.context.", "")
+    )
+    # Unwrap ``<class 'int'>`` → ``int`` (legacy-side type objects).
+    if cleaned.startswith("<class '") and cleaned.endswith("'>"):
+        cleaned = cleaned[len("<class '") : -len("'>")]
+    return cleaned
+
+
+def _normalize_sig(sig: inspect.Signature) -> list[tuple[str, Any, str]]:
+    return [
+        (p.name, p.default, _normalize_annotation(p.annotation))
+        for p in sig.parameters.values()
+    ]
+
+
+def test_stream_new_chat_signature_matches_legacy() -> None:
+    old = inspect.signature(old_stream_new_chat)
+    new = inspect.signature(new_stream_new_chat)
+    assert _normalize_sig(new) == _normalize_sig(old)
+    assert _normalize_annotation(new.return_annotation) == _normalize_annotation(
+        old.return_annotation
+    )
+
+
+def test_stream_resume_chat_signature_matches_legacy() -> None:
+    old = inspect.signature(old_stream_resume_chat)
+    new = inspect.signature(new_stream_resume_chat)
+    assert _normalize_sig(new) == _normalize_sig(old)
+    assert _normalize_annotation(new.return_annotation) == _normalize_annotation(
+        old.return_annotation
+    )
+
+
+def test_orchestrators_are_async_generator_functions() -> None:
+    assert inspect.isasyncgenfunction(new_stream_new_chat)
+    assert inspect.isasyncgenfunction(new_stream_resume_chat)
+
+
+# ------------------------------------------------------------ initial thinking
+
+
+@pytest.mark.parametrize(
+    "user_query, image_urls, expected_title, expected_action",
+    [
+        ("hello world", None, "Understanding your request", "Processing"),
+        (
+            "",
+            ["data:image/png;base64,AAA"],
+            "Understanding your request",
+            "Processing",
+        ),
+        ("", None, "Understanding your request", "Processing"),
+    ],
+)
+def test_initial_thinking_step_branches(
+    user_query: str,
+    image_urls: list[str] | None,
+    expected_title: str,
+    expected_action: str,
+) -> None:
+    step = build_initial_thinking_step(
+        user_query=user_query,
+        user_image_data_urls=image_urls,
+    )
+    assert step.step_id == "thinking-1"
+    assert step.title == expected_title
+    assert len(step.items) == 1
+    assert step.items[0].startswith(f"{expected_action}: ")
+
+
+def test_initial_thinking_step_truncates_long_query() -> None:
+    long_query = "x" * 200
+    step = build_initial_thinking_step(
+        user_query=long_query,
+        user_image_data_urls=None,
+    )
+    # 80-char truncation + ellipsis, sandwiched after "Processing: ".
+    assert "..." in step.items[0]
+    item = step.items[0]
+    payload = item[len("Processing: ") :]
+    assert payload.startswith("x" * 80) and payload.endswith("...")
+
+
+# ------------------------------------------------------------ capability gate
+
+
+def test_image_capability_passes_without_images() -> None:
+    assert (
+        check_image_input_capability(user_image_data_urls=None, agent_config=None)
+        is None
+    )
+
+
+def test_image_capability_passes_when_capability_unknown() -> None:
+    """Unknown / unmapped models are not blocked — only models LiteLLM has
+    *explicitly* marked text-only trip the gate."""
+
+    class _AgentConfig:
+        provider = "openrouter"
+        model_name = "unknown-mystery-model"
+        custom_provider = None
+        config_name = "Unknown"
+        litellm_params: dict[str, Any] = {}
+
+    with patch(
+        "app.services.provider_capabilities.is_known_text_only_chat_model",
+        return_value=False,
+    ):
+        assert (
+            check_image_input_capability(
+                user_image_data_urls=["data:image/png;base64,AAA"],
+                agent_config=_AgentConfig(),  # type: ignore[arg-type]
+            )
+            is None
+        )
+
+
+def test_image_capability_blocks_known_text_only_models() -> None:
+    class _AgentConfig:
+        provider = "openai"
+        model_name = "gpt-3.5-turbo"
+        custom_provider = None
+        config_name = "GPT-3.5"
+        litellm_params: dict[str, Any] = {"base_model": "gpt-3.5-turbo"}
+
+    with patch(
+        "app.services.provider_capabilities.is_known_text_only_chat_model",
+        return_value=True,
+    ):
+        result = check_image_input_capability(
+            user_image_data_urls=["data:image/png;base64,AAA"],
+            agent_config=_AgentConfig(),  # type: ignore[arg-type]
+        )
+    assert result is not None
+    message, error_code = result
+    assert error_code == "MODEL_DOES_NOT_SUPPORT_IMAGE_INPUT"
+    assert "GPT-3.5" in message
+
+
+# ---------------------------------------------------------------- runtime ctx
+
+
+def test_new_chat_runtime_context_prefers_accepted_folder_ids() -> None:
+    ctx = build_new_chat_runtime_context(
+        search_space_id=7,
+        mentioned_document_ids=[1, 2],
+        accepted_folder_ids=[10],
+        mentioned_folder_ids=[20, 30],
+        request_id="req",
+        turn_id="t1",
+    )
+    assert isinstance(ctx, SurfSenseContextSchema)
+    assert ctx.search_space_id == 7
+    assert list(ctx.mentioned_document_ids) == [1, 2]
+    assert list(ctx.mentioned_folder_ids) == [10]
+    assert ctx.request_id == "req"
+    assert ctx.turn_id == "t1"
+
+
+def test_new_chat_runtime_context_falls_back_to_mentioned_folder_ids() -> None:
+    ctx = build_new_chat_runtime_context(
+        search_space_id=7,
+        mentioned_document_ids=None,
+        accepted_folder_ids=[],
+        mentioned_folder_ids=[20, 30],
+        request_id=None,
+        turn_id="t2",
+    )
+    assert list(ctx.mentioned_folder_ids) == [20, 30]
+
+
+def test_resume_chat_runtime_context_empty_mention_lists() -> None:
+    ctx = build_resume_chat_runtime_context(
+        search_space_id=42, request_id="req-r", turn_id="t-r"
+    )
+    assert ctx.search_space_id == 42
+    assert ctx.request_id == "req-r"
+    assert ctx.turn_id == "t-r"
+
+
+# ---------------------------------------------------------------- SSE frames
+
+
+def test_iter_initial_frames_emits_canonical_sequence() -> None:
+    svc = VercelStreamingService()
+    frames = list(iter_initial_frames(svc, turn_id="42:1700000000000"))
+    # Exactly 4 frames: message_start, start_step, turn-info (turn_id), turn-status (busy).
+    assert len(frames) == 4
+    assert "42:1700000000000" in frames[2]
+    assert '"status":"busy"' in frames[3] or '"status": "busy"' in frames[3]
+
+
+def test_iter_final_frames_emits_idle_then_finish_done() -> None:
+    svc = VercelStreamingService()
+    frames = list(iter_final_frames(svc))
+    assert len(frames) == 4
+    assert '"status":"idle"' in frames[0] or '"status": "idle"' in frames[0]
+
+
+# ----------------------------------------------------------- token usage frame
+
+
+class _FakeAccumulator:
+    """Minimal stand-in covering only the fields ``iter_token_usage_frame`` reads."""
+
+    def __init__(self, summary: Any = None) -> None:
+        self._summary = summary
+        self.calls = [1, 2, 3]
+        self.grand_total = 100
+        self.total_cost_micros = 50_000
+        self.total_prompt_tokens = 60
+        self.total_completion_tokens = 40
+
+    def per_message_summary(self) -> Any:
+        return self._summary
+
+    def serialized_calls(self) -> list[Any]:
+        return list(self.calls)
+
+
+def test_token_usage_frame_skipped_when_no_summary() -> None:
+    svc = VercelStreamingService()
+    frames = list(
+        iter_token_usage_frame(
+            svc,
+            accumulator=_FakeAccumulator(summary=None),  # type: ignore[arg-type]
+            log_label="parity-empty",
+        )
+    )
+    assert frames == []
+
+
+def test_token_usage_frame_emitted_when_summary_present() -> None:
+    svc = VercelStreamingService()
+    frames = list(
+        iter_token_usage_frame(
+            svc,
+            accumulator=_FakeAccumulator(summary=[{"m": "x", "t": 100}]),  # type: ignore[arg-type]
+            log_label="parity-populated",
+        )
+    )
+    assert len(frames) == 1
+    # Field shape on the wire is fixed by the FE; assert each surfaces.
+    payload = frames[0]
+    for key in (
+        '"prompt_tokens":60',
+        '"completion_tokens":40',
+        '"total_tokens":100',
+        '"cost_micros":50000',
+    ):
+        assert key in payload.replace(" ", "")
+
+
+# ------------------------------------------------------------------ llm_bundle
+
+
+def test_load_llm_bundle_routes_negative_id_to_yaml_loader() -> None:
+    async def _run() -> tuple[Any, Any, str | None]:
+        with (
+            patch(
+                "app.tasks.chat.streaming.flows.shared.llm_bundle.load_global_llm_config_by_id",
+                return_value=None,
+            ),
+        ):
+            return await load_llm_bundle(
+                session=AsyncMock(),  # type: ignore[arg-type]
+                config_id=-1,
+                search_space_id=7,
+            )
+
+    llm, agent_config, error = asyncio.run(_run())
+    assert llm is None
+    assert agent_config is None
+    assert error is not None and "id -1" in error
+
+
+def test_load_llm_bundle_routes_nonnegative_id_to_db_loader() -> None:
+    async def _run() -> tuple[Any, Any, str | None]:
+        with (
+            patch(
+                "app.tasks.chat.streaming.flows.shared.llm_bundle.load_agent_config",
+                new=AsyncMock(return_value=None),
+            ),
+        ):
+            return await load_llm_bundle(
+                session=AsyncMock(),  # type: ignore[arg-type]
+                config_id=12,
+                search_space_id=7,
+            )
+
+    llm, agent_config, error = asyncio.run(_run())
+    assert llm is None
+    assert agent_config is None
+    assert error is not None and "id 12" in error
+
+
+# ----------------------------------------------------------------- premium quota
+
+
+def test_needs_premium_quota_requires_user_and_premium_flag() -> None:
+    class _AgentConfig:
+        is_premium = True
+
+    class _NonPremium:
+        is_premium = False
+
+    assert needs_premium_quota(_AgentConfig(), "user-1") is True  # type: ignore[arg-type]
+    assert needs_premium_quota(_AgentConfig(), None) is False  # type: ignore[arg-type]
+    assert needs_premium_quota(_NonPremium(), "user-1") is False  # type: ignore[arg-type]
+    assert needs_premium_quota(None, "user-1") is False
+
+
+def test_premium_reservation_dataclass_shape() -> None:
+    # Sanity: the dataclass exists and carries the fields the orchestrator uses.
+    r = PremiumReservation(request_id="abc", reserved_micros=100, allowed=True)
+    assert r.request_id == "abc"
+    assert r.reserved_micros == 100
+    assert r.allowed is True
+
+
+# ----------------------------------------------------------- rate-limit guard
+
+
+@pytest.mark.parametrize(
+    "first_event_seen, recovered, requested_id, current_id, expected",
+    [
+        (False, False, 0, -1, True),
+        # Already recovered: no second pass.
+        (False, True, 0, -1, False),
+        # User explicitly picked a config: don't silently switch.
+        (False, False, 5, -1, False),
+        # Already on a database-backed (positive) id.
+        (False, False, 0, 7, False),
+        # User has already seen output: silent rebuild not possible.
+        (True, False, 0, -1, False),
+    ],
+)
+def test_can_recover_provider_rate_limit_truth_table(
+    first_event_seen: bool,
+    recovered: bool,
+    requested_id: int,
+    current_id: int,
+    expected: bool,
+) -> None:
+    # Use a known rate-limit-shaped exception so the helper's last condition
+    # is satisfied; the guard only short-circuits to False when one of the
+    # *other* preconditions fails.
+    exc = Exception('{"error":{"type":"rate_limit_error","message":"slow"}}')
+    assert (
+        can_recover_provider_rate_limit(
+            exc,
+            first_event_seen=first_event_seen,
+            runtime_rate_limit_recovered=recovered,
+            requested_llm_config_id=requested_id,
+            current_llm_config_id=current_id,
+        )
+        is expected
+    )
+
+
+def test_can_recover_provider_rate_limit_rejects_non_rate_limit_exception() -> None:
+    assert (
+        can_recover_provider_rate_limit(
+            ValueError("not a rate limit"),
+            first_event_seen=False,
+            runtime_rate_limit_recovered=False,
+            requested_llm_config_id=0,
+            current_llm_config_id=-1,
+        )
+        is False
+    )
+
+
+# --------------------------------------------------------- persistence spawn
+
+
+def test_spawn_set_ai_responding_bg_noop_without_user_id() -> None:
+    async def _run() -> set[asyncio.Task]:
+        background: set[asyncio.Task] = set()
+        spawn_set_ai_responding_bg(chat_id=1, user_id=None, background_tasks=background)
+        return background
+
+    bg = asyncio.run(_run())
+    assert bg == set()
+
+
+def test_spawn_persist_user_task_registers_and_self_unregisters() -> None:
+    async def _run() -> tuple[int, int]:
+        background: set[asyncio.Task] = set()
+        with patch(
+            "app.tasks.chat.streaming.flows.new_chat.persistence_spawn.persist_user_turn",
+            new=AsyncMock(return_value=99),
+        ):
+            task = spawn_persist_user_task(
+                chat_id=1,
+                user_id="u",
+                turn_id="t",
+                user_query="hi",
+                user_image_data_urls=None,
+                mentioned_documents=None,
+                background_tasks=background,
+            )
+            size_before_await = len(background)
+            result = await asyncio.shield(task)
+            # Give the done-callback one event-loop tick to run.
+            await asyncio.sleep(0)
+            return size_before_await, result  # type: ignore[return-value]
+
+    size_before, result = asyncio.run(_run())
+    assert size_before == 1
+    assert result == 99
+
+
+def test_spawn_persist_assistant_shell_task_registers() -> None:
+    async def _run() -> int | None:
+        background: set[asyncio.Task] = set()
+        with patch(
+            "app.tasks.chat.streaming.flows.new_chat.persistence_spawn.persist_assistant_shell",
+            new=AsyncMock(return_value=42),
+        ):
+            task = spawn_persist_assistant_shell_task(
+                chat_id=1,
+                user_id="u",
+                turn_id="t",
+                background_tasks=background,
+            )
+            return await asyncio.shield(task)
+
+    assert asyncio.run(_run()) == 42
+
+
+def test_await_persist_task_returns_none_on_failure() -> None:
+    async def _run() -> int | None:
+        async def _boom() -> int:
+            raise RuntimeError("DB down")
+
+        task = asyncio.create_task(_boom())
+        return await await_persist_task(
+            task,
+            chat_id=1,
+            turn_id="t",
+            log_label="parity-failure",
+        )
+
+    assert asyncio.run(_run()) is None
+
+
+def test_await_persist_task_returns_none_for_none_input() -> None:
+    async def _run() -> int | None:
+        return await await_persist_task(
+            None,
+            chat_id=1,
+            turn_id="t",
+            log_label="parity-none",
+        )
+
+    assert asyncio.run(_run()) is None
diff --git a/surfsense_backend/uv.lock b/surfsense_backend/uv.lock
index 953aebbef..eae54b1d4 100644
--- a/surfsense_backend/uv.lock
+++ b/surfsense_backend/uv.lock
@@ -313,6 +313,15 @@ wheels = [
     { url = "https://files.pythonhosted.org/packages/42/b9/f8d6fa329ab25128b7e98fd83a3cb34d9db5b059a9847eddb840a0af45dd/argon2_cffi_bindings-25.1.0-cp39-abi3-win_arm64.whl", hash = "sha256:b0fdbcf513833809c882823f98dc2f931cf659d9a1429616ac3adebb49f5db94", size = 27149 },
 ]
 
+[[package]]
+name = "asgiref"
+version = "3.11.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/63/40/f03da1264ae8f7cfdbf9146542e5e7e8100a4c66ab48e791df9a03d3f6c0/asgiref-3.11.1.tar.gz", hash = "sha256:5f184dc43b7e763efe848065441eac62229c9f7b0475f41f80e207a114eda4ce", size = 38550 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5c/0a/a72d10ed65068e115044937873362e6e32fab1b7dce0046aeb224682c989/asgiref-3.11.1-py3-none-any.whl", hash = "sha256:e8667a091e69529631969fd45dc268fa79b99c92c5fcdda727757e52146ec133", size = 24345 },
+]
+
 [[package]]
 name = "asyncpg"
 version = "0.31.0"
@@ -1256,6 +1265,18 @@ wheels = [
     { url = "https://files.pythonhosted.org/packages/8e/ca/6a667ccbe649856dcd3458bab80b016681b274399d6211187c6ab969fc50/courlan-1.3.2-py3-none-any.whl", hash = "sha256:d0dab52cf5b5b1000ee2839fbc2837e93b2514d3cb5bb61ae158a55b7a04c6be", size = 33848 },
 ]
 
+[[package]]
+name = "croniter"
+version = "6.2.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "python-dateutil" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/df/de/5832661ed55107b8a09af3f0a2e71e0957226a59eb1dcf0a445cce6daf20/croniter-6.2.2.tar.gz", hash = "sha256:ba60832a5ec8e12e51b8691c3309a113d1cf6526bdf1a48150ce8ec7a532d0ab", size = 113762 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d0/39/783980e78cb92c2d7bdb1fc7dbc86e94ccc6d58224d76a7f1f51b6c51e30/croniter-6.2.2-py3-none-any.whl", hash = "sha256:a5d17b1060974d36251ea4faf388233eca8acf0d09cbd92d35f4c4ac8f279960", size = 45422 },
+]
+
 [[package]]
 name = "cryptography"
 version = "46.0.6"
@@ -5184,6 +5205,19 @@ wheels = [
     { url = "https://files.pythonhosted.org/packages/5f/bf/93795954016c522008da367da292adceed71cca6ee1717e1d64c83089099/opentelemetry_api-1.40.0-py3-none-any.whl", hash = "sha256:82dd69331ae74b06f6a874704be0cfaa49a1650e1537d4a813b86ecef7d0ecf9", size = 68676 },
 ]
 
+[[package]]
+name = "opentelemetry-exporter-otlp"
+version = "1.40.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-exporter-otlp-proto-grpc" },
+    { name = "opentelemetry-exporter-otlp-proto-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d0/37/b6708e0eff5c5fb9aba2e0ea09f7f3bcbfd12a592d2a780241b5f6014df7/opentelemetry_exporter_otlp-1.40.0.tar.gz", hash = "sha256:7caa0870b95e2fcb59d64e16e2b639ecffb07771b6cd0000b5d12e5e4fef765a", size = 6152 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2d/fc/aea77c28d9f3ffef2fdafdc3f4a235aee4091d262ddabd25882f47ce5c5f/opentelemetry_exporter_otlp-1.40.0-py3-none-any.whl", hash = "sha256:48c87e539ec9afb30dc443775a1334cc5487de2f72a770a4c00b1610bf6c697d", size = 7023 },
+]
+
 [[package]]
 name = "opentelemetry-exporter-otlp-proto-common"
 version = "1.40.0"
@@ -5263,6 +5297,141 @@ wheels = [
     { url = "https://files.pythonhosted.org/packages/df/f3/1edc42716521a3f754ac32ffb908f102e0f131f8e43fcd9ab29cab286723/opentelemetry_instrumentation_aiohttp_client-0.61b0-py3-none-any.whl", hash = "sha256:09bc47514c162507b357366ce15578743fd6305078cf7d872db1c99c13fa6972", size = 14534 },
 ]
 
+[[package]]
+name = "opentelemetry-instrumentation-asgi"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "asgiref" },
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/00/3e/143cf5c034e58037307e6a24f06e0dd64b2c49ae60a965fc580027581931/opentelemetry_instrumentation_asgi-0.61b0.tar.gz", hash = "sha256:9d08e127244361dc33976d39dd4ca8f128b5aa5a7ae425208400a80a095019b5", size = 26691 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/19/78/154470cf9d741a7487fbb5067357b87386475bbb77948a6707cae982e158/opentelemetry_instrumentation_asgi-0.61b0-py3-none-any.whl", hash = "sha256:e4b3ce6b66074e525e717efff20745434e5efd5d9df6557710856fba356da7a4", size = 16980 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-celery"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8d/43/e79108a804d16b1dc8ff28edd0e94ac393cf6359a5adcd7cdd2ec4be85f4/opentelemetry_instrumentation_celery-0.61b0.tar.gz", hash = "sha256:0e352a567dc89ed8bc083fc635035ce3c5b96bbbd92831ffd676e93b87f8e94f", size = 14780 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a2/ed/c05f3c84b455654eb6c047474ffde61ed92efc24030f64213c98bca9d44b/opentelemetry_instrumentation_celery-0.61b0-py3-none-any.whl", hash = "sha256:01235733ff0cdf571cb03b270645abb14b9c8d830313dc5842097ec90146320b", size = 13856 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-dbapi"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d6/ed/ba91c9e4a3ec65781e9c59982109f0a36de9fa574f622596b33d1985dab5/opentelemetry_instrumentation_dbapi-0.61b0.tar.gz", hash = "sha256:02fa800682c1de87dcad0e59f2092b3b6fb8b8ea0636518f989e1166b418dcb9", size = 16761 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/73/a5/d26c68f3fd33eb7410985cef7700bb426e2c4a26de9207902cbbffb19a3f/opentelemetry_instrumentation_dbapi-0.61b0-py3-none-any.whl", hash = "sha256:8f762c39c8edd20c6aef3282550a2cfbfec76c3f431bf5c36327dcf9ece2e5a0", size = 14134 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-fastapi"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-asgi" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/37/35/aa727bb6e6ef930dcdc96a617b83748fece57b43c47d83ba8d83fbeca657/opentelemetry_instrumentation_fastapi-0.61b0.tar.gz", hash = "sha256:3a24f35b07c557ae1bbc483bf8412221f25d79a405f8b047de8b670722e2fa9f", size = 24800 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/91/05/acfeb2cccd434242a0a7d0ea29afaf077e04b42b35b485d89aee4e0d9340/opentelemetry_instrumentation_fastapi-0.61b0-py3-none-any.whl", hash = "sha256:a1a844d846540d687d377516b2ff698b51d87c781b59f47c214359c4a241047c", size = 13485 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-httpx"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/cd/2a/e2becd55e33c29d1d9ef76e2579040ed1951cb33bacba259f6aff2fdd2a6/opentelemetry_instrumentation_httpx-0.61b0.tar.gz", hash = "sha256:6569ec097946c5551c2a4252f74c98666addd1bf047c1dde6b4ef426719ff8dd", size = 24104 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/af/88/dde310dce56e2d85cf1a09507f5888544955309edc4b8d22971d6d3d1417/opentelemetry_instrumentation_httpx-0.61b0-py3-none-any.whl", hash = "sha256:dee05c93a6593a5dc3ae5d9d5c01df8b4e2c5d02e49275e5558534ee46343d5e", size = 17198 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-logging"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ae/e0/69473f925acfe2d4edf5c23bcced36906ac3627aa7c5722a8e3f60825f3b/opentelemetry_instrumentation_logging-0.61b0.tar.gz", hash = "sha256:feaa30b700acd2a37cc81db5f562ab0c3a5b6cc2453595e98b72c01dcf649584", size = 17906 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e0/0e/2137db5239cc5e564495549a4d11488a7af9b48fc76520a0eea20e69ddae/opentelemetry_instrumentation_logging-0.61b0-py3-none-any.whl", hash = "sha256:6d87e5ded6a0128d775d41511f8380910a1b610671081d16efb05ac3711c0074", size = 17076 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-psycopg"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-dbapi" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/99/00/b98148b3054eb8301a56d523de82ee2fd86a047dba38330c2404d85496e3/opentelemetry_instrumentation_psycopg-0.61b0.tar.gz", hash = "sha256:74e9fed3802945f7ae335cffc30fd18cf58c34a4d0619315f799fa21eb5c74ff", size = 11907 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/db/2b/3c36bfc6dc82a7c50c769aff407eaf32e688d655bc61a774609d96b55603/opentelemetry_instrumentation_psycopg-0.61b0-py3-none-any.whl", hash = "sha256:a3e242cad56c0ad4f4f872017c73ce7e6c7012081dda6bd0d776c127fedc358a", size = 11662 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-redis"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/cf/21/26205f89358a5f2be3ee5512d3d3bce16b622977f64aeaa9d3fa8887dd39/opentelemetry_instrumentation_redis-0.61b0.tar.gz", hash = "sha256:ae0fbb56be9a641e621d55b02a7d62977a2c77c5ee760addd79b9b266e46e523", size = 14781 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a5/e1/8f4c8e4194291dbe828aeabe779050a8497b379ad90040a5a0a7074b1d08/opentelemetry_instrumentation_redis-0.61b0-py3-none-any.whl", hash = "sha256:8d4e850bbb5f8eeafa44c0eac3a007990c7125de187bc9c3659e29ff7e091172", size = 15506 },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-sqlalchemy"
+version = "0.61b0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "packaging" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/9e/4f/3a325b180944610697a0a926d49d782b41a86120050d44fefb2715b630ac/opentelemetry_instrumentation_sqlalchemy-0.61b0.tar.gz", hash = "sha256:13a3a159a2043a52f0180b3757fbaa26741b0e08abb50deddce4394c118956e6", size = 15343 }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1f/97/b906a930c6a1a20c53ecc8b58cabc2cdd0ce560a2b5d44259084ffe4333e/opentelemetry_instrumentation_sqlalchemy-0.61b0-py3-none-any.whl", hash = "sha256:f115e0be54116ba4c327b8d7b68db4045ee18d44439d888ab8130a549c50d1c1", size = 14547 },
+]
+
 [[package]]
 name = "opentelemetry-proto"
 version = "1.40.0"
@@ -7947,7 +8116,7 @@ wheels = [
 
 [[package]]
 name = "surf-new-backend"
-version = "0.0.25"
+version = "0.0.26"
 source = { editable = "." }
 dependencies = [
     { name = "alembic" },
@@ -7958,6 +8127,7 @@ dependencies = [
     { name = "celery", extra = ["redis"] },
     { name = "chonkie", extra = ["all"] },
     { name = "composio" },
+    { name = "croniter" },
     { name = "datasets" },
     { name = "daytona" },
     { name = "deepagents" },
@@ -7993,6 +8163,17 @@ dependencies = [
     { name = "notion-client" },
     { name = "notion-markdown" },
     { name = "numpy" },
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-exporter-otlp" },
+    { name = "opentelemetry-instrumentation-celery" },
+    { name = "opentelemetry-instrumentation-fastapi" },
+    { name = "opentelemetry-instrumentation-httpx" },
+    { name = "opentelemetry-instrumentation-logging" },
+    { name = "opentelemetry-instrumentation-psycopg" },
+    { name = "opentelemetry-instrumentation-redis" },
+    { name = "opentelemetry-instrumentation-sqlalchemy" },
+    { name = "opentelemetry-sdk" },
+    { name = "opentelemetry-semantic-conventions" },
     { name = "pgvector" },
     { name = "playwright" },
     { name = "psycopg", extra = ["binary", "pool"] },
@@ -8043,6 +8224,7 @@ requires-dist = [
     { name = "celery", extras = ["redis"], specifier = ">=5.5.3" },
     { name = "chonkie", extras = ["all"], specifier = ">=1.5.0" },
     { name = "composio", specifier = ">=0.10.9" },
+    { name = "croniter", specifier = ">=2.0.0" },
     { name = "datasets", specifier = ">=2.21.0" },
     { name = "daytona", specifier = ">=0.146.0" },
     { name = "deepagents", specifier = ">=0.4.12,<0.5" },
@@ -8078,6 +8260,17 @@ requires-dist = [
     { name = "notion-client", specifier = ">=2.3.0" },
     { name = "notion-markdown", specifier = ">=0.7.0" },
     { name = "numpy", specifier = ">=1.24.0" },
+    { name = "opentelemetry-api", specifier = ">=1.40.0" },
+    { name = "opentelemetry-exporter-otlp", specifier = ">=1.40.0" },
+    { name = "opentelemetry-instrumentation-celery", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-fastapi", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-httpx", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-logging", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-psycopg", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-redis", specifier = ">=0.61b0" },
+    { name = "opentelemetry-instrumentation-sqlalchemy", specifier = ">=0.61b0" },
+    { name = "opentelemetry-sdk", specifier = ">=1.40.0" },
+    { name = "opentelemetry-semantic-conventions", specifier = ">=0.61b0" },
     { name = "pgvector", specifier = ">=0.3.6" },
     { name = "playwright", specifier = ">=1.50.0" },
     { name = "psycopg", extras = ["binary", "pool"], specifier = ">=3.3.2" },
diff --git a/surfsense_browser_extension/package.json b/surfsense_browser_extension/package.json
index 2f17899a8..13cd31b80 100644
--- a/surfsense_browser_extension/package.json
+++ b/surfsense_browser_extension/package.json
@@ -1,7 +1,7 @@
 {
 	"name": "surfsense_browser_extension",
 	"displayName": "Surfsense Browser Extension",
-	"version": "0.0.25",
+	"version": "0.0.26",
 	"description": "Extension to collect Browsing History for SurfSense.",
 	"author": "https://github.com/MODSetter",
 	"engines": {
diff --git a/surfsense_desktop/.env.example b/surfsense_desktop/.env.example
index e127b99e0..f4e797250 100644
--- a/surfsense_desktop/.env.example
+++ b/surfsense_desktop/.env.example
@@ -3,7 +3,12 @@
 
 # The hosted web frontend URL. Used to intercept OAuth redirects and keep them
 # inside the desktop app. Set to your production frontend domain.
-HOSTED_FRONTEND_URL=https://surfsense.net
+HOSTED_FRONTEND_URL=https://surfsense.com
+
+# Runtime override for the above (read at app start, no rebuild required).
+# Useful for self-hosters whose backend NEXT_FRONTEND_URL differs from the
+# value baked into the official desktop builds. Leave empty to use HOSTED_FRONTEND_URL.
+# SURFSENSE_HOSTED_FRONTEND_URL_OVERRIDE=
 
 # PostHog analytics (leave empty to disable)
 POSTHOG_KEY=
diff --git a/surfsense_desktop/assets/icons/1024x1024.png b/surfsense_desktop/assets/icons/1024x1024.png
new file mode 100644
index 000000000..853201c5e
Binary files /dev/null and b/surfsense_desktop/assets/icons/1024x1024.png differ
diff --git a/surfsense_desktop/assets/icons/128x128.png b/surfsense_desktop/assets/icons/128x128.png
new file mode 100644
index 000000000..97286c8b6
Binary files /dev/null and b/surfsense_desktop/assets/icons/128x128.png differ
diff --git a/surfsense_desktop/assets/icons/16x16.png b/surfsense_desktop/assets/icons/16x16.png
new file mode 100644
index 000000000..860f9fef1
Binary files /dev/null and b/surfsense_desktop/assets/icons/16x16.png differ
diff --git a/surfsense_desktop/assets/icons/256x256.png b/surfsense_desktop/assets/icons/256x256.png
new file mode 100644
index 000000000..edb7aa512
Binary files /dev/null and b/surfsense_desktop/assets/icons/256x256.png differ
diff --git a/surfsense_desktop/assets/icons/32x32.png b/surfsense_desktop/assets/icons/32x32.png
new file mode 100644
index 000000000..2c1ef1222
Binary files /dev/null and b/surfsense_desktop/assets/icons/32x32.png differ
diff --git a/surfsense_desktop/assets/icons/48x48.png b/surfsense_desktop/assets/icons/48x48.png
new file mode 100644
index 000000000..2d765024d
Binary files /dev/null and b/surfsense_desktop/assets/icons/48x48.png differ
diff --git a/surfsense_desktop/assets/icons/512x512.png b/surfsense_desktop/assets/icons/512x512.png
new file mode 100644
index 000000000..3fc480dd7
Binary files /dev/null and b/surfsense_desktop/assets/icons/512x512.png differ
diff --git a/surfsense_desktop/assets/icons/64x64.png b/surfsense_desktop/assets/icons/64x64.png
new file mode 100644
index 000000000..a218a4ee2
Binary files /dev/null and b/surfsense_desktop/assets/icons/64x64.png differ
diff --git a/surfsense_desktop/electron-builder.yml b/surfsense_desktop/electron-builder.yml
index e4e7670ec..0a7c48203 100644
--- a/surfsense_desktop/electron-builder.yml
+++ b/surfsense_desktop/electron-builder.yml
@@ -55,6 +55,11 @@ mac:
     NSAccessibilityUsageDescription: "SurfSense uses accessibility features to bring the app to the foreground and interact with the active application when you use desktop assists."
     NSScreenCaptureUsageDescription: "SurfSense uses screen capture so you can attach a selected region to chat (Screenshot Assist) or capture the full screen from the composer."
     NSAppleEventsUsageDescription: "SurfSense uses Apple Events to interact with the active application."
+    # `surfsense://` scheme — install-time registration for LaunchServices.
+    CFBundleURLTypes:
+      - CFBundleURLName: com.surfsense.desktop
+        CFBundleURLSchemes:
+          - surfsense
   target:
     - target: dmg
       arch: [x64, arm64]
@@ -72,7 +77,7 @@ nsis:
   createDesktopShortcut: true
   createStartMenuShortcut: true
 linux:
-  icon: assets/icon.png
+  icon: assets/icons/
   category: Utility
   artifactName: "${productName}-${version}-${arch}.${ext}"
   mimeTypes:
diff --git a/surfsense_desktop/package.json b/surfsense_desktop/package.json
index 0ad279ece..1f0e6dafc 100644
--- a/surfsense_desktop/package.json
+++ b/surfsense_desktop/package.json
@@ -1,6 +1,7 @@
 {
   "name": "surfsense-desktop",
-  "version": "0.0.25",
+  "productName": "SurfSense",
+  "version": "0.0.26",
   "description": "SurfSense Desktop App",
   "main": "dist/main.js",
   "scripts": {
diff --git a/surfsense_desktop/src/ipc/channels.ts b/surfsense_desktop/src/ipc/channels.ts
index 8d2af5107..17daab9a6 100644
--- a/surfsense_desktop/src/ipc/channels.ts
+++ b/surfsense_desktop/src/ipc/channels.ts
@@ -2,6 +2,8 @@ export const IPC_CHANNELS = {
   OPEN_EXTERNAL: 'open-external',
   GET_APP_VERSION: 'get-app-version',
   DEEP_LINK: 'deep-link',
+  UPDATE_DOWNLOADED: 'update:downloaded',
+  UPDATE_INSTALL_NOW: 'update:install-now',
   QUICK_ASK_TEXT: 'quick-ask-text',
   SET_QUICK_ASK_MODE: 'set-quick-ask-mode',
   GET_QUICK_ASK_MODE: 'get-quick-ask-mode',
diff --git a/surfsense_desktop/src/ipc/handlers.ts b/surfsense_desktop/src/ipc/handlers.ts
index d918fd90d..ed7eaac66 100644
--- a/surfsense_desktop/src/ipc/handlers.ts
+++ b/surfsense_desktop/src/ipc/handlers.ts
@@ -51,6 +51,7 @@ import {
   stopAgentFilesystemTreeWatch,
   type AgentFilesystemTreeWatchOptions,
 } from '../modules/agent-filesystem-tree-watcher';
+import { installDownloadedUpdate } from '../modules/auto-updater';
 
 let authTokens: { bearer: string; refresh: string } | null = null;
 
@@ -70,6 +71,10 @@ export function registerIpcHandlers(): void {
     return app.getVersion();
   });
 
+  ipcMain.handle(IPC_CHANNELS.UPDATE_INSTALL_NOW, () => {
+    installDownloadedUpdate();
+  });
+
   ipcMain.handle(IPC_CHANNELS.GET_PERMISSIONS_STATUS, () => {
     return getPermissionsStatus();
   });
diff --git a/surfsense_desktop/src/main.ts b/surfsense_desktop/src/main.ts
index 492c61f17..632758ba8 100644
--- a/surfsense_desktop/src/main.ts
+++ b/surfsense_desktop/src/main.ts
@@ -1,7 +1,7 @@
 import { app } from 'electron';
 
 import { registerGlobalErrorHandlers, showErrorDialog } from './modules/errors';
-import { startNextServer } from './modules/server';
+import { startNextServer, stopNextServer } from './modules/server';
 import { createMainWindow, getMainWindow, markQuitting } from './modules/window';
 import { setupDeepLinks, handlePendingDeepLink, hasPendingDeepLink } from './modules/deep-links';
 import { setupAutoUpdater } from './modules/auto-updater';
@@ -19,6 +19,7 @@ import {
 } from './modules/auto-launch';
 
 registerGlobalErrorHandlers();
+app.setName('SurfSense');
 
 if (!setupDeepLinks()) {
   app.quit();
@@ -93,6 +94,7 @@ app.on('will-quit', async (e) => {
   e.preventDefault();
   unregisterQuickAsk();
   unregisterFolderWatcher();
+  stopNextServer();
   destroyTray();
   await shutdownAnalytics();
   app.exit();
diff --git a/surfsense_desktop/src/modules/auto-updater.ts b/surfsense_desktop/src/modules/auto-updater.ts
index e323abe53..b318b737d 100644
--- a/surfsense_desktop/src/modules/auto-updater.ts
+++ b/surfsense_desktop/src/modules/auto-updater.ts
@@ -1,57 +1,201 @@
-import { app, dialog } from 'electron';
+import { app, BrowserWindow, dialog } from 'electron';
+import { IPC_CHANNELS } from '../ipc/channels';
 import { trackEvent } from './analytics';
 
 const SEMVER_RE = /^\d+\.\d+\.\d+/;
 
-export function setupAutoUpdater(): void {
-  if (!app.isPackaged) return;
+type AutoUpdater = {
+  autoDownload: boolean;
+  on(event: string, listener: (...args: any[]) => void): void;
+  once(event: string, listener: (...args: any[]) => void): void;
+  removeListener(event: string, listener: (...args: any[]) => void): void;
+  checkForUpdates(): Promise<unknown>;
+  quitAndInstall(): void;
+};
 
-  const version = app.getVersion();
-  if (!SEMVER_RE.test(version)) {
-    console.log(`Auto-updater: skipping — "${version}" is not valid semver`);
-    return;
+type UpdateInfo = {
+  version: string;
+};
+
+type UpdateMenuState =
+  | { status: 'idle' }
+  | { status: 'downloading'; version: string }
+  | { status: 'ready'; version: string };
+
+let listenersRegistered = false;
+let updateMenuState: UpdateMenuState = { status: 'idle' };
+const updateMenuStateListeners = new Set<(state: UpdateMenuState) => void>();
+
+export function getUpdateMenuState(): UpdateMenuState {
+  return updateMenuState;
+}
+
+export function onUpdateMenuStateChange(listener: (state: UpdateMenuState) => void): () => void {
+  updateMenuStateListeners.add(listener);
+  return () => {
+    updateMenuStateListeners.delete(listener);
+  };
+}
+
+function setUpdateMenuState(state: UpdateMenuState): void {
+  updateMenuState = state;
+  for (const listener of updateMenuStateListeners) {
+    listener(state);
   }
+}
 
+function getAutoUpdater(): AutoUpdater {
   const { autoUpdater } = require('electron-updater');
+  return autoUpdater as AutoUpdater;
+}
 
+function configureAutoUpdater(autoUpdater: AutoUpdater): void {
   autoUpdater.autoDownload = true;
 
-  autoUpdater.on('update-available', (info: { version: string }) => {
+  if (listenersRegistered) return;
+  listenersRegistered = true;
+
+  const version = app.getVersion();
+
+  autoUpdater.on('update-available', (info: UpdateInfo) => {
     console.log(`Update available: ${info.version}`);
+    setUpdateMenuState({ status: 'downloading', version: info.version });
     trackEvent('desktop_update_available', {
       current_version: version,
       new_version: info.version,
     });
   });
 
-  autoUpdater.on('update-downloaded', (info: { version: string }) => {
+  autoUpdater.on('update-downloaded', (info: UpdateInfo) => {
     console.log(`Update downloaded: ${info.version}`);
+    setUpdateMenuState({ status: 'ready', version: info.version });
     trackEvent('desktop_update_downloaded', {
       current_version: version,
       new_version: info.version,
     });
-    dialog.showMessageBox({
-      type: 'info',
-      buttons: ['Restart', 'Later'],
-      defaultId: 0,
-      title: 'Update Ready',
-      message: `Version ${info.version} has been downloaded. Restart to apply the update.`,
-    }).then(({ response }: { response: number }) => {
-      if (response === 0) {
-        trackEvent('desktop_update_install_accepted', { new_version: info.version });
-        autoUpdater.quitAndInstall();
-      } else {
-        trackEvent('desktop_update_install_deferred', { new_version: info.version });
-      }
-    });
+    notifyRenderersUpdateDownloaded(info);
+  });
+
+  autoUpdater.on('update-not-available', () => {
+    setUpdateMenuState({ status: 'idle' });
   });
 
   autoUpdater.on('error', (err: Error) => {
+    setUpdateMenuState({ status: 'idle' });
     console.log('Auto-updater: update check skipped —', err.message?.split('\n')[0]);
     trackEvent('desktop_update_error', {
       message: err.message?.split('\n')[0],
     });
   });
+}
+
+function notifyRenderersUpdateDownloaded(info: UpdateInfo): void {
+  for (const win of BrowserWindow.getAllWindows()) {
+    if (!win.isDestroyed()) {
+      win.webContents.send(IPC_CHANNELS.UPDATE_DOWNLOADED, {
+        version: info.version,
+      });
+    }
+  }
+}
+
+export function installDownloadedUpdate(): void {
+  const autoUpdater = getAutoUpdater();
+  trackEvent('desktop_update_install_accepted', { source: 'renderer_prompt' });
+  autoUpdater.quitAndInstall();
+}
+
+export function setupAutoUpdater(): void {
+  if (!app.isPackaged) return;
+
+  const version = app.getVersion();
+  if (!SEMVER_RE.test(version)) {
+    console.log(`Auto-updater: skipping - "${version}" is not valid semver`);
+    return;
+  }
+
+  const autoUpdater = getAutoUpdater();
+  configureAutoUpdater(autoUpdater);
 
   autoUpdater.checkForUpdates().catch(() => {});
 }
+
+export async function checkForUpdatesManually(): Promise<void> {
+  const currentState = getUpdateMenuState();
+  if (currentState.status === 'ready') {
+    installDownloadedUpdate();
+    return;
+  }
+  if (currentState.status === 'downloading') return;
+
+  if (!app.isPackaged) {
+    await dialog.showMessageBox({
+      type: 'info',
+      title: 'Updates Unavailable',
+      message: 'Updates are only available in packaged builds.',
+    });
+    return;
+  }
+
+  const version = app.getVersion();
+  if (!SEMVER_RE.test(version)) {
+    await dialog.showMessageBox({
+      type: 'info',
+      title: 'Updates Unavailable',
+      message: `Version "${version}" is not a valid release version, so updates cannot be checked.`,
+    });
+    return;
+  }
+
+  const autoUpdater = getAutoUpdater();
+  configureAutoUpdater(autoUpdater);
+
+  try {
+    const result = await new Promise<'not-available' | 'downloaded'>((resolve, reject) => {
+      const cleanup = () => {
+        autoUpdater.removeListener('update-available', onAvailable);
+        autoUpdater.removeListener('update-not-available', onNotAvailable);
+        autoUpdater.removeListener('update-downloaded', onDownloaded);
+        autoUpdater.removeListener('error', onError);
+      };
+      const onAvailable = () => {};
+      const onNotAvailable = () => {
+        cleanup();
+        resolve('not-available');
+      };
+      const onDownloaded = () => {
+        cleanup();
+        resolve('downloaded');
+      };
+      const onError = (err: Error) => {
+        cleanup();
+        reject(err);
+      };
+
+      autoUpdater.once('update-available', onAvailable);
+      autoUpdater.once('update-not-available', onNotAvailable);
+      autoUpdater.once('update-downloaded', onDownloaded);
+      autoUpdater.once('error', onError);
+      autoUpdater.checkForUpdates().catch((err: Error) => {
+        cleanup();
+        setUpdateMenuState({ status: 'idle' });
+        reject(err);
+      });
+    });
+
+    if (result === 'not-available') {
+      await dialog.showMessageBox({
+        type: 'info',
+        title: 'No Updates Available',
+        message: "You're up to date.",
+      });
+    }
+  } catch (err) {
+    setUpdateMenuState({ status: 'idle' });
+    await dialog.showMessageBox({
+      type: 'error',
+      title: 'Update Check Failed',
+      message: err instanceof Error ? err.message : String(err),
+    });
+  }
+}
diff --git a/surfsense_desktop/src/modules/deep-links.ts b/surfsense_desktop/src/modules/deep-links.ts
index 11b7bfcff..d4c0da467 100644
--- a/surfsense_desktop/src/modules/deep-links.ts
+++ b/surfsense_desktop/src/modules/deep-links.ts
@@ -1,7 +1,7 @@
 import { app } from 'electron';
 import path from 'path';
 import { getMainWindow } from './window';
-import { getServerPort } from './server';
+import { getServerOrigin } from './server';
 import { trackEvent } from './analytics';
 
 const PROTOCOL = 'surfsense';
@@ -23,7 +23,7 @@ function handleDeepLink(url: string) {
   });
   if (parsed.hostname === 'auth' && parsed.pathname === '/callback') {
     const params = parsed.searchParams.toString();
-    win.loadURL(`http://localhost:${getServerPort()}/auth/callback?${params}`);
+    win.loadURL(`${getServerOrigin()}/auth/callback?${params}`);
   }
 
   win.show();
@@ -60,6 +60,11 @@ export function setupDeepLinks(): boolean {
     app.setAsDefaultProtocolClient(PROTOCOL);
   }
 
+  // Cold-start on Windows/Linux: protocol URL arrives via argv of the
+  // first instance, not via `second-instance` or `open-url`.
+  const cold = process.argv.find((arg) => arg.startsWith(`${PROTOCOL}://`));
+  if (cold) handleDeepLink(cold);
+
   return true;
 }
 
diff --git a/surfsense_desktop/src/modules/menu.ts b/surfsense_desktop/src/modules/menu.ts
index 128a73a21..629d88a04 100644
--- a/surfsense_desktop/src/modules/menu.ts
+++ b/surfsense_desktop/src/modules/menu.ts
@@ -1,13 +1,118 @@
-import { Menu } from 'electron';
+import { app, Menu, shell } from 'electron';
+import {
+  checkForUpdatesManually,
+  getUpdateMenuState,
+  installDownloadedUpdate,
+  onUpdateMenuStateChange,
+} from './auto-updater';
+
+let updateMenuListenerRegistered = false;
+
+function getUpdateMenuItem(): Electron.MenuItemConstructorOptions {
+  const state = getUpdateMenuState();
+
+  if (state.status === 'downloading') {
+    return {
+      label: 'Downloading...',
+      enabled: false,
+    };
+  }
+
+  if (state.status === 'ready') {
+    return {
+      label: 'Install and Restart',
+      click: () => {
+        installDownloadedUpdate();
+      },
+    };
+  }
+
+  return {
+    label: 'Check for Updates...',
+    click: () => {
+      void checkForUpdatesManually();
+    },
+  };
+}
+
+const privacyPolicyItem: Electron.MenuItemConstructorOptions = {
+  label: 'Privacy Policy',
+  click: () => {
+    void shell.openExternal('https://www.surfsense.com/privacy');
+  },
+};
+
+const termsOfServiceItem: Electron.MenuItemConstructorOptions = {
+  label: 'Terms of Service',
+  click: () => {
+    void shell.openExternal('https://www.surfsense.com/terms');
+  },
+};
 
 export function setupMenu(): void {
+  if (!updateMenuListenerRegistered) {
+    updateMenuListenerRegistered = true;
+    onUpdateMenuStateChange(() => {
+      setupMenu();
+    });
+  }
+
   const isMac = process.platform === 'darwin';
+  const isDev = !app.isPackaged;
+  const updateMenuItem = getUpdateMenuItem();
+  const viewSubmenu: Electron.MenuItemConstructorOptions[] = [
+    { role: 'reload' as const },
+    { role: 'forceReload' as const },
+    ...(isDev
+      ? [
+          { role: 'toggleDevTools' as const },
+        ]
+      : []),
+    { type: 'separator' as const },
+    { role: 'resetZoom' as const },
+    { role: 'zoomIn' as const },
+    { role: 'zoomOut' as const },
+    { type: 'separator' as const },
+    { role: 'togglefullscreen' as const },
+  ];
   const template: Electron.MenuItemConstructorOptions[] = [
-    ...(isMac ? [{ role: 'appMenu' as const }] : []),
+    ...(isMac
+      ? [{
+          label: app.name,
+          submenu: [
+            { role: 'about' as const },
+            updateMenuItem,
+            { type: 'separator' as const },
+            { role: 'services' as const },
+            { type: 'separator' as const },
+            { role: 'hide' as const },
+            { role: 'hideOthers' as const },
+            { role: 'unhide' as const },
+            { type: 'separator' as const },
+            { role: 'quit' as const },
+          ],
+        }]
+      : []),
     { role: 'fileMenu' as const },
     { role: 'editMenu' as const },
-    { role: 'viewMenu' as const },
+    {
+      label: 'View',
+      submenu: viewSubmenu,
+    },
     { role: 'windowMenu' as const },
+    {
+      role: 'help' as const,
+      submenu: [
+        ...(!isMac
+          ? [
+              updateMenuItem,
+              { type: 'separator' as const },
+            ]
+          : []),
+        privacyPolicyItem,
+        termsOfServiceItem,
+      ],
+    },
   ];
   Menu.setApplicationMenu(Menu.buildFromTemplate(template));
 }
diff --git a/surfsense_desktop/src/modules/quick-ask.ts b/surfsense_desktop/src/modules/quick-ask.ts
index b31ae1bcd..0807e2e08 100644
--- a/surfsense_desktop/src/modules/quick-ask.ts
+++ b/surfsense_desktop/src/modules/quick-ask.ts
@@ -1,8 +1,8 @@
-import { BrowserWindow, clipboard, globalShortcut, ipcMain, screen, shell } from 'electron';
+import { app, BrowserWindow, clipboard, globalShortcut, ipcMain, screen, shell } from 'electron';
 import path from 'path';
 import { IPC_CHANNELS } from '../ipc/channels';
 import { checkAccessibilityPermission, getFrontmostApp, simulateCopy, simulatePaste } from './platform';
-import { getServerPort } from './server';
+import { getServerOrigin } from './server';
 import { getShortcuts } from './shortcuts';
 import { getActiveSearchSpaceId } from './active-search-space';
 import { trackEvent } from './analytics';
@@ -51,6 +51,7 @@ function createQuickAskWindow(x: number, y: number): BrowserWindow {
       contextIsolation: true,
       nodeIntegration: false,
       sandbox: true,
+      devTools: !app.isPackaged,
     },
     show: false,
     skipTaskbar: true,
@@ -58,7 +59,7 @@ function createQuickAskWindow(x: number, y: number): BrowserWindow {
 
   const spaceId = pendingSearchSpaceId;
   const route = spaceId ? `/dashboard/${spaceId}/new-chat` : '/dashboard';
-  quickAskWindow.loadURL(`http://localhost:${getServerPort()}${route}?quickAssist=true`);
+  quickAskWindow.loadURL(`${getServerOrigin()}${route}?quickAssist=true`);
 
   quickAskWindow.once('ready-to-show', () => {
     quickAskWindow?.show();
@@ -69,7 +70,7 @@ function createQuickAskWindow(x: number, y: number): BrowserWindow {
   });
 
   quickAskWindow.webContents.setWindowOpenHandler(({ url }) => {
-    if (url.startsWith('http://localhost')) {
+    if (url.startsWith(getServerOrigin())) {
       return { action: 'allow' };
     }
     shell.openExternal(url);
diff --git a/surfsense_desktop/src/modules/screen-capture/screen-region-picker.ts b/surfsense_desktop/src/modules/screen-capture/screen-region-picker.ts
index fd771b0f7..0cfc92297 100644
--- a/surfsense_desktop/src/modules/screen-capture/screen-region-picker.ts
+++ b/surfsense_desktop/src/modules/screen-capture/screen-region-picker.ts
@@ -1,4 +1,4 @@
-import { BrowserWindow, desktopCapturer, nativeImage, screen } from 'electron';
+import { app, BrowserWindow, desktopCapturer, nativeImage, screen } from 'electron';
 import path from 'path';
 import { IPC_CHANNELS } from '../../ipc/channels';
 function fitNativeImageToWorkArea(img: Electron.NativeImage, display: Electron.Display): Electron.NativeImage {
@@ -261,6 +261,7 @@ export function pickScreenRegion(opts?: { windowDataUrl?: string }): Promise<str
           contextIsolation: true,
           nodeIntegration: false,
           sandbox: true,
+          devTools: !app.isPackaged,
         },
       });
 
diff --git a/surfsense_desktop/src/modules/screen-capture/window-picker.ts b/surfsense_desktop/src/modules/screen-capture/window-picker.ts
index b66e23c5c..1abafd51c 100644
--- a/surfsense_desktop/src/modules/screen-capture/window-picker.ts
+++ b/surfsense_desktop/src/modules/screen-capture/window-picker.ts
@@ -1,4 +1,4 @@
-import { BrowserWindow, desktopCapturer, ipcMain, screen } from 'electron';
+import { app, BrowserWindow, desktopCapturer, ipcMain, screen } from 'electron';
 import path from 'path';
 import { IPC_CHANNELS } from '../../ipc/channels';
 
@@ -185,6 +185,7 @@ export function pickOpenWindowCapture(): Promise<PickedWindowResult | null> {
         contextIsolation: true,
         nodeIntegration: false,
         sandbox: true,
+        devTools: !app.isPackaged,
       },
     });
 
diff --git a/surfsense_desktop/src/modules/server.ts b/surfsense_desktop/src/modules/server.ts
index e2f078a8c..fc2fa05c3 100644
--- a/surfsense_desktop/src/modules/server.ts
+++ b/surfsense_desktop/src/modules/server.ts
@@ -1,14 +1,20 @@
 import path from 'path';
-import { app } from 'electron';
+import { app, utilityProcess } from 'electron';
 import { getPort } from 'get-port-please';
 
 const isDev = !app.isPackaged;
+const SERVER_HOST = '127.0.0.1';
 let serverPort = 3000;
+let nextServerProcess: ReturnType<typeof utilityProcess.fork> | null = null;
 
 export function getServerPort(): number {
   return serverPort;
 }
 
+export function getServerOrigin(): string {
+  return `http://${SERVER_HOST}:${serverPort}`;
+}
+
 function getStandalonePath(): string {
   if (isDev) {
     return path.join(__dirname, '..', '..', 'surfsense_web', '.next', 'standalone', 'surfsense_web');
@@ -38,16 +44,55 @@ export async function startNextServer(): Promise<void> {
   const standalonePath = getStandalonePath();
   const serverScript = path.join(standalonePath, 'server.js');
 
-  process.env.PORT = String(serverPort);
-  process.env.HOSTNAME = '0.0.0.0';
-  process.env.NODE_ENV = 'production';
-  process.chdir(standalonePath);
+  const child = utilityProcess.fork(serverScript, [], {
+    cwd: standalonePath,
+    env: {
+      ...process.env,
+      PORT: String(serverPort),
+      // Loopback bind: avoids 0.0.0.0 leaking into request.url and redirect origins.
+      HOSTNAME: SERVER_HOST,
+      NODE_ENV: 'production',
+    },
+    serviceName: 'SurfSense Next Server',
+    stdio: 'pipe',
+  });
+  nextServerProcess = child;
 
-  require(serverScript);
+  child.stdout?.on('data', (chunk) => {
+    process.stdout.write(chunk);
+  });
+  child.stderr?.on('data', (chunk) => {
+    process.stderr.write(chunk);
+  });
 
-  const ready = await waitForServer(`http://localhost:${serverPort}`);
+  const handleExit = (code: number) => {
+    if (nextServerProcess === child) {
+      nextServerProcess = null;
+    }
+    console.error(`Next.js server exited with code ${code}`);
+  };
+  child.on('exit', handleExit);
+
+  let startupExitHandler: ((code: number) => void) | null = null;
+  const exited = new Promise<never>((_resolve, reject) => {
+    startupExitHandler = (code: number) => {
+      reject(new Error(`Next.js server exited before startup completed with code ${code}`));
+    };
+    child.once('exit', startupExitHandler);
+  });
+
+  const ready = await Promise.race([waitForServer(getServerOrigin()), exited]);
+  if (startupExitHandler) {
+    child.removeListener('exit', startupExitHandler);
+  }
   if (!ready) {
+    stopNextServer();
     throw new Error('Next.js server failed to start within 30 s');
   }
   console.log(`Next.js server ready on port ${serverPort}`);
 }
+
+export function stopNextServer(): void {
+  nextServerProcess?.kill();
+  nextServerProcess = null;
+}
diff --git a/surfsense_desktop/src/modules/tray.ts b/surfsense_desktop/src/modules/tray.ts
index f0221fe53..e71168f6e 100644
--- a/surfsense_desktop/src/modules/tray.ts
+++ b/surfsense_desktop/src/modules/tray.ts
@@ -10,6 +10,30 @@ let tray: Tray | null = null;
 let registeredGeneralAssist: string | null = null;
 let registeredScreenshotAssist: string | null = null;
 
+function buildContextMenu(screenshotAccelerator: string): Menu {
+  return Menu.buildFromTemplate([
+    { label: 'Open SurfSense', click: () => showMainWindow('tray_menu') },
+    {
+      label: 'Take Screenshot\u2026',
+      accelerator: screenshotAccelerator || undefined,
+      click: () => {
+        trackEvent('desktop_tray_screenshot_clicked');
+        void Promise.resolve(runScreenshotAssistShortcut()).catch((err) => {
+          console.error('[tray] Screenshot Assist failed:', err);
+        });
+      },
+    },
+    { type: 'separator' },
+    {
+      label: 'Quit',
+      click: () => {
+        trackEvent('desktop_tray_quit_clicked');
+        app.exit(0);
+      },
+    },
+  ]);
+}
+
 function getTrayIcon(): NativeImage {
   const iconName =
     process.platform === 'darwin'
@@ -59,22 +83,10 @@ export async function createTray(): Promise<void> {
   tray = new Tray(getTrayIcon());
   tray.setToolTip('SurfSense');
 
-  const contextMenu = Menu.buildFromTemplate([
-    { label: 'Open SurfSense', click: () => showMainWindow('tray_menu') },
-    { type: 'separator' },
-    {
-      label: 'Quit',
-      click: () => {
-        trackEvent('desktop_tray_quit_clicked');
-        app.exit(0);
-      },
-    },
-  ]);
-
-  tray.setContextMenu(contextMenu);
+  const shortcuts = await getShortcuts();
+  tray.setContextMenu(buildContextMenu(shortcuts.screenshotAssist));
   tray.on('double-click', () => showMainWindow('tray_click'));
 
-  const shortcuts = await getShortcuts();
   registeredGeneralAssist = registerOne(
     null,
     shortcuts.generalAssist,
@@ -107,6 +119,7 @@ export async function reregisterScreenshotAssist(): Promise<void> {
     runScreenshotAssistShortcut,
     'Screenshot Assist'
   );
+  tray?.setContextMenu(buildContextMenu(shortcuts.screenshotAssist));
 }
 
 export function destroyTray(): void {
diff --git a/surfsense_desktop/src/modules/window.ts b/surfsense_desktop/src/modules/window.ts
index 5317005d5..42011d089 100644
--- a/surfsense_desktop/src/modules/window.ts
+++ b/surfsense_desktop/src/modules/window.ts
@@ -2,12 +2,30 @@ import { app, BrowserWindow, shell, session } from 'electron';
 import path from 'path';
 import { trackEvent } from './analytics';
 import { showErrorDialog } from './errors';
-import { getServerPort } from './server';
+import { getServerOrigin, getServerPort } from './server';
 import { setActiveSearchSpaceId } from './active-search-space';
 
 const isDev = !app.isPackaged;
-const HOSTED_FRONTEND_URL = process.env.HOSTED_FRONTEND_URL as string;
 const isMac = process.platform === 'darwin';
+const WINDOW_TITLE = 'SurfSense';
+
+function getHostedFrontendUrl(): string {
+  return (
+    process.env.SURFSENSE_HOSTED_FRONTEND_URL_OVERRIDE ||
+    process.env.HOSTED_FRONTEND_URL ||
+    'https://surfsense.com'
+  );
+}
+
+function getHostedFrontendHosts(): string[] {
+  try {
+    const host = new URL(getHostedFrontendUrl()).host;
+    const sibling = host.startsWith('www.') ? host.slice(4) : `www.${host}`;
+    return Array.from(new Set([host, sibling]));
+  } catch {
+    return [];
+  }
+}
 
 let mainWindow: BrowserWindow | null = null;
 let isQuitting = false;
@@ -24,6 +42,7 @@ export function markQuitting(): void {
 
 export function createMainWindow(initialPath = '/dashboard'): BrowserWindow {
   mainWindow = new BrowserWindow({
+    title: WINDOW_TITLE,
     width: 1280,
     height: 800,
     minWidth: 800,
@@ -34,6 +53,7 @@ export function createMainWindow(initialPath = '/dashboard'): BrowserWindow {
       nodeIntegration: false,
       sandbox: true,
       webviewTag: false,
+      devTools: !app.isPackaged,
     },
     show: false,
     ...(isMac
@@ -48,21 +68,66 @@ export function createMainWindow(initialPath = '/dashboard'): BrowserWindow {
     mainWindow?.show();
   });
 
-  mainWindow.loadURL(`http://localhost:${getServerPort()}${initialPath}`);
+  mainWindow.webContents.on('page-title-updated', (event) => {
+    event.preventDefault();
+    mainWindow?.setTitle(WINDOW_TITLE);
+  });
+  mainWindow.webContents.on('did-finish-load', () => {
+    mainWindow?.setTitle(WINDOW_TITLE);
+  });
+
+  mainWindow.loadURL(`${getServerOrigin()}${initialPath}`);
 
   mainWindow.webContents.setWindowOpenHandler(({ url }) => {
-    if (url.startsWith('http://localhost')) {
+    if (url.startsWith(getServerOrigin())) {
       return { action: 'allow' };
     }
     shell.openExternal(url);
     return { action: 'deny' };
   });
 
-  const filter = { urls: [`${HOSTED_FRONTEND_URL}/*`] };
-  session.defaultSession.webRequest.onBeforeRequest(filter, (details, callback) => {
-    const rewritten = details.url.replace(HOSTED_FRONTEND_URL, `http://localhost:${getServerPort()}`);
-    callback({ redirectURL: rewritten });
-  });
+  const hostedHosts = getHostedFrontendHosts();
+  const rewriteFilter = {
+    urls: hostedHosts.flatMap((h) => [`http://${h}/*`, `https://${h}/*`]),
+  };
+  if (rewriteFilter.urls.length > 0) {
+    session.defaultSession.webRequest.onBeforeRequest(rewriteFilter, (details, callback) => {
+      try {
+        const u = new URL(details.url);
+        const originalHost = u.host;
+        const local = new URL(getServerOrigin());
+        u.protocol = local.protocol;
+        u.host = local.host;
+        trackEvent('desktop_oauth_redirect_intercepted', {
+          host: originalHost,
+          path: u.pathname,
+          rewritten_to_port: getServerPort(),
+        });
+        callback({ redirectURL: u.toString() });
+      } catch {
+        callback({});
+      }
+    });
+  }
+
+  // Diagnostic: connector callback landing somewhere other than localhost
+  // means the rewrite missed and the user is stranded off-app.
+  session.defaultSession.webRequest.onCompleted(
+    { urls: ['*://*/dashboard/*/connectors/callback*'] },
+    (details) => {
+      try {
+        const u = new URL(details.url);
+        if (u.hostname === 'localhost' || u.hostname === '127.0.0.1') return;
+        trackEvent('desktop_oauth_redirect_missed', {
+          host: u.host,
+          path: u.pathname,
+          status_code: details.statusCode,
+        });
+      } catch {
+        // ignore malformed URLs
+      }
+    }
+  );
 
   mainWindow.webContents.on('did-fail-load', (_event, errorCode, errorDescription, validatedURL) => {
     console.error(`Failed to load ${validatedURL}: ${errorDescription} (${errorCode})`);
diff --git a/surfsense_desktop/src/preload.ts b/surfsense_desktop/src/preload.ts
index 7d72e9da5..97232179c 100644
--- a/surfsense_desktop/src/preload.ts
+++ b/surfsense_desktop/src/preload.ts
@@ -10,6 +10,14 @@ contextBridge.exposeInMainWorld('electronAPI', {
   },
   openExternal: (url: string) => ipcRenderer.send(IPC_CHANNELS.OPEN_EXTERNAL, url),
   getAppVersion: () => ipcRenderer.invoke(IPC_CHANNELS.GET_APP_VERSION),
+  onUpdateDownloaded: (callback: (data: { version: string }) => void) => {
+    const listener = (_event: unknown, data: { version: string }) => callback(data);
+    ipcRenderer.on(IPC_CHANNELS.UPDATE_DOWNLOADED, listener);
+    return () => {
+      ipcRenderer.removeListener(IPC_CHANNELS.UPDATE_DOWNLOADED, listener);
+    };
+  },
+  installUpdateNow: () => ipcRenderer.invoke(IPC_CHANNELS.UPDATE_INSTALL_NOW),
   onDeepLink: (callback: (url: string) => void) => {
     const listener = (_event: unknown, url: string) => callback(url);
     ipcRenderer.on(IPC_CHANNELS.DEEP_LINK, listener);
diff --git a/surfsense_web/app/(home)/free/page.tsx b/surfsense_web/app/(home)/free/page.tsx
index 4512f3396..5cea9b6d2 100644
--- a/surfsense_web/app/(home)/free/page.tsx
+++ b/surfsense_web/app/(home)/free/page.tsx
@@ -221,10 +221,7 @@ export default async function FreeHubPage() {
 				<Separator className="my-12 max-w-4xl mx-auto" />
 
 				{/* In-content ad: above the model table */}
-				<aside
-					aria-label="Advertisement"
-					className="max-w-4xl mx-auto mb-8 min-h-[100px]"
-				>
+				<aside aria-label="Advertisement" className="max-w-4xl mx-auto mb-8 min-h-[100px]">
 					<AdUnit slot={ADSENSE_SLOTS.freeHubInContent} />
 				</aside>
 
@@ -353,10 +350,7 @@ export default async function FreeHubPage() {
 				<Separator className="my-12 max-w-4xl mx-auto" />
 
 				{/* In-content ad: after CTA, before FAQ */}
-				<aside
-					aria-label="Advertisement"
-					className="max-w-3xl mx-auto my-8 min-h-[100px]"
-				>
+				<aside aria-label="Advertisement" className="max-w-3xl mx-auto my-8 min-h-[100px]">
 					<AdUnit slot={ADSENSE_SLOTS.freeHubBeforeFaq} />
 				</aside>
 
diff --git a/surfsense_web/app/(home)/login/GoogleLoginButton.tsx b/surfsense_web/app/(home)/login/GoogleLoginButton.tsx
index 7e703a70c..1c91f8115 100644
--- a/surfsense_web/app/(home)/login/GoogleLoginButton.tsx
+++ b/surfsense_web/app/(home)/login/GoogleLoginButton.tsx
@@ -3,9 +3,9 @@ import { useTranslations } from "next-intl";
 import { useState } from "react";
 import { Logo } from "@/components/Logo";
 import { Button } from "@/components/ui/button";
+import { BACKEND_URL } from "@/lib/env-config";
 import { trackLoginAttempt } from "@/lib/posthog/events";
 import { AmbientBackground } from "./AmbientBackground";
-import { BACKEND_URL } from "@/lib/env-config";
 
 function GoogleGLogo({ className }: { className?: string }) {
 	return (
diff --git a/surfsense_web/app/(home)/pricing/page.tsx b/surfsense_web/app/(home)/pricing/page.tsx
index b343a3853..5b0f98905 100644
--- a/surfsense_web/app/(home)/pricing/page.tsx
+++ b/surfsense_web/app/(home)/pricing/page.tsx
@@ -3,9 +3,9 @@ import PricingBasic from "@/components/pricing/pricing-section";
 import { BreadcrumbNav } from "@/components/seo/breadcrumb-nav";
 
 export const metadata: Metadata = {
-	title: "Pricing | SurfSense - Free AI Search Plans",
+	title: "Pricing | SurfSense - Free AI Workspace, Automations & Agents",
 	description:
-		"Explore SurfSense plans and pricing. Start free with 500 pages & $5 in premium credits. Use ChatGPT, Claude AI, and premium AI models. Pay as you go at provider cost.",
+		"Explore SurfSense plans and pricing. Start free with 500 pages & $5 in premium credits. Run AI automations and agents, use ChatGPT, Claude AI, and premium AI models, and pay as you go at provider cost.",
 	alternates: {
 		canonical: "https://www.surfsense.com/pricing",
 	},
diff --git a/surfsense_web/app/(home)/privacy/page.tsx b/surfsense_web/app/(home)/privacy/page.tsx
index 22833ae4a..cc7f64bee 100644
--- a/surfsense_web/app/(home)/privacy/page.tsx
+++ b/surfsense_web/app/(home)/privacy/page.tsx
@@ -37,9 +37,9 @@ export default function PrivacyPolicy() {
 					</p>
 					<p className="mt-4">
 						By accessing or using the Service, you acknowledge that you have read and understood
-						this Privacy Policy. If you do not agree with our policies and practices, do not use
-						the Service. We may modify this policy from time to time; material changes will be
-						reflected by updating the "Last updated" date above.
+						this Privacy Policy. If you do not agree with our policies and practices, do not use the
+						Service. We may modify this policy from time to time; material changes will be reflected
+						by updating the "Last updated" date above.
 					</p>
 				</section>
 
@@ -71,9 +71,9 @@ export default function PrivacyPolicy() {
 							Notion, Confluence, GitHub, and others) under the scopes you authorize.
 						</li>
 						<li>
-							<strong>Billing Data</strong> includes information necessary to process payments
-							(such as transaction identifiers and credit balances). Card details are handled by
-							our payment processor and are not stored on our servers.
+							<strong>Billing Data</strong> includes information necessary to process payments (such
+							as transaction identifiers and credit balances). Card details are handled by our
+							payment processor and are not stored on our servers.
 						</li>
 						<li>
 							<strong>Technical Data</strong> includes internet protocol (IP) address, browser type
@@ -126,8 +126,8 @@ export default function PrivacyPolicy() {
 							incidents.
 						</li>
 						<li>
-							To communicate with you about product updates, security notices, support requests,
-							and (with your consent where required) marketing.
+							To communicate with you about product updates, security notices, support requests, and
+							(with your consent where required) marketing.
 						</li>
 						<li>
 							To serve and measure advertising on pages where ads are shown (currently, our free
@@ -141,8 +141,8 @@ export default function PrivacyPolicy() {
 					<h2 className="text-2xl font-semibold mb-4">4. Cookies and Tracking Technologies</h2>
 					<p>
 						We and our partners use cookies, local storage, and similar technologies to operate the
-						Service, remember your preferences, measure usage, and serve advertising. The
-						categories include:
+						Service, remember your preferences, measure usage, and serve advertising. The categories
+						include:
 					</p>
 					<ul className="list-disc pl-6 my-4 space-y-2">
 						<li>
@@ -179,9 +179,9 @@ export default function PrivacyPolicy() {
 					</p>
 					<ul className="list-disc pl-6 my-4 space-y-2">
 						<li>
-							Google, as a third-party vendor, uses cookies (including the DoubleClick DART
-							cookie) to serve ads to you based on your visits to our Service and other websites
-							on the Internet.
+							Google, as a third-party vendor, uses cookies (including the DoubleClick DART cookie)
+							to serve ads to you based on your visits to our Service and other websites on the
+							Internet.
 						</li>
 						<li>
 							Google's use of advertising cookies enables it and its partners to serve ads to you
@@ -195,14 +195,12 @@ export default function PrivacyPolicy() {
 							<a href="https://www.youronlinechoices.com/">youronlinechoices.com</a> (EU).
 						</li>
 						<li>
-							For users in the European Economic Area, the United Kingdom, and Switzerland, we
-							use a Google-certified Consent Management Platform to obtain your consent for
-							personalized advertising before such cookies are set. You may change or withdraw
-							your consent at any time through the consent banner.
-						</li>
-						<li>
-							We do not knowingly serve personalized advertising to children. See Section 11.
+							For users in the European Economic Area, the United Kingdom, and Switzerland, we use a
+							Google-certified Consent Management Platform to obtain your consent for personalized
+							advertising before such cookies are set. You may change or withdraw your consent at
+							any time through the consent banner.
 						</li>
+						<li>We do not knowingly serve personalized advertising to children. See Section 11.</li>
 					</ul>
 					<p className="mt-4">
 						For more information about how Google uses data when you use our Service, see{" "}
@@ -217,8 +215,8 @@ export default function PrivacyPolicy() {
 					<h2 className="text-2xl font-semibold mb-4">6. Data Security</h2>
 					<p>
 						We implement technical and organizational measures designed to protect your personal
-						data against accidental loss, unauthorized access, alteration, and disclosure. Access
-						to personal data is limited to personnel who need it to operate the Service.
+						data against accidental loss, unauthorized access, alteration, and disclosure. Access to
+						personal data is limited to personnel who need it to operate the Service.
 					</p>
 					<p className="mt-4">
 						No system can be guaranteed to be fully secure. We cannot guarantee that personal data
@@ -232,10 +230,10 @@ export default function PrivacyPolicy() {
 					<p>
 						We retain personal data only for as long as necessary to provide the Service and to
 						comply with our legal, accounting, and reporting obligations. Account data is retained
-						for the life of your account; you can request deletion at any time. Aggregated data
-						that no longer identifies you may be retained indefinitely for analytics and product
-						improvement purposes. Anonymous chat sessions on our free pages are not retained in
-						any user-linked database.
+						for the life of your account; you can request deletion at any time. Aggregated data that
+						no longer identifies you may be retained indefinitely for analytics and product
+						improvement purposes. Anonymous chat sessions on our free pages are not retained in any
+						user-linked database.
 					</p>
 				</section>
 
@@ -243,8 +241,7 @@ export default function PrivacyPolicy() {
 					<h2 className="text-2xl font-semibold mb-4">8. Third-Party Services</h2>
 					<p>
 						We rely on the following categories of third-party processors and providers to operate
-						the Service. Each is bound by its own privacy policy, which we encourage you to
-						review:
+						the Service. Each is bound by its own privacy policy, which we encourage you to review:
 					</p>
 					<ul className="list-disc pl-6 my-4 space-y-2">
 						<li>
@@ -261,9 +258,9 @@ export default function PrivacyPolicy() {
 							<strong>Advertising</strong>: Google AdSense (see Section 5).
 						</li>
 						<li>
-							<strong>Large language model providers</strong>: OpenAI, Anthropic, Google, and
-							other LLM providers process the prompts and content you submit to the Service in
-							order to generate responses.
+							<strong>Large language model providers</strong>: OpenAI, Anthropic, Google, and other
+							LLM providers process the prompts and content you submit to the Service in order to
+							generate responses.
 						</li>
 						<li>
 							<strong>Integration providers</strong>: When you explicitly connect a third-party
@@ -278,9 +275,7 @@ export default function PrivacyPolicy() {
 				</section>
 
 				<section className="mb-8">
-					<h2 className="text-2xl font-semibold mb-4">
-						9. Your Legal Rights (Including GDPR)
-					</h2>
+					<h2 className="text-2xl font-semibold mb-4">9. Your Legal Rights (Including GDPR)</h2>
 					<p>
 						Subject to applicable law, you have the following rights in relation to your personal
 						data:
@@ -314,17 +309,17 @@ export default function PrivacyPolicy() {
 					</p>
 					<ul className="list-disc pl-6 my-4 space-y-2">
 						<li>
-							The right to know what categories of personal information we have collected about
-							you and how it is used and shared.
+							The right to know what categories of personal information we have collected about you
+							and how it is used and shared.
 						</li>
 						<li>The right to delete personal information we have collected from you.</li>
 						<li>The right to correct inaccurate personal information.</li>
 						<li>
 							The right to opt out of the "sale" or "sharing" of personal information for
 							cross-context behavioral advertising. We do not sell personal data; however,
-							advertising cookies set by Google AdSense may be considered "sharing" under
-							California law. To opt out, you can use the consent controls described in Section 5
-							or enable a Global Privacy Control (GPC) signal in your browser, which we honor.
+							advertising cookies set by Google AdSense may be considered "sharing" under California
+							law. To opt out, you can use the consent controls described in Section 5 or enable a
+							Global Privacy Control (GPC) signal in your browser, which we honor.
 						</li>
 						<li>The right not to be discriminated against for exercising your privacy rights.</li>
 					</ul>
@@ -337,33 +332,32 @@ export default function PrivacyPolicy() {
 					<h2 className="text-2xl font-semibold mb-4">11. Children's Privacy</h2>
 					<p>
 						The Service is not directed to children under 13 (or under 16 in the EEA, UK, and
-						Switzerland). We do not knowingly collect personal data from children. If you believe
-						a child has provided us with personal data, please contact us and we will take steps
-						to delete it. We do not knowingly serve personalized advertising to children.
+						Switzerland). We do not knowingly collect personal data from children. If you believe a
+						child has provided us with personal data, please contact us and we will take steps to
+						delete it. We do not knowingly serve personalized advertising to children.
 					</p>
 				</section>
 
 				<section className="mb-8">
 					<h2 className="text-2xl font-semibold mb-4">12. Changes to This Policy</h2>
 					<p>
-						We may update this Privacy Policy from time to time to reflect changes in our
-						practices, technology, legal requirements, or for other operational reasons. When we
-						make material changes, we will update the "Last updated" date at the top of this page
-						and, where appropriate, provide additional notice (such as an in-product notification
-						or email). Your continued use of the Service after the updated policy becomes
-						effective constitutes your acceptance of the revised policy.
+						We may update this Privacy Policy from time to time to reflect changes in our practices,
+						technology, legal requirements, or for other operational reasons. When we make material
+						changes, we will update the "Last updated" date at the top of this page and, where
+						appropriate, provide additional notice (such as an in-product notification or email).
+						Your continued use of the Service after the updated policy becomes effective constitutes
+						your acceptance of the revised policy.
 					</p>
 				</section>
 
 				<section className="mb-8">
 					<h2 className="text-2xl font-semibold mb-4">13. Contact Us</h2>
 					<p>
-						If you have questions about this Privacy Policy or our privacy practices, or if you
-						want to exercise any of your rights, please contact us at:
+						If you have questions about this Privacy Policy or our privacy practices, or if you want
+						to exercise any of your rights, please contact us at:
 					</p>
 					<p className="mt-2">
-						<strong>Email:</strong>{" "}
-						<a href="mailto:rohan@surfsense.com">rohan@surfsense.com</a>
+						<strong>Email:</strong> <a href="mailto:rohan@surfsense.com">rohan@surfsense.com</a>
 					</p>
 				</section>
 			</div>
diff --git a/surfsense_web/app/api/zero/query/route.ts b/surfsense_web/app/api/zero/query/route.ts
index 8caac9cd4..0e64c932f 100644
--- a/surfsense_web/app/api/zero/query/route.ts
+++ b/surfsense_web/app/api/zero/query/route.ts
@@ -1,10 +1,10 @@
 import { mustGetQuery } from "@rocicorp/zero";
 import { handleQueryRequest } from "@rocicorp/zero/server";
 import { NextResponse } from "next/server";
+import { BACKEND_URL } from "@/lib/env-config";
 import type { Context } from "@/types/zero";
 import { queries } from "@/zero/queries";
 import { schema } from "@/zero/schema";
-import { BACKEND_URL } from "@/lib/env-config";
 
 const backendURL = BACKEND_URL;
 
