Vendor-agnostic read-only daily money cockpit for a small business on QuickBooks or Xero. Binds the accounting connection through canonical core.acct.* op-steps (invoice / payment / customer search), so the same recipe runs against whichever accounting vendor you connected (the resolver dispatches each op to the bound vendor and projects its raw records to the canonical accounting fields). It surfaces open invoice pressure, what is actually overdue by due date, recent cash-in, and customers missing an email - without creating, voiding, or paying anything. Canonical accounting op-steps are read-only; every money write stays approval-gated in the accounting capability pack.
Marketplace
Inspect what a workflow does, what it installs, and what it can access before bringing it into Recued.
920 recipes
Read-only Acuity appointment review brief. It reads one appointment, its payment transactions, intake forms, appointment types, and calendars through recued-core.acuity, then asks the AI summarizer for client context, intake answers, payment status, scheduling risks, and follow-up steps. It never creates, updates, reschedules, cancels, blocks time, mutates clients, or calls arbitrary endpoints.
Read-only Acuity availability planning brief. It reads calendars, appointment types, available dates, available times, available classes, and add-ons through recued-core.acuity, then asks the AI summarizer for booking options, capacity signals, service-fit notes, and scheduling risks. It never books, reschedules, cancels, blocks time, mutates calendars, mutates appointment types, or calls arbitrary endpoints.
Scheduled read-only Acuity front-desk digest. It reads appointments, calendars, appointment types, and clients through recued-core.acuity, renders compact daily tables, and optionally sends an in-app nudge when appointments are visible. It never creates, updates, reschedules, cancels, blocks time, mutates clients, changes calendars, or calls arbitrary Acuity endpoints.
Approval-gated Apollo sequence enrollment. It searches the target sequence context, email accounts, and saved contacts, then adds explicit saved contact IDs to one existing sequence through recued-core.apollo.sequence.add_contacts with a default paused status. It does not create or update sequences, send direct emails, import contacts in bulk, enrich people, mutate stages, delete records, or call arbitrary Apollo endpoints.
Approval-gated Attio note creation. It reads target record context and existing notes, then creates one note through recued-core.attio.note.create with an explicit title and content. It does not update records, delete notes, upload files, create tasks, mutate schema, or call arbitrary Attio endpoints.
Approval-gated Attio list-entry creation. It reads list and record context, checks existing list entries, then creates one list entry through recued-core.attio.list_entry.create for an explicit record. It does not update list entries, delete list entries, create lists, mutate records, mutate schema, or call arbitrary Attio endpoints.
Approval-gated Close note workflow. It reads the target lead, creates one note activity, and returns the created note. It never uploads attachments, sends email/SMS/calls, creates tasks or opportunities, deletes notes, or calls arbitrary Close routes.
Approval-gated Greenhouse note creation. It reads the target candidate and optional application context, then creates one candidate note, email log, or activity entry through recued-core.greenhouse.note.create. It does not create candidates, move applications, change offers, mutate jobs, upload attachments, delete data, or call arbitrary Greenhouse endpoints.
Approval-gated Jotform question creation workflow. It reads one form and existing questions for context, then adds one question through recued-core.jotform.form.question.create using Jotform's documented form-encoded question[*] body shape. It does not delete questions, update arbitrary questions, mutate forms outside the single added question, create webhooks, download files, or call arbitrary endpoints.
Approval-gated Lever note creation. It reads the target opportunity and existing notes for context, then creates one note or comment through recued-core.lever.note.create. It does not create opportunities, move stages, archive, change offers, create panels or interviews, upload files, delete notes, or call arbitrary Lever endpoints.
Approval-gated Microsoft Entra group membership workflow for one user and one group. It reads the user and group for context, then calls recued-core.microsoft-entra.group.member.add with a Graph directory object reference for the user. It does not create groups, mutate group owners, change dynamic membership rules, assign directory roles, or call arbitrary Graph APIs.
Approval-gated Okta group membership add for one user and one group. It reads the user and group for context, then calls recued-core.okta.group.user.add. It does not create groups, edit group profile data, assign admin roles, mutate app assignments directly, or call arbitrary Okta APIs.
Approval-gated Outreach sequence-state creation. It reads the target prospect, target sequence, available mailboxes, and existing sequence states for context, then creates one sequence state through recued-core.outreach.sequence_state.create. It does not create or edit sequences, create sequence steps, bulk-enroll prospects, send mail, log calls, update sequence states, delete records, or call arbitrary Outreach endpoints.
Approval-gated Recurly account-note creation. It reads target account context and existing notes, then creates one account note through recued-core.recurly.account_note.create with explicit message content. It does not update accounts, mutate billing info, create subscriptions, collect invoices, create transactions, delete notes, or call arbitrary Recurly endpoints.
Approval-gated Salesloft note creation. It reads the target person and existing notes for context, then creates one person or account note through recued-core.salesloft.note.create. It does not update notes, delete notes, create tasks, enroll cadences, send emails, complete calls, or call arbitrary Salesloft endpoints.
Approval-gated Salesloft cadence membership creation. It reads the target person, target cadence, existing memberships, and visible users for context, then creates one cadence membership through recued-core.salesloft.cadence_membership.create. It does not bulk-enroll people, delete cadence memberships, import or export cadences, mutate cadence content, send emails, complete calls, or call arbitrary Salesloft endpoints.
Approval-gated Segment source-label workflow. It reads the target source and existing labels, optionally creates one label, then adds that label to the source through recued-core.segment.source.label.add. It does not replace labels, remove labels, mutate source settings, edit destinations, delete labels, change write keys, or call arbitrary Segment routes.
Approval-gated Smartsheet row add workflow. It reads one sheet for context, then calls recued-core.smartsheet.row.add with a caller-provided JSON array of Smartsheet Row objects for exactly that sheet. It does not update rows, delete rows, copy or move rows, upload attachments, send update requests, share the sheet, import files, or call arbitrary Smartsheet endpoints.
Approval-gated SurveyMonkey recipient workflow. It reads one collector and one message for context, then adds one email or SMS recipient through recued-core.surveymonkey.recipient.add. It does not bulk import recipients, use contact lists, send messages, delete recipients, or call arbitrary SurveyMonkey endpoints.
Approval-gated Squarespace inventory workflow. It reads the target variant stock, then sends exactly one inventory adjustment request with caller-supplied operations and Idempotency-Key through recued-core.squarespace. It does not edit products, fulfill orders, delete data, or call arbitrary endpoints.
Scheduled adopter for Adobe Sign agreement closure rows seeded by send-adobe-sign-agreement-with-closure. It lists only Recued-originated agreement watches, re-reads a bounded batch of Adobe Sign agreement, and closes or flags the shared row when Adobe Sign reports a configured terminal status. It can notify the owner on completion or exception status, but it never creates agreements, sends reminders, cancels agreements, updates notes, downloads binaries, opens signing URLs, configures webhooks, starts MegaSign/bulk sends, mutates templates, or calls arbitrary Adobe Sign endpoints.
Read-only Adobe Sign agreement brief. It reads one agreement, its reminders, and the API user's latest note through recued-core.adobe-sign, then asks the AI summarizer for lifecycle state, participant status, reminder history, notes, expiration risk, and concrete next steps. It never creates agreements, sends reminders, cancels, updates notes, downloads binaries, opens signing URLs, or calls arbitrary Adobe Sign endpoints.
Scheduled read-only Adobe Sign agreement digest. It reads tenant base URI context, current user context, agreements, library documents, and workflows through recued-core.adobe-sign, renders compact review tables, and optionally sends an in-app nudge when matching agreements are visible. It never creates agreements, sends reminders, cancels, updates notes, uploads transient documents, downloads binaries, opens signing or authoring URLs, mutates users/groups/templates, starts bulk sends, or calls arbitrary Adobe Sign endpoints.
Read-only Adobe Sign library document readiness review. It reads one library document plus visible workflows and recent agreements through recued-core.adobe-sign, then asks the AI summarizer for template availability, workflow fit, recent usage signals, launch risks, and next steps. It never creates or edits library documents, uploads files, opens edit views, sends agreements, or calls arbitrary Adobe Sign endpoints.
Approval-gated Maxio component allocation workflow. It reads the subscription component, previews the allocation object when provided as a single-allocation list, creates exactly one allocation through recued-core.maxio, and returns allocation history. It does not record metered usage, create subscriptions, create invoices, alter coupons, handle payment profiles, refund, void, delete, or call arbitrary Maxio endpoints.
Detects potential FHA steering violations by analyzing zip code distribution patterns across inferred buyer demographic groups. Cites 24 CFR §100.70 when risk detected. Note: Buyer names are transmitted unhashed to AI provider solely for in-memory demographic inference required by FHA analysis. Confirm your AI provider's data handling compliance.
Analyzes closed deals by win/loss reasons with metrics and AI insights. Deals without win/loss reasons are excluded from analysis. AI insights require win/loss reasons to contain no personally identifiable information (e.g., names, emails).
Evaluates deal close date validity and timeline realism with a traffic-light checklist.
Analyzes win/loss reasons for recently closed deals with AI-powered insights.
Analyzes lease contracts for missing clauses, non-standard terms, and AI-classified risks. Requires contract text in deal's 'contract_text' custom property.
Checks deal.competitors field and uses AI to scan recent notes/emails for new competitor mentions. Activities bind to your HubSpot connection via the canonical engagement.list op.
Analyzes sentiment and extracts objections from recent deal-associated emails. PII-redacted email analysis. Note: PII hashing may not catch all instances in unstructured text bodies. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Analyzes Phase I Environmental Site Assessment documents for commercial property deals. Extracts RECs, flood zones, radon results, and classifies findings per ASTM E1527-21 with CERCLA compliance checks. Activities bind to your HubSpot connection via the canonical engagement.list op.
Reads deal data from HubSpot, sends it to your open Gemini tab for analysis, and displays the response in the sidebar. No API key needed — uses your existing Gemini account.
Compares current deal stage duration against historical averages to flag delays.
Extracts key restrictions from HOA documents (CC&Rs/bylaws) and highlights critical buyer concerns in an actionable checklist. Age restriction warnings require manual buyer eligibility verification (buyer age not available in deal data).
Validates residential lease terms against state landlord-tenant statutes with AI extraction and statutory checks. Reads the most recent NOTE on the deal as the lease document (via the canonical engagement.list op) and extracts the property's state from it; state-specific thresholds hardcoded per statutory requirements. Gracefully handles a missing lease note or unrecognized state by displaying checklist items with informative null states.
Validates real estate marketing assets against state advertising rules with statute citations and penalty warnings. Extend state_ad_rules variable beyond CA/NY defaults for additional states.
Identifies sales reps with pipeline significantly above/below team average. Flags outliers based on configurable threshold.
Verifies Residential Lead-Based Paint Hazard Reduction Act compliance for pre-1978 properties. Cites 42 U.S.C. §4852d with penalty details.
Read-only Anthropic Messages API workflow. It reads model metadata, counts tokens for explicit messages, creates one non-streaming Claude response through recued-core.anthropic.message.create, and summarizes the content and usage. It never enables tools, server web/search/fetch tools, code execution, MCP, containers, streaming, batch creation, file upload/download, managed-agent APIs, admin APIs, or arbitrary Anthropic API routes.
Scheduled read-only Anthropic operations digest. It lists Claude models, existing message batches, and beta file metadata through recued-core.anthropic, renders compact review tables, and can send an in-app notification when message batches are visible. It never creates or cancels batches, creates messages, uploads/downloads/deletes files, mutates managed agents or skills, uses admin APIs, or calls arbitrary Anthropic API routes.
Read-only Anthropic prompt readiness workflow. It reads one Claude model, counts tokens for explicit messages and optional system prompt, then summarizes context fit, cost risk signals, and model limits. It never creates a message, starts or cancels batches, uploads/downloads files, enables tools, or calls arbitrary Anthropic API routes.
Read-only Apollo contact engagement brief. It fetches one saved contact plus bounded tasks, outreach emails, sequences, and deals through recued-core.apollo, then asks core.ai.summarize for a compact seller follow-up brief. It does not enrich contacts, create contacts, add contacts to sequences, create tasks, send emails, mutate stages, delete records, or call arbitrary Apollo endpoints.
Scheduled read-only Apollo revenue operations digest. It lists bounded pages of saved contacts, accounts, sequences, tasks, deals, outreach emails, and API usage through recued-core.apollo, renders compact review tables, and optionally sends an in-app nudge when contacts are visible. It never enriches people, searches organizations, creates or updates contacts, creates sequences, sends email, mutates calls, updates stages, deletes records, or calls arbitrary Apollo endpoints.
Read-only Apollo sequence readiness brief. It searches sequences, email accounts, users, saved contacts, and outreach emails through recued-core.apollo, then asks core.ai.summarize for a compact readiness view. It does not create or update sequences, directly send emails, enrich people, bulk import contacts, mutate stages, or call arbitrary Apollo endpoints.
Approval-gated CircleCI hold-job approval workflow. It reads the workflow and workflow jobs, then approves exactly one pending approval job through recued-core.circleci.workflow.approve using the selected approval_request_id. It does not rerun workflows, cancel jobs or workflows, trigger pipelines, change schedules/triggers, mutate project settings, or call arbitrary CircleCI API routes.
Scheduled read-only digest for one Asana workspace. It reads workspace and user context, the user's task list, open My Tasks, assigned-to-me work, projects, and blocked workspace search results through recued-core.asana, renders compact tables, and can send an in-app nudge when open tasks are visible. It does not create, update, complete, delete, comment on, move, attach to, or mutate Asana resources.
Scheduled adopter for Asana task closure rows seeded by create-asana-task-with-closure. It lists only Recued-originated Asana task watches, re-reads a bounded batch of Asana task, and closes the shared row when Asana reports completion. Rows that cannot be read remain open instead of closing from cached state. It can notify the owner on completion, but it never creates, updates, completes, moves, deletes, assigns, schedules, comments on, mutates projects or sections, edits custom fields, manages dependencies, touches followers, tags, or attachments, or otherwise mutates Asana.
Read-only Attio record activity brief. It fetches one record plus bounded list-entry, open-task, note, and list evidence through recued-core.attio, then asks core.ai.summarize for a compact relationship follow-up brief. It does not update records, add records to lists, create tasks, create notes, delete notes, mutate lists, mutate schema, or call arbitrary Attio endpoints.
Scheduled adopter for Asana task comment closure rows seeded by comment-asana-task-with-closure. It lists only Recued-originated task-comment watches, re-reads a bounded batch of Asana task, and closes the shared row when Asana reports that task completed. It can notify the owner on completion, but it never creates, updates, completes, moves, deletes, attaches to, assigns, schedules, comments on, or otherwise mutates Asana tasks.
Read-only review brief for one Asana task and project. It reads task details, subtasks, stories, project metadata, project open tasks, sections, and recent status updates through recued-core.asana, then asks the AI summarizer for status, blockers, owners, and next actions. It never creates, updates, completes, comments on, moves, deletes, attaches to, or mutates Asana resources.
Read-only AssemblyAI operations workflow. It lists recent transcript jobs by optional status/date filters, tables processing state, and summarizes failures or backlog signals. It never creates transcripts, uploads files, deletes transcripts, registers webhooks, uses streaming, or calls arbitrary AssemblyAI routes.
Read-only AssemblyAI transcript review workflow. It retrieves one transcript by ID, tables chapters, highlights, sentiment, entities, and utterances when present, and summarizes readiness and insights. It never creates transcripts, uploads files, deletes transcripts, registers webhooks, uses streaming, or calls arbitrary AssemblyAI routes.
Read-only AssemblyAI transcript word-search workflow. It retrieves transcript context, searches explicit words or phrases, tables matches, and summarizes where important terms appear. It never creates transcripts, uploads files, deletes transcripts, registers webhooks, uses streaming, or calls arbitrary AssemblyAI routes.
Weighted risk score from activity staleness, close date validity, and contact engagement. Configurable weights and AI threshold.
Three-check risk assessment: activity recency, close date validity, and contact engagement status.
Analyzes coverage amount, claim history, and geographic risk factors to determine application risk level and underwriting recommendations.
Calculates no-show probability using confirmation status, contact history, and invite timing. Flags high-risk meetings.
Calculates renewal probability using usage, NPS, tickets, and engagement metrics. Generates AI retention plan when risk is high.
Approval-gated Auth0 role assignment workflow for one user. It reads the user, current role assignments, and a bounded role catalog page for context, then calls recued-core.auth0.user.role.assign with the supplied existing role IDs. It does not create roles, mutate role permissions, assign organization-scoped roles, change clients, or call arbitrary Auth0 APIs.
Read-only Attio list pipeline readiness brief. It reads list metadata, bounded list entries, open tasks, and workspace members through recued-core.attio, then asks core.ai.summarize for a compact readiness view. It does not add list entries, update list entries, create records, complete tasks, mutate lists, mutate schema, or call arbitrary Attio endpoints.
Validates deal-stage prerequisites and shows advancement readiness.
Scheduled read-only Attio relationship operations digest. It lists bounded pages of workspace metadata, objects, people, companies, deals, lists, open tasks, and notes through recued-core.attio, renders compact review tables, and optionally sends an in-app nudge when people are visible. It never updates records, upserts records, deletes records, mutates schema, completes tasks, deletes notes, creates lists, uploads files, manages comments or threads, manages webhooks, performs SCIM administration, exchanges OAuth tokens, or calls arbitrary Attio endpoints.
Audits closed deals for compliance gaps, missing documents, and anomalies. Generates AI-powered audit readiness summary.
Scheduled read-only Auth0 access governance digest. It reads a bounded page of users, roles, clients, organizations, and logs through recued-core.auth0, renders compact tables, and optionally sends an in-app nudge when matching log events are visible. It never creates or deletes users, changes passwords, mutates MFA, revokes sessions or refresh tokens, changes clients, creates roles, changes organizations, or calls arbitrary Auth0 APIs.
Read-only access review brief for one Auth0 user. It reads the user profile, tenant roles, effective permissions, organization memberships, and recent user logs through recued-core.auth0, then asks the AI summarizer for access posture, risky signals, and next steps. It never blocks users, changes roles, changes MFA, resets credentials, revokes sessions or refresh tokens, or calls arbitrary Auth0 APIs.
Scheduled read-only triage digest for one Azure DevOps project and repository. It reads project and repository metadata, active pull requests, matching WIQL work items, recent commits, and recent builds through recued-core.azure-devops, renders compact tables, and optionally sends an in-app nudge when active work is visible. It never creates or updates repositories, branches, pull requests, work items, comments, builds, releases, service hooks, or arbitrary Azure DevOps APIs.
Scheduled adopter for Azure DevOps pull request comment closure rows seeded by comment-azure-devops-pull-request-with-closure. It lists only Recued-originated pull-request-comment watches, re-reads a bounded batch of Azure DevOps pull request, and closes the shared row when Azure DevOps reports that pull request completed or abandoned. It can notify the owner on terminal pull request state, but it never creates, updates, approves, votes on, completes, abandons, deletes, resolves, comments on, edits branches for, changes reviewers on, or otherwise mutates Azure DevOps pull requests.
Read-only review brief for one Azure DevOps pull request. It reads the repository, pull request, comment threads, recent commits, and optional related builds through recued-core.azure-devops, then asks the AI summarizer for review context, open questions, risk signals, and next-review focus. It never completes, abandons, votes on, comments on, edits, or mutates the pull request.
Scheduled adopter for Azure DevOps work item comment closure rows seeded by comment-azure-devops-work-item-with-closure. It lists only Recued-originated work-item-comment watches, re-reads a bounded batch of Azure DevOps work item, and closes the shared row when Azure DevOps reports a configured terminal state such as done, closed, removed, or completed. It can notify the owner on closure, but it never creates, updates, assigns, transitions, links, attaches to, deletes, comments on, or otherwise mutates Azure DevOps work items.
Read-only BambooHR employee record brief. It fetches one employee plus selected table rows, assigned time-off policies, fields, and available table metadata through recued-core.bamboohr, then asks core.ai.summarize for a compact manager or people-ops brief. It does not update employee records, mutate tables, upload files, create time-off requests, approve or deny requests, or call arbitrary BambooHR endpoints.
Scheduled read-only BambooHR people operations digest. It lists bounded pages of employees, who's-out entries, time-off requests, time-off types, fields, and saved custom reports through recued-core.bamboohr, renders compact review tables, and optionally sends an in-app nudge when time-off requests are visible. It never creates employees, creates time-off requests, updates employee records, mutates tables, uploads files, approves or denies time off, changes policies, administers webhooks, or calls arbitrary BambooHR endpoints.
Read-only BambooHR time-off coverage brief. It fetches who's-out entries, time-off requests, time-off types, policies, and optionally one saved report through recued-core.bamboohr, then asks core.ai.summarize for absence coverage and approval-readiness guidance. It does not create, approve, deny, supersede, or cancel requests, assign policies, mutate employees, administer webhooks, or call arbitrary BambooHR endpoints.
Approval-gated Clerk user ban workflow for one user. It reads the user and active sessions for context, then calls recued-core.clerk.user.ban for exactly that user. It does not delete users, reset credentials, change MFA, revoke sessions or tokens, mutate organization roles, or call arbitrary Clerk APIs.
Action workflow over Email/Outbox. Scans likely silent outbound threads, drafts plain-text follow-ups, then sends the selected batch through the mail-send kernel ingredient. Because mail-send is the irreversible send-class boundary, attended runs route the send step through the existing approval gate. The send is the originating context, so after sending it seeds durable data.shared watch state (status watching_customer_response, loop_kind outbound_followup) keyed by thread — the same key the pressure producer uses, so it supersedes any followup_due row — and outbound-follow-up-response-watcher adopts that linkage to close the loop when the contact replies.
Read-only review brief for one BigCommerce order. It reads the order, line items, shipments, coupons, messages, available statuses, and optional customer lookup through recued-core.bigcommerce, then asks the AI summarizer for fulfillment risk, customer context, and the next concrete action. It never updates orders, products, inventory, customers, shipments, refunds, payments, checkout, carts, webhooks, scripts, or arbitrary BigCommerce endpoints.
Scheduled read-only digest for one BigCommerce Store Management API connection. It reads store metadata, catalog summary, recent orders, recently modified products, customers, coupons, and channels through recued-core.bigcommerce, renders compact commerce tables, and can send an in-app nudge when order rows are visible. It never edits products, prices, inventory, orders, shipments, refunds, payments, customers, checkout, carts, webhooks, scripts, or arbitrary BigCommerce endpoints.
Read-only Stripe customer cleanup queue. It finds customers missing email or display name so billing, support, and invoice follow-up stay usable without automatically updating Stripe records.
Read-only daily billing cockpit for a one-person company. It scans recent Stripe invoices, payments, and customers, then shows open invoice pressure, payment exceptions, and customer data gaps without sending invoices, issuing refunds, or changing Stripe records.
Read-only Stripe invoice recovery exception queue. It assumes Stripe native reminders, failed-payment emails, Smart Retries, and Billing Automations own routine recovery. It surfaces invoices that may need owner exception handling: subscription invoices whose recovery has already started and remains unpaid, and normal invoices past the configured exception window. It drafts an owner action plan without sending invoices or emails.