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/automation-detail-content.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/automation-detail-content.tsx
new file mode 100644
index 000000000..4085d47a8
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/automation-detail-content.tsx
@@ -0,0 +1,91 @@
+"use client";
+import { ShieldAlert } from "lucide-react";
+import { useAutomation } from "@/hooks/use-automation";
+import { useAutomationPermissions } from "../hooks/use-automation-permissions";
+import { AutomationDefinitionSection } from "./components/automation-definition-section";
+import { AutomationDetailHeader } from "./components/automation-detail-header";
+import { AutomationDetailLoading } from "./components/automation-detail-loading";
+import { AutomationNotFound } from "./components/automation-not-found";
+import { AutomationRunsSection } from "./components/automation-runs-section";
+import { AutomationTriggersSection } from "./components/automation-triggers-section";
+
+interface AutomationDetailContentProps {
+	searchSpaceId: number;
+	automationId: number;
+}
+
+/**
+ * Client orchestrator for one automation's detail view. Branches:
+ *   - permissions loading → skeleton
+ *   - no read permission → access denied panel
+ *   - bad id (NaN) → not-found panel
+ *   - detail fetching → skeleton
+ *   - detail error / null → not-found panel (we don't distinguish 404
+ *     from 403 in the UI)
+ *   - detail loaded → header + definition + triggers
+ *
+ * Each child component is gated independently on the relevant permission
+ * so the orchestrator stays thin.
+ */
+export function AutomationDetailContent({
+	searchSpaceId,
+	automationId,
+}: AutomationDetailContentProps) {
+	const perms = useAutomationPermissions();
+	const validId = Number.isInteger(automationId) && automationId > 0;
+	const { data: automation, isLoading, error } = useAutomation(validId ? automationId : undefined);
+
+	if (perms.loading) {
+		return <AutomationDetailLoading />;
+	}
+
+	if (!perms.canRead) {
+		return (
+			<div className="rounded-lg border border-border/60 bg-muted/20 px-6 py-12 text-center">
+				<ShieldAlert className="mx-auto h-10 w-10 text-muted-foreground" aria-hidden />
+				<h2 className="mt-3 text-base font-semibold text-foreground">Access denied</h2>
+				<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+					You don't have permission to view automations in this search space.
+				</p>
+			</div>
+		);
+	}
+
+	if (!validId) {
+		return <AutomationNotFound searchSpaceId={searchSpaceId} />;
+	}
+
+	if (isLoading) {
+		return <AutomationDetailLoading />;
+	}
+
+	if (error || !automation) {
+		return <AutomationNotFound searchSpaceId={searchSpaceId} error={error} />;
+	}
+
+	return (
+		<>
+			<AutomationDetailHeader
+				automation={automation}
+				searchSpaceId={searchSpaceId}
+				canUpdate={perms.canUpdate}
+				canDelete={perms.canDelete}
+			/>
+
+			<div className="grid grid-cols-1 gap-6 lg:grid-cols-3">
+				<div className="space-y-6 min-w-0 lg:col-span-2">
+					<AutomationDefinitionSection definition={automation.definition} />
+					<AutomationRunsSection automationId={automation.id} />
+				</div>
+				<div className="space-y-6 min-w-0">
+					<AutomationTriggersSection
+						triggers={automation.triggers}
+						automationId={automation.id}
+						canUpdate={perms.canUpdate}
+						canDelete={perms.canDelete}
+					/>
+				</div>
+			</div>
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-definition-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-definition-section.tsx
new file mode 100644
index 000000000..4ff9b8b8c
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-definition-section.tsx
@@ -0,0 +1,98 @@
+"use client";
+import { ListOrdered, Settings2, Tag, Target } from "lucide-react";
+import { Card, CardContent, CardHeader, CardTitle } from "@/components/ui/card";
+import type { AutomationDefinition } from "@/contracts/types/automation.types";
+import { ExecutionSummary } from "./execution-summary";
+import { InputsSchemaPreview } from "./inputs-schema-preview";
+import { PlanStepCard } from "./plan-step-card";
+
+interface AutomationDefinitionSectionProps {
+	definition: AutomationDefinition;
+}
+
+/**
+ * The Definition card. Read view; editing happens on the sibling /edit
+ * route (Edit button in the header). Layout is top-down:
+ *   goal → tags → execution defaults → inputs schema (if any) → plan
+ *
+ * The schema_version is rendered as a small badge next to the section
+ * title so it's discoverable but doesn't fight for attention.
+ */
+export function AutomationDefinitionSection({ definition }: AutomationDefinitionSectionProps) {
+	const hasTags = definition.metadata.tags.length > 0;
+	const hasInputs = !!definition.inputs;
+
+	return (
+		<Card className="border-border/60 bg-accent">
+			<CardHeader className="flex flex-row items-center justify-between space-y-0 pb-4">
+				<CardTitle className="text-base font-semibold">Definition</CardTitle>
+				<span className="text-xs font-mono text-muted-foreground border border-border/60 rounded px-1.5 py-0.5">
+					v{definition.schema_version}
+				</span>
+			</CardHeader>
+			<CardContent className="space-y-6">
+				{definition.goal && (
+					<Field icon={Target} label="Goal">
+						<p className="text-sm text-foreground">{definition.goal}</p>
+					</Field>
+				)}
+
+				{hasTags && (
+					<Field icon={Tag} label="Tags">
+						<div className="flex flex-wrap gap-1.5">
+							{definition.metadata.tags.map((tag) => (
+								<span
+									key={tag}
+									className="inline-flex items-center rounded-md bg-muted px-2 py-0.5 text-xs text-muted-foreground"
+								>
+									{tag}
+								</span>
+							))}
+						</div>
+					</Field>
+				)}
+
+				<Field icon={Settings2} label="Execution defaults">
+					<ExecutionSummary execution={definition.execution} />
+				</Field>
+
+				{hasInputs && (
+					<Field icon={Settings2} label="Inputs schema">
+						{definition.inputs && <InputsSchemaPreview inputs={definition.inputs} />}
+					</Field>
+				)}
+
+				<Field
+					icon={ListOrdered}
+					label={`Plan · ${definition.plan.length} step${definition.plan.length === 1 ? "" : "s"}`}
+				>
+					<div className="space-y-2">
+						{definition.plan.map((step, idx) => (
+							<PlanStepCard key={step.step_id} step={step} index={idx} />
+						))}
+					</div>
+				</Field>
+			</CardContent>
+		</Card>
+	);
+}
+
+function Field({
+	icon: Icon,
+	label,
+	children,
+}: {
+	icon: typeof Target;
+	label: string;
+	children: React.ReactNode;
+}) {
+	return (
+		<div className="space-y-2">
+			<div className="flex items-center gap-1.5 text-xs font-medium text-muted-foreground uppercase tracking-wider">
+				<Icon className="h-3.5 w-3.5" aria-hidden />
+				{label}
+			</div>
+			{children}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-header.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-header.tsx
new file mode 100644
index 000000000..0bce3fa2d
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-header.tsx
@@ -0,0 +1,137 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { ArrowLeft, Pause, Pencil, Play, Trash2 } from "lucide-react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+import { useCallback, useState } from "react";
+import { updateAutomationMutationAtom } from "@/atoms/automations/automations-mutation.atoms";
+import { Button } from "@/components/ui/button";
+import { Spinner } from "@/components/ui/spinner";
+import type { Automation } from "@/contracts/types/automation.types";
+import { AutomationStatusBadge } from "../../components/automation-status-badge";
+import { DeleteAutomationDialog } from "../../components/delete-automation-dialog";
+
+interface AutomationDetailHeaderProps {
+	automation: Automation;
+	searchSpaceId: number;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+/**
+ * Title bar for the detail page: back link, name, status badge,
+ * description, and the two destructive-ish primary actions (pause /
+ * resume + delete). Same mutation atoms as the list-row actions to
+ * keep caches coherent.
+ *
+ * Archived automations hide the pause/resume toggle (we don't unarchive
+ * here — that flow comes later if we need it).
+ */
+export function AutomationDetailHeader({
+	automation,
+	searchSpaceId,
+	canUpdate,
+	canDelete,
+}: AutomationDetailHeaderProps) {
+	const router = useRouter();
+	const { mutateAsync: updateAutomation, isPending: updating } = useAtomValue(
+		updateAutomationMutationAtom
+	);
+	const [deleteOpen, setDeleteOpen] = useState(false);
+
+	const canToggle = canUpdate && automation.status !== "archived";
+	const nextStatus = automation.status === "active" ? "paused" : "active";
+	const pauseLabel = automation.status === "active" ? "Pause" : "Resume";
+	const PauseIcon = automation.status === "active" ? Pause : Play;
+
+	const handleDeleted = useCallback(() => {
+		router.push(`/dashboard/${searchSpaceId}/automations`);
+	}, [router, searchSpaceId]);
+
+	async function handleTogglePause() {
+		await updateAutomation({
+			automationId: automation.id,
+			patch: { status: nextStatus },
+		});
+	}
+
+	return (
+		<>
+			<div className="space-y-3">
+				<Button asChild variant="ghost" size="sm" className="-ml-2 h-auto px-2 py-1">
+					<Link
+						href={`/dashboard/${searchSpaceId}/automations`}
+						className="text-xs text-muted-foreground"
+					>
+						<ArrowLeft className="mr-1.5 h-3.5 w-3.5" />
+						Back to automations
+					</Link>
+				</Button>
+
+				<div className="flex items-start justify-between gap-4 flex-wrap">
+					<div className="space-y-2 min-w-0 flex-1">
+						<div className="flex items-center gap-3 flex-wrap">
+							<h1 className="text-xl md:text-2xl font-semibold text-foreground break-words">
+								{automation.name}
+							</h1>
+							<AutomationStatusBadge status={automation.status} />
+						</div>
+						{automation.description && (
+							<p className="text-sm text-muted-foreground max-w-3xl">{automation.description}</p>
+						)}
+					</div>
+
+					<div className="flex items-center gap-2 shrink-0">
+						{canUpdate && (
+							<Button asChild type="button" variant="outline" size="sm">
+								<Link href={`/dashboard/${searchSpaceId}/automations/${automation.id}/edit`}>
+									<Pencil className="mr-2 h-4 w-4" />
+									Edit
+								</Link>
+							</Button>
+						)}
+						{canToggle && (
+							<Button
+								type="button"
+								variant="outline"
+								size="sm"
+								onClick={handleTogglePause}
+								disabled={updating}
+							>
+								{updating ? (
+									<Spinner size="xs" className="mr-2" />
+								) : (
+									<PauseIcon className="mr-2 h-4 w-4" />
+								)}
+								{pauseLabel}
+							</Button>
+						)}
+						{canDelete && (
+							<Button
+								type="button"
+								variant="outline"
+								size="sm"
+								onClick={() => setDeleteOpen(true)}
+								className="text-destructive hover:text-destructive hover:bg-destructive/10"
+							>
+								<Trash2 className="mr-2 h-4 w-4" />
+								Delete
+							</Button>
+						)}
+					</div>
+				</div>
+			</div>
+
+			{canDelete && (
+				<DeleteAutomationDialog
+					open={deleteOpen}
+					onOpenChange={setDeleteOpen}
+					automationId={automation.id}
+					automationName={automation.name}
+					searchSpaceId={searchSpaceId}
+					onDeleted={handleDeleted}
+				/>
+			)}
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-loading.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-loading.tsx
new file mode 100644
index 000000000..0d6ba3110
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-detail-loading.tsx
@@ -0,0 +1,56 @@
+"use client";
+import { Card, CardContent, CardHeader } from "@/components/ui/card";
+import { Skeleton } from "@/components/ui/skeleton";
+
+/**
+ * Skeleton for the detail page. Mirrors the loaded view's main/sidebar
+ * grid (Definition + Runs on the left, Triggers on the right) so layout
+ * doesn't reflow when data arrives.
+ */
+export function AutomationDetailLoading() {
+	return (
+		<>
+			<div className="space-y-3">
+				<Skeleton className="h-4 w-32" />
+				<div className="flex items-center gap-3">
+					<Skeleton className="h-7 w-64" />
+					<Skeleton className="h-5 w-16 rounded-md" />
+				</div>
+				<Skeleton className="h-4 w-96" />
+			</div>
+
+			<div className="grid grid-cols-1 gap-6 lg:grid-cols-3">
+				<div className="space-y-6 min-w-0 lg:col-span-2">
+					<Card className="border-border/60 bg-accent">
+						<CardHeader>
+							<Skeleton className="h-5 w-32" />
+						</CardHeader>
+						<CardContent className="space-y-4">
+							<Skeleton className="h-4 w-3/4" />
+							<Skeleton className="h-4 w-1/2" />
+							<Skeleton className="h-24 w-full" />
+						</CardContent>
+					</Card>
+					<Card className="border-border/60 bg-accent">
+						<CardHeader>
+							<Skeleton className="h-5 w-32" />
+						</CardHeader>
+						<CardContent>
+							<Skeleton className="h-20 w-full" />
+						</CardContent>
+					</Card>
+				</div>
+				<div className="space-y-6 min-w-0">
+					<Card className="border-border/60 bg-accent">
+						<CardHeader>
+							<Skeleton className="h-5 w-24" />
+						</CardHeader>
+						<CardContent>
+							<Skeleton className="h-20 w-full" />
+						</CardContent>
+					</Card>
+				</div>
+			</div>
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-not-found.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-not-found.tsx
new file mode 100644
index 000000000..1681caf25
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-not-found.tsx
@@ -0,0 +1,34 @@
+"use client";
+import { ArrowLeft, FileWarning } from "lucide-react";
+import Link from "next/link";
+import { Button } from "@/components/ui/button";
+
+interface AutomationNotFoundProps {
+	searchSpaceId: number;
+	error?: Error | null;
+}
+
+/**
+ * Rendered when the detail fetch fails (404 / 403 / network) or the id
+ * is not a number. We don't distinguish "missing" from "forbidden" in the
+ * UI on purpose — leaking that an id exists you can't read is worse than
+ * a vague message.
+ */
+export function AutomationNotFound({ searchSpaceId, error }: AutomationNotFoundProps) {
+	return (
+		<div className="rounded-lg border border-border/60 bg-muted/20 px-6 py-12 text-center">
+			<FileWarning className="mx-auto h-10 w-10 text-muted-foreground" aria-hidden />
+			<h2 className="mt-3 text-base font-semibold text-foreground">Automation not found</h2>
+			<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+				This automation doesn't exist or you don't have access to it.
+				{error?.message ? ` (${error.message})` : null}
+			</p>
+			<Button asChild variant="outline" size="sm" className="mt-6">
+				<Link href={`/dashboard/${searchSpaceId}/automations`}>
+					<ArrowLeft className="mr-2 h-4 w-4" />
+					Back to automations
+				</Link>
+			</Button>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-runs-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-runs-section.tsx
new file mode 100644
index 000000000..d31bd696d
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-runs-section.tsx
@@ -0,0 +1,67 @@
+"use client";
+import { History } from "lucide-react";
+import { Card, CardContent, CardHeader, CardTitle } from "@/components/ui/card";
+import { useAutomationRuns } from "@/hooks/use-automation-runs";
+import { RunRow } from "./run-row";
+import { RunsLoading } from "./runs-loading";
+
+interface AutomationRunsSectionProps {
+	automationId: number;
+}
+
+const LIMIT = 20;
+
+/**
+ * Run history card. Shows the most recent ``LIMIT`` runs; pagination is
+ * intentionally deferred — for the foreseeable v1 surface (one-trigger
+ * automations firing daily), 20 covers ~3 weeks of history which is
+ * enough to tell whether things are working. Real "load more" lands if
+ * we see usage spike past that.
+ */
+export function AutomationRunsSection({ automationId }: AutomationRunsSectionProps) {
+	const { data, isLoading, error } = useAutomationRuns(automationId, { limit: LIMIT });
+	const runs = data?.items ?? [];
+
+	return (
+		<Card className="border-border/60 bg-accent">
+			<CardHeader className="flex flex-row items-center justify-between space-y-0 pb-4">
+				<div className="space-y-1">
+					<CardTitle className="text-base font-semibold inline-flex items-center gap-2">
+						<History className="h-4 w-4 text-muted-foreground" aria-hidden />
+						Recent runs
+					</CardTitle>
+					<p className="text-xs text-muted-foreground">
+						Most recent first. Click a row to inspect step results, output and artifacts.
+					</p>
+				</div>
+				{!isLoading && !error && data && (
+					<span className="text-xs text-muted-foreground">{data.total} total</span>
+				)}
+			</CardHeader>
+			<CardContent>
+				{isLoading ? (
+					<RunsLoading />
+				) : error ? (
+					<p className="text-sm text-muted-foreground">
+						Couldn't load runs{error.message ? `: ${error.message}` : "."}
+					</p>
+				) : runs.length === 0 ? (
+					<div className="rounded-md border border-dashed border-border/60 bg-muted/20 px-4 py-8 text-center">
+						<History className="mx-auto h-8 w-8 text-muted-foreground" aria-hidden />
+						<p className="mt-2 text-sm font-medium text-foreground">No runs yet</p>
+						<p className="mt-1 text-xs text-muted-foreground">
+							This automation hasn't fired. Once a trigger fires (or you invoke it manually), runs
+							will appear here.
+						</p>
+					</div>
+				) : (
+					<div className="space-y-2">
+						{runs.map((run) => (
+							<RunRow key={run.id} run={run} automationId={automationId} />
+						))}
+					</div>
+				)}
+			</CardContent>
+		</Card>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-triggers-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-triggers-section.tsx
new file mode 100644
index 000000000..558a089ac
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/automation-triggers-section.tsx
@@ -0,0 +1,58 @@
+"use client";
+import { CalendarClock } from "lucide-react";
+import { Card, CardContent, CardHeader, CardTitle } from "@/components/ui/card";
+import type { Trigger } from "@/contracts/types/automation.types";
+import { TriggerCard } from "./trigger-card";
+
+interface AutomationTriggersSectionProps {
+	triggers: Trigger[];
+	automationId: number;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+/**
+ * The Triggers card. Lists each attached trigger with its own enable
+ * toggle and remove button. v1 attaches triggers at automation-creation
+ * time only; there is no in-place "add trigger" affordance here.
+ */
+export function AutomationTriggersSection({
+	triggers,
+	automationId,
+	canUpdate,
+	canDelete,
+}: AutomationTriggersSectionProps) {
+	return (
+		<Card className="border-border/60 bg-accent">
+			<CardHeader className="pb-4">
+				<CardTitle className="text-base font-semibold">Triggers</CardTitle>
+				<p className="text-xs text-muted-foreground">
+					When this automation fires. v1 supports scheduled triggers only.
+				</p>
+			</CardHeader>
+			<CardContent>
+				{triggers.length === 0 ? (
+					<div className="rounded-md border border-dashed border-border/60 bg-muted/20 px-4 py-8 text-center">
+						<CalendarClock className="mx-auto h-8 w-8 text-muted-foreground" aria-hidden />
+						<p className="mt-2 text-sm font-medium text-foreground">No triggers attached</p>
+						<p className="mt-1 text-xs text-muted-foreground">
+							This automation can still be invoked, but nothing will fire it on its own.
+						</p>
+					</div>
+				) : (
+					<div className="space-y-3">
+						{triggers.map((trigger) => (
+							<TriggerCard
+								key={trigger.id}
+								trigger={trigger}
+								automationId={automationId}
+								canUpdate={canUpdate}
+								canDelete={canDelete}
+							/>
+						))}
+					</div>
+				)}
+			</CardContent>
+		</Card>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/delete-trigger-dialog.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/delete-trigger-dialog.tsx
new file mode 100644
index 000000000..71e905724
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/delete-trigger-dialog.tsx
@@ -0,0 +1,80 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { useState } from "react";
+import { removeTriggerMutationAtom } from "@/atoms/automations/automations-mutation.atoms";
+import {
+	AlertDialog,
+	AlertDialogAction,
+	AlertDialogCancel,
+	AlertDialogContent,
+	AlertDialogDescription,
+	AlertDialogFooter,
+	AlertDialogHeader,
+	AlertDialogTitle,
+} from "@/components/ui/alert-dialog";
+import { Spinner } from "@/components/ui/spinner";
+
+interface DeleteTriggerDialogProps {
+	open: boolean;
+	onOpenChange: (open: boolean) => void;
+	automationId: number;
+	triggerId: number;
+	triggerLabel: string;
+}
+
+/**
+ * Confirm + detach one trigger from its automation. The automation itself
+ * is untouched; only this trigger row is removed. The mutation atom
+ * invalidates the parent automation detail so the page rerenders.
+ */
+export function DeleteTriggerDialog({
+	open,
+	onOpenChange,
+	automationId,
+	triggerId,
+	triggerLabel,
+}: DeleteTriggerDialogProps) {
+	const { mutateAsync: removeTrigger } = useAtomValue(removeTriggerMutationAtom);
+	const [submitting, setSubmitting] = useState(false);
+
+	async function handleConfirm() {
+		setSubmitting(true);
+		try {
+			await removeTrigger({ automationId, triggerId });
+			onOpenChange(false);
+		} finally {
+			setSubmitting(false);
+		}
+	}
+
+	return (
+		<AlertDialog open={open} onOpenChange={onOpenChange}>
+			<AlertDialogContent>
+				<AlertDialogHeader>
+					<AlertDialogTitle>Remove this trigger?</AlertDialogTitle>
+					<AlertDialogDescription>
+						<span className="font-medium text-foreground">{triggerLabel}</span> will be detached.
+						The automation itself stays, but it won't fire on this trigger anymore.
+					</AlertDialogDescription>
+				</AlertDialogHeader>
+				<AlertDialogFooter>
+					<AlertDialogCancel disabled={submitting}>Cancel</AlertDialogCancel>
+					<AlertDialogAction
+						onClick={handleConfirm}
+						disabled={submitting}
+						className="bg-destructive text-white hover:bg-destructive/90"
+					>
+						{submitting ? (
+							<span className="inline-flex items-center gap-2">
+								<Spinner size="xs" />
+								Removing…
+							</span>
+						) : (
+							"Remove"
+						)}
+					</AlertDialogAction>
+				</AlertDialogFooter>
+			</AlertDialogContent>
+		</AlertDialog>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/execution-summary.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/execution-summary.tsx
new file mode 100644
index 000000000..5c4dc381c
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/execution-summary.tsx
@@ -0,0 +1,37 @@
+"use client";
+import type { Execution } from "@/contracts/types/automation.types";
+
+interface ExecutionSummaryProps {
+	execution: Execution;
+}
+
+/**
+ * Compact view of an automation's execution defaults (wall-clock cap,
+ * retries, backoff, concurrency, on_failure presence). Per-step overrides
+ * are shown inside each PlanStepCard, not here.
+ */
+export function ExecutionSummary({ execution }: ExecutionSummaryProps) {
+	return (
+		<dl className="grid grid-cols-2 md:grid-cols-4 gap-x-6 gap-y-2 text-xs">
+			<Item label="Timeout" value={`${execution.timeout_seconds}s`} />
+			<Item label="Max retries" value={String(execution.max_retries)} />
+			<Item label="Retry backoff" value={execution.retry_backoff} />
+			<Item label="Concurrency" value={execution.concurrency} />
+			{execution.on_failure.length > 0 && (
+				<Item
+					label="On failure"
+					value={`${execution.on_failure.length} step${execution.on_failure.length === 1 ? "" : "s"}`}
+				/>
+			)}
+		</dl>
+	);
+}
+
+function Item({ label, value }: { label: string; value: string }) {
+	return (
+		<div className="flex flex-col gap-0.5 min-w-0">
+			<dt className="text-muted-foreground">{label}</dt>
+			<dd className="text-foreground font-medium truncate">{value}</dd>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/inputs-schema-preview.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/inputs-schema-preview.tsx
new file mode 100644
index 000000000..29d79d99b
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/inputs-schema-preview.tsx
@@ -0,0 +1,21 @@
+"use client";
+import { JsonView } from "@/components/json-view";
+import type { Inputs } from "@/contracts/types/automation.types";
+
+interface InputsSchemaPreviewProps {
+	inputs: Inputs;
+}
+
+/**
+ * Read-only preview of an automation's accepted-inputs schema. Most
+ * automations don't define inputs (defaults are baked into the trigger's
+ * static_inputs), so the parent skips rendering this card when ``inputs``
+ * is null.
+ */
+export function InputsSchemaPreview({ inputs }: InputsSchemaPreviewProps) {
+	return (
+		<div className="rounded-md bg-muted/40 px-3 py-2 max-h-72 overflow-auto">
+			<JsonView src={inputs.schema} collapsed={2} />
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/plan-step-card.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/plan-step-card.tsx
new file mode 100644
index 000000000..27cecf3bf
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/plan-step-card.tsx
@@ -0,0 +1,74 @@
+"use client";
+import { ArrowRightCircle, GitCommitHorizontal } from "lucide-react";
+import { JsonView } from "@/components/json-view";
+import type { PlanStep } from "@/contracts/types/automation.types";
+
+interface PlanStepCardProps {
+	step: PlanStep;
+	index: number;
+}
+
+/**
+ * Read-only view of one plan step. Renders the step_id + action prominently,
+ * then a definition list of the per-step knobs, and finally the params as
+ * formatted JSON. Editable mode is out of scope here — definition edits live
+ * on the (future) raw-JSON path.
+ */
+export function PlanStepCard({ step, index }: PlanStepCardProps) {
+	return (
+		<div className="rounded-md border border-border/60 overflow-hidden">
+			<div className="flex items-center gap-2 px-4 py-2 border-b border-border/60 bg-muted/30">
+				<span className="inline-flex h-6 w-6 items-center justify-center rounded-full bg-muted text-xs font-medium text-muted-foreground">
+					{index + 1}
+				</span>
+				<span className="text-sm font-medium text-foreground">{step.step_id}</span>
+				<ArrowRightCircle className="h-3.5 w-3.5 text-muted-foreground" aria-hidden />
+				<span className="text-xs font-mono text-muted-foreground">{step.action}</span>
+			</div>
+
+			<div className="px-4 py-3 space-y-3">
+				{(step.when ||
+					step.output_as ||
+					step.max_retries != null ||
+					step.timeout_seconds != null) && (
+					<dl className="grid grid-cols-1 sm:grid-cols-2 gap-x-6 gap-y-1.5 text-xs">
+						{step.when && (
+							<DefRow label="When" value={<code className="font-mono">{step.when}</code>} />
+						)}
+						{step.output_as && (
+							<DefRow
+								label="Output as"
+								value={<code className="font-mono">{step.output_as}</code>}
+							/>
+						)}
+						{step.max_retries != null && (
+							<DefRow label="Max retries" value={String(step.max_retries)} />
+						)}
+						{step.timeout_seconds != null && (
+							<DefRow label="Timeout" value={`${step.timeout_seconds}s`} />
+						)}
+					</dl>
+				)}
+
+				<div>
+					<div className="flex items-center gap-1.5 text-xs font-medium text-muted-foreground mb-1.5">
+						<GitCommitHorizontal className="h-3.5 w-3.5" aria-hidden />
+						Params
+					</div>
+					<div className="rounded-md bg-muted/40 px-3 py-2 overflow-auto">
+						<JsonView src={step.params} collapsed={1} />
+					</div>
+				</div>
+			</div>
+		</div>
+	);
+}
+
+function DefRow({ label, value }: { label: string; value: React.ReactNode }) {
+	return (
+		<div className="flex items-baseline gap-2 min-w-0">
+			<dt className="text-muted-foreground shrink-0">{label}:</dt>
+			<dd className="text-foreground min-w-0 truncate">{value}</dd>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-details-panel.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-details-panel.tsx
new file mode 100644
index 000000000..164f156e5
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-details-panel.tsx
@@ -0,0 +1,184 @@
+"use client";
+import {
+	AlertCircle,
+	ChevronDown,
+	FileOutput,
+	GitCommitHorizontal,
+	Package,
+	Settings2,
+} from "lucide-react";
+import { useState } from "react";
+import { JsonView } from "@/components/json-view";
+import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
+import { Button } from "@/components/ui/button";
+import { Collapsible, CollapsibleContent, CollapsibleTrigger } from "@/components/ui/collapsible";
+import { ScrollArea } from "@/components/ui/scroll-area";
+import { Separator } from "@/components/ui/separator";
+import { Skeleton } from "@/components/ui/skeleton";
+import type { RunStepResult } from "@/contracts/types/automation.types";
+import { useAutomationRun } from "@/hooks/use-automation-runs";
+import { cn } from "@/lib/utils";
+import { RunStepResultCard } from "./run-step-result-card";
+
+interface RunDetailsPanelProps {
+	automationId: number;
+	runId: number;
+}
+
+/**
+ * Expanded view of a single run. Fetches lazily — the parent only renders
+ * this once the row is opened, so the list view stays cheap.
+ *
+ * We surface the run outcome readably: a run-level error first (when
+ * present), then per-step cards that render the agent's markdown
+ * ``final_message`` directly, and finally the structural artifacts/inputs.
+ * The full ``definition_snapshot`` is omitted because it usually mirrors the
+ * live definition — surfacing it would dominate the panel without informing
+ * what the user is trying to learn ("did this work? what did it do?").
+ */
+export function RunDetailsPanel({ automationId, runId }: RunDetailsPanelProps) {
+	const { data: run, isLoading, error } = useAutomationRun(automationId, runId);
+
+	if (isLoading) {
+		return (
+			<div className="flex flex-col gap-3 border-t border-border/60 bg-muted/20 p-4">
+				<Skeleton className="h-3 w-32" />
+				<Skeleton className="h-24 w-full" />
+			</div>
+		);
+	}
+
+	if (error || !run) {
+		return (
+			<div className="border-t border-border/60 bg-muted/20 p-4 text-xs text-muted-foreground">
+				Couldn't load run details{error?.message ? `: ${error.message}` : "."}
+			</div>
+		);
+	}
+
+	const runError = run.error && Object.keys(run.error).length > 0 ? run.error : null;
+	const hasOutput = run.output && Object.keys(run.output).length > 0;
+	const hasInputs = Object.keys(run.inputs ?? {}).length > 0;
+	const steps = run.step_results as RunStepResult[];
+	const hasDiagnostics = run.artifacts.length > 0 || hasInputs;
+
+	return (
+		<div className="flex flex-col gap-4 border-t border-border/60 bg-muted/20 p-4">
+			{runError ? <RunErrorSection error={runError} /> : null}
+
+			{hasOutput ? (
+				<Section icon={FileOutput} label="Output">
+					<JsonBlock value={run.output} />
+				</Section>
+			) : null}
+
+			<Section icon={GitCommitHorizontal} label={`Step results · ${steps.length}`}>
+				{steps.length === 0 ? (
+					<p className="text-xs text-muted-foreground">No steps recorded.</p>
+				) : (
+					<div className="flex flex-col gap-2">
+						{steps.map((step, index) => (
+							<RunStepResultCard key={step.step_id ?? index} step={step} />
+						))}
+					</div>
+				)}
+			</Section>
+
+			{hasDiagnostics ? <Separator className="bg-border/60" /> : null}
+
+			{run.artifacts.length > 0 ? (
+				<Section icon={Package} label={`Artifacts · ${run.artifacts.length}`}>
+					<JsonBlock value={run.artifacts} />
+				</Section>
+			) : null}
+
+			{hasInputs ? (
+				<Section icon={Settings2} label="Resolved inputs">
+					<JsonBlock value={run.inputs} />
+				</Section>
+			) : null}
+		</div>
+	);
+}
+
+/**
+ * Run-level error: a readable destructive alert when a message is present,
+ * with the full structured error available behind a raw toggle.
+ */
+function RunErrorSection({ error }: { error: Record<string, unknown> }) {
+	const [rawOpen, setRawOpen] = useState(false);
+	const message = typeof error.message === "string" ? error.message : null;
+	const type = typeof error.type === "string" ? error.type : "Run failed";
+
+	return (
+		<Section icon={AlertCircle} label="Error" tone="destructive">
+			{message ? (
+				<Alert variant="destructive">
+					<AlertCircle aria-hidden />
+					<AlertTitle>{type}</AlertTitle>
+					<AlertDescription className="wrap-break-word">{message}</AlertDescription>
+				</Alert>
+			) : null}
+			<Collapsible open={rawOpen} onOpenChange={setRawOpen} className="mt-2">
+				<CollapsibleTrigger asChild>
+					<Button
+						type="button"
+						variant="ghost"
+						size="sm"
+						className="h-7 w-fit px-2 text-xs text-muted-foreground"
+						aria-expanded={rawOpen}
+					>
+						<ChevronDown
+							className={cn(
+								"transition-transform motion-reduce:transition-none",
+								rawOpen && "rotate-180"
+							)}
+							aria-hidden
+						/>
+						{rawOpen ? "Hide raw" : "View raw"}
+					</Button>
+				</CollapsibleTrigger>
+				<CollapsibleContent>
+					<ScrollArea className="mt-2 max-h-64 rounded-md bg-muted/40 px-3 py-2">
+						<JsonView src={error} collapsed={1} />
+					</ScrollArea>
+				</CollapsibleContent>
+			</Collapsible>
+		</Section>
+	);
+}
+
+function Section({
+	icon: Icon,
+	label,
+	tone = "default",
+	children,
+}: {
+	icon: typeof AlertCircle;
+	label: string;
+	tone?: "default" | "destructive";
+	children: React.ReactNode;
+}) {
+	return (
+		<div className="flex flex-col gap-1.5">
+			<div
+				className={cn(
+					"flex items-center gap-1.5 text-[11px] font-medium uppercase tracking-wider",
+					tone === "destructive" ? "text-destructive" : "text-muted-foreground"
+				)}
+			>
+				<Icon className="size-3" aria-hidden />
+				{label}
+			</div>
+			{children}
+		</div>
+	);
+}
+
+function JsonBlock({ value }: { value: unknown }) {
+	return (
+		<ScrollArea className="max-h-64 rounded-md bg-muted/40 px-3 py-2">
+			<JsonView src={value} collapsed={1} />
+		</ScrollArea>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-row.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-row.tsx
new file mode 100644
index 000000000..3f6a39c35
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-row.tsx
@@ -0,0 +1,65 @@
+"use client";
+import { ChevronDown, ChevronRight, Hand } from "lucide-react";
+import { useState } from "react";
+import type { RunSummary } from "@/contracts/types/automation.types";
+import { formatDuration } from "@/lib/automations/run-duration";
+import { formatRelativeDate } from "@/lib/format-date";
+import { RunDetailsPanel } from "./run-details-panel";
+import { RunStatusBadge } from "./run-status-badge";
+
+interface RunRowProps {
+	run: RunSummary;
+	automationId: number;
+}
+
+/**
+ * One run row. Click to expand → fetches the full run and shows the
+ * details panel inline. State is local to each row so multiple panels
+ * can be open at once (or none).
+ */
+export function RunRow({ run, automationId }: RunRowProps) {
+	const [open, setOpen] = useState(false);
+	const duration = formatDuration(run.started_at, run.finished_at);
+	const startedLabel = run.started_at
+		? formatRelativeDate(run.started_at)
+		: formatRelativeDate(run.created_at);
+
+	return (
+		<div className="rounded-md border border-border/60 overflow-hidden">
+			<button
+				type="button"
+				onClick={() => setOpen((value) => !value)}
+				className="flex w-full items-center justify-between gap-4 px-4 py-3 text-left hover:bg-muted/30 transition-colors"
+				aria-expanded={open}
+			>
+				<div className="flex items-center gap-3 min-w-0">
+					{open ? (
+						<ChevronDown className="h-4 w-4 text-muted-foreground shrink-0" aria-hidden />
+					) : (
+						<ChevronRight className="h-4 w-4 text-muted-foreground shrink-0" aria-hidden />
+					)}
+					<RunStatusBadge status={run.status} />
+					<span className="text-xs text-muted-foreground truncate">{startedLabel}</span>
+				</div>
+				<div className="flex items-center gap-3 shrink-0 text-xs text-muted-foreground">
+					{duration && <span className="font-mono">{duration}</span>}
+					<TriggerSource triggerId={run.trigger_id ?? null} />
+				</div>
+			</button>
+
+			{open && <RunDetailsPanel automationId={automationId} runId={run.id} />}
+		</div>
+	);
+}
+
+function TriggerSource({ triggerId }: { triggerId: number | null }) {
+	if (triggerId == null) {
+		return (
+			<span className="inline-flex items-center gap-1">
+				<Hand className="h-3 w-3" aria-hidden />
+				Manual
+			</span>
+		);
+	}
+	return <span>via trigger #{triggerId}</span>;
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-status-badge.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-status-badge.tsx
new file mode 100644
index 000000000..e5532a500
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-status-badge.tsx
@@ -0,0 +1,57 @@
+"use client";
+import { AlertCircle, CheckCircle2, Clock, Loader2, TimerOff, XCircle } from "lucide-react";
+import type { RunStatus } from "@/contracts/types/automation.types";
+import { cn } from "@/lib/utils";
+
+const STATUS_STYLES: Record<
+	RunStatus,
+	{ label: string; icon: typeof CheckCircle2; classes: string; spin?: boolean }
+> = {
+	pending: {
+		label: "Pending",
+		icon: Clock,
+		classes: "bg-muted text-muted-foreground border-border/60",
+	},
+	running: {
+		label: "Running",
+		icon: Loader2,
+		classes: "bg-blue-500/10 text-blue-600 border-blue-500/20",
+		spin: true,
+	},
+	succeeded: {
+		label: "Succeeded",
+		icon: CheckCircle2,
+		classes: "bg-emerald-500/10 text-emerald-600 border-emerald-500/20",
+	},
+	failed: {
+		label: "Failed",
+		icon: XCircle,
+		classes: "bg-destructive/10 text-destructive border-destructive/20",
+	},
+	cancelled: {
+		label: "Cancelled",
+		icon: AlertCircle,
+		classes: "bg-muted text-muted-foreground border-border/60",
+	},
+	timed_out: {
+		label: "Timed out",
+		icon: TimerOff,
+		classes: "bg-amber-500/10 text-amber-600 border-amber-500/20",
+	},
+};
+
+export function RunStatusBadge({ status, className }: { status: RunStatus; className?: string }) {
+	const { label, icon: Icon, classes, spin } = STATUS_STYLES[status];
+	return (
+		<span
+			className={cn(
+				"inline-flex items-center gap-1.5 rounded-md border px-2 py-0.5 text-xs font-medium",
+				classes,
+				className
+			)}
+		>
+			<Icon className={cn("h-3 w-3", spin && "animate-spin")} aria-hidden />
+			{label}
+		</span>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-step-result-card.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-step-result-card.tsx
new file mode 100644
index 000000000..eef572300
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/run-step-result-card.tsx
@@ -0,0 +1,123 @@
+"use client";
+import { CheckCircle2, ChevronDown, MinusCircle, XCircle } from "lucide-react";
+import { memo, useState } from "react";
+import { JsonView } from "@/components/json-view";
+import { MarkdownViewer } from "@/components/markdown-viewer";
+import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
+import { Badge } from "@/components/ui/badge";
+import { Button } from "@/components/ui/button";
+import { Card, CardContent, CardHeader } from "@/components/ui/card";
+import { Collapsible, CollapsibleContent, CollapsibleTrigger } from "@/components/ui/collapsible";
+import { ScrollArea } from "@/components/ui/scroll-area";
+import type { RunStepResult } from "@/contracts/types/automation.types";
+import { formatDuration } from "@/lib/automations/run-duration";
+import { cn } from "@/lib/utils";
+
+type BadgeVariant = React.ComponentProps<typeof Badge>["variant"];
+
+const STATUS_BADGE: Record<
+	string,
+	{ label: string; variant: BadgeVariant; icon: typeof CheckCircle2 }
+> = {
+	succeeded: { label: "Succeeded", variant: "outline", icon: CheckCircle2 },
+	failed: { label: "Failed", variant: "destructive", icon: XCircle },
+	skipped: { label: "Skipped", variant: "secondary", icon: MinusCircle },
+};
+
+function StepStatusBadge({ status }: { status: string }) {
+	const meta = STATUS_BADGE[status] ?? {
+		label: status,
+		variant: "outline" as const,
+		icon: MinusCircle,
+	};
+	const Icon = meta.icon;
+	return (
+		<Badge variant={meta.variant} className="shrink-0">
+			<Icon aria-hidden />
+			{meta.label}
+		</Badge>
+	);
+}
+
+/**
+ * One step from a run's ``step_results``. Surfaces the agent's markdown
+ * ``final_message`` first-class (rendered, not raw), shows step errors as a
+ * readable alert, and keeps the full structured payload behind a "View raw"
+ * collapsible escape hatch.
+ */
+export const RunStepResultCard = memo(function RunStepResultCard({
+	step,
+}: {
+	step: RunStepResult;
+}) {
+	const [rawOpen, setRawOpen] = useState(false);
+
+	const duration = formatDuration(step.started_at, step.finished_at);
+	const attempts = step.attempts ?? 0;
+	const finalMessage =
+		typeof step.result?.final_message === "string" ? step.result.final_message : null;
+	const errorMessage = step.error?.message;
+	const hasMeta = Boolean(duration) || attempts > 1;
+
+	return (
+		<Card className="border-border/60 shadow-none">
+			<CardHeader className="gap-2 space-y-0 p-3">
+				<div className="flex items-center justify-between gap-3">
+					<div className="flex min-w-0 items-center gap-2">
+						<span className="truncate font-mono text-xs font-medium">{step.action}</span>
+						<span className="truncate text-xs text-muted-foreground">{step.step_id}</span>
+					</div>
+					<StepStatusBadge status={step.status} />
+				</div>
+				{hasMeta ? (
+					<div className="flex items-center gap-3 text-[11px] text-muted-foreground tabular-nums">
+						{duration ? <span>{duration}</span> : null}
+						{attempts > 1 ? <span>{attempts} attempts</span> : null}
+					</div>
+				) : null}
+			</CardHeader>
+
+			<CardContent className="flex flex-col gap-3 p-3 pt-0">
+				{errorMessage ? (
+					<Alert variant="destructive">
+						<XCircle aria-hidden />
+						<AlertTitle>{step.error?.type ?? "Error"}</AlertTitle>
+						<AlertDescription className="wrap-break-word">{errorMessage}</AlertDescription>
+					</Alert>
+				) : null}
+
+				{finalMessage ? (
+					<div className="min-w-0 wrap-break-word rounded-md border border-border/60 bg-background px-3 py-2">
+						<MarkdownViewer content={finalMessage} />
+					</div>
+				) : null}
+
+				<Collapsible open={rawOpen} onOpenChange={setRawOpen}>
+					<CollapsibleTrigger asChild>
+						<Button
+							type="button"
+							variant="ghost"
+							size="sm"
+							className="h-7 w-fit px-2 text-xs text-muted-foreground"
+							aria-expanded={rawOpen}
+						>
+							<ChevronDown
+								className={cn(
+									"transition-transform motion-reduce:transition-none",
+									rawOpen && "rotate-180"
+								)}
+								aria-hidden
+							/>
+							{rawOpen ? "Hide raw" : "View raw"}
+						</Button>
+					</CollapsibleTrigger>
+					<CollapsibleContent>
+						<ScrollArea className="mt-2 max-h-64 rounded-md bg-muted/40 px-3 py-2">
+							<JsonView src={step} collapsed={1} />
+						</ScrollArea>
+					</CollapsibleContent>
+				</Collapsible>
+			</CardContent>
+		</Card>
+	);
+});
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/runs-loading.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/runs-loading.tsx
new file mode 100644
index 000000000..61ce25e32
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/runs-loading.tsx
@@ -0,0 +1,23 @@
+"use client";
+import { Skeleton } from "@/components/ui/skeleton";
+
+const ROW_KEYS = ["a", "b", "c"] as const;
+
+export function RunsLoading() {
+	return (
+		<div className="space-y-2">
+			{ROW_KEYS.map((key) => (
+				<div
+					key={key}
+					className="flex items-center justify-between gap-4 rounded-md border border-border/60 px-4 py-3"
+				>
+					<div className="flex items-center gap-3">
+						<Skeleton className="h-5 w-20 rounded-md" />
+						<Skeleton className="h-3 w-32" />
+					</div>
+					<Skeleton className="h-3 w-16" />
+				</div>
+			))}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/trigger-card.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/trigger-card.tsx
new file mode 100644
index 000000000..681877523
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/components/trigger-card.tsx
@@ -0,0 +1,274 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { AlertCircle, CalendarClock, Clock, Pencil, Save, Trash2 } from "lucide-react";
+import { useState } from "react";
+import { updateTriggerMutationAtom } from "@/atoms/automations/automations-mutation.atoms";
+import { JsonView } from "@/components/json-view";
+import { Button } from "@/components/ui/button";
+import { Spinner } from "@/components/ui/spinner";
+import { Switch } from "@/components/ui/switch";
+import { type Trigger, triggerUpdateRequest } from "@/contracts/types/automation.types";
+import { describeCron } from "@/lib/automations/describe-cron";
+import { formatRelativeDate, formatRelativeFutureDate } from "@/lib/format-date";
+import { DeleteTriggerDialog } from "./delete-trigger-dialog";
+
+interface TriggerCardProps {
+	trigger: Trigger;
+	automationId: number;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+interface TriggerDraft {
+	params: Record<string, unknown>;
+	static_inputs: Record<string, unknown>;
+}
+
+function draftFromTrigger(trigger: Trigger): TriggerDraft {
+	return {
+		params: trigger.params,
+		static_inputs: trigger.static_inputs ?? {},
+	};
+}
+
+/**
+ * One trigger row in the Triggers section of the detail page. Renders:
+ *   - type icon + human-readable schedule + timezone
+ *   - last_fired_at / next_fire_at hints
+ *   - static_inputs as formatted JSON (when present)
+ *   - enable toggle + remove button + inline edit (each gated independently)
+ *
+ * Inline edit covers ``params`` and ``static_inputs`` — the two fields the
+ * backend ``PATCH /triggers/[id]`` endpoint accepts beyond ``enabled``.
+ * ``enabled`` stays on the Switch so the two surfaces don't fight.
+ */
+export function TriggerCard({ trigger, automationId, canUpdate, canDelete }: TriggerCardProps) {
+	const { mutateAsync: updateTrigger, isPending: updating } =
+		useAtomValue(updateTriggerMutationAtom);
+	const [deleteOpen, setDeleteOpen] = useState(false);
+	const [isEditing, setIsEditing] = useState(false);
+	const [draft, setDraft] = useState<TriggerDraft>(() => draftFromTrigger(trigger));
+	const [issues, setIssues] = useState<string[]>([]);
+
+	const cron = typeof trigger.params.cron === "string" ? trigger.params.cron : undefined;
+	const tz = typeof trigger.params.timezone === "string" ? trigger.params.timezone : "UTC";
+	const human = cron ? describeCron(cron) : trigger.type;
+	const triggerLabel = cron ? `${human} · ${tz}` : trigger.type;
+	const hasStaticInputs = Object.keys(trigger.static_inputs ?? {}).length > 0;
+
+	async function handleToggle(checked: boolean) {
+		await updateTrigger({
+			automationId,
+			triggerId: trigger.id,
+			patch: { enabled: checked },
+		});
+	}
+
+	function startEdit() {
+		setDraft(draftFromTrigger(trigger));
+		setIssues([]);
+		setIsEditing(true);
+	}
+
+	function cancelEdit() {
+		setIsEditing(false);
+		setIssues([]);
+	}
+
+	async function saveEdit() {
+		setIssues([]);
+		const result = triggerUpdateRequest.safeParse(draft);
+		if (!result.success) {
+			setIssues(
+				result.error.issues.map((issue) => `${issue.path.join(".") || "(root)"}: ${issue.message}`)
+			);
+			return;
+		}
+		try {
+			await updateTrigger({
+				automationId,
+				triggerId: trigger.id,
+				patch: result.data,
+			});
+			setIsEditing(false);
+		} catch (err) {
+			setIssues([(err as Error).message ?? "Update failed"]);
+		}
+	}
+
+	return (
+		<>
+			<div className="rounded-md border border-border/60 overflow-hidden">
+				<div className="flex items-center justify-between gap-4 px-4 py-3 border-b border-border/60">
+					<div className="flex items-center gap-3 min-w-0">
+						<CalendarClock className="h-4 w-4 text-muted-foreground shrink-0" aria-hidden />
+						<div className="min-w-0">
+							<div className="flex items-center gap-2 text-sm">
+								<span className="font-medium text-foreground">{human}</span>
+								<span className="text-muted-foreground">· {tz}</span>
+							</div>
+							{cron && <code className="text-xs font-mono text-muted-foreground">{cron}</code>}
+						</div>
+					</div>
+
+					<div className="flex items-center gap-2 shrink-0">
+						{canUpdate && (
+							<div className="flex items-center gap-2">
+								<span className="text-xs text-muted-foreground">
+									{trigger.enabled ? "Enabled" : "Off"}
+								</span>
+								<Switch
+									checked={trigger.enabled}
+									onCheckedChange={handleToggle}
+									disabled={updating || isEditing}
+									aria-label={trigger.enabled ? "Disable trigger" : "Enable trigger"}
+								/>
+							</div>
+						)}
+						{canUpdate && !isEditing && (
+							<Button
+								variant="ghost"
+								size="icon"
+								className="h-8 w-8 text-muted-foreground"
+								onClick={startEdit}
+								aria-label="Edit trigger"
+							>
+								<Pencil className="h-4 w-4" />
+							</Button>
+						)}
+						{canDelete && (
+							<Button
+								variant="ghost"
+								size="icon"
+								className="h-8 w-8 text-muted-foreground hover:text-destructive"
+								onClick={() => setDeleteOpen(true)}
+								disabled={isEditing}
+								aria-label="Remove trigger"
+							>
+								<Trash2 className="h-4 w-4" />
+							</Button>
+						)}
+					</div>
+				</div>
+
+				<div className="px-4 py-3 space-y-3 text-xs">
+					{isEditing ? (
+						<>
+							<div className="rounded-md border border-input bg-background px-3 py-2 max-h-[24rem] overflow-auto">
+								<JsonView
+									src={draft}
+									editable
+									onChange={(next) => setDraft(next as TriggerDraft)}
+									collapsed={false}
+								/>
+							</div>
+
+							{issues.length > 0 && (
+								<div className="rounded-md border border-destructive/40 bg-destructive/5 px-3 py-2">
+									<div className="flex items-center gap-1.5 font-medium text-destructive mb-1">
+										<AlertCircle className="h-3 w-3" aria-hidden />
+										{issues.length === 1 ? "1 issue" : `${issues.length} issues`}
+									</div>
+									<ul className="space-y-0.5 text-destructive list-disc list-inside">
+										{issues.map((issue) => (
+											<li key={issue}>{issue}</li>
+										))}
+									</ul>
+								</div>
+							)}
+
+							<div className="flex items-center justify-end gap-2">
+								<Button
+									type="button"
+									variant="ghost"
+									size="sm"
+									onClick={cancelEdit}
+									disabled={updating}
+								>
+									Cancel
+								</Button>
+								<Button type="button" size="sm" onClick={saveEdit} disabled={updating}>
+									{updating ? (
+										<Spinner size="xs" className="mr-1.5" />
+									) : (
+										<Save className="mr-1.5 h-3.5 w-3.5" />
+									)}
+									Save
+								</Button>
+							</div>
+						</>
+					) : (
+						<>
+							{(trigger.last_fired_at || trigger.next_fire_at) && (
+								<dl className="grid grid-cols-[auto_minmax(0,1fr)] items-baseline gap-x-3 gap-y-1">
+									{trigger.next_fire_at && (
+										<TimeRow
+											label="Next fire"
+											iso={trigger.next_fire_at}
+											tense="future"
+											highlight={trigger.enabled}
+										/>
+									)}
+									{trigger.last_fired_at && (
+										<TimeRow label="Last fired" iso={trigger.last_fired_at} tense="past" />
+									)}
+								</dl>
+							)}
+
+							{hasStaticInputs && (
+								<div>
+									<div className="text-muted-foreground mb-1">Static inputs</div>
+									<div className="rounded-md bg-muted/40 px-3 py-2 overflow-auto">
+										<JsonView src={trigger.static_inputs} collapsed={1} />
+									</div>
+								</div>
+							)}
+						</>
+					)}
+				</div>
+			</div>
+
+			{canDelete && (
+				<DeleteTriggerDialog
+					open={deleteOpen}
+					onOpenChange={setDeleteOpen}
+					automationId={automationId}
+					triggerId={trigger.id}
+					triggerLabel={triggerLabel}
+				/>
+			)}
+		</>
+	);
+}
+
+function TimeRow({
+	label,
+	iso,
+	tense,
+	highlight = false,
+}: {
+	label: string;
+	iso: string;
+	tense: "past" | "future";
+	highlight?: boolean;
+}) {
+	const formatted = tense === "future" ? formatRelativeFutureDate(iso) : formatRelativeDate(iso);
+	return (
+		<>
+			<dt className="text-muted-foreground inline-flex items-center gap-1.5 whitespace-nowrap">
+				<Clock className="h-3 w-3" aria-hidden />
+				{label}
+			</dt>
+			<dd
+				className={
+					highlight
+						? "text-foreground font-medium min-w-0 truncate"
+						: "text-muted-foreground min-w-0 truncate"
+				}
+				title={new Date(iso).toLocaleString()}
+			>
+				{formatted}
+			</dd>
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/automation-edit-content.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/automation-edit-content.tsx
new file mode 100644
index 000000000..2c9db217d
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/automation-edit-content.tsx
@@ -0,0 +1,59 @@
+"use client";
+import { ShieldAlert } from "lucide-react";
+import { useAutomation } from "@/hooks/use-automation";
+import { AutomationBuilderForm } from "../../components/builder/automation-builder-form";
+import { useAutomationPermissions } from "../../hooks/use-automation-permissions";
+import { AutomationDetailLoading } from "../components/automation-detail-loading";
+import { AutomationNotFound } from "../components/automation-not-found";
+import { AutomationEditHeader } from "./components/automation-edit-header";
+
+interface AutomationEditContentProps {
+	searchSpaceId: number;
+	automationId: number;
+}
+
+/**
+ * Client orchestrator for the edit route. Mirrors detail-content's branch
+ * structure but gates on ``canUpdate`` instead of ``canRead``: a user who
+ * can read but not update is bounced to the access-denied panel.
+ */
+export function AutomationEditContent({ searchSpaceId, automationId }: AutomationEditContentProps) {
+	const perms = useAutomationPermissions();
+	const validId = Number.isInteger(automationId) && automationId > 0;
+	const { data: automation, isLoading, error } = useAutomation(validId ? automationId : undefined);
+
+	if (perms.loading) {
+		return <AutomationDetailLoading />;
+	}
+
+	if (!perms.canUpdate) {
+		return (
+			<div className="rounded-lg border border-border/60 bg-muted/20 px-6 py-12 text-center">
+				<ShieldAlert className="mx-auto h-10 w-10 text-muted-foreground" aria-hidden />
+				<h2 className="mt-3 text-base font-semibold text-foreground">Access denied</h2>
+				<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+					You don't have permission to edit automations in this search space.
+				</p>
+			</div>
+		);
+	}
+
+	if (!validId) {
+		return <AutomationNotFound searchSpaceId={searchSpaceId} />;
+	}
+
+	if (isLoading) {
+		return <AutomationDetailLoading />;
+	}
+
+	if (error || !automation) {
+		return <AutomationNotFound searchSpaceId={searchSpaceId} error={error} />;
+	}
+
+	return (
+		<>
+			<AutomationEditHeader automation={automation} searchSpaceId={searchSpaceId} />
+			<AutomationBuilderForm mode="edit" searchSpaceId={searchSpaceId} automation={automation} />
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/components/automation-edit-header.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/components/automation-edit-header.tsx
new file mode 100644
index 000000000..6b2a31822
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/components/automation-edit-header.tsx
@@ -0,0 +1,31 @@
+"use client";
+import { ArrowLeft } from "lucide-react";
+import Link from "next/link";
+import { Button } from "@/components/ui/button";
+import type { Automation } from "@/contracts/types/automation.types";
+
+interface AutomationEditHeaderProps {
+	automation: Automation;
+	searchSpaceId: number;
+}
+
+export function AutomationEditHeader({ automation, searchSpaceId }: AutomationEditHeaderProps) {
+	const detailHref = `/dashboard/${searchSpaceId}/automations/${automation.id}`;
+
+	return (
+		<div className="space-y-3">
+			<Button asChild variant="ghost" size="sm" className="-ml-2 h-auto px-2 py-1">
+				<Link href={detailHref} className="text-xs text-muted-foreground">
+					<ArrowLeft className="mr-1.5 h-3.5 w-3.5" />
+					Back to automation
+				</Link>
+			</Button>
+			<div>
+				<h1 className="text-xl md:text-2xl font-semibold text-foreground wrap-break-word">
+					Edit automation
+				</h1>
+				<p className="text-sm text-muted-foreground mt-1">{automation.name}</p>
+			</div>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/page.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/page.tsx
new file mode 100644
index 000000000..8477b9e12
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/edit/page.tsx
@@ -0,0 +1,18 @@
+import { AutomationEditContent } from "./automation-edit-content";
+
+export default async function AutomationEditPage({
+	params,
+}: {
+	params: Promise<{ search_space_id: string; automation_id: string }>;
+}) {
+	const { search_space_id, automation_id } = await params;
+
+	return (
+		<div className="w-full space-y-6">
+			<AutomationEditContent
+				searchSpaceId={Number(search_space_id)}
+				automationId={Number(automation_id)}
+			/>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/page.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/page.tsx
new file mode 100644
index 000000000..dbaceecdd
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/[automation_id]/page.tsx
@@ -0,0 +1,18 @@
+import { AutomationDetailContent } from "./automation-detail-content";
+
+export default async function AutomationDetailPage({
+	params,
+}: {
+	params: Promise<{ search_space_id: string; automation_id: string }>;
+}) {
+	const { search_space_id, automation_id } = await params;
+
+	return (
+		<div className="w-full space-y-6">
+			<AutomationDetailContent
+				searchSpaceId={Number(search_space_id)}
+				automationId={Number(automation_id)}
+			/>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/automations-content.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/automations-content.tsx
new file mode 100644
index 000000000..756221d38
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/automations-content.tsx
@@ -0,0 +1,102 @@
+"use client";
+import { ShieldAlert } from "lucide-react";
+import { useAutomations } from "@/hooks/use-automations";
+import { AutomationsEmptyState } from "./components/automations-empty-state";
+import { AutomationsHeader } from "./components/automations-header";
+import { AutomationsTable } from "./components/automations-table";
+import { useAutomationPermissions } from "./hooks/use-automation-permissions";
+
+interface AutomationsContentProps {
+	searchSpaceId: number;
+}
+
+/**
+ * Client orchestrator for the automations list page. Pulls the active
+ * search space's first page (via ``useAutomations`` → ``automationsListAtom``)
+ * and the user's permissions, then decides between empty / loading / table.
+ *
+ * Read access is mandatory; anything else is hidden behind RBAC. The
+ * permissions hook is co-located in this slice so adding/removing
+ * surfaces is a one-file change.
+ */
+export function AutomationsContent({ searchSpaceId }: AutomationsContentProps) {
+	const { automations, total, loading, error } = useAutomations();
+	const perms = useAutomationPermissions();
+
+	if (perms.loading) {
+		// Permissions gate the entire page; defer everything until we know.
+		return (
+			<>
+				<AutomationsHeader searchSpaceId={searchSpaceId} total={0} loading canCreate={false} />
+				<AutomationsTable
+					automations={[]}
+					searchSpaceId={searchSpaceId}
+					loading
+					canUpdate={false}
+					canDelete={false}
+				/>
+			</>
+		);
+	}
+
+	if (!perms.canRead) {
+		return (
+			<div className="rounded-lg border border-border/60 bg-muted/20 px-6 py-12 text-center">
+				<ShieldAlert className="mx-auto h-10 w-10 text-muted-foreground" aria-hidden />
+				<h2 className="mt-3 text-base font-semibold text-foreground">Access denied</h2>
+				<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+					You don't have permission to view automations in this search space.
+				</p>
+			</div>
+		);
+	}
+
+	if (error) {
+		return (
+			<>
+				<AutomationsHeader
+					searchSpaceId={searchSpaceId}
+					total={0}
+					loading={false}
+					canCreate={perms.canCreate}
+				/>
+				<div className="rounded-lg border border-destructive/40 bg-destructive/5 px-6 py-8 text-center">
+					<p className="text-sm text-destructive">Couldn't load automations. {error.message}</p>
+				</div>
+			</>
+		);
+	}
+
+	if (!loading && automations.length === 0) {
+		return (
+			<>
+				<AutomationsHeader
+					searchSpaceId={searchSpaceId}
+					total={0}
+					loading={false}
+					canCreate={perms.canCreate}
+					showCreateCta={false}
+				/>
+				<AutomationsEmptyState searchSpaceId={searchSpaceId} canCreate={perms.canCreate} />
+			</>
+		);
+	}
+
+	return (
+		<>
+			<AutomationsHeader
+				searchSpaceId={searchSpaceId}
+				total={total}
+				loading={loading}
+				canCreate={perms.canCreate}
+			/>
+			<AutomationsTable
+				automations={automations}
+				searchSpaceId={searchSpaceId}
+				loading={loading}
+				canUpdate={perms.canUpdate}
+				canDelete={perms.canDelete}
+			/>
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row-actions.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row-actions.tsx
new file mode 100644
index 000000000..229a417dc
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row-actions.tsx
@@ -0,0 +1,98 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { MoreHorizontal, Pause, Play, Trash2 } from "lucide-react";
+import { useState } from "react";
+import { updateAutomationMutationAtom } from "@/atoms/automations/automations-mutation.atoms";
+import { Button } from "@/components/ui/button";
+import {
+	DropdownMenu,
+	DropdownMenuContent,
+	DropdownMenuItem,
+	DropdownMenuSeparator,
+	DropdownMenuTrigger,
+} from "@/components/ui/dropdown-menu";
+import type { AutomationSummary } from "@/contracts/types/automation.types";
+import { DeleteAutomationDialog } from "./delete-automation-dialog";
+
+interface AutomationRowActionsProps {
+	automation: AutomationSummary;
+	searchSpaceId: number;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+/**
+ * Three-dot menu on each row: pause/resume (if updatable) and delete
+ * (if deletable). The menu itself is hidden when the user has neither
+ * permission so we don't render an empty trigger.
+ */
+export function AutomationRowActions({
+	automation,
+	searchSpaceId,
+	canUpdate,
+	canDelete,
+}: AutomationRowActionsProps) {
+	const { mutateAsync: updateAutomation, isPending: updating } = useAtomValue(
+		updateAutomationMutationAtom
+	);
+	const [deleteOpen, setDeleteOpen] = useState(false);
+
+	if (!canUpdate && !canDelete) return null;
+
+	const nextStatus = automation.status === "active" ? "paused" : "active";
+	const pauseLabel = automation.status === "active" ? "Pause" : "Resume";
+	const PauseIcon = automation.status === "active" ? Pause : Play;
+	const canToggle = canUpdate && automation.status !== "archived";
+
+	async function handleTogglePause() {
+		await updateAutomation({
+			automationId: automation.id,
+			patch: { status: nextStatus },
+		});
+	}
+
+	return (
+		<>
+			<DropdownMenu>
+				<DropdownMenuTrigger asChild>
+					<Button
+						variant="ghost"
+						size="icon"
+						className="h-8 w-8"
+						aria-label={`Actions for ${automation.name}`}
+					>
+						<MoreHorizontal className="h-4 w-4" />
+					</Button>
+				</DropdownMenuTrigger>
+				<DropdownMenuContent align="end" className="w-40">
+					{canToggle && (
+						<DropdownMenuItem onSelect={handleTogglePause} disabled={updating}>
+							<PauseIcon className="mr-2 h-4 w-4" />
+							{pauseLabel}
+						</DropdownMenuItem>
+					)}
+					{canToggle && canDelete && <DropdownMenuSeparator />}
+					{canDelete && (
+						<DropdownMenuItem
+							onSelect={() => setDeleteOpen(true)}
+							className="text-destructive focus:text-destructive"
+						>
+							<Trash2 className="mr-2 h-4 w-4" />
+							Delete
+						</DropdownMenuItem>
+					)}
+				</DropdownMenuContent>
+			</DropdownMenu>
+
+			{canDelete && (
+				<DeleteAutomationDialog
+					open={deleteOpen}
+					onOpenChange={setDeleteOpen}
+					automationId={automation.id}
+					automationName={automation.name}
+					searchSpaceId={searchSpaceId}
+				/>
+			)}
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row.tsx
new file mode 100644
index 000000000..a59fb4527
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-row.tsx
@@ -0,0 +1,61 @@
+"use client";
+import Link from "next/link";
+import { TableCell, TableRow } from "@/components/ui/table";
+import type { AutomationSummary } from "@/contracts/types/automation.types";
+import { formatRelativeDate } from "@/lib/format-date";
+import { AutomationRowActions } from "./automation-row-actions";
+import { AutomationStatusBadge } from "./automation-status-badge";
+
+interface AutomationRowProps {
+	automation: AutomationSummary;
+	searchSpaceId: number;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+/**
+ * One row in the automations table. The name links to the detail page;
+ * actions are gated by ``canUpdate`` / ``canDelete``. Trigger summary
+ * is intentionally left to the detail page — list responses don't
+ * include triggers and we want to avoid N+1 detail fetches.
+ */
+export function AutomationRow({
+	automation,
+	searchSpaceId,
+	canUpdate,
+	canDelete,
+}: AutomationRowProps) {
+	return (
+		<TableRow className="border-b border-border/60 hover:bg-muted/40">
+			<TableCell className="px-4 md:px-6 py-3 border-r border-border/60">
+				<div className="flex flex-col gap-0.5 min-w-0">
+					<Link
+						href={`/dashboard/${searchSpaceId}/automations/${automation.id}`}
+						className="text-sm font-medium text-foreground hover:underline truncate"
+					>
+						{automation.name}
+					</Link>
+					{automation.description && (
+						<span className="text-xs text-muted-foreground line-clamp-1">
+							{automation.description}
+						</span>
+					)}
+				</div>
+			</TableCell>
+			<TableCell className="px-4 py-3 border-r border-border/60 w-32">
+				<AutomationStatusBadge status={automation.status} />
+			</TableCell>
+			<TableCell className="hidden md:table-cell px-4 py-3 border-r border-border/60 w-40 text-xs text-muted-foreground">
+				{formatRelativeDate(automation.updated_at)}
+			</TableCell>
+			<TableCell className="px-4 md:px-6 py-3 w-16 text-right">
+				<AutomationRowActions
+					automation={automation}
+					searchSpaceId={searchSpaceId}
+					canUpdate={canUpdate}
+					canDelete={canDelete}
+				/>
+			</TableCell>
+		</TableRow>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-status-badge.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-status-badge.tsx
new file mode 100644
index 000000000..ecf171e78
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-status-badge.tsx
@@ -0,0 +1,49 @@
+"use client";
+import { Archive, CircleDot, Pause } from "lucide-react";
+import type { AutomationStatus } from "@/contracts/types/automation.types";
+import { cn } from "@/lib/utils";
+
+interface AutomationStatusBadgeProps {
+	status: AutomationStatus;
+	className?: string;
+}
+
+// Color + icon per status. Active = green, paused = amber, archived = muted.
+const STATUS_STYLES: Record<
+	AutomationStatus,
+	{ label: string; icon: typeof CircleDot; classes: string }
+> = {
+	active: {
+		label: "Active",
+		icon: CircleDot,
+		classes:
+			"bg-emerald-50 text-emerald-700 border border-emerald-200 dark:bg-emerald-950/40 dark:text-emerald-300 dark:border-emerald-900/50",
+	},
+	paused: {
+		label: "Paused",
+		icon: Pause,
+		classes:
+			"bg-amber-50 text-amber-700 border border-amber-200 dark:bg-amber-950/40 dark:text-amber-300 dark:border-amber-900/50",
+	},
+	archived: {
+		label: "Archived",
+		icon: Archive,
+		classes: "bg-muted text-muted-foreground border border-border/60",
+	},
+};
+
+export function AutomationStatusBadge({ status, className }: AutomationStatusBadgeProps) {
+	const { label, icon: Icon, classes } = STATUS_STYLES[status];
+	return (
+		<span
+			className={cn(
+				"inline-flex items-center gap-1.5 rounded-md px-2 py-0.5 text-xs font-medium",
+				classes,
+				className
+			)}
+		>
+			<Icon className="h-3 w-3" aria-hidden />
+			{label}
+		</span>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-triggers-summary.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-triggers-summary.tsx
new file mode 100644
index 000000000..270a1f844
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automation-triggers-summary.tsx
@@ -0,0 +1,52 @@
+"use client";
+import { CalendarClock, Pause } from "lucide-react";
+import type { Trigger } from "@/contracts/types/automation.types";
+import { describeCron } from "@/lib/automations/describe-cron";
+
+interface AutomationTriggersSummaryProps {
+	triggers: Trigger[];
+}
+
+/**
+ * One-line summary of an automation's triggers for the list view.
+ *
+ * v1 only registers ``schedule`` so this stays compact:
+ *   - 0 triggers → "No triggers"
+ *   - 1 schedule trigger → "Mon–Fri at 09:00 · UTC" + disabled badge if off
+ *   - >1 → "N triggers"
+ *
+ * The detail page renders the full per-trigger editor.
+ */
+export function AutomationTriggersSummary({ triggers }: AutomationTriggersSummaryProps) {
+	if (triggers.length === 0) {
+		return <span className="text-xs text-muted-foreground">No triggers</span>;
+	}
+
+	if (triggers.length > 1) {
+		return <span className="text-xs text-muted-foreground">{triggers.length} triggers</span>;
+	}
+
+	const [trigger] = triggers;
+
+	if (trigger.type === "schedule") {
+		const cron = typeof trigger.params.cron === "string" ? trigger.params.cron : undefined;
+		const tz = typeof trigger.params.timezone === "string" ? trigger.params.timezone : "UTC";
+		const human = cron ? describeCron(cron) : "Schedule";
+
+		return (
+			<span className="inline-flex items-center gap-1.5 text-xs">
+				<CalendarClock className="h-3.5 w-3.5 text-muted-foreground" aria-hidden />
+				<span className="text-foreground">{human}</span>
+				<span className="text-muted-foreground">· {tz}</span>
+				{!trigger.enabled && (
+					<span className="inline-flex items-center gap-1 rounded-md border border-border/60 px-1.5 py-0.5 text-[10px] font-medium text-muted-foreground">
+						<Pause className="h-2.5 w-2.5" aria-hidden />
+						Off
+					</span>
+				)}
+			</span>
+		);
+	}
+
+	return <span className="text-xs text-muted-foreground capitalize">{trigger.type}</span>;
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-empty-state.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-empty-state.tsx
new file mode 100644
index 000000000..cc54c5e94
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-empty-state.tsx
@@ -0,0 +1,50 @@
+"use client";
+import { MessageSquarePlus, SquarePen, Workflow } from "lucide-react";
+import Link from "next/link";
+import { Button } from "@/components/ui/button";
+
+interface AutomationsEmptyStateProps {
+	searchSpaceId: number;
+	canCreate: boolean;
+}
+
+/**
+ * Zero-state for the automations list. The primary CTA points to a new
+ * chat — creation happens via the ``create_automation`` HITL tool, not a
+ * "new automation" form. We surface the chat path explicitly so users
+ * don't go hunting for an "add" button that doesn't exist.
+ */
+export function AutomationsEmptyState({ searchSpaceId, canCreate }: AutomationsEmptyStateProps) {
+	return (
+		<div className="rounded-lg border border-dashed border-border/60 bg-muted/20 px-6 py-12 text-center">
+			<div className="mx-auto flex h-12 w-12 items-center justify-center rounded-full bg-muted text-muted-foreground">
+				<Workflow className="h-6 w-6" aria-hidden />
+			</div>
+			<h3 className="mt-4 text-base font-semibold text-foreground">No automations yet</h3>
+			<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+				Automations let SurfSense run agent tasks on a schedule. Describe what you want in chat and
+				SurfSense drafts the automation for your approval.
+			</p>
+			{canCreate ? (
+				<div className="mt-6 flex items-center justify-center gap-2 flex-wrap">
+					<Button asChild>
+						<Link href={`/dashboard/${searchSpaceId}/new-chat`}>
+							<MessageSquarePlus className="mr-2 h-4 w-4" />
+							Create via chat
+						</Link>
+					</Button>
+					<Button asChild variant="outline">
+						<Link href={`/dashboard/${searchSpaceId}/automations/new`}>
+							<SquarePen className="mr-2 h-4 w-4" />
+							Create manually
+						</Link>
+					</Button>
+				</div>
+			) : (
+				<p className="mt-6 text-xs text-muted-foreground">
+					You don't have permission to create automations in this search space.
+				</p>
+			)}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-header.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-header.tsx
new file mode 100644
index 000000000..137727f60
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-header.tsx
@@ -0,0 +1,60 @@
+"use client";
+import { MessageSquarePlus, SquarePen } from "lucide-react";
+import Link from "next/link";
+import { Button } from "@/components/ui/button";
+
+interface AutomationsHeaderProps {
+	searchSpaceId: number;
+	total: number;
+	loading: boolean;
+	canCreate: boolean;
+	/**
+	 * Render the header's Create CTA. Defaults to true; the empty state owns
+	 * the primary CTA on its own card, so the orchestrator turns this off
+	 * there to avoid a duplicate button.
+	 */
+	showCreateCta?: boolean;
+}
+
+/**
+ * Page header: title + count + "Create via chat" CTA. Creation is intent-driven
+ * (the create_automation tool runs inside chat with a HITL approval card), so
+ * the CTA links to a new chat rather than opening a form. Model eligibility is
+ * handled per-automation in the builder + approval card, not gated here.
+ */
+export function AutomationsHeader({
+	searchSpaceId,
+	total,
+	loading,
+	canCreate,
+	showCreateCta = true,
+}: AutomationsHeaderProps) {
+	return (
+		<div className="flex items-center justify-between gap-4 flex-wrap">
+			<div className="flex items-baseline gap-3">
+				<h1 className="text-xl md:text-2xl font-semibold text-foreground">Automations</h1>
+				{!loading && (
+					<span className="text-sm text-muted-foreground">
+						{total} {total === 1 ? "automation" : "automations"}
+					</span>
+				)}
+			</div>
+			{canCreate && showCreateCta && (
+				<div className="flex items-center gap-2">
+					<Button asChild size="sm" variant="outline">
+						<Link href={`/dashboard/${searchSpaceId}/automations/new`}>
+							<SquarePen className="mr-2 h-4 w-4" />
+							Create manually
+						</Link>
+					</Button>
+					<Button asChild size="sm">
+						<Link href={`/dashboard/${searchSpaceId}/new-chat`}>
+							<MessageSquarePlus className="mr-2 h-4 w-4" />
+							Create via chat
+						</Link>
+					</Button>
+				</div>
+			)}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-loading.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-loading.tsx
new file mode 100644
index 000000000..1156be3f6
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-loading.tsx
@@ -0,0 +1,36 @@
+"use client";
+import { Skeleton } from "@/components/ui/skeleton";
+import { TableCell, TableRow } from "@/components/ui/table";
+
+const ROW_KEYS = ["sk-1", "sk-2", "sk-3"];
+
+/**
+ * Skeleton rows for the automations table. Number of rows is fixed since
+ * we don't know the count ahead of time and three placeholders is enough
+ * to communicate "loading" without flashing too much chrome.
+ */
+export function AutomationsLoadingRows() {
+	return (
+		<>
+			{ROW_KEYS.map((key) => (
+				<TableRow key={key} className="border-b border-border/60 hover:bg-transparent">
+					<TableCell className="px-4 md:px-6 py-3 border-r border-border/60">
+						<div className="flex flex-col gap-1.5">
+							<Skeleton className="h-4 w-40" />
+							<Skeleton className="h-3 w-56" />
+						</div>
+					</TableCell>
+					<TableCell className="px-4 py-3 border-r border-border/60 w-32">
+						<Skeleton className="h-5 w-16 rounded-md" />
+					</TableCell>
+					<TableCell className="hidden md:table-cell px-4 py-3 border-r border-border/60 w-40">
+						<Skeleton className="h-3 w-20" />
+					</TableCell>
+					<TableCell className="px-4 md:px-6 py-3 w-16">
+						<Skeleton className="h-8 w-8 rounded-md ml-auto" />
+					</TableCell>
+				</TableRow>
+			))}
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-table.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-table.tsx
new file mode 100644
index 000000000..ec3aeeef5
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/automations-table.tsx
@@ -0,0 +1,73 @@
+"use client";
+import { Activity, CalendarDays, Workflow } from "lucide-react";
+import { Table, TableBody, TableHead, TableHeader, TableRow } from "@/components/ui/table";
+import type { AutomationSummary } from "@/contracts/types/automation.types";
+import { AutomationRow } from "./automation-row";
+import { AutomationsLoadingRows } from "./automations-loading";
+
+interface AutomationsTableProps {
+	automations: AutomationSummary[];
+	searchSpaceId: number;
+	loading: boolean;
+	canUpdate: boolean;
+	canDelete: boolean;
+}
+
+/**
+ * Table shell + header. Rows render below — loading state renders skeleton
+ * rows in the same shell so the layout doesn't shift on data arrival.
+ */
+export function AutomationsTable({
+	automations,
+	searchSpaceId,
+	loading,
+	canUpdate,
+	canDelete,
+}: AutomationsTableProps) {
+	return (
+		<div className="rounded-lg border border-border/60 bg-accent overflow-hidden">
+			<Table className="table-fixed w-full">
+				<TableHeader>
+					<TableRow className="hover:bg-transparent border-b border-border/60">
+						<TableHead className="px-4 md:px-6 border-r border-border/60">
+							<span className="flex items-center gap-1.5 text-sm font-medium text-muted-foreground/70">
+								<Workflow size={14} className="opacity-60 text-muted-foreground" />
+								Name
+							</span>
+						</TableHead>
+						<TableHead className="border-r border-border/60 w-32">
+							<span className="flex items-center gap-1.5 text-sm font-medium text-muted-foreground/70">
+								<Activity size={14} className="opacity-60 text-muted-foreground" />
+								Status
+							</span>
+						</TableHead>
+						<TableHead className="hidden md:table-cell border-r border-border/60 w-40">
+							<span className="flex items-center gap-1.5 text-sm font-medium text-muted-foreground/70">
+								<CalendarDays size={14} className="opacity-60 text-muted-foreground" />
+								Updated
+							</span>
+						</TableHead>
+						<TableHead className="px-4 md:px-6 w-16">
+							<span className="sr-only">Actions</span>
+						</TableHead>
+					</TableRow>
+				</TableHeader>
+				<TableBody>
+					{loading ? (
+						<AutomationsLoadingRows />
+					) : (
+						automations.map((automation) => (
+							<AutomationRow
+								key={automation.id}
+								automation={automation}
+								searchSpaceId={searchSpaceId}
+								canUpdate={canUpdate}
+								canDelete={canDelete}
+							/>
+						))
+					)}
+				</TableBody>
+			</Table>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/advanced-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/advanced-section.tsx
new file mode 100644
index 000000000..740f199af
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/advanced-section.tsx
@@ -0,0 +1,129 @@
+"use client";
+import { useState } from "react";
+import { Input } from "@/components/ui/input";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "@/components/ui/select";
+import type { BuilderExecution } from "@/lib/automations/builder-schema";
+import { Field } from "./form-field";
+
+interface AdvancedSectionProps {
+	execution: BuilderExecution;
+	tags: string[];
+	onExecutionChange: (patch: Partial<BuilderExecution>) => void;
+	onTagsChange: (tags: string[]) => void;
+}
+
+const BACKOFF_OPTIONS: ReadonlyArray<{ value: BuilderExecution["retryBackoff"]; label: string }> = [
+	{ value: "exponential", label: "Exponential" },
+	{ value: "linear", label: "Linear" },
+	{ value: "none", label: "None" },
+];
+
+const CONCURRENCY_OPTIONS: ReadonlyArray<{
+	value: BuilderExecution["concurrency"];
+	label: string;
+}> = [
+	{ value: "drop_if_running", label: "Skip if already running" },
+	{ value: "queue", label: "Queue the next run" },
+	{ value: "always", label: "Always run" },
+];
+
+function clampInt(raw: string, min: number, fallback: number): number {
+	const value = Number.parseInt(raw, 10);
+	if (Number.isNaN(value)) return fallback;
+	return Math.max(min, value);
+}
+
+export function AdvancedSection({
+	execution,
+	tags,
+	onExecutionChange,
+	onTagsChange,
+}: AdvancedSectionProps) {
+	const [tagsText, setTagsText] = useState(tags.join(", "));
+
+	function commitTags(text: string) {
+		const next = text
+			.split(",")
+			.map((tag) => tag.trim())
+			.filter(Boolean);
+		onTagsChange(next);
+	}
+
+	return (
+		<div className="space-y-4">
+			<div className="grid grid-cols-1 gap-3 sm:grid-cols-2">
+				<Field label="Timeout (seconds)" hint="Wall-clock cap for the whole run.">
+					<Input
+						type="number"
+						min={1}
+						value={execution.timeoutSeconds}
+						onChange={(e) =>
+							onExecutionChange({ timeoutSeconds: clampInt(e.target.value, 1, 600) })
+						}
+					/>
+				</Field>
+				<Field label="Max retries" hint="Per-step retry budget.">
+					<Input
+						type="number"
+						min={0}
+						value={execution.maxRetries}
+						onChange={(e) => onExecutionChange({ maxRetries: clampInt(e.target.value, 0, 2) })}
+					/>
+				</Field>
+				<Field label="Retry backoff">
+					<Select
+						value={execution.retryBackoff}
+						onValueChange={(value) =>
+							onExecutionChange({ retryBackoff: value as BuilderExecution["retryBackoff"] })
+						}
+					>
+						<SelectTrigger className="w-full">
+							<SelectValue />
+						</SelectTrigger>
+						<SelectContent>
+							{BACKOFF_OPTIONS.map((option) => (
+								<SelectItem key={option.value} value={option.value}>
+									{option.label}
+								</SelectItem>
+							))}
+						</SelectContent>
+					</Select>
+				</Field>
+				<Field label="If already running">
+					<Select
+						value={execution.concurrency}
+						onValueChange={(value) =>
+							onExecutionChange({ concurrency: value as BuilderExecution["concurrency"] })
+						}
+					>
+						<SelectTrigger className="w-full">
+							<SelectValue />
+						</SelectTrigger>
+						<SelectContent>
+							{CONCURRENCY_OPTIONS.map((option) => (
+								<SelectItem key={option.value} value={option.value}>
+									{option.label}
+								</SelectItem>
+							))}
+						</SelectContent>
+					</Select>
+				</Field>
+			</div>
+
+			<Field label="Tags" hint="Comma-separated. Optional.">
+				<Input
+					value={tagsText}
+					placeholder="research, weekly"
+					onChange={(e) => setTagsText(e.target.value)}
+					onBlur={(e) => commitTags(e.target.value)}
+				/>
+			</Field>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-builder-form.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-builder-form.tsx
new file mode 100644
index 000000000..39904dfa0
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-builder-form.tsx
@@ -0,0 +1,551 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { Code2, LayoutList, Save } from "lucide-react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+import { useMemo, useState } from "react";
+import type { z } from "zod";
+import {
+	addTriggerMutationAtom,
+	createAutomationMutationAtom,
+	removeTriggerMutationAtom,
+	updateAutomationMutationAtom,
+	updateTriggerMutationAtom,
+} from "@/atoms/automations/automations-mutation.atoms";
+import { Button } from "@/components/ui/button";
+import { Card, CardContent, CardHeader, CardTitle } from "@/components/ui/card";
+import { Spinner } from "@/components/ui/spinner";
+import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
+import {
+	type Automation,
+	automationCreateRequest,
+	automationUpdateRequest,
+} from "@/contracts/types/automation.types";
+import { useAutomationEligibleModels } from "@/hooks/use-automation-eligible-models";
+import {
+	type BuilderForm,
+	type BuilderModels,
+	buildCreatePayload,
+	builderFormSchema,
+	buildScheduleTrigger,
+	buildUpdatePayload,
+	createEmptyForm,
+	formFromAutomation,
+	type HydratableTrigger,
+	hasResolvedModels,
+	hydrateForm,
+} from "@/lib/automations/builder-schema";
+import { cn } from "@/lib/utils";
+import { AdvancedSection } from "./advanced-section";
+import { AutomationModelFields } from "./automation-model-fields";
+import { BasicsSection } from "./basics-section";
+import { BuilderSummary } from "./builder-summary";
+import { JsonModePanel } from "./json-mode-panel";
+import { ScheduleSection } from "./schedule-section";
+import { TaskList } from "./task-list";
+import { UnattendedToggle } from "./unattended-toggle";
+
+interface AutomationBuilderFormProps {
+	mode: "create" | "edit";
+	searchSpaceId: number;
+	/** Required in edit mode; seeds the form and trigger reconciliation. */
+	automation?: Automation;
+	/**
+	 * Optional extra create-mode block reason (composed with the form's own
+	 * model-eligibility gate). Shown as the submit button's tooltip. Model
+	 * eligibility itself is now owned by the in-form pickers.
+	 */
+	submitDisabledReason?: string;
+}
+
+type Mode = "form" | "json";
+
+function mapFormErrors(error: z.ZodError): Record<string, string> {
+	const out: Record<string, string> = {};
+	for (const issue of error.issues) {
+		const path = issue.path;
+		let key: string;
+		if (path[0] === "tasks" && typeof path[1] === "number") key = `tasks.${path[1]}.query`;
+		else if (path[0] === "schedule") key = "schedule";
+		else key = String(path[0] ?? "_root");
+		if (!out[key]) out[key] = issue.message;
+	}
+	return out;
+}
+
+export function AutomationBuilderForm({
+	mode,
+	searchSpaceId,
+	automation,
+	submitDisabledReason,
+}: AutomationBuilderFormProps) {
+	const router = useRouter();
+	const { mutateAsync: createAutomation } = useAtomValue(createAutomationMutationAtom);
+	const { mutateAsync: updateAutomation } = useAtomValue(updateAutomationMutationAtom);
+	const { mutateAsync: addTrigger } = useAtomValue(addTriggerMutationAtom);
+	const { mutateAsync: updateTrigger } = useAtomValue(updateTriggerMutationAtom);
+	const { mutateAsync: removeTrigger } = useAtomValue(removeTriggerMutationAtom);
+
+	// Initial state: create starts empty in form mode; edit hydrates, falling
+	// back to JSON mode when the definition can't be represented in the form.
+	const initial = useMemo(() => {
+		if (mode === "edit" && automation) {
+			const result = formFromAutomation(automation);
+			if (result.formable) {
+				return { mode: "form" as Mode, form: result.form, notice: undefined };
+			}
+			return {
+				mode: "json" as Mode,
+				form: createEmptyForm(),
+				notice: `This automation ${result.reason}, which the form can't show. Edit it as JSON below.`,
+			};
+		}
+		return { mode: "form" as Mode, form: createEmptyForm(), notice: undefined };
+	}, [mode, automation]);
+
+	const [activeMode, setActiveMode] = useState<Mode>(initial.mode);
+	const [form, setForm] = useState<BuilderForm>(initial.form);
+	const [errors, setErrors] = useState<Record<string, string>>({});
+	const [rootError, setRootError] = useState<string | null>(null);
+
+	const [jsonValue, setJsonValue] = useState<Record<string, unknown>>(() =>
+		initial.mode === "json" ? jsonFromAutomation(automation) : {}
+	);
+	const [jsonIssues, setJsonIssues] = useState<string[]>([]);
+	const [jsonNotice, setJsonNotice] = useState<string | undefined>(initial.notice);
+
+	const [submitting, setSubmitting] = useState(false);
+
+	const cancelHref =
+		mode === "edit" && automation
+			? `/dashboard/${searchSpaceId}/automations/${automation.id}`
+			: `/dashboard/${searchSpaceId}/automations`;
+
+	// Eligible models + the search-space-seeded defaults. Models are chosen per
+	// automation on create; in edit mode the backend preserves the captured
+	// snapshot, so the picker is create-only.
+	const eligibleModels = useAutomationEligibleModels();
+
+	// Resolve each slot during render: an explicit (non-zero) pick wins,
+	// otherwise fall back to the eligible default. No effect copies async hook
+	// data into state, so there's no flicker/loop and the user's pick is sticky.
+	const resolvedModels = useMemo<BuilderModels>(
+		() => ({
+			agentLlmId: form.models.agentLlmId || eligibleModels.llm.defaultId || 0,
+			imageConfigId: form.models.imageConfigId || eligibleModels.image.defaultId || 0,
+			visionConfigId: form.models.visionConfigId || eligibleModels.vision.defaultId || 0,
+		}),
+		[
+			form.models,
+			eligibleModels.llm.defaultId,
+			eligibleModels.image.defaultId,
+			eligibleModels.vision.defaultId,
+		]
+	);
+
+	// The form with resolved models folded in — what every payload builder reads.
+	const formForPayload = useMemo<BuilderForm>(
+		() => ({ ...form, models: resolvedModels }),
+		[form, resolvedModels]
+	);
+
+	function patchForm(patch: Partial<BuilderForm>) {
+		setForm((prev) => ({ ...prev, ...patch }));
+	}
+
+	function jsonFromCurrentForm(): Record<string, unknown> {
+		if (mode === "edit" && automation) {
+			return { ...buildUpdatePayload(formForPayload), status: automation.status };
+		}
+		const { search_space_id: _ignored, ...rest } = buildCreatePayload(
+			formForPayload,
+			searchSpaceId
+		);
+		return rest;
+	}
+
+	function switchToJson() {
+		setJsonValue(jsonFromCurrentForm());
+		setJsonIssues([]);
+		setJsonNotice(undefined);
+		setActiveMode("json");
+	}
+
+	function switchToForm() {
+		const result = tryJsonToForm();
+		if (result.ok) {
+			setForm(result.form);
+			setErrors({});
+			setRootError(null);
+			setActiveMode("form");
+			return;
+		}
+		setJsonIssues(result.issues);
+		setJsonNotice(result.notice);
+	}
+
+	function tryJsonToForm():
+		| { ok: true; form: BuilderForm }
+		| { ok: false; issues: string[]; notice?: string } {
+		// Read the raw tree defensively rather than strict-validating: an
+		// incomplete JSON edit should still round-trip into the form, where the
+		// form's own validation enforces completeness on submit.
+		const definition = jsonValue.definition;
+		if (!definition || typeof definition !== "object") {
+			return { ok: false, issues: [], notice: "Add a definition before switching to the form." };
+		}
+
+		const name =
+			typeof jsonValue.name === "string"
+				? jsonValue.name
+				: mode === "edit" && automation
+					? automation.name
+					: "";
+		const description = typeof jsonValue.description === "string" ? jsonValue.description : null;
+		const triggers =
+			mode === "edit" && automation
+				? (automation.triggers ?? [])
+				: extractTriggers(jsonValue.triggers);
+
+		const h = hydrateForm(name, description, definition, triggers);
+		return h.formable
+			? { ok: true, form: h.form }
+			: { ok: false, issues: [], notice: `Can't show in the form: it ${h.reason}.` };
+	}
+
+	function validateForm(): Record<string, string> | null {
+		const result = builderFormSchema.safeParse(form);
+		const next = result.success ? {} : mapFormErrors(result.error);
+
+		// The schedule model fields aren't deeply validated by the schema.
+		if (form.schedule?.mode === "preset") {
+			const m = form.schedule.model;
+			if (m.frequency === "weekly" && m.daysOfWeek.length === 0) {
+				next.schedule = "Pick at least one day for the weekly schedule";
+			}
+		} else if (form.schedule?.mode === "cron" && !form.schedule.cron.trim()) {
+			next.schedule = "Enter a schedule expression";
+		}
+
+		return Object.keys(next).length > 0 ? next : null;
+	}
+
+	async function reconcileTriggers(automationId: number) {
+		const desired = buildScheduleTrigger(form);
+		const existing = (automation?.triggers ?? [])[0];
+		if (!existing && desired) {
+			await addTrigger({ automationId, payload: desired });
+		} else if (existing && !desired) {
+			await removeTrigger({ automationId, triggerId: existing.id });
+		} else if (existing && desired) {
+			await updateTrigger({
+				automationId,
+				triggerId: existing.id,
+				patch: { params: desired.params, enabled: desired.enabled },
+			});
+		}
+	}
+
+	async function submitForm() {
+		setRootError(null);
+		const formErrors = validateForm();
+		if (formErrors) {
+			setErrors(formErrors);
+			return;
+		}
+		setErrors({});
+
+		setSubmitting(true);
+		try {
+			if (mode === "edit" && automation) {
+				const payload = buildUpdatePayload(formForPayload);
+				const parsed = automationUpdateRequest.safeParse(payload);
+				if (!parsed.success) {
+					setRootError(zodIssueList(parsed.error).join("; "));
+					return;
+				}
+				await updateAutomation({ automationId: automation.id, patch: parsed.data });
+				await reconcileTriggers(automation.id);
+				router.push(`/dashboard/${searchSpaceId}/automations/${automation.id}`);
+			} else {
+				const payload = buildCreatePayload(formForPayload, searchSpaceId);
+				const parsed = automationCreateRequest.safeParse(payload);
+				if (!parsed.success) {
+					setRootError(zodIssueList(parsed.error).join("; "));
+					return;
+				}
+				const created = await createAutomation(parsed.data);
+				router.push(`/dashboard/${searchSpaceId}/automations/${created.id}`);
+			}
+		} catch (err) {
+			setRootError((err as Error).message ?? "Submit failed");
+		} finally {
+			setSubmitting(false);
+		}
+	}
+
+	async function submitJson() {
+		setJsonIssues([]);
+		setSubmitting(true);
+		try {
+			if (mode === "edit" && automation) {
+				const parsed = automationUpdateRequest.safeParse(jsonValue);
+				if (!parsed.success) {
+					setJsonIssues(zodIssueList(parsed.error));
+					return;
+				}
+				await updateAutomation({ automationId: automation.id, patch: parsed.data });
+				router.push(`/dashboard/${searchSpaceId}/automations/${automation.id}`);
+			} else {
+				const parsed = automationCreateRequest.safeParse({
+					...jsonValue,
+					search_space_id: searchSpaceId,
+				});
+				if (!parsed.success) {
+					setJsonIssues(zodIssueList(parsed.error));
+					return;
+				}
+				const created = await createAutomation(parsed.data);
+				router.push(`/dashboard/${searchSpaceId}/automations/${created.id}`);
+			}
+		} catch (err) {
+			setJsonIssues([(err as Error).message ?? "Submit failed"]);
+		} finally {
+			setSubmitting(false);
+		}
+	}
+
+	const submitLabel = mode === "edit" ? "Save changes" : "Create automation";
+	// Block creation until every model slot resolves to an eligible id. The
+	// per-field Alert already explains *why* a slot is empty; this just guards
+	// submit. `submitDisabledReason` (from the caller) still composes in.
+	const modelsUnresolved =
+		mode === "create" && !eligibleModels.isLoading && !hasResolvedModels(resolvedModels);
+	const effectiveDisabledReason =
+		submitDisabledReason ??
+		(modelsUnresolved
+			? "Set up a premium or your own (BYOK) agent, image, and vision model in role settings before creating an automation."
+			: undefined);
+	// Only gate creation; editing an existing automation isn't blocked here.
+	const submitBlocked = mode === "create" && !!effectiveDisabledReason;
+
+	return (
+		<div className="space-y-4">
+			<div className="flex items-center justify-end">
+				<div className="inline-flex rounded-md border border-border/60 p-0.5">
+					<ModeButton
+						active={activeMode === "form"}
+						icon={LayoutList}
+						label="Form"
+						onClick={() => (activeMode === "form" ? undefined : switchToForm())}
+					/>
+					<ModeButton
+						active={activeMode === "json"}
+						icon={Code2}
+						label="Edit as JSON"
+						onClick={() => (activeMode === "json" ? undefined : switchToJson())}
+					/>
+				</div>
+			</div>
+
+			{activeMode === "json" ? (
+				<Card className="border-border/60 bg-accent">
+					<CardContent className="pt-6">
+						<JsonModePanel
+							value={jsonValue}
+							issues={jsonIssues}
+							notice={jsonNotice}
+							onChange={setJsonValue}
+						/>
+					</CardContent>
+				</Card>
+			) : (
+				<div className="grid grid-cols-1 gap-4 lg:grid-cols-3">
+					<div className="space-y-4 lg:col-span-2">
+						<Card className="border-border/60 bg-accent">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Basics</CardTitle>
+							</CardHeader>
+							<CardContent>
+								<BasicsSection
+									name={form.name}
+									description={form.description}
+									errors={errors}
+									onChange={patchForm}
+								/>
+							</CardContent>
+						</Card>
+
+						<Card className="border-border/60 bg-accent">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Tasks</CardTitle>
+							</CardHeader>
+							<CardContent className="space-y-4">
+								<TaskList
+									tasks={form.tasks}
+									errors={errors}
+									searchSpaceId={searchSpaceId}
+									onChange={(tasks) => patchForm({ tasks })}
+								/>
+								<UnattendedToggle
+									checked={form.unattended}
+									onChange={(unattended) => patchForm({ unattended })}
+								/>
+							</CardContent>
+						</Card>
+
+						<Card className="border-border/60 bg-accent">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Schedule</CardTitle>
+							</CardHeader>
+							<CardContent>
+								<ScheduleSection
+									schedule={form.schedule}
+									timezone={form.timezone}
+									errors={errors}
+									onScheduleChange={(schedule) => patchForm({ schedule })}
+									onTimezoneChange={(timezone) => patchForm({ timezone })}
+								/>
+							</CardContent>
+						</Card>
+
+						<Card className="border-border/60 bg-accent">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Models</CardTitle>
+							</CardHeader>
+							<CardContent>
+								<AutomationModelFields
+									searchSpaceId={searchSpaceId}
+									value={resolvedModels}
+									onChange={(patch) => patchForm({ models: { ...form.models, ...patch } })}
+								/>
+							</CardContent>
+						</Card>
+
+						<Card className="border-border/60 bg-accent">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Settings</CardTitle>
+							</CardHeader>
+							<CardContent>
+								<AdvancedSection
+									execution={form.execution}
+									tags={form.tags}
+									onExecutionChange={(patch) =>
+										patchForm({ execution: { ...form.execution, ...patch } })
+									}
+									onTagsChange={(tags) => patchForm({ tags })}
+								/>
+							</CardContent>
+						</Card>
+					</div>
+
+					<div className="lg:col-span-1">
+						<Card className="border-border/60 bg-accent lg:sticky lg:top-4">
+							<CardHeader className="pb-3">
+								<CardTitle className="text-sm font-semibold">Summary</CardTitle>
+							</CardHeader>
+							<CardContent>
+								<BuilderSummary form={form} />
+							</CardContent>
+						</Card>
+					</div>
+				</div>
+			)}
+
+			{rootError && <p className="text-right text-xs text-destructive">{rootError}</p>}
+
+			<div className="flex items-center justify-end gap-2">
+				<Button asChild type="button" variant="ghost" size="sm">
+					<Link href={cancelHref}>Cancel</Link>
+				</Button>
+				{submitBlocked ? (
+					<Tooltip>
+						<TooltipTrigger asChild>
+							{/* aria-disabled keeps the button focusable so the tooltip is
+							    reachable by hover and keyboard; onClick is a no-op. */}
+							<Button
+								type="button"
+								size="sm"
+								aria-disabled
+								className="cursor-not-allowed opacity-50"
+								onClick={(event) => event.preventDefault()}
+							>
+								<Save className="mr-2 h-4 w-4" />
+								{submitLabel}
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent className="max-w-xs">{effectiveDisabledReason}</TooltipContent>
+					</Tooltip>
+				) : (
+					<Button
+						type="button"
+						size="sm"
+						disabled={submitting}
+						onClick={() => (activeMode === "json" ? submitJson() : submitForm())}
+					>
+						{submitting ? (
+							<Spinner size="xs" className="mr-2" />
+						) : (
+							<Save className="mr-2 h-4 w-4" />
+						)}
+						{submitLabel}
+					</Button>
+				)}
+			</div>
+		</div>
+	);
+}
+
+function ModeButton({
+	active,
+	icon: Icon,
+	label,
+	onClick,
+}: {
+	active: boolean;
+	icon: typeof Code2;
+	label: string;
+	onClick: () => void;
+}) {
+	return (
+		<button
+			type="button"
+			onClick={onClick}
+			className={cn(
+				"inline-flex items-center gap-1.5 rounded-[5px] px-2.5 py-1 text-xs font-medium transition-colors",
+				active
+					? "bg-background text-foreground shadow-sm"
+					: "text-muted-foreground hover:text-foreground"
+			)}
+		>
+			<Icon className="h-3.5 w-3.5" />
+			{label}
+		</button>
+	);
+}
+
+function extractTriggers(raw: unknown): HydratableTrigger[] {
+	if (!Array.isArray(raw)) return [];
+	return raw.map((entry) => {
+		const obj = entry && typeof entry === "object" ? (entry as Record<string, unknown>) : {};
+		return {
+			type: typeof obj.type === "string" ? obj.type : "",
+			params:
+				obj.params && typeof obj.params === "object" ? (obj.params as Record<string, unknown>) : {},
+		};
+	});
+}
+
+function zodIssueList(error: z.ZodError): string[] {
+	return error.issues.map((issue) => `${issue.path.join(".") || "(root)"}: ${issue.message}`);
+}
+
+function jsonFromAutomation(automation: Automation | undefined): Record<string, unknown> {
+	if (!automation) return {};
+	return {
+		name: automation.name,
+		description: automation.description ?? null,
+		status: automation.status,
+		definition: automation.definition,
+	};
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-model-fields.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-model-fields.tsx
new file mode 100644
index 000000000..8ca8d839c
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/automation-model-fields.tsx
@@ -0,0 +1,198 @@
+"use client";
+
+import { TriangleAlert } from "lucide-react";
+import Link from "next/link";
+import { memo, useId } from "react";
+import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
+import { Badge } from "@/components/ui/badge";
+import {
+	Select,
+	SelectContent,
+	SelectGroup,
+	SelectItem,
+	SelectLabel,
+	SelectSeparator,
+	SelectTrigger,
+	SelectValue,
+} from "@/components/ui/select";
+import { Skeleton } from "@/components/ui/skeleton";
+import {
+	type EligibleModelKind,
+	type EligibleModelOption,
+	useAutomationEligibleModels,
+} from "@/hooks/use-automation-eligible-models";
+import { getProviderIcon } from "@/lib/provider-icons";
+import { Field } from "./form-field";
+
+export interface AutomationModelSelection {
+	agentLlmId: number;
+	imageConfigId: number;
+	visionConfigId: number;
+}
+
+interface AutomationModelFieldsProps {
+	/** Resolved (effective) ids — never `0` once defaults are seeded. */
+	value: AutomationModelSelection;
+	onChange: (patch: Partial<AutomationModelSelection>) => void;
+	searchSpaceId: number;
+	errors?: Partial<Record<keyof AutomationModelSelection, string>>;
+}
+
+/**
+ * Three eligible-only model pickers (Agent LLM / Image / Vision) for the
+ * automation builder + chat approval card. Options come from
+ * {@link useAutomationEligibleModels} (premium globals + BYOK only); selection
+ * is validated + snapshotted onto `definition.models` at create time.
+ */
+export function AutomationModelFields({
+	value,
+	onChange,
+	searchSpaceId,
+	errors,
+}: AutomationModelFieldsProps) {
+	const { llm, image, vision, isLoading } = useAutomationEligibleModels();
+	const rolesHref = `/dashboard/${searchSpaceId}/search-space-settings/roles`;
+
+	return (
+		<div className="flex flex-col gap-4">
+			<ModelSelectField
+				label="Agent model"
+				kind={llm}
+				value={value.agentLlmId}
+				isLoading={isLoading}
+				rolesHref={rolesHref}
+				error={errors?.agentLlmId}
+				onChange={(id) => onChange({ agentLlmId: id })}
+			/>
+			<ModelSelectField
+				label="Image model"
+				kind={image}
+				value={value.imageConfigId}
+				isLoading={isLoading}
+				rolesHref={rolesHref}
+				error={errors?.imageConfigId}
+				onChange={(id) => onChange({ imageConfigId: id })}
+			/>
+			<ModelSelectField
+				label="Vision model"
+				kind={vision}
+				value={value.visionConfigId}
+				isLoading={isLoading}
+				rolesHref={rolesHref}
+				error={errors?.visionConfigId}
+				onChange={(id) => onChange({ visionConfigId: id })}
+			/>
+		</div>
+	);
+}
+
+interface ModelSelectFieldProps {
+	label: string;
+	kind: EligibleModelKind;
+	value: number;
+	isLoading: boolean;
+	rolesHref: string;
+	error?: string;
+	onChange: (id: number) => void;
+}
+
+const ModelSelectField = memo(function ModelSelectField({
+	label,
+	kind,
+	value,
+	isLoading,
+	rolesHref,
+	error,
+	onChange,
+}: ModelSelectFieldProps) {
+	const triggerId = useId();
+
+	if (isLoading) {
+		return (
+			<Field label={label}>
+				<Skeleton className="h-9 w-full" />
+			</Field>
+		);
+	}
+
+	if (kind.options.length === 0) {
+		return (
+			<Field label={label}>
+				<Alert>
+					<TriangleAlert aria-hidden />
+					<AlertTitle>No eligible models</AlertTitle>
+					<AlertDescription>
+						Automations need a premium or your own (BYOK) model. Set one up in{" "}
+						<Link href={rolesHref} className="font-medium underline underline-offset-2">
+							role settings
+						</Link>
+						.
+					</AlertDescription>
+				</Alert>
+			</Field>
+		);
+	}
+
+	const premium = kind.options.filter((o) => !o.isBYOK);
+	const byok = kind.options.filter((o) => o.isBYOK);
+	const selected = value ? kind.byId.get(value) : undefined;
+
+	return (
+		<Field label={label} htmlFor={triggerId} error={error}>
+			<Select value={value ? String(value) : undefined} onValueChange={(v) => onChange(Number(v))}>
+				<SelectTrigger
+					id={triggerId}
+					aria-label={label}
+					aria-invalid={error ? true : undefined}
+					className="w-full"
+				>
+					{selected ? (
+						<span className="flex items-center gap-2">
+							{getProviderIcon(selected.provider)}
+							<span className="truncate">{selected.name}</span>
+						</span>
+					) : (
+						<SelectValue placeholder="Select a model" />
+					)}
+				</SelectTrigger>
+				<SelectContent>
+					{premium.length > 0 ? (
+						<SelectGroup>
+							<SelectLabel>Premium</SelectLabel>
+							{premium.map((option) => (
+								<ModelOption key={option.id} option={option} badge="Premium" />
+							))}
+						</SelectGroup>
+					) : null}
+					{premium.length > 0 && byok.length > 0 ? <SelectSeparator /> : null}
+					{byok.length > 0 ? (
+						<SelectGroup>
+							<SelectLabel>Your models</SelectLabel>
+							{byok.map((option) => (
+								<ModelOption key={option.id} option={option} badge="BYOK" />
+							))}
+						</SelectGroup>
+					) : null}
+				</SelectContent>
+			</Select>
+		</Field>
+	);
+});
+
+function ModelOption({
+	option,
+	badge,
+}: {
+	option: EligibleModelOption;
+	badge: "Premium" | "BYOK";
+}) {
+	return (
+		<SelectItem value={String(option.id)} description={option.modelName}>
+			<span className="flex items-center gap-2">
+				{getProviderIcon(option.provider)}
+				<span className="truncate">{option.name}</span>
+				<Badge variant={badge === "Premium" ? "secondary" : "outline"}>{badge}</Badge>
+			</span>
+		</SelectItem>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/basics-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/basics-section.tsx
new file mode 100644
index 000000000..fdc9f4526
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/basics-section.tsx
@@ -0,0 +1,42 @@
+"use client";
+import { Input } from "@/components/ui/input";
+import { Textarea } from "@/components/ui/textarea";
+import { Field } from "./form-field";
+
+interface BasicsSectionProps {
+	name: string;
+	description: string | null;
+	errors: Record<string, string>;
+	onChange: (patch: { name?: string; description?: string | null }) => void;
+}
+
+export function BasicsSection({ name, description, errors, onChange }: BasicsSectionProps) {
+	return (
+		<div className="space-y-4">
+			<Field label="Name" htmlFor="automation-name" required error={errors.name}>
+				<Input
+					id="automation-name"
+					value={name}
+					maxLength={200}
+					placeholder="Weekly competitor digest"
+					onChange={(e) => onChange({ name: e.target.value })}
+				/>
+			</Field>
+
+			<Field
+				label="Description"
+				htmlFor="automation-description"
+				hint="Optional. A short note about what this automation is for."
+				error={errors.description}
+			>
+				<Textarea
+					id="automation-description"
+					value={description ?? ""}
+					rows={2}
+					placeholder="Summarize what changed and email me the highlights."
+					onChange={(e) => onChange({ description: e.target.value })}
+				/>
+			</Field>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/builder-summary.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/builder-summary.tsx
new file mode 100644
index 000000000..21a77cb5f
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/builder-summary.tsx
@@ -0,0 +1,96 @@
+"use client";
+import { CalendarClock, CheckCircle2, ListOrdered, type LucideIcon, XCircle } from "lucide-react";
+import { type BuilderForm, scheduleToCron } from "@/lib/automations/builder-schema";
+import { describeCron } from "@/lib/automations/describe-cron";
+
+interface BuilderSummaryProps {
+	form: BuilderForm;
+}
+
+/**
+ * Live, read-only mirror of what will be created. Mirrors the layout of the
+ * chat ``AutomationDraftPreview`` so the two creation paths feel consistent.
+ */
+export function BuilderSummary({ form }: BuilderSummaryProps) {
+	const scheduleLabel = form.schedule
+		? `${describeCron(scheduleToCron(form.schedule))} · ${form.timezone}`
+		: "No schedule — won't run automatically";
+
+	return (
+		<div className="space-y-4 text-sm">
+			<div className="space-y-1">
+				<p className="font-medium text-foreground">{form.name.trim() || "Untitled automation"}</p>
+				{form.description?.trim() && (
+					<p className="text-xs text-muted-foreground">{form.description.trim()}</p>
+				)}
+			</div>
+
+			<Section icon={CalendarClock} label="Schedule">
+				<p className="text-xs text-foreground">{scheduleLabel}</p>
+			</Section>
+
+			<Section
+				icon={ListOrdered}
+				label={`Tasks · ${form.tasks.length} step${form.tasks.length === 1 ? "" : "s"}`}
+			>
+				<ol className="space-y-1.5 text-xs">
+					{form.tasks.map((task, index) => (
+						<li key={task.id} className="flex items-start gap-2">
+							<span className="inline-flex h-4 w-4 items-center justify-center rounded-full bg-muted text-[10px] font-medium text-muted-foreground shrink-0 mt-0.5">
+								{index + 1}
+							</span>
+							<span className="min-w-0 flex-1 space-y-1">
+								<span className="block text-foreground line-clamp-2">
+									{task.query.trim() || (
+										<span className="text-muted-foreground">No instructions yet</span>
+									)}
+								</span>
+								{task.mentions.length > 0 && (
+									<span className="flex flex-wrap gap-1">
+										{task.mentions.map((mention) => (
+											<span
+												key={`${mention.kind}:${mention.id}`}
+												className="inline-flex max-w-[140px] items-center truncate rounded bg-primary/10 px-1.5 py-0.5 text-[10px] font-medium text-primary/70"
+											>
+												@{mention.title}
+											</span>
+										))}
+									</span>
+								)}
+							</span>
+						</li>
+					))}
+				</ol>
+			</Section>
+
+			<div className="flex items-center gap-1.5 text-xs text-muted-foreground">
+				{form.unattended ? (
+					<CheckCircle2 className="h-3.5 w-3.5 text-emerald-500" aria-hidden />
+				) : (
+					<XCircle className="h-3.5 w-3.5" aria-hidden />
+				)}
+				{form.unattended ? "Runs without approval prompts" : "Will reject approval prompts"}
+			</div>
+		</div>
+	);
+}
+
+function Section({
+	icon: Icon,
+	label,
+	children,
+}: {
+	icon: LucideIcon;
+	label: string;
+	children: React.ReactNode;
+}) {
+	return (
+		<div className="space-y-1.5">
+			<div className="flex items-center gap-1.5 text-[11px] font-medium text-muted-foreground uppercase tracking-wider">
+				<Icon className="h-3 w-3" aria-hidden />
+				{label}
+			</div>
+			{children}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/form-field.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/form-field.tsx
new file mode 100644
index 000000000..222efd9c6
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/form-field.tsx
@@ -0,0 +1,42 @@
+"use client";
+import { AlertCircle } from "lucide-react";
+import type { ReactNode } from "react";
+import { Label } from "@/components/ui/label";
+import { cn } from "@/lib/utils";
+
+interface FieldProps {
+	label?: string;
+	htmlFor?: string;
+	hint?: string;
+	error?: string;
+	required?: boolean;
+	className?: string;
+	children: ReactNode;
+}
+
+/**
+ * Label + control + (hint | inline error) stack shared by every builder
+ * section. Keeps spacing and error styling consistent so individual sections
+ * stay focused on their inputs.
+ */
+export function Field({ label, htmlFor, hint, error, required, className, children }: FieldProps) {
+	return (
+		<div className={cn("space-y-1.5", className)}>
+			{label && (
+				<Label htmlFor={htmlFor} className="text-xs font-medium text-foreground">
+					{label}
+					{required && <span className="text-muted-foreground">*</span>}
+				</Label>
+			)}
+			{children}
+			{error ? (
+				<p className="flex items-center gap-1 text-xs text-destructive">
+					<AlertCircle className="h-3 w-3 shrink-0" aria-hidden />
+					{error}
+				</p>
+			) : hint ? (
+				<p className="text-xs text-muted-foreground">{hint}</p>
+			) : null}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/json-mode-panel.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/json-mode-panel.tsx
new file mode 100644
index 000000000..1f25f8a61
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/json-mode-panel.tsx
@@ -0,0 +1,51 @@
+"use client";
+import { AlertCircle } from "lucide-react";
+import { JsonView } from "@/components/json-view";
+
+interface JsonModePanelProps {
+	value: Record<string, unknown>;
+	issues: string[];
+	notice?: string;
+	onChange: (next: Record<string, unknown>) => void;
+}
+
+/**
+ * Raw-JSON escape hatch. Edits the same payload the form produces; the
+ * orchestrator validates it against the contract schema on submit. Shown when
+ * the user opts into "Edit as JSON" or when an existing definition uses
+ * features the form can't represent.
+ */
+export function JsonModePanel({ value, issues, notice, onChange }: JsonModePanelProps) {
+	return (
+		<div className="space-y-4">
+			{notice && (
+				<div className="rounded-md border border-amber-500/40 bg-amber-500/5 px-3 py-2 text-xs text-amber-700 dark:text-amber-400">
+					{notice}
+				</div>
+			)}
+
+			<div className="rounded-md border border-input bg-background px-3 py-2 max-h-144 overflow-auto">
+				<JsonView
+					src={value}
+					editable
+					onChange={(next) => onChange(next as Record<string, unknown>)}
+					collapsed={false}
+				/>
+			</div>
+
+			{issues.length > 0 && (
+				<div className="rounded-md border border-destructive/40 bg-destructive/5 px-3 py-2">
+					<div className="flex items-center gap-1.5 text-xs font-medium text-destructive mb-1.5">
+						<AlertCircle className="h-3.5 w-3.5" aria-hidden />
+						{issues.length === 1 ? "1 issue" : `${issues.length} issues`}
+					</div>
+					<ul className="space-y-0.5 text-xs text-destructive list-disc list-inside">
+						{issues.map((issue) => (
+							<li key={issue}>{issue}</li>
+						))}
+					</ul>
+				</div>
+			)}
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/mention-task-input.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/mention-task-input.tsx
new file mode 100644
index 000000000..c0651a90b
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/mention-task-input.tsx
@@ -0,0 +1,257 @@
+"use client";
+
+import { useCallback, useEffect, useRef, useState } from "react";
+import type { MentionedDocumentInfo } from "@/atoms/chat/mentioned-documents.atom";
+import {
+	InlineMentionEditor,
+	type InlineMentionEditorRef,
+	type MentionChipInput,
+	type MentionedDocument,
+	type SuggestionAnchorRect,
+	type SuggestionTriggerInfo,
+} from "@/components/assistant-ui/inline-mention-editor";
+import { ComposerSuggestionPopoverContent } from "@/components/new-chat/composer-suggestion-popup";
+import {
+	DocumentMentionPicker,
+	type DocumentMentionPickerRef,
+} from "@/components/new-chat/document-mention-picker";
+import { Popover, PopoverAnchor } from "@/components/ui/popover";
+import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
+import { cn } from "@/lib/utils";
+
+interface MentionTaskInputProps {
+	searchSpaceId: number;
+	value: string;
+	mentions: MentionedDocumentInfo[];
+	onChange: (text: string, mentions: MentionedDocumentInfo[]) => void;
+	placeholder?: string;
+	disabled?: boolean;
+}
+
+type AnchorPoint = { left: number; top: number };
+
+// Mirror of thread.tsx's getComposerSuggestionAnchorPoint -- kept local so the
+// chat composer stays untouched.
+function getAnchorPoint(rect: SuggestionAnchorRect | null): AnchorPoint | null {
+	if (!rect) return null;
+	return { left: rect.left, top: rect.bottom };
+}
+
+/** Project the editor's chip shape into the canonical mention info union. */
+function toMentionInfo(doc: MentionedDocument): MentionedDocumentInfo {
+	if (doc.kind === "connector") {
+		return {
+			id: doc.id,
+			title: doc.title,
+			kind: "connector",
+			connector_type: doc.connector_type ?? "UNKNOWN",
+			account_name: doc.account_name ?? doc.title,
+		};
+	}
+	if (doc.kind === "folder") {
+		return { id: doc.id, title: doc.title, kind: "folder" };
+	}
+	return {
+		id: doc.id,
+		title: doc.title,
+		document_type: doc.document_type ?? "UNKNOWN",
+		kind: "doc",
+	};
+}
+
+/** Project a mention info into the editor's chip-insertion shape. */
+function toChipInput(mention: MentionedDocumentInfo): MentionChipInput {
+	if (mention.kind === "connector") {
+		return {
+			id: mention.id,
+			title: mention.title,
+			kind: "connector",
+			connector_type: mention.connector_type,
+			account_name: mention.account_name,
+		};
+	}
+	if (mention.kind === "folder") {
+		return { id: mention.id, title: mention.title, kind: "folder" };
+	}
+	return {
+		id: mention.id,
+		title: mention.title,
+		kind: "doc",
+		document_type: mention.document_type,
+	};
+}
+
+function removeFirstToken(text: string, token: string): string {
+	const index = text.indexOf(token);
+	if (index === -1) return text;
+	return text.slice(0, index) + text.slice(index + token.length);
+}
+
+/**
+ * Task input that reuses the chat ``@`` mention experience -- the same
+ * ``InlineMentionEditor`` + ``DocumentMentionPicker`` as the composer. The
+ * editor is the source of truth while mounted; ``onChange`` reports both the
+ * plain text (chips rendered as ``@Title``) and the structured mention list
+ * so the builder can persist IDs for the run.
+ */
+export function MentionTaskInput({
+	searchSpaceId,
+	value,
+	mentions,
+	onChange,
+	placeholder,
+	disabled,
+}: MentionTaskInputProps) {
+	const editorRef = useRef<InlineMentionEditorRef>(null);
+	const pickerRef = useRef<DocumentMentionPickerRef>(null);
+
+	const [showPopover, setShowPopover] = useState(false);
+	const [mentionQuery, setMentionQuery] = useState("");
+	const [anchorPoint, setAnchorPoint] = useState<AnchorPoint | null>(null);
+
+	// One-shot hydration of existing mentions into real chips. ``initialText``
+	// seeds the literal ``@Title`` text; here we strip those tokens and
+	// re-insert them as chips so the editor reports the structured docs (and
+	// editing can't silently drop the mention IDs). Position isn't preserved
+	// on re-hydration -- chips append after the remaining prose.
+	const didHydrateRef = useRef(false);
+	useEffect(() => {
+		if (didHydrateRef.current) return;
+		didHydrateRef.current = true;
+		if (mentions.length === 0) return;
+		const editor = editorRef.current;
+		if (!editor) return;
+
+		let baseText = value;
+		for (const mention of mentions) {
+			baseText = removeFirstToken(baseText, `@${mention.title}`);
+		}
+		baseText = baseText.replace(/[ \t]{2,}/g, " ").trim();
+		editor.setText(baseText);
+		for (const mention of mentions) {
+			editor.insertMentionChip(toChipInput(mention), { removeTriggerText: false });
+		}
+	}, [mentions, value]);
+
+	const closePopover = useCallback(() => {
+		setShowPopover(false);
+		setMentionQuery("");
+		setAnchorPoint(null);
+	}, []);
+
+	const handleEditorChange = useCallback(
+		(text: string, docs: MentionedDocument[]) => {
+			onChange(text, docs.map(toMentionInfo));
+		},
+		[onChange]
+	);
+
+	const handleMentionTrigger = useCallback((trigger: SuggestionTriggerInfo) => {
+		const point = getAnchorPoint(trigger.anchorRect);
+		if (!point) {
+			setShowPopover(false);
+			setMentionQuery("");
+			setAnchorPoint(null);
+			return;
+		}
+		setAnchorPoint((current) => current ?? point);
+		setShowPopover(true);
+		setMentionQuery(trigger.query);
+	}, []);
+
+	const handleMentionClose = useCallback(() => {
+		setShowPopover((open) => {
+			if (open) {
+				setMentionQuery("");
+				setAnchorPoint(null);
+			}
+			return false;
+		});
+	}, []);
+
+	const handlePopoverOpenChange = useCallback((open: boolean) => {
+		setShowPopover(open);
+		if (!open) {
+			setMentionQuery("");
+			setAnchorPoint(null);
+		}
+	}, []);
+
+	const handleKeyDown = useCallback(
+		(e: React.KeyboardEvent) => {
+			if (!showPopover) return;
+			if (e.key === "ArrowDown") {
+				e.preventDefault();
+				pickerRef.current?.moveDown();
+			} else if (e.key === "ArrowUp") {
+				e.preventDefault();
+				pickerRef.current?.moveUp();
+			} else if (e.key === "Enter") {
+				e.preventDefault();
+				pickerRef.current?.selectHighlighted();
+			} else if (e.key === "Escape") {
+				e.preventDefault();
+				if (pickerRef.current?.goBack()) return;
+				closePopover();
+			}
+		},
+		[showPopover, closePopover]
+	);
+
+	const handleSelection = useCallback(
+		(picked: MentionedDocumentInfo[]) => {
+			const editor = editorRef.current;
+			const existing = new Set(
+				(editor?.getMentionedDocuments() ?? []).map((doc) => getMentionDocKey(doc))
+			);
+			for (const mention of picked) {
+				const key = getMentionDocKey(mention);
+				if (existing.has(key)) continue;
+				editor?.insertMentionChip(toChipInput(mention));
+				existing.add(key);
+			}
+			closePopover();
+		},
+		[closePopover]
+	);
+
+	return (
+		<div
+			className={cn(
+				"border-popover-border focus-within:border-ring focus-within:ring-ring/50 dark:bg-input/30 min-h-16 w-full rounded-md border bg-transparent px-3 py-2 text-sm shadow-xs transition-[color,box-shadow] focus-within:ring-[3px]",
+				disabled && "cursor-not-allowed opacity-50"
+			)}
+		>
+			<Popover open={showPopover} onOpenChange={handlePopoverOpenChange}>
+				{anchorPoint ? (
+					<>
+						<PopoverAnchor
+							className="pointer-events-none fixed size-0"
+							style={{ left: anchorPoint.left, top: anchorPoint.top }}
+						/>
+						<ComposerSuggestionPopoverContent side="bottom">
+							<DocumentMentionPicker
+								ref={pickerRef}
+								searchSpaceId={searchSpaceId}
+								onSelectionChange={handleSelection}
+								onDone={closePopover}
+								initialSelectedDocuments={mentions}
+								externalSearch={mentionQuery}
+							/>
+						</ComposerSuggestionPopoverContent>
+					</>
+				) : null}
+			</Popover>
+			<InlineMentionEditor
+				ref={editorRef}
+				initialText={value}
+				placeholder={placeholder ?? "Type @ to reference files, folders, or connectors"}
+				disabled={disabled}
+				onChange={handleEditorChange}
+				onMentionTrigger={handleMentionTrigger}
+				onMentionClose={handleMentionClose}
+				onKeyDown={handleKeyDown}
+			/>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/schedule-section.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/schedule-section.tsx
new file mode 100644
index 000000000..401b4f5cb
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/schedule-section.tsx
@@ -0,0 +1,275 @@
+"use client";
+import { CalendarClock, CalendarOff, Plus, X } from "lucide-react";
+import { Button } from "@/components/ui/button";
+import { Input } from "@/components/ui/input";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "@/components/ui/select";
+import { type BuilderSchedule, scheduleToCron } from "@/lib/automations/builder-schema";
+import { describeCron } from "@/lib/automations/describe-cron";
+import {
+	DEFAULT_SCHEDULE,
+	FREQUENCY_OPTIONS,
+	fromCron,
+	type ScheduleFrequency,
+	type ScheduleModel,
+	toCron,
+	WEEKDAY_OPTIONS,
+} from "@/lib/automations/schedule-builder";
+import { cn } from "@/lib/utils";
+import { Field } from "./form-field";
+import { TimezoneCombobox } from "./timezone-combobox";
+
+interface ScheduleSectionProps {
+	schedule: BuilderSchedule | null;
+	timezone: string;
+	errors: Record<string, string>;
+	onScheduleChange: (schedule: BuilderSchedule | null) => void;
+	onTimezoneChange: (timezone: string) => void;
+}
+
+function pad(value: number): string {
+	return value.toString().padStart(2, "0");
+}
+
+export function ScheduleSection({
+	schedule,
+	timezone,
+	errors,
+	onScheduleChange,
+	onTimezoneChange,
+}: ScheduleSectionProps) {
+	if (schedule === null) {
+		return (
+			<div className="rounded-lg border border-dashed border-border/60 bg-muted/20 px-4 py-6 text-center">
+				<CalendarOff className="mx-auto h-7 w-7 text-muted-foreground" aria-hidden />
+				<p className="mt-2 text-sm text-foreground">No schedule</p>
+				<p className="mt-0.5 text-xs text-muted-foreground">
+					This automation won't run automatically until you add one.
+				</p>
+				<Button
+					type="button"
+					variant="outline"
+					size="sm"
+					className="mt-3"
+					onClick={() => onScheduleChange({ mode: "preset", model: { ...DEFAULT_SCHEDULE } })}
+				>
+					<Plus className="mr-1.5 h-4 w-4" />
+					Add a schedule
+				</Button>
+			</div>
+		);
+	}
+
+	const cron = scheduleToCron(schedule);
+	const label = describeCron(cron);
+
+	return (
+		<div className="space-y-3">
+			<div className="flex items-start justify-between gap-3 rounded-md border border-border/60 bg-background px-3 py-2">
+				<div className="flex items-center gap-2 text-sm min-w-0">
+					<CalendarClock className="h-4 w-4 shrink-0 text-muted-foreground" aria-hidden />
+					<span className="font-medium text-foreground truncate">{label}</span>
+					<span className="text-muted-foreground shrink-0">· {timezone}</span>
+				</div>
+				<Button
+					type="button"
+					variant="ghost"
+					size="icon"
+					className="h-6 w-6 shrink-0 text-muted-foreground hover:text-destructive"
+					aria-label="Remove schedule"
+					onClick={() => onScheduleChange(null)}
+				>
+					<X className="h-4 w-4" />
+				</Button>
+			</div>
+
+			{schedule.mode === "preset" ? (
+				<PresetEditor
+					model={schedule.model}
+					onChange={(model) => onScheduleChange({ mode: "preset", model })}
+					onSwitchToCron={() => onScheduleChange({ mode: "cron", cron: toCron(schedule.model) })}
+				/>
+			) : (
+				<CronEditor
+					cron={schedule.cron}
+					error={errors.schedule}
+					onChange={(value) => onScheduleChange({ mode: "cron", cron: value })}
+					onSwitchToPreset={() =>
+						onScheduleChange({
+							mode: "preset",
+							model: fromCron(schedule.cron) ?? { ...DEFAULT_SCHEDULE },
+						})
+					}
+				/>
+			)}
+
+			<Field label="Timezone">
+				<TimezoneCombobox value={timezone} onChange={onTimezoneChange} />
+			</Field>
+		</div>
+	);
+}
+
+interface PresetEditorProps {
+	model: ScheduleModel;
+	onChange: (model: ScheduleModel) => void;
+	onSwitchToCron: () => void;
+}
+
+function PresetEditor({ model, onChange, onSwitchToCron }: PresetEditorProps) {
+	const weeklyNoDays = model.frequency === "weekly" && model.daysOfWeek.length === 0;
+
+	return (
+		<div className="space-y-3">
+			<div className="grid grid-cols-1 gap-3 sm:grid-cols-2">
+				<Field label="Frequency">
+					<Select
+						value={model.frequency}
+						onValueChange={(value) => onChange({ ...model, frequency: value as ScheduleFrequency })}
+					>
+						<SelectTrigger className="w-full">
+							<SelectValue />
+						</SelectTrigger>
+						<SelectContent>
+							{FREQUENCY_OPTIONS.map((option) => (
+								<SelectItem key={option.value} value={option.value}>
+									{option.label}
+								</SelectItem>
+							))}
+						</SelectContent>
+					</Select>
+				</Field>
+
+				{model.frequency === "hourly" ? (
+					<Field label="At minute">
+						<Input
+							type="number"
+							min={0}
+							max={59}
+							value={model.minute}
+							onChange={(e) => onChange({ ...model, minute: clampInt(e.target.value, 0, 59) })}
+						/>
+					</Field>
+				) : (
+					<Field label="At time">
+						<Input
+							type="time"
+							value={`${pad(model.hour)}:${pad(model.minute)}`}
+							onChange={(e) => {
+								const [h, m] = e.target.value.split(":");
+								onChange({
+									...model,
+									hour: clampInt(h, 0, 23),
+									minute: clampInt(m, 0, 59),
+								});
+							}}
+						/>
+					</Field>
+				)}
+			</div>
+
+			{model.frequency === "weekly" && (
+				<Field label="On days" error={weeklyNoDays ? "Pick at least one day" : undefined}>
+					<div className="flex flex-wrap gap-1.5">
+						{WEEKDAY_OPTIONS.map((day) => {
+							const active = model.daysOfWeek.includes(day.value);
+							return (
+								<button
+									key={day.value}
+									type="button"
+									aria-pressed={active}
+									onClick={() =>
+										onChange({ ...model, daysOfWeek: toggleDay(model.daysOfWeek, day.value) })
+									}
+									className={cn(
+										"rounded-md border px-2.5 py-1 text-xs font-medium transition-colors",
+										active
+											? "border-primary bg-primary text-primary-foreground"
+											: "border-border/60 bg-background text-muted-foreground hover:bg-muted"
+									)}
+								>
+									{day.short}
+								</button>
+							);
+						})}
+					</div>
+				</Field>
+			)}
+
+			{model.frequency === "monthly" && (
+				<Field label="Day of month" hint={"1\u201331."}>
+					<Input
+						type="number"
+						min={1}
+						max={31}
+						value={model.dayOfMonth}
+						onChange={(e) => onChange({ ...model, dayOfMonth: clampInt(e.target.value, 1, 31) })}
+						className="w-24"
+					/>
+				</Field>
+			)}
+
+			<button
+				type="button"
+				onClick={onSwitchToCron}
+				className="text-xs text-muted-foreground underline-offset-2 hover:text-foreground hover:underline"
+			>
+				Advanced: enter a schedule expression
+			</button>
+		</div>
+	);
+}
+
+interface CronEditorProps {
+	cron: string;
+	error?: string;
+	onChange: (cron: string) => void;
+	onSwitchToPreset: () => void;
+}
+
+function CronEditor({ cron, error, onChange, onSwitchToPreset }: CronEditorProps) {
+	const trimmed = cron.trim();
+	const label = trimmed ? describeCron(trimmed) : null;
+
+	return (
+		<div className="space-y-2">
+			<Field
+				label="Schedule expression"
+				hint="Five-field cron, e.g. 0 9 * * 1-5 (minute hour day month weekday)."
+				error={error}
+			>
+				<Input
+					value={cron}
+					placeholder="0 9 * * 1-5"
+					className="font-mono"
+					onChange={(e) => onChange(e.target.value)}
+				/>
+			</Field>
+			{label && label !== trimmed && <p className="text-xs text-muted-foreground">Runs: {label}</p>}
+			<button
+				type="button"
+				onClick={onSwitchToPreset}
+				className="text-xs text-muted-foreground underline-offset-2 hover:text-foreground hover:underline"
+			>
+				Use the simple picker
+			</button>
+		</div>
+	);
+}
+
+function clampInt(raw: string, min: number, max: number): number {
+	const value = Number.parseInt(raw, 10);
+	if (Number.isNaN(value)) return min;
+	return Math.min(max, Math.max(min, value));
+}
+
+function toggleDay(days: number[], value: number): number[] {
+	return days.includes(value)
+		? days.filter((day) => day !== value)
+		: [...days, value].sort((a, b) => a - b);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-item.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-item.tsx
new file mode 100644
index 000000000..55b9ea406
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-item.tsx
@@ -0,0 +1,136 @@
+"use client";
+import { ChevronDown, ChevronUp, Trash2 } from "lucide-react";
+import {
+	Accordion,
+	AccordionContent,
+	AccordionItem,
+	AccordionTrigger,
+} from "@/components/ui/accordion";
+import { Button } from "@/components/ui/button";
+import { Input } from "@/components/ui/input";
+import type { BuilderTask } from "@/lib/automations/builder-schema";
+import { Field } from "./form-field";
+import { MentionTaskInput } from "./mention-task-input";
+
+interface TaskItemProps {
+	index: number;
+	total: number;
+	task: BuilderTask;
+	searchSpaceId: number;
+	error?: string;
+	onChange: (patch: Partial<BuilderTask>) => void;
+	onMoveUp: () => void;
+	onMoveDown: () => void;
+	onRemove: () => void;
+}
+
+function parseOptionalInt(raw: string): number | null {
+	const trimmed = raw.trim();
+	if (trimmed === "") return null;
+	const value = Number.parseInt(trimmed, 10);
+	return Number.isNaN(value) ? null : value;
+}
+
+export function TaskItem({
+	index,
+	total,
+	task,
+	searchSpaceId,
+	error,
+	onChange,
+	onMoveUp,
+	onMoveDown,
+	onRemove,
+}: TaskItemProps) {
+	return (
+		<div className="rounded-lg border border-border/60 bg-background p-3 space-y-3">
+			<div className="flex items-center justify-between gap-2">
+				<span className="inline-flex items-center gap-2 text-xs font-medium text-muted-foreground">
+					<span className="inline-flex h-5 w-5 items-center justify-center rounded-full bg-muted text-[10px] font-semibold text-foreground">
+						{index + 1}
+					</span>
+					Task {index + 1}
+				</span>
+				<div className="flex items-center gap-0.5">
+					<Button
+						type="button"
+						variant="ghost"
+						size="icon"
+						className="h-7 w-7 text-muted-foreground"
+						disabled={index === 0}
+						aria-label="Move task up"
+						onClick={onMoveUp}
+					>
+						<ChevronUp className="h-4 w-4" />
+					</Button>
+					<Button
+						type="button"
+						variant="ghost"
+						size="icon"
+						className="h-7 w-7 text-muted-foreground"
+						disabled={index === total - 1}
+						aria-label="Move task down"
+						onClick={onMoveDown}
+					>
+						<ChevronDown className="h-4 w-4" />
+					</Button>
+					<Button
+						type="button"
+						variant="ghost"
+						size="icon"
+						className="h-7 w-7 text-muted-foreground hover:text-destructive"
+						disabled={total === 1}
+						aria-label="Remove task"
+						onClick={onRemove}
+					>
+						<Trash2 className="h-4 w-4" />
+					</Button>
+				</div>
+			</div>
+
+			<Field
+				error={error}
+				hint="Type @ to reference files, folders, or connectors for extra context."
+			>
+				<MentionTaskInput
+					searchSpaceId={searchSpaceId}
+					value={task.query}
+					mentions={task.mentions}
+					placeholder="What should the agent do? e.g. Summarize new docs in @Marketing since the last run."
+					onChange={(query, mentions) => onChange({ query, mentions })}
+				/>
+			</Field>
+
+			<Accordion type="single" collapsible>
+				<AccordionItem value="advanced" className="border-b-0">
+					<AccordionTrigger className="py-1.5 text-xs text-muted-foreground hover:no-underline">
+						Advanced
+					</AccordionTrigger>
+					<AccordionContent className="pb-1">
+						<div className="grid grid-cols-2 gap-3">
+							<Field label="Max retries" hint="Leave blank to use the default.">
+								<Input
+									type="number"
+									min={0}
+									max={10}
+									value={task.maxRetries ?? ""}
+									placeholder="default"
+									onChange={(e) => onChange({ maxRetries: parseOptionalInt(e.target.value) })}
+								/>
+							</Field>
+							<Field label="Timeout (seconds)" hint="Leave blank to use the default.">
+								<Input
+									type="number"
+									min={1}
+									value={task.timeoutSeconds ?? ""}
+									placeholder="default"
+									onChange={(e) => onChange({ timeoutSeconds: parseOptionalInt(e.target.value) })}
+								/>
+							</Field>
+						</div>
+					</AccordionContent>
+				</AccordionItem>
+			</Accordion>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-list.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-list.tsx
new file mode 100644
index 000000000..41a53542f
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/task-list.tsx
@@ -0,0 +1,65 @@
+"use client";
+import { Plus } from "lucide-react";
+import { Button } from "@/components/ui/button";
+import { type BuilderTask, emptyTask } from "@/lib/automations/builder-schema";
+import { TaskItem } from "./task-item";
+
+interface TaskListProps {
+	tasks: BuilderTask[];
+	errors: Record<string, string>;
+	searchSpaceId: number;
+	onChange: (tasks: BuilderTask[]) => void;
+}
+
+/**
+ * Ordered list of agent tasks. Steps run sequentially in the order shown.
+ * Reordering is done with up/down buttons to avoid a drag-and-drop dependency.
+ */
+export function TaskList({ tasks, errors, searchSpaceId, onChange }: TaskListProps) {
+	function updateAt(index: number, patch: Partial<BuilderTask>) {
+		onChange(tasks.map((task, i) => (i === index ? { ...task, ...patch } : task)));
+	}
+
+	function removeAt(index: number) {
+		onChange(tasks.filter((_, i) => i !== index));
+	}
+
+	function move(index: number, direction: -1 | 1) {
+		const target = index + direction;
+		if (target < 0 || target >= tasks.length) return;
+		const next = [...tasks];
+		[next[index], next[target]] = [next[target], next[index]];
+		onChange(next);
+	}
+
+	return (
+		<div className="space-y-3">
+			{tasks.map((task, index) => (
+				<TaskItem
+					key={task.id}
+					index={index}
+					total={tasks.length}
+					task={task}
+					searchSpaceId={searchSpaceId}
+					error={errors[`tasks.${index}.query`]}
+					onChange={(patch) => updateAt(index, patch)}
+					onMoveUp={() => move(index, -1)}
+					onMoveDown={() => move(index, 1)}
+					onRemove={() => removeAt(index)}
+				/>
+			))}
+
+			{errors.tasks && <p className="text-xs text-destructive">{errors.tasks}</p>}
+
+			<Button
+				type="button"
+				variant="outline"
+				size="sm"
+				onClick={() => onChange([...tasks, emptyTask()])}
+			>
+				<Plus className="mr-1.5 h-4 w-4" />
+				Add task
+			</Button>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/timezone-combobox.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/timezone-combobox.tsx
new file mode 100644
index 000000000..bc3b97542
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/timezone-combobox.tsx
@@ -0,0 +1,71 @@
+"use client";
+import { Check, ChevronsUpDown } from "lucide-react";
+import { useMemo, useState } from "react";
+import { Button } from "@/components/ui/button";
+import {
+	Command,
+	CommandEmpty,
+	CommandGroup,
+	CommandInput,
+	CommandItem,
+	CommandList,
+} from "@/components/ui/command";
+import { Popover, PopoverContent, PopoverTrigger } from "@/components/ui/popover";
+import { getTimezones } from "@/lib/automations/builder-schema";
+import { cn } from "@/lib/utils";
+
+interface TimezoneComboboxProps {
+	value: string;
+	onChange: (value: string) => void;
+}
+
+/**
+ * Searchable IANA timezone picker. The full ``Intl.supportedValuesOf`` list is
+ * long, so it lives behind a Command search instead of a flat Select.
+ */
+export function TimezoneCombobox({ value, onChange }: TimezoneComboboxProps) {
+	const [open, setOpen] = useState(false);
+	const timezones = useMemo(() => getTimezones(), []);
+
+	return (
+		<Popover open={open} onOpenChange={setOpen}>
+			<PopoverTrigger asChild>
+				<Button
+					type="button"
+					variant="outline"
+					role="combobox"
+					aria-expanded={open}
+					className="w-full justify-between font-normal"
+				>
+					<span className="truncate">{value || "Select timezone"}</span>
+					<ChevronsUpDown className="ml-2 h-4 w-4 shrink-0 opacity-50" />
+				</Button>
+			</PopoverTrigger>
+			<PopoverContent className="w-[--radix-popover-trigger-width] p-0" align="start">
+				<Command>
+					<CommandInput placeholder="Search timezone..." />
+					<CommandList>
+						<CommandEmpty>No timezone found.</CommandEmpty>
+						<CommandGroup>
+							{timezones.map((tz) => (
+								<CommandItem
+									key={tz}
+									value={tz}
+									onSelect={() => {
+										onChange(tz);
+										setOpen(false);
+									}}
+								>
+									<Check
+										className={cn("mr-2 h-4 w-4", value === tz ? "opacity-100" : "opacity-0")}
+									/>
+									{tz}
+								</CommandItem>
+							))}
+						</CommandGroup>
+					</CommandList>
+				</Command>
+			</PopoverContent>
+		</Popover>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/unattended-toggle.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/unattended-toggle.tsx
new file mode 100644
index 000000000..ba665445f
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/builder/unattended-toggle.tsx
@@ -0,0 +1,47 @@
+"use client";
+import { Info } from "lucide-react";
+import { Switch } from "@/components/ui/switch";
+import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
+
+interface UnattendedToggleProps {
+	checked: boolean;
+	onChange: (checked: boolean) => void;
+}
+
+/**
+ * Maps to ``auto_approve_all`` on every agent task. Automations run with no one
+ * watching, so this defaults ON; turning it off means any approval prompt the
+ * agent raises is rejected and the step can stall.
+ */
+export function UnattendedToggle({ checked, onChange }: UnattendedToggleProps) {
+	return (
+		<div className="flex items-start justify-between gap-3 rounded-lg border border-border/60 bg-background px-3 py-3">
+			<div className="space-y-0.5 min-w-0">
+				<div className="flex items-center gap-1.5">
+					<span className="text-sm font-medium text-foreground">
+						Run without asking for approvals
+					</span>
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<button type="button" aria-label="More info" className="text-muted-foreground">
+								<Info className="h-3.5 w-3.5" />
+							</button>
+						</TooltipTrigger>
+						<TooltipContent className="max-w-xs">
+							Automations run unattended. With this off, any approval the agent asks for is
+							rejected, which can stall a step.
+						</TooltipContent>
+					</Tooltip>
+				</div>
+				<p className="text-xs text-muted-foreground">
+					Auto-approve actions the agent would normally pause to confirm.
+				</p>
+			</div>
+			<Switch
+				checked={checked}
+				onCheckedChange={onChange}
+				aria-label="Run without asking for approvals"
+			/>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/components/delete-automation-dialog.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/components/delete-automation-dialog.tsx
new file mode 100644
index 000000000..23fc522ca
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/components/delete-automation-dialog.tsx
@@ -0,0 +1,88 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { useState } from "react";
+import { deleteAutomationMutationAtom } from "@/atoms/automations/automations-mutation.atoms";
+import {
+	AlertDialog,
+	AlertDialogAction,
+	AlertDialogCancel,
+	AlertDialogContent,
+	AlertDialogDescription,
+	AlertDialogFooter,
+	AlertDialogHeader,
+	AlertDialogTitle,
+} from "@/components/ui/alert-dialog";
+import { Spinner } from "@/components/ui/spinner";
+
+interface DeleteAutomationDialogProps {
+	open: boolean;
+	onOpenChange: (open: boolean) => void;
+	automationId: number;
+	automationName: string;
+	searchSpaceId: number;
+	/**
+	 * Fired after a successful delete, before the dialog closes. The detail
+	 * page uses this to navigate back to the list (the row simply vanishes
+	 * on the list page so no callback is needed there).
+	 */
+	onDeleted?: () => void;
+}
+
+/**
+ * Confirm + delete one automation. FK cascade on the backend wipes attached
+ * triggers and runs, so we mention it explicitly. List re-fetch is handled
+ * by the mutation atom's onSuccess.
+ */
+export function DeleteAutomationDialog({
+	open,
+	onOpenChange,
+	automationId,
+	automationName,
+	searchSpaceId,
+	onDeleted,
+}: DeleteAutomationDialogProps) {
+	const { mutateAsync: deleteAutomation } = useAtomValue(deleteAutomationMutationAtom);
+	const [submitting, setSubmitting] = useState(false);
+
+	async function handleConfirm() {
+		setSubmitting(true);
+		try {
+			await deleteAutomation({ automationId, searchSpaceId });
+			onDeleted?.();
+			onOpenChange(false);
+		} finally {
+			setSubmitting(false);
+		}
+	}
+
+	return (
+		<AlertDialog open={open} onOpenChange={onOpenChange}>
+			<AlertDialogContent>
+				<AlertDialogHeader>
+					<AlertDialogTitle>Delete this automation?</AlertDialogTitle>
+					<AlertDialogDescription>
+						<span className="font-medium text-foreground">{automationName}</span> and all of its
+						triggers and run history will be removed. This cannot be undone.
+					</AlertDialogDescription>
+				</AlertDialogHeader>
+				<AlertDialogFooter>
+					<AlertDialogCancel disabled={submitting}>Cancel</AlertDialogCancel>
+					<AlertDialogAction
+						onClick={handleConfirm}
+						disabled={submitting}
+						className="bg-destructive text-white hover:bg-destructive/90"
+					>
+						{submitting ? (
+							<span className="inline-flex items-center gap-2">
+								<Spinner size="xs" />
+								Deleting…
+							</span>
+						) : (
+							"Delete"
+						)}
+					</AlertDialogAction>
+				</AlertDialogFooter>
+			</AlertDialogContent>
+		</AlertDialog>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/hooks/use-automation-permissions.ts b/surfsense_web/app/dashboard/[search_space_id]/automations/hooks/use-automation-permissions.ts
new file mode 100644
index 000000000..293688710
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/hooks/use-automation-permissions.ts
@@ -0,0 +1,37 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { useMemo } from "react";
+import { canPerform, myAccessAtom } from "@/atoms/members/members-query.atoms";
+
+/**
+ * Centralized RBAC gates for the automations slice. Co-located with the
+ * route so adding/removing surfaces stays a one-file change. Backed by
+ * the same ``myAccessAtom`` the rest of the app uses; owners short-circuit
+ * to ``true`` for every action.
+ *
+ * Mirrors backend permissions in ``app.db.permissions`` (automations:*).
+ */
+export interface AutomationPermissions {
+	loading: boolean;
+	canCreate: boolean;
+	canRead: boolean;
+	canUpdate: boolean;
+	canDelete: boolean;
+	canExecute: boolean;
+}
+
+export function useAutomationPermissions(): AutomationPermissions {
+	const { data: access, isLoading } = useAtomValue(myAccessAtom);
+
+	return useMemo(
+		() => ({
+			loading: isLoading,
+			canCreate: canPerform(access, "automations:create"),
+			canRead: canPerform(access, "automations:read"),
+			canUpdate: canPerform(access, "automations:update"),
+			canDelete: canPerform(access, "automations:delete"),
+			canExecute: canPerform(access, "automations:execute"),
+		}),
+		[access, isLoading]
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/new/automation-new-content.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/new/automation-new-content.tsx
new file mode 100644
index 000000000..7dc117aab
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/new/automation-new-content.tsx
@@ -0,0 +1,46 @@
+"use client";
+import { ShieldAlert } from "lucide-react";
+import { AutomationBuilderForm } from "../components/builder/automation-builder-form";
+import { useAutomationPermissions } from "../hooks/use-automation-permissions";
+import { AutomationNewHeader } from "./components/automation-new-header";
+
+interface AutomationNewContentProps {
+	searchSpaceId: number;
+}
+
+/**
+ * Orchestrator for the create route. Gates on ``automations:create`` so users
+ * who can't create don't even see the form; same panel as the detail page's
+ * access-denied state for consistency. The builder defaults to the friendly
+ * form with a raw-JSON escape hatch.
+ *
+ * Model eligibility is no longer gated here — the builder's own model pickers
+ * list eligible (premium/BYOK) models, surface a per-slot notice when none
+ * exist, and block submit until each slot resolves.
+ */
+export function AutomationNewContent({ searchSpaceId }: AutomationNewContentProps) {
+	const perms = useAutomationPermissions();
+
+	if (perms.loading) {
+		return <div className="h-32 rounded-md border border-border/60 bg-muted/10 animate-pulse" />;
+	}
+
+	if (!perms.canCreate) {
+		return (
+			<div className="rounded-lg border border-border/60 bg-muted/20 px-6 py-12 text-center">
+				<ShieldAlert className="mx-auto h-10 w-10 text-muted-foreground" aria-hidden />
+				<h2 className="mt-3 text-base font-semibold text-foreground">Access denied</h2>
+				<p className="mt-1 text-sm text-muted-foreground max-w-md mx-auto">
+					You don't have permission to create automations in this search space.
+				</p>
+			</div>
+		);
+	}
+
+	return (
+		<>
+			<AutomationNewHeader searchSpaceId={searchSpaceId} />
+			<AutomationBuilderForm mode="create" searchSpaceId={searchSpaceId} />
+		</>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/new/components/automation-new-header.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/new/components/automation-new-header.tsx
new file mode 100644
index 000000000..ccfbbc9fa
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/new/components/automation-new-header.tsx
@@ -0,0 +1,39 @@
+"use client";
+import { ArrowLeft, MessageSquarePlus } from "lucide-react";
+import Link from "next/link";
+import { Button } from "@/components/ui/button";
+
+interface AutomationNewHeaderProps {
+	searchSpaceId: number;
+}
+
+export function AutomationNewHeader({ searchSpaceId }: AutomationNewHeaderProps) {
+	return (
+		<div className="space-y-3">
+			<Button asChild variant="ghost" size="sm" className="-ml-2 h-auto px-2 py-1">
+				<Link
+					href={`/dashboard/${searchSpaceId}/automations`}
+					className="text-xs text-muted-foreground"
+				>
+					<ArrowLeft className="mr-1.5 h-3.5 w-3.5" />
+					Back to automations
+				</Link>
+			</Button>
+
+			<div className="flex items-start justify-between gap-4 flex-wrap">
+				<div className="space-y-1">
+					<h1 className="text-xl md:text-2xl font-semibold text-foreground">New automation</h1>
+					<p className="text-sm text-muted-foreground max-w-2xl">
+						Set up a task and a schedule. Prefer natural language? Use chat instead.
+					</p>
+				</div>
+				<Button asChild variant="outline" size="sm">
+					<Link href={`/dashboard/${searchSpaceId}/new-chat`}>
+						<MessageSquarePlus className="mr-2 h-4 w-4" />
+						Switch to chat
+					</Link>
+				</Button>
+			</div>
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/new/page.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/new/page.tsx
new file mode 100644
index 000000000..f6e8e0008
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/new/page.tsx
@@ -0,0 +1,15 @@
+import { AutomationNewContent } from "./automation-new-content";
+
+export default async function NewAutomationPage({
+	params,
+}: {
+	params: Promise<{ search_space_id: string }>;
+}) {
+	const { search_space_id } = await params;
+
+	return (
+		<div className="w-full space-y-6">
+			<AutomationNewContent searchSpaceId={Number(search_space_id)} />
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/automations/page.tsx b/surfsense_web/app/dashboard/[search_space_id]/automations/page.tsx
new file mode 100644
index 000000000..b77cb20f4
--- /dev/null
+++ b/surfsense_web/app/dashboard/[search_space_id]/automations/page.tsx
@@ -0,0 +1,15 @@
+import { AutomationsContent } from "./automations-content";
+
+export default async function AutomationsPage({
+	params,
+}: {
+	params: Promise<{ search_space_id: string }>;
+}) {
+	const { search_space_id } = await params;
+
+	return (
+		<div className="w-full space-y-6">
+			<AutomationsContent searchSpaceId={Number(search_space_id)} />
+		</div>
+	);
+}
diff --git a/surfsense_web/app/dashboard/[search_space_id]/connectors/callback/route.ts b/surfsense_web/app/dashboard/[search_space_id]/connectors/callback/route.ts
index 14573066d..304f33a33 100644
--- a/surfsense_web/app/dashboard/[search_space_id]/connectors/callback/route.ts
+++ b/surfsense_web/app/dashboard/[search_space_id]/connectors/callback/route.ts
@@ -1,6 +1,5 @@
 import { type NextRequest, NextResponse } from "next/server";
-
-const OAUTH_RESULT_COOKIE = "connector_oauth_result";
+import { OAUTH_RESULT_COOKIE, type OAuthCallbackResult } from "@/contracts/types/oauth.types";
 