Read-only payment exception queue for Stripe. It separates PaymentIntents that may need customer action from statuses that should stay internal, while assuming Stripe native failed-payment emails, confirmation emails, Smart Retries, and Billing Automations own routine recovery. Customer-actionable rows should only be followed up manually when a documented exception applies.
Scheduled adopter for Bitbucket pull request comment closure rows seeded by comment-bitbucket-pull-request-with-closure. It lists only Recued-originated pull-request-comment watches, re-reads a bounded batch of Bitbucket pull request, and closes the shared row when Bitbucket reports that pull request merged, declined, or superseded. It can notify the owner on terminal pull request state, but it never creates, updates, approves, requests changes, merges, declines, deletes, resolves, comments on, runs pipelines for, or otherwise mutates Bitbucket pull requests.
Read-only review brief for one Bitbucket Cloud pull request. It reads repository metadata, pull request details, comments, commits, commit statuses, and recent pipelines through recued-core.bitbucket, then asks the AI summarizer for scope, discussion state, CI state, risks, and next actions. It never posts comments, approves, requests changes, declines, merges, edits pull requests, runs pipelines, changes branches, or calls arbitrary Bitbucket APIs.
Scheduled read-only triage digest for one Bitbucket Cloud repository. It reads the current user, workspace, repository metadata, open pull requests, matching issues, recent commits, and recent pipelines through recued-core.bitbucket, renders compact tables, and optionally sends an in-app nudge when active work is visible. It never creates or updates pull requests, issues, comments, branches, repositories, pipelines, webhooks, settings, variables, or arbitrary Bitbucket APIs.
Approval-gated Acuity calendar block workflow. It reads calendars and overlapping appointments for context, then creates one blocked-off time window through recued-core.acuity.block.create. It does not delete blocks, mutate calendars, cancel appointments, reschedule appointments, or call arbitrary endpoints.
Approval-gated Auth0 user block workflow for one user. It reads the user for context, then calls recued-core.auth0.user.block for exactly that user with blocked=true. It does not delete users, reset credentials, change MFA, revoke sessions or refresh tokens, mutate roles, or call arbitrary Auth0 APIs.
Read-only Brave Search workflow for discovering image and video results for an explicit query. It uses only the documented image and video search endpoints and does not call Brave Answers, rich callback flows, POST variants, Goggles definitions, local POI detail endpoints, or arbitrary Brave API paths.
Read-only Brave Search workflow for monitoring news results for an explicit topic, company, market, or incident. It uses the documented news search endpoint only and does not call Brave Answers, rich callbacks, POST variants, Goggles definitions, local POI detail endpoints, or arbitrary Brave API paths.
Read-only Brave Search workflow for combining web results and LLM-ready grounding context for an explicit research query. It does not call Brave Answers, rich callback flows, POST variants, Goggles definitions, local POI detail endpoints, autosuggest, spellcheck-only routes, or arbitrary Brave API paths.
Validates transaction document retention compliance against state regulations with grace period tracking. Supports CA, NY, TX, FL.
Approval-gated Browserbase context setup workflow. It creates one context upload slot for a project and summarizes the returned upload and encryption metadata. It never uploads user-data directories, updates contexts, deletes contexts, starts sessions, creates proxies, or calls arbitrary Browserbase routes.
Browserbase project usage workflow. It lists visible projects, reads one selected project, reads usage totals, and summarizes capacity, timeout, browser minutes, and proxy bytes. It never creates sessions, changes project settings, releases sessions, uploads files, or calls arbitrary Browserbase routes.
Browserbase session debugging workflow. It reads one session, live inspector URLs, logs, and rrweb recording events, then summarizes status, active pages, recent log evidence, and recording volume. It never sends browser commands, uploads files, creates resources, deletes contexts, or calls arbitrary Browserbase routes.
Approval-gated Browserbase session launch workflow. It creates one bounded browser session, returns launch status and connection URLs, and summarizes the session configuration. It never runs browser commands, configures external proxies, uploads files, installs extensions, creates certificates, or calls arbitrary Browserbase routes.
Scheduled read-only digest for one Buffer organization. It reads account context, connected channels, filtered posts, and optional daily posting limits through recued-core.buffer, renders compact tables, and can send an in-app nudge when scheduled or failed posts need attention. It does not create, edit, delete, reorder, publish, or call arbitrary Buffer GraphQL.
Read-only AI-assisted review for a Buffer content calendar. It reads account, channels, posts, ideas, and optional aggregate metrics through recued-core.buffer, then summarizes schedule health, gaps, failed posts, reusable ideas, and next publishing actions. It never creates, edits, deletes, publishes, reorders, or calls arbitrary Buffer GraphQL.
Approval-gated Acuity appointment cancellation workflow. It reads one appointment and its payments for context, then cancels that appointment through recued-core.acuity.appointment.cancel. It does not delete appointments, delete clients, mutate calendars, reschedule, block time, or call arbitrary endpoints. Acuity does not support un-canceling a canceled appointment.
Always-approval Adobe Sign cancellation workflow. It reads one agreement for context, then transitions that agreement to CANCELLED through recued-core.adobe-sign.agreement.state.update. Cancellation is irreversible for normal signing workflows. It does not delete documents, download files, mutate participants, create reminders, update notes, open authoring or signing views, or call arbitrary Adobe Sign endpoints.
Approval-gated Anthropic workflow for canceling one existing message batch. It reads the target batch first, calls recued-core.anthropic.message_batch.cancel for that explicit batch ID, and shows recent batch context. It does not create batches, delete batches, download batch results, create messages, upload/download files, mutate managed agents or skills, use admin APIs, or call arbitrary Anthropic API routes.
Approval-gated CircleCI workflow cancel workflow. It reads the workflow and current jobs for context, then cancels exactly one workflow through recued-core.circleci.workflow.cancel. It does not cancel individual jobs, rerun workflows, approve hold jobs, trigger pipelines, mutate schedules/triggers, or call arbitrary CircleCI API routes.
Approval-gated Cohere workflow for canceling one async embed job. It reads the target job first, then calls recued-core.cohere.embed_job.cancel for that explicit job ID and shows current job context. It does not create jobs, upload or delete datasets, call streaming chat/generate endpoints, use connectors, mutate fine-tuned models, or call arbitrary Cohere routes.
Always-approval Dropbox Sign cancellation workflow. It reads one signature request and signer state for context, then cancels that incomplete request through recued-core.dropbox-sign.signature_request.cancel. It does not remove access from completed requests, delete templates, download files, update signers, send reminders, bulk-cancel, or call arbitrary Dropbox Sign endpoints.
Approval-gated Firecrawl workflow for canceling one crawl job. It reads the target crawl first, calls recued-core.firecrawl.crawl.cancel for that explicit crawl ID, then lists active crawls for context. It does not start new crawls, cancel batch scrapes, mutate team settings, or call arbitrary Firecrawl API routes.
Approval-gated Mistral workflow for canceling one batch job. It reads the target batch job first, calls recued-core.mistral.batch_job.cancel for that explicit job ID, and shows current batch context. It does not create jobs, upload/download files, mutate agents, execute workflows, or call arbitrary Mistral routes.
Approval-gated Mistral workflow for canceling one fine-tuning job. It reads the target job first, calls recued-core.mistral.fine_tuning_job.cancel for that explicit job ID, and shows current fine-tuning context. It does not create, start, archive, or delete fine-tuned models, upload/download files, mutate agents, execute workflows, or call arbitrary Mistral routes.
Approval-gated Replicate workflow for canceling one running prediction. It reads the prediction first for context, then calls recued-core.replicate.prediction.cancel. It does not create predictions, start trainings, mutate models/deployments, upload/download files, reveal secrets, or call arbitrary Replicate API routes.
Scheduled adopter for Canva comment reply closure rows seeded by reply-canva-comment-with-closure. It lists only Recued-originated comment-reply watches, re-reads a bounded batch of Canva preview comment thread, and closes the shared row when Canva reports that thread resolved. It can notify the owner on resolution, but it never replies to comments, resolves or deletes comment threads, mutates designs, exports files, creates webhooks, or calls arbitrary Canva endpoints.
Read-only Canva design review brief. It reads one design, its supported export formats, and preview page metadata through recued-core.canva, then asks the AI summarizer for design context, page/export readiness, and handoff next steps. It never creates designs, exports content, updates assets, replies to comments, uploads or downloads files, or calls arbitrary Canva endpoints.
Scheduled read-only Canva creative operations digest. It reads the current user's profile/capabilities, recent designs, and brand templates through recued-core.canva, renders compact tables, and optionally sends an in-app nudge when design rows are visible. It never creates designs, exports content, updates assets, replies to comments, uploads or downloads files, moves folders, manages webhooks, uses analytics, or calls arbitrary Canva endpoints.
Approval-gated quick capture into one Google Tasks list. It creates exactly one task with a title, optional notes, and optional due timestamp through the recued-core.google-tasks task.create operation. No deletes, batch writes, hidden/deleted fields, link mutation, or arbitrary Google API calls are exposed.
Read-only Chargebee Product Catalog 2.0 readiness brief. It reads bounded pages of items, item prices, coupons, subscriptions for a selected item price, and recent catalog events through recued-core.chargebee, then summarizes checkout readiness and catalog risks. It never creates, updates, archives, deletes, or bulk mutates catalog records, coupons, subscriptions, invoices, or arbitrary Chargebee endpoints.
Read-only Chargebee customer revenue brief. It reads one customer plus bounded subscription, invoice, hosted-page, and event context through recued-core.chargebee, then summarizes revenue state and follow-up evidence. It never mutates customers, subscriptions, payment sources, invoices, hosted pages, events, or arbitrary Chargebee endpoints.
Scheduled read-only Chargebee revenue digest. It reads bounded pages of customers, subscriptions, invoices, item prices, coupons, and recent events through recued-core.chargebee, then summarizes subscription revenue operations evidence. It never mutates customers, payment sources, subscriptions, invoices, coupons, hosted pages, site settings, exports, or arbitrary Chargebee endpoints.
Tracks contract end date, calculates days until renewal, and displays status checklist with thresholds.
Verifies real estate agency disclosure compliance: signing status, correct state-mandated form, and timing relative to first showing. Cites applicable state statutes.
Validates six critical contact data points for completeness and accuracy.
Instant 5-item validation of critical contact fields on page load.
Scheduled read-only digest for one CircleCI project. It reads project metadata, recent pipelines, schedule triggers, and pipeline definitions through recued-core.circleci, renders compact tables, and can send an in-app nudge when pipeline activity is visible. It never runs pipelines, reruns workflows, cancels jobs or workflows, approves hold jobs, changes schedules/triggers, mutates project settings, reads environment variables, or calls arbitrary CircleCI API routes.
Read-only CircleCI triage brief for one workflow. It reads the workflow, its pipeline, and workflow jobs through recued-core.circleci, renders the job table, and asks core.ai.summarize for a concise failure-oriented brief. It never reruns, cancels, approves, triggers, updates schedules/triggers, reads environment variables, or calls arbitrary CircleCI API routes.
Classifies HubSpot accounts into revenue/engagement tiers with grouped table output.
Classifies accounts into revenue/engagement tiers with grouped table output.
Scheduled read-only Clerk access governance digest. It reads bounded pages of users, sessions, organizations, invitations, organization roles, and organization permissions through recued-core.clerk, renders compact review tables, and can send an in-app nudge when pending invitations are visible. It never creates or deletes users, changes passwords or MFA, creates sessions or tokens, revokes sessions or invitations, changes roles, changes domains, mutates webhooks, or calls arbitrary Clerk APIs.
Read-only access review brief for one Clerk user. It reads the user profile, active sessions, organization memberships, and organization invitations through recued-core.clerk, then asks the AI summarizer for access posture, risky signals, and next steps. It never bans users, changes organization roles, creates sessions or tokens, revokes invitations, resets credentials, mutates MFA, or calls arbitrary Clerk APIs.
Scheduled adopter for ClickUp task closure rows seeded by create-clickup-task-with-closure. It lists only Recued-originated ClickUp task watches, re-reads a bounded batch of ClickUp task, and closes the shared row when ClickUp reports a configured terminal status such as complete, completed, closed, or done. It can notify the owner on closure, but it never creates, updates, transitions, closes, deletes, attaches to, assigns, tags, checklists, time-tracks, links, webhooks, comments on, or otherwise mutates ClickUp tasks.
Scheduled adopter for ClickUp task comment closure rows seeded by comment-clickup-task-with-closure. It lists only Recued-originated task-comment watches, re-reads a bounded batch of ClickUp task, and closes the shared row when ClickUp reports a configured terminal status such as complete, completed, closed, or done. It can notify the owner on closure, but it never creates, updates, transitions, closes, deletes, attaches to, assigns, tags, checklists, time-tracks, links, webhooks, comments on, or otherwise mutates ClickUp tasks.
Read-only review brief for one ClickUp task. It reads task metadata, comments, explicit task members, time-in-status data, and attachment metadata, then asks the AI summarizer for review notes. It never changes assignment, status, permissions, comments, attachments, timers, or workspace settings.
Scheduled read-only work digest for one ClickUp Workspace. It lists a bounded page of visible tasks, open goals, and the current timer through the recued-core.clickup pack, renders compact tables, and optionally sends an in-app nudge when tasks are present. It never edits tasks, changes permissions, manages guests, uploads files, or calls arbitrary ClickUp endpoints.
Read-only Close lead activity workflow. It reads one lead plus related contacts, opportunities, tasks, and notes, then summarizes relationship state, open pipeline, activity evidence, and next follow-up. It never creates, updates, deletes, sends email/SMS/calls, exports data, or calls arbitrary Close routes.
Read-only Close revenue operations digest. It lists bounded pages of leads, opportunities, open tasks, notes, pipelines, statuses, and users, then summarizes operating load and pipeline health. It never creates, updates, deletes, exports, sends email/SMS/calls, or calls arbitrary Close routes.
Read-only review brief for one Coda doc. It reads doc metadata plus one page each of pages, tables, formulas, and controls through recued-core.coda, then asks the AI summarizer for structure, owners, live tables, control/formula signals, stale areas, and next actions. It never creates, updates, deletes, shares, publishes, exports, or calls arbitrary Coda APIs.
Read-only review brief for one Coda table. It reads table metadata, visible columns, and one page of visible rows through recued-core.coda, then asks the AI summarizer for data shape, stale signals, likely owners, notable rows, and next actions. It never creates, updates, deletes, shares, publishes, exports, or calls arbitrary Coda APIs.
Read-only Cohere embedding workflow. It lists embed-capable models, creates embeddings for explicit caller-provided text samples through recued-core.cohere.embed.create, and summarizes model/embedding readiness for search or RAG work. It never creates datasets or embed jobs, uploads files, calls streaming chat/generate endpoints, uses connectors, mutates fine-tuned models, or calls arbitrary Cohere routes.
Scheduled read-only Cohere operations digest. It checks API-key status, lists models, datasets, dataset usage, and embed jobs through recued-core.cohere, then renders compact review tables and can send an in-app notification when embed jobs are visible. It never creates or cancels jobs, uploads or deletes datasets, calls streaming chat/generate endpoints, uses connectors, mutates fine-tuned models, or calls arbitrary Cohere routes.
Read-only Cohere reranking workflow. It sends an explicit query and caller-provided document list to recued-core.cohere.rerank.create, renders relevance scores, and summarizes ranking quality for retrieval review. It never creates datasets or embed jobs, calls streaming chat/generate endpoints, uploads files, uses connectors, mutates fine-tuned models, or calls arbitrary Cohere routes.
Workflow origin for the Asana task comment closure loop. It reads one Asana task and current stories for context, creates exactly one owner-provided plain-text comment story through recued-core.asana.story.create, and when the comment succeeds it seeds durable data.shared closure state for asana-task-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, complete, move, delete, attach to, assign, schedule, or otherwise mutate Asana tasks.
Approval-gated Railway empty-service creation workflow. It reads the target project and creates exactly one service with a caller-provided name through recued-core.railway. It does not connect repositories, deploy code, mutate variables, create domains or volumes, delete resources, or call arbitrary Railway GraphQL.
Workflow origin for the Azure DevOps pull request comment closure loop. It reads one Azure DevOps repository, pull request, and current thread comments for context, creates exactly one owner-provided top-level thread comment through recued-core.azure-devops.pull_request.thread.create, and when the thread succeeds it seeds durable data.shared closure state for azure-devops-pull-request-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not complete, abandon, approve, vote on, edit, retarget, assign reviewers to, delete, or otherwise mutate Azure DevOps pull requests.
Approval-gated Azure DevOps pull request comment workflow. It reads the target repository and pull request for context, then creates exactly one top-level pull request thread comment through recued-core.azure-devops when comment text is present. It does not complete, abandon, approve, vote on, edit, retarget, assign reviewers to, delete, or otherwise mutate the pull request.
Workflow origin for the Azure DevOps work item comment closure loop. It reads one Azure DevOps work item and current comments for context, creates exactly one owner-provided comment through recued-core.azure-devops.work_item.comment.add, and when the comment succeeds it seeds durable data.shared closure state for azure-devops-work-item-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, assign, transition, link, attach to, delete, or otherwise mutate Azure DevOps work items.
Approval-gated Azure DevOps work item comment workflow. It reads the target work item and existing comments for context, then adds exactly one work item comment through recued-core.azure-devops when comment text is present. It does not create, update, assign, transition, link, attach to, delete, or otherwise mutate the work item.
Workflow origin for the Bitbucket pull request comment closure loop. It reads one Bitbucket pull request and current comments for context, creates exactly one owner-provided top-level comment through recued-core.bitbucket.pull_request.comment.create, and when the comment succeeds it seeds durable data.shared closure state for bitbucket-pull-request-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not approve, request changes, merge, decline, edit, resolve, delete, update pull request metadata, run pipelines, or otherwise mutate Bitbucket pull requests.
Approval-gated Bitbucket Cloud pull request comment workflow. It reads the target repository and pull request for context, then creates exactly one top-level pull request comment through recued-core.bitbucket when comment text is present. It does not approve, request changes, decline, merge, edit comments, delete comments, resolve threads, change pull request metadata, run pipelines, or call arbitrary Bitbucket APIs.
Workflow origin for the ClickUp task comment closure loop. It reads one ClickUp task and current comments for context, creates exactly one owner-provided task comment through recued-core.clickup.task.comment.create, and when the comment succeeds it seeds durable data.shared closure state for clickup-task-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, transition, close, delete, attach to, assign, tag, checklist, time-track, link, webhook, or otherwise mutate ClickUp tasks.
Workflow origin for the GitHub issue comment closure loop. It reads one GitHub issue and current comments for context, creates exactly one owner-provided Markdown comment through recued-core.github-pack.issue.comment, and when the comment succeeds it seeds durable data.shared closure state for github-issue-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, close, reopen, delete, transfer, label, assign, lock, or otherwise mutate GitHub issues. It skips pull-request-shaped issue reads so code review remains on GitHub's pull request surfaces.
Workflow origin for the GitLab issue note closure loop. It reads one GitLab issue and current comment notes for context, creates exactly one owner-provided public note through recued-core.gitlab.issue.note.create, and when the note succeeds it seeds durable data.shared closure state for gitlab-issue-note-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, close, reopen, delete, move, label, assign, or otherwise mutate GitLab issues.
Workflow origin for the Google Drive file comment closure loop. It reads one Drive file and its current comments for context, creates exactly one owner-provided top-level file comment through recued-core.gdrive.file.comment.create, and when the comment succeeds it seeds durable data.shared closure state for google-drive-file-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not edit or delete comments, resolve comment threads, change file permissions, mutate document body content, download files, move files, create folders, configure Drive notifications, or call arbitrary Google Drive endpoints.
Workflow origin for the Jira issue comment closure loop. It reads one Jira issue and current comments for context, creates exactly one owner-provided Atlassian Document Format comment through recued-core.jira.comment.add, and when the comment succeeds it seeds durable data.shared closure state for jira-issue-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, transition, assign, delete, attach to, link, watch, vote on, or otherwise mutate Jira issues.
Workflow origin for the Linear issue comment closure loop. It reads one Linear issue and current comments for context, creates exactly one owner-provided Markdown comment through recued-core.linear.comment.create, and when the comment succeeds it seeds durable data.shared closure state for linear-issue-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, move, cancel, complete, delete, archive, assign, label, subscribe to, or otherwise mutate Linear issues.
Workflow origin for the monday.com item update closure loop. It reads one monday.com board, item, and current item updates for context, creates exactly one owner-provided item update through recued-core.monday.update.create, and when the update succeeds it seeds durable data.shared closure state for monday-item-update-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create items, edit column values, move, archive, delete, restructure, upload to, invite users to, automate, notify from, or otherwise mutate monday.com items beyond the owner-approved update/comment.
Workflow origin for the Notion page comment closure loop. It reads one Notion page and one configured status property, reads current unresolved comments for context, creates exactly one owner-provided page comment through recued-core.notion.comment.create, and when the comment succeeds it seeds durable data.shared closure state for notion-page-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, trash, move, lock, template, append blocks to, update to-do blocks on, edit comments on, delete from, export, or otherwise mutate Notion pages.
Approval-gated Smartsheet discussion reply workflow. It reads one discussion with comments for context, then adds one text-only comment through recued-core.smartsheet.discussion.comment.add. It does not create attachments, update or delete comments, share sheets, send email/update requests, create automations, or call arbitrary Smartsheet endpoints.
Approval-gated Segment governance workflow. It reads the target source, tracking plan, existing tracking-plan rules, and currently connected sources, then connects exactly one source to the tracking plan through recued-core.segment.tracking_plan.source.add. It does not edit rules, remove sources, delete tracking plans, mutate source settings, change write keys, or call arbitrary Segment routes.
Workflow origin for the Smartsheet row discussion closure loop. It reads one Smartsheet row and current row discussions for context, creates exactly one owner-provided row-level discussion through recued-core.smartsheet.row.discussion.create, and when the discussion succeeds it seeds durable data.shared closure state for smartsheet-row-discussion-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not add rows, edit cells, delete rows, share sheets, send update requests, upload attachments, mutate automations or proofs, or otherwise mutate Smartsheet beyond the owner-approved row discussion.
Workflow origin for the Todoist task comment closure loop. It reads one Todoist task and current task comments for context, creates exactly one owner-provided task comment through recued-core.todoist.comment.create, and when the comment succeeds it seeds durable data.shared closure state for todoist-task-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, move, close, reopen, delete, label, section, project, remind, template, webhook, or otherwise mutate Todoist tasks.
Workflow origin for the Trello card comment closure loop. It reads one Trello card and current comment actions for context, creates exactly one owner-provided card comment through recued-core.trello.card.comment.create, and when the comment succeeds it seeds durable data.shared closure state for trello-card-comment-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create, update, archive, move, delete, attach to, assign, label, checklist, due-complete, webhook, or otherwise mutate Trello cards.
Vendor-agnostic Layer-1 silent producer wrapping the post-substrate-canary `commitment_tracker` topic per spec § A.9.2c. Subscribes to bus events from BOTH connection.api.hubspot.contact AND connection.api.salesforce.contact updates; for each fired contact reads any housekeeping-computed row via `enrichment-list` filtered to the canonical `system.housekeeping.commitment_tracker` author, then re-emits it through the recipe cycle so the row carries an up-to-date `cursor_at` reflecting the contact touch. The substrate-side AI compute path (full Pass-4 evidence-quality fold — authorship_acceptance ['user', 'crm_user', 'unknown'] + lifecycle_state_acceptance ['point_in_time', 'completed'] + body_state_acceptance ['inline_body'] + dedupe_acceptance 'exact_only' + per-contact perspective fan-in via extractContactIdentity) lands in `backend/server/src/housekeeping/engagement-aggregates/commitment-tracker.ts` paralleling the P5 sentiment + NBA producers. Recipe writes carry `authored_by_recipe_id` distinct from `system.housekeeping.commitment_tracker` so both rows coexist on the unique `(topic, scope, target_id, authored_by_recipe_id)` index without conflict. Honest empty default per spec — when no housekeeping row exists the recipe writes an empty `commitments[]` rather than synthesizing speculative commitments at the recipe layer (no AI runs at the recipe level; substrate-side housekeeping is the canonical compute path). Trust default `manual` per D-132 — user must promote at MANUAL_RUN_THRESHOLD before the substrate producer fires; pool default `free_only` per spec § P6.B. Pack-level body-content MCP grant per spec § A.9.5 ships through the `crm-commitment-tracker` pack manifest's `mcp_body_visibility_grants: ['data.contact.engagements.body_content']`.
Approval-gated completion for one Google Tasks task. It reads the target task for context, then sets status to completed with the current timestamp through the bounded recued-core.google-tasks task.status.set operation. It does not delete tasks, clear completed tasks, edit hidden state, or use arbitrary Google API passthrough.
Approval-gated Quo task completion workflow. It reads one task for context, then completes that single task through recued-core.quo.task.complete. It never deletes tasks, sends messages, mutates contacts, changes phone-number settings, creates webhooks, or calls arbitrary Quo endpoints.
Computes days since last email/call/meeting and recent interaction count for contact view.
Owner-invoked action half of the GitHub Actions to Linear exception handoff loop. It reads one awaiting_owner_approval proposal written by github-linear-ci-failure-proposal, then either creates exactly one Linear issue from deterministic GitHub context or dismisses the proposal as no Linear work needed. Running this recipe is the owner's approval or decline. It re-reads the GitHub workflow run before creating Linear work and takes no outward-facing action when there is no pending proposal, the live workflow run no longer has conclusion failure, or the required Linear destination is missing. Linear Reviews, GitHub Actions notifications, workflow logs, rerun controls, branch protection, Linear's GitHub integration, and GitHub issue syncing should own the normal path.
Tracks contract renewal status with visual alerts for approaching/overdue renewals.
Computes weighted risk subscores for activity, close date, and contacts, with optional AI narrative.
Computes weekly pipeline metrics across all open deals.
Generates price increase email draft with AI (toggle via enable_ai). Includes calculated increase %, configurable value justifications, and restored customer name.
Tracks proposal expiration status with dynamic checklist and summary.
Scheduled adopter for Confluence inline comment reply closure rows seeded by reply-confluence-inline-comment-with-closure. It lists only Recued-originated inline-comment reply watches, re-reads a bounded batch of Confluence page and that page's inline comments, and closes or flags the shared row when Confluence reports the watched root comment resolved, the comment is no longer returned, or the page reaches a configured terminal status. It can notify the owner on resolution, disappearance, or terminal page status, but it never creates, updates, resolves, deletes, or comments on Confluence content, updates pages, changes tasks, alters labels, changes permissions, creates properties, configures automations, or calls arbitrary Atlassian endpoints.
Read-only review brief for one Confluence page. It reads the storage-format page body, labels, comments, children, and versions, then summarizes the page through the AI gateway and renders review tables. It does not mutate pages, download attachments, change permissions, or call arbitrary Atlassian endpoints.
Scheduled read-only activity brief for one Confluence Space. It lists recent pages, blog posts, and open tasks through the recued-core.confluence pack, renders compact tables, and optionally sends an in-app nudge when work is visible. It never edits pages, downloads attachments, changes permissions, or calls arbitrary Atlassian endpoints.
Validates 6 critical contact data points with instant visual feedback.
Read-only Contentful operations digest. It reads one space/environment plus bounded pages of content types, entries, published entries, assets, locales, and tags, then summarizes editorial inventory, model shape, publication state, and operational follow-up. It never creates, updates, publishes, deletes, uploads assets, mutates schemas, or calls arbitrary Contentful routes.
Read-only Contentful entry brief. It reads one entry, its content type schema, and its descendants/referenced assets, then summarizes publication state, editable fields, reference footprint, and content-model context. It never creates, updates, publishes, deletes, uploads assets, mutates schemas, or calls arbitrary Contentful routes.
Transcode a source video into a compact H.264/AAC MP4 at a chosen encoder preset using the paired recued-server's local ffmpeg tool. Ticks every 2 minutes. The converted file is captured as a Gateway-gated data.file ref (the recipe never controls the output path — no arbitrary-write surface) and surfaced to the card by ref; a downstream step reads it via { file_ref }.
Approval-gated Wave estimate conversion workflow. It reads one estimate, optionally marks it accepted, converts it into one invoice, then reads the new invoice for confirmation. It does not send the invoice, record payments, delete estimates/invoices, mutate customers/products/accounts/taxes, or call arbitrary GraphQL.
Approval-gated Acuity appointment creation workflow. It reads calendars, appointment types, availability, forms, and add-ons for context, then creates one appointment through recued-core.acuity.appointment.create. It does not mutate calendars, appointment types, clients outside the appointment booking, forms, packages, certificates, webhooks, or arbitrary endpoints.
Approval-gated Apollo account creation. It searches existing accounts, users, and account stages for context, then creates one account through recued-core.apollo.account.create with an explicit name and optional domain, owner, stage, phone, and address. It does not update accounts, delete accounts, bulk-create accounts, mutate account stages, search organizations, enrich records, or call arbitrary Apollo endpoints.
Approval-gated Apollo contact creation. It searches accounts, contact stages, lists, and existing saved contacts for context, then creates one deduped contact through recued-core.apollo.contact.create. It does not update contacts, bulk-create contacts, change owner or stage in batch, enrich people, reveal unsaved email or phone data, send email, or call arbitrary Apollo endpoints.
Approval-gated Apollo deal creation. It reads the related account, users, deal stages, and existing deals for context, then creates one deal through recued-core.apollo.deal.create. It does not update deals, delete deals, bulk-create deals, mutate account or contact stages, enrich organizations, or call arbitrary Apollo endpoints.
Approval-gated Apollo task creation. It reads the target contact, users, and existing tasks for context, then creates one scheduled follow-up task through recued-core.apollo.task.create. It does not update tasks, delete tasks, complete calls, send emails, enrich contacts, or call arbitrary Apollo endpoints.
Owner-invoked action half of the Sentry to Linear exception handoff loop. It reads one awaiting_owner_approval proposal written by sentry-linear-issue-proposal, then either creates exactly one Linear issue from deterministic Sentry context or dismisses the proposal as no Linear work needed. Running this recipe is the owner's approval or decline. It re-reads the Sentry issue before creating Linear work and takes no outward-facing action when there is no pending proposal, the live Sentry issue is no longer unresolved, or the required Linear destination is missing. Native Sentry to Linear issue tracking should own the normal create/link/sync path.
Owner-invoked create half of the core mail-to-commitment loop. It reads one awaiting_owner_approval proposal written by mail-commitment-proposal-producer, optionally targeted by proposal_thread_key, creates a Recued commitment from the proposal, links the commitment back to the source mail record, and marks the proposal created. This recipe is manual-only: running it is the owner's approval to turn the proposed mail promise into durable Recued accountability.
Owner-invoked create half of the core mail-to-task loop. It reads one awaiting_owner_approval proposal written by mail-task-proposal-producer, optionally targeted by proposal_thread_key, creates a Recued task from the proposal, links the task back to the source mail record, and marks the proposal created. This recipe is manual-only: running it is the owner's approval to turn the proposed mail action into durable Recued work.
Owner-invoked action half of the Vercel to Statuspage incident loop. It reads one awaiting_owner_approval proposal written by vercel-statuspage-incident-proposal, then either creates exactly one Statuspage incident from deterministic proposal copy or dismisses the proposal as no customer impact. Running this recipe is the owner's approval or decline. It takes no outward-facing action when there is no pending proposal or required Statuspage incident copy is missing.
Approval-gated Asana task intake workflow. It reads the destination workspace for context, creates exactly one task with bounded task fields, and can add one optional initial comment through recued-core.asana. It does not update, complete, move, delete, attach files, mutate projects or sections, edit custom fields, manage dependencies, or call arbitrary Asana endpoints.
Workflow origin for the Asana task closure loop. It reads one Asana workspace and optional project for context, creates exactly one owner-approved task through recued-core.asana.task.create, and when the task succeeds it seeds durable data.shared closure state for asana-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, complete, move, delete, attach files, assign, schedule, comment on, edit custom fields, manage dependencies, add followers or tags, create projects or sections, or otherwise mutate Asana beyond the approved task create.
Approval-gated Attio company creation. It searches existing company records for context, then creates one company through recued-core.attio.company.create with explicit name and domain values plus optional description, team, and location. It does not update companies, delete companies, bulk-create companies, mutate schema, upload files, create notes, create tasks, or call arbitrary Attio endpoints.
Approval-gated Attio deal creation. It searches companies, workspace members, and existing deals for context, then creates one deal through recued-core.attio.deal.create with explicit name and optional stage, owner, value, person, and company links. It does not update deals, delete deals, bulk-create deals, mutate schema, create tasks, create notes, or call arbitrary Attio endpoints.
Approval-gated Attio task creation. It lists workspace members and existing tasks for context, then creates one plaintext follow-up task through recued-core.attio.task.create against an explicit Attio linked-record locator. It does not update tasks, delete tasks, complete tasks, update records, create notes, mutate schema, or call arbitrary Attio endpoints.
Approval-gated Attio person creation. It searches existing records and companies for context, then creates one person through recued-core.attio.person.create with an explicit email address and optional name, description, company link, and LinkedIn URL. It does not update people, delete people, bulk-create people, mutate schema, upload files, create notes, create tasks, or call arbitrary Attio endpoints.
Approval-gated BambooHR employee creation. It reads available fields for context, then creates one employee through recued-core.bamboohr.employee.create with explicit first name, last name, work email, job title, department, location, hire date, and employee number. It does not update employees, write table rows, upload photos or files, create dependents, mutate benefits/payroll, assign policies, or call arbitrary BambooHR endpoints.
Approval-gated Bitbucket Cloud issue creation workflow. It reads the authenticated user and target repository for context, then creates exactly one issue with bounded title, Markdown body, kind, and priority through recued-core.bitbucket. It does not update or delete existing issues, change assignees, upload attachments, change repository settings, run pipelines, create webhooks, or call arbitrary Bitbucket APIs.
Approval-gated Buffer idea intake workflow. It reads the organization and idea groups for context, then creates exactly one content idea with title, body, target services, optional planning date, tags, media, and group placement through recued-core.buffer. It does not create posts, publish, edit or delete existing ideas, reorder queues, mutate channels, or call arbitrary GraphQL.
Approval-gated Buffer post creation workflow. It reads the destination channel for context, then creates exactly one post with caller-supplied text, schedule mode, scheduled time, tags, optional documented assets, and optional channel metadata through recued-core.buffer. It does not edit existing posts, delete posts, reorder queues, mutate channels, manage team settings, upload local files, or call arbitrary GraphQL.
Approval-gated Canva design creation workflow. It reads profile and capabilities for context, then creates one preset or custom Canva design through recued-core.canva.design.create. It does not copy existing designs, create from brand templates, import files, upload assets, export content, mutate folders, or call arbitrary Canva endpoints.
Approval-gated Chargebee Product Catalog 2.0 item and item-price creation workflow. It checks existing item and price IDs, then creates one item and one item price using Chargebee's documented form-encoded bodies. It does not update, archive, delete, attach, bulk mutate, create coupons, create subscriptions, or call arbitrary Chargebee endpoints.
Approval-gated Chargebee customer creation workflow. It searches for an existing customer ID, then creates one customer through recued-core.chargebee.customer.create using Chargebee's documented form-encoded customer body shape. It does not update customers, delete customers, mutate payment sources, create subscriptions, create invoices, or call arbitrary Chargebee endpoints.
Approval-gated Chargebee hosted checkout creation workflow. It reads customer and item-price context, then creates one hosted checkout page through recued-core.chargebee.hosted_page.checkout.create using Chargebee's documented checkout_new_for_items form-encoded body. It does not directly create subscriptions, update subscriptions, manage payment sources, collect invoices, acknowledge hosted pages, or call arbitrary Chargebee endpoints.
Approval-gated quick intake for one ClickUp List. It reads the destination list for context, creates exactly one task with bounded task fields, and can add one optional initial comment through recued-core.clickup. It does not expose user invites, ACL edits, uploads, bulk imports, deletes, or arbitrary ClickUp endpoints.
Workflow origin for the ClickUp task closure loop. It reads one ClickUp List for context, creates exactly one owner-approved task through recued-core.clickup.task.create, and when the task succeeds it seeds durable data.shared closure state for clickup-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, transition, close, delete, attach to, assign, tag, checklist, time-track, link, webhook, comment on, or otherwise mutate ClickUp beyond the approved task create.
Approval-gated Close lead intake workflow. It reads current lead statuses, creates one lead with one nested contact, and returns the created record. It never deletes or merges leads, creates tasks or opportunities implicitly, sends email/SMS/calls, mutates custom fields, uploads files, or calls arbitrary Close routes.
Approval-gated Close pipeline workflow. It reads available pipelines and opportunity statuses, creates one opportunity on one lead, and creates one lead follow-up task. It never sends outbound communication, changes statuses in bulk, deletes records, uploads files, creates call tasks, or calls arbitrary Close routes.
Approval-gated Coda page intake workflow for one doc. It reads destination doc metadata and existing pages, creates exactly one page by name through recued-core.coda, and reads Coda mutation status once. It never updates existing pages, deletes pages, shares docs, publishes docs, exports content, or calls arbitrary Coda APIs.
Approval-gated Coda row intake workflow for one table. It reads the destination table and visible columns, inserts or upserts exactly one row from provided cell edits through recued-core.coda, and reads Coda mutation status once. It never deletes rows, writes to views intentionally, shares docs, publishes docs, exports content, or calls arbitrary Coda APIs.
Approval-gated Cohere workflow for creating one async embed job from an existing dataset. It reads the input dataset and recent embed jobs first, then calls recued-core.cohere.embed_job.create with an explicit model, dataset ID, input type, optional name, embedding types, and truncate policy. It does not upload or delete datasets, cancel unrelated jobs, call streaming chat/generate endpoints, use connectors, mutate fine-tuned models, or call arbitrary Cohere routes.
Approval-gated page creation for one Confluence Space. It creates exactly one page from storage-format body content through recued-core.confluence.page.create, optionally under a parent page. It does not upload files, alter permissions, purge/delete content, or use arbitrary Atlassian endpoints.
Approval-gated Contentful draft creation workflow. It reads the target content type schema, creates exactly one draft entry from a caller-supplied locale-wrapped fields object, and returns the new entry for review. It does not publish, update existing entries, delete, upload/process assets, mutate content types, or call arbitrary Contentful routes.
Creates a HubSpot deal via the `recued-core.hubspot.deal.create` Tier-P op-step. `deal.create` is WRITE-tier, so the call routes through the gateway's preflight approval: the run pauses (awaiting_approval), surfaces a `notification.ask` ('Approve creating this deal?'), and only after you approve does it POST the deal — emitting a `connection.gateway` audit row. Prerequisite: the HubSpot deals write grant must be in place; write ops are NOT auto-granted at enrollment (read-tier only, Invariant 3), so grant it explicitly first.
Approval-gated Fly.io app creation workflow. It reads current token metadata, platform regions, and existing apps for context, validates the caller-supplied app name and organization slug, then creates exactly one app through recued-core.flyio.app.create. It does not create machines or volumes, delete apps, mint deploy tokens, mutate secrets, assign IPs, or call arbitrary Fly.io API routes.
Approval-gated Maxio customer creation workflow. It searches for possible existing customers, creates exactly one customer from a caller-supplied customer object through recued-core.maxio, and returns the created record. It does not create subscriptions, payment profiles, invoices, usage, allocations, refunds, deletes, or arbitrary Maxio calls.
Approval-gated Fly.io volume creation workflow. It reads the target app, existing volumes, and platform regions for context, validates the caller-supplied name, region, and size, then creates exactly one volume through recued-core.flyio.volume.create. It does not create machines, attach or delete volumes, extend existing volumes, mutate secrets, or call arbitrary Fly.io API routes.
Approval-gated Freshdesk ticket intake workflow. It reads agent, group, ticket-field, and solution context, then creates exactly one ticket with caller-supplied subject, requester email, description, status, priority, source, type, and tags through recued-core.freshdesk. It does not update existing tickets, reply, delete, bulk update, attach files, mutate contacts or companies, change automations/admin settings, or call arbitrary Freshdesk endpoints.
Approval-gated GitHub issue creation workflow. It reads the authenticated user and target repository for context, then creates exactly one issue with bounded title, body, labels, assignees, and milestone fields through recued-core.github-pack. It does not update existing issues, post comments, create or update pull requests, merge code, rerun or cancel workflows, dispatch workflows, mutate branches, change repository settings, touch secrets or collaborators, create webhooks, or call arbitrary GitHub APIs.
Workflow origin for the GitHub issue closure loop. It reads the target repository for context, creates exactly one owner-approved issue through recued-core.github-pack.issue.create, and when the issue succeeds it seeds durable data.shared closure state for github-issue-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, close, reopen, delete, transfer, label, assign, lock, comment on, create pull requests for, or otherwise mutate GitHub issues beyond the approved issue create.
Approval-gated GitLab.com issue creation workflow. It reads the authenticated user and target project for context, then creates exactly one issue with bounded title, description, labels, assignee IDs, due date, and confidentiality fields through recued-core.gitlab. It does not update existing issues, post notes, create or update merge requests, merge or approve code, trigger or cancel pipelines, mutate branches or tags, change project settings, touch runners or admin APIs, create webhooks, or call arbitrary GitLab APIs.
Approval-gated focus-block creation workflow. It reads the target calendar and free/busy state for context, then creates exactly one opaque Google Calendar event through recued-core.google-calendar when title, start, and end are present. It does not edit existing events, delete events, mutate ACLs, create calendars, create conferences, import events, or call arbitrary Google Calendar APIs.
Approval-gated meeting-notes workflow. It creates one blank Google Docs document by title, then inserts a fixed meeting-notes scaffold through recued-core.google-docs.document.text.insert. It does not search Drive, share files, export documents, mutate styles/images/tables, delete content, or call arbitrary Google APIs.
Approval-gated Google Meet link creation workflow. It creates one Meet space with explicit access, entry-point, moderation, attendance, recording, transcription, and smart-notes settings through recued-core.google-meet.space.create. It does not schedule a Calendar event, invite attendees, patch space settings after creation, start live media capture, download artifacts, or call arbitrary Google APIs.
Approval-gated status-deck workflow. It creates one blank Google Slides presentation by title, then inserts a fixed three-slide status update scaffold through recued-core.google-slides.presentation.slide.create. It does not search Drive, share files, export presentations, insert images/charts/tables/videos, delete slides, mutate speaker notes, or call arbitrary Google APIs.
Approval-gated Mailchimp campaign draft workflow. It reads the destination audience for context, creates exactly one regular campaign draft, and can update that draft with HTML/plain-text content. It never sends, schedules, cancels, pauses, resumes, deletes, uploads files, mutates automations, or calls arbitrary Mailchimp endpoints.
Workflow origin for the Google Tasks task closure loop. It reads one task list for context, creates exactly one owner-approved active Google Task through recued-core.google-tasks.task.create, and when the task succeeds it seeds durable data.shared closure state for google-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not complete, update, delete, move, reorder, rename lists, mutate links, touch hidden/deleted or assignment-source fields, clear completed tasks, or otherwise mutate Google Tasks beyond the approved task create.
Approval-gated Greenhouse candidate creation. It optionally reads target jobs for context, then creates one candidate profile through recued-core.greenhouse.candidate.create with explicit name, contact, tags, and optional nested application payload. It does not update existing candidates, merge, anonymize, delete, move applications, hire/reject applicants, create offers, upload attachments, or call arbitrary Greenhouse endpoints.
Approval-gated Help Scout conversation intake workflow. It reads inbox and folder context, then creates exactly one conversation with a caller-supplied subject, customer email, initial thread text, status, type, and tags through recued-core.helpscout. It does not update existing conversations, reply to existing conversations, mutate customers or users, upload or download attachments, delete, bulk-mutates, run workflows, change inbox/admin settings, or call arbitrary Help Scout endpoints.
Approval-gated Heroku app creation workflow. It reads current account, regions, stacks, and existing apps for context, then creates exactly one app through recued-core.heroku.app.create. It does not create dynos, builds, domains, config vars, add-ons, pipelines, teams, spaces, log sessions, or arbitrary Heroku API calls.
Approval-gated Heroku build creation workflow. It reads the app and recent builds, then creates exactly one build from a caller-supplied gzipped source blob URL through recued-core.heroku.build.create. It does not upload files itself, create apps, mutate config vars, roll back releases, stop or restart dynos, delete resources, or call arbitrary Heroku API routes.
Approval-gated Heroku domain creation workflow. It reads the app and existing domains, then creates exactly one custom domain through recued-core.heroku.domain.create using the documented hostname and sni_endpoint body fields. It does not enable or disable ACM, mutate SNI endpoints, delete domains, create log drains, change DNS, mutate config vars, or call arbitrary Heroku API routes.
Approval-gated Hugging Face workflow for creating one collection. It searches existing collections first, then calls recued-core.huggingface.collection.create with an explicit title, namespace, optional description, optional initial item, and privacy flag. It does not patch or delete collections, mutate collection items after creation, create repositories, download files, mutate settings, or call arbitrary Hugging Face routes.
Approval-gated Hugging Face workflow for creating one repository discussion or pull request discussion. It reads existing discussions first, then calls recued-core.huggingface.discussion.create with an explicit repository type, namespace, repository, title, and description. It does not comment, merge, pin, change status, create commits, create repositories, mutate settings, or call arbitrary Hugging Face routes.
Approval-gated incident.io action creation workflow. It reads the target incident, existing actions, and users for context, then creates exactly one action through recued-core.incidentio.action.create with caller-supplied description and optional assignee. It does not edit incidents, update or delete existing actions, create follow-ups, mutate schedules, escalations, status pages, settings, API keys, or call arbitrary incident.io APIs.
Approval-gated incident.io follow-up creation workflow. It reads the target incident, existing follow-ups, teams, and users for context, then creates exactly one follow-up through recued-core.incidentio.follow_up.create with caller-supplied title, description, assignee, team, priority, category, external reference, and labels. It does not edit incidents, update or delete existing follow-ups, create actions, mutate schedules, escalations, status pages, settings, API keys, or call arbitrary incident.io APIs.