 export async function GET(
 	request: NextRequest,
@@ -9,12 +8,13 @@ export async function GET(
 	const { search_space_id } = await params;
 	const searchParams = request.nextUrl.searchParams;
 
-	const result = JSON.stringify({
+	const payload: OAuthCallbackResult = {
 		success: searchParams.get("success"),
 		error: searchParams.get("error"),
 		connector: searchParams.get("connector"),
 		connectorId: searchParams.get("connectorId"),
-	});
+	};
+	const result = JSON.stringify(payload);
 
 	const redirectUrl = new URL(`/dashboard/${search_space_id}/new-chat`, request.url);
 
diff --git a/surfsense_web/app/dashboard/[search_space_id]/new-chat/[[...chat_id]]/page.tsx b/surfsense_web/app/dashboard/[search_space_id]/new-chat/[[...chat_id]]/page.tsx
index ecd5ab6b1..f8ca9bbc2 100644
--- a/surfsense_web/app/dashboard/[search_space_id]/new-chat/[[...chat_id]]/page.tsx
+++ b/surfsense_web/app/dashboard/[search_space_id]/new-chat/[[...chat_id]]/page.tsx
@@ -69,6 +69,7 @@ import { documentsApiService } from "@/lib/apis/documents-api.service";
 import { getBearerToken } from "@/lib/auth-utils";
 import { type ChatFlow, classifyChatError } from "@/lib/chat/chat-error-classifier";
 import { tagPreAcceptSendFailure, toHttpResponseError } from "@/lib/chat/chat-request-errors";
+import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
 import {
 	convertToThreadMessage,
 	reconcileInterruptedAssistantMessages,
@@ -109,6 +110,7 @@ import {
 	extractUserTurnForNewChatApi,
 	type NewChatUserImagePayload,
 } from "@/lib/chat/user-turn-api-parts";
+import { BACKEND_URL } from "@/lib/env-config";
 import { NotFoundError } from "@/lib/error";
 import {
 	trackChatBlocked,
@@ -118,7 +120,7 @@ import {
 	trackChatResponseReceived,
 } from "@/lib/posthog/events";
 import Loading from "../loading";
-import { BACKEND_URL } from "@/lib/env-config";
+
 const MobileEditorPanel = dynamic(
 	() =>
 		import("@/components/editor-panel/editor-panel").then((m) => ({
@@ -206,11 +208,13 @@ function pairBundleToolCallIds(
 const MentionedDocumentInfoSchema = z.object({
 	id: z.number(),
 	title: z.string(),
-	document_type: z.string(),
+	document_type: z.string().optional(),
 	kind: z
-		.union([z.literal("doc"), z.literal("folder")])
+		.union([z.literal("doc"), z.literal("folder"), z.literal("connector")])
 		.optional()
 		.default("doc"),
+	connector_type: z.string().optional(),
+	account_name: z.string().optional(),
 });
 
 const MentionedDocumentsPartSchema = z.object({
@@ -227,7 +231,30 @@ function extractMentionedDocuments(content: unknown): MentionedDocumentInfo[] {
 	for (const part of content) {
 		const result = MentionedDocumentsPartSchema.safeParse(part);
 		if (result.success) {
-			return result.data.documents;
+			return result.data.documents.map<MentionedDocumentInfo>((doc) => {
+				if (doc.kind === "connector") {
+					return {
+						id: doc.id,
+						title: doc.title,
+						kind: "connector",
+						connector_type: doc.connector_type ?? doc.document_type ?? "UNKNOWN",
+						account_name: doc.account_name ?? doc.title,
+					};
+				}
+				if (doc.kind === "folder") {
+					return {
+						id: doc.id,
+						title: doc.title,
+						kind: "folder",
+					};
+				}
+				return {
+					id: doc.id,
+					title: doc.title,
+					document_type: doc.document_type ?? "UNKNOWN",
+					kind: "doc",
+				};
+			});
 		}
 	}
 
@@ -713,15 +740,6 @@ export default function NewChatPage() {
 			queryFn: () => documentsApiService.searchDocumentTitles({ queryParams: prefetchParams }),
 			staleTime: 60 * 1000,
 		});
-
-		queryClient.prefetchQuery({
-			queryKey: ["surfsense-docs-mention", "", false],
-			queryFn: () =>
-				documentsApiService.getSurfsenseDocs({
-					queryParams: { page: 0, page_size: 20 },
-				}),
-			staleTime: 3 * 60 * 1000,
-		});
 	}, [searchSpaceId, queryClient]);
 
 	// Handle scroll to comment from URL query params (e.g., from inbox item click)
@@ -922,30 +940,23 @@ export default function NewChatPage() {
 			trackChatMessageSent(searchSpaceId, currentThreadId, {
 				hasAttachments: userImages.length > 0,
 				hasMentionedDocuments:
-					mentionedDocumentIds.surfsense_doc_ids.length > 0 ||
 					mentionedDocumentIds.document_ids.length > 0 ||
-					mentionedDocumentIds.folder_ids.length > 0,
+					mentionedDocumentIds.folder_ids.length > 0 ||
+					mentionedDocumentIds.connector_ids.length > 0,
 				messageLength: userQuery.length,
 			});
 
 			// Collect unique mention chips for display & persistence.
-			// Dedup key is ``kind:document_type:id`` so a folder and a
-			// doc with the same integer id never collapse into one
-			// entry. The ``kind`` field is forwarded to the backend
+			// The ``kind`` field is forwarded to the backend
 			// so the persisted ``mentioned-documents`` content part
 			// can render the correct chip type on reload.
 			const allMentionedDocs: MentionedDocumentInfo[] = [];
 			const seenDocKeys = new Set<string>();
 			for (const doc of mentionedDocuments) {
-				const key = `${doc.kind}:${doc.document_type}:${doc.id}`;
+				const key = getMentionDocKey(doc);
 				if (seenDocKeys.has(key)) continue;
 				seenDocKeys.add(key);
-				allMentionedDocs.push({
-					id: doc.id,
-					title: doc.title,
-					document_type: doc.document_type,
-					kind: doc.kind,
-				});
+				allMentionedDocs.push(doc);
 			}
 
 			if (allMentionedDocs.length > 0) {
@@ -1006,11 +1017,11 @@ export default function NewChatPage() {
 
 				// Get mentioned document IDs for context (separate fields for backend)
 				const hasDocumentIds = mentionedDocumentIds.document_ids.length > 0;
-				const hasSurfsenseDocIds = mentionedDocumentIds.surfsense_doc_ids.length > 0;
 				const hasFolderIds = mentionedDocumentIds.folder_ids.length > 0;
+				const hasConnectorIds = mentionedDocumentIds.connector_ids.length > 0;
 
 				// Clear mentioned documents after capturing them
-				if (hasDocumentIds || hasSurfsenseDocIds || hasFolderIds) {
+				if (hasDocumentIds || hasFolderIds || hasConnectorIds) {
 					setMentionedDocuments([]);
 				}
 
@@ -1032,24 +1043,17 @@ export default function NewChatPage() {
 							mentioned_document_ids: hasDocumentIds
 								? mentionedDocumentIds.document_ids
 								: undefined,
-							mentioned_surfsense_doc_ids: hasSurfsenseDocIds
-								? mentionedDocumentIds.surfsense_doc_ids
-								: undefined,
 							mentioned_folder_ids: hasFolderIds ? mentionedDocumentIds.folder_ids : undefined,
+							mentioned_connector_ids: hasConnectorIds
+								? mentionedDocumentIds.connector_ids
+								: undefined,
+							mentioned_connectors: hasConnectorIds ? mentionedDocumentIds.connectors : undefined,
 							// Full mention metadata (docs + folders, with
 							// ``kind`` discriminator) so the BE can embed a
 							// ``mentioned-documents`` ContentPart on the
 							// persisted user message (replaces the old FE-side
 							// injection in ``persistUserTurn``).
-							mentioned_documents:
-								allMentionedDocs.length > 0
-									? allMentionedDocs.map((d) => ({
-											id: d.id,
-											title: d.title,
-											document_type: d.document_type,
-											kind: d.kind,
-										}))
-									: undefined,
+							mentioned_documents: allMentionedDocs.length > 0 ? allMentionedDocs : undefined,
 							disabled_tools: disabledTools.length > 0 ? disabledTools : undefined,
 							...(userImages.length > 0 ? { user_images: userImages } : {}),
 						}),
@@ -1929,22 +1933,19 @@ export default function NewChatPage() {
 				const selection = await getAgentFilesystemSelection(searchSpaceId, {
 					localFilesystemEnabled,
 				});
-				// Partition the source mentions back into doc/surfsense_doc/folder
-				// id buckets so the regenerate route can pass them to
-				// ``stream_new_chat`` and the priority middleware sees the
-				// same ``[USER-MENTIONED]`` priority entries the original
-				// turn did. Without this partition the regenerate flow
-				// silently dropped the agent's mention awareness — same
-				// architectural bug we fixed on the new-chat path.
-				const regenerateSurfsenseDocIds = sourceMentionedDocs
-					.filter((d) => d.kind === "doc" && d.document_type === "SURFSENSE_DOCS")
-					.map((d) => d.id);
+				// Partition the source mentions back into doc/folder id buckets
+				// so the regenerate route can pass them to ``stream_new_chat``
+				// and the priority middleware sees the same ``[USER-MENTIONED]``
+				// priority entries the original turn did. Without this partition
+				// the regenerate flow silently dropped the agent's mention
+				// awareness — same architectural bug we fixed on the new-chat path.
 				const regenerateDocIds = sourceMentionedDocs
-					.filter((d) => d.kind === "doc" && d.document_type !== "SURFSENSE_DOCS")
+					.filter((d) => d.kind === "doc")
 					.map((d) => d.id);
 				const regenerateFolderIds = sourceMentionedDocs
 					.filter((d) => d.kind === "folder")
 					.map((d) => d.id);
+				const regenerateConnectors = sourceMentionedDocs.filter((d) => d.kind === "connector");
 
 				const requestBody: Record<string, unknown> = {
 					search_space_id: searchSpaceId,
@@ -1954,22 +1955,15 @@ export default function NewChatPage() {
 					client_platform: selection.client_platform,
 					local_filesystem_mounts: selection.local_filesystem_mounts,
 					mentioned_document_ids: regenerateDocIds.length > 0 ? regenerateDocIds : undefined,
-					mentioned_surfsense_doc_ids:
-						regenerateSurfsenseDocIds.length > 0 ? regenerateSurfsenseDocIds : undefined,
 					mentioned_folder_ids: regenerateFolderIds.length > 0 ? regenerateFolderIds : undefined,
+					mentioned_connector_ids:
+						regenerateConnectors.length > 0 ? regenerateConnectors.map((d) => d.id) : undefined,
+					mentioned_connectors: regenerateConnectors.length > 0 ? regenerateConnectors : undefined,
 					// Full mention metadata for the regenerate-specific
 					// source list. Only meaningful for edit (the BE only
 					// re-persists a user row when ``user_query`` is set);
 					// reload reuses the original turn's mentioned_documents.
-					mentioned_documents:
-						sourceMentionedDocs.length > 0
-							? sourceMentionedDocs.map((d) => ({
-									id: d.id,
-									title: d.title,
-									document_type: d.document_type,
-									kind: d.kind,
-								}))
-							: undefined,
+					mentioned_documents: sourceMentionedDocs.length > 0 ? sourceMentionedDocs : undefined,
 				};
 				if (isEdit) {
 					requestBody.user_images = editExtras?.userImages ?? [];
diff --git a/surfsense_web/app/dashboard/[search_space_id]/team/team-content.tsx b/surfsense_web/app/dashboard/[search_space_id]/team/team-content.tsx
index f003dde1b..3bc2459c1 100644
--- a/surfsense_web/app/dashboard/[search_space_id]/team/team-content.tsx
+++ b/surfsense_web/app/dashboard/[search_space_id]/team/team-content.tsx
@@ -31,7 +31,7 @@ import {
 	deleteMemberMutationAtom,
 	updateMemberMutationAtom,
 } from "@/atoms/members/members-mutation.atoms";
-import { membersAtom, myAccessAtom } from "@/atoms/members/members-query.atoms";
+import { canPerform, membersAtom, myAccessAtom } from "@/atoms/members/members-query.atoms";
 import {
 	AlertDialog,
 	AlertDialogAction,
@@ -126,14 +126,9 @@ export function TeamContent({ searchSpaceId }: TeamContentProps) {
 	const { data: access = null, isLoading: accessLoading } = useAtomValue(myAccessAtom);
 
 	const hasPermission = useCallback(
-		(permission: string) => {
-			if (!access) return false;
-			if (access.is_owner) return true;
-			return access.permissions?.includes(permission) ?? false;
-		},
+		(permission: string) => canPerform(access, permission),
 		[access]
 	);
-
 	const { data: members = [], isLoading: membersLoading } = useAtomValue(membersAtom);
 
 	const { mutateAsync: updateMember } = useAtomValue(updateMemberMutationAtom);
diff --git a/surfsense_web/app/dashboard/[search_space_id]/user-settings/components/AgentPermissionsContent.tsx b/surfsense_web/app/dashboard/[search_space_id]/user-settings/components/AgentPermissionsContent.tsx
index 5af94f7e3..5919abcd6 100644
--- a/surfsense_web/app/dashboard/[search_space_id]/user-settings/components/AgentPermissionsContent.tsx
+++ b/surfsense_web/app/dashboard/[search_space_id]/user-settings/components/AgentPermissionsContent.tsx
@@ -474,8 +474,10 @@ export function AgentPermissionsContent() {
 								handleConfirmDelete();
 							}}
 							disabled={deleteMutation.isPending}
+							className="relative min-w-[88px]"
 						>
-							{deleteMutation.isPending ? "Deleting…" : "Delete"}
+							<span className={deleteMutation.isPending ? "opacity-0" : ""}>Delete</span>
+							{deleteMutation.isPending && <Spinner size="sm" className="absolute" />}
 						</AlertDialogAction>
 					</AlertDialogFooter>
 				</AlertDialogContent>
diff --git a/surfsense_web/app/layout.tsx b/surfsense_web/app/layout.tsx
index 4e88709e9..eef03d463 100644
--- a/surfsense_web/app/layout.tsx
+++ b/surfsense_web/app/layout.tsx
@@ -3,6 +3,7 @@ import "./globals.css";
 import { RootProvider } from "fumadocs-ui/provider/next";
 import { Roboto } from "next/font/google";
 import { AnnouncementToastProvider } from "@/components/announcements/AnnouncementToastProvider";
+import { DesktopUpdateToast } from "@/components/desktop/desktop-update-toast";
 import { GlobalLoadingProvider } from "@/components/providers/GlobalLoadingProvider";
 import { I18nProvider } from "@/components/providers/I18nProvider";
 import { PostHogProvider } from "@/components/providers/PostHogProvider";
@@ -154,6 +155,7 @@ export default function RootLayout({
 												<GlobalLoadingProvider>{children}</GlobalLoadingProvider>
 											</ZeroProvider>
 										</ReactQueryClientProvider>
+										<DesktopUpdateToast />
 										<Toaster />
 										<AnnouncementToastProvider />
 									</RootProvider>
diff --git a/surfsense_web/atoms/automations/automations-mutation.atoms.ts b/surfsense_web/atoms/automations/automations-mutation.atoms.ts
new file mode 100644
index 000000000..a81cd1578
--- /dev/null
+++ b/surfsense_web/atoms/automations/automations-mutation.atoms.ts
@@ -0,0 +1,223 @@
+import { atomWithMutation } from "jotai-tanstack-query";
+import { toast } from "sonner";
+import type {
+	AutomationCreateRequest,
+	AutomationUpdateRequest,
+	TriggerCreateRequest,
+	TriggerUpdateRequest,
+} from "@/contracts/types/automation.types";
+import { automationsApiService } from "@/lib/apis/automations-api.service";
+import {
+	trackAutomationCreated,
+	trackAutomationCreateFailed,
+	trackAutomationDeleted,
+	trackAutomationDeleteFailed,
+	trackAutomationStatusChanged,
+	trackAutomationTriggerAdded,
+	trackAutomationTriggerAddFailed,
+	trackAutomationTriggerRemoved,
+	trackAutomationTriggerRemoveFailed,
+	trackAutomationTriggerUpdated,
+	trackAutomationTriggerUpdateFailed,
+	trackAutomationUpdated,
+	trackAutomationUpdateFailed,
+} from "@/lib/posthog/events";
+import { cacheKeys } from "@/lib/query-client/cache-keys";
+import { queryClient } from "@/lib/query-client/client";
+
+// Cache invalidation strategy:
+// - Automation writes invalidate the search-space list + the touched detail.
+// - Trigger writes only invalidate the parent automation detail (triggers
+//   come back inline in AutomationDetail).
+// We deliberately invalidate the whole "automations" prefix on the list side
+// because list is keyed by (searchSpaceId, limit, offset) and we don't track
+// the active pagination in this layer.
+
+function invalidateList(searchSpaceId: number) {
+	queryClient.invalidateQueries({ queryKey: ["automations", "list", searchSpaceId] });
+}
+
+function invalidateDetail(automationId: number) {
+	queryClient.invalidateQueries({
+		queryKey: cacheKeys.automations.detail(automationId),
+	});
+}
+
+export const createAutomationMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (request: AutomationCreateRequest) => {
+		return automationsApiService.createAutomation(request);
+	},
+	onSuccess: (automation, variables) => {
+		invalidateList(variables.search_space_id);
+		toast.success("Automation created");
+		trackAutomationCreated({
+			search_space_id: variables.search_space_id,
+			automation_id: automation.id,
+			task_count: variables.definition.plan.length,
+			trigger_type: variables.triggers?.[0]?.type ?? "none",
+			has_schedule: (variables.triggers?.length ?? 0) > 0,
+			agent_llm_id: variables.definition.models?.agent_llm_id,
+			image_generation_config_id: variables.definition.models?.image_generation_config_id,
+			vision_llm_config_id: variables.definition.models?.vision_llm_config_id,
+			tags_count: variables.definition.metadata?.tags?.length,
+		});
+	},
+	onError: (error: Error, variables) => {
+		console.error("Error creating automation:", error);
+		toast.error("Failed to create automation");
+		trackAutomationCreateFailed({
+			search_space_id: variables.search_space_id,
+			error: error.message,
+		});
+	},
+}));
+
+export const updateAutomationMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (vars: { automationId: number; patch: AutomationUpdateRequest }) => {
+		return automationsApiService.updateAutomation(vars.automationId, vars.patch);
+	},
+	onSuccess: (automation, vars) => {
+		invalidateDetail(vars.automationId);
+		invalidateList(automation.search_space_id);
+		toast.success("Automation updated");
+		// A status-only patch (pause/resume/archive) is a distinct action from a
+		// definition/name edit, so split it into its own event.
+		if (vars.patch.status && !vars.patch.definition) {
+			trackAutomationStatusChanged({
+				automation_id: vars.automationId,
+				search_space_id: automation.search_space_id,
+				next_status: vars.patch.status,
+			});
+		} else {
+			trackAutomationUpdated({
+				automation_id: vars.automationId,
+				search_space_id: automation.search_space_id,
+				has_definition_change: !!vars.patch.definition,
+				has_name_change: vars.patch.name != null,
+				has_description_change: vars.patch.description !== undefined,
+				task_count: vars.patch.definition?.plan?.length,
+			});
+		}
+	},
+	onError: (error: Error, vars) => {
+		console.error("Error updating automation:", error);
+		toast.error("Failed to update automation");
+		trackAutomationUpdateFailed({
+			automation_id: vars.automationId,
+			error: error.message,
+		});
+	},
+}));
+
+export const deleteAutomationMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (vars: { automationId: number; searchSpaceId: number }) => {
+		await automationsApiService.deleteAutomation(vars.automationId);
+		return vars;
+	},
+	onSuccess: (vars) => {
+		invalidateList(vars.searchSpaceId);
+		invalidateDetail(vars.automationId);
+		toast.success("Automation deleted");
+		trackAutomationDeleted({
+			automation_id: vars.automationId,
+			search_space_id: vars.searchSpaceId,
+		});
+	},
+	onError: (error: Error, vars) => {
+		console.error("Error deleting automation:", error);
+		toast.error("Failed to delete automation");
+		trackAutomationDeleteFailed({
+			automation_id: vars.automationId,
+			error: error.message,
+		});
+	},
+}));
+
+export const addTriggerMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (vars: { automationId: number; payload: TriggerCreateRequest }) => {
+		return automationsApiService.addTrigger(vars.automationId, vars.payload);
+	},
+	onSuccess: (trigger, vars) => {
+		invalidateDetail(vars.automationId);
+		toast.success("Trigger added");
+		trackAutomationTriggerAdded({
+			automation_id: vars.automationId,
+			trigger_id: trigger.id,
+			trigger_type: trigger.type,
+			enabled: trigger.enabled,
+			has_cron: !!trigger.params?.cron,
+		});
+	},
+	onError: (error: Error, vars) => {
+		console.error("Error adding trigger:", error);
+		toast.error("Failed to add trigger");
+		trackAutomationTriggerAddFailed({
+			automation_id: vars.automationId,
+			error: error.message,
+		});
+	},
+}));
+
+export const updateTriggerMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (vars: {
+		automationId: number;
+		triggerId: number;
+		patch: TriggerUpdateRequest;
+	}) => {
+		return automationsApiService.updateTrigger(vars.automationId, vars.triggerId, vars.patch);
+	},
+	onSuccess: (_, vars) => {
+		invalidateDetail(vars.automationId);
+		toast.success("Trigger updated");
+		const change: "enabled" | "params" | "other" = vars.patch.params
+			? "params"
+			: vars.patch.enabled !== undefined && vars.patch.enabled !== null
+				? "enabled"
+				: "other";
+		trackAutomationTriggerUpdated({
+			automation_id: vars.automationId,
+			trigger_id: vars.triggerId,
+			change,
+			enabled: vars.patch.enabled ?? undefined,
+		});
+	},
+	onError: (error: Error, vars) => {
+		console.error("Error updating trigger:", error);
+		toast.error("Failed to update trigger");
+		trackAutomationTriggerUpdateFailed({
+			automation_id: vars.automationId,
+			trigger_id: vars.triggerId,
+			error: error.message,
+		});
+	},
+}));
+
+export const removeTriggerMutationAtom = atomWithMutation(() => ({
+	meta: { suppressGlobalErrorToast: true },
+	mutationFn: async (vars: { automationId: number; triggerId: number }) => {
+		await automationsApiService.removeTrigger(vars.automationId, vars.triggerId);
+		return vars;
+	},
+	onSuccess: (vars) => {
+		invalidateDetail(vars.automationId);
+		toast.success("Trigger removed");
+		trackAutomationTriggerRemoved({
+			automation_id: vars.automationId,
+			trigger_id: vars.triggerId,
+		});
+	},
+	onError: (error: Error, vars) => {
+		console.error("Error removing trigger:", error);
+		toast.error("Failed to remove trigger");
+		trackAutomationTriggerRemoveFailed({
+			automation_id: vars.automationId,
+			trigger_id: vars.triggerId,
+			error: error.message,
+		});
+	},
+}));
diff --git a/surfsense_web/atoms/automations/automations-query.atoms.ts b/surfsense_web/atoms/automations/automations-query.atoms.ts
new file mode 100644
index 000000000..4117f9bc8
--- /dev/null
+++ b/surfsense_web/atoms/automations/automations-query.atoms.ts
@@ -0,0 +1,31 @@
+import { atomWithQuery } from "jotai-tanstack-query";
+import { activeSearchSpaceIdAtom } from "@/atoms/search-spaces/search-space-query.atoms";
+import { automationsApiService } from "@/lib/apis/automations-api.service";
+import { cacheKeys } from "@/lib/query-client/cache-keys";
+
+// First page of the active search space's automations.
+// Detail + paginated/parameterized reads live in hooks (see use-automation.ts,
+// use-automation-runs.ts) so atoms stay tied to "current scope" and don't
+// proliferate atom families for every (id, limit, offset) tuple.
+const DEFAULT_LIMIT = 50;
+const DEFAULT_OFFSET = 0;
+
+export const automationsListAtom = atomWithQuery((get) => {
+	const searchSpaceId = get(activeSearchSpaceIdAtom);
+
+	return {
+		queryKey: cacheKeys.automations.list(Number(searchSpaceId ?? 0), DEFAULT_LIMIT, DEFAULT_OFFSET),
+		enabled: !!searchSpaceId,
+		staleTime: 60 * 1000,
+		queryFn: async () => {
+			if (!searchSpaceId) {
+				return { items: [], total: 0 };
+			}
+			return automationsApiService.listAutomations({
+				search_space_id: Number(searchSpaceId),
+				limit: DEFAULT_LIMIT,
+				offset: DEFAULT_OFFSET,
+			});
+		},
+	};
+});
diff --git a/surfsense_web/atoms/chat/mentioned-documents.atom.ts b/surfsense_web/atoms/chat/mentioned-documents.atom.ts
index 9163960f4..cf1bd8bcf 100644
--- a/surfsense_web/atoms/chat/mentioned-documents.atom.ts
+++ b/surfsense_web/atoms/chat/mentioned-documents.atom.ts
@@ -3,28 +3,32 @@
 import { atom } from "jotai";
 import type { Document } from "@/contracts/types/document.types";
 
-/**
- * Sentinel ``document_type`` used for folder mention chips so the
- * dedup key (`kind:document_type:id`) never collides a document with a
- * folder that happens to share an integer id.
- */
-export const FOLDER_MENTION_DOCUMENT_TYPE = "FOLDER";
-
 /**
  * Display metadata for a single ``@``-mention chip.
  *
- * The ``kind`` discriminator identifies whether the chip is a
- * knowledge-base document or a knowledge-base folder. Folders carry
- * the sentinel ``document_type === FOLDER_MENTION_DOCUMENT_TYPE`` so
- * the editor, picker, and persisted ``mentioned-documents`` content
- * part all stay aligned with the backend Pydantic schema.
+ * Historical name is retained because this atom is already wired into
+ * chat persistence and sidebar selection. The shape is now the selected
+ * composer context, not only documents.
  */
-export interface MentionedDocumentInfo {
-	id: number;
-	title: string;
-	document_type: string;
-	kind: "doc" | "folder";
-}
+export type MentionedDocumentInfo =
+	| {
+			id: number;
+			title: string;
+			document_type: string;
+			kind: "doc";
+	  }
+	| {
+			id: number;
+			title: string;
+			kind: "folder";
+	  }
+	| {
+			id: number;
+			title: string;
+			kind: "connector";
+			connector_type: string;
+			account_name: string;
+	  };
 
 /**
  * Backwards-compatible doc-only chip shape for legacy callers that
@@ -38,13 +42,15 @@ type LegacyDocMention = Pick<Document, "id" | "title" | "document_type">;
  * Normalize an arbitrary chip-like input into the discriminated
  * ``MentionedDocumentInfo`` shape. Existing call sites that only have
  * ``{id, title, document_type}`` flow through here so they don't have
- * to thread ``kind`` everywhere — the helper defaults to ``"doc"`` and
- * rewrites the document type for folders.
+ * to thread ``kind`` everywhere — the helper defaults to ``"doc"``.
  */
 export function toMentionedDocumentInfo(
 	input: LegacyDocMention | MentionedDocumentInfo
 ): MentionedDocumentInfo {
-	if ("kind" in input && (input.kind === "doc" || input.kind === "folder")) {
+	if (
+		"kind" in input &&
+		(input.kind === "doc" || input.kind === "folder" || input.kind === "connector")
+	) {
 		return input;
 	}
 	return {
@@ -62,43 +68,50 @@ export function makeFolderMention(input: { id: number; name: string }): Mentione
 	return {
 		id: input.id,
 		title: input.name,
-		document_type: FOLDER_MENTION_DOCUMENT_TYPE,
 		kind: "folder",
 	};
 }
 
 /**
- * Atom to store the full mention objects (documents + folders) attached
- * via @-mention chips in the current chat composer. Persists across
- * component remounts.
+ * Atom to store the full context objects attached via @-mention chips in
+ * the current chat composer. Persists across component remounts.
  */
 export const mentionedDocumentsAtom = atom<MentionedDocumentInfo[]>([]);
 