Approval-gated incident.io incident creation workflow. It reads identity, severities, incident statuses, users, teams, and recent incidents for context, then creates exactly one incident through recued-core.incidentio.incident.create with caller-supplied idempotency key, visibility, name, summary, severity ID, status ID, incident type ID, mode, and optional custom fields. It does not edit existing incidents, create actions or follow-ups, mutate schedules, escalations, status pages, settings, API keys, or call arbitrary incident.io APIs.
Approval-gated quick intake for one Jira project. It searches the destination project for context, creates exactly one issue with a bounded Jira fields object, and can add one optional initial comment through recued-core.jira. It does not delete, bulk mutate, attach files, notify watchers, mutate project settings, or call arbitrary Jira endpoints.
Workflow origin for the Jira issue closure loop. It creates exactly one owner-approved issue through recued-core.jira.issue.create, and when the issue succeeds it seeds durable data.shared closure state for jira-issue-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, transition, assign, delete, comment on, attach to, link, watch, vote on, add worklogs to, or otherwise mutate Jira issues beyond the approved issue create.
Approval-gated Jotform report creation workflow. It reads one form and existing reports for context, then creates one report through recued-core.jotform.report.create using Jotform's documented form-encoded title, list_type, and fields body shape. It does not delete reports, mutate submissions, download files, create webhooks, mutate labels, or call arbitrary endpoints.
Approval-gated Jotform form creation workflow. It reads the current account for context, then creates one form through recued-core.jotform.form.create using Jotform's documented form-encoded questions[*], properties[*], and emails[*] body shape. It does not clone forms, mutate folders, mutate labels, create webhooks, change user settings, delete anything, download files, or call arbitrary Jotform endpoints.
Approval-gated Klarna order placement workflow. It creates exactly one order from one successful Klarna authorization token and documented cart payload through recued-core.klarna.order.create. It does not capture, refund, cancel, update, create customer tokens, or call arbitrary endpoints.
Approval-gated Klarna payment-session creator. It opens one Klarna Payments API session with cart details, returns session_id, client_token, and available payment methods, and does not place an order, capture funds, cancel authorizations, generate customer tokens, or call arbitrary endpoints.
Approval-gated Lever opportunity creation. It optionally reads target postings, stages, users, sources, and tags for context, then creates one opportunity through recued-core.lever.opportunity.create with explicit name, contact, posting, source, tag, stage, and owner data. It does not upload resumes, update existing opportunities, move stages, archive, create panels or interviews, mutate postings or requisitions, or call arbitrary Lever endpoints.
Approval-gated Linear issue intake workflow. It reads team, workflow-state, and project lists for context, creates exactly one issue with bounded Linear fields, and can add one optional initial comment through recued-core.linear. It does not update existing issues, move status after creation, delete, archive, label, subscribe, mutate projects, manage webhooks, or call arbitrary Linear GraphQL.
Workflow origin for the Linear issue closure loop. It creates exactly one owner-approved issue through recued-core.linear.issue.create, and when the issue succeeds it seeds durable data.shared closure state for linear-issue-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, move, cancel, complete, delete, archive, assign, label, subscribe to, comment on, or otherwise mutate Linear issues beyond the approved issue create.
Approval-gated Maxio invoice creation workflow. It reads the subscription and recent invoices, creates exactly one invoice from a caller-supplied invoice object through recued-core.maxio, then re-lists invoices for confirmation. It does not issue, send, void, reopen, refund, record payments, create payment profiles, delete resources, or call arbitrary Maxio endpoints.
Approval-gated Maxio subscription creation workflow. It previews a subscription signup and then creates exactly one subscription from the same caller-supplied subscription object through recued-core.maxio. It does not create or update payment profiles, record usage, allocate components, create invoices, alter coupons, refund, void, delete, or call arbitrary Maxio endpoints.
Approval-gated task intake for one Microsoft To Do task list. It creates exactly one task through recued-core.microsoft-todo, then can add checklist items and one linked source resource. It does not delete, complete, batch-update, mutate Outlook categories, attach files, touch open extensions, or call arbitrary Graph endpoints.
Workflow origin for the Microsoft To Do task closure loop. It reads one task list for context, creates exactly one owner-approved active To Do task through recued-core.microsoft-todo.task.create, and when the task succeeds it seeds durable data.shared closure state for microsoft-todo-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, complete, delete, batch-update, mutate checklist items, add linked resources, touch attachments or open extensions, mutate Outlook categories outside task creation, or otherwise mutate Microsoft To Do beyond the approved task create.
Approval-gated Mollie customer intake. It reads nearby customers, then creates exactly one customer profile with caller-supplied name, email, and locale through recued-core.mollie. It does not create payment methods, mandates, subscriptions, checkout payments, refunds, webhooks, or arbitrary Mollie endpoints.
Approval-gated Mollie checkout creator. Reads available methods, then creates exactly one payment with amount, currency, description, and redirect URL through recued-core.mollie. Excludes refunds, captures, cancels, mandates, subscriptions, webhooks, and arbitrary endpoints.
Approval-gated monday.com item intake workflow. It reads the destination board and groups for context, creates exactly one item with bounded board, group, name, and column-values fields, and can add one optional initial update through recued-core.monday. It does not update existing items, move or archive items, create groups, mutate columns/schema, delete, upload files, invite users, send notifications, or call arbitrary monday.com GraphQL.
Approval-gated Neon preview branch workflow for one project. It reads the project and current branch list for context, then calls recued-core.neon.branch.create with one branch name, optional parent branch, and initialization mode. It does not create endpoints, set expirations, alter protected branches, restore/reset/delete branches, retrieve connection URIs, reveal passwords, or call arbitrary Neon APIs.
Approval-gated Notion page intake workflow for one data source. It reads the destination data-source schema, searches for similarly titled pages for context, creates exactly one page with a conventional Name title property and optional paragraph body, and can add one optional initial comment through recued-core.notion. It does not update existing pages, append blocks after creation, edit comments, update to-do blocks, delete, export, move pages, alter permissions, or call arbitrary Notion APIs.
Approval-gated OneSignal message creation workflow. It reads recent notification context, then creates exactly one push, email, or SMS notification through recued-core.onesignal.notification.create using explicit app, audience, and message fields. It never creates segments, mutates users or subscriptions, cancels existing notifications, exports history, deletes records, or calls arbitrary OneSignal APIs.
Approval-gated OneSignal segment creation workflow. It creates exactly one segment through recued-core.onesignal.segment.create using documented filter expressions. It never sends notifications, deletes segments, mutates users or subscriptions, exports reports, or calls arbitrary OneSignal APIs.
Approval-gated Outreach account creation. It reads existing accounts for context, then creates one account through recued-core.outreach.account.create with an explicit name. It does not update accounts, delete accounts, import accounts, write to-many relationships, create prospects, enroll sequences, or call arbitrary Outreach endpoints.
Approval-gated Outreach prospect creation. It reads accounts and users for context, then creates one prospect through recued-core.outreach.prospect.create with explicit email, name, title, and optional account relationship. It does not update prospects, delete prospects, enroll sequences, import prospects, write calls, send mail, or call arbitrary Outreach endpoints.
Approval-gated Outreach snippet creation. It reads existing snippets for context, then creates one snippet through recued-core.outreach.snippet.create with an explicit name and HTML body. It does not update snippets, delete snippets, associate snippets with sequence steps, create sequence steps, send mail, or call arbitrary Outreach endpoints.
Approval-gated Outreach template creation. It reads existing templates for context, then creates one template through recued-core.outreach.template.create with an explicit subject and HTML body. It does not update templates, delete templates, associate sequence templates, create sequence steps, send mail, or call arbitrary Outreach endpoints.
Approval-gated PandaDoc document creation workflow. It reads one template for context, then creates one document from that template through recued-core.pandadoc.document.create_from_template using supplied recipients, tokens, fields, metadata, and tags. It does not upload files, create templates, send the document, download files, create embedded sessions, mutate folders, delete, or call arbitrary PandaDoc endpoints.
Workflow origin for the Microsoft Planner task closure loop. It reads one Planner plan and optional bucket for context, creates exactly one owner-approved Planner task through recued-core.planner.task.create, and when the task succeeds it seeds durable data.shared closure state for planner-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, complete, delete, reorder, relabel plans, mutate buckets, alter board formats, change group membership, touch premium Planner resources, or otherwise mutate Planner beyond the approved task create.
Approval-gated Quo contact intake workflow. It reads contact custom field definitions for context, then creates one contact through recued-core.quo.contact.create with documented defaultFields and source metadata. It does not delete contacts, mutate phone settings, send messages, create tasks, create webhooks, or call arbitrary Quo endpoints.
Approval-gated Quo follow-up task workflow. It reads recent conversation context for one phone number, then creates one task linked to one conversation through recued-core.quo.task.create_for_conversation. It does not send messages, delete tasks, change due dates after creation, mutate contacts, create webhooks, or call arbitrary Quo endpoints.
Approval-gated Railway custom domain workflow. It reads the target service context, creates exactly one custom domain through recued-core.railway, then lists service domains for DNS review. It does not delete domains, mutate variables, deploy services, change ports beyond the requested target port, or call arbitrary Railway GraphQL.
Approval-gated Railway project creation workflow. It creates exactly one project from a caller-supplied ProjectCreateInput object through recued-core.railway, then returns the created project for review. It does not create services, deploy code, mutate variables, create domains or volumes, delete resources, or call arbitrary Railway GraphQL.
Approval-gated Railway volume backup workflow. It reads one volume instance, creates exactly one backup through recued-core.railway, then lists backups for confirmation. It does not restore backups, delete backups, delete volumes, mutate services, deploy code, mutate variables, or call arbitrary Railway GraphQL.
Approval-gated Recurly account creation. It searches existing accounts for context, then creates one account through recued-core.recurly.account.create with an explicit account code and optional email, name, and company. It does not add billing information, update accounts, deactivate accounts, redact accounts, create subscriptions, create transactions, or call arbitrary Recurly endpoints.
Approval-gated Recurly coupon creation. It searches existing coupons and plans for context, then creates one coupon through recued-core.recurly.coupon.create with explicit code, name, discount type, and optional percent or currency discounts. It does not update coupons, expire coupons, create unique codes, mutate redemptions, mutate subscriptions, or call arbitrary Recurly endpoints.
Approval-gated Recurly item creation. It searches existing items and plans for context, then creates one item through recued-core.recurly.item.create with explicit code, name, and revenue schedule type. It does not update items, deactivate items, create plans, create add-ons, mutate subscriptions, or call arbitrary Recurly endpoints.
Approval-gated Recurly plan creation. It searches existing plans, items, and business entities for context, then creates one plan through recued-core.recurly.plan.create with explicit code, name, and currency pricing payload. It does not update plans, remove plans, create subscriptions, mutate add-ons, mutate coupons, or call arbitrary Recurly endpoints.
Approval-gated Recurly subscription creation. It reads account, plan, subscription, and coupon context, previews the purchase payload through recued-core.recurly.purchase.preview, then creates one subscription through recued-core.recurly.subscription.create. It does not create purchases, update subscriptions, cancel subscriptions, terminate subscriptions, mutate billing information, collect invoices, create transactions, or call arbitrary Recurly endpoints.
Approval-gated Rootly incident action-item creation workflow. It reads the target incident, existing action items, and users for context, validates the caller-supplied summary, then creates exactly one incident action item through recued-core.rootly.action_item.incident.create with Rootly JSON:API fields for summary, description, assignee user, assignee teams, priority, status, and due date. It does not edit incidents, update or delete existing action items, mutate alerts, schedules, escalation policies, services, teams, users, API keys, or arbitrary Rootly API routes.
Approval-gated Rootly incident creation workflow. It reads the current user, severities, services, teams, and recent incidents for context, validates the caller-supplied title, then creates exactly one incident through recued-core.rootly.incident.create using Rootly JSON:API fields for title, summary, kind, privacy, severity, services, teams, labels, and status. It does not edit existing incidents, create action items, mutate alerts, schedules, escalation policies, services, teams, severities, statuses, users, API keys, or arbitrary Rootly API routes.
Approval-gated Salesloft task creation. It reads the target person and existing tasks for context, then creates one follow-up task through recued-core.salesloft.task.create with explicit subject, person, account, assignee, due date, task type, and description fields. It does not update tasks, delete tasks, bulk-reschedule tasks, bulk-cancel tasks, send emails, complete calls, or call arbitrary Salesloft endpoints.
Approval-gated Salesloft person creation. It reads accounts, users, and person stages for context, then creates one person through recued-core.salesloft.person.create with explicit name, email, phone, title, account, owner, LinkedIn URL, and person stage fields. It does not update people, delete people, create accounts, upsert people, soft-delete records, import data, or call arbitrary Salesloft endpoints.
Approval-gated Segment tracking-plan creation workflow. It reads existing tracking plans for context, then creates exactly one tracking plan with caller-supplied name, type, and optional description through recued-core.segment.tracking_plan.create. It does not attach sources, add rules, delete plans, mutate IAM, change write keys, or call arbitrary Segment routes.
Approval-gated ServiceNow change request workflow. It creates one change request through recued-core.servicenow.change.create with typed planning fields, optionally linked to an incident or CI. It does not mutate CAB approvals, execute workflows, delete records, mutate CMDB records, upload attachments, or call arbitrary ServiceNow APIs.
Approval-gated ServiceNow incident intake workflow. It creates one incident through recued-core.servicenow.incident.create with typed fields, then summarizes the created record. It does not delete records, order catalog items, upload attachments, import data, mutate CMDB records, or call arbitrary ServiceNow APIs.
Approval-gated Shippo rate-shopping workflow. It creates one shipment from explicit sender address, recipient address, and parcel objects through recued-core.shippo.shipment.create, then renders returned rates. It does not purchase labels, create refunds, mutate orders, manage carrier accounts, schedule pickups, create manifests, or call arbitrary Shippo endpoints.
Approval-gated Squarespace contact workflow. It searches for likely existing contacts, creates one contact with primary email, and can optionally add one shipping address through recued-core.squarespace. It does not delete contacts, bulk import, mutate products/orders/payments, or call arbitrary endpoints.
Approval-gated Statuspage incident creation for one page. It reads the page and components for context, then creates exactly one incident through recued-core.statuspage.incident.create with caller-supplied name, status, impact, message, component IDs, and notification flags. It does not update components outside the incident payload, mutate subscribers, edit page configuration, schedule maintenance, create postmortems, delete records, or call arbitrary Statuspage APIs.
Approval-gated SurveyMonkey invite message workflow. It reads one collector for context, then creates one collector message from caller-provided JSON through recued-core.surveymonkey.message.create. It does not add recipients, send or schedule the message, delete messages, bulk import contacts, or call arbitrary SurveyMonkey endpoints.
Approval-gated SurveyMonkey web collector workflow. It reads one survey for context, then creates one weblink collector through recued-core.surveymonkey.collector.create. It does not create popup collectors, SMS/email collectors, update questions, delete collectors, create webhooks, or call arbitrary SurveyMonkey endpoints.
Approval-gated Todoist task intake workflow. It reads project, section, and label lists for context, creates exactly one task with bounded Todoist fields, and can add one optional initial comment through recued-core.todoist. It does not update existing tasks, move tasks, close/reopen tasks, delete, mutate projects/sections/labels, create reminders, upload files, or call arbitrary Todoist APIs.
Workflow origin for the Todoist task closure loop. It reads an optional Todoist project for context, creates exactly one owner-approved task through recued-core.todoist.task.create, and when the task succeeds it seeds durable data.shared closure state for todoist-task-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, move, close, reopen, delete, comment on, label, section, remind, template, webhook, or otherwise mutate Todoist beyond the approved task create.
Approval-gated Railway volume restore workflow. It reads one volume instance and its backups, then restores exactly one selected backup through recued-core.railway. It does not create backups, delete backups, delete volumes, mutate services, deploy code, mutate variables, or call arbitrary Railway GraphQL.
Approval-gated quick intake for one Trello list. It reads the destination list for context, creates exactly one card with bounded card fields, and can add one optional initial comment through recued-core.trello. It does not archive, delete, upload files, mutate webhooks, edit labels, remove members, or call arbitrary Trello endpoints.
Workflow origin for the Trello card closure loop. It reads one Trello List for context, creates exactly one owner-approved card through recued-core.trello.card.create, and when the card succeeds it seeds durable data.shared closure state for trello-card-closure-watcher. It uses deterministic owner-provided fields rather than AI and does not update, archive, move, delete, comment on, attach to, assign, label, checklist, due-complete, webhook, or otherwise mutate Trello cards beyond the approved card create.
Approval-gated Vercel environment-variable creation workflow. It reads existing environment-variable metadata with decrypt=false, then creates exactly one project environment variable through recued-core.vercel.project.env.create. It never reads secret values, updates or removes existing variables, creates deployments, mutates domains, pauses projects, deletes records, or calls arbitrary Vercel APIs.
Approval-gated Wave customer intake workflow. It reads the target business and optional existing email matches, then creates exactly one customer through recued-core.wave. It does not delete/archive customers, create invoices, record payments, mutate accounts or taxes, or call arbitrary GraphQL.
Approval-gated Wave estimate draft workflow. It reads the target business and customer, then creates exactly one estimate with caller-supplied line items through recued-core.wave. It does not send the estimate, convert it to an invoice, record deposits, delete estimates, mutate customers/products/accounts/taxes, or call arbitrary GraphQL.
Approval-gated Wave invoice draft workflow. It reads the target business and customer, then creates exactly one invoice with caller-supplied line items through recued-core.wave. It does not send the invoice, record payments, delete invoices, mutate customers/products/accounts/taxes, or call arbitrary GraphQL.
Approval-gated Wave product/service intake workflow. It reads the target business and active sales taxes, then creates exactly one product/service through recued-core.wave. It does not archive products, mutate accounts or taxes, create invoices, record payments, or call arbitrary GraphQL.
Approval-gated WooCommerce coupon workflow. It searches for an existing coupon code for context, then creates exactly one coupon with bounded offer fields through recued-core.woocommerce. It never deletes coupons, creates refunds, updates orders, mutates products, changes payment/shipping settings, edits webhooks, or calls arbitrary WordPress admin endpoints.
Approval-gated WordPress draft creation. It searches for existing posts with the same slug for context, then creates exactly one post through recued-core.wordpress with bounded editorial fields and a default draft status. It never publishes without explicit status input, deletes content, uploads media, mutates users, changes settings, installs plugins, or calls arbitrary WordPress endpoints.
Approval-gated WorkOS organization intake workflow. It searches for similarly named organizations, creates exactly one organization through recued-core.workos, and returns the created tenant record. It never deletes organizations, creates users, mutates memberships, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Scheduled read-only triage digest for Datadog monitor and signal health. It validates the connection, searches triggered monitors and monitor groups, reads recent logs and events through recued-core.datadog, renders compact tables, and optionally sends an in-app nudge when active signals are visible. It never creates or updates monitors, mutes monitors, changes downtimes, writes logs or events, changes dashboards, or calls arbitrary Datadog APIs.
Approval-gated YouTube playlist creation workflow. It reads the target channel for context, creates exactly one playlist with bounded title, description, privacy, and default language fields, and can optionally add one seed video through recued-core.youtube. It does not update or delete playlists, reorder or remove playlist items, upload/update/delete/rate/report videos, write comments, moderate comments, touch caption media, live controls, channel branding, subscriptions, partner administration, arbitrary Google APIs, or arbitrary YouTube passthrough.
Approval-gated Zoho CRM appointment booking workflow. It reads the selected service, then creates one scheduled appointment for a customer record and assigned service member through recued-core.zoho-crm-work. It does not delete appointments, change appointment preferences, write rescheduled-history records directly, create services, change service members, alter pricing, upload attachments, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM support case intake workflow. It reads active users for owner context, then creates exactly one Cases record through recued-core.zoho-crm-work using bounded daily support fields. It does not delete cases, close or merge tickets, mutate users/settings, bulk-import support data, upload attachments, update unrelated records, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM lead intake workflow. It reads active users for owner context, then creates exactly one lead through recued-core.zoho-crm-sales using bounded daily lead fields. It does not convert leads, create deals, create contacts/accounts, update existing records, run assignment rules, mutate settings, bulk-import, attach files, or call arbitrary Zoho endpoints.
Approval-gated Zoom meeting creation workflow. It reads the target Zoom user and user meeting settings for context, then creates exactly one scheduled Zoom meeting with bounded topic, timing, agenda, password, waiting-room, mute-on-entry, registration, approval, and auto-recording fields through recued-core.zoom. It does not update or cancel existing meetings, add registrants, change registrant status, mutate polls, delete recordings, download recording bytes, change settings, control meetings, create webhooks, or call arbitrary Zoom APIs.
Approval-gated Zuora account intake. Reads catalog context, then creates exactly one account with bill-to contact fields through recued-core.zuora. Excludes payment methods, subscriptions, invoices, orders, bill runs, webhooks, and arbitrary endpoints.
Approval-gated CRM maintenance write. Update one selected contact's phone number through the canonical contact.update operation after reviewing the read-only maintenance preview. The bound HubSpot or Salesforce contact capability pack owns the write grant, preflight approval, vendor body mapping, and audit row.
Read-only maintenance queue for contacts missing a phone number. The search runs server-side through the canonical contact.search operation, then shows the owner a short list with record ids so one selected contact can be updated through the paired approval-gated apply recipe.
Read-only investigation brief for one Datadog monitor. It reads the monitor, related monitor groups, logs, events, and optional metric timeseries through recued-core.datadog, then asks the AI summarizer for likely context, recent signal shape, missing evidence, and next investigation steps. It never mutes, updates, deletes, creates, ingests, or otherwise mutates Datadog records.
Approval-gated dbt Cloud run cancellation workflow. It reads the selected run and visible run steps for context, then cancels exactly one run through recued-core.dbt-cloud.run.cancel. It does not trigger jobs, retry or rerun failed runs, mutate jobs or projects, cancel any other run, or call arbitrary dbt API routes.
Read-only dbt Cloud workflow for reviewing one run and one documented run artifact such as run_results.json, manifest.json, or catalog.json. It does not trigger jobs, cancel runs, retry runs, mutate dbt Cloud resources, read service tokens or credentials, or call arbitrary dbt API routes.
Read-only dbt Cloud workflow for reviewing recent account jobs and runs, including job recency, run status, failures, artifacts, and operational follow-up. It does not trigger jobs, cancel runs, mutate projects/environments/jobs, read credentials or service tokens, call Discovery or Semantic Layer APIs, or use arbitrary dbt API routes.
Approval-gated dbt Cloud job trigger workflow. It reads the selected job for context, then enqueues exactly one run using that job's configured defaults and an explicit cause. It does not create or update jobs, override steps by default, retry/rerun failed runs, cancel runs, mutate projects/environments, or call arbitrary dbt API routes.
Approval-gated WorkOS offboarding workflow for one organization membership. It reads the current membership, deactivates exactly that membership through recued-core.workos, and returns the post-change membership record. It never deletes the membership or user, revokes sessions, mutates roles, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Generates AI-powered handoff brief when deal ownership changes. Summarizes history, key contacts, highlights, open objections, and next steps with PII protection. Activities bind to your HubSpot connection via the canonical engagement.list op.