 /**
  * Derived read-only atom that maps deduplicated mention chips into
- * backend payload fields. Doc chips split by ``document_type`` exactly
- * like before; folder chips are projected into a separate
- * ``folder_ids`` bucket so the route can forward
- * ``mentioned_folder_ids`` to the agent without the priority middleware
- * conflating them with hybrid-search ids.
+ * backend payload fields. Each mention kind maps to its own explicit
+ * payload bucket so non-document context never has to masquerade as a
+ * document type.
  */
 export const mentionedDocumentIdsAtom = atom((get) => {
 	const allMentions = get(mentionedDocumentsAtom);
 	const seen = new Set<string>();
 	const deduped = allMentions.filter((m) => {
-		const key = `${m.kind}:${m.document_type}:${m.id}`;
+		const key =
+			m.kind === "doc"
+				? `doc:${m.document_type}:${m.id}`
+				: m.kind === "connector"
+					? `connector:${m.connector_type}:${m.id}`
+					: `folder:${m.id}`;
 		if (seen.has(key)) return false;
 		seen.add(key);
 		return true;
 	});
 	const docs = deduped.filter((m) => m.kind === "doc");
 	const folders = deduped.filter((m) => m.kind === "folder");
+	const connectors = deduped.filter((m) => m.kind === "connector");
 	return {
-		surfsense_doc_ids: docs
-			.filter((doc) => doc.document_type === "SURFSENSE_DOCS")
-			.map((doc) => doc.id),
-		document_ids: docs.filter((doc) => doc.document_type !== "SURFSENSE_DOCS").map((doc) => doc.id),
+		document_ids: docs.map((doc) => doc.id),
 		folder_ids: folders.map((f) => f.id),
+		connector_ids: connectors.map((c) => c.id),
+		connectors: connectors.map((c) => ({
+			id: c.id,
+			title: c.title,
+			kind: c.kind,
+			connector_type: c.connector_type,
+			account_name: c.account_name,
+		})),
 	};
 });
 
diff --git a/surfsense_web/atoms/members/members-query.atoms.ts b/surfsense_web/atoms/members/members-query.atoms.ts
index c08a7a337..c1f507ff5 100644
--- a/surfsense_web/atoms/members/members-query.atoms.ts
+++ b/surfsense_web/atoms/members/members-query.atoms.ts
@@ -39,3 +39,38 @@ export const myAccessAtom = atomWithQuery((get) => {
 		},
 	};
 });
+
+/**
+ * Helper function to check if the current user has a specific permission.
+ *
+ * @param access - The access object from useAtomValue(myAccessAtom)
+ * @param permission - The permission string to check
+ * @returns boolean indicating if the user has the permission
+ *
+ * @example
+ * const access = useAtomValue(myAccessAtom);
+ * if (canPerform(access, 'manage_members')) { ... }
+ */
+export function canPerform(
+	access: { is_owner: boolean; permissions?: string[] } | null | undefined,
+	permission: string
+): boolean {
+	if (!access) return false;
+	if (access.is_owner) return true;
+	return access.permissions?.includes(permission) ?? false;
+}
+
+/**
+ * Hook wrapper for canPerform that reads from myAccessAtom internally.
+ * Use this if you want to avoid calling useAtomValue(myAccessAtom) separately.
+ *
+ * @param permission - The permission string to check
+ * @returns boolean indicating if the user has the permission
+ *
+ * @example
+ * const canManageMembers = usePermissionGate('manage_members');
+ */
+export function usePermissionGate(permission: string): boolean {
+	const access = useAtomValue(myAccessAtom);
+	return canPerform(access, permission);
+}
diff --git a/surfsense_web/atoms/new-llm-config/new-llm-config-mutation.atoms.ts b/surfsense_web/atoms/new-llm-config/new-llm-config-mutation.atoms.ts
index f4577a7a9..476d89d4c 100644
--- a/surfsense_web/atoms/new-llm-config/new-llm-config-mutation.atoms.ts
+++ b/surfsense_web/atoms/new-llm-config/new-llm-config-mutation.atoms.ts
@@ -118,6 +118,12 @@ export const updateLLMPreferencesMutationAtom = atomWithMutation((get) => {
 				cacheKeys.newLLMConfigs.preferences(Number(searchSpaceId)),
 				(old: Record<string, unknown> | undefined) => ({ ...old, ...request.data })
 			);
+			// Automation eligibility is derived from these model preferences
+			// (agent/image/vision). Invalidate it so the automations gate alert
+			// reflects the new selection without a manual refresh.
+			queryClient.invalidateQueries({
+				queryKey: cacheKeys.automations.modelEligibility(Number(searchSpaceId)),
+			});
 		},
 		onError: (error: Error) => {
 			toast.error(error.message || "Failed to update LLM preferences");
diff --git a/surfsense_web/changelog/content/2026-05-31.mdx b/surfsense_web/changelog/content/2026-05-31.mdx
new file mode 100644
index 000000000..2e79effc6
--- /dev/null
+++ b/surfsense_web/changelog/content/2026-05-31.mdx
@@ -0,0 +1,76 @@
+---
+title: "SurfSense v0.0.26 - AI Automations: Build, Schedule & Event-Trigger AI Agents From Chat"
+description: "SurfSense v0.0.26 introduces open source AI automations across your connectors: describe a workflow in plain English and SurfSense builds it, run AI agents on a schedule, or trigger them when a document lands in a folder, working across Notion, Slack, Google Drive, Gmail, GitHub, Linear, Jira and Confluence. Plus connector @-mentions in chat and a faster anonymous chat experience."
+date: "2026-05-31"
+tags: ["Automations", "AI Agents", "Workflow Automation", "Scheduled Workflows", "Event Triggers", "Connectors", "Notion", "Slack", "Open Source"]
+version: "0.0.26"
+---
+
+## What's New in v0.0.26
+
+v0.0.26 is our biggest workflow release yet: **AI automations** land in SurfSense. If you've been looking for **open source AI automation**, a **self-hosted AI agent** that runs on a schedule, or **document workflow automation** that reacts the instant a file shows up, this release is for you. Describe what you want in plain English, let SurfSense draft the automation, approve it, and your agent runs on its own: on a **cron schedule** or triggered by real events in your knowledge base. Best of all, automations work **across your connectors**, so one workflow can search and act on **Notion**, **Slack**, **Google Drive**, **Gmail**, **GitHub**, **Linear**, **Jira** and **Confluence**. This release also brings connector **@-mentions** into chat, a faster anonymous chat experience, and a redesigned homepage.
+
+### AI Automations
+
+Turn one-off prompts into repeatable, hands-off **AI agent workflows**.
+
+- **Build Automations From Chat**: Describe an automation in plain English and SurfSense drafts it for you. Review the generated workflow in a human-in-the-loop approval card, tweak it, and save. No config files, no code.
+- **Scheduled AI Workflows**: Run an agent on a **cron schedule** for daily briefs, weekly digests, and recurring reports. SurfSense computes the next run time and fires it automatically in the background.
+- **Event-Triggered Automations**: Kick off an agent the moment a document enters a folder. SurfSense's new in-process event bus watches your knowledge base and launches the right automation as soon as the event happens.
+- **Agent Task Action**: Every automation runs a full multi-agent chat turn, so your scheduled and event-driven runs have the same reasoning, search, and tool access as a live chat, with an auto-approve loop so they finish unattended.
+- **Automations Across Your Connectors**: Because each automation runs a full agent turn, your scheduled and event-triggered workflows can search and act across all 25+ connected sources, including **Notion**, **Slack**, **Google Drive**, **Gmail**, **GitHub**, **Linear**, **Jira**, **Confluence**, and your **Obsidian** vault.
+- **Automations Dashboard**: A dedicated list view shows every automation with its status, plus one-click pause, resume, and delete. Find it in the sidebar under Inbox.
+- **Detail & Run History**: Open any automation to inspect its definition, manage triggers inline, and browse a complete run history with inputs, outputs, and clear error reporting.
+- **Power-User JSON Mode**: Create or edit an automation directly as raw JSON with a unified JSON viewer and editor for full control over the workflow definition.
+- **Role-Based Access**: Automations are governed by SurfSense's RBAC system, with a dedicated permissions family so teams control exactly who can create, run, and manage them.
+
+### Connector Mentions in Chat
+
+- **@-Mention Your Connectors**: Mention connectors directly in the composer to scope a question to a specific source like **Notion**, **Slack**, **Google Drive**, **Gmail**, **GitHub**, **Linear**, **Jira**, or **Confluence**, alongside existing document mentions.
+- **Recent Mentions**: SurfSense now remembers your recent mentions so the sources you use most are always one keystroke away.
+- **Smoother Mention Picker**: A refreshed mention picker with loading skeletons, clearer connector definitions, and a better inline editing experience.
+
+### Faster, Friendlier Chat
+
+- **Anonymous Chat, Reworked**: The free, no-login chat experience has been rebuilt for a faster first impression and a cleaner anonymous-to-account path.
+- **Better Long-Running Turns**: Improved task management and timeout handling in multi-agent chat keep complex, tool-heavy conversations reliable.
+- **Leaner Toolset**: Retired the legacy in-product docs search tool to keep agent reasoning focused and fast.
+
+### Homepage & Marketing
+
+- **Redesigned Use-Case Showcase**: The homepage now groups demos into clear categories (Desktop App, Deliverable Studio, Search & Chat, Connectors & Integrations, and Automations) so visitors immediately see what SurfSense can do.
+- **Desktop App, Front and Center**: The desktop experience is highlighted as a set of native extras on top of everything SurfSense already does, not a separate product.
+
+<Accordion type="multiple" className="w-full not-prose">
+  <AccordionItem value="item-1">
+    <AccordionTrigger>Bug Fixes</AccordionTrigger>
+    <AccordionContent className="flex flex-col gap-4 text-balance">
+      <ul className="list-disc space-y-2 pl-4">
+        <li>Bulk-moving documents now uses ORM objects so folder events fire correctly and trigger automations</li>
+        <li>Automation enum columns now persist Postgres enum values instead of names</li>
+        <li>Automation agent tasks use an in-memory checkpointer to avoid Celery pool timeouts</li>
+        <li>The API client now handles 204 No Content responses without errors</li>
+        <li>The model role manager now stays in sync when preferences are updated</li>
+        <li>The JSON editor now coerces numeric strings to numbers on edit</li>
+      </ul>
+    </AccordionContent>
+  </AccordionItem>
+  <AccordionItem value="item-2">
+    <AccordionTrigger>Under the Hood</AccordionTrigger>
+    <AccordionContent className="flex flex-col gap-4 text-balance">
+      <ul className="list-disc space-y-2 pl-4">
+        <li>New in-process domain event bus with an event catalog and a <code>document.entered_folder</code> event</li>
+        <li>SQLAlchemy session hooks publish folder events automatically, registered at app startup</li>
+        <li>Cron schedule triggers backed by croniter and a Celery beat tick task</li>
+        <li>Sandboxed template engine with an allowlisted filter and test set for safe workflow templating</li>
+        <li>Automations reorganized into a vertical-slice architecture (actions and triggers grouped by domain)</li>
+        <li>Extensive new test coverage locking automation schemas, dispatch, runtime, triggers, and templating</li>
+        <li>Model eligibility checks when creating automations, so only valid models are selectable</li>
+      </ul>
+    </AccordionContent>
+  </AccordionItem>
+</Accordion>
+
+v0.0.26 turns SurfSense from a place you ask questions into a place that does the work for you. Whether you want **scheduled AI workflows**, **event-driven document automation**, or a **self-hosted, open source AI agent** you fully control, this release lets you build it from a single sentence.
+
+SurfSense connects all your knowledge sources in one place.
diff --git a/surfsense_web/components/ads/ad-unit.tsx b/surfsense_web/components/ads/ad-unit.tsx
index 5f5860607..cc5848a00 100644
--- a/surfsense_web/components/ads/ad-unit.tsx
+++ b/surfsense_web/components/ads/ad-unit.tsx
@@ -52,7 +52,8 @@ export function AdUnit({
 		// sets data-adsbygoogle-status="done" once it has filled a slot.
 		if (el.getAttribute("data-adsbygoogle-status")) return;
 		try {
-			(window.adsbygoogle = window.adsbygoogle || []).push({});
+			window.adsbygoogle = window.adsbygoogle || [];
+			window.adsbygoogle.push({});
 		} catch {
 			// AdSense throws if pushed before the script has loaded or on
 			// duplicate pushes. The script processes pending pushes when it
diff --git a/surfsense_web/components/announcements/AnnouncementCard.tsx b/surfsense_web/components/announcements/AnnouncementCard.tsx
index ea0288b43..83a0e09b8 100644
--- a/surfsense_web/components/announcements/AnnouncementCard.tsx
+++ b/surfsense_web/components/announcements/AnnouncementCard.tsx
@@ -1,6 +1,7 @@
 "use client";
 
 import { Bell, ExternalLink, Info, type LucideIcon, Rocket, Wrench, Zap } from "lucide-react";
+import Image from "next/image";
 import Link from "next/link";
 import { Badge } from "@/components/ui/badge";
 import { Button } from "@/components/ui/button";
@@ -49,7 +50,18 @@ export function AnnouncementCard({ announcement }: { announcement: AnnouncementW
 	const Icon = config.icon;
 
 	return (
-		<Card className="group relative transition-all duration-200 hover:shadow-md">
+		<Card className="group relative overflow-hidden transition-all duration-200 hover:shadow-md">
+			{announcement.image && (
+				<div className="relative aspect-video w-full overflow-hidden border-b bg-muted">
+					<Image
+						src={announcement.image.src}
+						alt={announcement.image.alt}
+						fill
+						sizes="(max-width: 768px) 95vw, 600px"
+						className="object-cover"
+					/>
+				</div>
+			)}
 			<CardHeader className="pb-3">
 				<div className="flex items-start justify-between gap-3">
 					<div className="flex items-start gap-3 min-w-0">
diff --git a/surfsense_web/components/announcements/AnnouncementSpotlight.tsx b/surfsense_web/components/announcements/AnnouncementSpotlight.tsx
new file mode 100644
index 000000000..794a3c1cf
--- /dev/null
+++ b/surfsense_web/components/announcements/AnnouncementSpotlight.tsx
@@ -0,0 +1,101 @@
+"use client";
+
+import { ExternalLink } from "lucide-react";
+import Image from "next/image";
+import Link from "next/link";
+import { useEffect, useMemo, useState } from "react";
+import { Button } from "@/components/ui/button";
+import {
+	Dialog,
+	DialogContent,
+	DialogDescription,
+	DialogFooter,
+	DialogTitle,
+} from "@/components/ui/dialog";
+import { useAnnouncements } from "@/hooks/use-announcements";
+
+/**
+ * Proactively shows important "spotlight" announcements in a blocking dialog.
+ *
+ * Behaviour:
+ * - On load, the first active, audience-matched, unread spotlight announcement
+ *   is shown automatically.
+ * - The user must explicitly acknowledge it ("Got it" or the CTA link), which
+ *   marks it as read so it never shows again.
+ * - Closing via the X / Escape / outside-click only hides it for the current
+ *   session; it reappears on the next load until the user marks it as seen.
+ */
+export function AnnouncementSpotlight() {
+	const { announcements, markRead } = useAnnouncements();
+	const [sessionDismissed, setSessionDismissed] = useState<Set<string>>(() => new Set());
+	const [ready, setReady] = useState(false);
+
+	// Short delay so the spotlight doesn't flash during initial hydration/layout.
+	useEffect(() => {
+		const timer = setTimeout(() => setReady(true), 800);
+		return () => clearTimeout(timer);
+	}, []);
+
+	const current = useMemo(
+		() =>
+			announcements.find(
+				(a) => a.spotlight && a.isImportant && !a.isRead && !sessionDismissed.has(a.id)
+			) ?? null,
+		[announcements, sessionDismissed]
+	);
+
+	if (!current) return null;
+
+	const handleAcknowledge = () => {
+		markRead(current.id);
+	};
+
+	const handleOpenChange = (next: boolean) => {
+		if (!next) {
+			setSessionDismissed((prev) => {
+				const updated = new Set(prev);
+				updated.add(current.id);
+				return updated;
+			});
+		}
+	};
+
+	return (
+		<Dialog open={ready} onOpenChange={handleOpenChange}>
+			<DialogContent className="max-w-md gap-0 overflow-hidden p-0">
+				{current.image && (
+					<div className="relative aspect-video w-full border-b bg-muted">
+						<Image
+							src={current.image.src}
+							alt={current.image.alt}
+							fill
+							sizes="(max-width: 768px) 95vw, 448px"
+							className="object-cover"
+							priority
+						/>
+					</div>
+				)}
+				<div className="flex flex-col gap-3 p-6">
+					<DialogTitle className="text-xl">{current.title}</DialogTitle>
+					<DialogDescription className="text-sm leading-relaxed text-muted-foreground">
+						{current.description}
+					</DialogDescription>
+					<DialogFooter className="mt-2">
+						{current.link && (
+							<Button variant="outline" asChild className="gap-1.5" onClick={handleAcknowledge}>
+								<Link
+									href={current.link.url}
+									target={current.link.url.startsWith("http") ? "_blank" : undefined}
+								>
+									{current.link.label}
+									<ExternalLink className="h-3.5 w-3.5" />
+								</Link>
+							</Button>
+						)}
+						<Button onClick={handleAcknowledge}>Got it</Button>
+					</DialogFooter>
+				</div>
+			</DialogContent>
+		</Dialog>
+	);
+}
diff --git a/surfsense_web/components/announcements/AnnouncementToastProvider.tsx b/surfsense_web/components/announcements/AnnouncementToastProvider.tsx
index 3e99f5c32..5578eba17 100644
--- a/surfsense_web/components/announcements/AnnouncementToastProvider.tsx
+++ b/surfsense_web/components/announcements/AnnouncementToastProvider.tsx
@@ -70,8 +70,10 @@ export function AnnouncementToastProvider() {
 		const outerTimer = setTimeout(() => {
 			const authed = isAuthenticated();
 			const active = getActiveAnnouncements(announcements, authed);
+			// Spotlight announcements are handled by the blocking spotlight dialog,
+			// so skip them here to avoid double-notifying the user.
 			const importantUntoasted = active.filter(
-				(a) => a.isImportant && !isAnnouncementToasted(a.id)
+				(a) => a.isImportant && !a.spotlight && !isAnnouncementToasted(a.id)
 			);
 
 			for (let i = 0; i < importantUntoasted.length; i++) {
diff --git a/surfsense_web/components/assistant-ui/assistant-message.tsx b/surfsense_web/components/assistant-ui/assistant-message.tsx
index f6c91e8bf..fd24600c2 100644
--- a/surfsense_web/components/assistant-ui/assistant-message.tsx
+++ b/surfsense_web/components/assistant-ui/assistant-message.tsx
@@ -13,8 +13,8 @@ import {
 	CheckIcon,
 	ClipboardPaste,
 	CopyIcon,
-	DownloadIcon,
 	Dot,
+	DownloadIcon,
 	ExternalLink,
 	Globe,
 	MessageCircleReply,
diff --git a/surfsense_web/components/assistant-ui/chat-viewport.tsx b/surfsense_web/components/assistant-ui/chat-viewport.tsx
index cb0b484ef..cb0fd2005 100644
--- a/surfsense_web/components/assistant-ui/chat-viewport.tsx
+++ b/surfsense_web/components/assistant-ui/chat-viewport.tsx
@@ -3,16 +3,19 @@
 import { ThreadPrimitive } from "@assistant-ui/react";
 import { ArrowDownIcon } from "lucide-react";
 import type { FC, ReactNode } from "react";
-import { TooltipIconButton } from "@/components/assistant-ui/tooltip-icon-button";
+import { Button } from "@/components/ui/button";
 
 const ChatScrollToBottom: FC = () => (
 	<ThreadPrimitive.ScrollToBottom asChild>
-		<TooltipIconButton
-			tooltip="Scroll to bottom"
-			className="aui-thread-scroll-to-bottom -top-12 absolute z-10 self-center rounded-full border-0 bg-muted p-4 text-foreground hover:bg-accent hover:text-accent-foreground disabled:invisible"
+		<Button
+			type="button"
+			variant="ghost"
+			size="icon"
+			aria-label="Scroll to bottom"
+			className="aui-thread-scroll-to-bottom -top-12 absolute z-10 size-10 self-center rounded-full border border-input bg-muted p-0 text-foreground shadow-sm shadow-black/5 hover:bg-accent hover:text-accent-foreground disabled:invisible dark:shadow-black/10"
 		>
 			<ArrowDownIcon />
-		</TooltipIconButton>
+		</Button>
 	</ThreadPrimitive.ScrollToBottom>
 );
 
diff --git a/surfsense_web/components/assistant-ui/connector-popup.tsx b/surfsense_web/components/assistant-ui/connector-popup.tsx
index 6699a5567..9b76ea4cb 100644
--- a/surfsense_web/components/assistant-ui/connector-popup.tsx
+++ b/surfsense_web/components/assistant-ui/connector-popup.tsx
@@ -1,7 +1,7 @@
 "use client";
 
 import { useAtomValue } from "jotai";
-import { AlertTriangle, Settings } from "lucide-react";
+import { AlertTriangle } from "lucide-react";
 import { useRouter } from "next/navigation";
 import { forwardRef, useEffect, useImperativeHandle, useMemo, useState } from "react";
 import { createPortal } from "react-dom";
@@ -381,7 +381,7 @@ export const ConnectorIndicator = forwardRef<ConnectorIndicatorHandle, Connector
 										{/* LLM Configuration Warning */}
 										{!llmConfigLoading && !hasDocumentSummaryLLM && (
 											<div className="mb-6">
-												<Alert variant="destructive">
+												<Alert variant="warning">
 													<AlertTriangle />
 													<AlertTitle>LLM Configuration Required</AlertTitle>
 													<AlertDescription>
@@ -392,7 +392,7 @@ export const ConnectorIndicator = forwardRef<ConnectorIndicatorHandle, Connector
 														</p>
 														<Button
 															size="sm"
-															variant="outline"
+															variant="secondary"
 															onClick={() => {
 																handleOpenChange(false);
 																router.push(
@@ -400,7 +400,6 @@ export const ConnectorIndicator = forwardRef<ConnectorIndicatorHandle, Connector
 																);
 															}}
 														>
-															<Settings className="mr-2 h-4 w-4" />
 															Go to Settings
 														</Button>
 													</AlertDescription>
diff --git a/surfsense_web/components/assistant-ui/connector-popup/connect-forms/components/obsidian-connect-form.tsx b/surfsense_web/components/assistant-ui/connector-popup/connect-forms/components/obsidian-connect-form.tsx
index 01b86a538..a9231d846 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/connect-forms/components/obsidian-connect-form.tsx
+++ b/surfsense_web/components/assistant-ui/connector-popup/connect-forms/components/obsidian-connect-form.tsx
@@ -6,14 +6,13 @@ import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
 import { Button } from "@/components/ui/button";
 import { EnumConnectorName } from "@/contracts/enums/connector";
 import { useApiKey } from "@/hooks/use-api-key";
+import { BACKEND_URL } from "@/lib/env-config";
 import { getConnectorBenefits } from "../connector-benefits";
 import type { ConnectFormProps } from "../index";
-import { BACKEND_URL } from "@/lib/env-config";
 
 const PLUGIN_RELEASES_URL =
 	"https://github.com/MODSetter/SurfSense/releases?q=obsidian&expanded=true";
 
-
 /**
  * Obsidian connect form for the plugin-only architecture.
  *
diff --git a/surfsense_web/components/assistant-ui/connector-popup/connector-configs/components/circleback-config.tsx b/surfsense_web/components/assistant-ui/connector-popup/connector-configs/components/circleback-config.tsx
index fe6724ed8..4de8500a6 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/connector-configs/components/circleback-config.tsx
+++ b/surfsense_web/components/assistant-ui/connector-popup/connector-configs/components/circleback-config.tsx
@@ -9,8 +9,8 @@ import { Button } from "@/components/ui/button";
 import { Input } from "@/components/ui/input";
 import { Label } from "@/components/ui/label";
 import { authenticatedFetch } from "@/lib/auth-utils";
-import type { ConnectorConfigProps } from "../index";
 import { BACKEND_URL } from "@/lib/env-config";
+import type { ConnectorConfigProps } from "../index";
 export interface CirclebackConfigProps extends ConnectorConfigProps {
 	onNameChange?: (name: string) => void;
 }
diff --git a/surfsense_web/components/assistant-ui/connector-popup/connector-configs/views/connector-edit-view.tsx b/surfsense_web/components/assistant-ui/connector-popup/connector-configs/views/connector-edit-view.tsx
index 90b28dd1a..2b86daf65 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/connector-configs/views/connector-edit-view.tsx
+++ b/surfsense_web/components/assistant-ui/connector-popup/connector-configs/views/connector-edit-view.tsx
@@ -12,16 +12,18 @@ import { EnumConnectorName } from "@/contracts/enums/connector";
 import { getConnectorIcon } from "@/contracts/enums/connectorIcons";
 import type { SearchSourceConnector } from "@/contracts/types/connector.types";
 import { authenticatedFetch } from "@/lib/auth-utils";
+import { getReauthEndpoint } from "@/lib/connector-telemetry";
+import { BACKEND_URL } from "@/lib/env-config";
 import { cn } from "@/lib/utils";
 import { DateRangeSelector } from "../../components/date-range-selector";
 import { PeriodicSyncConfig } from "../../components/periodic-sync-config";
 import { SummaryConfig } from "../../components/summary-config";
 import { VisionLLMConfig } from "../../components/vision-llm-config";
-import { getReauthEndpoint, LIVE_CONNECTOR_TYPES } from "../../constants/connector-constants";
+import { LIVE_CONNECTOR_TYPES } from "../../constants/connector-constants";
 import { getConnectorDisplayName } from "../../tabs/all-connectors-tab";
 import { MCPServiceConfig } from "../components/mcp-service-config";
 import { getConnectorConfigComponent } from "../index";
-import { BACKEND_URL } from "@/lib/env-config";
+
 const VISION_LLM_CONNECTOR_TYPES = new Set<SearchSourceConnector["connector_type"]>([
 	EnumConnectorName.GOOGLE_DRIVE_CONNECTOR,
 	EnumConnectorName.COMPOSIO_GOOGLE_DRIVE_CONNECTOR,
diff --git a/surfsense_web/components/assistant-ui/connector-popup/constants/connector-constants.ts b/surfsense_web/components/assistant-ui/connector-popup/constants/connector-constants.ts
index 2f9605ea7..5de623c22 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/constants/connector-constants.ts
+++ b/surfsense_web/components/assistant-ui/connector-popup/constants/connector-constants.ts
@@ -1,5 +1,4 @@
 import { EnumConnectorName } from "@/contracts/enums/connector";
-import type { SearchSourceConnector } from "@/contracts/types/connector.types";
 
 /**
  * Connectors that operate in real time (no background indexing).
@@ -230,6 +229,20 @@ export const COMPOSIO_CONNECTORS = [
 	},
 ] as const;
 
+export const CONNECTOR_DISPLAY_DEFINITIONS = [
+	...OAUTH_CONNECTORS,
+	...CRAWLERS,
+	...OTHER_CONNECTORS,
+	...COMPOSIO_CONNECTORS,
+] as const;
+
+export function getConnectorTitle(connectorType: string): string {
+	return (
+		CONNECTOR_DISPLAY_DEFINITIONS.find((connector) => connector.connectorType === connectorType)
+			?.title ?? connectorType
+	);
+}
+
 // Composio Toolkits (available integrations via Composio)
 export const COMPOSIO_TOOLKITS = [
 	{
@@ -294,119 +307,5 @@ export const AUTO_INDEX_DEFAULTS: Record<string, AutoIndexConfig> = {
 
 export const AUTO_INDEX_CONNECTOR_TYPES = new Set<string>(Object.keys(AUTO_INDEX_DEFAULTS));
 
-// ============================================================================
-// CONNECTOR TELEMETRY REGISTRY
-// ----------------------------------------------------------------------------
-// Single source of truth for "what does this connector_type look like in
-// analytics?". Any connector added to the lists above is automatically
-// picked up here, so adding a new integration does NOT require touching
-// `lib/posthog/events.ts` or per-connector tracking code.
-// ============================================================================
-
-export type ConnectorTelemetryGroup = "oauth" | "composio" | "crawler" | "other" | "unknown";
-
-export interface ConnectorTelemetryMeta {
-	connector_type: string;
-	connector_title: string;
-	connector_group: ConnectorTelemetryGroup;
-	is_oauth: boolean;
-}
-
-const CONNECTOR_TELEMETRY_REGISTRY: ReadonlyMap<string, ConnectorTelemetryMeta> = (() => {
-	const map = new Map<string, ConnectorTelemetryMeta>();
-
-	for (const c of OAUTH_CONNECTORS) {
-		map.set(c.connectorType, {
-			connector_type: c.connectorType,
-			connector_title: c.title,
-			connector_group: "oauth",
-			is_oauth: true,
-		});
-	}
-	for (const c of COMPOSIO_CONNECTORS) {
-		map.set(c.connectorType, {
-			connector_type: c.connectorType,
-			connector_title: c.title,
-			connector_group: "composio",
-			is_oauth: true,
-		});
-	}
-	for (const c of CRAWLERS) {
-		map.set(c.connectorType, {
-			connector_type: c.connectorType,
-			connector_title: c.title,
-			connector_group: "crawler",
-			is_oauth: false,
-		});
-	}
-	for (const c of OTHER_CONNECTORS) {
-		map.set(c.connectorType, {
-			connector_type: c.connectorType,
-			connector_title: c.title,
-			connector_group: "other",
-			is_oauth: false,
-		});
-	}
-
-	return map;
-})();
-
-/**
- * Returns telemetry metadata for a connector_type, or a minimal "unknown"
- * record so tracking never no-ops for connectors that exist in the backend
- * but were forgotten in the UI registry.
- */
-export function getConnectorTelemetryMeta(connectorType: string): ConnectorTelemetryMeta {
-	const hit = CONNECTOR_TELEMETRY_REGISTRY.get(connectorType);
-	if (hit) return hit;
-
-	return {
-		connector_type: connectorType,
-		connector_title: connectorType,
-		connector_group: "unknown",
-		is_oauth: false,
-	};
-}
-
-// =============================================================================
-// REAUTH ENDPOINTS
-// =============================================================================
-
-/**
- * Legacy (non-MCP) OAuth reauth endpoints, keyed by connector type.
- * These are used for connectors that were NOT created via MCP OAuth.
- */
-export const LEGACY_REAUTH_ENDPOINTS: Partial<Record<string, string>> = {
-	[EnumConnectorName.LINEAR_CONNECTOR]: "/api/v1/auth/linear/connector/reauth",
-	[EnumConnectorName.JIRA_CONNECTOR]: "/api/v1/auth/jira/connector/reauth",
-	[EnumConnectorName.NOTION_CONNECTOR]: "/api/v1/auth/notion/connector/reauth",
-	[EnumConnectorName.GOOGLE_DRIVE_CONNECTOR]: "/api/v1/auth/google/drive/connector/reauth",
-	[EnumConnectorName.GOOGLE_GMAIL_CONNECTOR]: "/api/v1/auth/google/gmail/connector/reauth",
-	[EnumConnectorName.GOOGLE_CALENDAR_CONNECTOR]: "/api/v1/auth/google/calendar/connector/reauth",
-	[EnumConnectorName.COMPOSIO_GOOGLE_DRIVE_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
-	[EnumConnectorName.COMPOSIO_GMAIL_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
-	[EnumConnectorName.COMPOSIO_GOOGLE_CALENDAR_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
-	[EnumConnectorName.ONEDRIVE_CONNECTOR]: "/api/v1/auth/onedrive/connector/reauth",
-	[EnumConnectorName.DROPBOX_CONNECTOR]: "/api/v1/auth/dropbox/connector/reauth",
-	[EnumConnectorName.CONFLUENCE_CONNECTOR]: "/api/v1/auth/confluence/connector/reauth",
-	[EnumConnectorName.TEAMS_CONNECTOR]: "/api/v1/auth/teams/connector/reauth",
-	[EnumConnectorName.DISCORD_CONNECTOR]: "/api/v1/auth/discord/connector/reauth",
-};
-
-/**
- * Resolve the reauth endpoint for a connector.
- *
- * MCP OAuth connectors (those with ``config.mcp_service``) dynamically build
- * the URL from the service key. Legacy OAuth connectors fall back to the
- * static ``LEGACY_REAUTH_ENDPOINTS`` map.
- */
-export function getReauthEndpoint(connector: SearchSourceConnector): string | undefined {
-	const mcpService = connector.config?.mcp_service as string | undefined;
-	if (mcpService) {
-		return `/api/v1/auth/mcp/${mcpService}/connector/reauth`;
-	}
-	return LEGACY_REAUTH_ENDPOINTS[connector.connector_type];
-}
-
 // Re-export IndexingConfigState from schemas for backward compatibility
 export type { IndexingConfigState } from "./connector-popup.schemas";
diff --git a/surfsense_web/components/assistant-ui/connector-popup/hooks/use-connector-dialog.ts b/surfsense_web/components/assistant-ui/connector-popup/hooks/use-connector-dialog.ts
index d1d675ad1..25ab82e2e 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/hooks/use-connector-dialog.ts
+++ b/surfsense_web/components/assistant-ui/connector-popup/hooks/use-connector-dialog.ts
@@ -14,7 +14,9 @@ import { activeSearchSpaceIdAtom } from "@/atoms/search-spaces/search-space-quer
 import { EnumConnectorName } from "@/contracts/enums/connector";
 import type { SearchSourceConnector } from "@/contracts/types/connector.types";
 import { searchSourceConnector } from "@/contracts/types/connector.types";
+import { OAUTH_RESULT_COOKIE, parseOAuthCallbackResult } from "@/contracts/types/oauth.types";
 import { authenticatedFetch } from "@/lib/auth-utils";
+import { BACKEND_URL } from "@/lib/env-config";
 import {
 	trackConnectorConnected,
 	trackConnectorDeleted,
@@ -36,15 +38,12 @@ import {
 	OAUTH_CONNECTORS,
 	OTHER_CONNECTORS,
 } from "../constants/connector-constants";
-
 import {
 	dateRangeSchema,
 	frequencyMinutesSchema,
 	parseOAuthAuthResponse,
 	validateIndexingConfigState,
 } from "../constants/connector-popup.schemas";
-import { BACKEND_URL } from "@/lib/env-config";
-const OAUTH_RESULT_COOKIE = "connector_oauth_result";
 
 function readOAuthResultCookie(): string | null {
 	const match = document.cookie
@@ -211,17 +210,8 @@ export const useConnectorDialog = () => {
 		if (!raw || !searchSpaceId) return;
 		clearOAuthResultCookie();
 
-		let result: {
-			success: string | null;
-			error: string | null;
-			connector: string | null;
-			connectorId: string | null;
-		};
-		try {
-			result = JSON.parse(raw);
-		} catch {
-			return;
-		}
+		const result = parseOAuthCallbackResult(raw);
+		if (!result) return;
 
 		if (result.error) {
 			const oauthConnector = result.connector
diff --git a/surfsense_web/components/assistant-ui/connector-popup/views/connector-accounts-list-view.tsx b/surfsense_web/components/assistant-ui/connector-popup/views/connector-accounts-list-view.tsx
index 41dae221e..05b684397 100644
--- a/surfsense_web/components/assistant-ui/connector-popup/views/connector-accounts-list-view.tsx
+++ b/surfsense_web/components/assistant-ui/connector-popup/views/connector-accounts-list-view.tsx
@@ -11,12 +11,14 @@ import { EnumConnectorName } from "@/contracts/enums/connector";
 import { getConnectorIcon } from "@/contracts/enums/connectorIcons";
 import type { SearchSourceConnector } from "@/contracts/types/connector.types";
 import { authenticatedFetch } from "@/lib/auth-utils";
+import { getReauthEndpoint } from "@/lib/connector-telemetry";
+import { BACKEND_URL } from "@/lib/env-config";
 import { formatRelativeDate } from "@/lib/format-date";
 import { cn } from "@/lib/utils";
-import { getReauthEndpoint, LIVE_CONNECTOR_TYPES } from "../constants/connector-constants";
+import { LIVE_CONNECTOR_TYPES } from "../constants/connector-constants";
 import { useConnectorStatus } from "../hooks/use-connector-status";
 import { getConnectorDisplayName } from "../tabs/all-connectors-tab";
-import { BACKEND_URL } from "@/lib/env-config";
+
 interface ConnectorAccountsListViewProps {
 	connectorType: string;
 	connectorTitle: string;
diff --git a/surfsense_web/components/assistant-ui/document-upload-popup.tsx b/surfsense_web/components/assistant-ui/document-upload-popup.tsx
index 88e99e67f..477d7ee77 100644
--- a/surfsense_web/components/assistant-ui/document-upload-popup.tsx
+++ b/surfsense_web/components/assistant-ui/document-upload-popup.tsx
@@ -1,7 +1,7 @@
 "use client";
 
 import { useAtomValue } from "jotai";
-import { AlertTriangle, Settings } from "lucide-react";
+import { AlertTriangle } from "lucide-react";
 import { useRouter } from "next/navigation";
 import {
 	createContext,
@@ -148,7 +148,7 @@ const DocumentUploadPopupContent: FC<{
 					<div className="px-4 sm:px-6 pb-4 sm:pb-6">
 						{!isLoading && !hasDocumentSummaryLLM ? (
 							<div className="mb-4">
-								<Alert variant="destructive">
+								<Alert variant="warning">
 									<AlertTriangle />
 									<AlertTitle>LLM Configuration Required</AlertTitle>
 									<AlertDescription>
@@ -159,13 +159,12 @@ const DocumentUploadPopupContent: FC<{
 										</p>
 										<Button
 											size="sm"
-											variant="outline"
+											variant="secondary"
 											onClick={() => {
 												onOpenChange(false);
 												router.push(`/dashboard/${searchSpaceId}/search-space-settings/models`);
 											}}
 										>
-											<Settings className="mr-2 h-4 w-4" />
 											Go to Settings
 										</Button>
 									</AlertDescription>
diff --git a/surfsense_web/components/assistant-ui/inline-citation.tsx b/surfsense_web/components/assistant-ui/inline-citation.tsx
index a788c0ce6..6a8f2e035 100644
--- a/surfsense_web/components/assistant-ui/inline-citation.tsx
+++ b/surfsense_web/components/assistant-ui/inline-citation.tsx
@@ -1,16 +1,13 @@
 "use client";
 
-import { useQuery } from "@tanstack/react-query";
 import { useSetAtom } from "jotai";
-import { ExternalLink, FileText } from "lucide-react";
-import dynamic from "next/dynamic";
+import { FileText } from "lucide-react";
 import type { FC } from "react";
 import { useState } from "react";
 import { openCitationPanelAtom } from "@/atoms/citation/citation-panel.atom";
 import { useCitationMetadata } from "@/components/assistant-ui/citation-metadata-context";
 import { CitationPanelContent } from "@/components/citation-panel/citation-panel";
 import { Citation } from "@/components/tool-ui/citation";
-import { CitationHoverPopover } from "@/components/tool-ui/citation/citation-hover-popover";
 import { Button } from "@/components/ui/button";
 import {
 	Drawer,
@@ -19,21 +16,8 @@ import {
 	DrawerHeader,
 	DrawerTitle,
 } from "@/components/ui/drawer";
-import { Spinner } from "@/components/ui/spinner";
 import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
 import { useMediaQuery } from "@/hooks/use-media-query";
-import { documentsApiService } from "@/lib/apis/documents-api.service";
-import { cacheKeys } from "@/lib/query-client/cache-keys";
-
-// Lazily load MarkdownViewer here to break the static import cycle:
-// `markdown-viewer.tsx` → `citation-renderer.tsx` → `inline-citation.tsx`
-// would otherwise pull `markdown-viewer.tsx` back in at module-init time.
-// Only `SurfsenseDocCitation` (popover body) ever renders this viewer, so
-// the lazy boundary is invisible to most call paths.
-const MarkdownViewer = dynamic(
-	() => import("@/components/markdown-viewer").then((m) => m.MarkdownViewer),
-	{ ssr: false, loading: () => <Spinner size="xs" /> }
-);
 
 interface InlineCitationProps {
 	chunkId: number;
@@ -41,9 +25,7 @@ interface InlineCitationProps {
 }
 
 /**
- * Inline citation badge for knowledge-base chunks (numeric chunk IDs) and
- * Surfsense documentation chunks (`isDocsChunk`). Negative chunk IDs render as
- * a static "doc" pill (anonymous/synthetic uploads).
+ * Inline citation badge for knowledge-base chunks (numeric chunk IDs).
  *
  * Numeric KB chunks: clicking opens the citation panel in the right
  * sidebar (alongside the chat — does not replace it). The panel shows
@@ -51,12 +33,13 @@ interface InlineCitationProps {
  * `chunk_window`), with the cited one highlighted and an option to
  * expand the window or jump into the full document via the editor panel.
  *
- * Surfsense docs chunks: rendered as a hover-controlled shadcn Popover that
- * lazily fetches and previews the cited chunk inline, since those docs aren't
- * indexed into the user's search space and have no tab to open.
+ * Negative chunk IDs and legacy SurfSense-docs chunks (`isDocsChunk`) render
+ * as a static, non-interactive "doc" pill. The SurfSense product-docs feature
+ * was removed, so those markers are inert (no fetch, no preview) — they only
+ * survive in old persisted messages.
  */
 export const InlineCitation: FC<InlineCitationProps> = ({ chunkId, isDocsChunk = false }) => {
-	if (chunkId < 0) {
+	if (chunkId < 0 || isDocsChunk) {
 		return (
 			<Tooltip>
 				<TooltipTrigger asChild>
@@ -68,15 +51,13 @@ export const InlineCitation: FC<InlineCitationProps> = ({ chunkId, isDocsChunk =
 						doc
 					</span>
 				</TooltipTrigger>
-				<TooltipContent>Uploaded document</TooltipContent>
+				<TooltipContent>
+					{isDocsChunk ? "Documentation reference" : "Uploaded document"}
+				</TooltipContent>
 			</Tooltip>
 		);
 	}
 
-	if (isDocsChunk) {
-		return <SurfsenseDocCitation chunkId={chunkId} />;
-	}
-
 	return <NumericChunkCitation chunkId={chunkId} />;
 };
 
@@ -127,128 +108,6 @@ const NumericChunkCitation: FC<{ chunkId: number }> = ({ chunkId }) => {
 	);
 };
 
-const SurfsenseDocCitation: FC<{ chunkId: number }> = ({ chunkId }) => {
-	const isTouchLike = useMediaQuery("(hover: none), (pointer: coarse)");
-	const [mobilePreviewOpen, setMobilePreviewOpen] = useState(false);
-	const docQuery = useSurfsenseDocPreviewQuery(chunkId, mobilePreviewOpen);
-
-	const handleMobileClick = () => {
-		setMobilePreviewOpen(true);
-	};
-
-	return (
-		<>
-			<CitationHoverPopover
-				id={`doc-${chunkId}`}
-				contentClassName="w-96 max-w-[calc(100vw-2rem)] p-0"
-				align="start"
-				trigger={(hoverProps) => (
-					<Button
-						type="button"
-						variant="ghost"
-						size={null}
-						onClick={isTouchLike ? handleMobileClick : undefined}
-						className="ml-0.5 inline-flex h-5 min-w-5 items-center justify-center gap-0.5 rounded-md bg-popover px-1.5 text-[11px] font-medium text-popover-foreground/80 align-baseline"
-						aria-label={`Show Surfsense documentation chunk ${chunkId}`}
-						title="Surfsense documentation"
-						{...hoverProps}
-					>
-						<FileText className="size-3" />
-						doc
-					</Button>
-				)}
-			>
-				<SurfsenseDocPreview chunkId={chunkId} />
-			</CitationHoverPopover>
-			<Drawer
-				open={mobilePreviewOpen}
-				onOpenChange={setMobilePreviewOpen}
-				shouldScaleBackground={false}
-			>
-				<DrawerContent className="max-h-[85vh] z-80" overlayClassName="z-80">
-					<DrawerHandle />
-					<DrawerHeader className="pb-0">
-						<DrawerTitle>Surfsense documentation</DrawerTitle>
-					</DrawerHeader>
-					<SurfsenseDocPreviewContent
-						chunkId={chunkId}
-						query={docQuery}
-						contentClassName="max-h-[60vh]"
-					/>
-				</DrawerContent>
-			</Drawer>
-		</>
-	);
-};
-
-function useSurfsenseDocPreviewQuery(chunkId: number, enabled = true) {
-	return useQuery({
-		queryKey: cacheKeys.documents.byChunk(`doc-${chunkId}`),
-		queryFn: () => documentsApiService.getSurfsenseDocByChunk(chunkId),
-		staleTime: 5 * 60 * 1000,
-		enabled,
-	});
-}
-
-type SurfsenseDocPreviewQuery = ReturnType<typeof useSurfsenseDocPreviewQuery>;
-
-const SurfsenseDocPreview: FC<{ chunkId: number }> = ({ chunkId }) => {
-	const query = useSurfsenseDocPreviewQuery(chunkId);
-
-	return <SurfsenseDocPreviewContent chunkId={chunkId} query={query} />;
-};
-
-const SurfsenseDocPreviewContent: FC<{
-	chunkId: number;
-	query: SurfsenseDocPreviewQuery;
-	contentClassName?: string;
-}> = ({ chunkId, query, contentClassName = "max-h-72" }) => {
-	const { data, isLoading, error } = query;
-
-	const citedChunk = data?.chunks.find((c) => c.id === chunkId) ?? data?.chunks[0];
-
-	return (
-		<>
-			<div className="flex items-center justify-between gap-2 border-b px-3 py-2">
-				<div className="min-w-0">
-					<p className="truncate text-sm font-medium">{data?.title ?? "Surfsense documentation"}</p>
-					<p className="text-[11px] text-muted-foreground">Chunk #{chunkId}</p>
-				</div>
-				{data?.public_url && (
-					<a
-						href={data.public_url}
-						target="_blank"
-						rel="noopener noreferrer"
-						className="inline-flex shrink-0 items-center gap-1 rounded-md px-2 py-1 text-[11px] font-medium text-primary hover:bg-primary/10"
-					>
-						<ExternalLink className="size-3" />
-						Open
-					</a>
-				)}
-			</div>
-			<div className={`${contentClassName} overflow-auto px-3 py-2 text-sm`}>
-				{isLoading && (
-					<div className="flex items-center gap-2 py-4 text-muted-foreground">
-						<Spinner size="xs" />
-						<span className="text-xs">Loading…</span>
-					</div>
-				)}
-				{error && (
-					<p className="py-4 text-xs text-destructive">
-						{error instanceof Error ? error.message : "Failed to load chunk"}
-					</p>
-				)}
-				{!isLoading && !error && citedChunk?.content && (
-					<MarkdownViewer content={citedChunk.content} maxLength={1500} enableCitations />
-				)}
-				{!isLoading && !error && !citedChunk?.content && (
-					<p className="py-4 text-xs text-muted-foreground">No content available.</p>
-				)}
-			</div>
-		</>
-	);
-};
-
 import { tryGetHostname } from "@/lib/url";
 
 interface UrlCitationProps {
diff --git a/surfsense_web/components/assistant-ui/inline-mention-editor.tsx b/surfsense_web/components/assistant-ui/inline-mention-editor.tsx
index 2c8ad6263..52e015c56 100644
--- a/surfsense_web/components/assistant-ui/inline-mention-editor.tsx
+++ b/surfsense_web/components/assistant-ui/inline-mention-editor.tsx
@@ -1,6 +1,6 @@
 "use client";
 
-import { Folder as FolderIcon, X as XIcon } from "lucide-react";
+import { Folder as FolderIcon, Plug as PlugIcon, X as XIcon } from "lucide-react";
 import type { NodeEntry, TElement } from "platejs";
 import type { PlateElementProps } from "platejs/react";
 import {
@@ -20,31 +20,44 @@ import {
 	useMemo,
 	useRef,
 } from "react";
-import { FOLDER_MENTION_DOCUMENT_TYPE } from "@/atoms/chat/mentioned-documents.atom";
+import { Button } from "@/components/ui/button";
 import { getConnectorIcon } from "@/contracts/enums/connectorIcons";
 import type { Document } from "@/contracts/types/document.types";
 import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
 import { cn } from "@/lib/utils";
 
-export type MentionKind = "doc" | "folder";
+export type MentionKind = "doc" | "folder" | "connector";
 
 export interface MentionedDocument {
 	id: number;
 	title: string;
 	document_type?: string;
 	kind: MentionKind;
+	connector_type?: string;
+	account_name?: string;
 }
 
 /**
  * Input shape for inserting a chip. ``kind`` defaults to ``"doc"``.
- * Folder chips default ``document_type`` to ``FOLDER_MENTION_DOCUMENT_TYPE``
- * so the dedup key never collides with a doc chip sharing the same id.
  */
 export type MentionChipInput = {
 	id: number;
 	title: string;
 	document_type?: string;
 	kind?: MentionKind;
+	connector_type?: string;
+	account_name?: string;
+};
+
+export type SuggestionAnchorRect = {
+	left: number;
+	top: number;
+	bottom: number;
+};
+
+export type SuggestionTriggerInfo = {
+	query: string;
+	anchorRect: SuggestionAnchorRect | null;
 };
 
 export interface InlineMentionEditorRef {
@@ -62,7 +75,12 @@ export interface InlineMentionEditorRef {
 		doc: Pick<Document, "id" | "title" | "document_type">,
 		options?: { removeTriggerText?: boolean }
 	) => void;
-	removeDocumentChip: (docId: number, docType?: string) => void;
+	removeDocumentChip: (
+		docId: number,
+		docType?: string,
+		kind?: MentionKind,
+		connectorType?: string
+	) => void;
 	setDocumentChipStatus: (
 		docId: number,
 		docType: string | undefined,
@@ -73,13 +91,18 @@ export interface InlineMentionEditorRef {
 
 interface InlineMentionEditorProps {
 	placeholder?: string;
-	onMentionTrigger?: (query: string) => void;
+	onMentionTrigger?: (trigger: SuggestionTriggerInfo) => void;
 	onMentionClose?: () => void;
-	onActionTrigger?: (query: string) => void;
+	onActionTrigger?: (trigger: SuggestionTriggerInfo) => void;
 	onActionClose?: () => void;
 	onSubmit?: () => void;
 	onChange?: (text: string, docs: MentionedDocument[]) => void;
-	onDocumentRemove?: (docId: number, docType?: string) => void;
+	onDocumentRemove?: (
+		docId: number,
+		docType?: string,
+		kind?: MentionKind,
+		connectorType?: string
+	) => void;
 	onKeyDown?: (e: React.KeyboardEvent) => void;
 	disabled?: boolean;
 	className?: string;
@@ -95,6 +118,8 @@ type MentionElementNode = {
 	document_type?: string;
 	/** Discriminator; defaults to ``"doc"`` for legacy nodes. */
 	kind?: MentionKind;
+	connector_type?: string;
+	account_name?: string;
 	statusLabel?: string | null;
 	statusKind?: MentionStatusKind;
 	children: [{ text: "" }];
@@ -117,7 +142,12 @@ const EMPTY_VALUE: ComposerValue = [{ type: "p", children: [{ text: "" }] }];
  * the X button and Backspace go through the same call site.
  */
 type MentionEditorContextValue = {
-	removeChip: (docId: number, docType: string | undefined) => void;
+	removeChip: (
+		docId: number,
+		docType: string | undefined,
+		kind: MentionKind | undefined,
+		connectorType: string | undefined
+	) => void;
 };
 const MentionEditorContext = createContext<MentionEditorContextValue | null>(null);
 
@@ -134,6 +164,7 @@ const MentionElement: FC<PlateElementProps<MentionElementNode>> = ({
 				: "text-amber-700";
 
 	const isFolder = element.kind === "folder";
+	const isConnector = element.kind === "connector";
 	const ctx = useContext(MentionEditorContext);
 
 	return (
@@ -144,24 +175,36 @@ const MentionElement: FC<PlateElementProps<MentionElementNode>> = ({
 						<span className="flex items-center justify-center transition-opacity group-hover:opacity-0">
 							{isFolder ? (
 								<FolderIcon className="h-3 w-3" />
+							) : isConnector ? (
+								(getConnectorIcon(
+									element.connector_type ?? element.document_type ?? "UNKNOWN",
+									"h-3 w-3"
+								) ?? <PlugIcon className="h-3 w-3" />)
 							) : (
 								getConnectorIcon(element.document_type ?? "UNKNOWN", "h-3 w-3")
 							)}
 						</span>
 						{ctx ? (
-							<button
+							<Button
 								type="button"
+								variant="ghost"
+								size="icon"
 								aria-label={`Remove mention ${element.title}`}
 								title={`Remove ${element.title}`}
 								onMouseDown={(e) => e.preventDefault()}
 								onClick={(e) => {
 									e.stopPropagation();
-									ctx.removeChip(element.id, element.document_type);
+									ctx.removeChip(
+										element.id,
+										element.document_type,
+										element.kind,
+										element.connector_type
+									);
 								}}
-								className="absolute inset-0 flex items-center justify-center rounded-sm opacity-0 transition-opacity hover:text-primary focus-visible:opacity-100 focus-visible:outline-none group-hover:opacity-100"
+								className="absolute inset-0 size-3 rounded-sm p-0 opacity-0 transition-opacity hover:bg-transparent hover:text-primary focus-visible:opacity-100 focus-visible:outline-none focus-visible:ring-0 group-hover:opacity-100 [&_svg]:size-3"
 							>
-								<XIcon className="h-3 w-3" />
-							</button>
+								<XIcon />
+							</Button>
 						) : null}
 					</span>
 				</span>
@@ -228,6 +271,8 @@ function getMentionedDocuments(value: ComposerValue): MentionedDocument[] {
 				title: node.title,
 				document_type: node.document_type,
 				kind,
+				connector_type: node.connector_type,
+				account_name: node.account_name,
 			};
 			map.set(getMentionDocKey(doc), doc);
 		}
@@ -299,6 +344,40 @@ function scanActiveTrigger(text: string, cursor: number) {
 	return { triggerChar, query };
 }
 
+function rectToAnchor(rect: DOMRect): SuggestionAnchorRect {
+	return {
+		left: rect.left,
+		top: rect.top,
+		bottom: rect.bottom,
+	};
+}
+
+function getSelectionAnchorRect(root: HTMLElement | null): SuggestionAnchorRect | null {
+	if (!root || typeof window === "undefined") return null;
+
+	const selection = window.getSelection();
+	if (!selection || selection.rangeCount === 0 || !selection.anchorNode) return null;
+	if (!root.contains(selection.anchorNode)) return null;
+
+	const range = selection.getRangeAt(0).cloneRange();
+	const rect = range.getClientRects()[0] ?? range.getBoundingClientRect();
+	if (rect.width > 0 || rect.height > 0) return rectToAnchor(rect);
+
+	if (
+		range.collapsed &&
+		range.startContainer.nodeType === Node.TEXT_NODE &&
+		range.startOffset > 0
+	) {
+		const fallbackRange = range.cloneRange();
+		fallbackRange.setStart(range.startContainer, range.startOffset - 1);
+		fallbackRange.setEnd(range.startContainer, range.startOffset);
+		const fallbackRect = fallbackRange.getClientRects()[0] ?? fallbackRange.getBoundingClientRect();
+		if (fallbackRect.width > 0 || fallbackRect.height > 0) return rectToAnchor(fallbackRect);
+	}
+
+	return null;
+}
+
 export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMentionEditorProps>(
 	(
 		{
@@ -360,14 +439,19 @@ export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMent
 					return;
 				}
 
+				const triggerInfo: SuggestionTriggerInfo = {
+					query: trigger.query,
+					anchorRect: getSelectionAnchorRect(editableRef.current),
+				};
+
 				if (trigger.triggerChar === "@") {
-					onMentionTrigger?.(trigger.query);
 					onActionClose?.();
+					onMentionTrigger?.(triggerInfo);
 					return;
 				}
 
-				onActionTrigger?.(trigger.query);
 				onMentionClose?.();
+				onActionTrigger?.(triggerInfo);
 			},
 			[editor.selection, onActionClose, onActionTrigger, onChange, onMentionClose, onMentionTrigger]
 		);
@@ -394,14 +478,14 @@ export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMent
 
 				const removeTriggerText = options?.removeTriggerText ?? true;
 				const kind: MentionKind = mention.kind ?? "doc";
-				const document_type =
-					mention.document_type ?? (kind === "folder" ? FOLDER_MENTION_DOCUMENT_TYPE : undefined);
 				const mentionNode: MentionElementNode = {
 					type: MENTION_TYPE,
 					id: mention.id,
 					title: mention.title,
-					document_type,
+					document_type: mention.document_type,
 					kind,
+					connector_type: mention.connector_type,
+					account_name: mention.account_name,
 					children: [{ text: "" }],
 				};
 
@@ -457,17 +541,33 @@ export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMent
 			[insertMentionChip]
 		);
 
-		// Remove chip(s) matching (id, document_type). Iterates in
+		// Remove chip(s) matching the mention identity. Iterates in
 		// descending path order so removing one entry can't invalidate
 		// later paths. Chips are deduped today, so this typically runs
 		// at most once.
 		const removeDocumentChip = useCallback(
-			(docId: number, docType?: string) => {
+			(docId: number, docType?: string, kind?: MentionKind, connectorType?: string) => {
 				const match = (n: unknown) => {
 					if (!n || typeof n !== "object" || !("type" in n)) return false;
 					const node = n as MentionElementNode;
 					if (node.type !== MENTION_TYPE) return false;
 					if (node.id !== docId) return false;
+					if (kind) {
+						return (
+							getMentionDocKey({
+								id: node.id,
+								kind: node.kind ?? "doc",
+								document_type: node.document_type,
+								connector_type: node.connector_type,
+							}) ===
+							getMentionDocKey({
+								id: docId,
+								kind,
+								document_type: docType,
+								connector_type: connectorType,
+							})
+						);
+					}
 					return (node.document_type ?? "UNKNOWN") === (docType ?? "UNKNOWN");
 				};
 
@@ -485,9 +585,14 @@ export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMent
 		// Single removal call site for Backspace and the X button so the
 		// two can never diverge (e.g. one forgetting to notify the parent).
 		const removeChip = useCallback(
-			(docId: number, docType: string | undefined) => {
-				removeDocumentChip(docId, docType);
-				onDocumentRemove?.(docId, docType);
+			(
+				docId: number,
+				docType: string | undefined,
+				kind: MentionKind | undefined,
+				connectorType: string | undefined
+			) => {
+				removeDocumentChip(docId, docType, kind, connectorType);
+				onDocumentRemove?.(docId, docType, kind, connectorType);
 			},
 			[onDocumentRemove, removeDocumentChip]
 		);
@@ -610,7 +715,7 @@ export const InlineMentionEditor = forwardRef<InlineMentionEditorRef, InlineMent
 				if (!isMentionNode(prev)) return;
 
 				e.preventDefault();
-				removeChip(prev.id, prev.document_type);
+				removeChip(prev.id, prev.document_type, prev.kind, prev.connector_type);
 			},
 			[editor.selection, getCurrentValue, onKeyDown, onSubmit, removeChip]
 		);
diff --git a/surfsense_web/components/assistant-ui/mention-chip.tsx b/surfsense_web/components/assistant-ui/mention-chip.tsx
index 7197fccdc..526d4b8b4 100644
--- a/surfsense_web/components/assistant-ui/mention-chip.tsx
+++ b/surfsense_web/components/assistant-ui/mention-chip.tsx
@@ -1,6 +1,7 @@
 "use client";
 
 import type { MouseEventHandler, ReactNode } from "react";
+import { Button } from "@/components/ui/button";
 import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
 import { cn } from "@/lib/utils";
 
@@ -60,13 +61,15 @@ export function MentionChip({
 	const isInteractive = Boolean(onClick) && !disabled;
 
 	const chip = (
-		<button
+		<Button
 			type="button"
+			variant="ghost"
+			size="sm"
 			onClick={onClick}
 			disabled={disabled}
 			aria-label={ariaLabel ?? label}
 			className={cn(
-				"inline-flex h-5 items-center gap-1 rounded bg-primary/10 px-1 align-middle text-xs font-bold text-primary/60 leading-none focus-visible:outline-none focus-visible:ring-1 focus-visible:ring-ring",
+				"h-5 gap-1 rounded bg-primary/10 px-1 align-middle text-xs font-bold text-primary/60 leading-none hover:bg-primary/10 hover:text-primary/60 focus-visible:outline-none focus-visible:ring-1 focus-visible:ring-ring",
 				isInteractive ? "cursor-pointer" : "cursor-default",
 				disabled && "opacity-60",
 				className
@@ -74,7 +77,7 @@ export function MentionChip({
 		>
 			<span className="inline-flex shrink-0 text-muted-foreground">{icon}</span>
 			<span className="max-w-[120px] truncate leading-none">{label}</span>
-		</button>
+		</Button>
 	);
 
 	if (!tooltip) return chip;
diff --git a/surfsense_web/components/assistant-ui/thread.tsx b/surfsense_web/components/assistant-ui/thread.tsx
index 6876ce23e..5748b441c 100644
--- a/surfsense_web/components/assistant-ui/thread.tsx
+++ b/surfsense_web/components/assistant-ui/thread.tsx
@@ -62,13 +62,13 @@ import {
 	InlineMentionEditor,
 	type InlineMentionEditorRef,
 	type MentionedDocument,
+	type SuggestionAnchorRect,
+	type SuggestionTriggerInfo,
 } from "@/components/assistant-ui/inline-mention-editor";
 import { TooltipIconButton } from "@/components/assistant-ui/tooltip-icon-button";
 import { UserMessage } from "@/components/assistant-ui/user-message";
-import {
-	DocumentMentionPicker,
-	type DocumentMentionPickerRef,
-} from "@/components/new-chat/document-mention-picker";
+import { ChatExamplePrompts } from "@/components/new-chat/chat-example-prompts";
+import { ComposerSuggestionPopoverContent } from "@/components/new-chat/composer-suggestion-popup";
 import { PromptPicker, type PromptPickerRef } from "@/components/new-chat/prompt-picker";
 import { Avatar, AvatarFallback, AvatarGroup } from "@/components/ui/avatar";
 import { Button } from "@/components/ui/button";
@@ -90,6 +90,7 @@ import {
 	DropdownMenuSubTrigger,
 	DropdownMenuTrigger,
 } from "@/components/ui/dropdown-menu";
+import { Popover, PopoverAnchor } from "@/components/ui/popover";
 import { Skeleton } from "@/components/ui/skeleton";
 import { Switch } from "@/components/ui/switch";
 import { getConnectorIcon } from "@/contracts/enums/connectorIcons";
@@ -105,11 +106,44 @@ import { useMediaQuery } from "@/hooks/use-media-query";
 import { useElectronAPI } from "@/hooks/use-platform";
 import { captureDisplayToPngDataUrl } from "@/lib/chat/display-media-capture";
 import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
-import { SLIDEOUT_PANEL_OPENED_EVENT } from "@/lib/layout-events";
+import { slideoutOpenedTickAtom } from "@/lib/layout-events";
 import { cn } from "@/lib/utils";
+import {
+	DocumentMentionPicker,
+	type DocumentMentionPickerRef,
+	promoteRecentMention,
+} from "../new-chat/document-mention-picker";
 
 const COMPOSER_PLACEHOLDER = "Ask anything, type / for prompts, type @ to mention docs";
 
+type ComposerSuggestionAnchorPoint = {
+	left: number;
+	top: number;
+};
+
+function ComposerSuggestionAnchor({ point }: { point: ComposerSuggestionAnchorPoint }) {
+	return (
+		<PopoverAnchor
+			className="pointer-events-none fixed size-0"
+			style={{
+				left: point.left,
+				top: point.top,
+			}}
+		/>
+	);
+}
+
+function getComposerSuggestionAnchorPoint(
+	triggerRect: SuggestionAnchorRect | null,
+	side: "top" | "bottom"
+): ComposerSuggestionAnchorPoint | null {
+	if (!triggerRect) return null;
+	return {
+		left: triggerRect.left,
+		top: side === "bottom" ? triggerRect.bottom : triggerRect.top,
+	};
+}
+
 export const Thread: FC = () => {
 	return <ThreadContent />;
 };
@@ -409,6 +443,8 @@ const Composer: FC = () => {
 	const [showPromptPicker, setShowPromptPicker] = useState(false);
 	const [mentionQuery, setMentionQuery] = useState("");
 	const [actionQuery, setActionQuery] = useState("");
+	const [suggestionAnchorPoint, setSuggestionAnchorPoint] =
+		useState<ComposerSuggestionAnchorPoint | null>(null);
 	const editorRef = useRef<InlineMentionEditorRef>(null);
 	const prevMentionedDocsRef = useRef<Map<string, MentionedDocumentInfo>>(new Map());
 	const documentPickerRef = useRef<DocumentMentionPickerRef>(null);
@@ -478,15 +514,19 @@ const Composer: FC = () => {
 		editorRef.current?.focus();
 	}, [isDesktop, showDocumentPopover, showPromptPicker, threadId]);
 
-	// Close document picker when a slide-out panel (inbox, etc.) opens.
+	// Close document picker when a sidebar slide-out panel (inbox, etc.) opens.
+	// React only on changes to the tick — comparing against the previously-seen
+	// value preserves the one-shot semantics of the prior window-event approach
+	// (no retroactive close on mount if a panel had already opened earlier).
+	const slideoutOpenedTick = useAtomValue(slideoutOpenedTickAtom);
+	const lastSeenSlideoutTickRef = useRef(slideoutOpenedTick);
 	useEffect(() => {
-		const handler = () => {
-			setShowDocumentPopover(false);
-			setMentionQuery("");
-		};
-		window.addEventListener(SLIDEOUT_PANEL_OPENED_EVENT, handler);
-		return () => window.removeEventListener(SLIDEOUT_PANEL_OPENED_EVENT, handler);
-	}, []);
+		if (lastSeenSlideoutTickRef.current === slideoutOpenedTick) return;
+		lastSeenSlideoutTickRef.current = slideoutOpenedTick;
+		setShowDocumentPopover(false);
+		setMentionQuery("");
+		setSuggestionAnchorPoint(null);
+	}, [slideoutOpenedTick]);
 
 	// Sync editor text into assistant-ui's composer and mirror the chip
 	// atom from the editor's reported ``docs``. The editor is the
@@ -504,44 +544,99 @@ const Composer: FC = () => {
 						return prev;
 					}
 				}
-				return docs.map<MentionedDocumentInfo>((d) => ({
-					id: d.id,
-					title: d.title,
-					// Atom requires a string; ``"UNKNOWN"`` matches the
-					// sentinel ``getMentionDocKey`` and the editor's
-					// match predicates use.
-					document_type: d.document_type ?? "UNKNOWN",
-					kind: d.kind,
-				}));
+				return docs.map<MentionedDocumentInfo>((d) => {
+					if (d.kind === "connector") {
+						return {
+							id: d.id,
+							title: d.title,
+							kind: "connector",
+							connector_type: d.connector_type ?? "UNKNOWN",
+							account_name: d.account_name ?? d.title,
+						};
+					}
+					if (d.kind === "folder") {
+						return {
+							id: d.id,
+							title: d.title,
+							kind: "folder",
+						};
+					}
+					return {
+						id: d.id,
+						title: d.title,
+						document_type: d.document_type ?? "UNKNOWN",
+						kind: "doc",
+					};
+				});
 			});
 		},
 		[aui, setMentionedDocuments]
 	);
 
-	const handleMentionTrigger = useCallback((query: string) => {
+	const handleMentionTrigger = useCallback((trigger: SuggestionTriggerInfo) => {
+		const anchorPoint = getComposerSuggestionAnchorPoint(trigger.anchorRect, "top");
+		if (!anchorPoint) {
+			setShowDocumentPopover(false);
+			setMentionQuery("");
+			setSuggestionAnchorPoint(null);
+			return;
+		}
+		setSuggestionAnchorPoint((current) => current ?? anchorPoint);
 		setShowDocumentPopover(true);
-		setMentionQuery(query);
+		setMentionQuery(trigger.query);
 	}, []);
 
 	const handleMentionClose = useCallback(() => {
 		if (showDocumentPopover) {
 			setShowDocumentPopover(false);
 			setMentionQuery("");
+			setSuggestionAnchorPoint(null);
 		}
 	}, [showDocumentPopover]);
 
-	const handleActionTrigger = useCallback((query: string) => {
-		setShowPromptPicker(true);
-		setActionQuery(query);
+	const handleDocumentPopoverOpenChange = useCallback((open: boolean) => {
+		setShowDocumentPopover(open);
+		if (!open) {
+			setMentionQuery("");
+			setSuggestionAnchorPoint(null);
+		}
 	}, []);
 
+	const handleActionTrigger = useCallback(
+		(trigger: SuggestionTriggerInfo) => {
+			const anchorPoint = getComposerSuggestionAnchorPoint(
+				trigger.anchorRect,
+				clipboardInitialText ? "bottom" : "top"
+			);
+			if (!anchorPoint) {
+				setShowPromptPicker(false);
+				setActionQuery("");
+				setSuggestionAnchorPoint(null);
+				return;
+			}
+			setSuggestionAnchorPoint((current) => current ?? anchorPoint);
+			setShowPromptPicker(true);
+			setActionQuery(trigger.query);
+		},
+		[clipboardInitialText]
+	);
+
 	const handleActionClose = useCallback(() => {
 		if (showPromptPicker) {
 			setShowPromptPicker(false);
 			setActionQuery("");
+			setSuggestionAnchorPoint(null);
 		}
 	}, [showPromptPicker]);
 
+	const handlePromptPickerOpenChange = useCallback((open: boolean) => {
+		setShowPromptPicker(open);
+		if (!open) {
+			setActionQuery("");
+			setSuggestionAnchorPoint(null);
+		}
+	}, []);
+
 	const handleActionSelect = useCallback(
 		(action: { name: string; prompt: string; mode: "transform" | "explore" }) => {
 			let userText = editorRef.current?.getText() ?? "";
@@ -558,10 +653,20 @@ const Composer: FC = () => {
 			aui.composer().setText(finalPrompt);
 			setShowPromptPicker(false);
 			setActionQuery("");
+			setSuggestionAnchorPoint(null);
 		},
 		[actionQuery, aui]
 	);
 
+	const handleExampleSelect = useCallback(
+		(prompt: string) => {
+			editorRef.current?.setText(prompt);
+			aui.composer().setText(prompt);
+			editorRef.current?.focus();
+		},
+		[aui]
+	);
+
 	const handleQuickAskSelect = useCallback(
 		(action: { name: string; prompt: string; mode: "transform" | "explore" }) => {
 			if (!clipboardInitialText) return;
@@ -573,6 +678,7 @@ const Composer: FC = () => {
 			aui.composer().setText(finalPrompt);
 			setShowPromptPicker(false);
 			setActionQuery("");
+			setSuggestionAnchorPoint(null);
 			setClipboardInitialText(undefined);
 		},
 		[clipboardInitialText, electronAPI, aui]
@@ -601,6 +707,7 @@ const Composer: FC = () => {
 					e.preventDefault();
 					setShowPromptPicker(false);
 					setActionQuery("");
+					setSuggestionAnchorPoint(null);
 					return;
 				}
 			}
@@ -622,8 +729,12 @@ const Composer: FC = () => {
 				}
 				if (e.key === "Escape") {
 					e.preventDefault();
+					if (documentPickerRef.current?.goBack()) {
+						return;
+					}
 					setShowDocumentPopover(false);
 					setMentionQuery("");
+					setSuggestionAnchorPoint(null);
 					return;
 				}
 			}
@@ -656,35 +767,49 @@ const Composer: FC = () => {
 	]);
 
 	const handleDocumentRemove = useCallback(
-		(docId: number, docType?: string) => {
+		(
+			docId: number,
+			docType?: string,
+			kind?: "doc" | "folder" | "connector",
+			connectorType?: string
+		) => {
 			setMentionedDocuments((prev) => {
-				if (!docType) {
-					// Fallback when chip type is unavailable.
-					return prev.filter((doc) => doc.id !== docId);
-				}
-				const removedKey = getMentionDocKey({ id: docId, document_type: docType });
+				const removedKey = getMentionDocKey({
+					id: docId,
+					document_type: docType,
+					kind,
+					connector_type: connectorType,
+				});
 				return prev.filter((doc) => getMentionDocKey(doc) !== removedKey);
 			});
 		},
 		[setMentionedDocuments]
 	);
 
-	const handleDocumentsMention = useCallback((mentions: MentionedDocumentInfo[]) => {
-		const editorMentionedDocs = editorRef.current?.getMentionedDocuments() ?? [];
-		const editorDocKeys = new Set(editorMentionedDocs.map((doc) => getMentionDocKey(doc)));
+	const handleDocumentsMention = useCallback(
+		(mentions: MentionedDocumentInfo[]) => {
+			const parsedSearchSpaceId = Number(search_space_id);
+			const editorMentionedDocs = editorRef.current?.getMentionedDocuments() ?? [];
+			const editorDocKeys = new Set(editorMentionedDocs.map((doc) => getMentionDocKey(doc)));
 
-		for (const mention of mentions) {
-			const key = getMentionDocKey(mention);
-			if (editorDocKeys.has(key)) continue;
-			editorRef.current?.insertMentionChip(mention);
-			// Track within the loop so a duplicate-in-batch can't double-insert.
-			editorDocKeys.add(key);
-		}
+			for (const mention of mentions) {
+				const key = getMentionDocKey(mention);
+				if (editorDocKeys.has(key)) continue;
+				editorRef.current?.insertMentionChip(mention);
+				if (Number.isFinite(parsedSearchSpaceId)) {
+					promoteRecentMention(parsedSearchSpaceId, mention);
+				}
+				// Track within the loop so a duplicate-in-batch can't double-insert.
+				editorDocKeys.add(key);
+			}
 
-		// Atom is reconciled by ``handleEditorChange`` via the editor's
-		// onChange — no second write path here.
-		setMentionQuery("");
-	}, []);
+			// Atom is reconciled by ``handleEditorChange`` via the editor's
+			// onChange — no second write path here.
+			setMentionQuery("");
+			setSuggestionAnchorPoint(null);
+		},
+		[search_space_id]
+	);
 
 	useEffect(() => {
 		const editor = editorRef.current;
@@ -705,7 +830,12 @@ const Composer: FC = () => {
 
 		for (const [key, doc] of prevDocsMap) {
 			if (!nextDocsMap.has(key)) {
-				editor.removeDocumentChip(doc.id, doc.document_type);
+				editor.removeDocumentChip(
+					doc.id,
+					doc.kind === "doc" ? doc.document_type : undefined,
+					doc.kind,
+					doc.kind === "connector" ? doc.connector_type : undefined
+				);
 			}
 		}
 
@@ -720,39 +850,46 @@ const Composer: FC = () => {
 				currentUserId={currentUser?.id ?? null}
 				members={members ?? []}
 			/>
-			{showDocumentPopover && (
-				<div className="absolute bottom-full left-0 z-[9999] mb-2">
-					<DocumentMentionPicker
-						ref={documentPickerRef}
-						searchSpaceId={Number(search_space_id)}
-						onSelectionChange={handleDocumentsMention}
-						onDone={() => {
-							setShowDocumentPopover(false);
-							setMentionQuery("");
-						}}
-						initialSelectedDocuments={mentionedDocuments}
-						externalSearch={mentionQuery}
-					/>
-				</div>
-			)}
-			{showPromptPicker && (
-				<div
-					className={cn(
-						"absolute left-0 z-[9999]",
-						clipboardInitialText ? "top-full mt-2" : "bottom-full mb-2"
-					)}
-				>
-					<PromptPicker
-						ref={promptPickerRef}
-						onSelect={clipboardInitialText ? handleQuickAskSelect : handleActionSelect}
-						onDone={() => {
-							setShowPromptPicker(false);
-							setActionQuery("");
-						}}
-						externalSearch={actionQuery}
-					/>
-				</div>
-			)}
+			<Popover open={showDocumentPopover} onOpenChange={handleDocumentPopoverOpenChange}>
+				{suggestionAnchorPoint ? (
+					<>
+						<ComposerSuggestionAnchor point={suggestionAnchorPoint} />
+						<ComposerSuggestionPopoverContent side="top">
+							<DocumentMentionPicker
+								ref={documentPickerRef}
+								searchSpaceId={Number(search_space_id)}
+								onSelectionChange={handleDocumentsMention}
+								onDone={() => {
+									setShowDocumentPopover(false);
+									setMentionQuery("");
+									setSuggestionAnchorPoint(null);
+								}}
+								initialSelectedDocuments={mentionedDocuments}
+								externalSearch={mentionQuery}
+							/>
+						</ComposerSuggestionPopoverContent>
+					</>
+				) : null}
+			</Popover>
+			<Popover open={showPromptPicker} onOpenChange={handlePromptPickerOpenChange}>
+				{suggestionAnchorPoint ? (
+					<>
+						<ComposerSuggestionAnchor point={suggestionAnchorPoint} />
+						<ComposerSuggestionPopoverContent side={clipboardInitialText ? "bottom" : "top"}>
+							<PromptPicker
+								ref={promptPickerRef}
+								onSelect={clipboardInitialText ? handleQuickAskSelect : handleActionSelect}
+								onDone={() => {
+									setShowPromptPicker(false);
+									setActionQuery("");
+									setSuggestionAnchorPoint(null);
+								}}
+								externalSearch={actionQuery}
+							/>
+						</ComposerSuggestionPopoverContent>
+					</>
+				) : null}
+			</Popover>
 			<div className="flex w-full flex-col">
 				<div
 					className={cn(
@@ -779,7 +916,7 @@ const Composer: FC = () => {
 							onDocumentRemove={handleDocumentRemove}
 							onSubmit={handleSubmit}
 							onKeyDown={handleKeyDown}
-							className="min-h-[24px]"
+							className="min-h-[24px] **:data-slate-placeholder:font-normal"
 						/>
 					</div>
 					<ComposerAction isBlockedByOtherUser={isBlockedByOtherUser} />
@@ -789,6 +926,7 @@ const Composer: FC = () => {
 					isThreadEmpty={isThreadEmpty}
 					onVisibleChange={setConnectToolsTrayVisible}
 				/>
+				{isThreadEmpty && <ChatExamplePrompts onSelect={handleExampleSelect} />}
 			</div>
 		</ComposerPrimitive.Root>
 	);
@@ -961,7 +1099,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 										<Switch
 											checked={isWebSearchEnabled}
 											tabIndex={-1}
-											className="pointer-events-none h-4 w-7 shrink-0 border [&>span]:h-3 [&>span]:w-3 [&>span[data-state=checked]]:translate-x-3"
+											className="pointer-events-none shrink-0 origin-right scale-[0.6]"
 										/>
 									</DropdownMenuItem>
 								)}
@@ -1034,9 +1172,10 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 													>
 														<div className="flex w-full items-center gap-3 px-4 py-2 hover:bg-accent hover:text-accent-foreground transition-colors">
 															<CollapsibleTrigger asChild>
-																<button
+																<Button
 																	type="button"
-																	className="flex min-w-0 flex-1 items-center gap-3 text-left"
+																	variant="ghost"
+																	className="h-auto min-w-0 flex-1 justify-start gap-3 p-0 text-left hover:bg-transparent hover:text-inherit"
 																>
 																	{iconInfo ? (
 																		<Image
@@ -1058,7 +1197,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 																	) : (
 																		<ChevronRight className="size-4 shrink-0 text-muted-foreground" />
 																	)}
-																</button>
+																</Button>
 															</CollapsibleTrigger>
 															<Switch
 																checked={!allDisabled}
@@ -1200,7 +1339,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 									<Switch
 										checked={isWebSearchEnabled}
 										tabIndex={-1}
-										className="pointer-events-none h-4 w-7 shrink-0 border [&>span]:h-3 [&>span]:w-3 [&>span[data-state=checked]]:translate-x-3"
+										className="pointer-events-none shrink-0 origin-right scale-[0.6]"
 									/>
 								</DropdownMenuItem>
 							)}
@@ -1250,7 +1389,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 															<Switch
 																checked={!isDisabled}
 																tabIndex={-1}
-																className="pointer-events-none shrink-0 scale-[0.6]"
+																className="pointer-events-none shrink-0 origin-right scale-[0.6]"
 															/>
 														</DropdownMenuItem>
 													);
@@ -1302,7 +1441,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 																	onPointerDown={(event) => event.stopPropagation()}
 																	onClick={(event) => event.stopPropagation()}
 																	onCheckedChange={() => toggleToolGroup(toolNames)}
-																	className="shrink-0 scale-[0.6]"
+																	className="mr-2 shrink-0 origin-right scale-[0.6]"
 																/>
 															</DropdownMenuSubTrigger>
 															<DropdownMenuPortal>
@@ -1331,7 +1470,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 																				<Switch
 																					checked={!isDisabled}
 																					tabIndex={-1}
-																					className="pointer-events-none shrink-0 scale-[0.6]"
+																					className="pointer-events-none shrink-0 origin-right scale-[0.6]"
 																				/>
 																			</DropdownMenuItem>
 																		);
@@ -1371,7 +1510,7 @@ const ComposerAction: FC<ComposerActionProps> = ({ isBlockedByOtherUser = false
 															<Switch
 																checked={!isDisabled}
 																tabIndex={-1}
-																className="pointer-events-none shrink-0 scale-[0.6]"
+																className="pointer-events-none shrink-0 origin-right scale-[0.6]"
 															/>
 														</DropdownMenuItem>
 													);
@@ -1465,7 +1604,7 @@ interface ToolGroup {
 const TOOL_GROUPS: ToolGroup[] = [
 	{
 		label: "Research",
-		tools: ["search_surfsense_docs", "scrape_webpage"],
+		tools: ["scrape_webpage"],
 	},
 	{
 		label: "Generate",
diff --git a/surfsense_web/components/assistant-ui/user-message.tsx b/surfsense_web/components/assistant-ui/user-message.tsx
index d17788c71..5c90dce55 100644
--- a/surfsense_web/components/assistant-ui/user-message.tsx
+++ b/surfsense_web/components/assistant-ui/user-message.tsx
@@ -6,7 +6,7 @@ import {
 	useMessagePartText,
 } from "@assistant-ui/react";
 import { useAtomValue, useSetAtom } from "jotai";
-import { CheckIcon, CopyIcon, Folder as FolderIcon, Pencil } from "lucide-react";
+import { CheckIcon, CopyIcon, Folder as FolderIcon, Pencil, Plug } from "lucide-react";
 import Image from "next/image";
 import { useParams } from "next/navigation";
 import { type FC, useCallback, useState } from "react";
@@ -100,8 +100,13 @@ const UserTextPart: FC = () => {
 					return <span key={`txt-${segment.start}`}>{segment.value}</span>;
 				}
 				const isFolder = segment.doc.kind === "folder";
+				const isConnector = segment.doc.kind === "connector";
 				const icon = isFolder ? (
 					<FolderIcon className="size-3.5" />
+				) : isConnector ? (
+					(getConnectorIcon(segment.doc.connector_type, "size-3.5") ?? (
+						<Plug className="size-3.5" />
+					))
 				) : (
 					getConnectorIcon(segment.doc.document_type ?? "UNKNOWN", "size-3.5")
 				);
@@ -110,8 +115,18 @@ const UserTextPart: FC = () => {
 						key={`mention-${getMentionDocKey(segment.doc)}-${segment.start}`}
 						icon={icon}
 						label={segment.doc.title}
-						tooltip={isFolder ? `Folder: ${segment.doc.title}` : segment.doc.title}
-						onClick={isFolder ? undefined : () => handleOpenDoc(segment.doc.id, segment.doc.title)}
+						tooltip={
+							isFolder
+								? `Folder: ${segment.doc.title}`
+								: isConnector
+									? `Connector account: ${segment.doc.title}`
+									: segment.doc.title
+						}
+						onClick={
+							isFolder || isConnector
+								? undefined
+								: () => handleOpenDoc(segment.doc.id, segment.doc.title)
+						}
 						className="mx-0.5"
 					/>
 				);
diff --git a/surfsense_web/components/auth/sign-in-button.tsx b/surfsense_web/components/auth/sign-in-button.tsx
index 688dd496a..7f5a77f36 100644
--- a/surfsense_web/components/auth/sign-in-button.tsx
+++ b/surfsense_web/components/auth/sign-in-button.tsx
@@ -2,6 +2,7 @@
 
 import Link from "next/link";
 import { useState } from "react";
+import { Button } from "@/components/ui/button";
 import { AUTH_TYPE, BACKEND_URL } from "@/lib/env-config";
 import { trackLoginAttempt } from "@/lib/posthog/events";
 import { cn } from "@/lib/utils";
@@ -74,8 +75,9 @@ export const SignInButton = ({ variant = "desktop" }: SignInButtonProps) => {
 
 	if (isGoogleAuth) {
 		return (
-			<button
+			<Button
 				type="button"
+				variant="ghost"
 				onClick={handleGoogleLogin}
 				disabled={isRedirecting}
 				className={cn(
@@ -85,7 +87,7 @@ export const SignInButton = ({ variant = "desktop" }: SignInButtonProps) => {
 			>
 				<GoogleLogo className="h-4 w-4" />
 				<span>Sign In</span>
-			</button>
+			</Button>
 		);
 	}
 
diff --git a/surfsense_web/components/desktop/desktop-update-toast.tsx b/surfsense_web/components/desktop/desktop-update-toast.tsx
new file mode 100644
index 000000000..367190709
--- /dev/null
+++ b/surfsense_web/components/desktop/desktop-update-toast.tsx
@@ -0,0 +1,82 @@
+"use client";
+
+import { Download, X } from "lucide-react";
+import { useEffect, useState } from "react";
+import { Button } from "@/components/ui/button";
+import { cn } from "@/lib/utils";
+
+type UpdateToastState = {
+	version: string;
+};
+
+export function DesktopUpdateToast() {
+	const [update, setUpdate] = useState<UpdateToastState | null>(null);
+
+	useEffect(() => {
+		const api = window.electronAPI;
+		if (!api?.onUpdateDownloaded) return;
+
+		return api.onUpdateDownloaded(({ version }) => {
+			setUpdate({ version });
+		});
+	}, []);
+
+	if (!update) return null;
+
+	const installAndRestart = () => {
+		void window.electronAPI?.installUpdateNow();
+	};
+
+	return (
+		<div className="pointer-events-none fixed bottom-5 right-5 z-[100]">
+			<div
+				className={cn(
+					"pointer-events-auto relative flex w-[360px] max-w-[calc(100vw-2.5rem)] gap-3 rounded-md border border-popover-border",
+					"bg-popover p-4 text-popover-foreground shadow-md"
+				)}
+				aria-live="polite"
+			>
+				<div className="mt-0.5 flex size-7 shrink-0 items-center justify-center rounded-full text-muted-foreground">
+					<Download className="size-5" strokeWidth={1.8} />
+				</div>
+
+				<div className="min-w-0 flex-1">
+					<div className="pr-8 text-sm font-semibold tracking-tight">Update available</div>
+					<p className="mt-1.5 text-sm leading-relaxed text-muted-foreground">
+						A new version of SurfSense ({update.version}) is now available to install.
+					</p>
+
+					<div className="mt-3 flex items-center gap-4">
+						<Button
+							type="button"
+							variant="ghost"
+							className="h-auto px-0 text-sm font-semibold hover:bg-transparent hover:text-foreground"
+							onClick={installAndRestart}
+						>
+							Install and restart
+						</Button>
+						<Button
+							type="button"
+							variant="ghost"
+							className="h-auto px-0 text-sm font-semibold text-muted-foreground hover:bg-transparent hover:text-foreground"
+							onClick={() => setUpdate(null)}
+						>
+							Not now
+						</Button>
+					</div>
+				</div>
+
+				<Button
+					type="button"
+					variant="ghost"
+					size="icon"
+					className="absolute right-2 top-2 size-7 text-muted-foreground hover:bg-transparent hover:text-foreground"
+					aria-label="Dismiss update toast"
+					onClick={() => setUpdate(null)}
+				>
+					<X className="size-4" strokeWidth={1.8} />
+				</Button>
+			</div>
+		</div>
+	);
+}
diff --git a/surfsense_web/components/documents/FolderTreeView.tsx b/surfsense_web/components/documents/FolderTreeView.tsx
index fb1030028..7c076e99a 100644
--- a/surfsense_web/components/documents/FolderTreeView.tsx
+++ b/surfsense_web/components/documents/FolderTreeView.tsx
@@ -190,7 +190,6 @@ export function FolderTreeView({
 		for (const f of folders) {
 			const folderMentionKey = getMentionDocKey({
 				id: f.id,
-				document_type: "FOLDER",
 				kind: "folder",
 			});
 			states[f.id] = mentionedDocKeys.has(folderMentionKey) ? "all" : "none";
diff --git a/surfsense_web/components/editor-panel/editor-panel.tsx b/surfsense_web/components/editor-panel/editor-panel.tsx
index 2baffaf0f..534ff9daa 100644
--- a/surfsense_web/components/editor-panel/editor-panel.tsx
+++ b/surfsense_web/components/editor-panel/editor-panel.tsx
@@ -34,6 +34,7 @@ import { useElectronAPI } from "@/hooks/use-platform";
 import { authenticatedFetch, getBearerToken, redirectToLogin } from "@/lib/auth-utils";
 import { inferMonacoLanguageFromPath } from "@/lib/editor-language";
 import { BACKEND_URL } from "@/lib/env-config";
+
 const PlateEditor = dynamic(
 	() => import("@/components/editor/plate-editor").then((m) => ({ default: m.PlateEditor })),
 	{ ssr: false, loading: () => <EditorPanelSkeleton /> }
diff --git a/surfsense_web/components/free-chat/anonymous-chat.tsx b/surfsense_web/components/free-chat/anonymous-chat.tsx
index 28ee1f6f0..aff58f7bc 100644
--- a/surfsense_web/components/free-chat/anonymous-chat.tsx
+++ b/surfsense_web/components/free-chat/anonymous-chat.tsx
@@ -6,11 +6,12 @@ import { Button } from "@/components/ui/button";
 import type { AnonModel, AnonQuotaResponse } from "@/contracts/types/anonymous-chat.types";
 import { anonymousChatApiService } from "@/lib/apis/anonymous-chat-api.service";
 import { readSSEStream } from "@/lib/chat/streaming-state";
+import { BACKEND_URL } from "@/lib/env-config";
 import { trackAnonymousChatMessageSent } from "@/lib/posthog/events";
 import { cn } from "@/lib/utils";
 import { QuotaBar } from "./quota-bar";
 import { QuotaWarningBanner } from "./quota-warning-banner";
-import { BACKEND_URL } from "@/lib/env-config";
+
 interface Message {
 	id: string;
 	role: "user" | "assistant";
@@ -80,19 +81,16 @@ export function AnonymousChat({ model }: AnonymousChatProps) {
 				content: m.content,
 			}));
 
-			const response = await fetch(
-				`${BACKEND_URL}/api/v1/public/anon-chat/stream`,
-				{
-					method: "POST",
-					headers: { "Content-Type": "application/json" },
-					credentials: "include",
-					body: JSON.stringify({
-						model_slug: modelSlug,
-						messages: chatHistory,
-					}),
-					signal: controller.signal,
-				}
-			);
+			const response = await fetch(`${BACKEND_URL}/api/v1/public/anon-chat/stream`, {
+				method: "POST",
+				headers: { "Content-Type": "application/json" },
+				credentials: "include",
+				body: JSON.stringify({
+					model_slug: modelSlug,
+					messages: chatHistory,
+				}),
+				signal: controller.signal,
+			});
 
 			if (!response.ok) {
 				if (response.status === 429) {
diff --git a/surfsense_web/components/free-chat/free-chat-page.tsx b/surfsense_web/components/free-chat/free-chat-page.tsx
index 927eaef87..2ee026cc3 100644
--- a/surfsense_web/components/free-chat/free-chat-page.tsx
+++ b/surfsense_web/components/free-chat/free-chat-page.tsx
@@ -15,6 +15,7 @@ import {
 	type TokenUsageData,
 	TokenUsageProvider,
 } from "@/components/assistant-ui/token-usage-context";
+import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
 import { useAnonymousMode } from "@/contexts/anonymous-mode";
 import { TimelineDataUI } from "@/features/chat-messages/timeline";
 import {
@@ -101,11 +102,16 @@ export function FreeChatPage() {
 	const anonMode = useAnonymousMode();
 	const modelSlug = anonMode.isAnonymous ? anonMode.modelSlug : "";
 	const resetKey = anonMode.isAnonymous ? anonMode.resetKey : 0;
+	const webSearchEnabled = anonMode.isAnonymous ? anonMode.webSearchEnabled : true;
 
 	const [messages, setMessages] = useState<ThreadMessageLike[]>([]);
 	const [isRunning, setIsRunning] = useState(false);
 	const [tokenUsageStore] = useState(() => createTokenUsageStore());
 	const abortControllerRef = useRef<AbortController | null>(null);
+	// Mirror the latest messages into a ref so onNew stays a stable callback
+	// (it reads history on demand instead of depending on the array).
+	const messagesRef = useRef<ThreadMessageLike[]>([]);
+	messagesRef.current = messages;
 