Reactive AI producer. Listens to connection.api.hubspot.deal {created,updated} bus events; for each fired deal fetches the current record via the HubSpot connection adapter, AI-scores it 0-100 across stage progression / amount fit / deal age / engagement freshness, and upserts the `deal_health_score` enrichment per spec § A.6 cross-vendor topic. AI-classify routing follows the topic's per-pair trust state (D-132): default `manual` until promoted via Settings → Server → Housekeeping. Salesforce-flavored producer ships in D-130 against the same topic.
Reactive AI producer. Listens to connection.api.salesforce.opportunity {created,updated} bus events; for each fired opportunity fetches the current record via the Salesforce connection adapter, AI-scores it 0-100 across stage progression / amount fit / deal age / engagement freshness, and upserts the cross-vendor `deal_health_score` enrichment per spec § A.6 (D-130 P6 widening). Salesforce parallel of `deal-health-score-hubspot`; both share `variant_group: deal-health-score`. AI-classify routing follows the topic's per-pair trust state (D-132): default `manual` until promoted via Settings → Server → Housekeeping.
Reactive silent producer. Listens to connection.api.hubspot.deal {created,updated} bus events emitted by the D-129 reconciler / webhook funnel; for each fired deal fetches the current record via the HubSpot connection adapter, classifies velocity by deal age (accelerating < 14d / stable 14-30d / stalling > 30d), and upserts the `deal_velocity_signal` enrichment per spec § A.6 cross-vendor topic. Salesforce-flavored producer ships in D-130 against the same topic. Deterministic — no AI tokens.
Reactive silent producer. Listens to connection.api.salesforce.opportunity {created,updated} bus events emitted by the D-130 reconciler / CometD funnel; for each fired opportunity fetches the current record via the Salesforce connection adapter, classifies velocity by deal age (accelerating < 14d / stable 14-30d / stalling > 30d), and upserts the cross-vendor `deal_velocity_signal` enrichment per spec § A.6 (D-130 P6 widening). Salesforce parallel of `deal-velocity-signal-hubspot`; both recipes share `variant_group: deal-velocity-signal` so the marketplace card collapses across vendors. Deterministic — no AI tokens.
Extracts policy details from document text and validates against state regulatory requirements with clause-level citations.
Synchronous Deepgram audio intelligence workflow. It transcribes one explicit media URL, extracts utterances and channel alternatives when returned, and summarizes transcript quality, summary, topics, intents, sentiment, speakers, and follow-up actions. It never uploads files, opens streaming sockets, configures voice agents, generates tokens, uses callbacks, or calls arbitrary Deepgram routes.
Read-only Deepgram model inventory workflow. It lists public models and project-accessible models, tables STT and TTS availability, and summarizes model selection signals. It never creates keys, mutates projects, starts transcription, opens streaming, or calls arbitrary Deepgram routes.
Read-only Deepgram usage and balance workflow. It reads one project, usage fields, usage breakdown, and balances for the selected date range, then summarizes usage, feature mix, model mix, and outstanding balances. It never creates keys, changes members, mutates projects, exports purchases, creates self-hosted credentials, starts transcription, or calls arbitrary Deepgram routes.
Read-only Deepgram text intelligence workflow. It analyzes explicit pasted text for summary, sentiment, topics, and intents, then produces a compact brief. It never sends Deepgram a URL to fetch, uses callbacks, uploads files, opens streaming APIs, creates tokens, or calls arbitrary Deepgram routes.
Scans a HubSpot deal's logged activities (calls, emails, meetings, notes) for competitor mentions, searches the web for the named competitors' pricing + features, then produces a comparison analysis. Deal + activity reads bind to your HubSpot connection via the canonical deal.read + engagement.list ops; web search runs through an enrolled Exa connection's gated recued-core.exa.web.search op.
Analyzes showing patterns for potential steering violations under FHA (24 CFR §100.70). Computes chi-square steering score across inferred demographic proxies and zip clusters. Buyer names processed transiently by AI per inference requirements; never stored or exposed in output. Examples shown only when potential steering detected.
Weekday pipeline health digest with drift detection. Compares today's weighted pipeline score against yesterday's, flags deals that moved stages or went stale, and surfaces the overall health delta.
Approval-gated Microsoft Entra user disable workflow for one account. It reads the user for context, then calls recued-core.microsoft-entra.user.disable for exactly that user with accountEnabled=false. It does not delete users, reset passwords, mutate MFA, revoke sessions, assign licenses, change group memberships, or call arbitrary Graph APIs.
Scheduled read-only activity digest for one Discord guild channel. It reads guild and channel metadata, recent messages, pinned messages, active guild threads, and scheduled events through recued-core.discord, renders compact tables, and optionally sends an in-app nudge when messages are visible. It never posts, edits, deletes, pins, creates invites, creates threads, changes roles, changes guild or channel settings, or calls arbitrary Discord API routes.
Read-only AI-assisted brief for one Discord thread channel. It reads thread metadata, recent thread messages, pinned messages, and visible thread members through recued-core.discord, then summarizes discussion state, decisions, open questions, and follow-ups. It never posts, edits, reacts, pins, joins, leaves, archives, locks, or mutates the thread.
Scheduled adopter for DocuSign envelope closure rows seeded by send-docusign-template-envelope-with-closure. It lists only Recued-originated envelope watches, re-reads a bounded batch of envelope from DocuSign, and closes the shared row when DocuSign reports a terminal status. It can notify the owner on completion or exception status, but it never sends reminders, voids envelopes, changes recipients, downloads documents, creates Connect/webhook settings, or calls arbitrary DocuSign endpoints.
Read-only evidence brief for one DocuSign envelope. It reads envelope metadata, recipients, document metadata, audit events, and captured form data, then renders tables for review. It never downloads document binaries, signature images, or recipient ceremony URLs and does not mutate the envelope.
Scheduled status digest for one DocuSign account. It searches a bounded page of envelopes by status/date, renders a compact table, and optionally sends an in-app nudge when matching envelopes are present. Read-only: sending, voiding, recipient updates, template changes, binary downloads, and Connect administration stay outside this workflow.
Analyzes deal context and recent activity, then generates a personalized follow-up email draft and writes it into HubSpot's email compose form. Activities bind to your HubSpot connection via the canonical engagement.list op.
Read-only selected-message reply workflow. Loads one mail record, assembles the thread body when available, reads contact timeline context, classifies the support request, and drafts a plain-text reply without sending.
Read-only evidence brief for one Dropbox Sign signature request. It reads request metadata and signer status through recued-core.dropbox-sign, then asks the AI summarizer for completion state, signer blockers, expiration risk, template context, metadata signals, and concrete next steps. It never reminds signers, updates signers, cancels requests, downloads files, removes access, or calls arbitrary Dropbox Sign endpoints.
Scheduled read-only Dropbox Sign status digest. It lists a bounded page of signature requests, templates, and bulk-send jobs through recued-core.dropbox-sign, renders compact review tables, and optionally sends an in-app nudge when matching requests are visible. It never sends, cancels, updates signers, creates templates, downloads files, changes teams, or calls arbitrary Dropbox Sign endpoints.
Read-only template readiness brief for one Dropbox Sign template. It reads the template through recued-core.dropbox-sign, then summarizes signer roles, CC roles, custom fields, access metadata, and launch risks before a request is sent. It never creates, edits, deletes, uploads files to, sends from, or calls arbitrary Dropbox Sign endpoints.
Read-only ElevenLabs speech history item brief. It retrieves one explicit history item by ID through recued-core.elevenlabs and renders generation metadata, text, usage deltas, output format, and the raw history JSON for audit. It does not download audio, delete history, bulk-download history, regenerate speech, mutate voices/samples, configure agents/tools/MCP/secrets, or call arbitrary ElevenLabs routes.
Approval-gated ElevenLabs workflow for generating one text-to-speech response as JSON with base64 audio and character alignment timestamps. It reads the selected voice and default settings first, then calls recued-core.elevenlabs.speech.create with explicit text, model, output format, and voice settings. It does not download binary audio, stream output, upload audio, clone voices, train PVC voices, mutate voices or samples, configure agents/tools/MCP/secrets, or call arbitrary ElevenLabs routes.
Scheduled read-only ElevenLabs operations digest. It reads subscription usage and recent speech history metadata through recued-core.elevenlabs, renders compact review tables, and can send an in-app notification when history activity or open invoices are visible. It never generates audio, downloads history audio, deletes history, bulk-downloads history, mutates voices/samples, uploads audio, configures agents/tools/MCP/secrets, or calls arbitrary ElevenLabs routes.
Owner-visible list/close role for recued-core/figma-comment-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Read-only ElevenLabs catalog brief. It reads account/subscription context, visible voices, model capabilities, and default voice settings through recued-core.elevenlabs, then renders compact tables for choosing a safe voice/model pair. It does not generate audio, download audio, stream output, mutate voices or samples, clone/train voices, configure agents/tools/MCP/secrets, or call arbitrary ElevenLabs routes.
Approval-gated Microsoft Entra user enable workflow for one account. It reads the user for context, then calls recued-core.microsoft-entra.user.enable for exactly that user with accountEnabled=true. It does not reset credentials, change MFA, assign licenses, change group memberships, or call arbitrary Graph APIs.
Always-approval-gated workflow to end the currently active conference in one Google Meet space. It reads the space first for context, then calls recued-core.google-meet.space.end_active_conference only when an active conference is present. It does not delete the space, edit settings, schedule Calendar events, download artifacts, or call arbitrary Google APIs.
Vendor-agnostic Layer-1 silent producer wrapping the `engagement_silence_duration` topic per spec § A.9.1. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads any housekeeping-computed row via `enrichment-list` with the dynamic `{{context.event.payload.platform}}` scope and re-emits it through the recipe cycle (so the row carries an up-to-date `cursor_at` reflecting the deal touch even when the substrate-side housekeeping cycle hasn't fired yet). The substrate-side housekeeping engagement-aggregates code (D-139 P1a.1 — `backend/server/src/housekeeping/engagement-aggregates/engagement-silence-duration.ts`) remains the canonical compute path; producer recipe writes carry `authored_by_recipe_id` distinct from the housekeeping `system.housekeeping.<topic>` author so both rows coexist on the unique `(topic, scope, target_id, authored_by_recipe_id)` index without conflict. Honest-zero defaults per the value-schema invariant when no housekeeping row exists yet.
Vendor-agnostic Layer-1 silent producer wrapping the `engagement_velocity_signal` topic per spec § A.9.1. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads any housekeeping-computed row via `enrichment-list` with the dynamic `{{context.event.payload.platform}}` scope and re-emits it through the recipe cycle so the row carries an up-to-date `cursor_at` reflecting the deal touch. The substrate-side housekeeping engagement-aggregates code (D-139 P3 — `backend/server/src/housekeeping/engagement-aggregates/engagement-velocity-signal.ts`) is the canonical compute path with the full Pass-4 evidence-quality fold (authorship + lifecycle + direction filters; 90d window split into recent 30d + baseline 60d; weighted trajectory math). Recipe writes carry `authored_by_recipe_id` distinct from the housekeeping `system.housekeeping.<topic>` author so both rows coexist on the unique `(topic, scope, target_id, authored_by_recipe_id)` index without conflict. Honest-zero `'steady'` default per the trajectory enum invariant when no housekeeping row exists yet.
Read-only Etsy listing readiness review. It reads one listing, its inventory document, media, digital files, properties, personalization, variation images, translation, shop sections, shipping profiles, seller taxonomy nodes, recent listing transactions, and recent shop reviews through recued-core.etsy, then asks the AI summarizer for listing readiness, shipping/catalog fit, inventory/media risks, review signals, and concrete next steps. It never updates listings, inventory, shipments, shop settings, images, files, refunds, buyer messages, payments, addresses, or arbitrary Etsy endpoints.
Read-only Etsy order support brief. It reads one receipt, its transactions, purchased listings, and attached payment records through recued-core.etsy, then asks the AI summarizer for fulfillment state, payment context, purchased item context, buyer-visible risks, and concrete next actions. It never updates shipments, listings, inventory, refunds, payment data, buyer addresses, shop settings, messages, files, images, or arbitrary Etsy endpoints.
Scheduled read-only Etsy seller digest. It reads shop metadata, shop sections, shipping profiles, return policies, production partners, holiday preferences, readiness state definitions, recent listings, open paid receipts, and recent reviews through recued-core.etsy, renders compact seller tables, and can send an in-app nudge when paid unshipped receipts are visible. It never updates listings, inventory, shipments, shop settings, refunds, buyer messages, images, files, payments, addresses, carts, favorites, profiles, or arbitrary Etsy endpoints.
Hidden event watcher for watch-for-expected-quotation-email. It matches a sender, subject, and body purpose deterministically, then moves the small linkage row to owner-visible needs_owner state. It never stores the source body, past-deal context, or a generated draft; review-expected-quotation-draft re-reads the source and generates an ephemeral draft on demand.
Approval-gated Canva export workflow. It reads one design and available export formats, then starts exactly one Canva export job through recued-core.canva.design.export.create. The export job can later return temporary download URLs; this recipe does not fetch or store those files, use print-partner exports, import designs, resize designs, or call arbitrary Canva endpoints.
Extract commitments from an inbound email into Recued's commitment tracker — who promised what to whom, with optional deadline and monetary amount. Thread-aware: a reply like 'yes, please send that by Friday' binds to the prior message, not the reply. Fires automatically on each inbound message; records only extractions above the confidence floor (default 0.7), resolves the counterparty to a known contact when possible, and the extractor model sees only PII-aliased text, never the raw sender.
Extracts contact details from email signatures. Shows extracted values with validation status. Includes actionable update button.
Analyzes HOA documents for rental caps, pet policies, age restrictions, and assessments. Flags critical buyer concerns.
Extracts key lease terms and validates against state landlord-tenant statutes with statutory citations. Reads the most recent NOTE on the deal as the lease document (via the canonical engagement.list op) and extracts the property's state from it.
Extract UTF-8 text from one trusted PDF through the local Poppler pdftotext CLI and preserve the captured text file. The recipe uses the recued-core.pdftotext fixed pdf.to_text operation: no shell, no arbitrary pdftotext flags, no caller-controlled output path, and PDF bytes stay behind file refs.
Extract action items from an inbound email into Recued's task tracker — title, due date, and priority (low / medium / high). Thread-aware; fires automatically on each inbound message; records only extractions above the confidence floor (default 0.7). A task is assigned to a contact only when the mail explicitly delegates it to a named third party — otherwise it lands unassigned. The extractor model sees only PII-aliased text, never the raw sender.
Scheduled adopter for Figma comment reply closure rows seeded by reply-figma-comment-with-closure. It lists only Recued-originated comment-reply watches, re-reads a bounded batch of Figma file's comments, and closes the shared row when Figma reports the watched root comment resolved or no longer returns it. It can notify the owner on resolution or disappearance, but it never creates, edits, deletes, or resolves comments, adds reactions, mutates files, exports images, configures webhooks, or calls arbitrary Figma endpoints.
Approval-gated template-fill workflow for one existing Google Docs document. It reads the target document for context, then replaces fixed placeholders such as [[CLIENT_NAME]] and [[SUMMARY]] through recued-core.google-docs.document.text.replace_all. It does not search Drive, share files, export documents, delete content, mutate styles/images/tables, or expose arbitrary Docs batchUpdate passthrough.
Approval-gated template-fill workflow for one existing Google Slides presentation. It reads the target deck for context, then replaces fixed placeholders such as [[CLIENT_NAME]] and [[SUMMARY]] through recued-core.google-slides.presentation.text.replace_all. It does not search Drive, share files, export presentations, delete slides, insert images/charts/tables/videos, or expose arbitrary Slides batchUpdate passthrough.
Searches recent news for each company behind contacts in target lifecycle stages, classifies the most significant event per account in one batch AI call, and shows a confidence-sorted table. CRM contacts bind to your HubSpot connection via the canonical contact.search op; web search runs through an enrolled Exa connection's gated recued-core.exa.web.search op.
Find CRM contacts with no phone number on file and show the count plus a follow-up table (email, lifecycle stage, owner). The missing-phone filter runs server-side in the CRM. Vendor-neutral: binds to HubSpot or Salesforce contacts at pack install.
Identifies high-ICP accounts with no recent outbound activity for re-engagement.
Identifies open deals with no activity beyond threshold and displays stalest deals first.
Scheduled read-only Firecrawl operations digest. It lists active crawls, reads credit and token usage, renders compact operations tables, and can send an in-app notification for active crawls or low remaining credits. It never starts or cancels jobs, registers webhooks, scrapes pages, mutates billing/team settings, or calls arbitrary Firecrawl API routes.
Read-only Firecrawl page extraction workflow. It scrapes one explicit URL through recued-core.firecrawl.page.scrape, summarizes the returned markdown and metadata, and shows key extraction counters. It never starts crawl jobs, runs browser actions, sends custom headers/cookies, bypasses TLS verification, registers webhooks, or calls arbitrary Firecrawl API routes.
Read-only Firecrawl research workflow. It searches web/news results through recued-core.firecrawl.web.search, renders result tables, and summarizes the returned titles, URLs, snippets, markdown, and warnings. It never starts crawl jobs, scrapes arbitrary routes directly, runs browser actions, sends custom headers/cookies, registers webhooks, or calls arbitrary Firecrawl API routes.
Optionally seed the owner's Recued-native operating system with a setup profile note, setup project, setup tasks, and weekly owner-review commitment. Defaults to preview; switch write_mode to create when the owner wants records written.
Show the owner what must be decided before Recued can run as a visible operating system: business profile, owner identity, external service lanes, inbox, calendar, weekly review cadence, and follow-up default. This recipe is read-only and intentionally does not pretend to inspect connection state.
Read-only runtime brief for one Fly.io app. It reads the app, machines, volumes, certificates, IP assignments, and platform regions through recued-core.flyio, then asks the AI summarizer for health, capacity, certificate/DNS posture, and next operational checks. It never creates, starts, stops, restarts, suspends, deletes, executes commands, mutates secrets, mints tokens, or calls arbitrary Fly.io API routes.
Scheduled read-only digest for Fly.io operations. It reads current token metadata, apps, organization-wide machines, organization-wide volumes, and platform regions through recued-core.flyio, renders compact tables, and can send an in-app nudge when machines or volumes are visible. It never creates, starts, stops, restarts, suspends, cordons, deletes, executes commands, mutates secrets, mints tokens, changes IP assignments, or calls arbitrary Fly.io API routes.
Read-only investigation brief for one Fly.io Machine. It reads the machine, recent events, process list, memory, metadata, and versions through recued-core.flyio, then asks the AI summarizer for runtime state, recent lifecycle signal, process pressure, memory posture, configuration risk, and next checks. It never starts, stops, restarts, suspends, deletes, executes commands, sends signals, mutates metadata or secrets, or calls arbitrary Fly.io API routes.
Read-only Email/Outbox workflow. Scans a sent/outbound mail folder, classifies likely follow-up candidates, and drafts a small batch of plain-text replies without sending. Use this as the preview lane before running batch-approve-followups.
Checks if contact follow-up is overdue based on last activity date.
Checks days since last activity on contact/deal/ticket and shows overdue status or missing data.
Roll your open CRM pipeline into one forecast card: open-deal count, raw pipeline value (sum of amounts), and the vendor's committed forecast (sum of forecast amounts). Vendor-neutral: binds to HubSpot deals or Salesforce opportunities at pack install; 'open' is the canonical close_state signal, not a raw vendor stage.
Groups open deals by close date month within forecast horizon, displays monthly pipeline table, and generates AI narrative analyzing monthly trends + risk factors.
Forecasts pipeline by month with weighted totals and AI narrative.
Scheduled adopter for Freshdesk ticket reply closure rows seeded by reply-freshdesk-ticket-with-closure. It lists only Recued-originated public-reply watches, re-reads a bounded batch of ticket from Freshdesk, and closes or flags the shared row when Freshdesk reports a configured closure or owner-actionable status. It can notify the owner on closure or customer-return states, but it never updates tickets, replies to customers, creates private notes, creates or edits automations/dispatch rules/SLA/admin settings, deletes records, or calls arbitrary Freshdesk endpoints.
Read-only AI-assisted review brief for one Freshdesk ticket. It reads the ticket, full conversation list, requester contact when available, company when available, time entries, and matching solution articles through recued-core.freshdesk, then summarizes the customer ask, urgency, history, support risk, and next response. It never replies, updates, deletes, bulk-mutates, attaches files, changes automations/admin settings, or calls arbitrary Freshdesk endpoints.
Scheduled read-only digest for a Freshdesk support queue. It reads the current agent, groups, matching tickets, ticket fields, and matching solution articles through recued-core.freshdesk, renders compact support tables, and can send an in-app nudge when matching tickets exist. It never creates, replies, updates, deletes, bulk-mutates, attaches files, changes automations/admin settings, or calls arbitrary Freshdesk endpoints.
Read-only AI-assisted brief for one Front conversation. It reads conversation metadata, messages, internal comments, events, followers, and inboxes through recued-core.front, then summarizes customer context, issue state, suggested next reply, and operational follow-ups. It never sends replies, posts comments, changes status, tags, assignees, contacts, or knowledge base content.
Scheduled adopter for Front conversation reply reopen rows seeded by reply-front-conversation-with-reopen-watch. It lists only Recued-originated public-reply watches, re-reads a bounded batch of Front conversation and its latest events, and closes or flags the shared row when Front reports a terminal status, resolved ticket category, newer customer-return event, reopen event, or delivery error. It can notify the owner on closure or owner-actionable states, but it never updates conversations, sends replies, creates comments, creates reminders, mutates tags or custom fields, creates or edits Front Rules, changes inbox/admin settings, creates webhooks or application triggers, deletes records, bulk mutates, or calls arbitrary Front endpoints.
Scheduled read-only triage digest for one Front inbox. It reads inbox metadata, matching conversations, visible teammates, and tags through recued-core.front, renders compact tables, and optionally sends an in-app nudge when conversations are visible. It never sends replies, changes assignees, changes statuses, creates tags, updates contacts, mutates knowledge base content, deletes data, downloads attachments, or calls arbitrary Front API routes.
Approval-gated Squarespace fulfillment workflow. It reads the target order, then fulfills exactly one order with caller-supplied shipment rows and optional customer notification through recued-core.squarespace. It does not create orders, refund payments, edit products, mutate inventory directly, delete data, or call arbitrary endpoints.
Generates executive-ready case studies from closed-won deal notes with PII protection. Activities bind to your HubSpot connection via the canonical engagement.list op.
Generates three tailored cold emails (initial, follow-up, breakup) using account context. Each email ≤150 words with copy buttons.
Generates a personalized icebreaker for a CRM contact using recent web news about their company. Contact reads bind to your HubSpot connection via the canonical contact.read op; web search runs through an enrolled Exa connection's gated recued-core.exa.web.search op.
Generates a professional 4-section meeting agenda when a deal has a meeting scheduled within 48 hours. Activities bind to your HubSpot connection via the canonical engagement.list op.