 	// Turnstile CAPTCHA state
 	const [captchaRequired, setCaptchaRequired] = useState(false);
@@ -152,6 +158,7 @@ export function FreeChatPage() {
 				model_slug: modelSlug,
 				messages: messageHistory,
 			};
+			if (!webSearchEnabled) reqBody.disabled_tools = ["web_search"];
 			if (turnstileToken) reqBody.turnstile_token = turnstileToken;
 
 			const response = await fetch(`${BACKEND_URL}/api/v1/public/anon-chat/stream`, {
@@ -301,7 +308,7 @@ export function FreeChatPage() {
 				throw err;
 			}
 		},
-		[modelSlug, tokenUsageStore]
+		[modelSlug, tokenUsageStore, webSearchEnabled]
 	);
 
 	const onNew = useCallback(
@@ -345,7 +352,7 @@ export function FreeChatPage() {
 				},
 			]);
 
-			const messageHistory = messages
+			const messageHistory = messagesRef.current
 				.filter((m) => m.role === "user" || m.role === "assistant")
 				.map((m) => {
 					let text = "";
@@ -395,7 +402,7 @@ export function FreeChatPage() {
 				abortControllerRef.current = null;
 			}
 		},
-		[messages, doStream]
+		[modelSlug, anonMode, doStream]
 	);
 
 	/** Called when Turnstile resolves successfully. Stores the token and auto-retries. */
@@ -481,19 +488,21 @@ export function FreeChatPage() {
 					</div>
 
 					{captchaRequired && TURNSTILE_SITE_KEY && (
-						<div className="flex flex-col items-center gap-3 border-b border-border/40 bg-muted/30 py-4">
-							<div className="flex items-center gap-2 text-sm text-muted-foreground">
-								<ShieldCheck className="h-4 w-4" />
-								<span>Quick verification to continue chatting</span>
-							</div>
-							<Turnstile
-								ref={turnstileRef}
-								siteKey={TURNSTILE_SITE_KEY}
-								onSuccess={handleTurnstileSuccess}
-								onError={() => turnstileRef.current?.reset()}
-								onExpire={() => turnstileRef.current?.reset()}
-								options={{ theme: "auto", size: "normal" }}
-							/>
+						<div className="flex justify-center border-b bg-muted/30 px-4 py-4">
+							<Alert className="w-auto max-w-md">
+								<ShieldCheck />
+								<AlertTitle>Quick verification to continue chatting</AlertTitle>
+								<AlertDescription>
+									<Turnstile
+										ref={turnstileRef}
+										siteKey={TURNSTILE_SITE_KEY}
+										onSuccess={handleTurnstileSuccess}
+										onError={() => turnstileRef.current?.reset()}
+										onExpire={() => turnstileRef.current?.reset()}
+										options={{ theme: "auto", size: "normal" }}
+									/>
+								</AlertDescription>
+							</Alert>
 						</div>
 					)}
 
diff --git a/surfsense_web/components/free-chat/free-composer.tsx b/surfsense_web/components/free-chat/free-composer.tsx
index 943ace9aa..46d9e0259 100644
--- a/surfsense_web/components/free-chat/free-composer.tsx
+++ b/surfsense_web/components/free-chat/free-composer.tsx
@@ -6,6 +6,7 @@ import { type FC, useCallback, useRef, useState } from "react";
 import { toast } from "sonner";
 import { TooltipIconButton } from "@/components/assistant-ui/tooltip-icon-button";
 import { Button } from "@/components/ui/button";
+import { Separator } from "@/components/ui/separator";
 import { Switch } from "@/components/ui/switch";
 import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
 import { useAnonymousMode } from "@/contexts/anonymous-mode";
@@ -71,10 +72,11 @@ export const FreeComposer: FC = () => {
 	const { gate } = useLoginGate();
 	const anonMode = useAnonymousMode();
 	const [text, setText] = useState("");
-	const [webSearchEnabled, setWebSearchEnabled] = useState(true);
 	const fileInputRef = useRef<HTMLInputElement>(null);
 
 	const hasUploadedDoc = anonMode.isAnonymous && anonMode.uploadedDoc !== null;
+	const webSearchEnabled = anonMode.isAnonymous ? anonMode.webSearchEnabled : true;
+	const setWebSearchEnabled = anonMode.isAnonymous ? anonMode.setWebSearchEnabled : () => {};
 
 	const handleTextChange = useCallback(
 		(e: React.ChangeEvent<HTMLTextAreaElement>) => {
@@ -189,14 +191,11 @@ export const FreeComposer: FC = () => {
 							<Button
 								type="button"
 								variant="ghost"
+								size="sm"
 								onClick={handleUploadClick}
-								className={cn(
-									"h-auto gap-1.5 rounded-md px-2 py-1 text-xs transition-colors",
-									"text-muted-foreground hover:text-accent-foreground hover:bg-accent",
-									hasUploadedDoc && "text-primary"
-								)}
+								className={cn(hasUploadedDoc && "text-primary")}
 							>
-								<Paperclip className="size-3.5" />
+								<Paperclip data-icon="inline-start" />
 								{hasUploadedDoc ? "1/1" : "Upload"}
 							</Button>
 						</TooltipTrigger>
@@ -207,13 +206,13 @@ export const FreeComposer: FC = () => {
 						</TooltipContent>
 					</Tooltip>
 
-					<div className="h-4 w-px bg-border/60" />
+					<Separator orientation="vertical" className="h-4" />
 
 					<Tooltip>
 						<TooltipTrigger asChild>
 							<label
 								htmlFor="free-web-search-toggle"
-								className="flex items-center gap-1.5 cursor-pointer select-none rounded-md px-2 py-1 text-xs text-muted-foreground hover:text-accent-foreground hover:bg-accent transition-colors"
+								className="flex cursor-pointer select-none items-center gap-1.5 rounded-md px-2 py-1 text-xs text-muted-foreground transition-colors hover:bg-accent hover:text-accent-foreground"
 							>
 								<Globe className="size-3.5" />
 								<span className="hidden sm:inline">Web</span>
@@ -221,7 +220,6 @@ export const FreeComposer: FC = () => {
 									id="free-web-search-toggle"
 									checked={webSearchEnabled}
 									onCheckedChange={setWebSearchEnabled}
-									className="scale-75"
 								/>
 							</label>
 						</TooltipTrigger>
diff --git a/surfsense_web/components/free-chat/free-model-selector.tsx b/surfsense_web/components/free-chat/free-model-selector.tsx
index b7ae60bd3..9bf4ecee5 100644
--- a/surfsense_web/components/free-chat/free-model-selector.tsx
+++ b/surfsense_web/components/free-chat/free-model-selector.tsx
@@ -1,10 +1,18 @@
 "use client";
 
-import { Bot, Check, ChevronDown, Search } from "lucide-react";
+import { Bot, Check, ChevronDown } from "lucide-react";
 import { useRouter } from "next/navigation";
-import { useCallback, useEffect, useMemo, useRef, useState } from "react";
+import { useCallback, useEffect, useMemo, useState } from "react";
 import { Badge } from "@/components/ui/badge";
 import { Button } from "@/components/ui/button";
+import {
+	Command,
+	CommandEmpty,
+	CommandGroup,
+	CommandInput,
+	CommandItem,
+	CommandList,
+} from "@/components/ui/command";
 import { Popover, PopoverContent, PopoverTrigger } from "@/components/ui/popover";
 import { useAnonymousMode } from "@/contexts/anonymous-mode";
 import type { AnonModel } from "@/contracts/types/anonymous-chat.types";
@@ -19,21 +27,18 @@ export function FreeModelSelector({ className }: { className?: string }) {
 
 	const [open, setOpen] = useState(false);
 	const [models, setModels] = useState<AnonModel[]>([]);
-	const [searchQuery, setSearchQuery] = useState("");
-	const [focusedIndex, setFocusedIndex] = useState(-1);
-	const searchInputRef = useRef<HTMLInputElement>(null);
 
 	useEffect(() => {
-		anonymousChatApiService.getModels().then(setModels).catch(console.error);
-	}, []);
-
-	const handleOpenChange = useCallback((next: boolean) => {
-		if (next) {
-			setSearchQuery("");
-			setFocusedIndex(-1);
-			requestAnimationFrame(() => searchInputRef.current?.focus());
-		}
-		setOpen(next);
+		const controller = new AbortController();
+		anonymousChatApiService
+			.getModels()
+			.then((data) => {
+				if (!controller.signal.aborted) setModels(data);
+			})
+			.catch((err) => {
+				if (!controller.signal.aborted) console.error(err);
+			});
+		return () => controller.abort();
 	}, []);
 
 	const currentModel = useMemo(
@@ -41,22 +46,12 @@ export function FreeModelSelector({ className }: { className?: string }) {
 		[models, currentSlug]
 	);
 
+	// Free models first, premium last; immutable sort to avoid mutating state.
 	const sortedModels = useMemo(
-		() => [...models].sort((a, b) => Number(a.is_premium) - Number(b.is_premium)),
+		() => models.toSorted((a, b) => Number(a.is_premium) - Number(b.is_premium)),
 		[models]
 	);
 
-	const filteredModels = useMemo(() => {
-		if (!searchQuery.trim()) return sortedModels;
-		const q = searchQuery.toLowerCase();
-		return sortedModels.filter(
-			(m) =>
-				m.name.toLowerCase().includes(q) ||
-				m.model_name.toLowerCase().includes(q) ||
-				m.provider.toLowerCase().includes(q)
-		);
-	}, [sortedModels, searchQuery]);
-
 	const handleSelect = useCallback(
 		(model: AnonModel) => {
 			setOpen(false);
@@ -70,42 +65,15 @@ export function FreeModelSelector({ className }: { className?: string }) {
 		[currentSlug, anonMode, router]
 	);
 
-	const handleKeyDown = useCallback(
-		(e: React.KeyboardEvent<HTMLInputElement>) => {
-			const count = filteredModels.length;
-			if (count === 0) return;
-			switch (e.key) {
-				case "ArrowDown":
-					e.preventDefault();
-					setFocusedIndex((p) => (p < count - 1 ? p + 1 : 0));
-					break;
-				case "ArrowUp":
-					e.preventDefault();
-					setFocusedIndex((p) => (p > 0 ? p - 1 : count - 1));
-					break;
-				case "Enter":
-					e.preventDefault();
-					if (focusedIndex >= 0 && focusedIndex < count) {
-						handleSelect(filteredModels[focusedIndex]);
-					}
-					break;
-			}
-		},
-		[filteredModels, focusedIndex, handleSelect]
-	);
-
 	return (
-		<Popover open={open} onOpenChange={handleOpenChange}>
+		<Popover open={open} onOpenChange={setOpen}>
 			<PopoverTrigger asChild>
 				<Button
 					variant="ghost"
 					size="sm"
 					role="combobox"
 					aria-expanded={open}
-					className={cn(
-						"h-8 gap-2 px-3 text-sm bg-muted hover:bg-muted/80 border-0 select-none",
-						className
-					)}
+					className={cn("gap-2 bg-muted hover:bg-muted/80", className)}
 				>
 					{currentModel ? (
 						<>
@@ -118,90 +86,47 @@ export function FreeModelSelector({ className }: { className?: string }) {
 							<span className="text-muted-foreground">Select Model</span>
 						</>
 					)}
-					<ChevronDown className="h-3.5 w-3.5 text-muted-foreground ml-1 shrink-0" />
+					<ChevronDown className="ml-1 size-3.5 shrink-0 text-muted-foreground" />
 				</Button>
 			</PopoverTrigger>
-			<PopoverContent
-				className="w-[320px] p-0 rounded-lg shadow-lg overflow-hidden select-none"
-				align="start"
-				sideOffset={8}
-				onCloseAutoFocus={(e) => e.preventDefault()}
-			>
-				<div className="relative">
-					<Search className="absolute left-3 top-1/2 -translate-y-1/2 size-3.5 text-muted-foreground pointer-events-none" />
-					<input
-						ref={searchInputRef}
-						placeholder="Search models"
-						value={searchQuery}
-						onChange={(e) => setSearchQuery(e.target.value)}
-						onKeyDown={handleKeyDown}
-						className="w-full pl-8 pr-3 py-2.5 text-sm bg-transparent focus:outline-none placeholder:text-muted-foreground"
-					/>
-				</div>
-				<div className="overflow-y-auto max-h-[320px] py-1 space-y-0.5">
-					{filteredModels.length === 0 ? (
-						<div className="flex flex-col items-center justify-center gap-2 py-8 px-4">
-							<Search className="size-6 text-muted-foreground" />
-							<p className="text-sm text-muted-foreground">No models found</p>
-						</div>
-					) : (
-						filteredModels.map((model, index) => {
-							const isSelected = model.seo_slug === currentSlug;
-							const isFocused = focusedIndex === index;
-							return (
-								<div
-									key={model.id}
-									role="option"
-									tabIndex={0}
-									aria-selected={isSelected}
-									onClick={() => handleSelect(model)}
-									onKeyDown={(e) => {
-										if (e.key === "Enter" || e.key === " ") {
-											e.preventDefault();
-											handleSelect(model);
-										}
-									}}
-									onMouseEnter={() => setFocusedIndex(index)}
-									className={cn(
-										"group flex items-center gap-2.5 px-3 py-2 rounded-xl cursor-pointer",
-										"transition-colors duration-150 mx-2",
-										"hover:bg-accent hover:text-accent-foreground",
-										isFocused && "bg-accent text-accent-foreground",
-										isSelected && "bg-accent text-accent-foreground"
-									)}
-								>
-									<div className="shrink-0">
-										{getProviderIcon(model.provider, { className: "size-5" })}
-									</div>
-									<div className="flex-1 min-w-0">
-										<div className="flex items-center gap-1.5">
-											<span className="font-medium text-sm truncate">{model.name}</span>
-											{model.is_premium ? (
-												<Badge
-													variant="secondary"
-													className="text-[9px] px-1 py-0 h-3.5 bg-purple-100 text-purple-700 dark:bg-purple-900/50 dark:text-purple-300 border-0"
-												>
-													Premium
-												</Badge>
-											) : (
-												<Badge
-													variant="secondary"
-													className="text-[9px] px-1 py-0 h-3.5 bg-emerald-100 text-emerald-700 dark:bg-emerald-900/50 dark:text-emerald-300 border-0"
-												>
-													Free
-												</Badge>
-											)}
+			<PopoverContent className="w-[320px] p-0" align="start" sideOffset={8}>
+				<Command
+					filter={(value, search) => (value.toLowerCase().includes(search.toLowerCase()) ? 1 : 0)}
+				>
+					<CommandInput placeholder="Search models" />
+					<CommandList>
+						<CommandEmpty>No models found.</CommandEmpty>
+						<CommandGroup>
+							{sortedModels.map((model) => {
+								const isSelected = model.seo_slug === currentSlug;
+								return (
+									<CommandItem
+										key={model.id}
+										value={`${model.name} ${model.model_name} ${model.provider}`}
+										onSelect={() => handleSelect(model)}
+										className="gap-2.5"
+									>
+										<div className="shrink-0">
+											{getProviderIcon(model.provider, { className: "size-5" })}
 										</div>
-										<span className="text-xs text-muted-foreground truncate block">
-											{model.model_name}
-										</span>
-									</div>
-									{isSelected && <Check className="size-4 text-primary shrink-0" />}
-								</div>
-							);
-						})
-					)}
-				</div>
+										<div className="flex min-w-0 flex-1 flex-col">
+											<div className="flex items-center gap-1.5">
+												<span className="truncate text-sm font-medium">{model.name}</span>
+												<Badge variant={model.is_premium ? "default" : "secondary"}>
+													{model.is_premium ? "Premium" : "Free"}
+												</Badge>
+											</div>
+											<span className="block truncate text-xs text-muted-foreground">
+												{model.model_name}
+											</span>
+										</div>
+										{isSelected && <Check className="size-4 shrink-0 text-primary" />}
+									</CommandItem>
+								);
+							})}
+						</CommandGroup>
+					</CommandList>
+				</Command>
 			</PopoverContent>
 		</Popover>
 	);
diff --git a/surfsense_web/components/free-chat/free-right-panel.tsx b/surfsense_web/components/free-chat/free-right-panel.tsx
index f2b07815f..f37af6142 100644
--- a/surfsense_web/components/free-chat/free-right-panel.tsx
+++ b/surfsense_web/components/free-chat/free-right-panel.tsx
@@ -4,6 +4,14 @@ import { Lock } from "lucide-react";
 import Link from "next/link";
 import type { FC } from "react";
 import { Button } from "@/components/ui/button";
+import {
+	Empty,
+	EmptyContent,
+	EmptyDescription,
+	EmptyHeader,
+	EmptyMedia,
+	EmptyTitle,
+} from "@/components/ui/empty";
 
 interface GatedTabProps {
 	title: string;
@@ -11,16 +19,20 @@ interface GatedTabProps {
 }
 
 const GatedTab: FC<GatedTabProps> = ({ title, description }) => (
-	<div className="flex flex-col items-center justify-center gap-3 p-8 text-center">
-		<div className="rounded-full bg-muted p-3">
-			<Lock className="size-5 text-muted-foreground" />
-		</div>
-		<h3 className="text-sm font-medium">{title}</h3>
-		<p className="text-xs text-muted-foreground max-w-[200px]">{description}</p>
-		<Button size="sm" asChild>
-			<Link href="/register">Create Free Account</Link>
-		</Button>
-	</div>
+	<Empty>
+		<EmptyHeader>
+			<EmptyMedia variant="icon">
+				<Lock />
+			</EmptyMedia>
+			<EmptyTitle>{title}</EmptyTitle>
+			<EmptyDescription>{description}</EmptyDescription>
+		</EmptyHeader>
+		<EmptyContent>
+			<Button size="sm" asChild>
+				<Link href="/register">Create Free Account</Link>
+			</Button>
+		</EmptyContent>
+	</Empty>
 );
 
 export const ReportsGatedPlaceholder: FC = () => (
diff --git a/surfsense_web/components/free-chat/quota-bar.tsx b/surfsense_web/components/free-chat/quota-bar.tsx
index 0693ef539..6b2368218 100644
--- a/surfsense_web/components/free-chat/quota-bar.tsx
+++ b/surfsense_web/components/free-chat/quota-bar.tsx
@@ -2,6 +2,7 @@
 
 import { OctagonAlert, Orbit } from "lucide-react";
 import Link from "next/link";
+import { Button } from "@/components/ui/button";
 import { Progress } from "@/components/ui/progress";
 import { cn } from "@/lib/utils";
 
@@ -19,38 +20,30 @@ export function QuotaBar({ used, limit, warningThreshold, className }: QuotaBarP
 	const isExceeded = used >= limit;
 
 	return (
-		<div className={cn("space-y-1.5", className)}>
-			<div className="flex justify-between items-center text-xs">
+		<div className={cn("flex flex-col gap-1.5", className)}>
+			<div className="flex items-center justify-between text-xs">
 				<span className="text-muted-foreground">
 					{used.toLocaleString()} / {limit.toLocaleString()} tokens
 				</span>
 				{isExceeded ? (
-					<span className="font-medium text-red-500">Limit reached</span>
+					<span className="font-medium text-destructive">Limit reached</span>
 				) : isWarning ? (
-					<span className="font-medium text-amber-500 flex items-center gap-1">
-						<OctagonAlert className="h-3 w-3" />
+					<span className="flex items-center gap-1 font-medium text-highlight">
+						<OctagonAlert className="size-3" />
 						{remaining.toLocaleString()} remaining
 					</span>
 				) : (
 					<span className="font-medium">{percentage.toFixed(0)}%</span>
 				)}
 			</div>
-			<Progress
-				value={percentage}
-				className={cn(
-					"h-1.5",
-					isExceeded && "[&>div]:bg-red-500",
-					isWarning && !isExceeded && "[&>div]:bg-amber-500"
-				)}
-			/>
+			<Progress value={percentage} className="h-1.5" />
 			{isExceeded && (
-				<Link
-					href="/register"
-					className="flex items-center justify-center gap-1.5 rounded-md bg-linear-to-r from-purple-600 to-blue-600 px-3 py-1.5 text-xs font-medium text-white transition-opacity hover:opacity-90"
-				>
-					<Orbit className="h-3 w-3" />
-					Create free account for 5M more tokens
-				</Link>
+				<Button asChild size="sm" className="mt-0.5 w-full">
+					<Link href="/register">
+						<Orbit data-icon="inline-start" />
+						Create free account for 5M more tokens
+					</Link>
+				</Button>
 			)}
 		</div>
 	);
diff --git a/surfsense_web/components/free-chat/quota-warning-banner.tsx b/surfsense_web/components/free-chat/quota-warning-banner.tsx
index 828e8006e..e6aa89d42 100644
--- a/surfsense_web/components/free-chat/quota-warning-banner.tsx
+++ b/surfsense_web/components/free-chat/quota-warning-banner.tsx
@@ -3,6 +3,7 @@
 import { OctagonAlert, Orbit, X } from "lucide-react";
 import Link from "next/link";
 import { useState } from "react";
+import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
 import { Button } from "@/components/ui/button";
 import { cn } from "@/lib/utils";
 
@@ -27,61 +28,46 @@ export function QuotaWarningBanner({
 
 	if (isExceeded) {
 		return (
-			<div
-				className={cn(
-					"rounded-lg border border-red-200 bg-red-50 dark:border-red-800 dark:bg-red-950/50 p-4",
-					className
-				)}
-			>
-				<div className="flex items-start gap-3">
-					<OctagonAlert className="h-5 w-5 text-red-500 shrink-0 mt-0.5" />
-					<div className="flex-1 space-y-2">
-						<p className="text-sm font-medium text-red-800 dark:text-red-200">
-							Free token limit reached
-						</p>
-						<p className="text-xs text-red-600 dark:text-red-300">
-							You&apos;ve used all {limit.toLocaleString()} free tokens. Create a free account to
-							get $5 of premium credit and access to all models.
-						</p>
-						<Link
-							href="/register"
-							className="inline-flex items-center gap-1.5 rounded-md bg-linear-to-r from-purple-600 to-blue-600 px-4 py-2 text-sm font-medium text-white transition-opacity hover:opacity-90"
-						>
-							<Orbit className="h-4 w-4" />
+			<Alert variant="destructive" className={className}>
+				<OctagonAlert />
+				<AlertTitle>Free token limit reached</AlertTitle>
+				<AlertDescription>
+					<p>
+						You&apos;ve used all {limit.toLocaleString()} free tokens. Create a free account to get
+						$5 of premium credit and access to all models.
+					</p>
+					<Button asChild size="sm" className="mt-1">
+						<Link href="/register">
+							<Orbit data-icon="inline-start" />
 							Create Free Account
 						</Link>
-					</div>
-				</div>
-			</div>
+					</Button>
+				</AlertDescription>
+			</Alert>
 		);
 	}
 
 	return (
-		<div
-			className={cn(
-				"rounded-lg border border-amber-200 bg-amber-50 dark:border-amber-800 dark:bg-amber-950/50 p-3",
-				className
-			)}
-		>
-			<div className="flex items-center gap-3">
-				<OctagonAlert className="h-4 w-4 text-amber-500 shrink-0" />
-				<p className="flex-1 text-xs text-amber-700 dark:text-amber-300">
-					You&apos;ve used {used.toLocaleString()} of {limit.toLocaleString()} free tokens.{" "}
-					<Link href="/register" className="font-medium underline hover:no-underline">
-						Create an account
-					</Link>{" "}
-					for $5 of premium credit.
-				</p>
-				<Button
-					type="button"
-					variant="ghost"
-					size="icon"
-					onClick={() => setDismissed(true)}
-					className="size-6 text-amber-400 hover:bg-transparent hover:text-amber-600 dark:hover:text-amber-200"
-				>
-					<X className="h-4 w-4" />
-				</Button>
-			</div>
-		</div>
+		<Alert variant="warning" className={cn("pr-10", className)}>
+			<OctagonAlert />
+			<AlertTitle>Running low on free tokens</AlertTitle>
+			<AlertDescription>
+				You&apos;ve used {used.toLocaleString()} of {limit.toLocaleString()} free tokens.{" "}
+				<Link href="/register" className="font-medium underline hover:no-underline">
+					Create an account
+				</Link>{" "}
+				for $5 of premium credit.
+			</AlertDescription>
+			<Button
+				type="button"
+				variant="ghost"
+				size="icon"
+				onClick={() => setDismissed(true)}
+				aria-label="Dismiss"
+				className="absolute top-2 right-2 size-6"
+			>
+				<X />
+			</Button>
+		</Alert>
 	);
 }
diff --git a/surfsense_web/components/homepage/features-bento-grid.tsx b/surfsense_web/components/homepage/features-bento-grid.tsx
index 7406223de..49884bf28 100644
--- a/surfsense_web/components/homepage/features-bento-grid.tsx
+++ b/surfsense_web/components/homepage/features-bento-grid.tsx
@@ -1,5 +1,6 @@
 import {
 	IconBinaryTree,
+	IconBolt,
 	IconMessage,
 	IconMicrophone,
 	IconSearch,
@@ -709,6 +710,236 @@ const AiSortIllustration = () => (
 	</div>
 );
 
+const AutomationIllustration = () => (
+	<div className="relative flex w-full h-full min-h-[6rem] items-center justify-center overflow-hidden rounded-xl bg-gradient-to-br from-indigo-50 via-violet-50 to-fuchsia-50 dark:from-indigo-950/20 dark:via-violet-950/20 dark:to-fuchsia-950/20 p-4">
+		<svg viewBox="0 0 800 200" className="w-full h-full" xmlns="http://www.w3.org/2000/svg">
+			<title>
+				AI automation flow illustration showing a trigger starting an AI agent that acts across
+				connectors
+			</title>
+
+			{/* Animated flow connectors */}
+			<g
+				className="stroke-violet-500 dark:stroke-violet-400"
+				strokeWidth="2.5"
+				fill="none"
+				opacity="0.7"
+			>
+				<path d="M 215 100 L 320 100" strokeDasharray="6,6">
+					<animate
+						attributeName="stroke-dashoffset"
+						from="12"
+						to="0"
+						dur="1s"
+						repeatCount="indefinite"
+					/>
+				</path>
+				<path d="M 480 100 L 585 100" strokeDasharray="6,6">
+					<animate
+						attributeName="stroke-dashoffset"
+						from="12"
+						to="0"
+						dur="1s"
+						repeatCount="indefinite"
+					/>
+				</path>
+			</g>
+			<g className="fill-violet-500 dark:fill-violet-400" opacity="0.7">
+				<polygon points="320,100 312,95 312,105" />
+				<polygon points="585,100 577,95 577,105" />
+			</g>
+
+			{/* Trigger node */}
+			<g>
+				<rect
+					x="40"
+					y="60"
+					width="175"
+					height="80"
+					rx="14"
+					className="fill-white dark:fill-neutral-800 stroke-indigo-300 dark:stroke-indigo-700"
+					strokeWidth="2"
+				/>
+				<text
+					x="127"
+					y="50"
+					fontSize="13"
+					fontWeight="600"
+					className="fill-indigo-600 dark:fill-indigo-300"
+					textAnchor="middle"
+				>
+					Trigger
+				</text>
+				{/* Schedule chip */}
+				<g transform="translate(58, 80)">
+					<rect
+						width="64"
+						height="22"
+						rx="11"
+						className="fill-indigo-100 dark:fill-indigo-900/50"
+					/>
+					<circle
+						cx="14"
+						cy="11"
+						r="6"
+						className="fill-none stroke-indigo-500 dark:stroke-indigo-400"
+						strokeWidth="2"
+					/>
+					<line
+						x1="14"
+						y1="11"
+						x2="14"
+						y2="7"
+						className="stroke-indigo-500 dark:stroke-indigo-400"
+						strokeWidth="2"
+						strokeLinecap="round"
+					/>
+					<line
+						x1="14"
+						y1="11"
+						x2="17"
+						y2="13"
+						className="stroke-indigo-500 dark:stroke-indigo-400"
+						strokeWidth="2"
+						strokeLinecap="round"
+					/>
+					<text
+						x="38"
+						y="15"
+						fontSize="9"
+						fontWeight="500"
+						className="fill-indigo-700 dark:fill-indigo-300"
+						textAnchor="middle"
+					>
+						Cron
+					</text>
+				</g>
+				{/* Event chip */}
+				<g transform="translate(58, 108)">
+					<rect
+						width="64"
+						height="22"
+						rx="11"
+						className="fill-fuchsia-100 dark:fill-fuchsia-900/40"
+					/>
+					<path
+						d="M 13 5 L 9 13 L 14 13 L 11 19 L 18 10 L 13 10 Z"
+						className="fill-fuchsia-500 dark:fill-fuchsia-400"
+					/>
+					<text
+						x="40"
+						y="15"
+						fontSize="9"
+						fontWeight="500"
+						className="fill-fuchsia-700 dark:fill-fuchsia-300"
+						textAnchor="middle"
+					>
+						Event
+					</text>
+				</g>
+			</g>
+
+			{/* AI Agent core */}
+			<g>
+				<rect
+					x="320"
+					y="50"
+					width="160"
+					height="100"
+					rx="16"
+					className="fill-white dark:fill-neutral-800 stroke-violet-400 dark:stroke-violet-500"
+					strokeWidth="2.5"
+				/>
+				<text
+					x="400"
+					y="40"
+					fontSize="13"
+					fontWeight="600"
+					className="fill-violet-600 dark:fill-violet-300"
+					textAnchor="middle"
+				>
+					AI Agent
+				</text>
+				{/* Sparkle */}
+				<g transform="translate(400, 92)">
+					<path
+						d="M 0,-22 L 5,-7 L 20,-5 L 7,5 L 10,20 L 0,12 L -10,20 L -7,5 L -20,-5 L -5,-7 Z"
+						className="fill-violet-500 dark:fill-violet-400"
+						opacity="0.9"
+					>
+						<animateTransform
+							attributeName="transform"
+							type="rotate"
+							from="0"
+							to="360"
+							dur="12s"
+							repeatCount="indefinite"
+						/>
+					</path>
+					<circle cx="0" cy="0" r="4" className="fill-white dark:fill-violet-200">
+						<animate attributeName="opacity" values="0.5;1;0.5" dur="2s" repeatCount="indefinite" />
+					</circle>
+				</g>
+			</g>
+
+			{/* Actions across connectors */}
+			<g>
+				<rect
+					x="585"
+					y="60"
+					width="175"
+					height="80"
+					rx="14"
+					className="fill-white dark:fill-neutral-800 stroke-fuchsia-300 dark:stroke-fuchsia-700"
+					strokeWidth="2"
+				/>
+				<text
+					x="672"
+					y="50"
+					fontSize="13"
+					fontWeight="600"
+					className="fill-fuchsia-600 dark:fill-fuchsia-300"
+					textAnchor="middle"
+				>
+					Act on Connectors
+				</text>
+				<g>
+					<circle cx="618" cy="100" r="13" className="fill-indigo-100 dark:fill-indigo-900/50" />
+					<circle cx="650" cy="100" r="13" className="fill-violet-100 dark:fill-violet-900/50" />
+					<circle cx="682" cy="100" r="13" className="fill-fuchsia-100 dark:fill-fuchsia-900/50" />
+					<circle cx="714" cy="100" r="13" className="fill-pink-100 dark:fill-pink-900/40" />
+					<text
+						x="730"
+						y="104"
+						fontSize="11"
+						fontWeight="600"
+						className="fill-fuchsia-600 dark:fill-fuchsia-300"
+						textAnchor="middle"
+					>
+						25+
+					</text>
+				</g>
+			</g>
+
+			{/* Sparkle accents */}
+			<g className="opacity-60">
+				<circle cx="270" cy="70" r="2" className="fill-violet-400">
+					<animate attributeName="opacity" values="0;1;0" dur="2s" repeatCount="indefinite" />
+				</circle>
+				<circle cx="530" cy="130" r="2" className="fill-fuchsia-400">
+					<animate
+						attributeName="opacity"
+						values="0;1;0"
+						dur="2.5s"
+						begin="0.6s"
+						repeatCount="indefinite"
+					/>
+				</circle>
+			</g>
+		</svg>
+	</div>
+);
+
 const items = [
 	{
 		title: "Find, Ask, Act",
@@ -749,4 +980,12 @@ const items = [
 		className: "md:col-span-1",
 		icon: <IconMessage className="h-4 w-4 text-neutral-500" />,
 	},
+	{
+		title: "Automate Your Workflows",
+		description:
+			"Describe an AI agent in plain English and SurfSense builds it. Run it on a schedule or trigger it when a document lands, acting across all your connectors hands-free.",
+		header: <AutomationIllustration />,
+		className: "md:col-span-3",
+		icon: <IconBolt className="h-4 w-4 text-neutral-500" />,
+	},
 ];
diff --git a/surfsense_web/components/homepage/hero-section.tsx b/surfsense_web/components/homepage/hero-section.tsx
index c0abd927f..0641d4e4e 100644
--- a/surfsense_web/components/homepage/hero-section.tsx
+++ b/surfsense_web/components/homepage/hero-section.tsx
@@ -1,6 +1,14 @@
 "use client";
-import { ChevronDown, Download, Monitor } from "lucide-react";
-import { AnimatePresence, motion } from "motion/react";
+import {
+	ChevronDown,
+	Clock,
+	CornerDownLeft,
+	Download,
+	Lightbulb,
+	Monitor,
+	Sparkles,
+} from "lucide-react";
+import { AnimatePresence, motion, useReducedMotion } from "motion/react";
 import Link from "next/link";
 import React, { memo, useCallback, useEffect, useRef, useState } from "react";
 import Balancer from "react-wrap-balancer";
@@ -11,7 +19,18 @@ import {
 	DropdownMenuItem,
 	DropdownMenuTrigger,
 } from "@/components/ui/dropdown-menu";
+import {
+	Empty,
+	EmptyDescription,
+	EmptyHeader,
+	EmptyMedia,
+	EmptyTitle,
+} from "@/components/ui/empty";
 import { ExpandedMediaOverlay, useExpandedMedia } from "@/components/ui/expanded-gif-overlay";
+import { ScrollArea, ScrollBar } from "@/components/ui/scroll-area";
+import { Separator } from "@/components/ui/separator";
+import { Skeleton } from "@/components/ui/skeleton";
+import { Tabs, TabsContent, TabsList, TabsTrigger } from "@/components/ui/tabs";
 import { Tooltip, TooltipContent, TooltipTrigger } from "@/components/ui/tooltip";
 import {
 	GITHUB_RELEASES_URL,
@@ -50,96 +69,215 @@ const GoogleLogo = ({ className }: { className?: string }) => (
 	</svg>
 );
 
-const TAB_ITEMS = [
+type HeroUseCase = {
+	id: string;
+	title: string;
+	description: string;
+	src: string | null;
+	comingSoon?: boolean;
+	examples?: string[];
+};
+
+type HeroCategory = {
+	id: string;
+	label: string;
+	desktopOnly?: boolean;
+	useCases: HeroUseCase[];
+};
+
+const HERO_TUTORIAL = "/homepage/hero_tutorial";
+const HERO_REALTIME = "/homepage/hero_realtime";
+
+const CATEGORIES: HeroCategory[] = [
 	{
-		title: "General Assist",
-		description: "Launch SurfSense instantly from any application.",
-		src: "/homepage/hero_tutorial/general_assist.mp4",
-		featured: true,
+		id: "desktop",
+		label: "Desktop App",
+		desktopOnly: true,
+		useCases: [
+			{
+				id: "general",
+				title: "General Assist",
+				description: "Launch SurfSense instantly from any application with a global shortcut.",
+				src: `${HERO_TUTORIAL}/general_assist.mp4`,
+			},
+			{
+				id: "quick",
+				title: "Quick Assist",
+				description: "Select text anywhere, then ask AI to explain, rewrite, or act on it.",
+				src: `${HERO_TUTORIAL}/quick_assist.mp4`,
+			},
+			{
+				id: "screenshot",
+				title: "Screenshot Assist",
+				description: "Capture any region of your screen and ask AI about what’s in it.",
+				src: `${HERO_TUTORIAL}/screenshot_assist.mp4`,
+			},
+			{
+				id: "watch-folder",
+				title: "Watch Local Folder",
+				description: "Auto-sync a local folder to your knowledge base. Great for Obsidian vaults.",
+				src: `${HERO_TUTORIAL}/folder_watch.mp4`,
+			},
+		],
 	},
 	{
-		title: "Quick Assist",
-		description: "Select text anywhere, then ask AI to explain, rewrite, or act on it.",
-		src: "/homepage/hero_tutorial/quick_assist.mp4",
-		featured: true,
+		id: "deliverables",
+		label: "Deliverable Studio",
+		useCases: [
+			{
+				id: "report",
+				title: "AI Report Generator",
+				description:
+					"Generate cited research reports from your documents, then export to PDF or Markdown.",
+				src: `${HERO_TUTORIAL}/ReportGenGif_compressed.mp4`,
+			},
+			{
+				id: "podcast",
+				title: "AI Podcast Generator",
+				description: "Turn any document or folder into a two-host AI podcast in under 20 seconds.",
+				src: `${HERO_TUTORIAL}/PodcastGenGif.mp4`,
+			},
+			{
+				id: "presentation",
+				title: "AI Presentation & Video Maker",
+				description: "Create editable slide decks and narrated video overviews from your sources.",
+				src: `${HERO_TUTORIAL}/video_gen_surf.mp4`,
+			},
+			{
+				id: "image",
+				title: "AI Image Generator",
+				description: "Generate high-quality images straight from your chats and documents.",
+				src: `${HERO_TUTORIAL}/ImageGenGif.mp4`,
+			},
+			{
+				id: "resume",
+				title: "AI Resume Builder",
+				description: "Tailor your existing resume to any job description and beat the ATS.",
+				src: null,
+				comingSoon: true,
+				examples: [
+					"Tailor my resume to this job description so it gets past ATS and lands an interview.",
+					"Optimize my resume for ATS by matching the keywords in this job posting.",
+					"Rewrite my resume bullet points to highlight the skills this role is asking for.",
+					"Compare my resume against this job description and list the gaps to fix.",
+					"Write a matching cover letter from my resume and this job description.",
+				],
+			},
+		],
 	},
 	{
-		title: "Screenshot Assist",
-		description:
-			"Use a global shortcut to select a region on your screen and attach it to your chat message.",
-		src: "/homepage/hero_tutorial/screenshot_assist.mp4",
-		featured: true,
+		id: "automations",
+		label: "Automations",
+		useCases: [
+			{
+				id: "schedule",
+				title: "Scheduled AI Workflows",
+				description: "Run an agent on a schedule: daily briefs, weekly digests, recurring reports.",
+				src: null,
+				comingSoon: true,
+				examples: [
+					"Email me a daily brief of new documents in my knowledge base every morning.",
+					"Generate a weekly status report from my Slack and Gmail every Friday.",
+					"Run a monthly competitor analysis report and save it to my workspace.",
+					"Summarize my GitHub and Linear activity into a daily standup update.",
+					"Create a recurring weekly research report on the topics I track.",
+				],
+			},
+			{
+				id: "event",
+				title: "Event-Triggered Automations",
+				description:
+					"Fire an agent the moment a document lands in a folder, then post the result to your tools.",
+				src: null,
+				comingSoon: true,
+				examples: [
+					"When a PDF lands in my Research folder, generate a cited AI summary.",
+					"When new meeting notes are added, turn them into meeting minutes with action items.",
+					"When an invoice is uploaded, extract the vendor, total, and due date into a table.",
+					"When a contract enters my Legal folder, flag key terms and renewal dates.",
+					"When a resume is added to Candidates, screen it against the job description.",
+				],
+			},
+			{
+				id: "chat-built",
+				title: "Chat-Built Automations",
+				description: "Describe an automation in plain English and SurfSense builds it for you.",
+				src: null,
+				comingSoon: true,
+				examples: [
+					"Build an AI agent that emails me a summary of new Notion pages each morning.",
+					"Create a no-code automation that posts a weekly research digest to Slack.",
+					"Set up an AI note taker that turns new meeting notes into minutes.",
+					"Make a workflow that extracts action items from meeting notes and assigns owners.",
+					"Automate a daily email brief from my Gmail and Google Drive.",
+				],
+			},
+		],
 	},
 	{
-		title: "Watch Local Folder",
-		description:
-			"Watch a local folder and automatically sync file changes to your knowledge base. Works great with Obsidian vaults.",
-		src: "/homepage/hero_tutorial/folder_watch.mp4",
-		featured: true,
-	},
-	// {
-	// 	title: "Connect & Sync",
-	// 	description:
-	// 		"Connect data sources like Notion, Drive and Gmail. Automatically sync to keep them updated.",
-	// 	src: "/homepage/hero_tutorial/ConnectorFlowGif.mp4",
-	// 	featured: true,
-	// },
-	// {
-	// 	title: "Upload Documents",
-	// 	description: "Upload documents directly, from images to massive PDFs.",
-	// 	src: "/homepage/hero_tutorial/DocUploadGif.mp4",
-	// 	featured: true,
-	// },
-	{
-		title: "Video & Presentations",
-		description:
-			"Create short videos and editable presentations with AI-generated visuals and narration from your sources.",
-		src: "/homepage/hero_tutorial/video_gen_surf.mp4",
-		featured: false,
+		id: "search-chat",
+		label: "Search & Chat",
+		useCases: [
+			{
+				id: "chat-docs",
+				title: "Chat With Your PDFs & Docs",
+				description: "Ask questions across all your files and get answers with inline citations.",
+				src: `${HERO_TUTORIAL}/BQnaGif_compressed.mp4`,
+			},
+			{
+				id: "search",
+				title: "AI Search With Citations",
+				description: "Hybrid semantic and keyword search across your entire knowledge base.",
+				src: `${HERO_TUTORIAL}/BSNCGif.mp4`,
+			},
+			{
+				id: "collab",
+				title: "Collaborative AI Chat",
+				description: "Work on AI conversations with your team in real time.",
+				src: `${HERO_REALTIME}/RealTimeChatGif.mp4`,
+			},
+			{
+				id: "comments",
+				title: "Comments & Mentions",
+				description: "Comment and tag teammates on any AI message.",
+				src: `${HERO_REALTIME}/RealTimeCommentsFlow.mp4`,
+			},
+		],
 	},
 	{
-		title: "Search & Citation",
-		description: "Ask questions and get cited responses from your knowledge base.",
-		src: "/homepage/hero_tutorial/BSNCGif.mp4",
-		featured: false,
+		id: "connectors",
+		label: "Connectors & Integrations",
+		useCases: [
+			{
+				id: "connect",
+				title: "Connect & Sync Your Tools",
+				description:
+					"Sync Notion, Slack, Google Drive, Gmail, GitHub, Linear and 25+ sources into one searchable corpus.",
+				src: `${HERO_TUTORIAL}/ConnectorFlowGif.mp4`,
+			},
+			{
+				id: "upload",
+				title: "Chat With Uploaded Files",
+				description: "Drop in PDFs, Office docs, images and audio. Instantly searchable.",
+				src: `${HERO_TUTORIAL}/DocUploadGif.mp4`,
+			},
+			{
+				id: "write-back",
+				title: "Connector Write-Back",
+				description: "Let the agent post results back to Notion, Slack, Linear and Drive.",
+				src: null,
+				comingSoon: true,
+				examples: [
+					"Post this research summary to my Notion workspace.",
+					"Send these meeting action items to our team Slack channel.",
+					"Create a Jira ticket from this bug report.",
+					"Open a Linear issue from this feature request.",
+					"Save this generated report to Google Drive as a doc.",
+				],
+			},
+		],
 	},
-	{
-		title: "Document Q&A",
-		description: "Mention specific documents in chat for targeted answers.",
-		src: "/homepage/hero_tutorial/BQnaGif_compressed.mp4",
-		featured: false,
-	},
-	{
-		title: "Reports",
-		description: "Generate reports from your sources in many formats.",
-		src: "/homepage/hero_tutorial/ReportGenGif_compressed.mp4",
-		featured: false,
-	},
-	{
-		title: "Podcasts",
-		description: "Turn anything into a podcast in under 20 seconds.",
-		src: "/homepage/hero_tutorial/PodcastGenGif.mp4",
-		featured: false,
-	},
-	{
-		title: "Image Generation",
-		description: "Generate high-quality images easily from your conversations.",
-		src: "/homepage/hero_tutorial/ImageGenGif.mp4",
-		featured: false,
-	},
-	{
-		title: "Collaborative Chat",
-		description: "Collaborate on AI-powered conversations in realtime with your team.",
-		src: "/homepage/hero_realtime/RealTimeChatGif.mp4",
-		featured: false,
-	},
-	{
-		title: "Comments",
-		description: "Add comments and tag teammates on any message.",
-		src: "/homepage/hero_realtime/RealTimeCommentsFlow.mp4",
-		featured: false,
-	},
-] as const;
+];
 
 export function HeroSection() {
 	return (
@@ -279,117 +417,15 @@ function DownloadButton() {
 	);
 }
 
-const BrowserWindow = () => {
-	const [selectedIndex, setSelectedIndex] = useState(0);
-	const selectedItem = TAB_ITEMS[selectedIndex];
-	const { expanded, open, close } = useExpandedMedia();
-
-	return (
-		<>
-			<motion.div className="relative my-4 flex w-full flex-col items-start justify-start overflow-hidden rounded-2xl shadow-2xl md:my-12">
-				<div className="flex w-full items-center justify-start overflow-hidden bg-gray-200 py-4 pl-4 dark:bg-neutral-800">
-					<div className="mr-6 flex items-center gap-2">
-						<div className="size-3 rounded-full bg-red-500" />
-						<div className="size-3 rounded-full bg-yellow-500" />
-						<div className="size-3 rounded-full bg-green-500" />
-					</div>
-					<div className="no-visible-scrollbar flex min-w-0 shrink flex-row items-center justify-start gap-2 overflow-x-auto mask-l-from-98% py-0.5 pr-2 pl-2 md:pl-4">
-						{TAB_ITEMS.map((item, index) => (
-							<React.Fragment key={item.title}>
-								<Button
-									type="button"
-									variant="ghost"
-									onClick={() => setSelectedIndex(index)}
-									className={cn(
-										"h-auto shrink-0 gap-1.5 rounded-md px-2 py-1 text-xs transition duration-150 hover:bg-white sm:text-sm dark:hover:bg-neutral-950",
-										selectedIndex === index &&
-											!item.featured &&
-											"bg-white shadow ring-1 shadow-black/10 ring-black/10 dark:bg-neutral-900",
-										selectedIndex === index &&
-											item.featured &&
-											"bg-amber-50 shadow ring-1 shadow-amber-200/50 ring-amber-400/60 dark:bg-amber-950/40 dark:shadow-amber-900/30 dark:ring-amber-500/50",
-										item.featured &&
-											selectedIndex !== index &&
-											"hover:bg-amber-50 dark:hover:bg-amber-950/30"
-									)}
-								>
-									{item.title}
-									{item.featured && (
-										<Tooltip>
-											<TooltipTrigger asChild>
-												<span className="inline-flex shrink-0 items-center justify-center rounded border border-amber-300 bg-amber-100 p-0.5 text-amber-700 dark:border-amber-700 dark:bg-amber-900/50 dark:text-amber-400">
-													<Monitor className="size-3" />
-												</span>
-											</TooltipTrigger>
-											<TooltipContent side="bottom">Desktop app only</TooltipContent>
-										</Tooltip>
-									)}
-								</Button>
-								{index !== TAB_ITEMS.length - 1 && (
-									<div className="h-4 w-px shrink-0 rounded-full bg-neutral-300 dark:bg-neutral-700" />
-								)}
-							</React.Fragment>
-						))}
-					</div>
-				</div>
-				<div className="w-full overflow-hidden bg-gray-100/50 px-4 pt-4 perspective-distant dark:bg-neutral-950">
-					<AnimatePresence mode="wait">
-						<motion.div
-							initial={{
-								opacity: 0,
-								scale: 0.99,
-								filter: "blur(10px)",
-							}}
-							animate={{
-								opacity: 1,
-								scale: 1,
-								filter: "blur(0px)",
-							}}
-							exit={{
-								opacity: 0,
-								scale: 0.98,
-								filter: "blur(10px)",
-							}}
-							transition={{
-								duration: 0.3,
-								ease: "easeOut",
-							}}
-							key={selectedItem.title}
-							className="relative overflow-hidden rounded-tl-xl rounded-tr-xl bg-white shadow-sm ring-1 shadow-black/10 ring-black/10 will-change-transform dark:bg-neutral-950"
-						>
-							<div className="flex items-center gap-3 border-b border-neutral-200/60 px-4 py-3 sm:px-6 sm:py-4 dark:border-neutral-700/60">
-								<div className="min-w-0">
-									<h3 className="truncate text-base font-semibold text-neutral-900 sm:text-lg dark:text-white">
-										{selectedItem.title}
-									</h3>
-									<p className="text-sm text-neutral-500 dark:text-neutral-400">
-										{selectedItem.description}
-									</p>
-								</div>
-							</div>
-							<Button
-								type="button"
-								variant="ghost"
-								className="h-auto w-full cursor-pointer rounded-none bg-neutral-50 p-2 hover:bg-neutral-50 sm:p-3 dark:bg-neutral-950 dark:hover:bg-neutral-950"
-								onClick={open}
-							>
-								<TabVideo key={selectedItem.src} src={selectedItem.src} />
-							</Button>
-						</motion.div>
-					</AnimatePresence>
-				</div>
-			</motion.div>
-
-			<AnimatePresence>
-				{expanded && (
-					<ExpandedMediaOverlay src={selectedItem.src} alt={selectedItem.title} onClose={close} />
-				)}
-			</AnimatePresence>
-		</>
-	);
-};
-
-const TabVideo = memo(function TabVideo({ src }: { src: string }) {
+const TabVideo = memo(function TabVideo({
+	src,
+	title,
+	reduceMotion,
+}: {
+	src: string;
+	title: string;
+	reduceMotion: boolean;
+}) {
 	const videoRef = useRef<HTMLVideoElement>(null);
 	const [hasLoaded, setHasLoaded] = useState(false);
 
@@ -398,8 +434,11 @@ const TabVideo = memo(function TabVideo({ src }: { src: string }) {
 		const video = videoRef.current;
 		if (!video) return;
 		video.currentTime = 0;
-		video.play().catch(() => {});
-	}, []);
+		// Respect reduced-motion: show the first frame and expose controls instead of autoplaying.
+		if (!reduceMotion) {
+			video.play().catch(() => {});
+		}
+	}, [reduceMotion]);
 
 	const handleCanPlay = useCallback(() => {
 		setHasLoaded(true);
@@ -411,7 +450,10 @@ const TabVideo = memo(function TabVideo({ src }: { src: string }) {
 				ref={videoRef}
 				key={src}
 				src={src}
-				preload="auto"
+				preload={reduceMotion ? "metadata" : "auto"}
+				aria-label={`${title} demo`}
+				autoPlay={!reduceMotion}
+				controls={reduceMotion}
 				loop
 				muted
 				playsInline
@@ -419,8 +461,233 @@ const TabVideo = memo(function TabVideo({ src }: { src: string }) {
 				className="aspect-video w-full rounded-lg sm:rounded-xl"
 			/>
 			{!hasLoaded && (
-				<div className="absolute inset-0 aspect-video w-full animate-pulse rounded-lg bg-neutral-100 sm:rounded-xl dark:bg-neutral-800" />
+				<Skeleton className="absolute inset-0 aspect-video w-full rounded-lg bg-neutral-100 motion-reduce:animate-none sm:rounded-xl dark:bg-neutral-800" />
 			)}
 		</div>
 	);
 });
+
+const UseCasePlaceholder = ({ title }: { title: string }) => (
+	<Empty className="size-full justify-center rounded-lg border border-dashed bg-muted/30 sm:rounded-xl">
+		<EmptyHeader>
+			<EmptyMedia variant="icon">
+				<Clock aria-hidden="true" />
+			</EmptyMedia>
+			<EmptyTitle>Demo coming soon</EmptyTitle>
+			<EmptyDescription className="text-pretty">{`A walkthrough of ${title} is on the way.`}</EmptyDescription>
+		</EmptyHeader>
+	</Empty>
+);
+
+const UseCaseExamples = ({ examples }: { examples: string[] }) => (
+	<div className="flex size-full flex-col gap-3 rounded-lg border border-dashed bg-muted/30 p-4 sm:rounded-xl sm:p-5">
+		<div className="flex items-center gap-2">
+			<Lightbulb aria-hidden="true" className="size-4 shrink-0 text-muted-foreground" />
+			<p className="text-sm font-medium text-foreground">Try prompts like these today</p>
+		</div>
+		<ul className="flex min-w-0 flex-col gap-2">
+			{examples.map((example) => (
+				<li key={example}>
+					<div className="flex items-start gap-2.5 rounded-md border bg-background px-3 py-2">
+						<CornerDownLeft
+							aria-hidden="true"
+							className="mt-0.5 size-3.5 shrink-0 text-muted-foreground/70"
+						/>
+						<span className="min-w-0 text-sm text-pretty text-muted-foreground">{example}</span>
+					</div>
+				</li>
+			))}
+		</ul>
+	</div>
+);
+
+const DesktopBadge = () => (
+	<Tooltip>
+		<TooltipTrigger asChild>
+			<span className="ml-0.5 inline-flex items-center text-amber-600 dark:text-amber-400">
+				<Monitor aria-hidden="true" className="size-3.5" />
+				<span className="sr-only">Desktop app only</span>
+			</span>
+		</TooltipTrigger>
+		<TooltipContent side="bottom">Desktop app only</TooltipContent>
+	</Tooltip>
+);
+
+const UseCasePane = memo(function UseCasePane({
+	useCase,
+	reduceMotion,
+}: {
+	useCase: HeroUseCase;
+	reduceMotion: boolean;
+}) {
+	const { expanded, open, close } = useExpandedMedia();
+	const hasVideo = !useCase.comingSoon && Boolean(useCase.src);
+
+	const media = hasVideo ? (
+		<Button
+			type="button"
+			variant="ghost"
+			onClick={open}
+			aria-label={`Expand ${useCase.title} demo`}
+			className="h-auto w-full cursor-pointer rounded-none bg-neutral-50 p-2 hover:bg-neutral-50 sm:p-3 dark:bg-neutral-950 dark:hover:bg-neutral-950"
+		>
+			<TabVideo src={useCase.src as string} title={useCase.title} reduceMotion={reduceMotion} />
+		</Button>
+	) : (
+		<div className="bg-neutral-50 p-2 sm:p-3 dark:bg-neutral-950">
+			{useCase.examples && useCase.examples.length > 0 ? (
+				<UseCaseExamples examples={useCase.examples} />
+			) : (
+				<div className="aspect-video w-full">
+					<UseCasePlaceholder title={useCase.title} />
+				</div>
+			)}
+		</div>
+	);
+
+	const card = (
+		<div className="relative overflow-hidden rounded-tl-xl rounded-tr-xl bg-white shadow-sm ring-1 shadow-black/10 ring-black/10 dark:bg-neutral-950">
+			<div className="flex items-center gap-3 border-b border-neutral-200/60 px-4 py-3 sm:px-6 sm:py-4 dark:border-neutral-700/60">
+				<div className="min-w-0">
+					<h3 className="truncate text-base font-semibold text-neutral-900 sm:text-lg dark:text-white">
+						{useCase.title}
+					</h3>
+					<p className="text-sm text-neutral-500 text-pretty dark:text-neutral-400">
+						{useCase.description}
+					</p>
+				</div>
+			</div>
+			{media}
+		</div>
+	);
+
+	return (
+		<>
+			{reduceMotion ? (
+				card
+			) : (
+				<motion.div
+					initial={{ opacity: 0, scale: 0.99, filter: "blur(10px)" }}
+					animate={{ opacity: 1, scale: 1, filter: "blur(0px)" }}
+					transition={{ duration: 0.3, ease: "easeOut" }}
+					className="will-change-transform"
+				>
+					{card}
+				</motion.div>
+			)}
+
+			<AnimatePresence>
+				{expanded && hasVideo && (
+					<ExpandedMediaOverlay
+						src={useCase.src as string}
+						alt={`${useCase.title} demo`}
+						onClose={close}
+					/>
+				)}
+			</AnimatePresence>
+		</>
+	);
+});
+
+const CategoryPanel = memo(function CategoryPanel({
+	category,
+	reduceMotion,
+}: {
+	category: HeroCategory;
+	reduceMotion: boolean;
+}) {
+	return (
+		<div className="flex w-full flex-col gap-3">
+			{category.desktopOnly && (
+				<div className="flex items-start gap-2 rounded-lg border border-amber-300/60 bg-amber-50 px-3 py-2 text-xs text-amber-800 sm:text-sm dark:border-amber-500/40 dark:bg-amber-950/30 dark:text-amber-200">
+					<Sparkles aria-hidden="true" className="mt-0.5 size-4 shrink-0" />
+					<span className="text-pretty">
+						The desktop app includes everything in SurfSense, plus these native-only superpowers.
+					</span>
+				</div>
+			)}
+			<Tabs
+				defaultValue={category.useCases[0]?.id}
+				orientation="vertical"
+				className="flex w-full flex-col gap-3 md:flex-row md:gap-4"
+			>
+				<ScrollArea className="w-full md:w-56 md:shrink-0">
+					<TabsList className="flex h-auto w-max gap-1 bg-transparent p-0 md:w-full md:flex-col md:items-stretch">
+						{category.useCases.map((useCase) => (
+							<TabsTrigger
+								key={useCase.id}
+								value={useCase.id}
+								className="h-auto shrink-0 touch-manipulation justify-start rounded-md px-3 py-2 text-left text-xs whitespace-normal data-[state=active]:bg-background data-[state=active]:shadow-sm sm:text-sm md:w-full"
+							>
+								{useCase.title}
+							</TabsTrigger>
+						))}
+					</TabsList>
+					<ScrollBar orientation="horizontal" className="md:hidden" />
+				</ScrollArea>
+				<div className="min-w-0 flex-1">
+					{category.useCases.map((useCase) => (
+						<TabsContent key={useCase.id} value={useCase.id} className="mt-0">
+							<UseCasePane useCase={useCase} reduceMotion={reduceMotion} />
+						</TabsContent>
+					))}
+				</div>
+			</Tabs>
+		</div>
+	);
+});
+
+const BrowserWindow = () => {
+	const [activeCategory, setActiveCategory] = useState(CATEGORIES[0].id);
+	const reduceMotion = useReducedMotion() ?? false;
+
+	return (
+		<Tabs
+			value={activeCategory}
+			onValueChange={setActiveCategory}
+			className="relative my-4 flex w-full flex-col items-start justify-start gap-0 overflow-hidden rounded-2xl shadow-2xl md:my-12"
+		>
+			<div className="flex w-full items-center justify-start overflow-hidden bg-gray-200 py-4 pl-4 dark:bg-neutral-800">
+				<div className="mr-6 flex items-center gap-2">
+					<div className="size-3 rounded-full bg-red-500" />
+					<div className="size-3 rounded-full bg-yellow-500" />
+					<div className="size-3 rounded-full bg-green-500" />
+				</div>
+				<ScrollArea className="min-w-0 flex-1">
+					<TabsList className="flex h-auto w-max items-center gap-1 bg-transparent p-0 pr-4">
+						{CATEGORIES.map((category, index) => (
+							<React.Fragment key={category.id}>
+								<TabsTrigger
+									value={category.id}
+									className={cn(
+										"h-auto shrink-0 touch-manipulation gap-1.5 rounded-md px-2.5 py-1 text-xs sm:text-sm",
+										category.desktopOnly
+											? "bg-amber-100/70 text-amber-800 hover:bg-amber-100 data-[state=active]:bg-amber-200/80 data-[state=active]:text-amber-900 data-[state=active]:shadow-sm dark:bg-amber-950/40 dark:text-amber-200 dark:hover:bg-amber-900/40 dark:data-[state=active]:bg-amber-900/60 dark:data-[state=active]:text-amber-50"
+											: "data-[state=active]:bg-background data-[state=active]:shadow"
+									)}
+								>
+									{category.label}
+									{category.desktopOnly && <DesktopBadge />}
+								</TabsTrigger>
+								{index !== CATEGORIES.length - 1 && (
+									<Separator
+										orientation="vertical"
+										className="h-4 bg-neutral-300 dark:bg-neutral-700"
+									/>
+								)}
+							</React.Fragment>
+						))}
+					</TabsList>
+					<ScrollBar orientation="horizontal" />
+				</ScrollArea>
+			</div>
+			<div className="w-full overflow-hidden bg-gray-100/50 px-4 pt-4 dark:bg-neutral-950">
+				{CATEGORIES.map((category) => (
+					<TabsContent key={category.id} value={category.id} className="mt-0">
+						<CategoryPanel category={category} reduceMotion={reduceMotion} />
+					</TabsContent>
+				))}
+			</div>
+		</Tabs>
+	);
+};
diff --git a/surfsense_web/components/homepage/why-surfsense.tsx b/surfsense_web/components/homepage/why-surfsense.tsx
index 8eeaf9874..38f19559b 100644
--- a/surfsense_web/components/homepage/why-surfsense.tsx
+++ b/surfsense_web/components/homepage/why-surfsense.tsx
@@ -348,6 +348,11 @@ const comparisonRows: {
 		notebookLm: false,
 		surfSense: true,
 	},
+	{
+		feature: "AI Automations & Agents",
+		notebookLm: false,
+		surfSense: "Scheduled & event-triggered",
+	},
 	{
 		feature: "AI File Sorting",
 		notebookLm: false,
diff --git a/surfsense_web/components/json-metadata-viewer.tsx b/surfsense_web/components/json-metadata-viewer.tsx
index cc87a75c5..8ebbbc84e 100644
--- a/surfsense_web/components/json-metadata-viewer.tsx
+++ b/surfsense_web/components/json-metadata-viewer.tsx
@@ -1,6 +1,6 @@
 import { FileJson } from "lucide-react";
 import React from "react";
-import { defaultStyles, JsonView } from "react-json-view-lite";
+import { JsonView } from "@/components/json-view";
 import { Button } from "@/components/ui/button";
 import {
 	Dialog,
@@ -10,7 +10,6 @@ import {
 	DialogTrigger,
 } from "@/components/ui/dialog";
 import { Spinner } from "@/components/ui/spinner";
-import "react-json-view-lite/dist/index.css";
 
 interface JsonMetadataViewerProps {
 	title: string;
@@ -56,13 +55,13 @@ export function JsonMetadataViewer({
 							{title} - Metadata
 						</DialogTitle>
 					</DialogHeader>
-					<div className="mt-2 sm:mt-4 p-2 sm:p-4 bg-muted/30 rounded-md text-xs sm:text-sm">
+					<div className="mt-2 sm:mt-4 p-2 sm:p-4 bg-muted/30 rounded-md text-xs sm:text-sm overflow-auto">
 						{loading ? (
 							<div className="flex items-center justify-center py-12">
 								<Spinner size="lg" className="text-muted-foreground" />
 							</div>
 						) : (
-							<JsonView data={jsonData} style={defaultStyles} />
+							<JsonView src={jsonData} collapsed={2} />
 						)}
 					</div>
 				</DialogContent>
@@ -87,8 +86,8 @@ export function JsonMetadataViewer({
 						{title} - Metadata
 					</DialogTitle>
 				</DialogHeader>
-				<div className="mt-2 sm:mt-4 p-2 sm:p-4 bg-muted/30 rounded-md text-xs sm:text-sm">
-					<JsonView data={jsonData} style={defaultStyles} />
+				<div className="mt-2 sm:mt-4 p-2 sm:p-4 bg-muted/30 rounded-md text-xs sm:text-sm overflow-auto">
+					<JsonView src={jsonData} collapsed={2} />
 				</div>
 			</DialogContent>
 		</Dialog>
diff --git a/surfsense_web/components/json-view.tsx b/surfsense_web/components/json-view.tsx
new file mode 100644
index 000000000..28ade824f
--- /dev/null
+++ b/surfsense_web/components/json-view.tsx
@@ -0,0 +1,110 @@
+"use client";
+
+import ReactJson, { type InteractionProps } from "@microlink/react-json-view";
+import { useTheme } from "next-themes";
+import { useCallback, useMemo } from "react";
+
+/**
+ * Shared JSON viewer/editor wrapper around @microlink/react-json-view.
+ *
+ * One component, dual mode: passing ``editable`` + ``onChange`` enables
+ * inline value editing, key renaming, add and delete. Omitting them
+ * yields a read-only viewer. The underlying library is uncontrolled — it
+ * mutates its own internal copy of ``src`` and surfaces the final tree on
+ * each interaction via ``updated_src``, which we forward to ``onChange``.
+ *
+ * Theme follows ``next-themes``: a dark base-16 palette in dark mode, the
+ * library's neutral default in light mode. Defaults are tuned for our
+ * compact UI surfaces (no data-type labels, no key quotes, triangle icons,
+ * tight indent).
+ */
+export interface JsonViewProps {
+	/** The JSON value to display. Primitives are wrapped under ``{ value }``
+	 *  because the underlying library requires an object root. */
+	src: unknown;
+	/** Enables value/key editing + add + delete. Requires ``onChange`` to
+	 *  observe the result; without it the toggle is silently a no-op. */
+	editable?: boolean;
+	/** Called with the full updated tree on every accepted interaction. */
+	onChange?: (next: unknown) => void;
+	/** Collapse depth. ``true`` collapses everything past the root; a number
+	 *  collapses from that depth onward. */
+	collapsed?: boolean | number;
+	/** Root label. Default ``false`` (no label — saves vertical space). */
+	name?: string | false;
+	className?: string;
+}
+
+/** Recursively coerce string values that are valid JSON numbers back to numbers.
+ *  react-json-view's text input always yields strings; this restores the
+ *  correct type so filters like ``{ "folder_id": 56 }`` survive editing. */
+function coerceNumbers(value: unknown): unknown {
+	if (typeof value === "string") {
+		const n = Number(value);
+		return !Number.isNaN(n) && value.trim() !== "" ? n : value;
+	}
+	if (Array.isArray(value)) return value.map(coerceNumbers);
+	if (value && typeof value === "object") {
+		return Object.fromEntries(
+			Object.entries(value as Record<string, unknown>).map(([k, v]) => [k, coerceNumbers(v)])
+		);
+	}
+	return value;
+}
+
+const DARK_THEME = "monokai" as const;
+const LIGHT_THEME = "rjv-default" as const;
+
+const SHARED_DEFAULTS = {
+	iconStyle: "triangle" as const,
+	indentWidth: 2,
+	enableClipboard: true,
+	displayDataTypes: false,
+	displayObjectSize: true,
+	quotesOnKeys: false,
+	collapseStringsAfterLength: 80,
+};
+
+export function JsonView({
+	src,
+	editable = false,
+	onChange,
+	collapsed = 2,
+	name = false,
+	className,
+}: JsonViewProps) {
+	const { resolvedTheme } = useTheme();
+	const theme = resolvedTheme === "dark" ? DARK_THEME : LIGHT_THEME;
+
+	// The library throws on non-object roots. Wrap primitives and null/undefined.
+	const safeSrc = useMemo(() => {
+		if (src && typeof src === "object") return src as object;
+		return { value: src };
+	}, [src]);
+
+	const handleChange = useCallback(
+		(interaction: InteractionProps) => {
+			onChange?.(coerceNumbers(interaction.updated_src));
+			return true;
+		},
+		[onChange]
+	);
+
+	const interactive = editable && onChange ? handleChange : (false as const);
+
+	return (
+		<div className={className}>
+			<ReactJson
+				src={safeSrc}
+				name={name}
+				theme={theme}
+				collapsed={collapsed}
+				onEdit={interactive}
+				onAdd={interactive}
+				onDelete={interactive}
+				style={{ backgroundColor: "transparent", fontSize: 12, fontFamily: "var(--font-mono)" }}
+				{...SHARED_DEFAULTS}
+			/>
+		</div>
+	);
+}
diff --git a/surfsense_web/components/layout/providers/LayoutDataProvider.tsx b/surfsense_web/components/layout/providers/LayoutDataProvider.tsx
index 917d1c6e1..34fd15e3b 100644
--- a/surfsense_web/components/layout/providers/LayoutDataProvider.tsx
+++ b/surfsense_web/components/layout/providers/LayoutDataProvider.tsx
@@ -2,7 +2,7 @@
 
 import { useQuery, useQueryClient } from "@tanstack/react-query";
 import { useAtom, useAtomValue, useSetAtom } from "jotai";
-import { AlertTriangle, Inbox, LibraryBig } from "lucide-react";
+import { AlertTriangle, Inbox, LibraryBig, Workflow } from "lucide-react";
 import { useParams, usePathname, useRouter } from "next/navigation";
 import { useTranslations } from "next-intl";
 import { useTheme } from "next-themes";
@@ -18,6 +18,7 @@ import { searchSpacesAtom } from "@/atoms/search-spaces/search-space-query.atoms
 import { removeChatTabAtom, syncChatTabAtom, type Tab } from "@/atoms/tabs/tabs.atom";
 import { currentUserAtom } from "@/atoms/user/user-query.atoms";
 import { ActionLogDialog } from "@/components/agent-action-log/action-log-dialog";
+import { AnnouncementSpotlight } from "@/components/announcements/AnnouncementSpotlight";
 import { AnnouncementsDialog } from "@/components/announcements/AnnouncementsDialog";
 import {
 	AlertDialog,
@@ -127,7 +128,6 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 
 	// Documents sidebar state (shared atom so Composer can toggle it)
 	const [isDocumentsSidebarOpen, setIsDocumentsSidebarOpen] = useAtom(documentsSidebarOpenAtom);
-	const [isDocumentsDocked, setIsDocumentsDocked] = useState(true);
 	const setIsRightPanelCollapsed = useSetAtom(rightPanelCollapsedAtom);
 
 	// Open documents sidebar by default on desktop (docked mode)
@@ -335,9 +335,10 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 	}, [threadsData, searchSpaceId]);
 
 	// Navigation items
-	// Inbox is rendered explicitly below "New chat" in the sidebar (it is also
-	// surfaced in the icon rail's collapsed mode via this list). Announcements
-	// has been moved to the avatar dropdown and is no longer a nav item.
+	// Inbox, Automations, and Documents are rendered explicitly below "New chat"
+	// in the sidebar (also surfaced in the icon rail's collapsed mode via this
+	// list). Announcements has been moved to the avatar dropdown.
+	const isAutomationsActive = pathname?.includes("/automations") === true;
 	const navItems: NavItem[] = useMemo(
 		() =>
 			(
@@ -349,6 +350,12 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 						isActive: isInboxSidebarOpen,
 						badge: totalUnreadCount > 0 ? formatInboxCount(totalUnreadCount) : undefined,
 					},
+					{
+						title: "Automations",
+						url: `/dashboard/${searchSpaceId}/automations`,
+						icon: Workflow,
+						isActive: isAutomationsActive,
+					},
 					isMobile
 						? {
 								title: "Documents",
@@ -359,7 +366,14 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 						: null,
 				] as (NavItem | null)[]
 			).filter((item): item is NavItem => item !== null),
-		[isMobile, isInboxSidebarOpen, isDocumentsSidebarOpen, totalUnreadCount]
+		[
+			isMobile,
+			isInboxSidebarOpen,
+			isDocumentsSidebarOpen,
+			totalUnreadCount,
+			searchSpaceId,
+			isAutomationsActive,
+		]
 	);
 
 	// Handlers
@@ -660,12 +674,14 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 	const isUserSettingsPage = pathname?.includes("/user-settings") === true;
 	const isSearchSpaceSettingsPage = pathname?.includes("/search-space-settings") === true;
 	const isTeamPage = pathname?.endsWith("/team") === true;
+	const isAutomationsPage = pathname?.includes("/automations") === true;
 	const useWorkspacePanel =
 		pathname?.endsWith("/buy-more") === true ||
 		pathname?.endsWith("/more-pages") === true ||
 		isUserSettingsPage ||
 		isSearchSpaceSettingsPage ||
-		isTeamPage;
+		isTeamPage ||
+		isAutomationsPage;
 
 	return (
 		<>
@@ -705,12 +721,16 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 				isChatPage={isChatPage}
 				useWorkspacePanel={useWorkspacePanel}
 				workspacePanelViewportClassName={
-					isUserSettingsPage || isSearchSpaceSettingsPage || isTeamPage
+					isUserSettingsPage || isSearchSpaceSettingsPage || isTeamPage || isAutomationsPage
 						? "items-start justify-center px-6 py-8 md:px-10 md:py-10"
 						: undefined
 				}
 				workspacePanelContentClassName={
-					isUserSettingsPage || isSearchSpaceSettingsPage || isTeamPage ? "max-w-5xl" : undefined
+					isAutomationsPage
+						? "max-w-none"
+						: isUserSettingsPage || isSearchSpaceSettingsPage || isTeamPage
+							? "max-w-5xl"
+							: undefined
 				}
 				isLoadingChats={isLoadingThreads}
 				activeSlideoutPanel={activeSlideoutPanel}
@@ -748,8 +768,6 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 				documentsPanel={{
 					open: isDocumentsSidebarOpen,
 					onOpenChange: setIsDocumentsSidebarOpen,
-					isDocked: isDocumentsDocked,
-					onDockedChange: setIsDocumentsDocked,
 				}}
 				onTabSwitch={handleTabSwitch}
 			>
@@ -892,6 +910,7 @@ export function LayoutDataProvider({ searchSpaceId, children }: LayoutDataProvid
 			/>
 
 			<AnnouncementsDialog />
+			<AnnouncementSpotlight />
 
 			{/* Agent action log + revert dialog */}
 			<ActionLogDialog />
diff --git a/surfsense_web/components/layout/ui/icon-rail/SearchSpaceAvatar.tsx b/surfsense_web/components/layout/ui/icon-rail/SearchSpaceAvatar.tsx
index 944536c8f..b90a3b2a9 100644
--- a/surfsense_web/components/layout/ui/icon-rail/SearchSpaceAvatar.tsx
+++ b/surfsense_web/components/layout/ui/icon-rail/SearchSpaceAvatar.tsx
@@ -2,14 +2,9 @@
 
 import { Settings, Trash2, Users } from "lucide-react";
 import { useTranslations } from "next-intl";
+import type { MouseEvent } from "react";
 import { useCallback, useRef, useState } from "react";
 import { Button } from "@/components/ui/button";
-import {
-	ContextMenu,
-	ContextMenuContent,
-	ContextMenuItem,
-	ContextMenuTrigger,
-} from "@/components/ui/context-menu";
 import {
 	DropdownMenu,
 	DropdownMenuContent,
@@ -80,19 +75,28 @@ export function SearchSpaceAvatar({
 	const initials = getInitials(name);
 	const sizeClasses = size === "sm" ? "h-8 w-8 text-xs" : "h-10 w-10 text-sm";
 
-	// Long-press state for mobile
-	const [longPressMenuOpen, setLongPressMenuOpen] = useState(false);
+	const [menuOpen, setMenuOpen] = useState(false);
 	const longPressTimer = useRef<ReturnType<typeof setTimeout> | null>(null);
 	const touchMoved = useRef(false);
 
+	const openMenu = useCallback(() => {
+		setMenuOpen(true);
+	}, []);
+
+	const handleContextMenu = useCallback((event: MouseEvent<HTMLButtonElement>) => {
+		event.preventDefault();
+		event.stopPropagation();
+		setMenuOpen(true);
+	}, []);
+
 	const handleTouchStart = useCallback(() => {
 		touchMoved.current = false;
 		longPressTimer.current = setTimeout(() => {
 			if (!touchMoved.current) {
-				setLongPressMenuOpen(true);
+				openMenu();
 			}
 		}, 500);
-	}, []);
+	}, [openMenu]);
 
 	const handleTouchMove = useCallback(() => {
 		touchMoved.current = true;
@@ -120,12 +124,26 @@ export function SearchSpaceAvatar({
 		</div>
 	);
 
-	const avatarButton = (
+	const avatarButton = (withMenuHandlers = false) => (
 		<Button
 			type="button"
 			variant="ghost"
 			size="icon"
 			onClick={onClick}
+			onPointerDown={
+				withMenuHandlers
+					? (event) => {
+							if (event.button === 0) {
+								event.preventDefault();
+							}
+						}
+					: undefined
+			}
+			onContextMenu={withMenuHandlers ? handleContextMenu : undefined}
+			onTouchStart={withMenuHandlers ? handleTouchStart : undefined}
+			onTouchMove={withMenuHandlers ? handleTouchMove : undefined}
+			onTouchEnd={withMenuHandlers ? handleTouchEnd : undefined}
+			onTouchCancel={withMenuHandlers ? handleTouchEnd : undefined}
 			className={cn(
 				"relative rounded-lg font-semibold text-white transition-all select-none",
 				"hover:text-white hover:opacity-90 focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring",
@@ -173,73 +191,37 @@ export function SearchSpaceAvatar({
 		</>
 	);
 
-	// If delete or settings handlers are provided, wrap with context menu
+	// If delete or settings handlers are provided, expose them through a dropdown menu.
 	if (onDelete || onSettings) {
-		// Mobile: use long-press triggered DropdownMenu
-		if (disableTooltip) {
-			return (
-				<DropdownMenu open={longPressMenuOpen} onOpenChange={setLongPressMenuOpen}>
-					<DropdownMenuTrigger asChild>
-						<div
-							className="inline-block"
-							onTouchStart={handleTouchStart}
-							onTouchMove={handleTouchMove}
-							onTouchEnd={handleTouchEnd}
-							onTouchCancel={handleTouchEnd}
-						>
-							{avatarButton}
-						</div>
-					</DropdownMenuTrigger>
-					<DropdownMenuContent>{menuItems}</DropdownMenuContent>
-				</DropdownMenu>
-			);
-		}
+		const trigger = <DropdownMenuTrigger asChild>{avatarButton(true)}</DropdownMenuTrigger>;
 
-		// Desktop: use right-click ContextMenu + Tooltip
 		return (
-			<ContextMenu>
-				<Tooltip>
-					<TooltipTrigger asChild>
-						<ContextMenuTrigger asChild>
-							<div className="inline-block">{avatarButton}</div>
-						</ContextMenuTrigger>
-					</TooltipTrigger>
-					<TooltipContent side="right" sideOffset={8}>
-						{tooltipContent}
-					</TooltipContent>
-				</Tooltip>
-				<ContextMenuContent>
-					{onSettings && (
-						<ContextMenuItem onClick={onSettings}>
-							<Settings className="mr-2 h-4 w-4" />
-							{tCommon("settings")}
-						</ContextMenuItem>
-					)}
-					{onDelete && isOwner && (
-						<ContextMenuItem onClick={onDelete}>
-							<Trash2 className="mr-2 h-4 w-4" />
-							{tCommon("delete")}
-						</ContextMenuItem>
-					)}
-					{onDelete && !isOwner && (
-						<ContextMenuItem onClick={onDelete}>
-							<Trash2 className="mr-2 h-4 w-4" />
-							{t("leave")}
-						</ContextMenuItem>
-					)}
-				</ContextMenuContent>
-			</ContextMenu>
+			<DropdownMenu open={menuOpen} onOpenChange={setMenuOpen}>
+				{disableTooltip ? (
+					trigger
+				) : (
+					<Tooltip>
+						<TooltipTrigger asChild>{trigger}</TooltipTrigger>
+						<TooltipContent side="right" sideOffset={8}>
+							{tooltipContent}
+						</TooltipContent>
+					</Tooltip>
+				)}
+				<DropdownMenuContent side="right" align="start">
+					{menuItems}
+				</DropdownMenuContent>
+			</DropdownMenu>
 		);
 	}
 
 	// No context menu needed
 	if (disableTooltip) {
-		return avatarButton;
+		return avatarButton();
 	}
 
 	return (
 		<Tooltip>
-			<TooltipTrigger asChild>{avatarButton}</TooltipTrigger>
+			<TooltipTrigger asChild>{avatarButton()}</TooltipTrigger>
 			<TooltipContent side="right" sideOffset={8}>
 				{tooltipContent}
 			</TooltipContent>
diff --git a/surfsense_web/components/layout/ui/shell/LayoutShell.tsx b/surfsense_web/components/layout/ui/shell/LayoutShell.tsx
index 2f799929b..91d85cc1e 100644
--- a/surfsense_web/components/layout/ui/shell/LayoutShell.tsx
+++ b/surfsense_web/components/layout/ui/shell/LayoutShell.tsx
@@ -157,8 +157,6 @@ interface LayoutShellProps {
 	documentsPanel?: {
 		open: boolean;
 		onOpenChange: (open: boolean) => void;
-		isDocked?: boolean;
-		onDockedChange?: (docked: boolean) => void;
 	};
 	onTabSwitch?: (tab: Tab) => void;
 }
diff --git a/surfsense_web/components/layout/ui/sidebar/DocumentsSidebar.tsx b/surfsense_web/components/layout/ui/sidebar/DocumentsSidebar.tsx
index 503ca239c..a90d6b32e 100644
--- a/surfsense_web/components/layout/ui/sidebar/DocumentsSidebar.tsx
+++ b/surfsense_web/components/layout/ui/sidebar/DocumentsSidebar.tsx
@@ -78,22 +78,18 @@ import { foldersApiService } from "@/lib/apis/folders-api.service";
 import { searchSpacesApiService } from "@/lib/apis/search-spaces-api.service";
 import { authenticatedFetch } from "@/lib/auth-utils";
 import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
+import { BACKEND_URL } from "@/lib/env-config";
 import { uploadFolderScan } from "@/lib/folder-sync-upload";
 import { getSupportedExtensionsSet } from "@/lib/supported-extensions";
 import { queries } from "@/zero/queries/index";
 import { SidebarSlideOutPanel } from "./SidebarSlideOutPanel";
-import { BACKEND_URL } from "@/lib/env-config";
 
 const DesktopLocalTabContent = dynamic(
 	() => import("./DesktopLocalTabContent").then((mod) => mod.DesktopLocalTabContent),
 	{ ssr: false }
 );
 
-const NON_DELETABLE_DOCUMENT_TYPES: readonly string[] = [
-	"SURFSENSE_DOCS",
-	"USER_MEMORY",
-	"TEAM_MEMORY",
-];
+const NON_DELETABLE_DOCUMENT_TYPES: readonly string[] = ["USER_MEMORY", "TEAM_MEMORY"];
 const MEMORY_DOCUMENTS: DocumentNodeDoc[] = [
 	{
 		id: -1001,
@@ -1063,6 +1059,7 @@ function AuthenticatedDocumentsSidebarBase({
 		const treeDocMap = new Map(treeDocuments.map((d) => [d.id, d]));
 		return sidebarDocs
 			.filter((doc) => {
+				if (doc.kind !== "doc") return false;
 				const fullDoc = treeDocMap.get(doc.id);
 				if (!fullDoc) return false;
 				const state = fullDoc.status?.state ?? "ready";
@@ -1124,7 +1121,7 @@ function AuthenticatedDocumentsSidebarBase({
 			try {
 				await deleteDocumentMutation({ id });
 				toast.success(t("delete_success") || "Document deleted");
-				setSidebarDocs((prev) => prev.filter((d) => d.id !== id));
+				setSidebarDocs((prev) => prev.filter((d) => d.kind !== "doc" || d.id !== id));
 				return true;
 			} catch (e) {
 				console.error("Error deleting document:", e);
@@ -1953,7 +1950,7 @@ function AnonymousDocumentsSidebar({
 						onEditDocument={() => gate("edit documents")}
 						onDeleteDocument={async () => {
 							handleRemoveDoc();
-							setSidebarDocs((prev) => prev.filter((d) => d.id !== -1));
+							setSidebarDocs((prev) => prev.filter((d) => d.kind !== "doc" || d.id !== -1));
 							return true;
 						}}
 						onMoveDocument={() => gate("organize documents")}
diff --git a/surfsense_web/components/layout/ui/sidebar/Sidebar.tsx b/surfsense_web/components/layout/ui/sidebar/Sidebar.tsx
index e0cb3072a..805f8bfd3 100644
--- a/surfsense_web/components/layout/ui/sidebar/Sidebar.tsx
+++ b/surfsense_web/components/layout/ui/sidebar/Sidebar.tsx
@@ -140,16 +140,26 @@ export function Sidebar({
 	const t = useTranslations("sidebar");
 	const [openDropdownChatId, setOpenDropdownChatId] = useState<number | null>(null);
 
-	// Inbox and Documents are rendered explicitly right below New Chat. Pull
-	// them out of the nav items list so they don't also appear in the bottom
-	// NavSection. Documents is only present in navItems on mobile.
+	// Inbox, Automations, and Documents are rendered explicitly right below
+	// New Chat. Pull them out of the nav items list so they don't also appear
+	// in the bottom NavSection. Documents is only present in navItems on
+	// mobile; Automations is identified by URL suffix so the same code path
+	// works across search spaces.
 	const inboxItem = useMemo(() => navItems.find((item) => item.url === "#inbox"), [navItems]);
+	const automationsItem = useMemo(
+		() => navItems.find((item) => item.url.endsWith("/automations")),
+		[navItems]
+	);
 	const documentsItem = useMemo(
 		() => navItems.find((item) => item.url === "#documents"),
 		[navItems]
 	);
 	const footerNavItems = useMemo(
-		() => navItems.filter((item) => item.url !== "#inbox" && item.url !== "#documents"),
+		() =>
+			navItems.filter(
+				(item) =>
+					item.url !== "#inbox" && item.url !== "#documents" && !item.url.endsWith("/automations")
+			),
 		[navItems]
 	);
 
@@ -227,6 +237,16 @@ export function Sidebar({
 						}
 					/>
 				)}
+				{automationsItem && (
+					<SidebarButton
+						icon={automationsItem.icon}
+						label={automationsItem.title}
+						onClick={() => onNavItemClick?.(automationsItem)}
+						isCollapsed={isCollapsed}
+						isActive={automationsItem.isActive}
+						tooltipContent={isCollapsed ? automationsItem.title : undefined}
+					/>
+				)}
 				{documentsItem && (
 					<SidebarButton
 						icon={documentsItem.icon}
diff --git a/surfsense_web/components/layout/ui/sidebar/SidebarSlideOutPanel.tsx b/surfsense_web/components/layout/ui/sidebar/SidebarSlideOutPanel.tsx
index 3fa4dd5d3..52b2cf998 100644
--- a/surfsense_web/components/layout/ui/sidebar/SidebarSlideOutPanel.tsx
+++ b/surfsense_web/components/layout/ui/sidebar/SidebarSlideOutPanel.tsx
@@ -1,9 +1,10 @@
 "use client";
 