A scheduled worktree watch for one trusted local Git repository path. It uses the repo.changed_files op as an empty/non-empty trigger signal, skips the heavier status/log reads when the worktree is clean, and renders a compact card when local changes are present. It never fetches, pulls, pushes, clones, shells out, or talks to a remote.
A scheduled local Git briefing for one trusted repository path. During the configured work-hours window it reads branch/status rows and recent commits through the recued-core.git CLI pack, then renders a compact card. It never fetches, pulls, pushes, clones, shells out, or talks to a remote.
Scheduled read-only digest for the authenticated GitHub user. It reads the current user, open assigned issues, and unread notification threads through recued-core.github-pack, renders compact triage tables, and can send an in-app nudge when assigned work or notifications exist. It never creates or updates issues, comments, pull requests, branches, releases, workflow runs, checks, secrets, collaborators, admin settings, webhooks, or arbitrary GitHub APIs.
Scheduled adopter for GitHub issue closure rows seeded by create-github-issue-with-closure. It lists only Recued-originated issue watches, re-reads a bounded batch of GitHub issue, and closes the shared row when GitHub reports that issue closed. It can notify the owner on closure, but it never creates, updates, closes, reopens, deletes, transfers, labels, assigns, locks, comments on, creates pull requests for, or otherwise mutates GitHub issues.
Scheduled adopter for GitHub issue comment closure rows seeded by comment-github-issue-with-closure. It lists only Recued-originated issue-comment watches, re-reads a bounded batch of GitHub issue, and closes the shared row when GitHub reports that issue closed. It can notify the owner on closure, but it never creates, updates, closes, reopens, deletes, transfers, labels, assigns, locks, comments on, or otherwise mutates GitHub issues.
Scheduled detection half of the GitHub Actions to Linear exception handoff loop. It reads recent failed workflow runs for one configured repository, excludes pull-request-attached runs by default, fetches failed job names for the first unhandled non-PR run, writes one data.shared proposal, and notifies the owner to review whether the failed run should become Linear work. It never creates Linear issues, comments on GitHub, reruns workflows, updates GitHub issues or pull requests, changes branch protection, mutates Linear projects, or calls arbitrary APIs. GitHub Actions notifications, workflow logs, rerun controls, branch protection, Linear Reviews, Linear's GitHub integration, and GitHub issue syncing own their normal paths; this recipe only creates a Recued-visible exception proposal that an owner can approve or dismiss with create-approved-linear-issue-from-github-run.
Scheduled feedback half of the GitHub Actions to Linear exception handoff loop. It reads Linear issues created by create-approved-linear-issue-from-github-run, reads the original GitHub workflow run for current context, closes the Recued data.shared handoff when the Linear issue reaches a terminal state, and optionally notifies the owner to verify the current CI state. It does not update GitHub, rerun workflows, comment on GitHub, update Linear issues, create comments, change branch protection, or call arbitrary APIs. Linear Reviews, GitHub Actions notifications, logs, reruns, branch protection, Linear's GitHub integration, and GitHub issue syncing own normal CI operations; this watcher only records Recued-visible exception closure.
Read-only review brief for one GitHub pull request. It reads repository metadata, pull request details, changed files, reviews, review comments, recent workflow runs for the PR head branch, and check runs for the PR head SHA through recued-core.github-pack, then asks the AI summarizer for impact, reviewer state, CI status, risks, and next actions. It never creates or updates issues, comments, pull requests, branches, releases, workflow runs, checks, secrets, collaborators, admin settings, webhooks, or arbitrary GitHub APIs.
Scheduled adopter for GitLab issue note closure rows seeded by comment-gitlab-issue-with-closure. It lists only Recued-originated issue-note watches, re-reads a bounded batch of GitLab issue, and closes the shared row when GitLab reports that issue closed. It can notify the owner on closure, but it never creates, updates, closes, reopens, deletes, moves, labels, assigns, comments on, or otherwise mutates GitLab issues.
Read-only review brief for one GitLab.com merge request. It reads project metadata, merge request details, discussion notes, recent commits on the source branch, and pipelines for that branch through recued-core.gitlab, then asks the AI summarizer for scope, reviewer state, CI status, risks, and next actions. It never creates or updates issues, notes, merge requests, branches, tags, commits, releases, runners, admin settings, pipelines, jobs, artifacts, webhooks, or arbitrary GitLab APIs.
Scheduled read-only digest for one GitLab.com project. It reads the current user, project metadata, open issues, opened merge requests, recent pipelines, and releases through recued-core.gitlab, renders compact triage tables, and can send an in-app nudge when active project work is visible. It never creates or updates issues, notes, merge requests, branches, tags, commits, releases, runners, admin settings, pipelines, jobs, artifacts, webhooks, or arbitrary GitLab APIs.
Scheduled read-only digest for one Gmail mailbox. It reads the mailbox profile, labels, matching inbox threads, unread messages, draft IDs, send-as identities, and vacation responder state through recued-core.gmail, renders compact tables, and can send an in-app nudge when visible mail needs attention. It never sends mail, creates or sends drafts, mutates labels, changes filters, changes settings, deletes, trashes, imports, watches Pub/Sub, or calls arbitrary Gmail APIs.
Read-only review brief for one Gmail thread. It reads the full parsed thread, optional selected-message metadata, mailbox labels, drafts, send-as identities, and vacation responder state through recued-core.gmail, then asks the AI summarizer for participants, urgency, commitments, open questions, risks, and next actions. It never sends mail, creates or sends drafts, mutates labels, changes filters, changes settings, deletes, trashes, imports, watches Pub/Sub, or calls arbitrary Gmail APIs.
Scheduled morning agenda for one Google Calendar. It reads calendar metadata, today's event window, and free/busy blocks through recued-core.google-calendar, renders a compact agenda, and can send an in-app nudge when events are present. Read-only: event creation, edits, and cancellation stay behind the pack's approval-gated write operations.
Read-only prep brief for one Google Calendar event. It reads calendar metadata and event details through recued-core.google-calendar, then asks the AI summarizer for agenda, attendees, open questions, and next actions. It never creates, updates, deletes, imports, shares, or calls arbitrary Google Calendar APIs.
Scheduled read-only activity digest for one Google Chat space. It reads space context, a bounded page of recent messages, members, and recent space events through recued-core.google-chat, renders compact tables, and optionally sends an in-app nudge when messages are visible. It never sends Chat messages, changes memberships, downloads attachment bytes, edits read-state, or calls arbitrary Chat APIs.
Read-only review brief for one Google Chat message thread. It reads the space, the seed message, messages in the same thread, and reactions on the seed message through recued-core.google-chat, then asks the AI summarizer for decisions, blockers, named owners, and next steps. It never sends replies, edits messages, changes reactions, downloads attachments, changes memberships, or calls arbitrary Chat APIs.
Read-only review brief for one Google Docs document. It reads a single document through recued-core.google-docs and asks the AI summarizer for a concise summary, decisions, risks, and next actions. It never creates, edits, deletes, exports, shares, comments on, or searches Drive files.
Scheduled adopter for Google Drive file comment closure rows seeded by comment-google-drive-file-with-closure. It lists only Recued-originated file-comment watches, re-reads a bounded batch of Drive comment thread, and closes the shared row when Google Drive reports that comment resolved or deleted. It can notify the owner on resolution or deletion, but it never creates, edits, deletes, or resolves comments, changes file permissions, mutates document body content, downloads files, moves files, configures Drive notifications, or calls arbitrary Google Drive endpoints.
Read-only post-meeting brief for one Google Meet conference record. It reads the conference record, participants, optional recording metadata, optional transcript metadata, and optional transcript entries through recued-core.google-meet, then asks the AI summarizer for attendance, decisions, risks, follow-ups, artifact links, and next actions. It never downloads Drive recordings, fetches Docs transcript files, edits Meet spaces, ends live calls, schedules Calendar events, or calls arbitrary Google APIs.
Read-only review brief for one Google Slides presentation. It reads a single deck through recued-core.google-slides, gets one first-slide thumbnail when available, and asks the AI summarizer for audience, narrative, gaps, risks, and next actions. It never creates, edits, deletes, exports, shares, or searches Drive files.
Read-only engagement brief for one Klaviyo profile. It reads the profile, recent events, lists, and segments through recued-core.klaviyo, then asks the AI summarizer for customer context, recent behavior, subscription/list posture, and safe follow-up ideas. It never creates, updates, merges, suppresses, unsubscribes, sends, schedules, or mutates Klaviyo records.
Scheduled adopter for Google Tasks task closure rows seeded by create-google-task-with-closure. It lists only Recued-originated Google Task watches, re-reads a bounded batch of Google Task, and closes the shared row when Google Tasks reports completion. Rows that cannot be read remain open instead of closing from cached state. It can notify the owner on completion, but it never creates, updates, completes, deletes, moves, reorders, renames lists, mutates links, touches hidden/deleted or assignment-source fields, clears completed tasks, or otherwise mutates Google Tasks.
Scheduled morning task plan for one Google Tasks list. It reads tasks due today through the recued-core.google-tasks capability pack, renders a compact table, and optionally sends an in-app nudge when due tasks are present. Read-only: task creation, completion, edits, and moves stay behind the pack's approval-gated write operations.
Read-only Greenhouse candidate brief. It fetches selected candidates plus related applications, interviews, scorecards, and offers through recued-core.greenhouse, then asks core.ai.summarize for a compact recruiting evidence brief. It does not write notes, create candidates, move applications, change offers, upload attachments, or call arbitrary Greenhouse endpoints.
Read-only Greenhouse job pipeline brief. It fetches selected jobs plus applications, openings, job posts, interviews, and offers through recued-core.greenhouse, then asks core.ai.summarize for a compact readiness view for hiring managers and recruiting ops. It does not mutate jobs, openings, posts, candidates, applications, offers, attachments, or arbitrary Greenhouse endpoints.
Scheduled read-only Greenhouse Harvest v3 recruiting digest. It lists bounded pages of open jobs, active applications, candidates, interviews, offers, offices, and departments through recued-core.greenhouse, renders compact review tables, and optionally sends an in-app nudge when active applications are visible. It never creates candidates, writes notes, moves applications, changes offers, mutates jobs or openings, uploads attachments, or calls arbitrary Greenhouse endpoints.
Low-latency Groq chat workflow. It reads the selected model metadata, creates one non-streaming chat completion from an explicit question, and summarizes answer quality, finish reason, model, and token usage. It never enables streaming, tools, tool_choice, functions, MCP tools, Compound custom tool configuration, web-search settings, audio, files, or arbitrary Groq routes.
Read-only Groq embedding workflow. It creates embeddings for explicit caller-provided text samples and summarizes vector count, encoding, token usage, and readiness for semantic search or RAG. It never sends files, calls audio endpoints, uses tools, creates batch jobs, or uses arbitrary Groq routes.
Read-only Groq operations workflow. It lists models, batch jobs, and file metadata visible to the enrolled connection, tables operational state, and summarizes model availability, batch backlog, and file inventory. It never creates or cancels batches, uploads/downloads/deletes files, deletes models, calls fine tuning, or uses arbitrary Groq routes.
Groq Responses API workflow. It creates one bounded non-streaming text response, tables output items, and summarizes response status, generated content, reasoning metadata, and token usage. It never enables tools, tool_choice, parallel tool calls, streaming, storage, metadata, previous responses, audio, files, or arbitrary Groq routes.
Groups US accounts into 5 regions (Northeast, Midwest, South, West, Other) using zip code prefix lookup. Computes account count, total revenue, and average deal size per region. Table sorted by revenue descending.
Groups all open deals by owner with pipeline metrics and sortable table view.
D-179 worked example, stage 4 (the failure/stall handler). Lists codex_queue rows in state fail or fail_timeout, emails the failure kind (non-zero exit vs no evidence before the timeout - the silent/stalled case), and finalizes each row to failed_notified. File-free: the sweeper owns marker consumption. A late marker after a timeout would be reconciled by a later sweep, so an occasional follow-up success notification is expected (at-least-once by design). Run this as ONE scheduled dish - the scheduler serializes a schedule's runs, so the list-notify-mark sequence is not raced by a concurrent copy of itself.
D-179 worked example, stage 3 (the success handler). Lists codex_queue rows in state=success, emails the issue link plus the log path, and finalizes each row to done. The sweeper already consumed the completion marker, so this stage is file-free. Notify-then-mark is at-least-once: a crash between them re-notifies next cycle. Run this as ONE scheduled dish - the scheduler serializes a schedule's runs, so the list-notify-mark sequence is not raced by a concurrent copy of itself.
Scheduled adopter for Help Scout conversation reply closure rows seeded by reply-helpscout-conversation-with-closure. It lists only Recued-originated public-reply watches, re-reads a bounded batch of conversation from Help Scout, and closes or flags the shared row when Help Scout reports a configured closure or owner-actionable status. It can notify the owner on closure or customer-return states, but it never updates conversations, replies to customers, creates internal notes, creates or edits Help Scout Workflows, changes mailbox/admin settings, creates webhooks, deletes records, bulk mutates, or calls arbitrary Help Scout endpoints.
Read-only AI-assisted review brief for one Help Scout conversation. It reads the conversation, its thread history, primary customer profile, and team context through recued-core.helpscout, then summarizes customer ask, latest state, sentiment, support risk, and next response. It never replies, notes, updates tags or custom fields, mutates users or inbox settings, downloads attachments, deletes, bulk-mutates, runs workflows, or calls arbitrary Help Scout endpoints.
Scheduled read-only digest for one Help Scout inbox. It reads inbox metadata, folders, matching conversations, users, and tags through recued-core.helpscout, summarizes the support queue, renders compact triage tables, and can send an in-app nudge when conversations match. It never creates, replies, notes, updates tags or custom fields, mutates users or inbox settings, downloads attachments, deletes, bulk-mutates, runs workflows, or calls arbitrary Help Scout endpoints.
Scheduled read-only Heroku app operations digest. It reads one app, dynos, formations, releases, builds, domains, add-ons, and pipeline coupling through recued-core.heroku, renders compact review tables, and can send an in-app nudge when runtime or release records are visible. It never creates, restarts, stops, scales, rolls back, mutates config vars, provisions add-ons, creates log sessions, deletes resources, or calls arbitrary Heroku API routes.
Read-only runtime brief for one Heroku app. It reads the app, dynos, formation, releases, builds, domains, add-ons, pipeline coupling, and available dyno sizes through recued-core.heroku, then asks the AI summarizer for runtime health, release posture, DNS status, scaling context, and concrete next checks. It never creates, restarts, stops, scales, rolls back, mutates config vars, provisions add-ons, creates log sessions, deletes resources, or calls arbitrary Heroku API routes.
Read-only investigation brief for one Heroku release. It reads the target release, neighboring release/build/runtime/domain context, and asks the AI summarizer for what changed, rollback eligibility, likely operational impact, and next checks. It never creates builds, rolls back, restarts or stops dynos, scales formation, mutates config vars, deletes resources, or calls arbitrary Heroku API routes.
Scheduled read-only Hugging Face research digest. It reads Daily Papers, recent Paper Pages, and documentation search context through recued-core.huggingface, summarizes notable AI research items, and can send an in-app notification when papers are visible. It never comments on papers, claims papers, mutates links, creates collections or discussions, downloads files, or calls arbitrary Hugging Face routes.
Read-only Hugging Face Hub discovery workflow. It searches Hub resources, trending items, documentation snippets, and Spaces hardware through recued-core.huggingface, then summarizes useful models, datasets, Spaces, papers, and collections for a requested topic. It never creates repositories, writes discussions or collections, downloads files, reads token endpoints, mutates settings, or calls arbitrary Hugging Face routes.
Read-only Hugging Face model repository review workflow. It reads refs, recent commits, security scan status, selected tree entries, and repository discussions through recued-core.huggingface, then summarizes release and adoption readiness for a model repository. It never creates discussions, commits, branches, tags, repositories, downloads files, reads token endpoints, mutates settings, or calls arbitrary Hugging Face routes.
Vendor-agnostic Layer-1 silent producer wrapping the `inbound_outbound_ratio` topic per spec § A.9.1. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads any housekeeping-computed row via `enrichment-list` with the dynamic `{{context.event.payload.platform}}` scope and re-emits it through the recipe cycle. The substrate-side housekeeping engagement-aggregates code (D-139 P3 — `backend/server/src/housekeeping/engagement-aggregates/inbound-outbound-ratio.ts`) is the canonical compute path with the full Pass-4 evidence-quality fold (inbound = direction='inbound' + authorship excluding automation/system_process; outbound = direction='outbound' + authorship IN user/crm_user; failed sends + no_answer count toward outbound effort but never as prospect engagement). Recipe writes carry `authored_by_recipe_id` distinct from the housekeeping `system.housekeeping.<topic>` author so both rows coexist on the unique `(topic, scope, target_id, authored_by_recipe_id)` index without conflict. Honest-zero `'mutual'` default per the bucket enum invariant when no housekeeping row exists yet.
Read-only follow-up triage brief for one incident.io incident or assignee team. It reads follow-ups, actions, teams, users, and optional incident context through recued-core.incidentio, then asks the AI summarizer for owners, blocked work, aging risk, duplicate work, and next steps. It never creates, updates, completes, deletes, or exports follow-ups, actions, incidents, schedules, escalations, settings, or arbitrary incident.io API routes.
Read-only incident command brief for one incident.io incident. It reads the incident, incident updates, actions, follow-ups, users, and teams through recued-core.incidentio, then asks the AI summarizer for status, owner context, decisions, open work, risks, and next steps. It never creates or edits incidents, actions, follow-ups, schedules, escalations, settings, API keys, or arbitrary incident.io API routes.
Scheduled read-only digest for incident.io operations. It reads API-key identity, incidents, actions, follow-ups, schedules, and escalations through recued-core.incidentio, renders compact tables, and can send an in-app nudge when active incident or escalation records are visible. It never creates or edits incidents, actions, follow-ups, schedules, escalations, status pages, catalog entries, settings, API keys, or arbitrary incident.io API routes.
Cross-entity view: deal health, contact engagement, company context, recent activities, and open tickets — all in one sidebar. AI synthesizes the full picture. Activities bind to your HubSpot connection via the canonical engagement.list op.
Scheduled adopter for Intercom conversation reply closure rows seeded by reply-intercom-conversation-with-closure-watch. It lists only Recued-originated public-reply watches, re-reads a bounded batch of Intercom conversation, and closes or flags the shared row when Intercom reports configured closure state or customer-waiting owner-review state after the Recued reply. It can notify the owner on closure or owner-actionable customer-return states, but it never replies, adds notes, closes, reopens, snoozes, assigns, tags, mutates contacts or companies, creates or updates tickets, configures Intercom Workflows or Rules, creates webhooks, deletes records, bulk mutates, or calls arbitrary Intercom endpoints.
Read-only review brief for one Intercom conversation and optional contact. It reads the conversation, contact profile, contact notes, companies, tags, admins, teams, workspace tags, and matching Help Center articles through recued-core.intercom, then asks the AI summarizer for urgency, customer context, likely resolution path, knowledge-base matches, risks, and next actions. It never replies, assigns, closes, snoozes, tags, mutates contacts or companies, creates or updates tickets, deletes, redacts, publishes articles, changes admin settings, or calls arbitrary Intercom APIs.
Scheduled read-only triage digest for Intercom. It reads admins, teams, recent conversations, open conversations, workspace tags, and matching Help Center articles through recued-core.intercom, renders compact support tables, and can send an in-app nudge when open conversations are visible. It never replies, assigns, closes, snoozes, tags, mutates contacts or companies, creates or updates tickets, deletes, redacts, publishes articles, changes admin settings, or calls arbitrary Intercom APIs.
Chronologically sorts all deal activities and generates AI-powered timeline summary highlighting key compliance decisions. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Approval-gated Clerk organization invitation workflow for one invitee. It reads the organization and existing matching invitations for context, then calls recued-core.clerk.organization.invitation.create with one email address and role. It does not create users, bulk invite, revoke invitations, mutate roles or permissions, change domains, or call arbitrary Clerk APIs.
Approval-gated WorkOS invitation workflow. It reads the destination organization, checks matching existing users and invitations by email, sends exactly one invitation through recued-core.workos, and returns the invite result. It never creates users, updates memberships, revokes invitations, deletes records, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Parse a received invoice or receipt (PDF / image / DOCX / scan) with the local docling tool into readable text - so any text model can read it - then extract vendor, number, amount, currency, and dates. Preview-first: shows the extracted fields and writes nothing; set write_mode to stage to persist a staged invoice/expense row into data.shared. Writes no accounting system - staging is the holding area for later review and posting. Content-isolated via Gateway-gated file refs.
Watch a Google Drive folder for new invoice / receipt documents and stage their extracted finance data. Polls the folder via the gdrive file.list operation, picks the newest document that is not a Google-native file, downloads its bytes straight into the warehouse CAS as a Gateway-gated data.file (file.download surfaces result.file_ref, so the bytes never flow through op-step values), parses it to Markdown with the local docling tool (which materializes the file_ref to a temp file it reads), and pulls vendor, number, amount, currency, and dates from the parsed Markdown via the same file-ref isolation. Preview-first: by default it shows the extracted fields and writes nothing; set write_mode to stage to persist a durable staged invoice/expense row into data.shared for later review and posting. A per-run context guard skips re-processing the same newest file across polls. This is the Drive-folder source lane for the SMB-finance intake; the manual single-document lane is invoice-intake-organizer.
Approval-gated Microsoft Defender for Endpoint machine isolation workflow for one machine. It reads the machine and related alerts for context, then calls recued-core.microsoft-defender-endpoint.machine.isolate for exactly that machine. It does not run live response, offboard devices, run antivirus scans, quarantine files, collect packages, mutate tags, create indicators, bulk-update alerts, or call arbitrary Defender APIs.
Scheduled adopter for Jira issue closure rows seeded by create-jira-issue-with-closure. It lists only Recued-originated issue watches, re-reads a bounded batch of Jira issue, and closes the shared row when Jira reports that issue has reached the Done status category. It can notify the owner on closure, but it never creates, updates, transitions, assigns, deletes, attaches to, links, watches, votes on, comments on, adds worklogs to, or otherwise mutates Jira issues.
Scheduled adopter for Jira issue comment closure rows seeded by comment-jira-issue-with-closure. It lists only Recued-originated issue-comment watches, re-reads a bounded batch of Jira issue, and closes the shared row when Jira reports that issue has reached the Done status category. It can notify the owner on closure, but it never creates, updates, transitions, assigns, deletes, attaches to, links, watches, votes on, comments on, or otherwise mutates Jira issues.
Read-only review brief for one Jira issue. It reads issue details, comments, worklogs, and available transitions through recued-core.jira, then asks the AI summarizer for status, blockers, owners, and next actions. It never comments, transitions, assigns, edits, deletes, attaches files, or calls arbitrary Jira endpoints.
Scheduled read-only digest for personal Jira work. It reads the current Jira user, assigned issues, optionally reported issues, and optionally recently updated issues through recued-core.jira, renders a compact table, and can send an in-app nudge when matching issues exist. It does not create, edit, transition, assign, delete, attach, notify, or call arbitrary Jira endpoints.
Read-only Jotform form readiness brief. It reads one form, questions, reports, uploaded-file metadata, and webhook registrations through recued-core.jotform, then asks the AI summarizer for launch readiness, intake quality, reporting coverage, webhook evidence, and operational risks. It never mutates forms, submissions, questions, reports, files, webhooks, folders, labels, or settings.
Scheduled read-only Jotform intake digest. It reads the current account, one form, recent submissions, reports, and account usage through recued-core.jotform, renders compact review tables, and optionally sends an in-app nudge when submissions are visible. It never creates, updates, deletes, clones, downloads files, mutates webhooks, changes account settings, or calls arbitrary Jotform endpoints.
Read-only Jotform submission review brief. It reads one form, that form's questions, and one submission through recued-core.jotform, then asks the AI summarizer for answer themes, routing signals, missing details, and concrete follow-up next steps. It never mutates forms, questions, submissions, webhooks, reports, files, settings, folders, or labels.
Read-only Klarna payment-session brief. It retrieves one payment session through recued-core.klarna, summarizes checkout readiness, cart totals, session status, and available Klarna payment method categories, and never mutates payment sessions, creates orders, cancels authorizations, or calls arbitrary endpoints.
Scheduled read-only digest for Klaviyo email marketing performance. It reads campaigns, flows, metrics, and campaign/flow values reports through recued-core.klaviyo, renders compact tables, and can send an in-app nudge when recent campaigns are visible. It never creates profiles, updates lists, turns flows on or off, sends campaigns, cancels sends, records events, mutates catalog, or calls arbitrary Klaviyo endpoints.
Vendor-agnostic Layer-1 silent producer wrapping the `last_meaningful_touch` topic per spec § A.9.1. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads any housekeeping-computed row via `enrichment-list` with the dynamic `{{context.event.payload.platform}}` scope and re-emits it through the recipe cycle. The substrate-side housekeeping engagement-aggregates code (D-139 P3 — `backend/server/src/housekeeping/engagement-aggregates/last-meaningful-touch.ts`) is the canonical compute path with the full Pass-4 evidence-quality fold (excludes tracking-pixel + workflow auto-logs via authorship NOT IN crm_automation/system_process; lifecycle filter point_in_time + completed only; direction-agnostic — any meaningful inbound or outbound counts). Recipe writes carry `authored_by_recipe_id` distinct from the housekeeping `system.housekeeping.<topic>` author so both rows coexist on the unique `(topic, scope, target_id, authored_by_recipe_id)` index without conflict. Honest-zero defaults per the value-schema invariant (last_touch_at = 0 paired with all-null vendor + entity + authorship + direction) when no housekeeping row exists yet — the value-schema validator enforces the pairing.
Read-only brief for one LaunchDarkly feature flag in one environment. It reads the project, environment, flag, flag status, and recent audit log entries through recued-core.launchdarkly, then asks the AI summarizer for release context, current posture, recent changes, risks, and next safe action. It never turns the flag on or off, changes targeting, creates flags, reviews approvals, or mutates LaunchDarkly records.
Scheduled read-only digest for one LaunchDarkly project environment. It reads the project, environment, feature flags, flag statuses, and recent audit log entries through recued-core.launchdarkly, renders compact tables, and can send an in-app nudge when matching flags or changes are visible. It never creates flags, turns flags on or off, edits targeting, reviews approvals, changes segments, or calls arbitrary LaunchDarkly APIs.
Read-only Lever opportunity brief. It fetches one opportunity plus related notes, interviews, feedback, offers, and panels through recued-core.lever, then asks core.ai.summarize for a compact recruiting evidence brief. It does not write notes, create opportunities, move stages, archive, change offers, create panels or interviews, download files, or call arbitrary Lever endpoints.
Read-only Lever posting pipeline brief. It fetches a selected posting, matching opportunities, users with posting access, stages, tags, sources, and requisitions through recued-core.lever, then asks core.ai.summarize for a compact readiness view for hiring managers and recruiting ops. It does not mutate postings, requisitions, users, opportunities, offers, interviews, files, or arbitrary Lever endpoints.
Scheduled read-only Lever recruiting digest. It lists bounded pages of opportunities, postings, stages, users, sources, tags, and requisitions through recued-core.lever, renders compact review tables, and optionally sends an in-app nudge when opportunities are visible. It never creates opportunities, writes notes, moves opportunities, updates postings, changes offers, uploads files, downloads resumes or offers, or calls arbitrary Lever endpoints.
Scheduled adopter for Linear issue closure rows seeded by create-linear-issue-with-closure. It lists only Recued-originated issue watches, re-reads a bounded batch of Linear issue, and closes the shared row when Linear reports the issue completed or canceled. It can notify the owner on terminal issue state, but it never creates, updates, moves, cancels, completes, deletes, archives, assigns, labels, subscribes to, comments on, or otherwise mutates Linear issues.
Scheduled adopter for Linear issue comment closure rows seeded by comment-linear-issue-with-closure. It lists only Recued-originated issue-comment watches, re-reads a bounded batch of Linear issue, and closes the shared row when Linear reports the issue completed or canceled. It can notify the owner on terminal issue state, but it never creates, updates, moves, cancels, completes, deletes, archives, assigns, labels, subscribes to, comments on, or otherwise mutates Linear issues.
Read-only review brief for one Linear issue and project. It reads issue details, project details, issue comments, project updates, active cycle context, and labels through recued-core.linear, then asks the AI summarizer for status, blockers, owners, stale signals, and next actions. It never creates, updates, moves, comments on, labels, archives, deletes, or calls arbitrary Linear GraphQL.
Scheduled read-only digest for personal Linear work. It reads the current user, assigned issues, optionally created issues, optionally blocked issues, active and next cycles, and open projects through recued-core.linear, renders compact tables, and can send an in-app nudge when matching issues exist. It does not create, update, move, delete, archive, comment on, label, subscribe to, or call arbitrary Linear GraphQL.
Lists recently closed lost deals with loss reasons, sorted newest first.
Lists recently closed lost deals with loss reasons, sorted by closure date.
Lists deals created in the last N days sorted by amount (descending).
Detection half of the core mail-to-task loop. It fires when a mail record is created, applies deterministic subject/sender allow and block filters before any body read or AI call, extracts one concrete owner task only for matched mail, writes a small awaiting_owner_approval proposal row in data.shared, and notifies the owner. It defaults to requiring at least one allow filter so large inboxes do not burn model tokens by default. It never creates the task itself: the owner-invoked create-approved-mail-task recipe performs the Recued task write.
Groups open deals by pipeline stage with deal count, total value, and average deal size. Sorted by pipeline stage order.
Displays the 10 most recent deal activities with relative timestamps. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Identifies open deals with no activity beyond threshold, grouped by owner with pipeline value and percentage of total stale pipeline.
Identifies open deals with no activity beyond threshold, sorted by inactivity duration.
Approval-gated Zoho CRM call logging workflow. It reads active users for owner context, then creates exactly one Calls record through recued-core.zoho-crm-work with bounded call fields. It does not delete calls, upload recordings, mutate users/settings, bulk-import activities, update unrelated records, or call arbitrary Zoho endpoints.
Looks up pre-approved outreach snippets based on contact's industry and job title. Renders copy-ready text with first name interpolation.
Detection half of the core mail-to-commitment loop. It fires when a mail record is created, applies deterministic subject/sender allow and block filters before any body read or AI call, extracts one concrete commitment only for matched mail, writes a small awaiting_owner_approval proposal row in data.shared, and notifies the owner. It defaults to requiring at least one allow filter so large inboxes do not burn model tokens by default. It never creates the commitment itself: the owner-invoked create-approved-mail-commitment recipe performs the Recued commitment write.
Scheduled read-only digest for one Mailchimp audience. It reads account health, audience stats, recent activity, growth history, members, segments, merge fields, and recent campaigns through recued-core.mailchimp, renders compact tables, and can send an in-app nudge when members are visible. It does not create, update, send, schedule, delete, upload files, mutate webhooks, or call arbitrary Mailchimp endpoints.
Read-only review brief for one Mailchimp campaign. It reads campaign metadata, content, send checklist, feedback, report, click details, open details, and email activity through recued-core.mailchimp, then asks the AI summarizer for performance, risks, and follow-up ideas. It never sends, schedules, updates, deletes, uploads files, mutates automations, or calls arbitrary Mailchimp endpoints.
Turn one scanned PDF or image into a searchable PDF through the local OCRmyPDF CLI and preserve the captured result. The recipe uses the recued-core.ocrmypdf fixed pdf.ocr_searchable operation: no shell, no arbitrary OCRmyPDF flags, no caller-controlled output path, and source bytes stay behind file refs.
Classifies each contact's buyer role (champion, blocker, evaluator, decision-maker), analyzes activity sentiment, and flags engagement risks. Activities bind to your HubSpot connection via the canonical engagement.list op.
Read-only Maxio customer revenue brief. It reads one customer, that customer's subscriptions, related invoices, recent site events, and MRR context through recued-core.maxio, then asks the AI summarizer for billing state, collection risk, and next checks. It does not create or update customers, create subscriptions, record usage, allocate components, create invoices, alter coupons, handle payment profiles, refund, void, delete, or call arbitrary Maxio endpoints.
Scheduled read-only Maxio Advanced Billing digest. It reads site settings, dashboard stats, MRR, recent subscriptions, invoices, customers, product families, and site events through recued-core.maxio, renders compact tables, and can send an in-app notification. It does not create customers, create subscriptions, record usage, allocate components, create invoices, alter coupons, handle payment profiles, refund, void, delete, or call arbitrary Maxio endpoints.
Read-only Maxio subscription revenue brief. It reads one subscription, MRR, invoices, subscription components, usages, allocations for an optional component, and subscription events through recued-core.maxio, then asks the AI summarizer for billing state, usage posture, renewal risk, and next checks. It does not mutate subscriptions, record usage, allocate components, create invoices, alter coupons, handle payment profiles, refund, void, delete, or call arbitrary Maxio endpoints.
Turn normalized meeting notes into visible action candidates, then optionally create Recued tasks and commitments. The recipe is preview-first: install it as a practical default, tune extraction prompts and write policy in the recipe editor, and switch write_mode to create when the owner wants records written.
Read-only Neon branch readiness brief for one project branch. It reads project, branch, endpoint, database, role, and operation context through recued-core.neon, then asks the AI summarizer for readiness risks and next steps. It never creates branches or databases, starts or suspends compute, reveals passwords, retrieves connection URIs, deletes or restores resources, mutates auth, or calls arbitrary Neon APIs.
Read-only investigation brief for one Microsoft Defender for Endpoint machine. It reads machine posture, related alerts, discovered vulnerabilities, observed logon users, and recent machine actions through recued-core.microsoft-defender-endpoint, then asks the AI summarizer for incident context, endpoint risk, vulnerable software signals, and next steps. It never isolates, releases isolation, updates alerts, runs live response, offboards devices, scans, quarantines files, collects packages, mutates tags, or calls arbitrary Defender APIs.
Scheduled read-only Microsoft Defender for Endpoint security digest. It reads bounded pages of active alerts, high-risk machines, recent machine actions, security recommendations, vulnerabilities, and the organizational exposure score through recued-core.microsoft-defender-endpoint, renders compact tables, and optionally sends an in-app nudge when matching alerts or machines are visible. It never runs advanced hunting passthrough, live response, offboarding, antivirus scans, file quarantine actions, package collection, tag mutation, indicator mutation, bulk alert updates, raw exports, or arbitrary Defender APIs.
Scheduled read-only Microsoft Entra ID access governance digest. It reads bounded pages of users, groups, applications, service principals, directory audit logs, and sign-in logs through recued-core.microsoft-entra, renders compact tables, and optionally sends an in-app nudge when matching audit or sign-in events are visible. It never creates or deletes users, resets passwords, mutates MFA, changes role assignments, creates app credentials, changes conditional access policies, assigns licenses, or calls arbitrary Graph APIs.
Read-only access review brief for one Microsoft Entra user. It reads the user profile, direct memberships, directory audit activity, and sign-in activity through recued-core.microsoft-entra, then asks the AI summarizer for access posture, risky signals, and next steps. It never disables users, changes memberships, resets passwords, mutates MFA, changes roles, or calls arbitrary Graph APIs.
Read-only endpoint-management brief for one Microsoft Intune managed device. It reads the device profile, recent Intune audit activity for the device, compliance policies, configuration profiles, and mobile app catalog context through recued-core.microsoft-intune, then asks the AI summarizer for device posture, compliance signals, and next steps. It never syncs, locks, wipes, retires, deletes, reboots, shuts down, resets passcodes, mutates policies or apps, or calls arbitrary Graph APIs.
Scheduled read-only Microsoft Intune endpoint-management digest. It reads bounded pages of noncompliant or risky managed devices, compliance policies, configuration profiles, detected apps, mobile apps, and Intune audit events through recued-core.microsoft-intune, renders compact tables, and optionally sends an in-app nudge when matching devices are visible. It never wipes, retires, deletes, reboots, shuts down, resets passcodes, bypasses activation lock, mutates policies or apps, changes roles, or calls arbitrary Graph APIs.
Scheduled read-only digest for one Microsoft To Do task list. It reads the list and a bounded page of tasks through recued-core.microsoft-todo, renders the current task rows, and can send an in-app notification when active tasks are visible. It never creates, updates, completes, deletes, mutates checklist items, touches attachments/extensions, or calls arbitrary Graph endpoints.
Read-only brief for one Microsoft To Do task. It reads the containing list, task, checklist items, and linked resources through recued-core.microsoft-todo, then asks the AI summarizer for context, risks, and next actions. It never creates, updates, completes, deletes, mutates checklist items, touches attachments/extensions, or calls arbitrary Graph endpoints.
Scheduled adopter for Microsoft To Do task closure rows seeded by create-microsoft-todo-task-with-closure. It lists only Recued-originated To Do task watches, re-reads a bounded batch of Microsoft To Do task, and closes the shared row when To Do reports completion. Rows that cannot be read remain open instead of closing from cached state. It can notify the owner on completion, but it never creates, updates, completes, deletes, mutates checklist items, adds linked resources, changes reminders or categories, touches attachments or open extensions, or otherwise mutates Microsoft To Do.
Read-only Mistral chat completion workflow. It reads model metadata, sends explicit non-streaming messages through recued-core.mistral.chat_completion.create, and summarizes the response and token usage. It never enables tools, connector tools, streaming, file upload/download, agent mutation, workflow execution, fine-tuning mutation, or arbitrary Mistral API routes.
Scheduled read-only Mistral operations digest. It lists models, file metadata, batch jobs, fine-tuning jobs, and agents through recued-core.mistral, renders compact review tables, and can send an in-app notification when active jobs are visible. It never creates or cancels jobs, uploads/downloads files, mutates agents, executes workflows, uses admin APIs, or calls arbitrary Mistral routes.
Read-only Mistral safety workflow. It runs moderation and classification on explicit text inputs, optionally creates embeddings for retrieval readiness, and summarizes scores through recued-core.mistral. It never uploads files, mutates agents or jobs, enables tools, uses streaming, or calls arbitrary Mistral API routes.
Read-only Mollie customer brief. Reads one customer, payments, mandates, and subscriptions through recued-core.mollie, then summarizes payment status, mandate health, subscription timing, and follow-up. No writes or arbitrary endpoints.
Scheduled read-only Mollie reconciliation digest. It reads bounded pages of payments, balances, settlements, and invoices through recued-core.mollie, then summarizes payment status, settlement evidence, invoice state, and concrete follow-up. It never creates payments or customers, mutates refunds, cancels payments, changes subscriptions or mandates, or calls arbitrary Mollie endpoints.
Scheduled read-only digest for one monday.com board. It reads the current user, board structure, groups, item page, board updates, and activity log through recued-core.monday, renders compact tables, and can send an in-app nudge when visible items exist. It does not create, update, move, archive, comment on, restructure, delete, upload to, invite users to, or call arbitrary monday.com GraphQL.
Read-only review brief for one monday.com item and board. It reads board structure, the item, item updates/replies, board updates, groups, and recent board activity through recued-core.monday, then asks the AI summarizer for status, blockers, owner context, stale signals, and next actions. It never creates, updates, moves, archives, comments on, restructures, deletes, uploads files, invites users, or calls arbitrary monday.com GraphQL.
Scheduled adopter for monday.com item update closure rows seeded by comment-monday-item-with-closure. It lists only Recued-originated item-update watches, re-reads a bounded batch of monday.com item, closes the shared row when monday.com reports the item archived or moved into a configured terminal group, and marks the row for owner review when the item was deleted. It can notify the owner on terminal state, but it never creates, updates, moves, archives, deletes, restructures, uploads to, invites users to, automates, notifies from, comments on, or otherwise mutates monday.com items.
Approval-gated Datadog monitor scoped mute workflow. It reads the target monitor for context, then mutes exactly one monitor scope through recued-core.datadog until a required POSIX end timestamp. It does not mute all monitors, create downtimes, update monitor configuration, delete monitors, or call arbitrary Datadog APIs.
Scheduled read-only Neon project operations digest. It reads one project, its branches, compute endpoints, and recent operations through recued-core.neon, renders compact review tables, and can send an in-app nudge when recent operations are visible. It never creates branches or databases, starts or suspends compute, reveals passwords, retrieves connection URIs, deletes or restores resources, mutates auth, or calls arbitrary Neon APIs.
Vendor-agnostic Layer-2 visible alert per spec § P6.B. Subscribes to bus events from BOTH connection.api.hubspot.contact AND connection.api.salesforce.contact updates; for each fired contact reads the cross-vendor `commitment_tracker` enrichment via `enrichment-list` filtered to the canonical `system.housekeeping.commitment_tracker` author. Filters commitments where `status equal pending` AND the commitment's `due_at` falls in the next `due_window_hours` (default 24h) per spec § P6.B. Dispatches a notification via `notification-send` rendering the matched commitments' text alongside their D-120 link-graph evidence_links — UI surfaces "Extracted from: [Mail …] [Calendar …] [Attachment: agenda.pdf]" so the user can audit any commitment before acting. The substrate-side AI compute path (full Pass-4 evidence-quality fold on the producer side — authorship_acceptance ['user', 'crm_user', 'unknown'] + lifecycle_state_acceptance ['point_in_time', 'completed'] + body_state_acceptance ['inline_body'] + dedupe_acceptance 'exact_only') lands in `backend/server/src/housekeeping/engagement-aggregates/commitment-tracker.ts` paralleling the P5 sentiment + NBA producers. Trust default `manual` per D-132 — the user must promote at MANUAL_RUN_THRESHOLD before the substrate populates rows. The alert is gated behind the `crm-commitment-tracker` pack's `packs.crm_commitment_tracker.enabled` launch flag at marketplace listing time per spec § P6.B sequencing.
Cross-vendor reactive alert. Subscribes via the canonical `on: deal.changed` sugar, which fans to every installed CRM vendor carrying the `deal` crm_alias (HubSpot deal + Salesforce opportunity today, any future vendor automatically) — one recipe covers all CRMs. For each fired record reads the cross-vendor `deal_health_score` enrichment via the `core.data.enrichment.list` op with vendor-agnostic dynamic scope (`{{context.event.payload.platform}}`). Dispatches a notification when the close date (read from the row's `meta.key_dates.close_date` snapshot) is within a configurable window AND the AI health score is below a configurable floor. Pairs with the Layer-1 `deal-health-score-*` producers from each vendor pack — at least one vendor-specific pack must be installed for the producer recipes to populate the topic. Shares `variant_group: notify-deal-closing-soon` with the per-vendor variants and carries `variant_kind: 'cross_vendor'` discriminator.
Reactive alert. Listens to connection.api.hubspot.deal updated bus events; for each fired deal reads the deal record via the HubSpot connection adapter and the `deal_health_score` enrichment, dispatches a notification when the close date is within a configurable window AND the AI health score is below a configurable floor. The reconciler's poll cadence drives the practical 'daily watcher' frequency — every reconciliation cycle re-fires the trigger on the deal's current state.
Reactive alert. Listens to connection.api.salesforce.opportunity updated bus events; for each fired opportunity reads the current record via the Salesforce connection adapter and the cross-vendor `deal_health_score` enrichment, dispatches a notification when the close date is within a configurable window AND the AI health score is below a configurable floor. The reconciler's poll cadence + CometD streaming drive the practical 'daily watcher' frequency. Salesforce parallel of `notify-deal-closing-soon-hubspot`; both share `variant_group: notify-deal-closing-soon`.
Vendor-agnostic Layer-2 visible alert per spec § P6.A. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads the cross-vendor `engagement_silence_duration` enrichment via `enrichment-list` with dynamic `{{context.event.payload.platform}}` scope. Dispatches a notification when silence (days since last meaningful inbound) exceeds the configurable days threshold (default 14) per spec. Pairs with the Layer-1 `engagement-silence-producer` re-emitter that ticks the topic on each deal touch — substrate-side housekeeping is the canonical compute path. Note: by virtue of the event-trigger model, this alert fires when a silent deal IS touched (revealing the silence), not periodically while truly silent — for true daily cadence over silent deals the housekeeping cycle handles topic refresh and a future watcher can fan out without code change here.
Read-only review brief for one Notion page and one data source. It reads page metadata, page markdown, first-level child blocks, unresolved comments, data-source schema, and one page of data-source entries through recued-core.notion, then asks the AI summarizer for decisions, risks, stale context, and next actions. It never creates, updates, appends blocks, edits comments, deletes, exports, or calls arbitrary Notion APIs.
Vendor-agnostic Layer-2 visible alert per spec § P6.A. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads the cross-vendor `engagement_velocity_signal` enrichment via `enrichment-list` with dynamic `{{context.event.payload.platform}}` scope. Dispatches a notification when velocity trajectory is `decaying` AND the deal/opportunity meta.amount snapshot exceeds the configurable amount floor (default 10,000). The amount is read from the substrate's platform-reference `meta` snapshot per D-128 — populated by the vendor reconciler at ingest time. Pairs with the Layer-1 `engagement-velocity-producer` re-emitter that ticks the topic on each deal touch — substrate-side housekeeping is the canonical compute path, and the alert reads whichever row is freshest (no authored_by filter).
Vendor-agnostic Layer-2 visible alert per spec § P6.A. Subscribes to bus events from BOTH connection.api.hubspot.deal AND connection.api.salesforce.opportunity updates; for each fired record reads the cross-vendor `meeting_to_followup_lag` enrichment via `enrichment-list` with dynamic `{{context.event.payload.platform}}` scope. Dispatches a notification when the meeting → next outbound rep touch lag falls into the `'long'` (≥ 72h / 3d) or `'slipping'` (> 7d) bucket per the value_schema bucket enum (`fast` ≤ 24h / `normal` ≤ 72h / `long` ≤ 7d / `slipping` > 7d / `none` no-followup-yet). The substrate-side housekeeping engagement-aggregates code (D-139 P4 — `backend/server/src/housekeeping/engagement-aggregates/meeting-to-followup-lag.ts`) is the canonical compute path with the full Pass-4 evidence-quality fold (completed-meeting source + outbound rep authorship + lifecycle filter for follow-up evidence states + dedupe_acceptance: 'exact_only').