+import { useSetAtom } from "jotai";
 import { AnimatePresence, motion } from "motion/react";
 import { useCallback, useEffect } from "react";
 import { useIsMobile } from "@/hooks/use-mobile";
-import { SLIDEOUT_PANEL_OPENED_EVENT } from "@/lib/layout-events";
+import { slideoutOpenedTickAtom } from "@/lib/layout-events";
 
 interface SidebarSlideOutPanelProps {
 	open: boolean;
@@ -29,12 +30,13 @@ export function SidebarSlideOutPanel({
 	children,
 }: SidebarSlideOutPanelProps) {
 	const isMobile = useIsMobile();
+	const bumpSlideoutOpenedTick = useSetAtom(slideoutOpenedTickAtom);
 
 	useEffect(() => {
 		if (open) {
-			window.dispatchEvent(new Event(SLIDEOUT_PANEL_OPENED_EVENT));
+			bumpSlideoutOpenedTick((tick) => tick + 1);
 		}
-	}, [open]);
+	}, [open, bumpSlideoutOpenedTick]);
 
 	const handleEscape = useCallback(
 		(e: KeyboardEvent) => {
diff --git a/surfsense_web/components/layout/ui/tabs/DocumentTabContent.tsx b/surfsense_web/components/layout/ui/tabs/DocumentTabContent.tsx
index ef51eee3c..34cf707b0 100644
--- a/surfsense_web/components/layout/ui/tabs/DocumentTabContent.tsx
+++ b/surfsense_web/components/layout/ui/tabs/DocumentTabContent.tsx
@@ -11,6 +11,7 @@ import { Button } from "@/components/ui/button";
 import { Spinner } from "@/components/ui/spinner";
 import { authenticatedFetch, getBearerToken, redirectToLogin } from "@/lib/auth-utils";
 import { BACKEND_URL } from "@/lib/env-config";
+
 const LARGE_DOCUMENT_THRESHOLD = 2 * 1024 * 1024; // 2MB
 
 interface DocumentContent {
diff --git a/surfsense_web/components/new-chat/chat-example-prompts.tsx b/surfsense_web/components/new-chat/chat-example-prompts.tsx
new file mode 100644
index 000000000..95d7a0eaa
--- /dev/null
+++ b/surfsense_web/components/new-chat/chat-example-prompts.tsx
@@ -0,0 +1,75 @@
+"use client";
+
+import { CornerDownLeft, Lightbulb } from "lucide-react";
+import { memo, useCallback } from "react";
+import { Button } from "@/components/ui/button";
+import { ScrollArea } from "@/components/ui/scroll-area";
+import { Tabs, TabsContent, TabsList, TabsTrigger } from "@/components/ui/tabs";
+import { CHAT_EXAMPLE_CATEGORIES } from "@/lib/chat/example-prompts";
+
+interface ChatExamplePromptsProps {
+	/** Called with the chosen prompt text; the caller prefills the composer. */
+	onSelect: (prompt: string) => void;
+}
+
+const ExamplePromptButton = memo(function ExamplePromptButton({
+	prompt,
+	onSelect,
+}: {
+	prompt: string;
+	onSelect: (prompt: string) => void;
+}) {
+	const handleClick = useCallback(() => onSelect(prompt), [prompt, onSelect]);
+
+	return (
+		<Button
+			type="button"
+			variant="ghost"
+			onClick={handleClick}
+			className="h-auto w-full items-start justify-start gap-2.5 whitespace-normal rounded-md border bg-background px-3 py-2 text-left font-normal text-muted-foreground hover:bg-accent hover:text-accent-foreground"
+		>
+			<CornerDownLeft
+				aria-hidden="true"
+				className="mt-0.5 size-3.5 shrink-0 text-muted-foreground/70"
+			/>
+			<span className="min-w-0 text-pretty text-sm">{prompt}</span>
+		</Button>
+	);
+});
+
+export function ChatExamplePrompts({ onSelect }: ChatExamplePromptsProps) {
+	return (
+		<div className="mt-3 w-full select-none rounded-xl border border-dashed bg-muted/30 p-3 sm:p-4">
+			<div className="mb-2 flex items-center gap-2 px-1">
+				<Lightbulb aria-hidden="true" className="size-4 shrink-0 text-muted-foreground" />
+				<p className="text-sm font-medium text-foreground">
+					Not sure where to start? Try one of these
+				</p>
+			</div>
+			<Tabs defaultValue={CHAT_EXAMPLE_CATEGORIES[0].id} className="w-full">
+				<div className="overflow-x-auto pb-1">
+					<TabsList className="h-9 w-max">
+						{CHAT_EXAMPLE_CATEGORIES.map((category) => (
+							<TabsTrigger key={category.id} value={category.id} className="text-xs">
+								{category.label}
+							</TabsTrigger>
+						))}
+					</TabsList>
+				</div>
+				{CHAT_EXAMPLE_CATEGORIES.map((category) => (
+					<TabsContent key={category.id} value={category.id} className="mt-3">
+						<ScrollArea className="max-h-48">
+							<ul className="flex flex-col gap-2 pr-2">
+								{category.prompts.map((prompt) => (
+									<li key={prompt}>
+										<ExamplePromptButton prompt={prompt} onSelect={onSelect} />
+									</li>
+								))}
+							</ul>
+						</ScrollArea>
+					</TabsContent>
+				))}
+			</Tabs>
+		</div>
+	);
+}
diff --git a/surfsense_web/components/new-chat/composer-suggestion-popup.tsx b/surfsense_web/components/new-chat/composer-suggestion-popup.tsx
new file mode 100644
index 000000000..7a30f487b
--- /dev/null
+++ b/surfsense_web/components/new-chat/composer-suggestion-popup.tsx
@@ -0,0 +1,193 @@
+"use client";
+
+import * as React from "react";
+import { Button } from "@/components/ui/button";
+import { PopoverContent } from "@/components/ui/popover";
+import { Separator } from "@/components/ui/separator";
+import { Skeleton } from "@/components/ui/skeleton";
+import { cn } from "@/lib/utils";
+
+function ComposerSuggestionPopoverContent({
+	className,
+	align = "start",
+	sideOffset = 6,
+	collisionPadding = 12,
+	onOpenAutoFocus,
+	onCloseAutoFocus,
+	style,
+	...props
+}: React.ComponentProps<typeof PopoverContent>) {
+	return (
+		<PopoverContent
+			align={align}
+			sideOffset={sideOffset}
+			collisionPadding={collisionPadding}
+			onOpenAutoFocus={(event) => {
+				event.preventDefault();
+				onOpenAutoFocus?.(event);
+			}}
+			onCloseAutoFocus={(event) => {
+				event.preventDefault();
+				onCloseAutoFocus?.(event);
+			}}
+			className={cn(
+				"w-[232px] select-none overflow-hidden rounded-md border border-popover-border bg-popover p-0 text-popover-foreground shadow-md sm:w-[264px]",
+				"data-[state=open]:!animate-none data-[state=closed]:!animate-none data-[state=open]:!duration-0 data-[state=closed]:!duration-0",
+				className
+			)}
+			style={{ ...style, animation: "none" }}
+			{...props}
+		/>
+	);
+}
+
+const ComposerSuggestionList = React.forwardRef<
+	HTMLDivElement,
+	React.HTMLAttributes<HTMLDivElement>
+>(({ className, ...props }, ref) => (
+	<div
+		ref={ref}
+		className={cn("max-h-[144px] overflow-y-auto sm:max-h-[200px]", className)}
+		{...props}
+	/>
+));
+ComposerSuggestionList.displayName = "ComposerSuggestionList";
+
+function ComposerSuggestionGroup({ className, ...props }: React.HTMLAttributes<HTMLDivElement>) {
+	return <div className={cn("px-1.5 py-1.5", className)} {...props} />;
+}
+
+function ComposerSuggestionGroupHeading({
+	className,
+	...props
+}: React.HTMLAttributes<HTMLDivElement>) {
+	return (
+		<div
+			className={cn("px-2 py-1 text-xs font-semibold text-muted-foreground", className)}
+			{...props}
+		/>
+	);
+}
+
+function ComposerSuggestionHeader({
+	className,
+	icon,
+	children,
+	...props
+}: React.HTMLAttributes<HTMLDivElement> & { icon?: React.ReactNode }) {
+	return (
+		<div
+			className={cn(
+				"flex items-center gap-1.5 px-2 py-1 text-xs font-semibold text-muted-foreground",
+				className
+			)}
+			{...props}
+		>
+			{icon ? <span className="shrink-0 text-current [&_svg]:size-3.5">{icon}</span> : null}
+			{children}
+		</div>
+	);
+}
+
+const ComposerSuggestionItem = React.forwardRef<
+	HTMLButtonElement,
+	Omit<React.ComponentProps<typeof Button>, "variant"> & {
+		icon?: React.ReactNode;
+		selected?: boolean;
+		muted?: boolean;
+	}
+>(({ className, children, icon, selected, muted, disabled, ...props }, ref) => (
+	<Button
+		ref={ref}
+		type="button"
+		variant="ghost"
+		disabled={disabled}
+		className={cn(
+			"h-auto w-full justify-start gap-1.5 rounded-md px-2 py-1 text-left text-xs font-normal transition-colors",
+			disabled ? "cursor-not-allowed opacity-50" : "cursor-pointer",
+			muted && !selected && "text-muted-foreground hover:bg-accent hover:text-accent-foreground",
+			selected && "bg-accent text-accent-foreground",
+			className
+		)}
+		{...props}
+	>
+		{icon ? <span className="shrink-0 text-current [&_svg]:size-3.5">{icon}</span> : null}
+		{children}
+	</Button>
+));
+ComposerSuggestionItem.displayName = "ComposerSuggestionItem";
+
+function ComposerSuggestionSeparator({
+	className,
+	...props
+}: React.ComponentProps<typeof Separator>) {
+	return (
+		<div className={cn("my-0.5 px-2.5", className)}>
+			<Separator className="bg-popover-border" {...props} />
+		</div>
+	);
+}
+
+function ComposerSuggestionMessage({
+	className,
+	children,
+	variant = "muted",
+}: React.HTMLAttributes<HTMLParagraphElement> & { variant?: "muted" | "destructive" }) {
+	return (
+		<div className="px-1.5 py-1">
+			<p
+				className={cn(
+					"px-2 py-1 text-xs",
+					variant === "destructive" ? "text-destructive" : "text-muted-foreground",
+					className
+				)}
+			>
+				{children}
+			</p>
+		</div>
+	);
+}
+
+function ComposerSuggestionSkeleton({
+	rows = 5,
+	mobileRows = 3,
+}: {
+	rows?: number;
+	mobileRows?: number;
+}) {
+	return (
+		<div className="px-1.5 py-1">
+			<div className="px-2 py-1">
+				<Skeleton className="h-3.5 w-20" />
+			</div>
+			{Array.from({ length: rows }, (_, index) => `skeleton-row-${index}`).map((id, index) => (
+				<div
+					key={id}
+					className={cn(
+						"flex w-full items-center gap-1.5 rounded-md px-2 py-1 text-left",
+						index >= mobileRows && "hidden sm:flex"
+					)}
+				>
+					<span className="shrink-0">
+						<Skeleton className="size-3.5" />
+					</span>
+					<span className="flex-1 text-xs">
+						<Skeleton className="h-4" style={{ width: `${60 + ((index * 7) % 30)}%` }} />
+					</span>
+				</div>
+			))}
+		</div>
+	);
+}
+
+export {
+	ComposerSuggestionPopoverContent,
+	ComposerSuggestionList,
+	ComposerSuggestionGroup,
+	ComposerSuggestionGroupHeading,
+	ComposerSuggestionHeader,
+	ComposerSuggestionItem,
+	ComposerSuggestionSeparator,
+	ComposerSuggestionMessage,
+	ComposerSuggestionSkeleton,
+};
diff --git a/surfsense_web/components/new-chat/document-mention-picker.tsx b/surfsense_web/components/new-chat/document-mention-picker.tsx
index c3b907266..43a5cad74 100644
--- a/surfsense_web/components/new-chat/document-mention-picker.tsx
+++ b/surfsense_web/components/new-chat/document-mention-picker.tsx
@@ -2,35 +2,47 @@
 
 import { useQuery as useZeroQuery } from "@rocicorp/zero/react";
 import { keepPreviousData, useQuery } from "@tanstack/react-query";
-import { Folder as FolderIcon } from "lucide-react";
+import { useAtomValue } from "jotai";
+import { ChevronLeft, ChevronRight, Files, Folder as FolderIcon, Unplug } from "lucide-react";
 import {
+	Fragment,
 	forwardRef,
+	type UIEvent,
 	useCallback,
 	useDeferredValue,
 	useEffect,
-	useImperativeHandle,
 	useMemo,
 	useRef,
 	useState,
 } from "react";
+import type { MentionedDocumentInfo } from "@/atoms/chat/mentioned-documents.atom";
+import { connectorsAtom } from "@/atoms/connectors/connector-query.atoms";
+import { getConnectorTitle } from "@/components/assistant-ui/connector-popup/constants/connector-constants";
+import { getConnectorDisplayName } from "@/components/assistant-ui/connector-popup/tabs/all-connectors-tab";
 import {
-	FOLDER_MENTION_DOCUMENT_TYPE,
-	type MentionedDocumentInfo,
-} from "@/atoms/chat/mentioned-documents.atom";
-import { Button } from "@/components/ui/button";
-import { Skeleton } from "@/components/ui/skeleton";
+	ComposerSuggestionGroup,
+	ComposerSuggestionGroupHeading,
+	ComposerSuggestionHeader,
+	ComposerSuggestionItem,
+	ComposerSuggestionList,
+	ComposerSuggestionMessage,
+	ComposerSuggestionSeparator,
+	ComposerSuggestionSkeleton,
+} from "@/components/new-chat/composer-suggestion-popup";
+import {
+	type ComposerSuggestionNavigatorRef,
+	type ComposerSuggestionNode,
+	useComposerSuggestionNavigator,
+} from "@/components/new-chat/use-composer-suggestion-navigator";
+import { Spinner } from "@/components/ui/spinner";
 import { getConnectorIcon } from "@/contracts/enums/connectorIcons";
+import type { SearchSourceConnector } from "@/contracts/types/connector.types";
 import type { Document, SearchDocumentTitlesResponse } from "@/contracts/types/document.types";
 import { documentsApiService } from "@/lib/apis/documents-api.service";
 import { getMentionDocKey } from "@/lib/chat/mention-doc-key";
-import { cn } from "@/lib/utils";
 import { queries } from "@/zero/queries";
 
-export interface DocumentMentionPickerRef {
-	selectHighlighted: () => void;
-	moveUp: () => void;
-	moveDown: () => void;
-}
+export type DocumentMentionPickerRef = ComposerSuggestionNavigatorRef;
 
 interface DocumentMentionPickerProps {
 	searchSpaceId: number;
@@ -43,35 +55,167 @@ interface DocumentMentionPickerProps {
 const PAGE_SIZE = 20;
 const MIN_SEARCH_LENGTH = 2;
 const DEBOUNCE_MS = 100;
+const RECENTS_LIMIT = 3;
+const RECENTS_STORAGE_PREFIX = "surfsense:composer-mention-recents:v1:";
+
+type BrowseView =
+	| { kind: "root" }
+	| { kind: "files-folders" }
+	| { kind: "connectors" }
+	| { kind: "connector-type"; connectorType: string; title: string };
+
+type ResourceNodeValue =
+	| { kind: "view"; view: BrowseView }
+	| { kind: "mention"; mention: MentionedDocumentInfo };
+
+function isConnectorActive(connector: SearchSourceConnector) {
+	return connector.is_active !== false;
+}
+
+function isMentionedContextItem(value: unknown): value is MentionedDocumentInfo {
+	if (!value || typeof value !== "object") return false;
+	const item = value as Partial<MentionedDocumentInfo>;
+	if (typeof item.id !== "number" || typeof item.title !== "string") return false;
+	if (item.kind === "doc") return typeof item.document_type === "string";
+	if (item.kind === "folder") return true;
+	if (item.kind === "connector") {
+		return typeof item.connector_type === "string" && typeof item.account_name === "string";
+	}
+	return false;
+}
+
+function getRecentsStorageKey(searchSpaceId: number) {
+	return `${RECENTS_STORAGE_PREFIX}${searchSpaceId}`;
+}
+
+function readRecentMentions(searchSpaceId: number): MentionedDocumentInfo[] {
+	if (typeof window === "undefined") return [];
+	try {
+		const raw = window.localStorage.getItem(getRecentsStorageKey(searchSpaceId));
+		if (!raw) return [];
+		const parsed: unknown = JSON.parse(raw);
+		if (!Array.isArray(parsed)) return [];
+		return parsed.filter(isMentionedContextItem).slice(0, RECENTS_LIMIT);
+	} catch {
+		return [];
+	}
+}
+
+function writeRecentMentions(searchSpaceId: number, mentions: MentionedDocumentInfo[]) {
+	if (typeof window === "undefined") return;
+	try {
+		window.localStorage.setItem(
+			getRecentsStorageKey(searchSpaceId),
+			JSON.stringify(mentions.slice(0, RECENTS_LIMIT))
+		);
+	} catch {
+		// Recents are optional UI state; storage failures should not block mention insertion.
+	}
+}
+
+export function promoteRecentMention(searchSpaceId: number, mention: MentionedDocumentInfo) {
+	const mentionKey = getMentionDocKey(mention);
+	const next = [
+		mention,
+		...readRecentMentions(searchSpaceId).filter((item) => getMentionDocKey(item) !== mentionKey),
+	].slice(0, RECENTS_LIMIT);
+	writeRecentMentions(searchSpaceId, next);
+	return next;
+}
+
+function getMentionIcon(mention: MentionedDocumentInfo) {
+	if (mention.kind === "folder") return <FolderIcon className="size-4" />;
+	if (mention.kind === "connector") {
+		return getConnectorIcon(mention.connector_type, "size-4") ?? <Unplug className="size-4" />;
+	}
+	return getConnectorIcon(mention.document_type, "size-4");
+}
+
+function refreshRecentMention(
+	mention: MentionedDocumentInfo,
+	documents: Pick<Document, "id" | "title" | "document_type">[],
+	folders: { id: number; name: string }[],
+	connectors: SearchSourceConnector[],
+	hasHydratedRecentDocs: boolean
+): MentionedDocumentInfo | null {
+	if (mention.kind === "doc") {
+		const doc = documents.find(
+			(item) => item.id === mention.id && item.document_type === mention.document_type
+		);
+		if (doc) return makeDocMention(doc);
+		return hasHydratedRecentDocs ? null : mention;
+	}
+	if (mention.kind === "folder") {
+		const folder = folders.find((item) => item.id === mention.id);
+		return folder ? makeFolderMention({ id: folder.id, title: folder.name }) : null;
+	}
+	const connector = connectors.find(
+		(item) => item.id === mention.id && item.connector_type === mention.connector_type
+	);
+	return connector ? makeConnectorMention(connector) : null;
+}
 
-/**
- * Custom debounce hook that delays value updates until user input stabilizes.
- * Preferred over throttling for search inputs as it reduces API request frequency
- * and prevents race conditions from stale responses overtaking recent ones.
- */
 function useDebounced<T>(value: T, delay = DEBOUNCE_MS) {
 	const [debounced, setDebounced] = useState(value);
 	const timeoutRef = useRef<ReturnType<typeof setTimeout> | undefined>(undefined);
 
 	useEffect(() => {
-		if (timeoutRef.current) {
-			clearTimeout(timeoutRef.current);
-		}
-
-		timeoutRef.current = setTimeout(() => {
-			setDebounced(value);
-		}, delay);
-
+		if (timeoutRef.current) clearTimeout(timeoutRef.current);
+		timeoutRef.current = setTimeout(() => setDebounced(value), delay);
 		return () => {
-			if (timeoutRef.current) {
-				clearTimeout(timeoutRef.current);
-			}
+			if (timeoutRef.current) clearTimeout(timeoutRef.current);
 		};
 	}, [value, delay]);
 
 	return debounced;
 }
 
+function makeDocMention(
+	doc: Pick<Document, "id" | "title" | "document_type">
+): MentionedDocumentInfo {
+	return {
+		id: doc.id,
+		title: doc.title,
+		document_type: doc.document_type,
+		kind: "doc",
+	};
+}
+
+function makeFolderMention(folder: {
+	id: number;
+	title: string;
+}): Extract<MentionedDocumentInfo, { kind: "folder" }> {
+	return {
+		id: folder.id,
+		title: folder.title,
+		kind: "folder",
+	};
+}
+
+function makeConnectorMention(
+	connector: SearchSourceConnector
+): Extract<MentionedDocumentInfo, { kind: "connector" }> {
+	const accountName = getConnectorDisplayName(connector.name);
+	const connectorTitle = getConnectorTitle(connector.connector_type);
+	return {
+		id: connector.id,
+		title: `${connectorTitle}: ${accountName}`,
+		kind: "connector",
+		connector_type: connector.connector_type,
+		account_name: accountName,
+	};
+}
+
+function mentionMatchesSearch(mention: MentionedDocumentInfo, searchLower: string) {
+	return [
+		mention.title,
+		mention.kind,
+		mention.kind === "doc" ? mention.document_type : "",
+		mention.kind === "connector" ? mention.connector_type : "",
+		mention.kind === "connector" ? mention.account_name : "",
+	].some((value) => value.toLowerCase().includes(searchLower));
+}
+
 export const DocumentMentionPicker = forwardRef<
 	DocumentMentionPickerRef,
 	DocumentMentionPickerProps
@@ -79,51 +223,49 @@ export const DocumentMentionPicker = forwardRef<
 	{ searchSpaceId, onSelectionChange, onDone, initialSelectedDocuments = [], externalSearch = "" },
 	ref
 ) {
-	// Debounced search value to minimize API calls and prevent race conditions
 	const search = externalSearch;
 	const debouncedSearch = useDebounced(search, DEBOUNCE_MS);
-	// Deferred snapshot of debouncedSearch — client-side filtering uses this so it
-	// is treated as a non-urgent update, keeping the input responsive.
 	const deferredSearch = useDeferredValue(debouncedSearch);
-	const [highlightedIndex, setHighlightedIndex] = useState(0);
-	const itemRefs = useRef<Map<number, HTMLButtonElement>>(new Map());
-	const scrollContainerRef = useRef<HTMLDivElement>(null);
-	const shouldScrollRef = useRef(false); // Keyboard navigation scroll flag
+	const hasSearch = debouncedSearch.trim().length > 0;
+	const isSearchValid = debouncedSearch.trim().length >= MIN_SEARCH_LENGTH;
+	const isSingleCharSearch = debouncedSearch.trim().length === 1;
+	const [view, setView] = useState<BrowseView>({ kind: "root" });
 
-	// Pagination state for infinite scroll
 	const [accumulatedDocuments, setAccumulatedDocuments] = useState<
 		Pick<Document, "id" | "title" | "document_type">[]
 	>([]);
 	const [currentPage, setCurrentPage] = useState(0);
 	const [hasMore, setHasMore] = useState(false);
 	const [isLoadingMore, setIsLoadingMore] = useState(false);
+	const [recentMentions, setRecentMentions] = useState<MentionedDocumentInfo[]>(() =>
+		readRecentMentions(searchSpaceId)
+	);
 
-	// Folders for this search space — pulled from Zero so the picker
-	// stays consistent with the documents sidebar (same source of
-	// truth, automatic updates on rename/delete).
 	const [zeroFolders] = useZeroQuery(queries.folders.bySpace({ searchSpaceId }));
+	const { data: connectors = [], isLoading: isConnectorsLoading } = useAtomValue(connectorsAtom);
+	const activeConnectors = useMemo(() => connectors.filter(isConnectorActive), [connectors]);
+	const paginationScopeKey = useMemo(
+		() => `${searchSpaceId}:${debouncedSearch}`,
+		[searchSpaceId, debouncedSearch]
+	);
+	const previousPaginationScopeKeyRef = useRef<string | null>(null);
 
-	/**
-	 * Search Strategy:
-	 * - Single character (length === 1): Client-side filtering for instant results
-	 * - Two or more characters (length >= 2): Server-side search with pg_trgm index
-	 * This hybrid approach optimizes UX by providing immediate feedback for short queries
-	 * while leveraging efficient database indexing for longer, more specific searches.
-	 */
-	const isSearchValid = debouncedSearch.trim().length >= MIN_SEARCH_LENGTH;
-	const shouldSearch = debouncedSearch.trim().length > 0;
-	const isSingleCharSearch = debouncedSearch.trim().length === 1;
-
-	// Reset pagination state when search query or search space changes.
-	// Documents are not cleared to maintain visual continuity during fetches.
-	// biome-ignore lint/correctness/useExhaustiveDependencies: Intentional reset on search/space change
+	// Reset pagination state when the active search scope changes.
 	useEffect(() => {
+		if (previousPaginationScopeKeyRef.current === paginationScopeKey) return;
+		previousPaginationScopeKeyRef.current = paginationScopeKey;
 		setCurrentPage(0);
 		setHasMore(false);
-		setHighlightedIndex(0);
-	}, [debouncedSearch, searchSpaceId]);
+	}, [paginationScopeKey]);
+
+	useEffect(() => {
+		if (hasSearch) setView({ kind: "root" });
+	}, [hasSearch]);
+
+	useEffect(() => {
+		setRecentMentions(readRecentMentions(searchSpaceId));
+	}, [searchSpaceId]);
 
-	// Query parameters for lightweight title search endpoint
 	const titleSearchParams = useMemo(
 		() => ({
 			search_space_id: searchSpaceId,
@@ -134,82 +276,36 @@ export const DocumentMentionPicker = forwardRef<
 		[searchSpaceId, debouncedSearch, isSearchValid]
 	);
 
-	const surfsenseDocsQueryParams = useMemo(() => {
-		const params: { page: number; page_size: number; title?: string } = {
-			page: 0,
-			page_size: PAGE_SIZE,
-		};
-		if (isSearchValid) {
-			params.title = debouncedSearch.trim();
-		}
-		return params;
-	}, [debouncedSearch, isSearchValid]);
-
-	/**
-	 * TanStack Query for document title search.
-	 * - Uses AbortSignal for automatic request cancellation on query key changes
-	 * - placeholderData: keepPreviousData maintains UI stability during fetches
-	 * - Only triggers server-side search when isSearchValid (2+ characters)
-	 */
 	const { data: titleSearchResults, isLoading: isTitleSearchLoading } = useQuery({
 		queryKey: ["document-titles", titleSearchParams],
 		queryFn: ({ signal }) =>
 			documentsApiService.searchDocumentTitles({ queryParams: titleSearchParams }, signal),
 		staleTime: 60 * 1000,
-		enabled: !!searchSpaceId && currentPage === 0 && (!shouldSearch || isSearchValid),
+		enabled: !!searchSpaceId && currentPage === 0 && (!hasSearch || isSearchValid),
 		placeholderData: keepPreviousData,
 	});
 
-	/**
-	 * TanStack Query for SurfSense documentation.
-	 * - Uses AbortSignal for automatic request cancellation
-	 * - placeholderData: keepPreviousData prevents UI flicker during refetches
-	 */
-	const { data: surfsenseDocs, isLoading: isSurfsenseDocsLoading } = useQuery({
-		queryKey: ["surfsense-docs-mention", debouncedSearch, isSearchValid],
-		queryFn: ({ signal }) =>
-			documentsApiService.getSurfsenseDocs({ queryParams: surfsenseDocsQueryParams }, signal),
-		staleTime: 3 * 60 * 1000,
-		enabled: !shouldSearch || isSearchValid,
-		placeholderData: keepPreviousData,
-	});
-
-	// Post-fetch filter to eliminate false positives from backend fuzzy matching
 	const filterBySearchTerm = useCallback(
 		(docs: Pick<Document, "id" | "title" | "document_type">[]) => {
-			if (!isSearchValid) return docs; // No filtering when not searching
+			if (!isSearchValid) return docs;
 			const searchLower = debouncedSearch.trim().toLowerCase();
 			return docs.filter((doc) => doc.title.toLowerCase().includes(searchLower));
 		},
 		[debouncedSearch, isSearchValid]
 	);
 
-	// Combine and update document list when first page data arrives
 	useEffect(() => {
-		if (currentPage === 0) {
-			const combinedDocs: Pick<Document, "id" | "title" | "document_type">[] = [];
+		if (currentPage !== 0) return;
+		const combinedDocs: Pick<Document, "id" | "title" | "document_type">[] = [];
 
-			// SurfSense docs displayed first in the list
-			if (surfsenseDocs?.items) {
-				for (const doc of surfsenseDocs.items) {
-					combinedDocs.push({
-						id: doc.id,
-						title: doc.title,
-						document_type: "SURFSENSE_DOCS",
-					});
-				}
-			}
-
-			if (titleSearchResults?.items) {
-				combinedDocs.push(...titleSearchResults.items);
-				setHasMore(titleSearchResults.has_more);
-			}
-
-			setAccumulatedDocuments(filterBySearchTerm(combinedDocs));
+		if (titleSearchResults?.items) {
+			combinedDocs.push(...titleSearchResults.items);
+			setHasMore(titleSearchResults.has_more);
 		}
-	}, [titleSearchResults, surfsenseDocs, currentPage, filterBySearchTerm]);
 
-	// Load next page for infinite scroll pagination
+		setAccumulatedDocuments(filterBySearchTerm(combinedDocs));
+	}, [titleSearchResults, currentPage, filterBySearchTerm]);
+
 	const loadNextPage = useCallback(async () => {
 		if (isLoadingMore || !hasMore) return;
 
@@ -224,7 +320,9 @@ export const DocumentMentionPicker = forwardRef<
 				...(isSearchValid ? { title: debouncedSearch.trim() } : {}),
 			};
 			const response: SearchDocumentTitlesResponse = await documentsApiService.searchDocumentTitles(
-				{ queryParams }
+				{
+					queryParams,
+				}
 			);
 
 			setAccumulatedDocuments((prev) => [...prev, ...response.items]);
@@ -237,9 +335,284 @@ export const DocumentMentionPicker = forwardRef<
 		}
 	}, [currentPage, hasMore, isLoadingMore, debouncedSearch, searchSpaceId, isSearchValid]);
 
-	// Trigger pagination when user scrolls near the bottom (50px threshold)
+	const actualDocuments = useMemo(() => {
+		if (!isSingleCharSearch) return accumulatedDocuments;
+		const searchLower = deferredSearch.trim().toLowerCase();
+		return accumulatedDocuments.filter((doc) => doc.title.toLowerCase().includes(searchLower));
+	}, [accumulatedDocuments, deferredSearch, isSingleCharSearch]);
+
+	const folderMentions = useMemo(() => {
+		const all = (zeroFolders ?? []).map((f) => makeFolderMention({ id: f.id, title: f.name }));
+		if (!hasSearch) return all;
+		const needle = (isSingleCharSearch ? deferredSearch : debouncedSearch).trim().toLowerCase();
+		if (!needle) return all;
+		return all.filter((f) => f.title.toLowerCase().includes(needle));
+	}, [zeroFolders, debouncedSearch, deferredSearch, isSingleCharSearch, hasSearch]);
+
+	const connectorMentions = useMemo(
+		() => activeConnectors.map(makeConnectorMention),
+		[activeConnectors]
+	);
+	const recentDocMentions = useMemo(
+		() => recentMentions.filter((mention) => mention.kind === "doc"),
+		[recentMentions]
+	);
+	const recentDocIdsKey = useMemo(
+		() => recentDocMentions.map((mention) => mention.id).join(","),
+		[recentDocMentions]
+	);
+	const { data: hydratedRecentDocs = [], isFetched: hasHydratedRecentDocs } = useQuery({
+		queryKey: ["composer-mention-recent-docs", searchSpaceId, recentDocIdsKey],
+		queryFn: async () => {
+			const results = await Promise.allSettled(
+				recentDocMentions.map((mention) => documentsApiService.getDocument({ id: mention.id }))
+			);
+			return results
+				.map((result) => (result.status === "fulfilled" ? result.value : null))
+				.filter((doc): doc is Document => doc !== null);
+		},
+		enabled: recentDocMentions.length > 0,
+		staleTime: 60 * 1000,
+	});
+	const recentValidationDocuments = useMemo(
+		() => [...actualDocuments, ...hydratedRecentDocs],
+		[actualDocuments, hydratedRecentDocs]
+	);
+	const visibleRecentMentions = useMemo(
+		() =>
+			recentMentions
+				.map((mention) =>
+					refreshRecentMention(
+						mention,
+						recentValidationDocuments,
+						zeroFolders ?? [],
+						activeConnectors,
+						hasHydratedRecentDocs
+					)
+				)
+				.filter((mention): mention is MentionedDocumentInfo => mention !== null)
+				.slice(0, RECENTS_LIMIT),
+		[
+			activeConnectors,
+			hasHydratedRecentDocs,
+			recentMentions,
+			recentValidationDocuments,
+			zeroFolders,
+		]
+	);
+
+	const selectedKeys = useMemo(
+		() => new Set(initialSelectedDocuments.map((d) => getMentionDocKey(d))),
+		[initialSelectedDocuments]
+	);
+
+	const selectMention = useCallback(
+		(mention: MentionedDocumentInfo) => {
+			onSelectionChange([...initialSelectedDocuments, mention]);
+			onDone();
+		},
+		[initialSelectedDocuments, onSelectionChange, onDone]
+	);
+	const recentRootNodes = useMemo<ComposerSuggestionNode<ResourceNodeValue>[]>(
+		() =>
+			visibleRecentMentions.map((mention) => ({
+				id: `recent:${getMentionDocKey(mention)}`,
+				label: mention.title,
+				icon: getMentionIcon(mention),
+				type: "item" as const,
+				disabled: selectedKeys.has(getMentionDocKey(mention)),
+				value: { kind: "mention" as const, mention },
+			})),
+		[visibleRecentMentions, selectedKeys]
+	);
+
+	const rootNodes = useMemo<ComposerSuggestionNode<ResourceNodeValue>[]>(() => {
+		const nodes: ComposerSuggestionNode<ResourceNodeValue>[] = [...recentRootNodes];
+		nodes.push(
+			{
+				id: "files-folders",
+				label: "Files & Folders",
+				subtitle: "Browse your knowledge base",
+				icon: <Files className="size-4" />,
+				type: "branch",
+				value: { kind: "view", view: { kind: "files-folders" } },
+			},
+			{
+				id: "connectors",
+				label: "Connectors",
+				subtitle: activeConnectors.length
+					? "Choose the exact account for tool use"
+					: "No connected accounts yet",
+				icon: <Unplug className="size-4" />,
+				type: "branch",
+				disabled: activeConnectors.length === 0,
+				value: { kind: "view", view: { kind: "connectors" } },
+			}
+		);
+		return nodes;
+	}, [activeConnectors.length, recentRootNodes]);
+
+	const searchNodes = useMemo<ComposerSuggestionNode<ResourceNodeValue>[]>(() => {
+		const searchLower = (isSingleCharSearch ? deferredSearch : debouncedSearch)
+			.trim()
+			.toLowerCase();
+		const docNodes = actualDocuments.map((doc) => {
+			const mention = makeDocMention(doc);
+			return {
+				id: getMentionDocKey(mention),
+				label: doc.title,
+				icon: getConnectorIcon(doc.document_type, "size-4"),
+				type: "item" as const,
+				disabled: selectedKeys.has(getMentionDocKey(mention)),
+				value: { kind: "mention" as const, mention },
+			};
+		});
+		const folderNodes = folderMentions.map((mention) => ({
+			id: getMentionDocKey(mention),
+			label: mention.title,
+			subtitle: "Folder",
+			icon: <FolderIcon className="size-4" />,
+			type: "item" as const,
+			disabled: selectedKeys.has(getMentionDocKey(mention)),
+			value: { kind: "mention" as const, mention },
+		}));
+		const connectorNodes = connectorMentions
+			.filter((mention) => !searchLower || mentionMatchesSearch(mention, searchLower))
+			.map((mention) => ({
+				id: getMentionDocKey(mention),
+				label: mention.title,
+				subtitle: "Connector account",
+				icon: getConnectorIcon(mention.connector_type, "size-4") ?? <Unplug className="size-4" />,
+				type: "item" as const,
+				disabled: selectedKeys.has(getMentionDocKey(mention)),
+				value: { kind: "mention" as const, mention },
+			}));
+
+		return [...docNodes, ...folderNodes, ...connectorNodes];
+	}, [
+		actualDocuments,
+		connectorMentions,
+		debouncedSearch,
+		deferredSearch,
+		folderMentions,
+		isSingleCharSearch,
+		selectedKeys,
+	]);
+
+	const connectorTypeEntries = useMemo(() => {
+		const byType = new Map<string, SearchSourceConnector[]>();
+		for (const connector of activeConnectors) {
+			const list = byType.get(connector.connector_type) ?? [];
+			list.push(connector);
+			byType.set(connector.connector_type, list);
+		}
+		return Array.from(byType.entries()).sort(([a], [b]) =>
+			getConnectorTitle(a).localeCompare(getConnectorTitle(b))
+		);
+	}, [activeConnectors]);
+
+	const browseNodes = useMemo<ComposerSuggestionNode<ResourceNodeValue>[]>(() => {
+		if (view.kind === "root") return rootNodes;
+		if (view.kind === "files-folders") {
+			const folders = folderMentions.map((mention) => ({
+				id: getMentionDocKey(mention),
+				label: mention.title,
+				subtitle: "Folder",
+				icon: <FolderIcon className="size-4" />,
+				type: "item" as const,
+				disabled: selectedKeys.has(getMentionDocKey(mention)),
+				value: { kind: "mention" as const, mention },
+			}));
+			const docs = actualDocuments.map((doc) => {
+				const mention = makeDocMention(doc);
+				return {
+					id: getMentionDocKey(mention),
+					label: doc.title,
+					icon: getConnectorIcon(doc.document_type, "size-4"),
+					type: "item" as const,
+					disabled: selectedKeys.has(getMentionDocKey(mention)),
+					value: { kind: "mention" as const, mention },
+				};
+			});
+			return [...folders, ...docs];
+		}
+		if (view.kind === "connectors") {
+			return connectorTypeEntries.map(([connectorType, typeConnectors]) => ({
+				id: `connector-type:${connectorType}`,
+				label: getConnectorTitle(connectorType),
+				subtitle: `${typeConnectors.length} ${typeConnectors.length === 1 ? "account" : "accounts"}`,
+				icon: getConnectorIcon(connectorType, "size-4") ?? <Unplug className="size-4" />,
+				type: "branch" as const,
+				value: {
+					kind: "view" as const,
+					view: {
+						kind: "connector-type" as const,
+						connectorType,
+						title: getConnectorTitle(connectorType),
+					},
+				},
+			}));
+		}
+		return activeConnectors
+			.filter((connector) => connector.connector_type === view.connectorType)
+			.map((connector) => {
+				const mention = makeConnectorMention(connector);
+				return {
+					id: getMentionDocKey(mention),
+					label: getConnectorDisplayName(connector.name),
+					subtitle: `${view.title} account`,
+					icon: getConnectorIcon(connector.connector_type, "size-4") ?? (
+						<Unplug className="size-4" />
+					),
+					type: "item" as const,
+					disabled: selectedKeys.has(getMentionDocKey(mention)),
+					value: { kind: "mention" as const, mention },
+				};
+			});
+	}, [
+		actualDocuments,
+		activeConnectors,
+		connectorTypeEntries,
+		folderMentions,
+		rootNodes,
+		selectedKeys,
+		view,
+	]);
+
+	const visibleNodes = hasSearch ? searchNodes : browseNodes;
+	const handleNodeSelect = useCallback(
+		(node: ComposerSuggestionNode<ResourceNodeValue>) => {
+			const value = node.value;
+			if (!value) return;
+			if (value.kind === "view") {
+				setView(value.view);
+				return;
+			}
+			selectMention(value.mention);
+		},
+		[selectMention]
+	);
+	const handleBack = useCallback(() => {
+		if (hasSearch || view.kind === "root") return false;
+		if (view.kind === "connector-type") {
+			setView({ kind: "connectors" });
+			return true;
+		}
+		setView({ kind: "root" });
+		return true;
+	}, [hasSearch, view]);
+
+	const navigator = useComposerSuggestionNavigator({
+		nodes: visibleNodes,
+		onSelect: handleNodeSelect,
+		onBack: handleBack,
+		ref,
+	});
+	const canLoadMoreDocuments = hasSearch || view.kind === "files-folders";
+
 	const handleScroll = useCallback(
-		(e: React.UIEvent<HTMLDivElement>) => {
+		(e: UIEvent<HTMLDivElement>) => {
+			if (!canLoadMoreDocuments) return;
 			const target = e.currentTarget;
 			const scrollBottom = target.scrollHeight - target.scrollTop - target.clientHeight;
 
@@ -247,401 +620,123 @@ export const DocumentMentionPicker = forwardRef<
 				loadNextPage();
 			}
 		},
-		[hasMore, isLoadingMore, loadNextPage]
+		[canLoadMoreDocuments, hasMore, isLoadingMore, loadNextPage]
 	);
 
-	/**
-	 * Client-side filtering for single character searches.
-	 * Filters cached documents locally for instant feedback without additional API calls.
-	 * Server-side search is reserved for 2+ character queries to leverage database indexing.
-	 * Uses deferredSearch (a deferred snapshot of debouncedSearch) so this memo is treated
-	 * as non-urgent — React can interrupt it to keep the input responsive.
-	 */
-	const clientFilteredDocs = useMemo(() => {
-		if (!isSingleCharSearch) return null;
-		const searchLower = deferredSearch.trim().toLowerCase();
-		return accumulatedDocuments.filter((doc) => doc.title.toLowerCase().includes(searchLower));
-	}, [isSingleCharSearch, deferredSearch, accumulatedDocuments]);
-
-	// Select data source based on search length: client-filtered for single char, server results for 2+
-	const actualDocuments = isSingleCharSearch ? (clientFilteredDocs ?? []) : accumulatedDocuments;
-	// Only show loading spinner on initial load (no documents yet), not during subsequent searches
+	const isRootBrowseView = !hasSearch && view.kind === "root";
+	const isVisibleViewLoading = hasSearch
+		? isTitleSearchLoading || isConnectorsLoading
+		: view.kind === "files-folders"
+			? isTitleSearchLoading
+			: view.kind === "connectors" || view.kind === "connector-type"
+				? isConnectorsLoading
+				: false;
 	const actualLoading =
-		(isTitleSearchLoading || isSurfsenseDocsLoading) &&
-		currentPage === 0 &&
-		!isSingleCharSearch &&
-		accumulatedDocuments.length === 0;
-	// Partition documents by type for grouped UI rendering
-	const surfsenseDocsList = useMemo(
-		() => actualDocuments.filter((doc) => doc.document_type === "SURFSENSE_DOCS"),
-		[actualDocuments]
-	);
-	const userDocsList = useMemo(
-		() => actualDocuments.filter((doc) => doc.document_type !== "SURFSENSE_DOCS"),
-		[actualDocuments]
-	);
+		isVisibleViewLoading && !isSingleCharSearch && visibleNodes.length === 0 && !isRootBrowseView;
 
-	// Folder mention candidates filtered by the current search term.
-	// Single-char and server-search both use the same client filter
-	// — folder counts in a workspace are tiny compared to docs, so we
-	// don't need a paged endpoint. Empty search shows all folders.
-	const folderMentions: MentionedDocumentInfo[] = useMemo(() => {
-		const all = (zeroFolders ?? []).map((f) => ({
-			id: f.id,
-			title: f.name,
-			document_type: FOLDER_MENTION_DOCUMENT_TYPE,
-			kind: "folder" as const,
-		}));
-		if (!shouldSearch) return all;
-		const needle = (isSingleCharSearch ? deferredSearch : debouncedSearch).trim().toLowerCase();
-		if (!needle) return all;
-		return all.filter((f) => f.title.toLowerCase().includes(needle));
-	}, [zeroFolders, debouncedSearch, deferredSearch, isSingleCharSearch, shouldSearch]);
-
-	// Doc-shape entries reuse their ``document_type`` discriminator;
-	// folder entries lift the existing kind-aware key so the same
-	// matchers used by the chip atom apply unchanged.
-	const selectedKeys = useMemo(
-		() => new Set(initialSelectedDocuments.map((d) => getMentionDocKey(d))),
-		[initialSelectedDocuments]
-	);
-
-	// Combined navigation order: SurfSense docs -> User docs -> Folders.
-	// Mirrors the on-screen ordering so keyboard arrows match what the
-	// user sees.
-	const selectableMentions = useMemo<MentionedDocumentInfo[]>(() => {
-		const docs: MentionedDocumentInfo[] = actualDocuments.map((doc) => ({
-			id: doc.id,
-			title: doc.title,
-			document_type: doc.document_type,
-			kind: "doc" as const,
-		}));
-		const ordered = [...docs, ...folderMentions];
-		return ordered.filter((m) => !selectedKeys.has(getMentionDocKey(m)));
-	}, [actualDocuments, folderMentions, selectedKeys]);
-
-	const handleSelectMention = useCallback(
-		(mention: MentionedDocumentInfo) => {
-			onSelectionChange([...initialSelectedDocuments, mention]);
-			onDone();
-		},
-		[initialSelectedDocuments, onSelectionChange, onDone]
-	);
-
-	// Auto-scroll highlighted item into view (keyboard navigation only, not mouse hover)
-	useEffect(() => {
-		if (!shouldScrollRef.current) {
-			return;
-		}
-		shouldScrollRef.current = false;
-
-		const rafId = requestAnimationFrame(() => {
-			const item = itemRefs.current.get(highlightedIndex);
-			const container = scrollContainerRef.current;
-
-			if (item && container) {
-				const itemRect = item.getBoundingClientRect();
-				const containerRect = container.getBoundingClientRect();
-				const padding = 8;
-				const isAboveViewport = itemRect.top < containerRect.top + padding;
-				const isBelowViewport = itemRect.bottom > containerRect.bottom - padding;
-
-				if (isAboveViewport || isBelowViewport) {
-					const itemOffsetTop = item.offsetTop;
-					const containerHeight = container.clientHeight;
-					const itemHeight = item.offsetHeight;
-					const targetScrollTop = itemOffsetTop - containerHeight / 2 + itemHeight / 2;
-					const maxScrollTop = container.scrollHeight - containerHeight;
-					const clampedScrollTop = Math.max(0, Math.min(targetScrollTop, maxScrollTop));
-
-					container.scrollTo({
-						top: clampedScrollTop,
-						behavior: "smooth",
-					});
-				}
-			}
-		});
-
-		return () => cancelAnimationFrame(rafId);
-	}, [highlightedIndex]);
-
-	// Reset highlight position when search query changes
-	const prevSearchRef = useRef(search);
-	if (prevSearchRef.current !== search) {
-		prevSearchRef.current = search;
-		if (highlightedIndex !== 0) {
-			setHighlightedIndex(0);
-		}
-	}
-
-	// Expose navigation and selection methods to parent component via ref
-	useImperativeHandle(
-		ref,
-		() => ({
-			selectHighlighted: () => {
-				if (selectableMentions[highlightedIndex]) {
-					handleSelectMention(selectableMentions[highlightedIndex]);
-				}
-			},
-			moveUp: () => {
-				shouldScrollRef.current = true;
-				setHighlightedIndex((prev) => (prev > 0 ? prev - 1 : selectableMentions.length - 1));
-			},
-			moveDown: () => {
-				shouldScrollRef.current = true;
-				setHighlightedIndex((prev) => (prev < selectableMentions.length - 1 ? prev + 1 : 0));
-			},
-		}),
-		[selectableMentions, highlightedIndex, handleSelectMention]
-	);
-
-	// Keyboard navigation handler for arrow keys, Enter, and Escape
-	const handleKeyDown = useCallback(
-		(e: React.KeyboardEvent) => {
-			if (selectableMentions.length === 0) return;
-
-			switch (e.key) {
-				case "ArrowDown":
-					e.preventDefault();
-					shouldScrollRef.current = true;
-					setHighlightedIndex((prev) => (prev < selectableMentions.length - 1 ? prev + 1 : 0));
-					break;
-				case "ArrowUp":
-					e.preventDefault();
-					shouldScrollRef.current = true;
-					setHighlightedIndex((prev) => (prev > 0 ? prev - 1 : selectableMentions.length - 1));
-					break;
-				case "Enter":
-					e.preventDefault();
-					if (selectableMentions[highlightedIndex]) {
-						handleSelectMention(selectableMentions[highlightedIndex]);
-					}
-					break;
-				case "Escape":
-					e.preventDefault();
-					onDone();
-					break;
-			}
-		},
-		[selectableMentions, highlightedIndex, handleSelectMention, onDone]
-	);
+	const title =
+		hasSearch || view.kind === "root"
+			? null
+			: view.kind === "files-folders"
+				? "Files & Folders"
+				: view.kind === "connectors"
+					? "Connectors"
+					: view.title;
 
 	return (
-		<div
-			className="shadow-2xl rounded-lg overflow-hidden bg-popover text-popover-foreground flex flex-col w-[280px] sm:w-[320px] select-none"
-			onKeyDown={handleKeyDown}
+		<ComposerSuggestionList
+			ref={navigator.scrollContainerRef}
+			onScroll={handleScroll}
 			role="listbox"
 			tabIndex={-1}
+			className={isRootBrowseView ? "max-h-none overflow-visible sm:max-h-none" : undefined}
 		>
-			{/* Scrollable document list with responsive height */}
-			<div
-				ref={scrollContainerRef}
-				className="max-h-[180px] sm:max-h-[280px] overflow-y-auto"
-				onScroll={handleScroll}
-			>
-				{actualLoading ? (
-					<div className="py-1 px-2">
-						<div className="px-3 py-2">
-							<Skeleton className="h-[16px] w-24" />
-						</div>
-						{["a", "b", "c", "d", "e"].map((id, i) => (
-							<div
-								key={id}
-								className={cn(
-									"w-full flex items-center gap-2 px-3 py-2 text-left rounded-md",
-									i >= 3 && "hidden sm:flex"
-								)}
+			{actualLoading ? (
+				<ComposerSuggestionSkeleton rows={8} mobileRows={8} />
+			) : (
+				<ComposerSuggestionGroup>
+					{title ? (
+						<>
+							<ComposerSuggestionHeader
+								role="button"
+								tabIndex={0}
+								aria-label={`Back from ${title}`}
+								onClick={handleBack}
+								onKeyDown={(event) => {
+									if (event.key === "Enter" || event.key === " ") {
+										event.preventDefault();
+										handleBack();
+									}
+								}}
+								className="cursor-pointer rounded-sm transition-colors hover:text-foreground focus-visible:text-foreground focus-visible:outline-none focus-visible:ring-1 focus-visible:ring-ring"
+								icon={
+									<span className="-ml-0.5 flex size-4.5 items-center justify-center">
+										<ChevronLeft className="size-3.5" />
+									</span>
+								}
 							>
-								<span className="shrink-0">
-									<Skeleton className="h-4 w-4" />
-								</span>
-								<span className="flex-1 text-sm">
-									<Skeleton className="h-[20px]" style={{ width: `${60 + ((i * 7) % 30)}%` }} />
-								</span>
-							</div>
-						))}
-					</div>
-				) : actualDocuments.length > 0 || folderMentions.length > 0 ? (
-					<div className="py-1 px-2">
-						{/* SurfSense Documentation */}
-						{surfsenseDocsList.length > 0 && (
-							<>
-								<div className="px-3 py-2 text-xs font-bold text-muted-foreground/55">
-									SurfSense Docs
-								</div>
-								{surfsenseDocsList.map((doc) => {
-									const mention: MentionedDocumentInfo = {
-										id: doc.id,
-										title: doc.title,
-										document_type: doc.document_type,
-										kind: "doc",
-									};
-									const docKey = getMentionDocKey(mention);
-									const isAlreadySelected = selectedKeys.has(docKey);
-									const selectableIndex = selectableMentions.findIndex(
-										(m) => getMentionDocKey(m) === docKey
-									);
-									const isHighlighted = !isAlreadySelected && selectableIndex === highlightedIndex;
+								<span className="flex-1 truncate">{title}</span>
+							</ComposerSuggestionHeader>
+							<ComposerSuggestionSeparator />
+						</>
+					) : null}
 
-									return (
-										<Button
-											key={docKey}
-											ref={(el) => {
-												if (el && selectableIndex >= 0) {
-													itemRefs.current.set(selectableIndex, el);
-												}
-											}}
-											type="button"
-											variant="ghost"
-											onClick={() => !isAlreadySelected && handleSelectMention(mention)}
-											onMouseEnter={() => {
-												if (!isAlreadySelected && selectableIndex >= 0) {
-													setHighlightedIndex(selectableIndex);
-												}
-											}}
-											disabled={isAlreadySelected}
-											className={cn(
-												"h-auto w-full justify-start gap-2 px-3 py-2 text-left transition-colors",
-												isAlreadySelected ? "opacity-50 cursor-not-allowed" : "cursor-pointer",
-												isHighlighted && "bg-accent text-accent-foreground"
-											)}
+					{visibleNodes.length > 0 ? (
+						<>
+							{hasSearch ? (
+								<ComposerSuggestionGroupHeading>Suggested Context</ComposerSuggestionGroupHeading>
+							) : null}
+							{!hasSearch && view.kind === "root" && recentRootNodes.length > 0 ? (
+								<ComposerSuggestionGroupHeading>Recents</ComposerSuggestionGroupHeading>
+							) : null}
+							{visibleNodes.map((node, index) => {
+								const showRecentsSeparator =
+									!hasSearch &&
+									view.kind === "root" &&
+									recentRootNodes.length > 0 &&
+									index === recentRootNodes.length;
+								return (
+									<Fragment key={node.id}>
+										{showRecentsSeparator ? <ComposerSuggestionSeparator /> : null}
+										<ComposerSuggestionItem
+											ref={navigator.getItemRef(index)}
+											icon={node.icon}
+											selected={index === navigator.highlightedIndex}
+											disabled={node.disabled}
+											onClick={() => !node.disabled && handleNodeSelect(node)}
+											onMouseEnter={() => navigator.setHighlightedIndex(index)}
 										>
-											<span className="shrink-0 text-muted-foreground text-sm">
-												{getConnectorIcon(doc.document_type)}
+											<span className="min-w-0 flex-1">
+												<span className="block truncate text-xs" title={node.label}>
+													{node.label}
+												</span>
+												{node.subtitle ? (
+													<span className="block truncate text-[10px] text-muted-foreground">
+														{node.subtitle}
+													</span>
+												) : null}
 											</span>
-											<span className="flex-1 text-sm truncate" title={doc.title}>
-												{doc.title}
-											</span>
-										</Button>
-									);
-								})}
-							</>
-						)}
+											{node.type === "branch" ? (
+												<ChevronRight className="size-3.5 shrink-0 text-muted-foreground" />
+											) : null}
+										</ComposerSuggestionItem>
+									</Fragment>
+								);
+							})}
+						</>
+					) : (
+						<ComposerSuggestionMessage>
+							{hasSearch ? "No matching context" : "No items available"}
+						</ComposerSuggestionMessage>
+					)}
 
-						{/* User Documents */}
-						{userDocsList.length > 0 && (
-							<>
-								{surfsenseDocsList.length > 0 && (
-									<div className="mx-2 my-4 border-t border-popover-border" />
-								)}
-								<div className="px-3 py-2 text-xs font-bold text-muted-foreground/55">
-									Your Documents
-								</div>
-								{userDocsList.map((doc) => {
-									const mention: MentionedDocumentInfo = {
-										id: doc.id,
-										title: doc.title,
-										document_type: doc.document_type,
-										kind: "doc",
-									};
-									const docKey = getMentionDocKey(mention);
-									const isAlreadySelected = selectedKeys.has(docKey);
-									const selectableIndex = selectableMentions.findIndex(
-										(m) => getMentionDocKey(m) === docKey
-									);
-									const isHighlighted = !isAlreadySelected && selectableIndex === highlightedIndex;
-
-									return (
-										<Button
-											key={docKey}
-											ref={(el) => {
-												if (el && selectableIndex >= 0) {
-													itemRefs.current.set(selectableIndex, el);
-												}
-											}}
-											type="button"
-											variant="ghost"
-											onClick={() => !isAlreadySelected && handleSelectMention(mention)}
-											onMouseEnter={() => {
-												if (!isAlreadySelected && selectableIndex >= 0) {
-													setHighlightedIndex(selectableIndex);
-												}
-											}}
-											disabled={isAlreadySelected}
-											className={cn(
-												"h-auto w-full justify-start gap-2 px-3 py-2 text-left transition-colors",
-												isAlreadySelected ? "opacity-50 cursor-not-allowed" : "cursor-pointer",
-												isHighlighted && "bg-accent text-accent-foreground"
-											)}
-										>
-											<span className="shrink-0 text-muted-foreground text-sm">
-												{getConnectorIcon(doc.document_type)}
-											</span>
-											<span className="flex-1 text-sm truncate" title={doc.title}>
-												{doc.title}
-											</span>
-										</Button>
-									);
-								})}
-							</>
-						)}
-
-						{/* Folders — single source of truth is Zero (same store
-						    that powers the documents sidebar). Selecting a
-						    folder inserts a folder chip whose path the agent
-						    can walk with ``ls`` / ``find_documents``. */}
-						{folderMentions.length > 0 && (
-							<>
-								{(surfsenseDocsList.length > 0 || userDocsList.length > 0) && (
-									<div className="mx-2 my-4 border-t border-popover-border" />
-								)}
-								<div className="px-3 py-2 text-xs font-bold text-muted-foreground/55">Folders</div>
-								{folderMentions.map((folder) => {
-									const folderKey = getMentionDocKey(folder);
-									const isAlreadySelected = selectedKeys.has(folderKey);
-									const selectableIndex = selectableMentions.findIndex(
-										(m) => getMentionDocKey(m) === folderKey
-									);
-									const isHighlighted = !isAlreadySelected && selectableIndex === highlightedIndex;
-
-									return (
-										<Button
-											key={folderKey}
-											ref={(el) => {
-												if (el && selectableIndex >= 0) {
-													itemRefs.current.set(selectableIndex, el);
-												}
-											}}
-											type="button"
-											variant="ghost"
-											onClick={() => !isAlreadySelected && handleSelectMention(folder)}
-											onMouseEnter={() => {
-												if (!isAlreadySelected && selectableIndex >= 0) {
-													setHighlightedIndex(selectableIndex);
-												}
-											}}
-											disabled={isAlreadySelected}
-											className={cn(
-												"h-auto w-full justify-start gap-2 px-3 py-2 text-left transition-colors",
-												isAlreadySelected ? "opacity-50 cursor-not-allowed" : "cursor-pointer",
-												isHighlighted && "bg-accent text-accent-foreground"
-											)}
-										>
-											<span className="shrink-0 text-muted-foreground text-sm">
-												<FolderIcon className="h-4 w-4" />
-											</span>
-											<span className="flex-1 text-sm truncate" title={folder.title}>
-												{folder.title}
-											</span>
-										</Button>
-									);
-								})}
-							</>
-						)}
-
-						{/* Pagination loading indicator */}
-						{isLoadingMore && (
-							<div className="flex items-center justify-center py-2">
-								<div className="animate-spin h-4 w-4 border-2 border-primary border-t-transparent rounded-full" />
-							</div>
-						)}
-					</div>
-				) : (
-					<div className="py-1 px-2">
-						<p className="px-3 py-2 text-xs text-muted-foreground">No matching documents</p>
-					</div>
-				)}
-			</div>
-		</div>
+					{canLoadMoreDocuments && isLoadingMore && (
+						<div className="flex items-center justify-center py-2 text-primary">
+							<Spinner size="sm" />
+						</div>
+					)}
+				</ComposerSuggestionGroup>
+			)}
+		</ComposerSuggestionList>
 	);
 });
diff --git a/surfsense_web/components/new-chat/prompt-picker.tsx b/surfsense_web/components/new-chat/prompt-picker.tsx
index 1cb9f80f5..65bf0a889 100644
--- a/surfsense_web/components/new-chat/prompt-picker.tsx
+++ b/surfsense_web/components/new-chat/prompt-picker.tsx
@@ -15,9 +15,15 @@ import {
 } from "react";
 
 import { promptsAtom } from "@/atoms/prompts/prompts-query.atoms";
-import { Button } from "@/components/ui/button";
-import { Skeleton } from "@/components/ui/skeleton";
-import { cn } from "@/lib/utils";
+import {
+	ComposerSuggestionGroup,
+	ComposerSuggestionGroupHeading,
+	ComposerSuggestionItem,
+	ComposerSuggestionList,
+	ComposerSuggestionMessage,
+	ComposerSuggestionSeparator,
+	ComposerSuggestionSkeleton,
+} from "@/components/new-chat/composer-suggestion-popup";
 
 export interface PromptPickerRef {
 	selectHighlighted: () => void;
@@ -119,91 +125,50 @@ export const PromptPicker = forwardRef<PromptPickerRef, PromptPickerProps>(funct
 	);
 
 	return (
-		<div className="shadow-2xl rounded-lg overflow-hidden bg-popover text-popover-foreground flex flex-col w-[280px] sm:w-[320px] select-none">
-			<div ref={scrollContainerRef} className="max-h-[180px] sm:max-h-[280px] overflow-y-auto">
-				{isLoading ? (
-					<div className="py-1 px-2">
-						<div className="px-3 py-2">
-							<Skeleton className="h-[16px] w-24" />
-						</div>
-						{["a", "b", "c", "d", "e"].map((id, i) => (
-							<div
-								key={id}
-								className={cn(
-									"w-full flex items-center gap-2 px-3 py-2 text-left rounded-md",
-									i >= 3 && "hidden sm:flex"
-								)}
-							>
-								<span className="shrink-0">
-									<Skeleton className="h-4 w-4" />
-								</span>
-								<span className="flex-1 text-sm">
-									<Skeleton className="h-[20px]" style={{ width: `${60 + ((i * 7) % 30)}%` }} />
-								</span>
-							</div>
-						))}
-					</div>
-				) : isError ? (
-					<div className="py-1 px-2">
-						<p className="px-3 py-2 text-xs text-destructive">Failed to load prompts</p>
-					</div>
-				) : filtered.length === 0 ? (
-					<div className="py-1 px-2">
-						<p className="px-3 py-2 text-xs text-muted-foreground">No matching prompts</p>
-					</div>
-				) : (
-					<div className="py-1 px-2">
-						<div className="px-3 py-2 text-xs font-bold text-muted-foreground/55">
-							Saved Prompts
-						</div>
-						{filtered.map((action, index) => (
-							<Button
-								key={action.id}
-								ref={(el) => {
-									if (el) itemRefs.current.set(index, el);
-									else itemRefs.current.delete(index);
-								}}
-								type="button"
-								variant="ghost"
-								onClick={() => handleSelect(index)}
-								onMouseEnter={() => setHighlightedIndex(index)}
-								className={cn(
-									"h-auto w-full justify-start gap-2 rounded-md px-3 py-2 text-left text-sm font-normal transition-colors",
-									index === highlightedIndex && "bg-accent text-accent-foreground"
-								)}
-							>
-								<span className="shrink-0 text-muted-foreground">
-									<WandSparkles className="size-4" />
-								</span>
-								<span className="flex-1 text-sm truncate">{action.name}</span>
-							</Button>
-						))}
-
-						<div className="mx-2 my-1 border-t border-popover-border" />
-						<Button
+		<ComposerSuggestionList ref={scrollContainerRef}>
+			{isLoading ? (
+				<ComposerSuggestionSkeleton rows={8} mobileRows={8} />
+			) : isError ? (
+				<ComposerSuggestionMessage variant="destructive">
+					Failed to load prompts
+				</ComposerSuggestionMessage>
+			) : filtered.length === 0 ? (
+				<ComposerSuggestionMessage>No matching prompts</ComposerSuggestionMessage>
+			) : (
+				<ComposerSuggestionGroup>
+					<ComposerSuggestionGroupHeading>Saved Prompts</ComposerSuggestionGroupHeading>
+					{filtered.map((action, index) => (
+						<ComposerSuggestionItem
+							key={action.id}
 							ref={(el) => {
-								if (el) itemRefs.current.set(createPromptIndex, el);
-								else itemRefs.current.delete(createPromptIndex);
+								if (el) itemRefs.current.set(index, el);
+								else itemRefs.current.delete(index);
 							}}
-							type="button"
-							variant="ghost"
-							onClick={() => handleSelect(createPromptIndex)}
-							onMouseEnter={() => setHighlightedIndex(createPromptIndex)}
-							className={cn(
-								"h-auto w-full justify-start gap-2 rounded-md px-3 py-2 text-left text-sm font-normal text-muted-foreground transition-colors",
-								highlightedIndex === createPromptIndex
-									? "bg-accent text-accent-foreground"
-									: "hover:text-accent-foreground hover:bg-accent"
-							)}
+							icon={<WandSparkles className="size-3.5" />}
+							selected={index === highlightedIndex}
+							onClick={() => handleSelect(index)}
+							onMouseEnter={() => setHighlightedIndex(index)}
 						>
-							<span className="shrink-0">
-								<Plus className="size-4" />
-							</span>
-							<span>Create prompt</span>
-						</Button>
-					</div>
-				)}
-			</div>
-		</div>
+							<span className="flex-1 truncate text-xs">{action.name}</span>
+						</ComposerSuggestionItem>
+					))}
+
+					<ComposerSuggestionSeparator />
+					<ComposerSuggestionItem
+						ref={(el) => {
+							if (el) itemRefs.current.set(createPromptIndex, el);
+							else itemRefs.current.delete(createPromptIndex);
+						}}
+						icon={<Plus className="size-3.5" />}
+						muted
+						selected={highlightedIndex === createPromptIndex}
+						onClick={() => handleSelect(createPromptIndex)}
+						onMouseEnter={() => setHighlightedIndex(createPromptIndex)}
+					>
+						<span>Create prompt</span>
+					</ComposerSuggestionItem>
+				</ComposerSuggestionGroup>
+			)}
+		</ComposerSuggestionList>
 	);
 });
diff --git a/surfsense_web/components/new-chat/use-composer-suggestion-navigator.ts b/surfsense_web/components/new-chat/use-composer-suggestion-navigator.ts
new file mode 100644
index 000000000..da4dc60c3
--- /dev/null
+++ b/surfsense_web/components/new-chat/use-composer-suggestion-navigator.ts
@@ -0,0 +1,120 @@
+"use client";
+
+import type * as React from "react";
+import { useCallback, useEffect, useImperativeHandle, useMemo, useRef, useState } from "react";
+
+export type ComposerSuggestionNode<TValue> = {
+	id: string;
+	label: string;
+	subtitle?: string;
+	icon?: React.ReactNode;
+	keywords?: string[];
+	type: "branch" | "item" | "action";
+	value?: TValue;
+	disabled?: boolean;
+};
+
+export type ComposerSuggestionNavigatorRef = {
+	selectHighlighted: () => void;
+	moveUp: () => void;
+	moveDown: () => void;
+	goBack: () => boolean;
+};
+
+export type ComposerSuggestionNavigatorOptions<TValue> = {
+	nodes: ComposerSuggestionNode<TValue>[];
+	onSelect: (node: ComposerSuggestionNode<TValue>) => void;
+	onBack?: () => boolean;
+	ref?: React.Ref<ComposerSuggestionNavigatorRef>;
+};
+
+export function useComposerSuggestionNavigator<TValue>({
+	nodes,
+	onSelect,
+	onBack,
+	ref,
+}: ComposerSuggestionNavigatorOptions<TValue>) {
+	const [highlightedIndex, setHighlightedIndex] = useState(0);
+	const itemRefs = useRef<Map<number, HTMLButtonElement>>(new Map());
+	const scrollContainerRef = useRef<HTMLDivElement>(null);
+	const shouldScrollRef = useRef(false);
+	const nodesKey = useMemo(() => nodes.map((node) => node.id).join("\u0000"), [nodes]);
+	const previousNodesKeyRef = useRef<string | null>(null);
+
+	// Reset keyboard focus when the caller swaps the visible node set.
+	useEffect(() => {
+		if (previousNodesKeyRef.current === nodesKey) return;
+		previousNodesKeyRef.current = nodesKey;
+		setHighlightedIndex(0);
+		itemRefs.current.clear();
+	}, [nodesKey]);
+
+	useEffect(() => {
+		if (!shouldScrollRef.current) return;
+		shouldScrollRef.current = false;
+
+		const rafId = requestAnimationFrame(() => {
+			const item = itemRefs.current.get(highlightedIndex);
+			const container = scrollContainerRef.current;
+			if (!item || !container) return;
+
+			const itemRect = item.getBoundingClientRect();
+			const containerRect = container.getBoundingClientRect();
+			if (itemRect.top < containerRect.top || itemRect.bottom > containerRect.bottom) {
+				item.scrollIntoView({ block: "nearest" });
+			}
+		});
+
+		return () => cancelAnimationFrame(rafId);
+	}, [highlightedIndex]);
+
+	const moveUp = useCallback(() => {
+		if (nodes.length === 0) return;
+		shouldScrollRef.current = true;
+		setHighlightedIndex((prev) => (prev > 0 ? prev - 1 : nodes.length - 1));
+	}, [nodes.length]);
+
+	const moveDown = useCallback(() => {
+		if (nodes.length === 0) return;
+		shouldScrollRef.current = true;
+		setHighlightedIndex((prev) => (prev < nodes.length - 1 ? prev + 1 : 0));
+	}, [nodes.length]);
+
+	const selectHighlighted = useCallback(() => {
+		const node = nodes[highlightedIndex];
+		if (!node || node.disabled) return;
+		onSelect(node);
+	}, [highlightedIndex, nodes, onSelect]);
+
+	const goBack = useCallback(() => onBack?.() ?? false, [onBack]);
+
+	useImperativeHandle(
+		ref,
+		() => ({
+			selectHighlighted,
+			moveUp,
+			moveDown,
+			goBack,
+		}),
+		[goBack, moveDown, moveUp, selectHighlighted]
+	);
+
+	const getItemRef = useCallback(
+		(index: number) => (el: HTMLButtonElement | null) => {
+			if (el) itemRefs.current.set(index, el);
+			else itemRefs.current.delete(index);
+		},
+		[]
+	);
+
+	return {
+		highlightedIndex,
+		setHighlightedIndex,
+		scrollContainerRef,
+		getItemRef,
+		moveUp,
+		moveDown,
+		selectHighlighted,
+		goBack,
+	};
+}
diff --git a/surfsense_web/components/pricing/pricing-section.tsx b/surfsense_web/components/pricing/pricing-section.tsx
index b2eef2778..46ceee694 100644
--- a/surfsense_web/components/pricing/pricing-section.tsx
+++ b/surfsense_web/components/pricing/pricing-section.tsx
@@ -4,6 +4,7 @@ import { AnimatePresence, motion } from "motion/react";
 import type React from "react";
 import { useEffect, useRef, useState } from "react";
 import { Pricing } from "@/components/pricing";
+import { FAQJsonLd } from "@/components/seo/json-ld";
 import { Button } from "@/components/ui/button";
 import { cn } from "@/lib/utils";
 
@@ -19,6 +20,8 @@ const demoPlans = [
 			"500 pages included to start",
 			"$5 in premium credits for paid AI models and premium AI features",
 			"Includes access to OpenAI text, audio and image models",
+			"AI automations and agents: scheduled and event-triggered workflows",
+			"Desktop app: Quick, General and Screenshot Assist plus local folder sync",
 			"Realtime Collaborative Group Chats with teammates",
 			"Community support on Discord",
 		],
@@ -37,6 +40,7 @@ const demoPlans = [
 			"Everything in Free",
 			"Buy 1,000-page packs or $1 in premium credits at $1 each",
 			"Use premium AI models like GPT-5.4, Claude Sonnet 4.6, Gemini 2.5 Pro & 100+ more via OpenRouter",
+			"Connector write-back to Notion, Slack, Linear & Jira",
 			"Priority support on Discord",
 		],
 		description: "",
@@ -52,6 +56,7 @@ const demoPlans = [
 		billingText: "",
 		features: [
 			"Everything in Pay As You Go",
+			"Custom automation and agent workflows",
 			"On-prem or VPC deployment",
 			"Audit logs and compliance",
 			"SSO, OIDC & SAML",
@@ -158,6 +163,31 @@ const faqData: FAQSection[] = [
 			},
 		],
 	},
+	{
+		title: "Automations & Agents",
+		items: [
+			{
+				question: "What can AI automations and agents do?",
+				answer:
+					"AI automations let you run agents on your knowledge base without writing code. You can schedule recurring workflows like daily briefs, weekly status reports, and competitor analysis, or trigger an agent the moment a document lands in a folder. Agents can read across your connected tools, generate summaries and reports, and write results back to Notion, Slack, Linear, and Jira.",
+			},
+			{
+				question: "Do automations and agents cost extra?",
+				answer:
+					"No. There is no separate subscription or add-on fee for automations. Agents use the same page credits and premium credits as the rest of SurfSense. Indexing documents consumes page credits, and premium AI model usage during a workflow consumes premium credits at provider cost. If a workflow only uses free models, it does not touch your premium credits.",
+			},
+			{
+				question: "How do event-triggered automations work?",
+				answer:
+					"Event-triggered automations fire when something happens in your knowledge base, most commonly when a new document enters a folder you are watching. For example, when a PDF lands in your Research folder you can auto-generate a cited summary, or when an invoice is uploaded you can extract the vendor, total, and due date. The agent runs automatically and can post the result to your connected tools.",
+			},
+			{
+				question: "Can I build an automation without code?",
+				answer:
+					"Yes. You can describe the workflow automation you want in plain English in chat, and SurfSense builds the automation for you. For example, ask it to email you a summary of new Notion pages each morning, or post a weekly research digest to Slack, and it sets up the scheduled or event-triggered agent without any code.",
+			},
+		],
+	},
 	{
 		title: "Self-Hosting",
 		items: [
@@ -250,6 +280,7 @@ function PricingFAQ() {
 
 	return (
 		<div className="mx-auto w-full max-w-4xl overflow-hidden px-4 py-20 md:px-8 md:py-32">
+			<FAQJsonLd questions={faqData.flatMap((section) => section.items)} />
 			<div className="text-center">
 				<h2 className="text-4xl font-bold tracking-tight sm:text-5xl">
 					Frequently Asked Questions
@@ -341,7 +372,7 @@ function PricingBasic() {
 			<Pricing
 				plans={demoPlans}
 				title="SurfSense Pricing"
-				description="Start free with 500 pages & $5 in premium credits. Pay as you go."
+				description="Start free with 500 pages & $5 in premium credits. Run AI automations and agents, and pay as you go."
 			/>
 			<PricingFAQ />
 		</>
diff --git a/surfsense_web/components/seo/json-ld.tsx b/surfsense_web/components/seo/json-ld.tsx
index 03f3293c3..abfb49f0a 100644
--- a/surfsense_web/components/seo/json-ld.tsx
+++ b/surfsense_web/components/seo/json-ld.tsx
@@ -77,6 +77,9 @@ export function SoftwareApplicationJsonLd() {
 					"Free access to ChatGPT, Claude AI, and any AI model",
 					"AI-powered semantic search across all connected tools",
 					"Federated search across Slack, Google Drive, Notion, Confluence, GitHub",
+					"AI automations and agents (scheduled and event-triggered workflows)",
+					"Connector write-back to Notion, Slack, Linear, Jira",
+					"Native desktop app with Quick, General, and Screenshot Assist",
 					"No data limits with open source self-hosting",
 					"Real-time collaborative team chats",
 					"Document Q&A with citations",
diff --git a/surfsense_web/components/settings/general-settings-manager.tsx b/surfsense_web/components/settings/general-settings-manager.tsx
index 23398ad4d..a308acfad 100644
--- a/surfsense_web/components/settings/general-settings-manager.tsx
+++ b/surfsense_web/components/settings/general-settings-manager.tsx
@@ -12,9 +12,9 @@ import { Label } from "@/components/ui/label";
 import { Skeleton } from "@/components/ui/skeleton";
 import { searchSpacesApiService } from "@/lib/apis/search-spaces-api.service";
 import { authenticatedFetch } from "@/lib/auth-utils";
+import { BACKEND_URL } from "@/lib/env-config";
 import { cacheKeys } from "@/lib/query-client/cache-keys";
 import { Spinner } from "../ui/spinner";
-import { BACKEND_URL } from "@/lib/env-config";
 
 interface GeneralSettingsManagerProps {
 	searchSpaceId: number;
diff --git a/surfsense_web/components/settings/llm-role-manager.tsx b/surfsense_web/components/settings/llm-role-manager.tsx
index 17370b8f2..9af9eec27 100644
--- a/surfsense_web/components/settings/llm-role-manager.tsx
+++ b/surfsense_web/components/settings/llm-role-manager.tsx
@@ -11,7 +11,7 @@ import {
 	RefreshCw,
 	ScanEye,
 } from "lucide-react";
-import { useCallback, useState } from "react";
+import { useCallback, useEffect, useState } from "react";
 import { toast } from "sonner";
 import {
 	globalImageGenConfigsAtom,
@@ -135,18 +135,39 @@ export function LLMRoleManager({ searchSpaceId }: LLMRoleManagerProps) {
 
 	const { mutateAsync: updatePreferences } = useAtomValue(updateLLMPreferencesMutationAtom);
 
-	const [assignments, setAssignments] = useState(() => ({
-		agent_llm_id: preferences.agent_llm_id ?? "",
-		document_summary_llm_id: preferences.document_summary_llm_id ?? "",
-		image_generation_config_id: preferences.image_generation_config_id ?? "",
-		vision_llm_config_id: preferences.vision_llm_config_id ?? "",
+	const [assignments, setAssignments] = useState<Record<string, number | null>>(() => ({
+		agent_llm_id: preferences.agent_llm_id ?? null,
+		document_summary_llm_id: preferences.document_summary_llm_id ?? null,
+		image_generation_config_id: preferences.image_generation_config_id ?? null,
+		vision_llm_config_id: preferences.vision_llm_config_id ?? null,
 	}));
 
+	// Sync local state when preferences load/change. Without this, the selects
+	// stay on their initial (often empty) value while the query is in flight,
+	// so a saved assignment — including Auto mode (id 0) — never appears.
+	useEffect(() => {
+		setAssignments({
+			agent_llm_id: preferences.agent_llm_id ?? null,
+			document_summary_llm_id: preferences.document_summary_llm_id ?? null,
+			image_generation_config_id: preferences.image_generation_config_id ?? null,
+			vision_llm_config_id: preferences.vision_llm_config_id ?? null,
+		});
+	}, [
+		preferences.agent_llm_id,
+		preferences.document_summary_llm_id,
+		preferences.image_generation_config_id,
+		preferences.vision_llm_config_id,
+	]);
+
 	const [savingRole, setSavingRole] = useState<string | null>(null);
 
 	const handleRoleAssignment = useCallback(
 		async (prefKey: string, configId: string) => {
-			const value = configId === "unassigned" ? "" : parseInt(configId);
+			// "unassigned" clears the role (null). Every other option — including
+			// Auto mode, whose config id is 0 — must be sent as-is. Using a falsy
+			// check here (e.g. `value || undefined`) would drop id 0 and silently
+			// fail to persist Auto mode.
+			const value = configId === "unassigned" ? null : Number(configId);
 
 			setAssignments((prev) => ({ ...prev, [prefKey]: value }));
 			setSavingRole(prefKey);
@@ -154,7 +175,7 @@ export function LLMRoleManager({ searchSpaceId }: LLMRoleManagerProps) {
 			try {
 				await updatePreferences({
 					search_space_id: searchSpaceId,
-					data: { [prefKey]: value || undefined },
+					data: { [prefKey]: value },
 				});
 				toast.success("Role assignment updated");
 			} finally {
@@ -325,7 +346,7 @@ export function LLMRoleManager({ searchSpaceId }: LLMRoleManagerProps) {
 												Configuration
 											</Label>
 											<Select
-												value={isAssigned ? currentAssignment.toString() : "unassigned"}
+												value={assignedConfig ? assignedConfig.id.toString() : "unassigned"}
 												onValueChange={(value) => handleRoleAssignment(role.prefKey, value)}
 											>
 												<SelectTrigger className="w-full h-9 md:h-10 text-xs md:text-sm">
diff --git a/surfsense_web/components/settings/prompt-config-manager.tsx b/surfsense_web/components/settings/prompt-config-manager.tsx
index 871098bc9..997749a2a 100644
--- a/surfsense_web/components/settings/prompt-config-manager.tsx
+++ b/surfsense_web/components/settings/prompt-config-manager.tsx
@@ -1,37 +1,36 @@
 "use client";
 
 import { useQuery } from "@tanstack/react-query";
+import { useAtomValue } from "jotai";
 import { AlertTriangle, Info } from "lucide-react";
 import { useEffect, useState } from "react";
 import { toast } from "sonner";
+import { updateSearchSpaceMutationAtom } from "@/atoms/search-spaces/search-space-mutation.atoms";
 import { Alert, AlertDescription, AlertTitle } from "@/components/ui/alert";
 import { Button } from "@/components/ui/button";
 import { Label } from "@/components/ui/label";
 import { Skeleton } from "@/components/ui/skeleton";
 import { Textarea } from "@/components/ui/textarea";
 import { searchSpacesApiService } from "@/lib/apis/search-spaces-api.service";
-import { authenticatedFetch } from "@/lib/auth-utils";
 import { cacheKeys } from "@/lib/query-client/cache-keys";
 import { Spinner } from "../ui/spinner";
-import { BACKEND_URL } from "@/lib/env-config";
 
 interface PromptConfigManagerProps {
 	searchSpaceId: number;
 }
 
 export function PromptConfigManager({ searchSpaceId }: PromptConfigManagerProps) {
-	const {
-		data: searchSpace,
-		isLoading: loading,
-		refetch: fetchSearchSpace,
-	} = useQuery({
+	const { data: searchSpace, isLoading: loading } = useQuery({
 		queryKey: cacheKeys.searchSpaces.detail(searchSpaceId.toString()),
 		queryFn: () => searchSpacesApiService.getSearchSpace({ id: searchSpaceId }),
 		enabled: !!searchSpaceId,
 	});
 
+	const { mutateAsync: updateSearchSpace, isPending: isSaving } = useAtomValue(
+		updateSearchSpaceMutationAtom
+	);
+
 	const [customInstructions, setCustomInstructions] = useState("");
-	const [saving, setSaving] = useState(false);
 	const hasSearchSpace = !!searchSpace;
 	const searchSpaceInstructions = searchSpace?.qna_custom_instructions;
 
@@ -48,34 +47,15 @@ export function PromptConfigManager({ searchSpaceId }: PromptConfigManagerProps)
 
 	const handleSave = async () => {
 		try {
-			setSaving(true);
-
-			const payload = {
-				qna_custom_instructions: customInstructions.trim() || "",
-			};
-
-			const response = await authenticatedFetch(
-				`${BACKEND_URL}/api/v1/searchspaces/${searchSpaceId}`,
-				{
-					method: "PUT",
-					headers: { "Content-Type": "application/json" },
-					body: JSON.stringify(payload),
-				}
-			);
-
-			if (!response.ok) {
-				const errorData = await response.json().catch(() => ({}));
-				throw new Error(errorData.detail || "Failed to save system instructions");
-			}
-
+			await updateSearchSpace({
+				id: searchSpaceId,
+				data: { qna_custom_instructions: customInstructions.trim() || "" },
+			});
 			toast.success("System instructions saved successfully");
-
-			await fetchSearchSpace();
 		} catch (error: unknown) {
+			const message = error instanceof Error ? error.message : "Failed to save system instructions";
 			console.error("Error saving system instructions:", error);
-			toast.error(error instanceof Error ? error.message : "Failed to save system instructions");
-		} finally {
-			setSaving(false);
+			toast.error(message);
 		}
 	};
 
@@ -184,11 +164,11 @@ export function PromptConfigManager({ searchSpaceId }: PromptConfigManagerProps)
 					<Button
 						type="submit"
 						variant="outline"
-						disabled={!hasChanges || saving}
+						disabled={!hasChanges || isSaving}
 						className="gap-2 bg-white text-black hover:bg-accent hover:text-accent-foreground dark:bg-white dark:text-black"
 					>
-						{saving ? <Spinner size="sm" /> : null}
-						{saving ? "Saving" : "Save Instructions"}
+						{isSaving ? <Spinner size="sm" /> : null}
+						{isSaving ? "Saving" : "Save Instructions"}
 					</Button>
 				</div>
 			</form>
diff --git a/surfsense_web/components/settings/roles-manager.tsx b/surfsense_web/components/settings/roles-manager.tsx
index ee32f6e69..5c034470d 100644
--- a/surfsense_web/components/settings/roles-manager.tsx
+++ b/surfsense_web/components/settings/roles-manager.tsx
@@ -23,10 +23,11 @@ import {
 	Unplug,
 	Users,
 	Video,
+	Workflow,
 } from "lucide-react";
 import { useCallback, useEffect, useMemo, useState } from "react";
 import { toast } from "sonner";
-import { myAccessAtom } from "@/atoms/members/members-query.atoms";
+import { canPerform, myAccessAtom } from "@/atoms/members/members-query.atoms";
 import { permissionsAtom } from "@/atoms/permissions/permissions-query.atoms";
 import {
 	createRoleMutationAtom,
@@ -126,6 +127,12 @@ const CATEGORY_CONFIG: Record<
 		description: "Generate AI podcasts from content",
 		order: 5,
 	},
+	automations: {
+		label: "Automations",
+		icon: Workflow,
+		description: "Scheduled and event-driven agent tasks",
+		order: 5.5,
+	},
 	connectors: {
 		label: "Connectors",
 		icon: Unplug,
@@ -200,6 +207,10 @@ const ROLE_PRESETS = {
 			"podcasts:create",
 			"podcasts:read",
 			"podcasts:update",
+			"automations:create",
+			"automations:read",
+			"automations:update",
+			"automations:execute",
 			"connectors:create",
 			"connectors:read",
 			"connectors:update",
@@ -220,6 +231,7 @@ const ROLE_PRESETS = {
 			"comments:read",
 			"llm_configs:read",
 			"podcasts:read",
+			"automations:read",
 			"connectors:read",
 			"logs:read",
 			"members:view",
@@ -240,6 +252,10 @@ const ROLE_PRESETS = {
 			"comments:read",
 			"llm_configs:read",
 			"podcasts:read",
+			"automations:create",
+			"automations:read",
+			"automations:update",
+			"automations:execute",
 			"connectors:read",
 			"logs:read",
 			"members:view",
@@ -257,11 +273,7 @@ export function RolesManager({ searchSpaceId }: { searchSpaceId: number }) {
 	const { data: access = null } = useAtomValue(myAccessAtom);
 
 	const hasPermission = useCallback(
-		(permission: string) => {
-			if (!access) return false;
-			if (access.is_owner) return true;
-			return access.permissions?.includes(permission) ?? false;
-		},
+		(permission: string) => canPerform(access, permission),
 		[access]
 	);
 
diff --git a/surfsense_web/components/tool-ui/automation/automation-draft-preview.tsx b/surfsense_web/components/tool-ui/automation/automation-draft-preview.tsx
new file mode 100644
index 000000000..b0b5c8f78
--- /dev/null
+++ b/surfsense_web/components/tool-ui/automation/automation-draft-preview.tsx
@@ -0,0 +1,183 @@
+"use client";
+import { CalendarClock, ChevronDown, ChevronRight, ListOrdered, Target } from "lucide-react";
+import { useState } from "react";
+import { describeCron } from "@/lib/automations/describe-cron";
+
+interface DraftTrigger {
+	type: string;
+	params: Record<string, unknown>;
+	static_inputs: Record<string, unknown>;
+	enabled: boolean;
+}
+
+interface DraftPlanStep {
+	step_id: string;
+	action: string;
+	when?: string | null;
+}
+
+interface AutomationDraft {
+	name: string;
+	description?: string | null;
+	definition: {
+		goal?: string | null;
+		plan: DraftPlanStep[];
+	};
+	triggers: DraftTrigger[];
+}
+
+interface AutomationDraftPreviewProps {
+	draft: AutomationDraft;
+	/** Full unmodified args dict — surfaced as the "raw JSON" escape hatch. */
+	raw: Record<string, unknown>;
+}
+
+/**
+ * Structured preview of a drafted automation rendered inside the chat
+ * approval card.
+ *
+ * Three layers, top to bottom:
+ *   1. Name + description (and goal when present).
+ *   2. Triggers — humanised cron string + timezone + static_inputs hint.
+ *   3. Plan steps — ordered list of ``step_id → action``.
+ *
+ * A "View raw JSON" toggle reveals the full payload for power users who
+ * want to inspect every field; it's collapsed by default so the card
+ * stays scannable for the common case.
+ */
+export function AutomationDraftPreview({ draft, raw }: AutomationDraftPreviewProps) {
+	const [showRaw, setShowRaw] = useState(false);
+
+	return (
+		<div className="space-y-4 text-sm">
+			<div className="space-y-1">
+				<p className="font-medium text-foreground">{draft.name}</p>
+				{draft.description && <p className="text-xs text-muted-foreground">{draft.description}</p>}
+			</div>
+
+			{draft.definition.goal && (
+				<Section icon={Target} label="Goal">
+					<p className="text-xs text-foreground">{draft.definition.goal}</p>
+				</Section>
+			)}
+
+			<Section icon={CalendarClock} label={`Triggers · ${draft.triggers.length}`}>
+				{draft.triggers.length === 0 ? (
+					<p className="text-xs text-muted-foreground">
+						No triggers — automation will need one before it can run.
+					</p>
+				) : (
+					<ul className="space-y-1.5">
+						{draft.triggers.map((trigger) => (
+							<li
+								key={triggerKey(trigger)}
+								className="rounded-md border border-border/60 bg-background/50 px-3 py-2 text-xs"
+							>
+								<TriggerLine trigger={trigger} />
+							</li>
+						))}
+					</ul>
+				)}
+			</Section>
+
+			<Section
+				icon={ListOrdered}
+				label={`Plan · ${draft.definition.plan.length} step${draft.definition.plan.length === 1 ? "" : "s"}`}
+			>
+				<ol className="space-y-1 text-xs">
+					{draft.definition.plan.map((step, idx) => (
+						<li key={step.step_id} className="flex items-start gap-2">
+							<span className="inline-flex h-4 w-4 items-center justify-center rounded-full bg-muted text-[10px] font-medium text-muted-foreground shrink-0 mt-0.5">
+								{idx + 1}
+							</span>
+							<div className="min-w-0">
+								<span className="font-medium text-foreground">{step.step_id}</span>
+								<span className="text-muted-foreground"> → </span>
+								<code className="font-mono text-muted-foreground">{step.action}</code>
+								{step.when && <span className="ml-2 text-muted-foreground">when {step.when}</span>}
+							</div>
+						</li>
+					))}
+				</ol>
+			</Section>
+
+			<button
+				type="button"
+				onClick={() => setShowRaw((value) => !value)}
+				className="inline-flex items-center gap-1 text-xs text-muted-foreground hover:text-foreground"
+			>
+				{showRaw ? (
+					<ChevronDown className="h-3 w-3" aria-hidden />
+				) : (
+					<ChevronRight className="h-3 w-3" aria-hidden />
+				)}
+				{showRaw ? "Hide raw JSON" : "View raw JSON"}
+			</button>
+			{showRaw && (
+				<pre className="rounded-md bg-muted/40 px-3 py-2 text-[11px] font-mono text-foreground overflow-x-auto whitespace-pre-wrap break-words max-h-72">
+					{JSON.stringify(raw, null, 2)}
+				</pre>
+			)}
+		</div>
+	);
+}
+
+/**
+ * Stable key derived from the trigger's identifying fields. Drafts are
+ * static snapshots so collisions only happen if the LLM emits two literally
+ * identical triggers — harmless in practice.
+ */
+function triggerKey(trigger: DraftTrigger): string {
+	const cron = typeof trigger.params.cron === "string" ? trigger.params.cron : "";
+	const tz = typeof trigger.params.timezone === "string" ? trigger.params.timezone : "";
+	return `${trigger.type}|${cron}|${tz}`;
+}
+
+function TriggerLine({ trigger }: { trigger: DraftTrigger }) {
+	if (trigger.type === "schedule") {
+		const cron = typeof trigger.params.cron === "string" ? trigger.params.cron : undefined;
+		const tz = typeof trigger.params.timezone === "string" ? trigger.params.timezone : "UTC";
+		const human = cron ? describeCron(cron) : "Schedule";
+		const staticKeys = Object.keys(trigger.static_inputs ?? {});
+		return (
+			<div className="space-y-1">
+				<div className="flex items-center gap-2 flex-wrap">
+					<span className="font-medium text-foreground">{human}</span>
+					<span className="text-muted-foreground">· {tz}</span>
+					{!trigger.enabled && (
+						<span className="rounded-md border border-border/60 px-1.5 py-0.5 text-[10px] text-muted-foreground">
+							Disabled
+						</span>
+					)}
+				</div>
+				{cron && <code className="font-mono text-muted-foreground">{cron}</code>}
+				{staticKeys.length > 0 && (
+					<p className="text-muted-foreground">
+						Static inputs: <span className="text-foreground">{staticKeys.join(", ")}</span>
+					</p>
+				)}
+			</div>
+		);
+	}
+	return <span className="capitalize text-foreground">{trigger.type}</span>;
+}
+
+function Section({
+	icon: Icon,
+	label,
+	children,
+}: {
+	icon: typeof Target;
+	label: string;
+	children: React.ReactNode;
+}) {
+	return (
+		<div className="space-y-1.5">
+			<div className="flex items-center gap-1.5 text-[11px] font-medium text-muted-foreground uppercase tracking-wider">
+				<Icon className="h-3 w-3" aria-hidden />
+				{label}
+			</div>
+			{children}
+		</div>
+	);
+}
diff --git a/surfsense_web/components/tool-ui/automation/create-automation.tsx b/surfsense_web/components/tool-ui/automation/create-automation.tsx
new file mode 100644
index 000000000..d4cc0ec4d
--- /dev/null
+++ b/surfsense_web/components/tool-ui/automation/create-automation.tsx
@@ -0,0 +1,562 @@
+"use client";
+
+import type { ToolCallMessagePartProps } from "@assistant-ui/react";
+import { useAtomValue } from "jotai";
+import { AlertCircle, CornerDownLeftIcon, ExternalLink, Pencil, Workflow } from "lucide-react";
+import Link from "next/link";
+import { useCallback, useEffect, useMemo, useRef, useState } from "react";
+import {
+	AutomationModelFields,
+	type AutomationModelSelection,
+} from "@/app/dashboard/[search_space_id]/automations/components/builder/automation-model-fields";
+import { activeSearchSpaceIdAtom } from "@/atoms/search-spaces/search-space-query.atoms";
+import { JsonView } from "@/components/json-view";
+import { TextShimmerLoader } from "@/components/prompt-kit/loader";
+import { Button } from "@/components/ui/button";
+import { automationCreateRequest } from "@/contracts/types/automation.types";
+import type { HitlDecision, InterruptResult } from "@/features/chat-messages/hitl";
+import { isInterruptResult, useHitlDecision, useHitlPhase } from "@/features/chat-messages/hitl";
+import { useAutomationEligibleModels } from "@/hooks/use-automation-eligible-models";
+import {
+	trackAutomationChatApproved,
+	trackAutomationChatCreateFailed,
+	trackAutomationChatCreateSucceeded,
+	trackAutomationChatDraftEdited,
+	trackAutomationChatRejected,
+} from "@/lib/posthog/events";
+import { AutomationDraftPreview } from "./automation-draft-preview";
+
+const editArgsSchema = automationCreateRequest.omit({ search_space_id: true });
+
+// ----------------------------------------------------------------------------
+// Result discrimination — mirrors the backend return shapes in
+// app/agents/multi_agent_chat/main_agent/tools/automation/create.py.
+// ----------------------------------------------------------------------------
+
+type AutomationCreateContext = {
+	search_space_id?: number;
+};
+
+interface SavedResult {
+	status: "saved";
+	automation_id: number;
+	name: string;
+}
+
+interface RejectedResult {
+	status: "rejected";
+	message?: string;
+}
+
+interface InvalidResult {
+	status: "invalid";
+	issues: string[];
+	raw?: unknown;
+}
+
+interface ErrorResult {
+	status: "error";
+	message: string;
+}
+
+type CreateAutomationResult =
+	| InterruptResult<AutomationCreateContext>
+	| SavedResult
+	| RejectedResult
+	| InvalidResult
+	| ErrorResult;
+
+function hasStatus(value: unknown, status: string): boolean {
+	return (
+		typeof value === "object" &&
+		value !== null &&
+		"status" in value &&
+		(value as { status: unknown }).status === status
+	);
+}
+
+// ----------------------------------------------------------------------------
+// Approval card — pending → processing → complete / rejected.
+//
+// Edit toggle reuses the same primitives as the Create-via-JSON page: raw
+// textarea, Format, Zod validation against ``AutomationCreate`` (minus the
+// ``search_space_id`` field, which the backend injects). Approve dispatches
+// an ``edit`` decision with the parsed args when edits are pending, otherwise
+// a plain ``approve``. Multi-turn chat refinement still works as a fallback.
+// ----------------------------------------------------------------------------
+
+interface ApprovalCardProps {
+	args: Record<string, unknown>;
+	interruptData: InterruptResult<AutomationCreateContext>;
+	onDecision: (decision: HitlDecision) => void;
+}
+
+function ApprovalCard({ args, interruptData, onDecision }: ApprovalCardProps) {
+	const { phase, setProcessing, setRejected } = useHitlPhase(interruptData);
+
+	const reviewConfig = interruptData.review_configs[0];
+	const allowedDecisions = reviewConfig?.allowed_decisions ?? ["approve", "reject"];
+	const canApprove = allowedDecisions.includes("approve");
+	const canReject = allowedDecisions.includes("reject");
+	const canEdit = allowedDecisions.includes("edit");
+
+	const [pendingEdits, setPendingEdits] = useState<Record<string, unknown> | null>(null);
+	const [isEditing, setIsEditing] = useState(false);
+
+	const effectiveArgs = pendingEdits ?? args;
+	const draft = useMemo(() => extractDraft(effectiveArgs), [effectiveArgs]);
+
+	// Per-automation model selection. The card always supplies models (chosen
+	// here, not snapshotted from the search space), so Approve dispatches an
+	// `edit` decision carrying `definition.models`.
+	const searchSpaceId = useAtomValue(activeSearchSpaceIdAtom);
+	const eligibleModels = useAutomationEligibleModels();
+	const [modelSelection, setModelSelection] = useState<AutomationModelSelection>({
+		agentLlmId: 0,
+		imageConfigId: 0,
+		visionConfigId: 0,
+	});
+	// Resolve each slot during render: an explicit pick wins, else the eligible
+	// default. No effect seeds async hook data into state.
+	const resolvedModels = useMemo<AutomationModelSelection>(
+		() => ({
+			agentLlmId: modelSelection.agentLlmId || eligibleModels.llm.defaultId || 0,
+			imageConfigId: modelSelection.imageConfigId || eligibleModels.image.defaultId || 0,
+			visionConfigId: modelSelection.visionConfigId || eligibleModels.vision.defaultId || 0,
+		}),
+		[
+			modelSelection,
+			eligibleModels.llm.defaultId,
+			eligibleModels.image.defaultId,
+			eligibleModels.vision.defaultId,
+		]
+	);
+	const modelsResolved =
+		resolvedModels.agentLlmId !== 0 &&
+		resolvedModels.imageConfigId !== 0 &&
+		resolvedModels.visionConfigId !== 0;
+
+	const handleApprove = useCallback(() => {
+		if (phase !== "pending" || !canApprove || isEditing || !modelsResolved) return;
+		setProcessing();
+		const baseArgs = pendingEdits ?? args;
+		const baseDefinition = (baseArgs.definition ?? {}) as Record<string, unknown>;
+		const mergedArgs = {
+			...baseArgs,
+			definition: {
+				...baseDefinition,
+				models: {
+					agent_llm_id: resolvedModels.agentLlmId,
+					image_generation_config_id: resolvedModels.imageConfigId,
+					vision_llm_config_id: resolvedModels.visionConfigId,
+				},
+			},
+		};
+		const plan = Array.isArray(baseDefinition.plan) ? baseDefinition.plan : [];
+		const triggers = Array.isArray(baseArgs.triggers) ? baseArgs.triggers : [];
+		trackAutomationChatApproved({
+			search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+			edited: pendingEdits !== null,
+			task_count: plan.length,
+			trigger_type:
+				(triggers[0] as { type?: string } | undefined)?.type ??
+				(triggers.length ? undefined : "none"),
+			agent_llm_id: resolvedModels.agentLlmId,
+			image_generation_config_id: resolvedModels.imageConfigId,
+			vision_llm_config_id: resolvedModels.visionConfigId,
+		});
+		onDecision({
+			type: "edit",
+			edited_action: {
+				name: interruptData.action_requests[0]?.name ?? "create_automation",
+				args: mergedArgs,
+			},
+		});
+	}, [
+		phase,
+		canApprove,
+		isEditing,
+		modelsResolved,
+		setProcessing,
+		onDecision,
+		interruptData,
+		args,
+		pendingEdits,
+		resolvedModels,
+		searchSpaceId,
+	]);
+
+	const handleReject = useCallback(() => {
+		if (phase !== "pending" || !canReject || isEditing) return;
+		setRejected();
+		trackAutomationChatRejected({
+			search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+		});
+		onDecision({ type: "reject", message: "User rejected the automation draft." });
+	}, [phase, canReject, isEditing, setRejected, onDecision, searchSpaceId]);
+
+	useEffect(() => {
+		if (isEditing) return;
+		const handler = (e: KeyboardEvent) => {
+			if (e.key === "Enter" && !e.shiftKey && !e.ctrlKey && !e.metaKey) {
+				handleApprove();
+			}
+		};
+		window.addEventListener("keydown", handler);
+		return () => window.removeEventListener("keydown", handler);
+	}, [handleApprove, isEditing]);
+
+	return (
+		<div className="my-4 max-w-lg overflow-hidden rounded-2xl border bg-muted/30 transition-[box-shadow] duration-300">
+			<div className="flex items-start justify-between gap-3 px-5 pt-5 pb-4 select-none">
+				<div className="flex items-start gap-3 min-w-0">
+					<Workflow className="h-5 w-5 text-muted-foreground mt-0.5 shrink-0" aria-hidden />
+					<div className="min-w-0">
+						<p className="text-sm font-semibold text-foreground">
+							{phase === "rejected"
+								? "Automation cancelled"
+								: phase === "processing"
+									? "Saving automation"
+									: phase === "complete"
+										? "Automation saved"
+										: "Create automation"}
+						</p>
+						{phase === "processing" ? (
+							<TextShimmerLoader
+								text={pendingEdits ? "Saving with your edits" : "Saving automation"}
+								size="sm"
+							/>
+						) : phase === "complete" ? (
+							<p className="text-xs text-muted-foreground mt-0.5">
+								{pendingEdits
+									? "Automation saved with your edits"
+									: "Automation created from this draft"}
+							</p>
+						) : phase === "rejected" ? (
+							<p className="text-xs text-muted-foreground mt-0.5">
+								No automation was saved — ask in chat to refine and try again.
+							</p>
+						) : (
+							<p className="text-xs text-muted-foreground mt-0.5">
+								{pendingEdits
+									? "Showing your edits. Approve to save, or edit again."
+									: "Review and approve to save. Edit for fine-tuning, or reply in chat for a redraft."}
+							</p>
+						)}
+					</div>
+				</div>
+				{phase === "pending" && canEdit && !isEditing && (
+					<Button
+						size="sm"
+						variant="ghost"
+						className="rounded-lg text-muted-foreground -mt-1 -mr-2 shrink-0"
+						onClick={() => setIsEditing(true)}
+					>
+						<Pencil className="size-3.5" />
+						Edit
+					</Button>
+				)}
+			</div>
+
+			<div className="mx-5 h-px bg-border/50" />
+			<div className="px-5 py-4">
+				{isEditing ? (
+					<JsonEditor
+						initialValue={effectiveArgs}
+						onSave={(parsed) => {
+							setPendingEdits(parsed);
+							setIsEditing(false);
+							trackAutomationChatDraftEdited({
+								search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+							});
+						}}
+						onCancel={() => setIsEditing(false)}
+					/>
+				) : (
+					<AutomationDraftPreview draft={draft} raw={effectiveArgs} />
+				)}
+			</div>
+
+			{phase === "pending" && !isEditing && (
+				<>
+					<div className="mx-5 h-px bg-border/50" />
+					<div className="px-5 py-4">
+						<p className="mb-3 text-xs font-medium text-foreground">Models</p>
+						<AutomationModelFields
+							searchSpaceId={Number(searchSpaceId)}
+							value={resolvedModels}
+							onChange={(patch) => setModelSelection((prev) => ({ ...prev, ...patch }))}
+						/>
+					</div>
+					<div className="mx-5 h-px bg-border/50" />
+					<div className="px-5 py-4 flex items-center gap-2 select-none">
+						{canApprove && (
+							<Button
+								size="sm"
+								className="rounded-lg gap-1.5"
+								disabled={!modelsResolved}
+								onClick={handleApprove}
+							>
+								Approve
+								<CornerDownLeftIcon className="size-3 opacity-60" />
+							</Button>
+						)}
+						{canReject && (
+							<Button
+								size="sm"
+								variant="ghost"
+								className="rounded-lg text-muted-foreground"
+								onClick={handleReject}
+							>
+								Reject
+							</Button>
+						)}
+					</div>
+				</>
+			)}
+		</div>
+	);
+}
+
+interface JsonEditorProps {
+	initialValue: Record<string, unknown>;
+	onSave: (parsed: Record<string, unknown>) => void;
+	onCancel: () => void;
+}
+
+function JsonEditor({ initialValue, onSave, onCancel }: JsonEditorProps) {
+	const [value, setValue] = useState<Record<string, unknown>>(initialValue);
+	const [issues, setIssues] = useState<string[]>([]);
+
+	function handleSave() {
+		setIssues([]);
+		const result = editArgsSchema.safeParse(value);
+		if (!result.success) {
+			setIssues(
+				result.error.issues.map((issue) => `${issue.path.join(".") || "(root)"}: ${issue.message}`)
+			);
+			return;
+		}
+		onSave(result.data as unknown as Record<string, unknown>);
+	}
+
+	return (
+		<div className="space-y-3">
+			<div className="rounded-md border border-input bg-background px-3 py-2 max-h-[24rem] overflow-auto">
+				<JsonView
+					src={value}
+					editable
+					onChange={(next) => setValue(next as Record<string, unknown>)}
+					collapsed={false}
+				/>
+			</div>
+			{issues.length > 0 && (
+				<div className="rounded-md border border-destructive/30 bg-destructive/5 px-3 py-2">
+					<div className="flex items-center gap-1.5 text-xs font-medium text-destructive">
+						<AlertCircle className="h-3.5 w-3.5" aria-hidden />
+						{issues.length} issue{issues.length === 1 ? "" : "s"}
+					</div>
+					<ul className="mt-1.5 space-y-0.5 text-xs text-destructive/90 list-disc list-inside">
+						{issues.map((issue) => (
+							<li key={issue} className="font-mono">
+								{issue}
+							</li>
+						))}
+					</ul>
+				</div>
+			)}
+			<div className="flex items-center justify-end gap-2">
+				<Button type="button" variant="ghost" size="sm" onClick={onCancel}>
+					Cancel
+				</Button>
+				<Button type="button" size="sm" onClick={handleSave}>
+					Save edits
+				</Button>
+			</div>
+		</div>
+	);
+}
+
+// ----------------------------------------------------------------------------
+// Terminal result cards.
+// ----------------------------------------------------------------------------
+
+function SavedCard({ result }: { result: SavedResult }) {
+	const searchSpaceId = useAtomValue(activeSearchSpaceIdAtom);
+	const tracked = useRef(false);
+	useEffect(() => {
+		if (tracked.current) return;
+		tracked.current = true;
+		trackAutomationChatCreateSucceeded({
+			automation_id: result.automation_id,
+			name: result.name,
+			search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+		});
+	}, [result.automation_id, result.name, searchSpaceId]);
+
+	const detailHref = searchSpaceId
+		? `/dashboard/${searchSpaceId}/automations/${result.automation_id}`
+		: null;
+
+	return (
+		<div className="my-4 max-w-lg overflow-hidden rounded-2xl border bg-muted/30 select-none">
+			<div className="flex items-start gap-3 px-5 pt-5 pb-4">
+				<Workflow className="h-5 w-5 text-muted-foreground mt-0.5 shrink-0" aria-hidden />
+				<div className="min-w-0">
+					<p className="text-sm font-semibold text-foreground">Automation saved</p>
+					<p className="text-xs text-muted-foreground mt-0.5">{result.name}</p>
+				</div>
+			</div>
+			{detailHref && (
+				<>
+					<div className="mx-5 h-px bg-border/50" />
+					<div className="px-5 py-3">
+						<Link
+							href={detailHref}
+							className="inline-flex items-center gap-1.5 text-xs text-primary hover:underline"
+						>
+							<ExternalLink className="h-3.5 w-3.5" aria-hidden />
+							Open automation #{result.automation_id}
+						</Link>
+					</div>
+				</>
+			)}
+		</div>
+	);
+}
+
+function InvalidCard({ result }: { result: InvalidResult }) {
+	const searchSpaceId = useAtomValue(activeSearchSpaceIdAtom);
+	const tracked = useRef(false);
+	useEffect(() => {
+		if (tracked.current) return;
+		tracked.current = true;
+		trackAutomationChatCreateFailed({
+			reason: "invalid",
+			issue_count: result.issues.length,
+			search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+		});
+	}, [result.issues.length, searchSpaceId]);
+
+	return (
+		<div className="my-4 max-w-lg overflow-hidden rounded-2xl border bg-muted/30 select-none">
+			<div className="px-5 pt-5 pb-4">
+				<p className="text-sm font-semibold text-destructive">Couldn't draft this automation</p>
+				<p className="text-xs text-muted-foreground mt-0.5">
+					The drafter produced output that didn't validate. I'll refine and retry.
+				</p>
+			</div>
+			{result.issues.length > 0 && (
+				<>
+					<div className="mx-5 h-px bg-border/50" />
+					<ul className="px-5 py-3 space-y-1 text-xs text-muted-foreground list-disc list-inside">
+						{result.issues.map((issue) => (
+							<li key={issue}>{issue}</li>
+						))}
+					</ul>
+				</>
+			)}
+		</div>
+	);
+}
+
+function ErrorCard({ result }: { result: ErrorResult }) {
+	const searchSpaceId = useAtomValue(activeSearchSpaceIdAtom);
+	const tracked = useRef(false);
+	useEffect(() => {
+		if (tracked.current) return;
+		tracked.current = true;
+		trackAutomationChatCreateFailed({
+			reason: "error",
+			message: result.message,
+			search_space_id: searchSpaceId ? Number(searchSpaceId) : undefined,
+		});
+	}, [result.message, searchSpaceId]);
+
+	return (
+		<div className="my-4 max-w-lg overflow-hidden rounded-2xl border bg-muted/30 select-none">
+			<div className="px-5 pt-5 pb-4">
+				<p className="text-sm font-semibold text-destructive">Failed to create automation</p>
+			</div>
+			<div className="mx-5 h-px bg-border/50" />
+			<div className="px-5 py-4">
+				<p className="text-sm text-muted-foreground">{result.message}</p>
+			</div>
+		</div>
+	);
+}
+
+// ----------------------------------------------------------------------------
+// Entry — dispatches between the approval card and terminal result cards.
+//
+// Rejection is special: we hide the standalone "rejected" card because the
+// approval card itself already transitions to a "rejected" phase inline. A
+// second message in the timeline would be noisy.
+// ----------------------------------------------------------------------------
+
+export const CreateAutomationToolUI = ({
+	args,
+	result,
+}: ToolCallMessagePartProps<{ intent: string }, CreateAutomationResult>) => {
+	const { dispatch } = useHitlDecision();
+
+	if (!result) return null;
+
+	if (isInterruptResult(result)) {
+		return (
+			<ApprovalCard
+				args={args as unknown as Record<string, unknown>}
+				interruptData={result as InterruptResult<AutomationCreateContext>}
+				onDecision={(decision) => dispatch([decision])}
+			/>
+		);
+	}
+
+	if (hasStatus(result, "rejected")) return null;
+	if (hasStatus(result, "saved")) return <SavedCard result={result as SavedResult} />;
+	if (hasStatus(result, "invalid")) return <InvalidCard result={result as InvalidResult} />;
+	if (hasStatus(result, "error")) return <ErrorCard result={result as ErrorResult} />;
+
+	return null;
+};
+
+// ----------------------------------------------------------------------------
+// Helpers.
+// ----------------------------------------------------------------------------
+
+/**
+ * Project raw args into the shape ``AutomationDraftPreview`` expects.
+ *
+ * The args dict is the full ``AutomationCreate`` payload (minus
+ * ``search_space_id`` which is injected server-side), so we trust the
+ * top-level fields but defend against missing nested defaults.
+ */
+function extractDraft(args: Record<string, unknown>) {
+	const definition = (args.definition ?? {}) as Record<string, unknown>;
+	const planSteps = Array.isArray(definition.plan)
+		? (definition.plan as Array<Record<string, unknown>>).map((step) => ({
+				step_id: String(step.step_id ?? "(unnamed)"),
+				action: String(step.action ?? ""),
+				when: typeof step.when === "string" ? step.when : null,
+			}))
+		: [];
+
+	const triggers = Array.isArray(args.triggers)
+		? (args.triggers as Array<Record<string, unknown>>).map((trigger) => ({
+				type: String(trigger.type ?? "schedule"),
+				params: (trigger.params ?? {}) as Record<string, unknown>,
+				static_inputs: (trigger.static_inputs ?? {}) as Record<string, unknown>,
+				enabled: trigger.enabled !== false,
+			}))
+		: [];
+
+	return {
+		name: String(args.name ?? "(unnamed automation)"),
+		description: typeof args.description === "string" ? args.description : null,
+		definition: {
+			goal: typeof definition.goal === "string" ? definition.goal : null,
+			plan: planSteps,
+		},
+		triggers,
+	};
+}
diff --git a/surfsense_web/components/tool-ui/automation/index.ts b/surfsense_web/components/tool-ui/automation/index.ts
new file mode 100644
index 000000000..50cf1a478
--- /dev/null
+++ b/surfsense_web/components/tool-ui/automation/index.ts
@@ -0,0 +1 @@
+export { CreateAutomationToolUI } from "./create-automation";
diff --git a/surfsense_web/components/tool-ui/generate-podcast.tsx b/surfsense_web/components/tool-ui/generate-podcast.tsx
index 866c0082d..2a62785e8 100644
--- a/surfsense_web/components/tool-ui/generate-podcast.tsx
+++ b/surfsense_web/components/tool-ui/generate-podcast.tsx
@@ -16,6 +16,7 @@ import { baseApiService } from "@/lib/apis/base-api.service";
 import { authenticatedFetch } from "@/lib/auth-utils";
 import { clearActivePodcastTaskId, setActivePodcastTaskId } from "@/lib/chat/podcast-state";
 import { BACKEND_URL } from "@/lib/env-config";
+
 /**
  * Zod schemas for runtime validation
  */
@@ -193,10 +194,10 @@ function PodcastPlayer({
 				} else {
 					// Authenticated view - fetch audio and details in parallel
 					const [audioResponse, details] = await Promise.all([
-						authenticatedFetch(
-							`${BACKEND_URL}/api/v1/podcasts/${podcastId}/audio`,
-							{ method: "GET", signal: controller.signal }
-						),
+						authenticatedFetch(`${BACKEND_URL}/api/v1/podcasts/${podcastId}/audio`, {
+							method: "GET",
+							signal: controller.signal,
+						}),
 						baseApiService.get<unknown>(`/api/v1/podcasts/${podcastId}`),
 					]);
 
diff --git a/surfsense_web/components/tool-ui/index.ts b/surfsense_web/components/tool-ui/index.ts
index 4d885a38c..ee5072dad 100644
--- a/surfsense_web/components/tool-ui/index.ts
+++ b/surfsense_web/components/tool-ui/index.ts
@@ -7,6 +7,7 @@
  */
 
 export { Audio } from "./audio";
+export { CreateAutomationToolUI } from "./automation";
 export { CreateDropboxFileToolUI, DeleteDropboxFileToolUI } from "./dropbox";
 export {
 	type GenerateImageArgs,
diff --git a/surfsense_web/components/tool-ui/video-presentation/generate-video-presentation.tsx b/surfsense_web/components/tool-ui/video-presentation/generate-video-presentation.tsx
index 00f9db23f..1db8dabb0 100644
--- a/surfsense_web/components/tool-ui/video-presentation/generate-video-presentation.tsx
+++ b/surfsense_web/components/tool-ui/video-presentation/generate-video-presentation.tsx
@@ -10,6 +10,7 @@ import { TextShimmerLoader } from "@/components/prompt-kit/loader";
 import { Button } from "@/components/ui/button";
 import { baseApiService } from "@/lib/apis/base-api.service";
 import { authenticatedFetch } from "@/lib/auth-utils";
+import { BACKEND_URL } from "@/lib/env-config";
 import { compileCheck, compileToComponent } from "@/lib/remotion/compile-check";
 import { FPS } from "@/lib/remotion/constants";
 import {
@@ -19,7 +20,6 @@ import {
 	type CompiledSlide,
 } from "./combined-player";
 import { getPptxExportErrorToast, getVideoDownloadErrorToast } from "./errors";
-import { BACKEND_URL } from "@/lib/env-config";
 
 const GenerateVideoPresentationArgsSchema = z.object({
 	source_content: z.string(),
diff --git a/surfsense_web/components/ui/button.tsx b/surfsense_web/components/ui/button.tsx
index 66d8e231c..f7fb1f045 100644
--- a/surfsense_web/components/ui/button.tsx
+++ b/surfsense_web/components/ui/button.tsx
@@ -14,7 +14,7 @@ const buttonVariants = cva(
 					"bg-destructive text-white shadow-xs hover:bg-destructive/90 focus-visible:ring-destructive/20 dark:focus-visible:ring-destructive/40",
 				outline:
 					"border border-input bg-background shadow-xs hover:bg-accent hover:text-accent-foreground",
-				secondary: "bg-secondary text-secondary-foreground shadow-xs hover:bg-secondary/80",
+				secondary: "bg-accent text-accent-foreground shadow-xs hover:bg-accent/80",
 				ghost:
 					"hover:bg-accent hover:text-accent-foreground focus-visible:ring-0 focus-visible:ring-offset-0",
 				link: "text-primary underline-offset-4 hover:underline",
diff --git a/surfsense_web/components/ui/empty.tsx b/surfsense_web/components/ui/empty.tsx
new file mode 100644
index 000000000..79145502f
--- /dev/null
+++ b/surfsense_web/components/ui/empty.tsx
@@ -0,0 +1,94 @@
+import { cva, type VariantProps } from "class-variance-authority";
+
+import { cn } from "@/lib/utils";
+
+function Empty({ className, ...props }: React.ComponentProps<"div">) {
+	return (
+		<div
+			data-slot="empty"
+			className={cn(
+				"flex min-w-0 flex-1 flex-col items-center justify-center gap-6 rounded-lg border-dashed p-6 text-center text-balance md:p-12",
+				className
+			)}
+			{...props}
+		/>
+	);
+}
+
+function EmptyHeader({ className, ...props }: React.ComponentProps<"div">) {
+	return (
+		<div
+			data-slot="empty-header"
+			className={cn("flex max-w-sm flex-col items-center gap-2 text-center", className)}
+			{...props}
+		/>
+	);
+}
+
+const emptyMediaVariants = cva(
+	"mb-2 flex shrink-0 items-center justify-center [&_svg]:pointer-events-none [&_svg]:shrink-0",
+	{
+		variants: {
+			variant: {
+				default: "bg-transparent",
+				icon: "flex size-10 shrink-0 items-center justify-center rounded-lg bg-muted text-foreground [&_svg:not([class*='size-'])]:size-6",
+			},
+		},
+		defaultVariants: {
+			variant: "default",
+		},
+	}
+);
+
+function EmptyMedia({
+	className,
+	variant = "default",
+	...props
+}: React.ComponentProps<"div"> & VariantProps<typeof emptyMediaVariants>) {
+	return (
+		<div
+			data-slot="empty-icon"
+			data-variant={variant}
+			className={cn(emptyMediaVariants({ variant, className }))}
+			{...props}
+		/>
+	);
+}
+
+function EmptyTitle({ className, ...props }: React.ComponentProps<"div">) {
+	return (
+		<div
+			data-slot="empty-title"
+			className={cn("text-lg font-medium tracking-tight", className)}
+			{...props}
+		/>
+	);
+}
+
+function EmptyDescription({ className, ...props }: React.ComponentProps<"p">) {
+	return (
+		<div
+			data-slot="empty-description"
+			className={cn(
+				"text-sm/relaxed text-muted-foreground [&>a]:underline [&>a]:underline-offset-4 [&>a:hover]:text-primary",
+				className
+			)}
+			{...props}
+		/>
+	);
+}
+
+function EmptyContent({ className, ...props }: React.ComponentProps<"div">) {
+	return (
+		<div
+			data-slot="empty-content"
+			className={cn(
+				"flex w-full max-w-sm min-w-0 flex-col items-center gap-4 text-sm text-balance",
+				className
+			)}
+			{...props}
+		/>
+	);
+}
+
+export { Empty, EmptyHeader, EmptyTitle, EmptyDescription, EmptyContent, EmptyMedia };
diff --git a/surfsense_web/content/docs/meta.json b/surfsense_web/content/docs/meta.json
index a0b6f8a1b..13b599118 100644
--- a/surfsense_web/content/docs/meta.json
+++ b/surfsense_web/content/docs/meta.json
@@ -13,6 +13,7 @@
 		"how-to",
 		"---Developers---",
 		"testing",
+		"observability",
 		"code-of-conduct"
 	]
 }
diff --git a/surfsense_web/content/docs/observability.mdx b/surfsense_web/content/docs/observability.mdx
new file mode 100644
index 000000000..c6dfb7e3a
--- /dev/null
+++ b/surfsense_web/content/docs/observability.mdx
@@ -0,0 +1,167 @@
+---
+title: Observability
+description: Configure backend traces and metrics for SurfSense
+icon: Radar
+---
+
+SurfSense uses OpenTelemetry for backend traces and metrics. Application logs
+include trace and span IDs so you can correlate logs with traces, but logs stay
+on the normal container stderr path.
+
+## Enable Locally
+
+The development compose file reads backend settings from
+`surfsense_backend/.env`. Add these values there:
+
+```dotenv
+SURFSENSE_ENABLE_OTEL=true
+SURFSENSE_ENV=dev
+OTEL_EXPORTER_OTLP_ENDPOINT=http://otel-lgtm:4317
+OTEL_EXPORTER_OTLP_PROTOCOL=grpc
+OTEL_RESOURCE_ATTRIBUTES=service.namespace=surfsense
+OTEL_METRIC_EXPORT_INTERVAL=300000
+```
+
+Then start the development stack with the local LGTM backend:
+
+```bash
+docker compose -f docker/docker-compose.dev.yml up --build
+```
+
+Grafana is exposed on `http://localhost:3001` by default.
+
+## Enable in Production Docker Compose
+
+Production Docker Compose reads backend and collector settings from
+`docker/.env`. The API and Celery worker export telemetry to the bundled
+collector at `otel-collector:4317`; the collector is the only service that uses
+the Grafana Cloud credentials.
+
+Add these values to `docker/.env`:
+
+```dotenv
+SURFSENSE_ENV=production
+SURFSENSE_ENABLE_OTEL=true
+OTEL_EXPORTER_OTLP_ENDPOINT=http://otel-collector:4317
+OTEL_EXPORTER_OTLP_PROTOCOL=grpc
+OTEL_RESOURCE_ATTRIBUTES=service.namespace=surfsense
+OTEL_METRIC_EXPORT_INTERVAL=300000
+
+GRAFANA_CLOUD_OTLP_ENDPOINT=https://otlp-gateway-<region>.grafana.net/otlp
+GRAFANA_CLOUD_INSTANCE_ID=<stack instance id>
+GRAFANA_CLOUD_API_KEY=<cloud access policy token>
+```
+
+Then start the stack:
+
+```bash
+docker compose -f docker/docker-compose.yml --profile observability up -d
+```
+
+The collector receives OTLP on `otel-collector:4317`, scrubs sensitive span
+attributes, applies the configured tail-sampling policy, batches exports,
+retries failures, and forwards traces and metrics to Grafana Cloud over OTLP
+HTTP.
+
+When deploying `surfsense_backend/Dockerfile` directly instead of production
+compose, use the same split: SurfSense containers export to a collector, and
+the collector owns the Grafana Cloud credentials.
+
+## Automatic Traces
+
+When OpenTelemetry is enabled, the backend instruments:
+
+- FastAPI inbound requests.
+- SQLAlchemy queries from the main async engine and Celery task engine.
+- Raw psycopg calls used by the LangGraph checkpointer.
+- Redis commands.
+- HTTPX outbound requests.
+- Celery producer and worker execution.
+
+## Manual Spans
+
+SurfSense keeps project-specific spans behind `app.observability.otel`:
+
+- `model.call`
+- `tool.call`
+- `chat.request`
+- `kb.search`
+- `kb.persist`
+- `connector.sync`
+- `subagent.invoke`
+- `etl.extract`
+- `etl.parse`
+- `etl.ocr`
+- `etl.picture.describe`
+- `etl.picture.ocr`
+- `compaction.run`
+- `permission.asked`
+- `interrupt.raised`
+
+Keep span names and attributes low-cardinality. Do not attach user content,
+prompts, document titles, file paths, user-specific URLs, secrets, or raw
+queries as span attributes.
+
+## Metrics
+
+The OpenTelemetry instrumentors provide HTTP, HTTPX, and Celery runtime
+metrics. SurfSense adds these project metrics from `app.observability.metrics`:
+
+- `surfsense.model.call.duration`
+- `gen_ai.client.token.usage`
+- `surfsense.tool.call.duration`
+- `surfsense.tool.call.errors`
+- `surfsense.chat.request.duration`
+- `surfsense.chat.request.outcome`
+- `surfsense.kb.search.duration`
+- `surfsense.compaction.runs`
+- `surfsense.permission.asks`
+- `surfsense.interrupt.raised`
+- `surfsense.indexing.document.duration`
+- `surfsense.indexing.document.outcome`
+- `surfsense.connector.sync.duration`
+- `surfsense.connector.sync.outcome`
+- `surfsense.subagent.invoke.duration`
+- `surfsense.subagent.invoke.outcome`
+- `surfsense.etl.extract.duration`
+- `surfsense.etl.extract.outcome`
+- `surfsense.celery.heartbeat.refreshes`
+- `surfsense.celery.heartbeat.failures`
+- `surfsense.celery.queue.latency`
+- `surfsense.auth.failures`
+- `surfsense.rate_limit.rejections`
+- `surfsense.perf.elapsed_ms`
+
+Runtime gauges include process RSS, CPU utilization, threads, open file
+descriptors, asyncio tasks, and CPython GC counters.
+
+## Logs
+
+`LoggingInstrumentor().instrument()` injects `otelTraceID` and `otelSpanID` into
+standard Python `LogRecord`s. The root log format writes them as
+`trace_id=... span_id=...`.
+
+SurfSense intentionally does not create an OpenTelemetry `LoggerProvider`,
+`LoggingHandler`, or `OTLPLogExporter`. Container stderr remains the log
+transport.
+
+## Verification
+
+1. Hit a FastAPI endpoint and confirm an inbound server span appears in Grafana.
+2. Run a chat request and confirm `model.call` and `tool.call` child spans.
+3. Run a knowledge-base search and confirm `kb.search` spans and SQL child spans.
+4. Run connector indexing and confirm Celery producer/worker spans share a trace
+   ID and connector sync metrics increment.
+5. Confirm `gen_ai.client.token.usage`, model/tool durations, request duration,
+   Celery runtime, and runtime gauges appear within one export interval.
+6. Confirm logs emitted inside a traced request show non-zero trace and span IDs.
+
+## Out Of Scope
+
+- Frontend/browser OpenTelemetry.
+- OpenTelemetry log export.
+- Profiling.
+- Production backend selection.
+- Tail-sampling collector configuration.
+- Replacing LangSmith.
+- Vendor SDKs.
diff --git a/surfsense_web/contexts/anonymous-mode.tsx b/surfsense_web/contexts/anonymous-mode.tsx
index eaf0996c3..c24a5cb1b 100644
--- a/surfsense_web/contexts/anonymous-mode.tsx
+++ b/surfsense_web/contexts/anonymous-mode.tsx
@@ -9,6 +9,8 @@ export interface AnonymousModeContextValue {
 	setModelSlug: (slug: string) => void;
 	uploadedDoc: { filename: string; sizeBytes: number } | null;
 	setUploadedDoc: (doc: { filename: string; sizeBytes: number } | null) => void;
+	webSearchEnabled: boolean;
+	setWebSearchEnabled: (enabled: boolean) => void;
 	resetKey: number;
 	resetChat: () => void;
 }
@@ -34,6 +36,7 @@ export function AnonymousModeProvider({
 	const [uploadedDoc, setUploadedDoc] = useState<{ filename: string; sizeBytes: number } | null>(
 		null
 	);
+	const [webSearchEnabled, setWebSearchEnabled] = useState(true);
 	const [resetKey, setResetKey] = useState(0);
 
 	const resetChat = () => setResetKey((k) => k + 1);
@@ -56,10 +59,12 @@ export function AnonymousModeProvider({
 			setModelSlug,
 			uploadedDoc,
 			setUploadedDoc,
+			webSearchEnabled,
+			setWebSearchEnabled,
 			resetKey,
 			resetChat,
 		}),
-		[modelSlug, uploadedDoc, resetKey]
+		[modelSlug, uploadedDoc, webSearchEnabled, resetKey]
 	);
 
 	return <AnonymousModeContext.Provider value={value}>{children}</AnonymousModeContext.Provider>;
diff --git a/surfsense_web/contracts/enums/connectorIcons.tsx b/surfsense_web/contracts/enums/connectorIcons.tsx
index 610bd508b..81696729d 100644
--- a/surfsense_web/contracts/enums/connectorIcons.tsx
+++ b/surfsense_web/contracts/enums/connectorIcons.tsx
@@ -1,6 +1,5 @@
 import { IconUsersGroup } from "@tabler/icons-react";
 import {
-	BookOpen,
 	Brain,
 	File,
 	FileText,
@@ -119,8 +118,6 @@ export const getConnectorIcon = (connectorType: EnumConnectorName | string, clas
 			return <FileText {...iconProps} />;
 		case "EXTENSION":
 			return <Webhook {...iconProps} />;
-		case "SURFSENSE_DOCS":
-			return <BookOpen {...iconProps} />;
 		case "USER_MEMORY":
 		case "TEAM_MEMORY":
 			return <Brain {...iconProps} />;
diff --git a/surfsense_web/contracts/enums/toolIcons.tsx b/surfsense_web/contracts/enums/toolIcons.tsx
index bb87be0ba..494c0eaee 100644
--- a/surfsense_web/contracts/enums/toolIcons.tsx
+++ b/surfsense_web/contracts/enums/toolIcons.tsx
@@ -1,5 +1,4 @@
 import {
-	BookOpen,
 	Brain,
 	Calendar,
 	FileEdit,
@@ -25,6 +24,7 @@ import {
 	SearchCheck,
 	Send,
 	Trash2,
+	Workflow,
 	Wrench,
 } from "lucide-react";
 
@@ -46,7 +46,8 @@ const TOOL_ICONS: Record<string, LucideIcon> = {
 	// Web / search
 	scrape_webpage: ScanLine,
 	web_search: Globe,
-	search_surfsense_docs: BookOpen,
+	// Automations
+	create_automation: Workflow,
 	// Memory
 	update_memory: Brain,
 	// Filesystem (built-in deepagent + middleware)
@@ -149,7 +150,8 @@ const TOOL_DISPLAY_NAMES: Record<string, string> = {
 	// Web / search
 	scrape_webpage: "Read webpage",
 	web_search: "Search the web",
-	search_surfsense_docs: "Search knowledge base",
+	// Automations
+	create_automation: "Create automation",
 	// Memory
 	update_memory: "Update memory",
 	// Calendar
diff --git a/surfsense_web/contracts/types/announcement.types.ts b/surfsense_web/contracts/types/announcement.types.ts
index 6c5206d9d..05cf14d21 100644
--- a/surfsense_web/contracts/types/announcement.types.ts
+++ b/surfsense_web/contracts/types/announcement.types.ts
@@ -35,6 +35,20 @@ export interface Announcement {
 	audience: AnnouncementAudience;
 	/** If true, the user will see a toast notification for this announcement */
 	isImportant: boolean;
+	/**
+	 * If true, this announcement is shown in a blocking spotlight dialog that the
+	 * user must explicitly acknowledge ("Got it"). Until acknowledged it keeps
+	 * reappearing; once acknowledged it never shows again. Spotlight announcements
+	 * are skipped by the lightweight toast provider to avoid double notifications.
+	 */
+	spotlight?: boolean;
+	/** Optional head/banner image shown at the top of the announcement */
+	image?: {
+		/** Image source (public path or absolute URL) */
+		src: string;
+		/** Accessible alt text */
+		alt: string;
+	};
 	/** Optional CTA link */
 	link?: {
 		label: string;
diff --git a/surfsense_web/contracts/types/automation.types.ts b/surfsense_web/contracts/types/automation.types.ts
new file mode 100644
index 000000000..45670d245
--- /dev/null
+++ b/surfsense_web/contracts/types/automation.types.ts
@@ -0,0 +1,248 @@
+import { z } from "zod";
+
+// =============================================================================
+// Enums — mirror app/automations/persistence/enums/*
+// =============================================================================
+
+export const automationStatus = z.enum(["active", "paused", "archived"]);
+export type AutomationStatus = z.infer<typeof automationStatus>;
+
+export const triggerType = z.enum(["schedule", "manual", "event"]);
+export type TriggerType = z.infer<typeof triggerType>;
+
+export const runStatus = z.enum([
+	"pending",
+	"running",
+	"succeeded",
+	"failed",
+	"cancelled",
+	"timed_out",
+]);
+export type RunStatus = z.infer<typeof runStatus>;
+
+// =============================================================================
+// Definition envelope — mirror app/automations/schemas/definition/*
+// =============================================================================
+
+export const planStep = z.object({
+	step_id: z.string().min(1),
+	action: z.string().min(1),
+	when: z.string().nullable().optional(),
+	params: z.record(z.string(), z.any()).default({}),
+	output_as: z.string().nullable().optional(),
+	max_retries: z.number().int().min(0).nullable().optional(),
+	timeout_seconds: z.number().int().positive().nullable().optional(),
+});
+export type PlanStep = z.infer<typeof planStep>;
+
+export const definitionTriggerSpec = z.object({
+	type: z.string().min(1),
+	params: z.record(z.string(), z.any()).default({}),
+});
+export type DefinitionTriggerSpec = z.infer<typeof definitionTriggerSpec>;
+
+export const execution = z.object({
+	timeout_seconds: z.number().int().positive().default(600),
+	max_retries: z.number().int().min(0).default(2),
+	retry_backoff: z.enum(["exponential", "linear", "none"]).default("exponential"),
+	concurrency: z.enum(["drop_if_running", "queue", "always"]).default("drop_if_running"),
+	on_failure: z.array(planStep).default([]),
+});
+export type Execution = z.infer<typeof execution>;
+
+// Backend ``Metadata`` is ``extra="allow"`` — keep ``tags`` typed, accept arbitrary keys.
+export const metadata = z.object({ tags: z.array(z.string()).default([]) }).catchall(z.any());
+export type Metadata = z.infer<typeof metadata>;
+
+// Backend ``Inputs`` serializes its ``schema_`` field as ``schema`` (alias).
+export const inputs = z.object({
+	schema: z.record(z.string(), z.any()),
+});
+export type Inputs = z.infer<typeof inputs>;
+
+// Captured model snapshot (server-managed). Set at create time and preserved
+// across edits so runs are insulated from later chat/search-space model changes.
+export const automationModels = z.object({
+	agent_llm_id: z.number().int().default(0),
+	image_generation_config_id: z.number().int().default(0),
+	vision_llm_config_id: z.number().int().default(0),
+});
+export type AutomationModels = z.infer<typeof automationModels>;
+
+export const automationDefinition = z.object({
+	schema_version: z.string().default("1.0"),
+	name: z.string().min(1).max(200),
+	goal: z.string().nullable().optional(),
+	inputs: inputs.nullable().optional(),
+	triggers: z.array(definitionTriggerSpec).default([]),
+	plan: z.array(planStep).min(1),
+	execution: execution.default(execution.parse({})),
+	metadata: metadata.default(metadata.parse({})),
+	models: automationModels.nullable().optional(),
+});
+export type AutomationDefinition = z.infer<typeof automationDefinition>;
+
+// =============================================================================
+// Triggers (sub-resource) — mirror app/automations/schemas/api/trigger.py
+// =============================================================================
+
+export const triggerCreateRequest = z.object({
+	type: triggerType,
+	params: z.record(z.string(), z.any()).default({}),
+	static_inputs: z.record(z.string(), z.any()).default({}),
+	enabled: z.boolean().default(true),
+});
+export type TriggerCreateRequest = z.infer<typeof triggerCreateRequest>;
+
+export const triggerUpdateRequest = z.object({
+	enabled: z.boolean().nullable().optional(),
+	params: z.record(z.string(), z.any()).nullable().optional(),
+	static_inputs: z.record(z.string(), z.any()).nullable().optional(),
+});
+export type TriggerUpdateRequest = z.infer<typeof triggerUpdateRequest>;
+
+export const trigger = z.object({
+	id: z.number(),
+	type: triggerType,
+	params: z.record(z.string(), z.any()),
+	static_inputs: z.record(z.string(), z.any()),
+	enabled: z.boolean(),
+	last_fired_at: z.string().nullable().optional(),
+	next_fire_at: z.string().nullable().optional(),
+	created_at: z.string(),
+});
+export type Trigger = z.infer<typeof trigger>;
+
+// =============================================================================
+// Automations — mirror app/automations/schemas/api/automation.py
+// =============================================================================
+
+export const automationCreateRequest = z.object({
+	search_space_id: z.number(),
+	name: z.string().min(1).max(200),
+	description: z.string().nullable().optional(),
+	definition: automationDefinition,
+	triggers: z.array(triggerCreateRequest).default([]),
+});
+export type AutomationCreateRequest = z.infer<typeof automationCreateRequest>;
+
+export const automationUpdateRequest = z.object({
+	name: z.string().min(1).max(200).nullable().optional(),
+	description: z.string().nullable().optional(),
+	status: automationStatus.nullable().optional(),
+	definition: automationDefinition.nullable().optional(),
+});
+export type AutomationUpdateRequest = z.infer<typeof automationUpdateRequest>;
+
+export const automationSummary = z.object({
+	id: z.number(),
+	search_space_id: z.number(),
+	name: z.string(),
+	description: z.string().nullable().optional(),
+	status: automationStatus,
+	version: z.number(),
+	created_at: z.string(),
+	updated_at: z.string(),
+});
+export type AutomationSummary = z.infer<typeof automationSummary>;
+
+export const automation = automationSummary.extend({
+	definition: automationDefinition,
+	triggers: z.array(trigger).default([]),
+});
+export type Automation = z.infer<typeof automation>;
+
+export const automationListResponse = z.object({
+	items: z.array(automationSummary),
+	total: z.number(),
+});
+export type AutomationListResponse = z.infer<typeof automationListResponse>;
+
+export const automationListParams = z.object({
+	search_space_id: z.number(),
+	limit: z.number().int().min(1).max(200).default(50),
+	offset: z.number().int().min(0).default(0),
+});
+export type AutomationListParams = z.infer<typeof automationListParams>;
+
+// =============================================================================
+// Runs (sub-resource) — mirror app/automations/schemas/api/run.py
+// =============================================================================
+
+export const runSummary = z.object({
+	id: z.number(),
+	automation_id: z.number(),
+	trigger_id: z.number().nullable().optional(),
+	status: runStatus,
+	started_at: z.string().nullable().optional(),
+	finished_at: z.string().nullable().optional(),
+	created_at: z.string(),
+});
+export type RunSummary = z.infer<typeof runSummary>;
+
+export const run = runSummary.extend({
+	definition_snapshot: z.record(z.string(), z.any()),
+	inputs: z.record(z.string(), z.any()),
+	step_results: z.array(z.record(z.string(), z.any())),
+	output: z.record(z.string(), z.any()).nullable().optional(),
+	artifacts: z.array(z.record(z.string(), z.any())),
+	error: z.record(z.string(), z.any()).nullable().optional(),
+});
+export type Run = z.infer<typeof run>;
+
+/**
+ * Typed view over a single entry in {@link Run.step_results}. The Zod schema
+ * keeps step results as opaque records (the backend emits action-specific
+ * payloads), so this interface exists purely for safe field access in the UI
+ * and does not perform runtime validation.
+ *
+ * Mirrors `_result()` in
+ * `surfsense_backend/app/automations/runtime/step.py`. For the `agent_task`
+ * action, `result` carries the markdown `final_message` produced by the agent.
+ */
+export interface RunStepResult {
+	step_id: string;
+	action: string;
+	status: "succeeded" | "failed" | "skipped" | string;
+	started_at?: string;
+	finished_at?: string;
+	attempts?: number;
+	result?: {
+		final_message?: string;
+		agent_session_id?: string;
+		resumes?: unknown;
+	} & Record<string, unknown>;
+	error?: { message?: string; type?: string };
+}
+
+export const runListResponse = z.object({
+	items: z.array(runSummary),
+	total: z.number(),
+});
+export type RunListResponse = z.infer<typeof runListResponse>;
+
+export const runListParams = z.object({
+	limit: z.number().int().min(1).max(200).default(50),
+	offset: z.number().int().min(0).default(0),
+});
+export type RunListParams = z.infer<typeof runListParams>;
+
+// =============================================================================
+// Model eligibility — mirror app/automations/api/automation.py (ModelEligibility)
+// =============================================================================
+
+export const modelEligibilityKind = z.enum(["llm", "image", "vision"]);
+export type ModelEligibilityKind = z.infer<typeof modelEligibilityKind>;
+
+export const modelEligibilityViolation = z.object({
+	kind: modelEligibilityKind,
+	config_id: z.number().nullable(),
+	reason: z.string(),
+});
+export type ModelEligibilityViolation = z.infer<typeof modelEligibilityViolation>;
+
+export const modelEligibility = z.object({
+	allowed: z.boolean(),
+	violations: z.array(modelEligibilityViolation),
+});
+export type ModelEligibility = z.infer<typeof modelEligibility>;
diff --git a/surfsense_web/contracts/types/document.types.ts b/surfsense_web/contracts/types/document.types.ts
index ccc15fa62..82c6cbdaf 100644
--- a/surfsense_web/contracts/types/document.types.ts
+++ b/surfsense_web/contracts/types/document.types.ts
@@ -27,7 +27,6 @@ export const documentTypeEnum = z.enum([
 	"CIRCLEBACK",
 	"OBSIDIAN_CONNECTOR",
 	"LOCAL_FOLDER_FILE",
-	"SURFSENSE_DOCS",
 	"NOTE",
 	"USER_MEMORY",
 	"TEAM_MEMORY",
@@ -77,27 +76,6 @@ export const documentWithChunks = document.extend({
 	chunk_start_index: z.number().optional().default(0),
 });
 
-/**
- * Surfsense documentation schemas
- * Follows the same pattern as document/documentWithChunks
- */
-export const surfsenseDocsChunk = z.object({
-	id: z.number(),
-	content: z.string(),
-});
-
-export const surfsenseDocsDocument = z.object({
-	id: z.number(),
-	title: z.string(),
-	source: z.string(),
-	public_url: z.string(),
-	content: z.string(),
-});
-
-export const surfsenseDocsDocumentWithChunks = surfsenseDocsDocument.extend({
-	chunks: z.array(surfsenseDocsChunk),
-});
-
 /**
  * Get documents
  */
@@ -284,32 +262,6 @@ export const getDocumentChunksResponse = z.object({
 	has_more: z.boolean(),
 });
 
-/**
- * Get Surfsense docs by chunk
- */
-export const getSurfsenseDocsByChunkRequest = z.object({
-	chunk_id: z.number(),
-});
-
-export const getSurfsenseDocsByChunkResponse = surfsenseDocsDocumentWithChunks;
-
-/**
- * List Surfsense docs
- */
-export const getSurfsenseDocsRequest = z.object({
-	queryParams: paginationQueryParams.extend({
-		title: z.string().optional(),
-	}),
-});
-
-export const getSurfsenseDocsResponse = z.object({
-	items: z.array(surfsenseDocsDocument),
-	total: z.number(),
-	page: z.number(),
-	page_size: z.number(),
-	has_more: z.boolean(),
-});
-
 /**
  * Update document
  */
@@ -358,13 +310,6 @@ export type DeleteDocumentResponse = z.infer<typeof deleteDocumentResponse>;
 export type DocumentTypeEnum = z.infer<typeof documentTypeEnum>;
 export type DocumentSortBy = z.infer<typeof documentSortByEnum>;
 export type SortOrder = z.infer<typeof sortOrderEnum>;
-export type SurfsenseDocsChunk = z.infer<typeof surfsenseDocsChunk>;
-export type SurfsenseDocsDocument = z.infer<typeof surfsenseDocsDocument>;
-export type SurfsenseDocsDocumentWithChunks = z.infer<typeof surfsenseDocsDocumentWithChunks>;
-export type GetSurfsenseDocsByChunkRequest = z.infer<typeof getSurfsenseDocsByChunkRequest>;
-export type GetSurfsenseDocsByChunkResponse = z.infer<typeof getSurfsenseDocsByChunkResponse>;
-export type GetSurfsenseDocsRequest = z.infer<typeof getSurfsenseDocsRequest>;
-export type GetSurfsenseDocsResponse = z.infer<typeof getSurfsenseDocsResponse>;
 export type GetDocumentChunksRequest = z.infer<typeof getDocumentChunksRequest>;
 export type GetDocumentChunksResponse = z.infer<typeof getDocumentChunksResponse>;
 export type ChunkRead = z.infer<typeof chunkRead>;
diff --git a/surfsense_web/contracts/types/oauth.types.ts b/surfsense_web/contracts/types/oauth.types.ts
new file mode 100644
index 000000000..8b3854cf8
--- /dev/null
+++ b/surfsense_web/contracts/types/oauth.types.ts
@@ -0,0 +1,31 @@
+import { z } from "zod";
+
+export const OAUTH_RESULT_COOKIE = "connector_oauth_result";
+
+/**
+ * Schema for the payload written to the `connector_oauth_result` cookie by the
+ * OAuth callback route and read back by the connector dialog hook.
+ */
+export const oauthCallbackResultSchema = z.object({
+	success: z.string().nullable(),
+	error: z.string().nullable(),
+	connector: z.string().nullable(),
+	connectorId: z.string().nullable(),
+});
+
+export type OAuthCallbackResult = z.infer<typeof oauthCallbackResultSchema>;
+
+/**
+ * Safely decode and validate the OAuth callback cookie value. Returns `null`
+ * when the value is not valid JSON or does not match the expected shape.
+ */
+export function parseOAuthCallbackResult(raw: string): OAuthCallbackResult | null {
+	let parsed: unknown;
+	try {
+		parsed = JSON.parse(raw);
+	} catch {
+		return null;
+	}
+	const result = oauthCallbackResultSchema.safeParse(parsed);
+	return result.success ? result.data : null;
+}
diff --git a/surfsense_web/features/chat-messages/timeline/tool-registry/registry.ts b/surfsense_web/features/chat-messages/timeline/tool-registry/registry.ts
index 8acc6b4fa..c4cfe7cd3 100644
--- a/surfsense_web/features/chat-messages/timeline/tool-registry/registry.ts
+++ b/surfsense_web/features/chat-messages/timeline/tool-registry/registry.ts
@@ -17,6 +17,11 @@ const UpdateMemoryToolUI = dynamic(
 	() => import("@/components/tool-ui/user-memory").then((m) => ({ default: m.UpdateMemoryToolUI })),
 	{ ssr: false }
 );
+const CreateAutomationToolUI = dynamic(
+	() =>
+		import("@/components/tool-ui/automation").then((m) => ({ default: m.CreateAutomationToolUI })),
+	{ ssr: false }
+);
 const SandboxExecuteToolUI = dynamic(
 	() =>
 		import("@/components/tool-ui/sandbox-execute").then((m) => ({
@@ -184,6 +189,7 @@ const NullTimelineBody: TimelineToolComponent = () => null;
  */
 const TOOLS_BY_NAME = {
 	task: NullTimelineBody,
+	create_automation: CreateAutomationToolUI,
 	update_memory: UpdateMemoryToolUI,
 	execute: SandboxExecuteToolUI,
 	execute_code: SandboxExecuteToolUI,
diff --git a/surfsense_web/hooks/use-automation-eligible-models.ts b/surfsense_web/hooks/use-automation-eligible-models.ts
new file mode 100644
index 000000000..e74994221
--- /dev/null
+++ b/surfsense_web/hooks/use-automation-eligible-models.ts
@@ -0,0 +1,150 @@
+"use client";
+
+import { useAtomValue } from "jotai";
+import { useMemo } from "react";
+import {
+	globalImageGenConfigsAtom,
+	imageGenConfigsAtom,
+} from "@/atoms/image-gen-config/image-gen-config-query.atoms";
+import {
+	globalNewLLMConfigsAtom,
+	llmPreferencesAtom,
+	newLLMConfigsAtom,
+} from "@/atoms/new-llm-config/new-llm-config-query.atoms";
+import {
+	globalVisionLLMConfigsAtom,
+	visionLLMConfigsAtom,
+} from "@/atoms/vision-llm-config/vision-llm-config-query.atoms";
+
+/**
+ * A single model the user may pick for an automation slot.
+ */
+export interface EligibleModelOption {
+	id: number;
+	name: string;
+	/** Underlying model identifier (e.g. `gpt-4o`); shown as secondary text. */
+	modelName: string;
+	provider: string;
+	/** `true` for user BYOK configs (positive ids), `false` for premium globals. */
+	isBYOK: boolean;
+}
+
+export interface EligibleModelKind {
+	options: EligibleModelOption[];
+	/** Default selection: the search-space pref when eligible, else first option. */
+	defaultId: number | null;
+	/** O(1) id → option lookup for trigger labels (avoids per-render `.find()`). */
+	byId: Map<number, EligibleModelOption>;
+}
+
+export interface AutomationEligibleModels {
+	llm: EligibleModelKind;
+	image: EligibleModelKind;
+	vision: EligibleModelKind;
+	isLoading: boolean;
+}
+
+interface GlobalConfigLike {
+	id: number;
+	name: string;
+	model_name: string;
+	provider: string;
+	is_premium?: boolean;
+	is_auto_mode?: boolean;
+}
+
+interface UserConfigLike {
+	id: number;
+	name: string;
+	model_name: string;
+	provider: string;
+}
+
+/**
+ * Build the eligible option list for one model kind: premium globals
+ * (`is_premium === true`, never Auto mode) followed by all BYOK configs.
+ */
+function buildKind(
+	globals: GlobalConfigLike[] | undefined,
+	byok: UserConfigLike[] | undefined,
+	prefId: number | null | undefined
+): EligibleModelKind {
+	const premiumGlobals: EligibleModelOption[] = (globals ?? [])
+		.filter((c) => c.is_premium === true && !c.is_auto_mode)
+		.map((c) => ({
+			id: c.id,
+			name: c.name,
+			modelName: c.model_name,
+			provider: c.provider,
+			isBYOK: false,
+		}));
+
+	const byokOptions: EligibleModelOption[] = (byok ?? []).map((c) => ({
+		id: c.id,
+		name: c.name,
+		modelName: c.model_name,
+		provider: c.provider,
+		isBYOK: true,
+	}));
+
+	const options = [...premiumGlobals, ...byokOptions];
+	const byId = new Map<number, EligibleModelOption>(options.map((o) => [o.id, o]));
+
+	let defaultId: number | null = null;
+	if (prefId != null && byId.has(prefId)) {
+		defaultId = prefId;
+	} else if (options.length > 0) {
+		defaultId = options[0].id;
+	}
+
+	return { options, defaultId, byId };
+}
+
+/**
+ * Lists the LLM / image / vision models that are eligible for automations
+ * (premium globals + user BYOK — never free globals or Auto mode), with a
+ * default selection seeded from the search space's role preferences.
+ *
+ * Everything is derived during render from the existing config query atoms;
+ * there are no effects, so option lists/maps keep stable references.
+ */
+export function useAutomationEligibleModels(): AutomationEligibleModels {
+	const { data: llmUserConfigs, isLoading: llmUserLoading } = useAtomValue(newLLMConfigsAtom);
+	const { data: llmGlobalConfigs, isLoading: llmGlobalLoading } =
+		useAtomValue(globalNewLLMConfigsAtom);
+	const { data: preferences, isLoading: prefsLoading } = useAtomValue(llmPreferencesAtom);
+	const { data: imageGlobalConfigs, isLoading: imageGlobalLoading } =
+		useAtomValue(globalImageGenConfigsAtom);
+	const { data: imageUserConfigs, isLoading: imageUserLoading } = useAtomValue(imageGenConfigsAtom);
+	const { data: visionGlobalConfigs, isLoading: visionGlobalLoading } = useAtomValue(
+		globalVisionLLMConfigsAtom
+	);
+	const { data: visionUserConfigs, isLoading: visionUserLoading } =
+		useAtomValue(visionLLMConfigsAtom);
+
+	const llm = useMemo(
+		() => buildKind(llmGlobalConfigs, llmUserConfigs, preferences?.agent_llm_id),
+		[llmGlobalConfigs, llmUserConfigs, preferences?.agent_llm_id]
+	);
+
+	const image = useMemo(
+		() => buildKind(imageGlobalConfigs, imageUserConfigs, preferences?.image_generation_config_id),
+		[imageGlobalConfigs, imageUserConfigs, preferences?.image_generation_config_id]
+	);
+
+	const vision = useMemo(
+		() => buildKind(visionGlobalConfigs, visionUserConfigs, preferences?.vision_llm_config_id),
+		[visionGlobalConfigs, visionUserConfigs, preferences?.vision_llm_config_id]
+	);
+
+	const isLoading =
+		llmUserLoading ||
+		llmGlobalLoading ||
+		prefsLoading ||
+		imageGlobalLoading ||
+		imageUserLoading ||
+		visionGlobalLoading ||
+		visionUserLoading;
+
+	return useMemo(() => ({ llm, image, vision, isLoading }), [llm, image, vision, isLoading]);
+}
diff --git a/surfsense_web/hooks/use-automation-model-eligibility.ts b/surfsense_web/hooks/use-automation-model-eligibility.ts
new file mode 100644
index 000000000..c9bb8b1ea
--- /dev/null
+++ b/surfsense_web/hooks/use-automation-model-eligibility.ts
@@ -0,0 +1,25 @@
+"use client";
+import { useQuery } from "@tanstack/react-query";
+import type { ModelEligibility } from "@/contracts/types/automation.types";
+import { automationsApiService } from "@/lib/apis/automations-api.service";
+import { cacheKeys } from "@/lib/query-client/cache-keys";
+
+/**
+ * Whether the search space's configured models are billable for automations.
+ *
+ * Automations may only run on premium global models or user-provided (BYOK)
+ * models; free global models and Auto mode are blocked so every run is metered
+ * in premium credits. Creation surfaces use this to gate their CTAs before the
+ * user invests effort drafting an automation that can't be saved.
+ *
+ * Keyed by search space id (not the jotai "current scope" atom) so it can be
+ * used on the create route as well as the list page.
+ */
+export function useAutomationModelEligibility(searchSpaceId: number | undefined) {
+	return useQuery<ModelEligibility, Error>({
+		queryKey: cacheKeys.automations.modelEligibility(searchSpaceId ?? 0),
+		queryFn: () => automationsApiService.getModelEligibility(searchSpaceId as number),
+		enabled: !!searchSpaceId,
+		staleTime: 60_000,
+	});
+}
diff --git a/surfsense_web/hooks/use-automation-runs.ts b/surfsense_web/hooks/use-automation-runs.ts
new file mode 100644
index 000000000..c91c7bd6e
--- /dev/null
+++ b/surfsense_web/hooks/use-automation-runs.ts
@@ -0,0 +1,42 @@
+"use client";
+import { useQuery } from "@tanstack/react-query";
+import type { Run, RunListResponse } from "@/contracts/types/automation.types";
+import { automationsApiService } from "@/lib/apis/automations-api.service";
+import { cacheKeys } from "@/lib/query-client/cache-keys";
+
+const DEFAULT_LIMIT = 50;
+const DEFAULT_OFFSET = 0;
+
+export interface UseAutomationRunsOptions {
+	limit?: number;
+	offset?: number;
+	enabled?: boolean;
+}
+
+/** Paginated run history for one automation. Newest-first per backend. */
+export function useAutomationRuns(
+	automationId: number | undefined,
+	{ limit = DEFAULT_LIMIT, offset = DEFAULT_OFFSET, enabled = true }: UseAutomationRunsOptions = {}
+) {
+	return useQuery<RunListResponse, Error>({
+		queryKey: cacheKeys.automations.runs(automationId ?? 0, limit, offset),
+		queryFn: () => automationsApiService.listRuns(automationId as number, { limit, offset }),
+		enabled: enabled && !!automationId,
+		staleTime: 30_000,
+	});
+}
+
+/** Single run with the full snapshot, step results, output and artifacts. */
+export function useAutomationRun(
+	automationId: number | undefined,
+	runId: number | undefined,
+	options: { enabled?: boolean } = {}
+) {
+	const { enabled = true } = options;
+	return useQuery<Run, Error>({
+		queryKey: cacheKeys.automations.run(automationId ?? 0, runId ?? 0),
+		queryFn: () => automationsApiService.getRun(automationId as number, runId as number),
+		enabled: enabled && !!automationId && !!runId,
+		staleTime: 30_000,
+	});
+}
diff --git a/surfsense_web/hooks/use-automation.ts b/surfsense_web/hooks/use-automation.ts
new file mode 100644
index 000000000..d49ec03a1
--- /dev/null
+++ b/surfsense_web/hooks/use-automation.ts
@@ -0,0 +1,19 @@
+"use client";
+import { useQuery } from "@tanstack/react-query";
+import type { Automation } from "@/contracts/types/automation.types";
+import { automationsApiService } from "@/lib/apis/automations-api.service";
+import { cacheKeys } from "@/lib/query-client/cache-keys";
+
+/**
+ * Fetch a single automation with its definition and triggers.
+ * Lives outside the jotai atom layer because it's keyed by id, not by the
+ * "current scope" the atom layer assumes.
+ */
+export function useAutomation(automationId: number | undefined) {
+	return useQuery<Automation, Error>({
+		queryKey: cacheKeys.automations.detail(automationId ?? 0),
+		queryFn: () => automationsApiService.getAutomation(automationId as number),
+		enabled: !!automationId,
+		staleTime: 60_000,
+	});
+}
diff --git a/surfsense_web/hooks/use-automations.ts b/surfsense_web/hooks/use-automations.ts
new file mode 100644
index 000000000..945e91866
--- /dev/null
+++ b/surfsense_web/hooks/use-automations.ts
@@ -0,0 +1,24 @@
+"use client";
+import { useAtomValue } from "jotai";
+import { automationsListAtom } from "@/atoms/automations/automations-query.atoms";
+
+/**
+ * List automations in the active search space (first page).
+ * Pagination knobs live in detail/list hooks below; v1 surfaces only the
+ * first page since automation counts are expected to be small.
+ */
+export function useAutomations() {
+	const { data, isLoading, error, refetch } = useAutomationsRaw();
+	return {
+		automations: data?.items ?? [],
+		total: data?.total ?? 0,
+		loading: isLoading,
+		error,
+		refresh: refetch,
+	};
+}
+
+// Exposed for callers that prefer the raw react-query result shape.
+export function useAutomationsRaw() {
+	return useAtomValue(automationsListAtom);
+}
diff --git a/surfsense_web/hooks/use-search-source-connectors.ts b/surfsense_web/hooks/use-search-source-connectors.ts
index bc1ec49b5..ad0db3de6 100644
--- a/surfsense_web/hooks/use-search-source-connectors.ts
+++ b/surfsense_web/hooks/use-search-source-connectors.ts
@@ -107,9 +107,7 @@ export const useSearchSourceConnectors = (lazy: boolean = false, searchSpaceId?:
 				setError(null);
 
 				// Build URL with optional search_space_id query parameter
-				const url = new URL(
-					`${BACKEND_URL}/api/v1/search-source-connectors`
-				);
+				const url = new URL(`${BACKEND_URL}/api/v1/search-source-connectors`);
 				if (spaceId !== undefined) {
 					url.searchParams.append("search_space_id", spaceId.toString());
 				}
@@ -169,9 +167,7 @@ export const useSearchSourceConnectors = (lazy: boolean = false, searchSpaceId?:
 	) => {
 		try {
 			// Add search_space_id as a query parameter
-			const url = new URL(
-				`${BACKEND_URL}/api/v1/search-source-connectors`
-			);
+			const url = new URL(`${BACKEND_URL}/api/v1/search-source-connectors`);
 			url.searchParams.append("search_space_id", spaceId.toString());
 
 			const response = await authenticatedFetch(url.toString(), {
@@ -283,9 +279,7 @@ export const useSearchSourceConnectors = (lazy: boolean = false, searchSpaceId?:
 			}
 
 			const response = await authenticatedFetch(
-				`${
-					BACKEND_URL
-				}/api/v1/search-source-connectors/${connectorId}/index?${params.toString()}`,
+				`${BACKEND_URL}/api/v1/search-source-connectors/${connectorId}/index?${params.toString()}`,
 				{
 					method: "POST",
 					headers: { "Content-Type": "application/json" },
diff --git a/surfsense_web/instrumentation-client.ts b/surfsense_web/instrumentation-client.ts
index 3ae97fc0b..3eab87dec 100644
--- a/surfsense_web/instrumentation-client.ts
+++ b/surfsense_web/instrumentation-client.ts
@@ -88,9 +88,12 @@ async function initPostHog() {
 				}
 				return event;
 			},
-			loaded: (ph) => {
+			loaded: () => {
 				if (typeof window !== "undefined") {
-					window.posthog = ph;
+					// `loaded` hands back a `PostHogInterface`, but it's the same
+					// singleton as the default import (typed `PostHog`); use that to
+					// keep `window.posthog` correctly typed.
+					window.posthog = posthog;
 				}
 			},
 		});
diff --git a/surfsense_web/lib/announcements/announcements-data.ts b/surfsense_web/lib/announcements/announcements-data.ts
index ce44ec539..e5f3f0fce 100644
--- a/surfsense_web/lib/announcements/announcements-data.ts
+++ b/surfsense_web/lib/announcements/announcements-data.ts
@@ -13,6 +13,27 @@ import type { Announcement } from "@/contracts/types/announcement.types";
  * This file can be replaced with an API call in the future.
  */
 export const announcements: Announcement[] = [
+	{
+		id: "2026-05-31-ai-automations",
+		title: "Introducing AI Automations",
+		description:
+			"Turn prompts into hands-off AI agent workflows. Describe an automation in plain English and SurfSense builds it, run it on a schedule, or trigger it the moment a document lands in a folder. Automations work across Notion, Slack, Google Drive, Gmail, GitHub, Linear, Jira and more.",
+		category: "feature",
+		date: "2026-05-31T00:00:00Z",
+		startTime: "2026-05-31T00:00:00Z",
+		endTime: "2026-07-15T00:00:00Z",
+		audience: "users",
+		isImportant: true,
+		spotlight: true,
+		image: {
+			src: "/announcements/automations.png",
+			alt: "Connector tiles flowing into a central AI core that triggers scheduled and event-driven automations.",
+		},
+		link: {
+			label: "See what's new",
+			url: "/changelog",
+		},
+	},
 	{
 		id: "announcement-1",
 		title: "Introducing What's New",
diff --git a/surfsense_web/lib/apis/automations-api.service.ts b/surfsense_web/lib/apis/automations-api.service.ts
new file mode 100644
index 000000000..baaf08799
--- /dev/null
+++ b/surfsense_web/lib/apis/automations-api.service.ts
@@ -0,0 +1,110 @@
+import {
+	type AutomationCreateRequest,
+	type AutomationListParams,
+	type AutomationUpdateRequest,
+	automation,
+	automationCreateRequest,
+	automationListResponse,
+	automationUpdateRequest,
+	modelEligibility,
+	type RunListParams,
+	run,
+	runListResponse,
+	type TriggerCreateRequest,
+	type TriggerUpdateRequest,
+	trigger,
+	triggerCreateRequest,
+	triggerUpdateRequest,
+} from "@/contracts/types/automation.types";
+import { ValidationError } from "../error";
+import { baseApiService } from "./base-api.service";
+
+const BASE = "/api/v1/automations";
+
+function rejectIfInvalid<T>(
+	parsed: { success: true; data: T } | { success: false; error: { issues: { message: string }[] } }
+): T {
+	if (!parsed.success) {
+		throw new ValidationError(
+			`Invalid request: ${parsed.error.issues.map((i) => i.message).join(", ")}`
+		);
+	}
+	return parsed.data;
+}
+
+class AutomationsApiService {
+	// ---- Automations ---------------------------------------------------------
+
+	listAutomations = async (params: AutomationListParams) => {
+		const qs = new URLSearchParams({
+			search_space_id: String(params.search_space_id),
+			limit: String(params.limit),
+			offset: String(params.offset),
+		});
+		return baseApiService.get(`${BASE}?${qs.toString()}`, automationListResponse);
+	};
+
+	getAutomation = async (automationId: number) => {
+		return baseApiService.get(`${BASE}/${automationId}`, automation);
+	};
+
+	createAutomation = async (request: AutomationCreateRequest) => {
+		const data = rejectIfInvalid(automationCreateRequest.safeParse(request));
+		return baseApiService.post(BASE, automation, { body: data });
+	};
+
+	updateAutomation = async (automationId: number, request: AutomationUpdateRequest) => {
+		const data = rejectIfInvalid(automationUpdateRequest.safeParse(request));
+		return baseApiService.patch(`${BASE}/${automationId}`, automation, { body: data });
+	};
+
+	// Server returns 204; baseApiService now resolves to null and skips schema validation.
+	deleteAutomation = async (automationId: number) => {
+		return baseApiService.delete(`${BASE}/${automationId}`);
+	};
+
+	// Whether the search space's models are billable for automations (premium
+	// global or BYOK). Used to gate creation surfaces before submit.
+	getModelEligibility = async (searchSpaceId: number) => {
+		const qs = new URLSearchParams({ search_space_id: String(searchSpaceId) });
+		return baseApiService.get(`${BASE}/model-eligibility?${qs.toString()}`, modelEligibility);
+	};
+
+	// ---- Triggers (sub-resource) --------------------------------------------
+
+	addTrigger = async (automationId: number, request: TriggerCreateRequest) => {
+		const data = rejectIfInvalid(triggerCreateRequest.safeParse(request));
+		return baseApiService.post(`${BASE}/${automationId}/triggers`, trigger, { body: data });
+	};
+
+	updateTrigger = async (
+		automationId: number,
+		triggerId: number,
+		request: TriggerUpdateRequest
+	) => {
+		const data = rejectIfInvalid(triggerUpdateRequest.safeParse(request));
+		return baseApiService.patch(`${BASE}/${automationId}/triggers/${triggerId}`, trigger, {
+			body: data,
+		});
+	};
+
+	removeTrigger = async (automationId: number, triggerId: number) => {
+		return baseApiService.delete(`${BASE}/${automationId}/triggers/${triggerId}`);
+	};
+
+	// ---- Runs (sub-resource, read-only) -------------------------------------
+
+	listRuns = async (automationId: number, params: RunListParams) => {
+		const qs = new URLSearchParams({
+			limit: String(params.limit),
+			offset: String(params.offset),
+		});
+		return baseApiService.get(`${BASE}/${automationId}/runs?${qs.toString()}`, runListResponse);
+	};
+
+	getRun = async (automationId: number, runId: number) => {
+		return baseApiService.get(`${BASE}/${automationId}/runs/${runId}`, run);
+	};
+}
+
+export const automationsApiService = new AutomationsApiService();
diff --git a/surfsense_web/lib/apis/base-api.service.ts b/surfsense_web/lib/apis/base-api.service.ts
index 0819cbc7c..a0039b63a 100644
--- a/surfsense_web/lib/apis/base-api.service.ts
+++ b/surfsense_web/lib/apis/base-api.service.ts
@@ -1,4 +1,5 @@
 import type { ZodType } from "zod";
+import { BACKEND_URL } from "@/lib/env-config";
 import { getClientPlatform } from "../agent-filesystem";
 import { getBearerToken, handleUnauthorized, refreshAccessToken } from "../auth-utils";
 import {
@@ -9,7 +10,7 @@ import {
 	NetworkError,
 	NotFoundError,
 } from "../error";
-import { BACKEND_URL } from "@/lib/env-config";
+
 enum ResponseType {
 	JSON = "json",
 	TEXT = "text",
@@ -122,8 +123,9 @@ class BaseApiService {
 				if (contentType === "application/json" && typeof mergedOptions.body === "object") {
 					fetchOptions.body = JSON.stringify(mergedOptions.body);
 				} else {
-					// Pass body as-is for other content types (e.g., form data, already stringified)
-					fetchOptions.body = mergedOptions.body;
+					// Pass body as-is for other content types (form data, already stringified).
+					// Caller is responsible for passing a real BodyInit when Content-Type is not JSON.
+					fetchOptions.body = mergedOptions.body as BodyInit;
 				}
 			}
 
@@ -210,32 +212,39 @@ class BaseApiService {
 			let data;
 			const responseType = mergedOptions.responseType;
 
-			try {
-				switch (responseType) {
-					case ResponseType.JSON:
-						data = await response.json();
-						break;
-					case ResponseType.TEXT:
-						data = await response.text();
-						break;
-					case ResponseType.BLOB:
-						data = await response.blob();
-						break;
-					case ResponseType.ARRAY_BUFFER:
-						data = await response.arrayBuffer();
-						break;
-					//  Add more cases as needed
-					default:
-						data = await response.json();
+			if (response.status === 204) {
+				// 204 No Content has no body; .json() would throw SyntaxError.
+				// Leave data as null and skip schema validation below so endpoints
+				// that opt out of bodies (REST-style DELETE) don't error on success.
+				data = null;
+			} else {
+				try {
+					switch (responseType) {
+						case ResponseType.JSON:
+							data = await response.json();
+							break;
+						case ResponseType.TEXT:
+							data = await response.text();
+							break;
+						case ResponseType.BLOB:
+							data = await response.blob();
+							break;
+						case ResponseType.ARRAY_BUFFER:
+							data = await response.arrayBuffer();
+							break;
+						//  Add more cases as needed
+						default:
+							data = await response.json();
+					}
+				} catch (error) {
+					console.error("Failed to parse response as JSON:", error);
+					throw new AppError("Failed to parse response", response.status, response.statusText);
 				}
-			} catch (error) {
-				console.error("Failed to parse response as JSON:", error);
-				throw new AppError("Failed to parse response", response.status, response.statusText);
 			}
 
 			// Validate response
 			if (responseType === ResponseType.JSON) {
-				if (!responseSchema) {
+				if (!responseSchema || response.status === 204) {
 					return data;
 				}
 				const parsedData = responseSchema.safeParse(data);
diff --git a/surfsense_web/lib/apis/documents-api.service.ts b/surfsense_web/lib/apis/documents-api.service.ts
index 630c88d16..f9785c8a8 100644
--- a/surfsense_web/lib/apis/documents-api.service.ts
+++ b/surfsense_web/lib/apis/documents-api.service.ts
@@ -12,7 +12,6 @@ import {
 	type GetDocumentsRequest,
 	type GetDocumentsStatusRequest,
 	type GetDocumentTypeCountsRequest,
-	type GetSurfsenseDocsRequest,
 	getDocumentByChunkRequest,
 	getDocumentByChunkResponse,
 	getDocumentChunksRequest,
@@ -25,9 +24,6 @@ import {
 	getDocumentsStatusResponse,
 	getDocumentTypeCountsRequest,
 	getDocumentTypeCountsResponse,
-	getSurfsenseDocsByChunkResponse,
-	getSurfsenseDocsRequest,
-	getSurfsenseDocsResponse,
 	type SearchDocumentsRequest,
 	type SearchDocumentTitlesRequest,
 	searchDocumentsRequest,
@@ -363,48 +359,6 @@ class DocumentsApiService {
 		);
 	};
 
-	/**
-	 * Get Surfsense documentation by chunk ID
-	 * Used for resolving [citation:doc-XXX] citations
-	 */
-	getSurfsenseDocByChunk = async (chunkId: number) => {
-		return baseApiService.get(
-			`/api/v1/surfsense-docs/by-chunk/${chunkId}`,
-			getSurfsenseDocsByChunkResponse
-		);
-	};
-
-	/**
-	 * List all Surfsense documentation documents
-	 * @param request - The request with query params
-	 * @param signal - Optional AbortSignal for request cancellation
-	 */
-	getSurfsenseDocs = async (request: GetSurfsenseDocsRequest, signal?: AbortSignal) => {
-		const parsedRequest = getSurfsenseDocsRequest.safeParse(request);
-
-		if (!parsedRequest.success) {
-			console.error("Invalid request:", parsedRequest.error);
-
-			const errorMessage = parsedRequest.error.issues.map((issue) => issue.message).join(", ");
-			throw new ValidationError(`Invalid request: ${errorMessage}`);
-		}
-
-		// Transform query params to be string values
-		const transformedQueryParams = parsedRequest.data.queryParams
-			? Object.fromEntries(
-					Object.entries(parsedRequest.data.queryParams).map(([k, v]) => [k, String(v)])
-				)
-			: undefined;
-
-		const queryParams = transformedQueryParams
-			? new URLSearchParams(transformedQueryParams).toString()
-			: "";
-
-		const url = `/api/v1/surfsense-docs?${queryParams}`;
-
-		return baseApiService.get(url, getSurfsenseDocsResponse, { signal });
-	};
-
 	/**
 	 * Update a document
 	 */
diff --git a/surfsense_web/lib/auth-utils.ts b/surfsense_web/lib/auth-utils.ts
index 645a6d1ba..b7dab7717 100644
--- a/surfsense_web/lib/auth-utils.ts
+++ b/surfsense_web/lib/auth-utils.ts
@@ -2,6 +2,7 @@
  * Authentication utilities for handling token expiration and redirects
  */
 import { BACKEND_URL } from "@/lib/env-config";
+
 const REDIRECT_PATH_KEY = "surfsense_redirect_path";
 const BEARER_TOKEN_KEY = "surfsense_bearer_token";
 const REFRESH_TOKEN_KEY = "surfsense_refresh_token";
diff --git a/surfsense_web/lib/automations/builder-schema.ts b/surfsense_web/lib/automations/builder-schema.ts
new file mode 100644
index 000000000..c2bd69209
--- /dev/null
+++ b/surfsense_web/lib/automations/builder-schema.ts
@@ -0,0 +1,519 @@
+/**
+ * The form builder's own data model plus the mappers that bridge it to the
+ * backend contract (``automation.types.ts``).
+ *
+ * The builder deliberately exposes a *subset* of the full automation
+ * definition: a name, one or more natural-language agent tasks, a single
+ * schedule, and a few execution knobs. Anything richer (goal, per-step
+ * ``when`` predicates, ``inputs`` schema, ``on_failure`` steps, multiple or
+ * non-schedule triggers, custom metadata) is not representable here, so on
+ * edit we detect it and bounce the user to raw-JSON mode rather than silently
+ * dropping their data. ``goal`` is the one exception: it is carried through
+ * invisibly so the common drafter-produced automation stays form-editable.
+ */
+
+import { z } from "zod";
+import type { MentionedDocumentInfo } from "@/atoms/chat/mentioned-documents.atom";
+import {
+	type Automation,
+	type AutomationCreateRequest,
+	type AutomationDefinition,
+	type AutomationUpdateRequest,
+	execution as executionContract,
+	type TriggerCreateRequest,
+} from "@/contracts/types/automation.types";
+import { DEFAULT_SCHEDULE, fromCron, type ScheduleModel, toCron } from "./schedule-builder";
+
+const EXECUTION_DEFAULTS = executionContract.parse({});
+
+// ---------------------------------------------------------------------------
+// Form model
+// ---------------------------------------------------------------------------
+
+export const builderTaskSchema = z.object({
+	/** Client-side identity for stable React keys across reorder; not persisted. */
+	id: z.string(),
+	query: z.string().trim().min(1, "Describe what the agent should do"),
+	/**
+	 * Files / folders / connectors @-mentioned in the query. Mirrors the chat
+	 * composer's mention list and is forwarded to the run as step params so the
+	 * agent scopes retrieval to them. The query text already carries ``@Title``
+	 * for each; this is the structured side-channel of IDs.
+	 */
+	mentions: z.array(z.custom<MentionedDocumentInfo>()),
+	maxRetries: z.number().int().min(0).max(10).nullable(),
+	timeoutSeconds: z.number().int().positive().max(86_400).nullable(),
+});
+export type BuilderTask = z.infer<typeof builderTaskSchema>;
+
+export const builderScheduleSchema = z.discriminatedUnion("mode", [
+	z.object({
+		mode: z.literal("preset"),
+		model: z.custom<ScheduleModel>(),
+	}),
+	z.object({
+		mode: z.literal("cron"),
+		cron: z.string().trim().min(1, "Enter a schedule expression"),
+	}),
+]);
+export type BuilderSchedule = z.infer<typeof builderScheduleSchema>;
+
+export const builderExecutionSchema = z.object({
+	timeoutSeconds: z.number().int().positive().max(86_400),
+	maxRetries: z.number().int().min(0).max(10),
+	retryBackoff: z.enum(["exponential", "linear", "none"]),
+	concurrency: z.enum(["drop_if_running", "queue", "always"]),
+});
+export type BuilderExecution = z.infer<typeof builderExecutionSchema>;
+
+/**
+ * Per-automation model selection. ``0`` means "unset" — the builder resolves it
+ * to the eligible default during render, and the resolved (non-zero) ids are
+ * written onto ``definition.models`` at submit so the run is insulated from
+ * later chat/search-space model changes.
+ */
+export const builderModelsSchema = z.object({
+	agentLlmId: z.number().int(),
+	imageConfigId: z.number().int(),
+	visionConfigId: z.number().int(),
+});
+export type BuilderModels = z.infer<typeof builderModelsSchema>;
+
+export const builderFormSchema = z.object({
+	name: z.string().trim().min(1, "Give your automation a name").max(200),
+	description: z.string().trim().max(2000).nullable(),
+	tasks: z.array(builderTaskSchema).min(1, "Add at least one task"),
+	unattended: z.boolean(),
+	schedule: builderScheduleSchema.nullable(),
+	timezone: z.string().min(1),
+	execution: builderExecutionSchema,
+	tags: z.array(z.string()),
+	/** Carried through from an edited definition so we don't drop it. */
+	goal: z.string().nullable(),
+	/** Selected agent/image/vision models (``0`` = use the eligible default). */
+	models: builderModelsSchema,
+});
+export type BuilderForm = z.infer<typeof builderFormSchema>;
+
+// ---------------------------------------------------------------------------
+// Defaults / construction
+// ---------------------------------------------------------------------------
+
+export function getDefaultTimezone(): string {
+	try {
+		return Intl.DateTimeFormat().resolvedOptions().timeZone || "UTC";
+	} catch {
+		return "UTC";
+	}
+}
+
+export function getTimezones(): string[] {
+	try {
+		const supported = (
+			Intl as unknown as { supportedValuesOf?: (key: string) => string[] }
+		).supportedValuesOf?.("timeZone");
+		if (supported && supported.length > 0) return supported;
+	} catch {
+		// fall through
+	}
+	return ["UTC", getDefaultTimezone()];
+}
+
+function newId(): string {
+	try {
+		return crypto.randomUUID();
+	} catch {
+		return `task_${Math.random().toString(36).slice(2)}`;
+	}
+}
+
+export function emptyTask(): BuilderTask {
+	return { id: newId(), query: "", mentions: [], maxRetries: null, timeoutSeconds: null };
+}
+
+export function createEmptyForm(): BuilderForm {
+	return {
+		name: "",
+		description: null,
+		tasks: [emptyTask()],
+		unattended: true,
+		schedule: { mode: "preset", model: { ...DEFAULT_SCHEDULE } },
+		timezone: getDefaultTimezone(),
+		execution: {
+			timeoutSeconds: EXECUTION_DEFAULTS.timeout_seconds,
+			maxRetries: EXECUTION_DEFAULTS.max_retries,
+			retryBackoff: EXECUTION_DEFAULTS.retry_backoff,
+			concurrency: EXECUTION_DEFAULTS.concurrency,
+		},
+		tags: [],
+		goal: null,
+		models: { agentLlmId: 0, imageConfigId: 0, visionConfigId: 0 },
+	};
+}
+
+/** The cron string a schedule resolves to, regardless of preset/raw mode. */
+export function scheduleToCron(schedule: BuilderSchedule): string {
+	return schedule.mode === "preset" ? toCron(schedule.model) : schedule.cron.trim();
+}
+
+// ---------------------------------------------------------------------------
+// Form -> contract payloads
+// ---------------------------------------------------------------------------
+
+/**
+ * Project a task's @-mentions into the ``agent_task`` param fields the backend
+ * understands (the same names the chat ``new_chat`` request uses, minus
+ * SurfSense docs). Returns an empty object when there are no mentions so the
+ * params stay clean.
+ *
+ * ``mentioned_documents`` carries doc/folder chip metadata (so the run can
+ * resolve titles to paths); connectors live only in ``mentioned_connectors`` /
+ * ``mentioned_connector_ids`` to avoid duplicating them across buckets.
+ */
+function mentionParams(mentions: MentionedDocumentInfo[]): Record<string, unknown> {
+	if (mentions.length === 0) return {};
+	const documentIds: number[] = [];
+	const folderIds: number[] = [];
+	const connectorIds: number[] = [];
+	const documents: MentionedDocumentInfo[] = [];
+	const connectors: MentionedDocumentInfo[] = [];
+	for (const mention of mentions) {
+		if (mention.kind === "folder") {
+			folderIds.push(mention.id);
+			documents.push(mention);
+		} else if (mention.kind === "connector") {
+			connectorIds.push(mention.id);
+			connectors.push(mention);
+		} else {
+			documentIds.push(mention.id);
+			documents.push(mention);
+		}
+	}
+	const out: Record<string, unknown> = {};
+	if (documents.length > 0) out.mentioned_documents = documents;
+	if (documentIds.length > 0) out.mentioned_document_ids = documentIds;
+	if (folderIds.length > 0) out.mentioned_folder_ids = folderIds;
+	if (connectorIds.length > 0) {
+		out.mentioned_connector_ids = connectorIds;
+		out.mentioned_connectors = connectors;
+	}
+	return out;
+}
+
+function buildPlan(form: BuilderForm) {
+	return form.tasks.map((task, index) => {
+		const step: Record<string, unknown> = {
+			step_id: `step_${index + 1}`,
+			action: "agent_task",
+			params: {
+				query: task.query.trim(),
+				auto_approve_all: form.unattended,
+				...mentionParams(task.mentions),
+			},
+		};
+		if (task.maxRetries !== null) step.max_retries = task.maxRetries;
+		if (task.timeoutSeconds !== null) step.timeout_seconds = task.timeoutSeconds;
+		return step;
+	});
+}
+
+function buildDefinition(form: BuilderForm): AutomationDefinition {
+	return {
+		schema_version: "1.0",
+		name: form.name.trim(),
+		goal: form.goal,
+		// Triggers are attached at the top level of the create payload, not in
+		// the definition; the in-definition list stays empty.
+		triggers: [],
+		plan: buildPlan(form),
+		execution: {
+			timeout_seconds: form.execution.timeoutSeconds,
+			max_retries: form.execution.maxRetries,
+			retry_backoff: form.execution.retryBackoff,
+			concurrency: form.execution.concurrency,
+			on_failure: [],
+		},
+		metadata: { tags: form.tags },
+		// Only emit models when fully resolved (the builder seeds non-zero
+		// defaults before submit). A zero/unset triple is omitted so the
+		// backend falls back to the search-space snapshot.
+		...(hasResolvedModels(form.models)
+			? {
+					models: {
+						agent_llm_id: form.models.agentLlmId,
+						image_generation_config_id: form.models.imageConfigId,
+						vision_llm_config_id: form.models.visionConfigId,
+					},
+				}
+			: {}),
+	} as unknown as AutomationDefinition;
+}
+
+/** True once every model slot holds a concrete (non-zero) id. */
+export function hasResolvedModels(models: BuilderModels): boolean {
+	return models.agentLlmId !== 0 && models.imageConfigId !== 0 && models.visionConfigId !== 0;
+}
+
+/** The desired schedule trigger for this form, or ``null`` if none. */
+export function buildScheduleTrigger(form: BuilderForm): TriggerCreateRequest | null {
+	if (!form.schedule) return null;
+	return {
+		type: "schedule",
+		params: { cron: scheduleToCron(form.schedule), timezone: form.timezone },
+		static_inputs: {},
+		enabled: true,
+	};
+}
+
+export function buildCreatePayload(
+	form: BuilderForm,
+	searchSpaceId: number
+): AutomationCreateRequest {
+	const trigger = buildScheduleTrigger(form);
+	return {
+		search_space_id: searchSpaceId,
+		name: form.name.trim(),
+		description: form.description?.trim() ? form.description.trim() : null,
+		definition: buildDefinition(form),
+		triggers: trigger ? [trigger] : [],
+	};
+}
+
+export function buildUpdatePayload(form: BuilderForm): AutomationUpdateRequest {
+	return {
+		name: form.name.trim(),
+		description: form.description?.trim() ? form.description.trim() : null,
+		definition: buildDefinition(form),
+	};
+}
+
+// ---------------------------------------------------------------------------
+// Contract -> form (edit hydration with safe fallback)
+// ---------------------------------------------------------------------------
+
+export type HydrateResult =
+	| { formable: true; form: BuilderForm }
+	| { formable: false; reason: string };
+
+/** A trigger as seen by the hydrator: both ``Trigger`` and ``TriggerCreateRequest`` fit. */
+export interface HydratableTrigger {
+	type: string;
+	params: Record<string, unknown>;
+}
+
+const BACKOFF_VALUES = ["exponential", "linear", "none"] as const;
+const CONCURRENCY_VALUES = ["drop_if_running", "queue", "always"] as const;
+
+function asRecord(value: unknown): Record<string, unknown> {
+	return value && typeof value === "object" ? (value as Record<string, unknown>) : {};
+}
+
+/** Best-effort projection of a stored ``mentioned_documents`` entry into a chip. */
+function coerceMention(raw: unknown): MentionedDocumentInfo | null {
+	const o = asRecord(raw);
+	if (typeof o.id !== "number" || typeof o.title !== "string") return null;
+	if (o.kind === "folder") {
+		return { id: o.id, title: o.title, kind: "folder" };
+	}
+	if (o.kind === "connector") {
+		if (typeof o.connector_type !== "string" || typeof o.account_name !== "string") return null;
+		return {
+			id: o.id,
+			title: o.title,
+			kind: "connector",
+			connector_type: o.connector_type,
+			account_name: o.account_name,
+		};
+	}
+	return {
+		id: o.id,
+		title: o.title,
+		kind: "doc",
+		document_type: typeof o.document_type === "string" ? o.document_type : "UNKNOWN",
+	};
+}
+
+/**
+ * Rebuild a task's mention chips from step params. Doc/folder chips come from
+ * ``mentioned_documents``; connector chips from ``mentioned_connectors`` (kept
+ * in their own bucket). Returns ``null`` when the step carries mention IDs that
+ * aren't backed by usable chip metadata (e.g. hand-edited JSON), so the caller
+ * can fall back to JSON mode rather than silently dropping those IDs on save.
+ */
+function mentionsFromParams(params: Record<string, unknown>): MentionedDocumentInfo[] | null {
+	const mentions: MentionedDocumentInfo[] = [];
+	const docList = Array.isArray(params.mentioned_documents) ? params.mentioned_documents : [];
+	for (const raw of docList) {
+		const mention = coerceMention(raw);
+		// Connectors belong in their own bucket; ignore any that leak in here.
+		if (mention && mention.kind !== "connector") mentions.push(mention);
+	}
+	const connectorList = Array.isArray(params.mentioned_connectors)
+		? params.mentioned_connectors
+		: [];
+	for (const raw of connectorList) {
+		const mention = coerceMention(raw);
+		if (mention && mention.kind === "connector") mentions.push(mention);
+	}
+
+	const haveByKind = {
+		doc: new Set(mentions.filter((m) => m.kind === "doc").map((m) => m.id)),
+		folder: new Set(mentions.filter((m) => m.kind === "folder").map((m) => m.id)),
+		connector: new Set(mentions.filter((m) => m.kind === "connector").map((m) => m.id)),
+	};
+	const idChecks: Array<[unknown, Set<number>]> = [
+		[params.mentioned_document_ids, haveByKind.doc],
+		[params.mentioned_folder_ids, haveByKind.folder],
+		[params.mentioned_connector_ids, haveByKind.connector],
+	];
+	for (const [arr, have] of idChecks) {
+		if (!Array.isArray(arr)) continue;
+		for (const id of arr) {
+			if (typeof id === "number" && !have.has(id)) return null;
+		}
+	}
+	return mentions;
+}
+
+/**
+ * Core projection of a definition + triggers into the builder form. Returns
+ * ``formable: false`` whenever something can't be represented, so the caller
+ * can drop into raw-JSON mode without losing data. Shared by the edit
+ * hydrator and the JSON-mode round-trip.
+ *
+ * The definition is read defensively (``unknown``) so a partially edited JSON
+ * tree can still round-trip into the form; completeness is enforced by the
+ * form's own validation at submit time, not here.
+ */
+export function hydrateForm(
+	name: string,
+	description: string | null,
+	def: unknown,
+	triggers: HydratableTrigger[]
+): HydrateResult {
+	const d = asRecord(def);
+
+	if (d.inputs) {
+		return { formable: false, reason: "uses an inputs schema" };
+	}
+
+	const exec = asRecord(d.execution);
+	const onFailure = Array.isArray(exec.on_failure) ? exec.on_failure : [];
+	if (onFailure.length > 0) {
+		return { formable: false, reason: "has on-failure steps" };
+	}
+
+	const metadata = asRecord(d.metadata);
+	const extraMetadataKeys = Object.keys(metadata).filter((key) => key !== "tags");
+	if (extraMetadataKeys.length > 0) {
+		return { formable: false, reason: "has custom metadata" };
+	}
+
+	const plan = Array.isArray(d.plan) ? d.plan : [];
+	const tasks: BuilderTask[] = [];
+	let unattended = true;
+	for (const rawStep of plan) {
+		const step = asRecord(rawStep);
+		if (step.action !== "agent_task") {
+			return { formable: false, reason: `uses the "${String(step.action)}" action` };
+		}
+		if (step.when) {
+			return { formable: false, reason: "uses conditional steps" };
+		}
+		const params = asRecord(step.params);
+		const query = typeof params.query === "string" ? params.query : "";
+		// auto_approve_all is a single global toggle in the form; if any step is
+		// explicitly false we surface the toggle as off.
+		if (params.auto_approve_all === false) unattended = false;
+		const mentions = mentionsFromParams(params);
+		if (mentions === null) {
+			return { formable: false, reason: "references mentions without metadata" };
+		}
+		tasks.push({
+			id: newId(),
+			query,
+			mentions,
+			maxRetries: typeof step.max_retries === "number" ? step.max_retries : null,
+			timeoutSeconds: typeof step.timeout_seconds === "number" ? step.timeout_seconds : null,
+		});
+	}
+	if (tasks.length === 0) {
+		return { formable: false, reason: "has no steps" };
+	}
+
+	if (triggers.length > 1) {
+		return { formable: false, reason: "has multiple triggers" };
+	}
+	const trigger = triggers[0];
+	let schedule: BuilderSchedule | null = null;
+	let timezone = getDefaultTimezone();
+	if (trigger) {
+		if (trigger.type !== "schedule") {
+			return { formable: false, reason: `has a "${trigger.type}" trigger` };
+		}
+		const cron = typeof trigger.params?.cron === "string" ? trigger.params.cron : "";
+		timezone = typeof trigger.params?.timezone === "string" ? trigger.params.timezone : timezone;
+		const model = fromCron(cron);
+		schedule = model ? { mode: "preset", model } : { mode: "cron", cron };
+	}
+
+	const retryBackoff = BACKOFF_VALUES.includes(exec.retry_backoff as never)
+		? (exec.retry_backoff as BuilderExecution["retryBackoff"])
+		: EXECUTION_DEFAULTS.retry_backoff;
+	const concurrency = CONCURRENCY_VALUES.includes(exec.concurrency as never)
+		? (exec.concurrency as BuilderExecution["concurrency"])
+		: EXECUTION_DEFAULTS.concurrency;
+	const tags = Array.isArray(metadata.tags)
+		? metadata.tags.filter((tag): tag is string => typeof tag === "string")
+		: [];
+
+	const models = modelsFromDefinition(d.models);
+
+	return {
+		formable: true,
+		form: {
+			name,
+			description: description ?? null,
+			tasks,
+			unattended,
+			schedule,
+			timezone,
+			execution: {
+				timeoutSeconds:
+					typeof exec.timeout_seconds === "number"
+						? exec.timeout_seconds
+						: EXECUTION_DEFAULTS.timeout_seconds,
+				maxRetries:
+					typeof exec.max_retries === "number" ? exec.max_retries : EXECUTION_DEFAULTS.max_retries,
+				retryBackoff,
+				concurrency,
+			},
+			tags,
+			goal: typeof d.goal === "string" ? d.goal : null,
+			models,
+		},
+	};
+}
+
+/** Read a captured ``definition.models`` snapshot into the form's model slots. */
+function modelsFromDefinition(raw: unknown): BuilderModels {
+	const m = asRecord(raw);
+	const num = (value: unknown) => (typeof value === "number" ? value : 0);
+	return {
+		agentLlmId: num(m.agent_llm_id),
+		imageConfigId: num(m.image_generation_config_id),
+		visionConfigId: num(m.vision_llm_config_id),
+	};
+}
+
+/**
+ * Project an existing automation into the builder form for editing.
+ */
+export function formFromAutomation(automation: Automation): HydrateResult {
+	return hydrateForm(
+		automation.name,
+		automation.description ?? null,
+		automation.definition,
+		automation.triggers ?? []
+	);
+}
diff --git a/surfsense_web/lib/automations/describe-cron.ts b/surfsense_web/lib/automations/describe-cron.ts
new file mode 100644
index 000000000..19f7ff991
--- /dev/null
+++ b/surfsense_web/lib/automations/describe-cron.ts
@@ -0,0 +1,67 @@
+/**
+ * Minimal cron describer for the 5-field patterns the SurfSense drafter LLM
+ * actually produces (daily, weekdays, weekly, monthly, hourly). Falls back
+ * to the raw expression when unrecognized so the user still sees something
+ * honest instead of a guess.
+ *
+ * Lives under ``lib/automations/`` because both the dashboard slice and the
+ * chat ``create_automation`` approval card render schedule descriptions —
+ * keeping the helper outside either feature avoids a layering violation.
+ */
+
+const DAY_NAMES = ["Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"];
+
+export function describeCron(cron: string): string {
+	const parts = cron.trim().split(/\s+/);
+	if (parts.length !== 5) return cron;
+
+	const [minute, hour, dom, month, dow] = parts;
+
+	// Daily at H:MM ("0 9 * * *")
+	if (month === "*" && dom === "*" && dow === "*" && /^\d+$/.test(minute) && /^\d+$/.test(hour)) {
+		return `Daily at ${formatTime(hour, minute)}`;
+	}
+
+	// Weekdays at H:MM ("0 9 * * 1-5")
+	if (month === "*" && dom === "*" && dow === "1-5" && /^\d+$/.test(minute) && /^\d+$/.test(hour)) {
+		return `Mon–Fri at ${formatTime(hour, minute)}`;
+	}
+
+	// Specific weekday(s) ("0 9 * * 1" or "0 9 * * 1,3,5")
+	if (
+		month === "*" &&
+		dom === "*" &&
+		/^\d+$/.test(minute) &&
+		/^\d+$/.test(hour) &&
+		/^[\d,]+$/.test(dow)
+	) {
+		const days = dow
+			.split(",")
+			.map((d) => DAY_NAMES[Number(d) % 7])
+			.filter(Boolean)
+			.join(", ");
+		if (days) return `${days} at ${formatTime(hour, minute)}`;
+	}
+
+	// Monthly on day N ("0 9 1 * *")
+	if (
+		month === "*" &&
+		dow === "*" &&
+		/^\d+$/.test(dom) &&
+		/^\d+$/.test(hour) &&
+		/^\d+$/.test(minute)
+	) {
+		return `Day ${dom} of each month at ${formatTime(hour, minute)}`;
+	}
+
+	// Hourly ("0 * * * *")
+	if (month === "*" && dom === "*" && dow === "*" && hour === "*" && /^\d+$/.test(minute)) {
+		return minute === "0" ? "Every hour" : `Every hour at :${minute.padStart(2, "0")}`;
+	}
+
+	return cron;
+}
+
+function formatTime(hour: string, minute: string): string {
+	return `${hour.padStart(2, "0")}:${minute.padStart(2, "0")}`;
+}
diff --git a/surfsense_web/lib/automations/run-duration.ts b/surfsense_web/lib/automations/run-duration.ts
new file mode 100644
index 000000000..8242ee7cb
--- /dev/null
+++ b/surfsense_web/lib/automations/run-duration.ts
@@ -0,0 +1,19 @@
+/**
+ * Format the wall-clock duration between a run/step's start and finish
+ * timestamps into a compact, human-readable label (e.g. `850ms`, `4.2s`,
+ * `1m 30s`). Returns `null` when either bound is missing or the delta is
+ * negative/non-finite, so callers can simply omit the label.
+ */
+export function formatDuration(
+	started: string | null | undefined,
+	finished: string | null | undefined
+): string | null {
+	if (!started || !finished) return null;
+	const ms = new Date(finished).getTime() - new Date(started).getTime();
+	if (!Number.isFinite(ms) || ms < 0) return null;
+	if (ms < 1000) return `${ms}ms`;
+	if (ms < 60_000) return `${(ms / 1000).toFixed(1)}s`;
+	const minutes = Math.floor(ms / 60_000);
+	const seconds = Math.floor((ms % 60_000) / 1000);
+	return `${minutes}m ${seconds}s`;
+}
diff --git a/surfsense_web/lib/automations/schedule-builder.ts b/surfsense_web/lib/automations/schedule-builder.ts
new file mode 100644
index 000000000..37f4cfa14
--- /dev/null
+++ b/surfsense_web/lib/automations/schedule-builder.ts
@@ -0,0 +1,132 @@
+/**
+ * Bidirectional bridge between a friendly schedule model and the 5-field cron
+ * expression the backend ``schedule`` trigger expects (see
+ * ``app/automations/triggers/schedule/params.py``).
+ *
+ * The form builder never asks users to type cron. They pick a frequency + time
+ * (+ days), which ``toCron`` compiles. On edit we ``fromCron`` an existing
+ * expression back into the model; anything we don't recognize returns ``null``
+ * so the caller can fall back to a raw-cron escape hatch instead of silently
+ * losing the user's schedule.
+ *
+ * The recognized patterns are intentionally the same family that
+ * ``describe-cron.ts`` humanizes, keeping the picker and the label in sync.
+ */
+
+export type ScheduleFrequency = "hourly" | "daily" | "weekdays" | "weekly" | "monthly";
+
+export interface ScheduleModel {
+	frequency: ScheduleFrequency;
+	/** 0-23. Ignored for ``hourly``. */
+	hour: number;
+	/** 0-59. */
+	minute: number;
+	/** 0 (Sun) - 6 (Sat). Used by ``weekly``. */
+	daysOfWeek: number[];
+	/** 1-31. Used by ``monthly``. */
+	dayOfMonth: number;
+}
+
+/** Sunday-first, matching cron's 0-6 day-of-week numbering. */
+export const WEEKDAY_OPTIONS: ReadonlyArray<{ value: number; short: string; long: string }> = [
+	{ value: 1, short: "Mon", long: "Monday" },
+	{ value: 2, short: "Tue", long: "Tuesday" },
+	{ value: 3, short: "Wed", long: "Wednesday" },
+	{ value: 4, short: "Thu", long: "Thursday" },
+	{ value: 5, short: "Fri", long: "Friday" },
+	{ value: 6, short: "Sat", long: "Saturday" },
+	{ value: 0, short: "Sun", long: "Sunday" },
+];
+
+export const FREQUENCY_OPTIONS: ReadonlyArray<{ value: ScheduleFrequency; label: string }> = [
+	{ value: "hourly", label: "Every hour" },
+	{ value: "daily", label: "Every day" },
+	{ value: "weekdays", label: "Every weekday (Mon\u2013Fri)" },
+	{ value: "weekly", label: "Specific days of the week" },
+	{ value: "monthly", label: "Once a month" },
+];
+
+export const DEFAULT_SCHEDULE: ScheduleModel = {
+	frequency: "weekdays",
+	hour: 9,
+	minute: 0,
+	daysOfWeek: [1],
+	dayOfMonth: 1,
+};
+
+function isInt(value: string): boolean {
+	return /^\d+$/.test(value);
+}
+
+function clamp(value: number, min: number, max: number): number {
+	if (Number.isNaN(value)) return min;
+	return Math.min(max, Math.max(min, value));
+}
+
+/** Compile a schedule model into a 5-field cron expression. */
+export function toCron(model: ScheduleModel): string {
+	const minute = clamp(model.minute, 0, 59);
+	const hour = clamp(model.hour, 0, 23);
+
+	switch (model.frequency) {
+		case "hourly":
+			return `${minute} * * * *`;
+		case "daily":
+			return `${minute} ${hour} * * *`;
+		case "weekdays":
+			return `${minute} ${hour} * * 1-5`;
+		case "weekly": {
+			const days = [...new Set(model.daysOfWeek)].sort((a, b) => a - b);
+			// Guard against an empty selection producing an invalid cron.
+			const dow = days.length > 0 ? days.join(",") : "1";
+			return `${minute} ${hour} * * ${dow}`;
+		}
+		case "monthly":
+			return `${minute} ${hour} ${clamp(model.dayOfMonth, 1, 31)} * *`;
+	}
+}
+
+/**
+ * Parse a 5-field cron expression back into a schedule model. Returns ``null``
+ * for anything outside the recognized pattern family so callers can fall back
+ * to the raw-cron field.
+ */
+export function fromCron(cron: string): ScheduleModel | null {
+	const parts = cron.trim().split(/\s+/);
+	if (parts.length !== 5) return null;
+
+	const [minute, hour, dom, month, dow] = parts;
+
+	// Hourly: "M * * * *"
+	if (month === "*" && dom === "*" && dow === "*" && hour === "*" && isInt(minute)) {
+		return { ...DEFAULT_SCHEDULE, frequency: "hourly", minute: Number(minute) };
+	}
+
+	// Everything below requires concrete minute + hour.
+	if (!isInt(minute) || !isInt(hour)) return null;
+
+	const base = { hour: Number(hour), minute: Number(minute) };
+
+	// Daily: "M H * * *"
+	if (month === "*" && dom === "*" && dow === "*") {
+		return { ...DEFAULT_SCHEDULE, ...base, frequency: "daily" };
+	}
+
+	// Weekdays: "M H * * 1-5"
+	if (month === "*" && dom === "*" && dow === "1-5") {
+		return { ...DEFAULT_SCHEDULE, ...base, frequency: "weekdays" };
+	}
+
+	// Weekly: "M H * * 1,3,5"
+	if (month === "*" && dom === "*" && /^[0-6](,[0-6])*$/.test(dow)) {
+		const daysOfWeek = [...new Set(dow.split(",").map(Number))].sort((a, b) => a - b);
+		return { ...DEFAULT_SCHEDULE, ...base, frequency: "weekly", daysOfWeek };
+	}
+
+	// Monthly: "M H D * *"
+	if (month === "*" && dow === "*" && isInt(dom)) {
+		return { ...DEFAULT_SCHEDULE, ...base, frequency: "monthly", dayOfMonth: Number(dom) };
+	}
+
+	return null;
+}
diff --git a/surfsense_web/lib/chat/example-prompts.ts b/surfsense_web/lib/chat/example-prompts.ts
new file mode 100644
index 000000000..76b64b2ba
--- /dev/null
+++ b/surfsense_web/lib/chat/example-prompts.ts
@@ -0,0 +1,66 @@
+/**
+ * Curated example chat prompts shown on the empty new-chat screen.
+ *
+ * These mirror the homepage hero's "use case" concept but with runnable chat
+ * queries, grouped into a few broad categories. Bracketed slots like `[topic]`
+ * are intentional: clicking a prompt prefills the composer so the user can fill
+ * them in before sending.
+ *
+ * This is a module-scope constant so it is created once, not per render.
+ */
+
+export interface ChatExampleCategory {
+	/** Stable id used as the Tabs value */
+	id: string;
+	/** Short, human-readable tab label */
+	label: string;
+	/** Runnable example queries for this category */
+	prompts: string[];
+}
+
+export const CHAT_EXAMPLE_CATEGORIES: ChatExampleCategory[] = [
+	{
+		id: "search",
+		label: "Search & Summarize",
+		prompts: [
+			"Summarize the key points across all the documents in this space.",
+			"What do my files say about [topic]? Answer with citations.",
+			"Find every mention of [keyword] and list the sources.",
+			"Give me a cited briefing on the documents I added this week.",
+			"Compare these two documents and highlight the differences.",
+		],
+	},
+	{
+		id: "create",
+		label: "Create",
+		prompts: [
+			"Write a cited research report on [topic] from my documents.",
+			"Turn this folder into a two-host podcast I can listen to.",
+			"Create a slide deck and a narrated video overview from these sources.",
+			"Generate an image to illustrate [concept] for my report.",
+			"Tailor my resume to this job description so it gets past ATS and lands an interview.",
+		],
+	},
+	{
+		id: "automate",
+		label: "Automate",
+		prompts: [
+			"Email me a daily brief of new documents in my knowledge base every morning.",
+			"When a PDF lands in my Research folder, generate a cited AI summary.",
+			"Generate a weekly status report from my Slack and Gmail every Friday.",
+			"Build an automation that turns new meeting notes into minutes with action items.",
+			"Run a monthly competitor analysis report and save it to my workspace.",
+		],
+	},
+	{
+		id: "tools",
+		label: "Across your tools",
+		prompts: [
+			"Search across my Notion, Slack, Google Drive and Gmail for [topic].",
+			"Post this research summary to my Notion workspace.",
+			"Send these meeting action items to our team Slack channel.",
+			"Create a Jira ticket from this bug report.",
+			"Open a Linear issue from this feature request.",
+		],
+	},
+];
diff --git a/surfsense_web/lib/chat/mention-doc-key.ts b/surfsense_web/lib/chat/mention-doc-key.ts
index 5c0bd6254..87676dbd6 100644
--- a/surfsense_web/lib/chat/mention-doc-key.ts
+++ b/surfsense_web/lib/chat/mention-doc-key.ts
@@ -1,18 +1,20 @@
 type MentionKeyInput = {
 	id: number;
 	document_type?: string | null;
-	kind?: "doc" | "folder";
+	connector_type?: string | null;
+	kind?: "doc" | "folder" | "connector";
 };
 
 /**
  * Build a stable dedup key for a mention chip.
  *
- * The ``kind:document_type:id`` shape prevents a document and a folder
- * with the same integer id from colliding in the chip array (folders
- * use the ``FOLDER`` sentinel ``document_type``; the ``kind`` prefix
- * is the belt-and-braces guard).
+ * Each mention kind keys off its real identity fields:
+ * docs by document type, folders by folder id, and connectors by
+ * connector type + account id.
  */
 export function getMentionDocKey(doc: MentionKeyInput): string {
 	const kind = doc.kind ?? "doc";
-	return `${kind}:${doc.document_type ?? "UNKNOWN"}:${doc.id}`;
+	if (kind === "folder") return `folder:${doc.id}`;
+	if (kind === "connector") return `connector:${doc.connector_type ?? "UNKNOWN"}:${doc.id}`;
+	return `doc:${doc.document_type ?? "UNKNOWN"}:${doc.id}`;
 }
diff --git a/surfsense_web/lib/chat/thread-persistence.ts b/surfsense_web/lib/chat/thread-persistence.ts
index abe6bc02c..d30b87665 100644
--- a/surfsense_web/lib/chat/thread-persistence.ts
+++ b/surfsense_web/lib/chat/thread-persistence.ts
@@ -221,7 +221,6 @@ export interface RegenerateParams {
 		content: string;
 	}>;
 	mentionedDocumentIds?: number[];
-	mentionedSurfsenseDocIds?: number[];
 }
 
 /**
diff --git a/surfsense_web/lib/connector-telemetry.ts b/surfsense_web/lib/connector-telemetry.ts
new file mode 100644
index 000000000..eeccea1e8
--- /dev/null
+++ b/surfsense_web/lib/connector-telemetry.ts
@@ -0,0 +1,128 @@
+import {
+	COMPOSIO_CONNECTORS,
+	CRAWLERS,
+	OAUTH_CONNECTORS,
+	OTHER_CONNECTORS,
+} from "@/components/assistant-ui/connector-popup/constants/connector-constants";
+import { EnumConnectorName } from "@/contracts/enums/connector";
+import type { SearchSourceConnector } from "@/contracts/types/connector.types";
+
+// =============================================================================
+// Connector Telemetry Types & Registry
+// =============================================================================
+
+export type ConnectorTelemetryGroup = "oauth" | "composio" | "crawler" | "other" | "unknown";
+
+export interface ConnectorTelemetryMeta {
+	connector_type: string;
+	connector_title: string;
+	connector_group: ConnectorTelemetryGroup;
+	is_oauth: boolean;
+}
+
+/**
+ * Single source of truth for "what does this connector_type look like in
+ * analytics?". Any connector added to the lists above is automatically
+ * picked up here, so adding a new integration does NOT require touching
+ * `lib/posthog/events.ts` or per-connector tracking code.
+ */
+let connectorTelemetryRegistry: ReadonlyMap<string, ConnectorTelemetryMeta> | undefined;
+
+function getConnectorTelemetryRegistry(): ReadonlyMap<string, ConnectorTelemetryMeta> {
+	if (connectorTelemetryRegistry) return connectorTelemetryRegistry;
+
+	const map = new Map<string, ConnectorTelemetryMeta>();
+
+	for (const c of OAUTH_CONNECTORS) {
+		map.set(c.connectorType, {
+			connector_type: c.connectorType,
+			connector_title: c.title,
+			connector_group: "oauth",
+			is_oauth: true,
+		});
+	}
+	for (const c of COMPOSIO_CONNECTORS) {
+		map.set(c.connectorType, {
+			connector_type: c.connectorType,
+			connector_title: c.title,
+			connector_group: "composio",
+			is_oauth: true,
+		});
+	}
+	for (const c of CRAWLERS) {
+		map.set(c.connectorType, {
+			connector_type: c.connectorType,
+			connector_title: c.title,
+			connector_group: "crawler",
+			is_oauth: false,
+		});
+	}
+	for (const c of OTHER_CONNECTORS) {
+		map.set(c.connectorType, {
+			connector_type: c.connectorType,
+			connector_title: c.title,
+			connector_group: "other",
+			is_oauth: false,
+		});
+	}
+
+	connectorTelemetryRegistry = map;
+	return connectorTelemetryRegistry;
+}
+
+/**
+ * Returns telemetry metadata for a connector_type, or a minimal "unknown"
+ * record so tracking never no-ops for connectors that exist in the backend
+ * but were forgotten in the UI registry.
+ */
+export function getConnectorTelemetryMeta(connectorType: string): ConnectorTelemetryMeta {
+	const hit = getConnectorTelemetryRegistry().get(connectorType);
+	if (hit) return hit;
+
+	return {
+		connector_type: connectorType,
+		connector_title: connectorType,
+		connector_group: "unknown",
+		is_oauth: false,
+	};
+}
+
+// =============================================================================
+// Reauth Endpoint Resolution
+// =============================================================================
+
+/**
+ * Legacy (non-MCP) OAuth reauth endpoints, keyed by connector type.
+ * These are used for connectors that were NOT created via MCP OAuth.
+ */
+const LEGACY_REAUTH_ENDPOINTS: Partial<Record<string, string>> = {
+	[EnumConnectorName.LINEAR_CONNECTOR]: "/api/v1/auth/linear/connector/reauth",
+	[EnumConnectorName.JIRA_CONNECTOR]: "/api/v1/auth/jira/connector/reauth",
+	[EnumConnectorName.NOTION_CONNECTOR]: "/api/v1/auth/notion/connector/reauth",
+	[EnumConnectorName.GOOGLE_DRIVE_CONNECTOR]: "/api/v1/auth/google/drive/connector/reauth",
+	[EnumConnectorName.GOOGLE_GMAIL_CONNECTOR]: "/api/v1/auth/google/gmail/connector/reauth",
+	[EnumConnectorName.GOOGLE_CALENDAR_CONNECTOR]: "/api/v1/auth/google/calendar/connector/reauth",
+	[EnumConnectorName.COMPOSIO_GOOGLE_DRIVE_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
+	[EnumConnectorName.COMPOSIO_GMAIL_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
+	[EnumConnectorName.COMPOSIO_GOOGLE_CALENDAR_CONNECTOR]: "/api/v1/auth/composio/connector/reauth",
+	[EnumConnectorName.ONEDRIVE_CONNECTOR]: "/api/v1/auth/onedrive/connector/reauth",
+	[EnumConnectorName.DROPBOX_CONNECTOR]: "/api/v1/auth/dropbox/connector/reauth",
+	[EnumConnectorName.CONFLUENCE_CONNECTOR]: "/api/v1/auth/confluence/connector/reauth",
+	[EnumConnectorName.TEAMS_CONNECTOR]: "/api/v1/auth/teams/connector/reauth",
+	[EnumConnectorName.DISCORD_CONNECTOR]: "/api/v1/auth/discord/connector/reauth",
+};
+
+/**
+ * Resolve the reauth endpoint for a connector.
+ *
+ * MCP OAuth connectors (those with ``config.mcp_service``) dynamically build
+ * the URL from the service key. Legacy OAuth connectors fall back to the
+ * static ``LEGACY_REAUTH_ENDPOINTS`` map.
+ */
+export function getReauthEndpoint(connector: SearchSourceConnector): string | undefined {
+	const mcpService = connector.config?.mcp_service as string | undefined;
+	if (mcpService) {
+		return `/api/v1/auth/mcp/${mcpService}/connector/reauth`;
+	}
+	return LEGACY_REAUTH_ENDPOINTS[connector.connector_type];
+}
diff --git a/surfsense_web/lib/documents/document-type-labels.ts b/surfsense_web/lib/documents/document-type-labels.ts
index 844961886..9e187f940 100644
--- a/surfsense_web/lib/documents/document-type-labels.ts
+++ b/surfsense_web/lib/documents/document-type-labels.ts
@@ -25,7 +25,6 @@ export function getDocumentTypeLabel(type: string): string {
 		CIRCLEBACK: "Circleback",
 		OBSIDIAN_CONNECTOR: "Obsidian",
 		LOCAL_FOLDER_FILE: "Local Folder",
-		SURFSENSE_DOCS: "SurfSense Docs",
 		NOTE: "Note",
 		COMPOSIO_GOOGLE_DRIVE_CONNECTOR: "Composio Google Drive",
 		COMPOSIO_GMAIL_CONNECTOR: "Composio Gmail",
diff --git a/surfsense_web/lib/format-date.ts b/surfsense_web/lib/format-date.ts
index 9decd3402..c2f445537 100644
--- a/surfsense_web/lib/format-date.ts
+++ b/surfsense_web/lib/format-date.ts
@@ -1,4 +1,12 @@
-import { differenceInDays, differenceInMinutes, format, isToday, isYesterday } from "date-fns";
+import {
+	differenceInDays,
+	differenceInMinutes,
+	format,
+	isThisYear,
+	isToday,
+	isTomorrow,
+	isYesterday,
+} from "date-fns";
 
 /**
  * Format a date string as a human-readable relative time
@@ -23,6 +31,36 @@ export function formatRelativeDate(dateString: string): string {
 	return format(date, "MMM d, yyyy");
 }
 
+/**
+ * Format a future date string as a human-readable countdown.
+ * - < 1 min: "Any moment"
+ * - < 60 min: "in 15m"
+ * - Today: "Today, 2:30 PM"
+ * - Tomorrow: "Tomorrow, 2:30 PM"
+ * - < 7 days: "in 3d"
+ * - This year: "May 30, 2:30 PM"
+ * - Older: "Jan 15, 2027"
+ *
+ * Mirrors {@link formatRelativeDate} but for moments strictly after now.
+ * Falls back to the past-relative formatter if the timestamp is not in
+ * the future (defensive — guards against stale "next_fire_at" values).
+ */
+export function formatRelativeFutureDate(dateString: string): string {
+	const date = new Date(dateString);
+	const now = new Date();
+	const minutesAhead = differenceInMinutes(date, now);
+	const daysAhead = differenceInDays(date, now);
+
+	if (minutesAhead <= 0) return formatRelativeDate(dateString);
+	if (minutesAhead < 1) return "Any moment";
+	if (minutesAhead < 60) return `in ${minutesAhead}m`;
+	if (isToday(date)) return `Today, ${format(date, "h:mm a")}`;
+	if (isTomorrow(date)) return `Tomorrow, ${format(date, "h:mm a")}`;
+	if (daysAhead < 7) return `in ${daysAhead}d`;
+	if (isThisYear(date)) return format(date, "MMM d, h:mm a");
+	return format(date, "MMM d, yyyy");
+}
+
 /**
  * Format a thread's last-updated timestamp for the chats sidebars.
  * Example: "Mar 23, 2026 at 4:30 PM"
diff --git a/surfsense_web/lib/layout-events.ts b/surfsense_web/lib/layout-events.ts
index 45c52f7a4..755329c41 100644
--- a/surfsense_web/lib/layout-events.ts
+++ b/surfsense_web/lib/layout-events.ts
@@ -1 +1,11 @@
-export const SLIDEOUT_PANEL_OPENED_EVENT = "slideout-panel-opened";
+import { atom } from "jotai";
+
+/**
+ * Tick counter that increments each time a sidebar slide-out panel opens.
+ * Consumers read this with `useAtomValue` and store the last-seen value in
+ * a ref so the effect fires only when the tick changes. This preserves the
+ * one-shot semantics of the previous window-event implementation: a
+ * subscriber that mounts after a panel has already opened does not
+ * retroactively re-trigger.
+ */
+export const slideoutOpenedTickAtom = atom(0);
diff --git a/surfsense_web/lib/posthog/events.ts b/surfsense_web/lib/posthog/events.ts
index 127685fe8..4dc644d5e 100644
--- a/surfsense_web/lib/posthog/events.ts
+++ b/surfsense_web/lib/posthog/events.ts
@@ -1,6 +1,6 @@
 import posthog from "posthog-js";
-import { getConnectorTelemetryMeta } from "@/components/assistant-ui/connector-popup/constants/connector-constants";
 import type { ChatErrorKind, ChatErrorSeverity, ChatFlow } from "@/lib/chat/chat-error-classifier";
+import { getConnectorTelemetryMeta } from "@/lib/connector-telemetry";
 
 /**
  * PostHog Analytics Event Definitions
@@ -19,6 +19,7 @@ import type { ChatErrorKind, ChatErrorSeverity, ChatFlow } from "@/lib/chat/chat
  * - connector: External connector events (all lifecycle stages)
  * - contact: Contact form events
  * - settings: Settings changes
+ * - automation: Automation lifecycle (create/update/delete/trigger/chat)
  * - marketing: Marketing/referral tracking
  */
 
@@ -33,7 +34,7 @@ function safeCapture(event: string, properties?: Record<string, unknown>) {
 /**
  * Drop undefined values so PostHog doesn't log `"foo": undefined` noise.
  */
-function compact<T extends Record<string, unknown>>(obj: T): Record<string, unknown> {
+function compact<T extends object>(obj: T): Record<string, unknown> {
 	const out: Record<string, unknown> = {};
 	for (const [k, v] of Object.entries(obj)) {
 		if (v !== undefined) out[k] = v;
@@ -598,6 +599,146 @@ export function trackReferralLanding(refCode: string, landingUrl: string) {
 	});
 }
 
+// ============================================
+// AUTOMATION EVENTS
+// ============================================
+
+interface AutomationCreatedProps {
+	search_space_id: number;
+	automation_id: number;
+	task_count?: number;
+	trigger_type?: string;
+	has_schedule?: boolean;
+	agent_llm_id?: number;
+	image_generation_config_id?: number;
+	vision_llm_config_id?: number;
+	tags_count?: number;
+}
+
+export function trackAutomationCreated(props: AutomationCreatedProps) {
+	safeCapture("automation_created", compact(props));
+}
+
+export function trackAutomationCreateFailed(props: { search_space_id?: number; error?: string }) {
+	safeCapture("automation_create_failed", compact(props));
+}
+
+export function trackAutomationUpdated(props: {
+	automation_id: number;
+	search_space_id?: number;
+	has_definition_change?: boolean;
+	has_name_change?: boolean;
+	has_description_change?: boolean;
+	task_count?: number;
+}) {
+	safeCapture("automation_updated", compact(props));
+}
+
+export function trackAutomationStatusChanged(props: {
+	automation_id: number;
+	search_space_id?: number;
+	next_status: string;
+}) {
+	safeCapture("automation_status_changed", compact(props));
+}
+
+export function trackAutomationUpdateFailed(props: { automation_id: number; error?: string }) {
+	safeCapture("automation_update_failed", compact(props));
+}
+
+export function trackAutomationDeleted(props: { automation_id: number; search_space_id?: number }) {
+	safeCapture("automation_deleted", compact(props));
+}
+
+export function trackAutomationDeleteFailed(props: { automation_id: number; error?: string }) {
+	safeCapture("automation_delete_failed", compact(props));
+}
+
+export function trackAutomationTriggerAdded(props: {
+	automation_id: number;
+	trigger_id?: number;
+	trigger_type?: string;
+	enabled?: boolean;
+	has_cron?: boolean;
+}) {
+	safeCapture("automation_trigger_added", compact(props));
+}
+
+export function trackAutomationTriggerAddFailed(props: { automation_id: number; error?: string }) {
+	safeCapture("automation_trigger_add_failed", compact(props));
+}
+
+export function trackAutomationTriggerUpdated(props: {
+	automation_id: number;
+	trigger_id: number;
+	change?: "enabled" | "params" | "other";
+	enabled?: boolean;
+}) {
+	safeCapture("automation_trigger_updated", compact(props));
+}
+
+export function trackAutomationTriggerUpdateFailed(props: {
+	automation_id: number;
+	trigger_id: number;
+	error?: string;
+}) {
+	safeCapture("automation_trigger_update_failed", compact(props));
+}
+
+export function trackAutomationTriggerRemoved(props: {
+	automation_id: number;
+	trigger_id: number;
+}) {
+	safeCapture("automation_trigger_removed", compact(props));
+}
+
+export function trackAutomationTriggerRemoveFailed(props: {
+	automation_id: number;
+	trigger_id: number;
+	error?: string;
+}) {
+	safeCapture("automation_trigger_remove_failed", compact(props));
+}
+
+interface AutomationChatDecisionProps {
+	search_space_id?: number;
+	edited?: boolean;
+	task_count?: number;
+	trigger_type?: string;
+	agent_llm_id?: number;
+	image_generation_config_id?: number;
+	vision_llm_config_id?: number;
+}
+
+export function trackAutomationChatApproved(props: AutomationChatDecisionProps) {
+	safeCapture("automation_chat_approved", compact(props));
+}
+
+export function trackAutomationChatRejected(props: { search_space_id?: number }) {
+	safeCapture("automation_chat_rejected", compact(props));
+}
+
+export function trackAutomationChatDraftEdited(props: { search_space_id?: number }) {
+	safeCapture("automation_chat_draft_edited", compact(props));
+}
+
+export function trackAutomationChatCreateSucceeded(props: {
+	automation_id: number;
+	name?: string;
+	search_space_id?: number;
+}) {
+	safeCapture("automation_chat_create_succeeded", compact(props));
+}
+
+export function trackAutomationChatCreateFailed(props: {
+	reason: "invalid" | "error";
+	search_space_id?: number;
+	issue_count?: number;
+	message?: string;
+}) {
+	safeCapture("automation_chat_create_failed", compact(props));
+}
+
 // ============================================
 // USER IDENTIFICATION
 // ============================================
diff --git a/surfsense_web/lib/query-client/cache-keys.ts b/surfsense_web/lib/query-client/cache-keys.ts
index ce45ee143..49bcd8d0e 100644
--- a/surfsense_web/lib/query-client/cache-keys.ts
+++ b/surfsense_web/lib/query-client/cache-keys.ts
@@ -30,7 +30,6 @@ export const cacheKeys = {
 		withQueryParams: (queries: GetDocumentsRequest["queryParams"]) =>
 			["documents-with-queries", ...stableEntries(queries)] as const,
 		document: (documentId: string) => ["document", documentId] as const,
-		byChunk: (chunkId: string) => ["documents", "by-chunk", chunkId] as const,
 	},
 	logs: {
 		list: (searchSpaceId?: number | string) => ["logs", "list", searchSpaceId] as const,
@@ -126,4 +125,16 @@ export const cacheKeys = {
 		batchUnreadCounts: (searchSpaceId: number | null) =>
 			["notifications", "unread-counts-batch", searchSpaceId] as const,
 	},
+	automations: {
+		// list endpoint is keyed by pagination too so distinct pages don't collide
+		list: (searchSpaceId: number, limit: number, offset: number) =>
+			["automations", "list", searchSpaceId, limit, offset] as const,
+		detail: (automationId: number) => ["automations", "detail", automationId] as const,
+		runs: (automationId: number, limit: number, offset: number) =>
+			["automations", "runs", automationId, limit, offset] as const,
+		run: (automationId: number, runId: number) =>
+			["automations", "runs", automationId, runId] as const,
+		modelEligibility: (searchSpaceId: number) =>
+			["automations", "model-eligibility", searchSpaceId] as const,
+	},
 };
diff --git a/surfsense_web/lib/source.ts b/surfsense_web/lib/source.ts
index b94f990ab..62fbb362b 100644
--- a/surfsense_web/lib/source.ts
+++ b/surfsense_web/lib/source.ts
@@ -7,6 +7,7 @@ import {
 	Download,
 	FlaskConical,
 	Heart,
+	Radar,
 	Unplug,
 	Wrench,
 } from "lucide-react";
@@ -26,6 +27,7 @@ const DOCS_ICONS: Record<string, React.ComponentType> = {
 	Download,
 	FlaskConical,
 	Heart,
+	Radar,
 	Unplug,
 	Wrench,
 };
diff --git a/surfsense_web/package.json b/surfsense_web/package.json
index 213adbaad..cc55d0d5d 100644
--- a/surfsense_web/package.json
+++ b/surfsense_web/package.json
@@ -1,6 +1,6 @@
 {
 	"name": "surfsense_web",
-	"version": "0.0.25",
+	"version": "0.0.26",
 	"private": true,
 	"packageManager": "pnpm@10.26.0",
 	"description": "SurfSense Frontend",
@@ -36,6 +36,7 @@
 		"@babel/standalone": "^7.29.2",
 		"@hookform/resolvers": "^5.2.2",
 		"@marsidev/react-turnstile": "^1.5.0",
+		"@microlink/react-json-view": "^1.31.20",
 		"@monaco-editor/react": "^4.7.0",
 		"@number-flow/react": "^0.5.10",
 		"@platejs/autoformat": "^52.0.11",
@@ -134,7 +135,6 @@
 		"react-dom": "^19.2.3",
 		"react-dropzone": "^14.3.8",
 		"react-hook-form": "^7.61.1",
-		"react-json-view-lite": "^2.4.1",
 		"react-syntax-highlighter": "^15.6.1",
 		"react-wrap-balancer": "^1.1.1",
 		"rehype-katex": "^7.0.1",
diff --git a/surfsense_web/pnpm-lock.yaml b/surfsense_web/pnpm-lock.yaml
index 8602feb8d..7cbff6923 100644
--- a/surfsense_web/pnpm-lock.yaml
+++ b/surfsense_web/pnpm-lock.yaml
@@ -29,6 +29,9 @@ importers:
       '@marsidev/react-turnstile':
         specifier: ^1.5.0
         version: 1.5.0(react-dom@19.2.4(react@19.2.4))(react@19.2.4)
+      '@microlink/react-json-view':
+        specifier: ^1.31.20
+        version: 1.31.20(@types/react@19.2.14)(react-dom@19.2.4(react@19.2.4))(react@19.2.4)
       '@monaco-editor/react':
         specifier: ^4.7.0
         version: 4.7.0(monaco-editor@0.55.1)(react-dom@19.2.4(react@19.2.4))(react@19.2.4)
@@ -323,9 +326,6 @@ importers:
       react-hook-form:
         specifier: ^7.61.1
         version: 7.71.2(react@19.2.4)
-      react-json-view-lite:
-        specifier: ^2.4.1
-        version: 2.5.0(react@19.2.4)
       react-syntax-highlighter:
         specifier: ^15.6.1
         version: 15.6.6(react@19.2.4)
@@ -1143,24 +1143,28 @@ packages:
     engines: {node: '>=14.21.3'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@biomejs/cli-linux-arm64@2.4.6':
     resolution: {integrity: sha512-kMLaI7OF5GN1Q8Doymjro1P8rVEoy7BKQALNz6fiR8IC1WKduoNyteBtJlHT7ASIL0Cx2jR6VUOBIbcB1B8pew==}
     engines: {node: '>=14.21.3'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@biomejs/cli-linux-x64-musl@2.4.6':
     resolution: {integrity: sha512-C9s98IPDu7DYarjlZNuzJKTjVHN03RUnmHV5htvqsx6vEUXCDSJ59DNwjKVD5XYoSS4N+BYhq3RTBAL8X6svEg==}
     engines: {node: '>=14.21.3'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@biomejs/cli-linux-x64@2.4.6':
     resolution: {integrity: sha512-oHXmUFEoH8Lql1xfc3QkFLiC1hGR7qedv5eKNlC185or+o4/4HiaU7vYODAH3peRCfsuLr1g6v2fK9dFFOYdyw==}
     engines: {node: '>=14.21.3'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@biomejs/cli-win32-arm64@2.4.6':
     resolution: {integrity: sha512-xzThn87Pf3YrOGTEODFGONmqXpTwUNxovQb72iaUOdcw8sBSY3+3WD8Hm9IhMYLnPi0n32s3L3NWU6+eSjfqFg==}
@@ -1836,89 +1840,105 @@ packages:
     resolution: {integrity: sha512-excjX8DfsIcJ10x1Kzr4RcWe1edC9PquDRRPx3YVCvQv+U5p7Yin2s32ftzikXojb1PIFc/9Mt28/y+iRklkrw==}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linux-arm@1.2.4':
     resolution: {integrity: sha512-bFI7xcKFELdiNCVov8e44Ia4u2byA+l3XtsAj+Q8tfCwO6BQ8iDojYdvoPMqsKDkuoOo+X6HZA0s0q11ANMQ8A==}
     cpu: [arm]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linux-ppc64@1.2.4':
     resolution: {integrity: sha512-FMuvGijLDYG6lW+b/UvyilUWu5Ayu+3r2d1S8notiGCIyYU/76eig1UfMmkZ7vwgOrzKzlQbFSuQfgm7GYUPpA==}
     cpu: [ppc64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linux-riscv64@1.2.4':
     resolution: {integrity: sha512-oVDbcR4zUC0ce82teubSm+x6ETixtKZBh/qbREIOcI3cULzDyb18Sr/Wcyx7NRQeQzOiHTNbZFF1UwPS2scyGA==}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linux-s390x@1.2.4':
     resolution: {integrity: sha512-qmp9VrzgPgMoGZyPvrQHqk02uyjA0/QrTO26Tqk6l4ZV0MPWIW6LTkqOIov+J1yEu7MbFQaDpwdwJKhbJvuRxQ==}
     cpu: [s390x]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linux-x64@1.2.4':
     resolution: {integrity: sha512-tJxiiLsmHc9Ax1bz3oaOYBURTXGIRDODBqhveVHonrHJ9/+k89qbLl0bcJns+e4t4rvaNBxaEZsFtSfAdquPrw==}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-libvips-linuxmusl-arm64@1.2.4':
     resolution: {integrity: sha512-FVQHuwx1IIuNow9QAbYUzJ+En8KcVm9Lk5+uGUQJHaZmMECZmOlix9HnH7n1TRkXMS0pGxIJokIVB9SuqZGGXw==}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@img/sharp-libvips-linuxmusl-x64@1.2.4':
     resolution: {integrity: sha512-+LpyBk7L44ZIXwz/VYfglaX/okxezESc6UxDSoyo2Ks6Jxc4Y7sGjpgU9s4PMgqgjj1gZCylTieNamqA1MF7Dg==}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@img/sharp-linux-arm64@0.34.5':
     resolution: {integrity: sha512-bKQzaJRY/bkPOXyKx5EVup7qkaojECG6NLYswgktOZjaXecSAeCWiZwwiFf3/Y+O1HrauiE3FVsGxFg8c24rZg==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linux-arm@0.34.5':
     resolution: {integrity: sha512-9dLqsvwtg1uuXBGZKsxem9595+ujv0sJ6Vi8wcTANSFpwV/GONat5eCkzQo/1O6zRIkh0m/8+5BjrRr7jDUSZw==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [arm]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linux-ppc64@0.34.5':
     resolution: {integrity: sha512-7zznwNaqW6YtsfrGGDA6BRkISKAAE1Jo0QdpNYXNMHu2+0dTrPflTLNkpc8l7MUP5M16ZJcUvysVWWrMefZquA==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [ppc64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linux-riscv64@0.34.5':
     resolution: {integrity: sha512-51gJuLPTKa7piYPaVs8GmByo7/U7/7TZOq+cnXJIHZKavIRHAP77e3N2HEl3dgiqdD/w0yUfiJnII77PuDDFdw==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linux-s390x@0.34.5':
     resolution: {integrity: sha512-nQtCk0PdKfho3eC5MrbQoigJ2gd1CgddUMkabUj+rBevs8tZ2cULOx46E7oyX+04WGfABgIwmMC0VqieTiR4jg==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [s390x]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linux-x64@0.34.5':
     resolution: {integrity: sha512-MEzd8HPKxVxVenwAa+JRPwEC7QFjoPWuS5NZnBt6B3pu7EG2Ge0id1oLHZpPJdn3OQK+BQDiw9zStiHBTJQQQQ==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@img/sharp-linuxmusl-arm64@0.34.5':
     resolution: {integrity: sha512-fprJR6GtRsMt6Kyfq44IsChVZeGN97gTD331weR1ex1c1rypDEABN6Tm2xa1wE6lYb5DdEnk03NZPqA7Id21yg==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@img/sharp-linuxmusl-x64@0.34.5':
     resolution: {integrity: sha512-Jg8wNT1MUzIvhBFxViqrEhWDGzqymo3sV7z7ZsaWbZNDLXRJZoRGrjulp60YYtV4wfY8VIKcWidjojlLcWrd8Q==}
     engines: {node: ^18.17.0 || ^20.3.0 || >=21.0.0}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@img/sharp-wasm32@0.34.5':
     resolution: {integrity: sha512-OdWTEiVkY2PHwqkbBI8frFxQQFekHaSSkUIJkwzclWZe64O1X4UlUjqqqLaPbUpMOQk6FBu/HtlGXNblIs0huw==}
@@ -1989,6 +2009,13 @@ packages:
     peerDependencies:
       mediabunny: ^1.0.0
 
+  '@microlink/react-json-view@1.31.20':
+    resolution: {integrity: sha512-gNLkGvjFDeAqVGvK3H7lfoDqetn/9lW2ugiYiJhchc7jQU1ZaKsZnt97ANluXWFfd/wifoA9TrVOTsUXwXCJwA==}
+    engines: {node: '>=17'}
+    peerDependencies:
+      react: '>= 15'
+      react-dom: '>= 15'
+
   '@monaco-editor/loader@1.7.0':
     resolution: {integrity: sha512-gIwR1HrJrrx+vfyOhYmCZ0/JcWqG5kbfG7+d3f/C1LXk2EvzAbHSg3MQ5lO2sMlo9izoAZ04shohfKLVT6crVA==}
 
@@ -2028,30 +2055,35 @@ packages:
     engines: {node: '>= 10'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@napi-rs/canvas-linux-arm64-musl@0.1.97':
     resolution: {integrity: sha512-kKmSkQVnWeqg7qdsiXvYxKhAFuHz3tkBjW/zyQv5YKUPhotpaVhpBGv5LqCngzyuRV85SXoe+OFj+Tv0a0QXkQ==}
     engines: {node: '>= 10'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@napi-rs/canvas-linux-riscv64-gnu@0.1.97':
     resolution: {integrity: sha512-Jc7I3A51jnEOIAXeLsN/M/+Z28LUeakcsXs07FLq9prXc0eYOtVwsDEv913Gr+06IRo34gJJVgT0TXvmz+N2VA==}
     engines: {node: '>= 10'}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@napi-rs/canvas-linux-x64-gnu@0.1.97':
     resolution: {integrity: sha512-iDUBe7AilfuBSRbSa8/IGX38Mf+iCSBqoVKLSQ5XaY2JLOaqz1TVyPFEyIck7wT6mRQhQt5sN6ogfjIDfi74tg==}
     engines: {node: '>= 10'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@napi-rs/canvas-linux-x64-musl@0.1.97':
     resolution: {integrity: sha512-AKLFd/v0Z5fvgqBDqhvqtAdx+fHMJ5t9JcUNKq4FIZ5WH+iegGm8HPdj00NFlCSnm83Fp3Ln8I2f7uq1aIiWaA==}
     engines: {node: '>= 10'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@napi-rs/canvas-win32-arm64-msvc@0.1.97':
     resolution: {integrity: sha512-u883Yr6A6fO7Vpsy9YE4FVCIxzzo5sO+7pIUjjoDLjS3vQaNMkVzx5bdIpEL+ob+gU88WDK4VcxYMZ6nmnoX9A==}
@@ -2095,24 +2127,28 @@ packages:
     engines: {node: '>= 10'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@next/swc-linux-arm64-musl@16.1.6':
     resolution: {integrity: sha512-S4J2v+8tT3NIO9u2q+S0G5KdvNDjXfAv06OhfOzNDaBn5rw84DGXWndOEB7d5/x852A20sW1M56vhC/tRVbccQ==}
     engines: {node: '>= 10'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@next/swc-linux-x64-gnu@16.1.6':
     resolution: {integrity: sha512-2eEBDkFlMMNQnkTyPBhQOAyn2qMxyG2eE7GPH2WIDGEpEILcBPI/jdSv4t6xupSP+ot/jkfrCShLAa7+ZUPcJQ==}
     engines: {node: '>= 10'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@next/swc-linux-x64-musl@16.1.6':
     resolution: {integrity: sha512-oicJwRlyOoZXVlxmIMaTq7f8pN9QNbdes0q2FXfRsPhfCi8n8JmOZJm5oo1pwDaFbnnD421rVU409M3evFbIqg==}
     engines: {node: '>= 10'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@next/swc-win32-arm64-msvc@16.1.6':
     resolution: {integrity: sha512-gQmm8izDTPgs+DCWH22kcDmuUp7NyiJgEl18bcr8irXA5N2m2O+JQIr6f3ct42GOs9c0h8QF3L5SzIxcYAAXXw==}
@@ -2768,48 +2804,56 @@ packages:
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@oxfmt/binding-linux-arm64-musl@0.45.0':
     resolution: {integrity: sha512-XQKXZIKYJC3GQJ8FnD3iMntpw69Wd9kDDK/Xt79p6xnFYlGGxSNv2vIBvRTDg5CKByWFWWZLCRDOXoP/m6YN4g==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@oxfmt/binding-linux-ppc64-gnu@0.45.0':
     resolution: {integrity: sha512-+g5RiG+xOkdrCWkKodv407nTvMq4vYM18Uox2MhZBm/YoqFxxJpWKsloskFFG5NU13HGPw1wzYjjOVcyd9moCA==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [ppc64]
     os: [linux]
+    libc: [glibc]
 
   '@oxfmt/binding-linux-riscv64-gnu@0.45.0':
     resolution: {integrity: sha512-V7dXKoSyEbWAkkSF4JJNtF+NJZDmJoSarSoP30WCsB3X636Rehd3CvxBj49FIJxEBFWhvcUjGSHVeU8Erck1bQ==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@oxfmt/binding-linux-riscv64-musl@0.45.0':
     resolution: {integrity: sha512-Vdelft1sAEYojVGgcODEFXSWYQYlIvoyIGWebKCuUibd1tvS1TjTx413xG2ZLuHpYj45CkN/ztMLMX6jrgqpgg==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [riscv64]
     os: [linux]
+    libc: [musl]
 
   '@oxfmt/binding-linux-s390x-gnu@0.45.0':
     resolution: {integrity: sha512-RR7xKgNpqwENnK0aYCGYg0JycY2n93J0reNjHyes+I9Gq52dH95x+CBlnlAQHCPfz6FGnKA9HirgUl14WO6o7w==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [s390x]
     os: [linux]
+    libc: [glibc]
 
   '@oxfmt/binding-linux-x64-gnu@0.45.0':
     resolution: {integrity: sha512-U/QQ0+BQNSHxjuXR/utvXnQ50Vu5kUuqEomZvQ1/3mhgbBiMc2WU9q5kZ5WwLp3gnFIx9ibkveoRSe2EZubkqg==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@oxfmt/binding-linux-x64-musl@0.45.0':
     resolution: {integrity: sha512-o5TLOUCF0RWQjsIS06yVC+kFgp092/yLe6qBGSUvtnmTVw9gxjpdQSXc3VN5Cnive4K11HNstEZF8ROKHfDFSw==}
     engines: {node: ^20.19.0 || >=22.12.0}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@oxfmt/binding-openharmony-arm64@0.45.0':
     resolution: {integrity: sha512-RnGcV3HgPuOjsGx/k9oyRNKmOp+NBLGzZTdPDYbc19r7NGeYPplnUU/BfU35bX2Y/O4ejvHxcfkvW2WoYL/gsg==}
@@ -2864,36 +2908,42 @@ packages:
     engines: {node: '>= 10.0.0'}
     cpu: [arm]
     os: [linux]
+    libc: [glibc]
 
   '@parcel/watcher-linux-arm-musl@2.5.6':
     resolution: {integrity: sha512-Ve3gUCG57nuUUSyjBq/MAM0CzArtuIOxsBdQ+ftz6ho8n7s1i9E1Nmk/xmP323r2YL0SONs1EuwqBp2u1k5fxg==}
     engines: {node: '>= 10.0.0'}
     cpu: [arm]
     os: [linux]
+    libc: [musl]
 
   '@parcel/watcher-linux-arm64-glibc@2.5.6':
     resolution: {integrity: sha512-f2g/DT3NhGPdBmMWYoxixqYr3v/UXcmLOYy16Bx0TM20Tchduwr4EaCbmxh1321TABqPGDpS8D/ggOTaljijOA==}
     engines: {node: '>= 10.0.0'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@parcel/watcher-linux-arm64-musl@2.5.6':
     resolution: {integrity: sha512-qb6naMDGlbCwdhLj6hgoVKJl2odL34z2sqkC7Z6kzir8b5W65WYDpLB6R06KabvZdgoHI/zxke4b3zR0wAbDTA==}
     engines: {node: '>= 10.0.0'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@parcel/watcher-linux-x64-glibc@2.5.6':
     resolution: {integrity: sha512-kbT5wvNQlx7NaGjzPFu8nVIW1rWqV780O7ZtkjuWaPUgpv2NMFpjYERVi0UYj1msZNyCzGlaCWEtzc+exjMGbQ==}
     engines: {node: '>= 10.0.0'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@parcel/watcher-linux-x64-musl@2.5.6':
     resolution: {integrity: sha512-1JRFeC+h7RdXwldHzTsmdtYR/Ku8SylLgTU/reMuqdVD7CtLwf0VR1FqeprZ0eHQkO0vqsbvFLXUmYm/uNKJBg==}
     engines: {node: '>= 10.0.0'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@parcel/watcher-win32-arm64@2.5.6':
     resolution: {integrity: sha512-3ukyebjc6eGlw9yRt678DxVF7rjXatWiHvTXqphZLvo7aC5NdEgFufVwjFfY51ijYEWpXbqF5jtrK275z52D4Q==}
@@ -4222,66 +4272,79 @@ packages:
     resolution: {integrity: sha512-t4ONHboXi/3E0rT6OZl1pKbl2Vgxf9vJfWgmUoCEVQVxhW6Cw/c8I6hbbu7DAvgp82RKiH7TpLwxnJeKv2pbsw==}
     cpu: [arm]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-arm-musleabihf@4.59.0':
     resolution: {integrity: sha512-CikFT7aYPA2ufMD086cVORBYGHffBo4K8MQ4uPS/ZnY54GKj36i196u8U+aDVT2LX4eSMbyHtyOh7D7Zvk2VvA==}
     cpu: [arm]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-linux-arm64-gnu@4.59.0':
     resolution: {integrity: sha512-jYgUGk5aLd1nUb1CtQ8E+t5JhLc9x5WdBKew9ZgAXg7DBk0ZHErLHdXM24rfX+bKrFe+Xp5YuJo54I5HFjGDAA==}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-arm64-musl@4.59.0':
     resolution: {integrity: sha512-peZRVEdnFWZ5Bh2KeumKG9ty7aCXzzEsHShOZEFiCQlDEepP1dpUl/SrUNXNg13UmZl+gzVDPsiCwnV1uI0RUA==}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-linux-loong64-gnu@4.59.0':
     resolution: {integrity: sha512-gbUSW/97f7+r4gHy3Jlup8zDG190AuodsWnNiXErp9mT90iCy9NKKU0Xwx5k8VlRAIV2uU9CsMnEFg/xXaOfXg==}
     cpu: [loong64]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-loong64-musl@4.59.0':
     resolution: {integrity: sha512-yTRONe79E+o0FWFijasoTjtzG9EBedFXJMl888NBEDCDV9I2wGbFFfJQQe63OijbFCUZqxpHz1GzpbtSFikJ4Q==}
     cpu: [loong64]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-linux-ppc64-gnu@4.59.0':
     resolution: {integrity: sha512-sw1o3tfyk12k3OEpRddF68a1unZ5VCN7zoTNtSn2KndUE+ea3m3ROOKRCZxEpmT9nsGnogpFP9x6mnLTCaoLkA==}
     cpu: [ppc64]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-ppc64-musl@4.59.0':
     resolution: {integrity: sha512-+2kLtQ4xT3AiIxkzFVFXfsmlZiG5FXYW7ZyIIvGA7Bdeuh9Z0aN4hVyXS/G1E9bTP/vqszNIN/pUKCk/BTHsKA==}
     cpu: [ppc64]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-linux-riscv64-gnu@4.59.0':
     resolution: {integrity: sha512-NDYMpsXYJJaj+I7UdwIuHHNxXZ/b/N2hR15NyH3m2qAtb/hHPA4g4SuuvrdxetTdndfj9b1WOmy73kcPRoERUg==}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-riscv64-musl@4.59.0':
     resolution: {integrity: sha512-nLckB8WOqHIf1bhymk+oHxvM9D3tyPndZH8i8+35p/1YiVoVswPid2yLzgX7ZJP0KQvnkhM4H6QZ5m0LzbyIAg==}
     cpu: [riscv64]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-linux-s390x-gnu@4.59.0':
     resolution: {integrity: sha512-oF87Ie3uAIvORFBpwnCvUzdeYUqi2wY6jRFWJAy1qus/udHFYIkplYRW+wo+GRUP4sKzYdmE1Y3+rY5Gc4ZO+w==}
     cpu: [s390x]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-x64-gnu@4.59.0':
     resolution: {integrity: sha512-3AHmtQq/ppNuUspKAlvA8HtLybkDflkMuLK4DPo77DfthRb71V84/c4MlWJXixZz4uruIH4uaa07IqoAkG64fg==}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@rollup/rollup-linux-x64-musl@4.59.0':
     resolution: {integrity: sha512-2UdiwS/9cTAx7qIUZB/fWtToJwvt0Vbo0zmnYt7ED35KPg13Q0ym1g442THLC7VyI6JfYTP4PiSOWyoMdV2/xg==}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@rollup/rollup-openbsd-x64@4.59.0':
     resolution: {integrity: sha512-M3bLRAVk6GOwFlPTIxVBSYKUaqfLrn8l0psKinkCFxl4lQvOSz8ZrKDz2gxcBwHFpci0B6rttydI4IpS4IS/jQ==}
@@ -4472,24 +4535,28 @@ packages:
     engines: {node: '>=10'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@swc/core-linux-arm64-musl@1.15.13':
     resolution: {integrity: sha512-SmZ9m+XqCB35NddHCctvHFLqPZDAs5j8IgD36GoutufDJmeq2VNfgk5rQoqNqKmAK3Y7iFdEmI76QoHIWiCLyw==}
     engines: {node: '>=10'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@swc/core-linux-x64-gnu@1.15.13':
     resolution: {integrity: sha512-5rij+vB9a29aNkHq72EXI2ihDZPszJb4zlApJY4aCC/q6utgqFA6CkrfTfIb+O8hxtG3zP5KERETz8mfFK6A0A==}
     engines: {node: '>=10'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@swc/core-linux-x64-musl@1.15.13':
     resolution: {integrity: sha512-OlSlaOK9JplQ5qn07WiBLibkOw7iml2++ojEXhhR3rbWrNEKCD7sd8+6wSavsInyFdw4PhLA+Hy6YyDBIE23Yw==}
     engines: {node: '>=10'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@swc/core-win32-arm64-msvc@1.15.13':
     resolution: {integrity: sha512-zwQii5YVdsfG8Ti9gIKgBKZg8qMkRZxl+OlYWUT5D93Jl4NuNBRausP20tfEkQdAPSRrMCSUZBM6FhW7izAZRg==}
@@ -4573,24 +4640,28 @@ packages:
     engines: {node: '>= 20'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@tailwindcss/oxide-linux-arm64-musl@4.2.1':
     resolution: {integrity: sha512-WZA0CHRL/SP1TRbA5mp9htsppSEkWuQ4KsSUumYQnyl8ZdT39ntwqmz4IUHGN6p4XdSlYfJwM4rRzZLShHsGAQ==}
     engines: {node: '>= 20'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@tailwindcss/oxide-linux-x64-gnu@4.2.1':
     resolution: {integrity: sha512-qMFzxI2YlBOLW5PhblzuSWlWfwLHaneBE0xHzLrBgNtqN6mWfs+qYbhryGSXQjFYB1Dzf5w+LN5qbUTPhW7Y5g==}
     engines: {node: '>= 20'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@tailwindcss/oxide-linux-x64-musl@4.2.1':
     resolution: {integrity: sha512-5r1X2FKnCMUPlXTWRYpHdPYUY6a1Ar/t7P24OuiEdEOmms5lyqjDRvVY1yy9Rmioh+AunQ0rWiOTPE8F9A3v5g==}
     engines: {node: '>= 20'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@tailwindcss/oxide-wasm32-wasi@4.2.1':
     resolution: {integrity: sha512-MGFB5cVPvshR85MTJkEvqDUnuNoysrsRxd6vnk1Lf2tbiqNlXpHYZqkqOQalydienEWOHHFyyuTSYRsLfxFJ2Q==}
@@ -4732,6 +4803,9 @@ packages:
   '@types/katex@0.16.8':
     resolution: {integrity: sha512-trgaNyfU+Xh2Tc+ABIb44a5AYUpicB3uwirOioeOkNPPbmgRNtcWyDeeFRzjPZENO9Vq8gvVqfhaaXWLlevVwg==}
 
+  '@types/lodash@4.17.24':
+    resolution: {integrity: sha512-gIW7lQLZbue7lRSWEFql49QJJWThrTFFeIMJdp3eH4tKoxm1OvEPg02rm4wCCSHS0cL3/Fizimb35b7k8atwsQ==}
+
   '@types/mdast@4.0.4':
     resolution: {integrity: sha512-kGaNbPh1k7AFzgpud/gMdvIm5xuECykRR+JnWKQno9TAXVa6WIVCGTPvYGekIDL4uwCZQSYbUxNBSb1aUo79oA==}
 
@@ -4915,41 +4989,49 @@ packages:
     resolution: {integrity: sha512-34gw7PjDGB9JgePJEmhEqBhWvCiiWCuXsL9hYphDF7crW7UgI05gyBAi6MF58uGcMOiOqSJ2ybEeCvHcq0BCmQ==}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   '@unrs/resolver-binding-linux-arm64-musl@1.11.1':
     resolution: {integrity: sha512-RyMIx6Uf53hhOtJDIamSbTskA99sPHS96wxVE/bJtePJJtpdKGXO1wY90oRdXuYOGOTuqjT8ACccMc4K6QmT3w==}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   '@unrs/resolver-binding-linux-ppc64-gnu@1.11.1':
     resolution: {integrity: sha512-D8Vae74A4/a+mZH0FbOkFJL9DSK2R6TFPC9M+jCWYia/q2einCubX10pecpDiTmkJVUH+y8K3BZClycD8nCShA==}
     cpu: [ppc64]
     os: [linux]
+    libc: [glibc]
 
   '@unrs/resolver-binding-linux-riscv64-gnu@1.11.1':
     resolution: {integrity: sha512-frxL4OrzOWVVsOc96+V3aqTIQl1O2TjgExV4EKgRY09AJ9leZpEg8Ak9phadbuX0BA4k8U5qtvMSQQGGmaJqcQ==}
     cpu: [riscv64]
     os: [linux]
+    libc: [glibc]
 
   '@unrs/resolver-binding-linux-riscv64-musl@1.11.1':
     resolution: {integrity: sha512-mJ5vuDaIZ+l/acv01sHoXfpnyrNKOk/3aDoEdLO/Xtn9HuZlDD6jKxHlkN8ZhWyLJsRBxfv9GYM2utQ1SChKew==}
     cpu: [riscv64]
     os: [linux]
+    libc: [musl]
 
   '@unrs/resolver-binding-linux-s390x-gnu@1.11.1':
     resolution: {integrity: sha512-kELo8ebBVtb9sA7rMe1Cph4QHreByhaZ2QEADd9NzIQsYNQpt9UkM9iqr2lhGr5afh885d/cB5QeTXSbZHTYPg==}
     cpu: [s390x]
     os: [linux]
+    libc: [glibc]
 
   '@unrs/resolver-binding-linux-x64-gnu@1.11.1':
     resolution: {integrity: sha512-C3ZAHugKgovV5YvAMsxhq0gtXuwESUKc5MhEtjBpLoHPLYM+iuwSj3lflFwK3DPm68660rZ7G8BMcwSro7hD5w==}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   '@unrs/resolver-binding-linux-x64-musl@1.11.1':
     resolution: {integrity: sha512-rV0YSoyhK2nZ4vEswT/QwqzqQXw5I6CjoaYMOX0TqBlWhojUf8P94mvI7nuJTeaCkkds3QE4+zS8Ko+GdXuZtA==}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   '@unrs/resolver-binding-wasm32-wasi@1.11.1':
     resolution: {integrity: sha512-5u4RkfxJm+Ng7IWgkzi3qrFOvLvQYnPBmjmZQ8+szTK/b31fQCnleNl1GgEt7nIsZRIf5PLhPwT0WM+q45x/UQ==}
@@ -5323,6 +5405,13 @@ packages:
   color-name@1.1.4:
     resolution: {integrity: sha512-dOy+3AuW3a2wNbZHIuMZpTcgjGuLU/uBL/ubcZF9OXbDo8ff4O8yVp5Bf0efS8uEoYo5q4Fx7dY9OgQGXgAsQA==}
 
+  color-string@1.9.1:
+    resolution: {integrity: sha512-shrVawQFojnZv6xM40anx4CkoDP+fZsw/ZerEMsW/pyzsRbElpsL/DBVW7q3ExxwusdNXI3lXpuhEZkzs8p5Eg==}
+
+  color@4.2.3:
+    resolution: {integrity: sha512-1rXeuUUiGGrykh+CeBdu5Ie7OJwinCgQY0bc7GCRxy5xVHy+moaqkpL/jqQq0MtQOeYcrqEz4abc5f0KtU7W4A==}
+    engines: {node: '>=12.5.0'}
+
   comma-separated-tokens@1.0.8:
     resolution: {integrity: sha512-GHuDRO12Sypu2cV70d1dkA2EUmXHgntrzbpvOB+Qy+49ypNfGgFQIC2fhhXbnyrJRynDCAARsT7Ou0M6hirpfw==}
 
@@ -6471,6 +6560,9 @@ packages:
   is-arrayish@0.2.1:
     resolution: {integrity: sha512-zz06S8t0ozoDXMG+ube26zeCTNXcKIPJZJi8hBrF4idCLms4CG9QtK7qBl1boi5ODzFpjswb5JPmHCbMpjaYzg==}
 
+  is-arrayish@0.3.4:
+    resolution: {integrity: sha512-m6UrgzFVUYawGBh1dUsWR5M2Clqic9RVXC/9f8ceNlv2IcO9j9J/z8UoCLPqtsPBFNzEpfR3xftohbfqDx8EQA==}
+
   is-async-function@2.1.1:
     resolution: {integrity: sha512-9dgM/cZBnNvjzaMYHVoxxfPj2QXt22Ev7SuuPrs+xav0ukGB0S6d4ydZdEiM48kLx5kDV+QBPrpVnFyefL8kkQ==}
     engines: {node: '>= 0.4'}
@@ -6838,24 +6930,28 @@ packages:
     engines: {node: '>= 12.0.0'}
     cpu: [arm64]
     os: [linux]
+    libc: [glibc]
 
   lightningcss-linux-arm64-musl@1.31.1:
     resolution: {integrity: sha512-mVZ7Pg2zIbe3XlNbZJdjs86YViQFoJSpc41CbVmKBPiGmC4YrfeOyz65ms2qpAobVd7WQsbW4PdsSJEMymyIMg==}
     engines: {node: '>= 12.0.0'}
     cpu: [arm64]
     os: [linux]
+    libc: [musl]
 
   lightningcss-linux-x64-gnu@1.31.1:
     resolution: {integrity: sha512-xGlFWRMl+0KvUhgySdIaReQdB4FNudfUTARn7q0hh/V67PVGCs3ADFjw+6++kG1RNd0zdGRlEKa+T13/tQjPMA==}
     engines: {node: '>= 12.0.0'}
     cpu: [x64]
     os: [linux]
+    libc: [glibc]
 
   lightningcss-linux-x64-musl@1.31.1:
     resolution: {integrity: sha512-eowF8PrKHw9LpoZii5tdZwnBcYDxRw2rRCyvAXLi34iyeYfqCQNA9rmUM0ce62NlPhCvof1+9ivRaTY6pSKDaA==}
     engines: {node: '>= 12.0.0'}
     cpu: [x64]
     os: [linux]
+    libc: [musl]
 
   lightningcss-win32-arm64-msvc@1.31.1:
     resolution: {integrity: sha512-aJReEbSEQzx1uBlQizAOBSjcmr9dCdL3XuC/6HLXAxmtErsj2ICo5yYggg1qOODQMtnjNQv2UHb9NpOuFtYe4w==}
@@ -6880,6 +6976,9 @@ packages:
     resolution: {integrity: sha512-iPZK6eYjbxRu3uB4/WZ3EsEIMJFMqAoopl3R+zuq0UjcAm/MO6KCweDgPfP3elTztoKP3KtnVHxTn2NHBSDVUw==}
     engines: {node: '>=10'}
 
+  lodash-es@4.18.1:
+    resolution: {integrity: sha512-J8xewKD/Gk22OZbhpOVSwcs60zhd95ESDwezOFuA3/099925PdHJ7OFHNTGtajL3AlZkykD32HykiMo+BIBI8A==}
+
   lodash.camelcase@4.3.0:
     resolution: {integrity: sha512-TwuEnCnxbc3rAvhf/LbG7tJUDzhqXyFnv3dtzLOPgCG/hODL7WFnsbwktkD7yUV0RrreP/l1PALq/YSg6VvjlA==}
 
@@ -7673,6 +7772,9 @@ packages:
     resolution: {integrity: sha512-y3bGgqKj3QBdxLbLkomlohkvsA8gdAiUQlSBJnBhfn+BPxg4bc62d8TcBW15wavDfgexCgccckhcZvywyQYPOw==}
     hasBin: true
 
+  react-base16-styling@0.10.0:
+    resolution: {integrity: sha512-H1k2eFB6M45OaiRru3PBXkuCcn2qNmx+gzLb4a9IPMR7tMH8oBRXU5jGbPDYG1Hz+82d88ED0vjR8BmqU3pQdg==}
+
   react-compiler-runtime@1.0.0:
     resolution: {integrity: sha512-rRfjYv66HlG8896yPUDONgKzG5BxZD1nV9U6rkm+7VCuvQc903C4MjcoZR4zPw53IKSOX9wMQVpA1IAbRtzQ7w==}
     peerDependencies:
@@ -7729,11 +7831,8 @@ packages:
   react-is@16.13.1:
     resolution: {integrity: sha512-24e6ynE2H+OKt4kqsOvNd8kBpV65zoxbA4BVsEOB3ARVWQki/DHzaUoC5KuON/BiccDaCCTZBuOcfZs70kR8bQ==}
 
-  react-json-view-lite@2.5.0:
-    resolution: {integrity: sha512-tk7o7QG9oYyELWHL8xiMQ8x4WzjCzbWNyig3uexmkLb54r8jO0yH3WCWx8UZS0c49eSA4QUmG5caiRJ8fAn58g==}
-    engines: {node: '>=18'}
-    peerDependencies:
-      react: ^18.0.0 || ^19.0.0
+  react-lifecycles-compat@3.0.4:
+    resolution: {integrity: sha512-fBASbA6LnOU9dOU2eW7aQ8xmYBSXUIWr+UmF9b1efZBazGNO+rcXT/icdKnYm2pTwcRylVUYwW7H1PHfLekVzA==}
 
   react-markdown@10.1.0:
     resolution: {integrity: sha512-qKxVopLT/TyA6BX3Ue5NwabOsAzm0Q7kAPwq6L+wWDwisYs7R8vZ0nRXqq6rkueboxpkjvLGU9fWifiX/ZZFxQ==}
@@ -8121,6 +8220,9 @@ packages:
   simple-get@4.0.1:
     resolution: {integrity: sha512-brv7p5WgH0jmQJr1ZDDfKDOSeWWg+OVypG99A/5vYGPqJ6pxiaHLy8nxtFjBA7oMa01ebA9gfh1uMCFqOuXxvA==}
 
+  simple-swizzle@0.2.4:
+    resolution: {integrity: sha512-nAu1WFPQSMNr2Zn9PGSZK9AGn4t/y97lEm+MXTtUDwfP0ksAIX4nO+6ruD9Jwut4C49SB1Ws+fbXsm/yScWOHw==}
+
   slate-dom@0.119.0:
     resolution: {integrity: sha512-foc8a2NkE+1SldDIYaoqjhVKupt8RSuvHI868rfYOcypD4we5TT7qunjRKJ852EIRh/Ql8sSTepXgXKOUJnt1w==}
     peerDependencies:
@@ -10316,6 +10418,16 @@ snapshots:
     dependencies:
       mediabunny: 1.39.2
 
+  '@microlink/react-json-view@1.31.20(@types/react@19.2.14)(react-dom@19.2.4(react@19.2.4))(react@19.2.4)':
+    dependencies:
+      react: 19.2.4
+      react-base16-styling: 0.10.0
+      react-dom: 19.2.4(react@19.2.4)
+      react-lifecycles-compat: 3.0.4
+      react-textarea-autosize: 8.5.9(@types/react@19.2.14)(react@19.2.4)
+    transitivePeerDependencies:
+      - '@types/react'
+
   '@monaco-editor/loader@1.7.0':
     dependencies:
       state-local: 1.0.7
@@ -13283,6 +13395,8 @@ snapshots:
 
   '@types/katex@0.16.8': {}
 
+  '@types/lodash@4.17.24': {}
+
   '@types/mdast@4.0.4':
     dependencies:
       '@types/unist': 3.0.3
@@ -13905,6 +14019,16 @@ snapshots:
 
   color-name@1.1.4: {}
 
+  color-string@1.9.1:
+    dependencies:
+      color-name: 1.1.4
+      simple-swizzle: 0.2.4
+
+  color@4.2.3:
+    dependencies:
+      color-convert: 2.0.1
+      color-string: 1.9.1
+
   comma-separated-tokens@1.0.8: {}
 
   comma-separated-tokens@2.0.3: {}
@@ -15327,6 +15451,8 @@ snapshots:
 
   is-arrayish@0.2.1: {}
 
+  is-arrayish@0.3.4: {}
+
   is-async-function@2.1.1:
     dependencies:
       async-function: 1.0.0
@@ -15662,6 +15788,8 @@ snapshots:
     dependencies:
       p-locate: 5.0.0
 
+  lodash-es@4.18.1: {}
+
   lodash.camelcase@4.3.0: {}
 
   lodash.debounce@4.0.8: {}
@@ -16843,6 +16971,13 @@ snapshots:
       minimist: 1.2.8
       strip-json-comments: 2.0.1
 
+  react-base16-styling@0.10.0:
+    dependencies:
+      '@types/lodash': 4.17.24
+      color: 4.2.3
+      csstype: 3.2.3
+      lodash-es: 4.18.1
+
   react-compiler-runtime@1.0.0(react@19.2.4):
     dependencies:
       react: 19.2.4
@@ -16894,9 +17029,7 @@ snapshots:
 
   react-is@16.13.1: {}
 
-  react-json-view-lite@2.5.0(react@19.2.4):
-    dependencies:
-      react: 19.2.4
+  react-lifecycles-compat@3.0.4: {}
 
   react-markdown@10.1.0(@types/react@19.2.14)(react@19.2.4):
     dependencies:
@@ -17458,6 +17591,10 @@ snapshots:
       once: 1.4.0
       simple-concat: 1.0.1
 
+  simple-swizzle@0.2.4:
+    dependencies:
+      is-arrayish: 0.3.4
+
   slate-dom@0.119.0(slate@0.120.0):
     dependencies:
       '@juggle/resize-observer': 3.4.0
diff --git a/surfsense_web/public/announcements/automations.png b/surfsense_web/public/announcements/automations.png
new file mode 100644
index 000000000..39eb35837
Binary files /dev/null and b/surfsense_web/public/announcements/automations.png differ
diff --git a/surfsense_web/tsc_out.txt b/surfsense_web/tsc_out.txt
new file mode 100644
index 000000000..c51e47085
Binary files /dev/null and b/surfsense_web/tsc_out.txt differ
diff --git a/surfsense_web/types/window.d.ts b/surfsense_web/types/window.d.ts
index f25d43f5e..2d12169b1 100644
--- a/surfsense_web/types/window.d.ts
+++ b/surfsense_web/types/window.d.ts
@@ -83,6 +83,10 @@ interface LocalTextFileResult {
 	error?: string;
 }
 
+interface UpdateDownloadedEvent {
+	version: string;
+}
+
 interface ElectronAPI {
 	versions: {
 		electron: string;
@@ -92,6 +96,8 @@ interface ElectronAPI {
 	};
 	openExternal: (url: string) => void;
 	getAppVersion: () => Promise<string>;
+	onUpdateDownloaded: (callback: (data: UpdateDownloadedEvent) => void) => () => void;
+	installUpdateNow: () => Promise<void>;
 	onDeepLink: (callback: (url: string) => void) => () => void;
 	onChatScreenCapture: (callback: (dataUrl: string) => void) => () => void;
 	getQuickAskText: () => Promise<string>;