Cross-vendor cross-substrate reactive alert. Subscribes to inbound mail (`data.mail.**.created` — mail has no canonical CRM-alias sugar, so the raw bus pattern is the idiomatic form); for each inbound message looks up the sender's canonical email as a contact target_id in BOTH `lifecycle_stage_inferred` (HubSpot) AND `lifecycle_stage_inferred_salesforce` (Salesforce) topics via the `core.data.enrichment.list` op. Dispatches a notification when EITHER vendor's lifecycle inference is `customer` — a single alert covers cross-CRM customer matching without forcing the user to install per-vendor variants. The two topics are read in parallel since the cross-vendor lifecycle topic split (D-130 P6 § 11) requires harmonising at the alert layer. Shares `variant_group: notify-new-inquiry-from-existing-customer` with the per-vendor variants and carries `variant_kind: 'cross_vendor'`.
Cross-substrate reactive alert. Listens to mail.created events; for each inbound message looks up the sender's canonical email as a HubSpot contact target_id and reads `lifecycle_stage_inferred` via enrichment-list. Dispatches a notification when the sender's HubSpot lifecycle inference is `customer` — surfaces 'this customer is asking us something — and they bought from us'. Demonstrates the cross-substrate join the D-129 substrate enables (mail trigger + HubSpot enrichment read on canonical-email target_id).
Cross-substrate reactive alert. Listens to mail.created events; for each inbound message looks up the sender's canonical email as a Salesforce contact target_id and reads `lifecycle_stage_inferred_salesforce` via enrichment-list. Dispatches a notification when the sender's Salesforce lifecycle inference is `customer` — surfaces 'this customer is asking us something — and they bought from us'. Demonstrates the cross-substrate join the D-130 substrate enables (mail trigger + Salesforce enrichment read on canonical-email target_id; canonical-email matching is contract-level per D-130 P3 reconciler). Salesforce parallel of `notify-new-inquiry-from-existing-customer-hubspot`; both share `variant_group: notify-new-inquiry-from-existing-customer`.
D-181 slice 5b § 12 — the background-failure notify handler dish. Subscribes to the D-179 § 8.4 run-outcome bus family (`run.<recipe_id>.<dish_id>.failed`) and dispatches one D-158 notification per failed run so a failure nobody was watching (a scheduled / reactive / housekeeping run) still surfaces. The bridge_mode gate is the delivery layer's, not the recipe's: a `notification-send` `notify` fans out only to bridges that hold notification mode (`routeBridgeNotify`), so enabling/disabling per-bridge push is Settings → Notifications, not this recipe. Self-failures don't storm: the dispatcher's `origin_trigger_id` guard suppresses a trigger re-firing the run it dispatched, and `skip_when` belts-and-suspenders the no-origin (manually-run) edge by skipping when the failed run IS this recipe.
Scheduled adopter for Notion page comment closure rows seeded by comment-notion-page-with-closure. It lists only Recued-originated page-comment watches, re-reads a bounded batch of Notion page and one configured status property, and closes the shared row when Notion reports a configured terminal status such as done, complete, completed, closed, or archived, or when the page is in trash. It can notify the owner on closure, but it never creates, updates, trashes, moves, locks, templates, appends blocks to, updates to-do blocks on, edits comments on, deletes from, exports, or otherwise mutates Notion pages.
Scheduled read-only digest for one Notion workspace and data source. It reads token identity, visible users, one data-source schema, one page of data-source entries, and an optional workspace search through recued-core.notion, renders compact tables, and can send an in-app nudge when visible pages exist. It never creates, updates, appends blocks, edits comments, deletes, exports, or calls arbitrary Notion APIs.
Scheduled read-only Okta access governance digest. It reads a bounded page of users, groups, applications, and System Log events through recued-core.okta, renders compact tables, and optionally sends an in-app nudge when matching System Log events are visible. It never suspends users, changes group membership, mutates application assignments, resets credentials or factors, changes policies, or calls arbitrary Okta APIs.
Read-only access review brief for one Okta user. It reads the user profile, group memberships, application links, and recent System Log events through recued-core.okta, then asks the AI summarizer for access posture, risky signals, and next steps. It never changes lifecycle state, changes group membership, mutates app assignments, resets credentials, or calls arbitrary Okta APIs.
Scheduled read-only digest for OneSignal customer messaging operations. It reads recent notifications and legacy player/device records for one app through recued-core.onesignal, renders compact tables, and can send an in-app nudge when messaging records are visible. It never creates messages, cancels messages, creates segments, mutates users or subscriptions, deletes audience data, exports CSV/history reports, or calls arbitrary OneSignal APIs.
Read-only OneSignal performance brief for one notification. It reads notification delivery metadata and selected outcome metrics through recued-core.onesignal, then asks the AI summarizer for delivery health, conversion signals, and next actions. It never creates, cancels, deletes, exports, mutates audiences, or calls arbitrary OneSignal APIs.
Read-only OneSignal user brief for one alias. It reads user properties, identity aliases, and subscriptions through recued-core.onesignal, then asks the AI summarizer for messageability, identity coverage, tag posture, and follow-up actions. It never creates, updates, deletes, sends notifications, exports data, or calls arbitrary OneSignal APIs.
Dashboard of open commitments and tasks per contact and project, sorted by each contact's follow-through reliability — dependable counterparties land on top so the easy wins get chased first. Auto-refreshes weekday morning and early afternoon; invoke any time for the current view.
Read-only OpenAI embedding workflow. It lists visible models, creates embeddings for explicit caller-provided text samples, and summarizes vector and token metadata for semantic search or RAG readiness. It never uploads files, mutates vector stores, creates responses, enables tools, streams output, or calls arbitrary OpenAI routes.
Read-only OpenAI safety workflow. It counts Responses API input tokens and runs moderation on explicit caller-provided text or image inputs, then summarizes safety categories and readiness signals. It never creates model output, enables tools, uploads/downloads files, mutates vector stores, uses realtime, or calls arbitrary OpenAI routes.
Scheduled read-only OpenAI operations digest. It lists model metadata and file metadata through recued-core.openai, renders compact review tables, and can send an in-app notification when files are visible. It never uploads or downloads file content, deletes files or responses, creates generations, mutates vector stores, uses admin APIs, or calls arbitrary OpenAI routes.
Read-only OpenAI Responses API workflow. It counts input tokens, creates one explicit non-streaming response through recued-core.openai.response.create with store=false by default, and summarizes status, output items, and usage. It never enables streaming, hosted tools, custom function tools, MCP tools, file uploads/downloads, response deletion, background cancellation, vector stores, realtime, or arbitrary OpenAI routes.
Read-only OpenRouter workflow for creating one explicit non-streaming chat completion and summarizing answer, route metadata, token usage, and cost. It never enables streaming, tools, plugins, files, media generation, presets, guardrails, key management, workspace administration, or arbitrary OpenRouter routes.
Read-only OpenRouter workflow for reviewing the current API key label, spending limit, remaining budget, usage counters, and current text-model inventory. It does not require the management-only credits endpoint and does not create completions, manage keys, mutate workspaces, or call arbitrary OpenRouter routes.
Read-only OpenRouter workflow for comparing candidate models, provider metadata, model counts, and zero-data-retention endpoint availability. It does not create completions, manage API keys, mutate guardrails or workspaces, use files, enable tools/plugins, or call arbitrary OpenRouter routes.
Owner-invoked action half of the CRM deal update conversion edge for the outbound follow-up loop. It reads one awaiting_owner_approval proposal written by outbound-follow-up-reply-conversion-options, verifies the proposal is still tied to the same source watch row and CRM connection, updates the canonical CRM deal next_step, links the deal back to the reply/source mail, and records the CRM deal linkage on the data.shared watch row without closing the loop. This recipe is manual-only on purpose: running it is the owner's approval to update the CRM deal.
Detection half of the commitment conversion edge for the outbound follow-up loop. It scans data.shared watch rows written by outbound-follow-up-response-watcher, picks one response_needs_owner row with a reply that may contain a promise, fetches the reply body, extracts one concrete commitment, and writes a durable proposal plus a notification. It never creates the commitment itself: the owner-invoked outbound-follow-up-create-approved-commitment recipe performs the write, links the commitment back to mail, and records the conversion. This keeps unattended auto_run detection read/propose-only while preserving the exact reply linkage needed by the manual action.
Owner-invoked create half of the commitment conversion edge. It reads one awaiting_owner_approval proposal written by outbound-follow-up-commitment-from-reply, optionally targeted by proposal_thread_key, creates a Recued commitment from the proposal, links the commitment back to the reply and source mail, and records the commitment id on the source follow-up watch row WITHOUT closing the loop. A commitment is complementary accountability capture, so the thread keeps its current status for the actual task/meeting/reply. It marks the proposal created so it is not re-proposed. This recipe is manual-only on purpose: running it is the owner's approval to turn the proposed promise into durable work.
Owner-invoked create half of the customer-insight note conversion edge. It reads one awaiting_owner_approval proposal written by outbound-follow-up-insight-note-from-reply, optionally targeted by proposal_thread_key, creates a Recued note from the proposal, links the note back to the reply and source mail, and records the note id on the source follow-up watch row WITHOUT closing the loop — an insight note is complementary memory capture, so the thread stays open (its status is preserved) for the actual task/meeting/reply. It marks the proposal created so it is not re-proposed. This recipe is manual-only on purpose: running it is the owner's approval to turn the proposed customer signal into durable relationship memory.
Owner-invoked create half of the task conversion edge. It reads one awaiting_owner_approval proposal written by outbound-follow-up-task-from-reply, optionally targeted by proposal_thread_key, creates a Recued task from the proposal, links the task back to the reply and source mail, closes the source follow-up watch row, and marks the proposal created. This recipe is manual-only on purpose: running it is the owner's approval to turn the proposed reply action into durable work.
Detection half of the customer-insight note conversion edge for the outbound follow-up loop. It scans data.shared watch rows written by outbound-follow-up-response-watcher, picks one response_needs_owner row whose reply is a positive signal or objection/blocker, fetches the recorded reply body, extracts one durable relationship note, and writes a proposal plus a notification. It never creates the note itself: the owner-invoked outbound-follow-up-create-approved-insight-note recipe performs the write, links the note back to mail, and records the conversion. This keeps unattended auto_run detection read/propose-only while preserving the reply linkage needed by the manual action.
Detection half of the meeting-request conversion edge for the outbound follow-up loop. It scans data.shared watch rows written by outbound-follow-up-response-watcher, picks one response_needs_owner row classified as meeting_requested that is not already converted or already proposed, fetches the reply body from the recorded mail slug and record id, extracts explicit schedule fields, and writes a durable proposal (extracted meeting details + linkage, status awaiting_owner_approval) plus a notification for the owner. It never creates a calendar event or sends an invite itself: the actual approval-gated create is owner-invoked via outbound-follow-up-schedule-approved-meeting. Runs unattended (auto_run) but takes no outward-facing action, because under auto_run an internal calendar write would otherwise execute silently at the admin trust ceiling. It never invents a start time and skips rows that lack enough linkage to fetch the reply.
Reactive outbound mirror of outbound-follow-up-response-watcher. It fires on the same data.mail created stream but processes the OWNER's outbound sends rather than inbound replies: when the owner sends on a thread already tracked in data.shared watch state, it confirms the sender is the owner (derived from the linked source mail's From via the stored record_id) and refreshes the row to watching_customer_response with a fresh last_outbound_at and sent_message_id, moving the ball back to the contact. Refresh-only: it never creates rows (the pressure producer and the send recipes own creation) and never reopens responded_closed threads, and it fails closed (skips) when it cannot confirm the owner or find a matching row. This captures owner replies sent from a normal mail client, which the send recipes cannot record.
Silent auto-run (hourly) producer for the outbound follow-up loop. It scans a sent/outbound mail folder, classifies outbound threads that may need closure, and writes durable data.shared watch state (status followup_due, keyed by sanitized thread id) into the outbound-follow-up-response-watcher namespace. It records watched_contact (the primary recipient) so outbound-follow-up-response-watcher can confirm a reply actually came from the contact rather than from the owner's own sent mail, and it skips threads already advanced by that watcher or by send-support-reply-from-mail. unified-work-queue and weekly-owner-review read this same state to surface follow-up discipline without registering a new enrichment topic.
Housekeeping GC for the outbound follow-up loop. data.shared writes do not honor ttl (the durable store rejects it), so the per-thread conversion proposals written by the calendar/task/insight-note/commitment/CRM deal update detectors would otherwise persist forever after they are approved. This daily auto_run lists the outbound-follow-up namespace and deletes only proposal rows in a terminal status (scheduled / task_created / note_created / commitment_created / crm_deal_updated). It is safe because re-proposal is already blocked by the conversion id recorded on the source watch row for one-shot conversions (calendar_source_id / task_id / insight_note_id / commitment_id), while CRM deal-update duplicates for the same reply are blocked by the per-reply notification marker plus pending proposal rows. It never touches the watch rows themselves (they stay for re-open on a later reply), and it leaves awaiting_owner_approval proposals alone (they carry no timestamp, so a stale-unactioned proposal cannot be aged out here — record a created_at on proposals if that is wanted later).
Read-only outbound follow-up queue for a one-person company. It scans a sent/outbound mail folder, classifies recently sent threads that may need closure, and shows the owner what to follow up on before running the draft/send workflows.
Read-only Perplexity model catalog workflow. It lists models visible to the enrolled API connection and summarizes model IDs and ownership metadata for routing or evaluation. It never creates responses, embeddings, browser sessions, files, auth tokens, or calls arbitrary Perplexity routes.
Neutral detection recipe for the outbound follow-up loop. It scans one response_needs_owner data.shared watch row, fetches the reply body, extracts possible conversion facets for meeting, task, insight note, commitment, and linked CRM deal next-step updates, writes compatible proposal rows for the matching owner-invoked action recipes, records a per-reply notification marker, and sends one notification that the reply has conversion options. It does not choose an action and never creates calendar events, tasks, notes, commitments, or CRM updates. User intent is expressed later by running one or more manual action recipes.
Reactive reply-side of the outbound follow-up loop. On every inbound mail it matches the message by thread against durable data.shared watch state seeded by TWO producers — outbound-follow-up-pressure-producer (status followup_due, watched_contact = the primary recipient) and send-support-reply-from-mail (status watching_customer_response, watched_contact = the customer). It confirms the reply's sender is that watched contact — recovering the contact from the linked source mail (via the stored record_id) when a producer denormalized no address, and failing closed (skipping) when it cannot establish the counterparty — then classifies the reply, advances the shared state to responded_closed or response_needs_owner, and links the reply mail to the watched source mail. Those state transitions are what unified-work-queue and weekly-owner-review read to surface or retire the follow-up. It never sends mail or mutates an external system.
Owner-invoked create half of the meeting-request conversion edge. It reads one awaiting_owner_approval proposal written by outbound-follow-up-meeting-request-calendar (optionally targeted by proposal_thread_key), creates the calendar event from the proposal's already-extracted schedule, links the event back to the reply and source mail, closes the follow-up loop on the source watch row, and marks the proposal scheduled. This recipe is manual-only on purpose: the calendar create (and, on some providers, the attendee invite) is an outward-facing action, and running it is the owner's explicit approval. It takes no calendar action when there is no pending proposal or the proposal lacks a concrete start and end time.
Detection half of the task conversion edge for the outbound follow-up loop. It scans data.shared watch rows written by outbound-follow-up-response-watcher, picks one response_needs_owner row whose reply needs owner action but is not a meeting request, fetches the recorded reply body, extracts one concrete owner task, and writes a durable proposal plus a notification. It never creates the task itself: the owner-invoked outbound-follow-up-create-approved-task recipe performs the write and closes the source watch row. This keeps unattended auto_run detection read/propose-only while preserving the exact reply linkage needed by the manual action.
Read-only Outreach prospect engagement brief. It fetches one prospect plus related tasks, mailings, sequence states, and recent events through recued-core.outreach, then asks core.ai.summarize for a compact seller follow-up brief. It does not create prospects, enroll sequences, create snippets or templates, mutate tasks, send mail, log calls, delete records, or call arbitrary Outreach endpoints.
Scheduled read-only Outreach revenue engagement digest. It lists bounded pages of accounts, prospects, sequences, sequence states, tasks, mailings, and events through recued-core.outreach, renders compact review tables, and optionally sends an in-app nudge when prospects are visible. It never creates accounts or prospects, enrolls prospects into sequences, creates snippets or templates, mutates sequences, sends mail, logs calls, invites users, administers webhooks, triggers imports, submits compliance deletion requests, or calls arbitrary Outreach endpoints.
Read-only Outreach sequence readiness brief. It fetches one sequence plus bounded sequence steps, sequence states, snippets, templates, mailboxes, and users through recued-core.outreach, then asks core.ai.summarize for a compact readiness view. It does not create or update sequences, create sequence steps, associate sequence templates, enroll prospects, send mail, log calls, or call arbitrary Outreach endpoints.
Read-only Perplexity Search API workflow. It searches for an explicit query, builds a result table, and summarizes relevance and source mix. It never uses People Search, browser sessions, Agent API responses, async jobs, tools, token management, or arbitrary Perplexity routes.
Vendor-agnostic action workflow over an accounting capability pack (QuickBooks or Xero) and the mail outbox. Binds the accounting connection through canonical core.acct.* op-steps (invoice / customer search), so the same recipe runs against whichever accounting vendor you connected: the resolver dispatches each op to the bound vendor and projects its raw records to the canonical accounting fields (balance / due_date / customer_id / email). It finds invoices that are open and past due, resolves which customers are overdue and have an email on file, drafts one concise reminder per customer, and sends the approved batch through the mail-send kernel ingredient. The chase emails the customer about their outstanding balance; it never creates, voids, or pays anything (canonical accounting op-steps are read-only — money writes ride the explicit gated ingredient binding). Because mail-send is the irreversible send-class boundary, attended runs hold the send step at the preflight approval gate.
Read-only review brief for one PagerDuty incident. It reads the incident, incident notes, linked service, and linked escalation policy through recued-core.pagerduty, then asks the AI summarizer for impact, current state, owners, blockers, and next steps. It never acknowledges, resolves, creates, reassigns, escalates, or mutates PagerDuty records.
Scheduled read-only handoff digest for PagerDuty. It reads the current user, on-call entries, matching schedules, and open incidents through recued-core.pagerduty, renders compact tables, and optionally sends an in-app nudge when open incidents are visible. It never creates or updates incidents, edits schedules, changes escalation policies, creates overrides, or calls arbitrary PagerDuty APIs.
Scheduled adopter for PandaDoc document closure rows seeded by send-pandadoc-document-with-closure. It lists only Recued-originated document watches, re-reads a bounded batch of document from PandaDoc, and closes the shared row when PandaDoc reports a terminal status or an approval-complete status that needs the owner to send again. It can notify the owner on completion or exception status, but it never sends documents, sends reminders, changes recipients, configures auto-reminders or auto-expiration, creates webhooks, downloads files, deletes documents, transfers ownership, or calls arbitrary PandaDoc endpoints.
Read-only PandaDoc document brief. It reads one document's status and detailed evidence through recued-core.pandadoc, then asks the AI summarizer for recipient state, approval/payment context, pricing and metadata signals, risks, and next steps. It never sends, downloads, deletes, creates sessions, edits recipients, moves folders, or mutates the document.
Scheduled read-only PandaDoc contract status digest. It lists recent documents, templates, and forms through recued-core.pandadoc, renders compact review tables, and optionally sends an in-app nudge when documents are visible. It never creates, sends, deletes, downloads, opens embedded sessions, changes ownership, mutates folders, or calls arbitrary PandaDoc endpoints.
Read-only PandaDoc template readiness brief. It reads one template and recent documents created from that template through recued-core.pandadoc, then asks the AI summarizer for required roles, tokens, fields, pricing setup, usage context, and launch risks. It never creates templates, edits content, sends documents, opens embedded sessions, deletes, downloads, or calls arbitrary PandaDoc endpoints.
Source-backed Perplexity workflow. It creates one non-streaming Sonar response from an explicit question, requests citations and related questions, and summarizes answer quality and evidence. It never enables streaming, tools, async jobs, Agent API responses, browser sessions, files, token management, or arbitrary Perplexity routes.
Read-only Perplexity embedding workflow. It creates embeddings for explicit caller-provided text samples and summarizes token usage, output shape, and readiness for semantic search or RAG. It never sends files, calls contextualized embeddings, creates Agent API responses, opens browser sessions, or uses arbitrary Perplexity routes.
Scheduled adopter for Microsoft Planner task closure rows seeded by create-planner-task-with-closure. It lists only Recued-originated Planner task watches, re-reads a bounded batch of Planner task, and closes the shared row when Planner reports completion. Rows that cannot be read remain open instead of closing from cached state. It can notify the owner on completion, but it never creates, updates, completes, deletes, reorders, assigns, labels, mutates buckets or plans, changes board formats, touches premium Planner resources, or otherwise mutates Planner.
Read-only Power BI dataset refresh brief. It reads one dataset, refresh history, refresh schedule, data sources, and parameters through recued-core.powerbi, then asks the AI summarizer for refresh health, gateway/data-source signals, owner context, and next steps. It never triggers refresh, changes schedules, updates parameters, changes data-source credentials, writes rows, exports data, or calls arbitrary Power BI APIs.
Read-only Power BI report review brief. It reads one workspace, report, report pages, and the related dataset when Power BI returns a dataset ID, then asks the AI summarizer for ownership, report structure, dataset dependency, and operational next steps. It never exports reports, clones reports, rebinds reports, generates embed tokens, mutates datasets, or calls arbitrary Power BI APIs.
Scheduled read-only Power BI workspace digest. It reads one workspace, its users, reports, dashboards, and datasets through recued-core.powerbi, renders compact tables, and optionally sends an in-app nudge when content is visible. It never imports, exports, clones, refreshes, mutates permissions, changes gateway credentials, updates parameters or schedules, generates embed tokens, runs arbitrary queries, or calls admin APIs.
Approval-gated Vercel deployment promotion workflow. It reads the project and target deployment, lists current aliases for context, then promotes exactly one deployment through recued-core.vercel.deployment.promote. It never creates deployments, rolls back, pauses projects, mutates domains or environment variables, deletes records, or calls arbitrary Vercel APIs.
Approval-gated Contentful entry publish workflow. It reads the current entry, content type, and references, then publishes that one entry using the current entry version header. It does not create, update fields, unpublish, archive, delete, bulk publish, publish releases, upload/process assets, mutate content types, or call arbitrary Contentful routes.
Displays deals created in the last N days sorted by amount descending.
Always-approval Shippo label purchase workflow. It reads one selected rate for context, then creates one label transaction through recued-core.shippo.transaction.create using an explicit label file type and async setting. It does not create the shipment, choose a rate automatically, refund labels, schedule pickups, create manifests, mutate orders, or call arbitrary Shippo endpoints.
Read open GitHub issues on one repo (paginated - big repos are never silently truncated), skip the ones already queued, launch a detached Codex run per new issue (write-tier, approval-gated), and queue each as an open codex_queue row for the sweeper. Attach a schedule to this recipe's dish per repo: 10 repos = 10 dishes of this one template. Stage 1 of the Codex workflow - sweep-codex-results reconciles outcomes and the handler dishes react to them.
Read-only Quo customer context brief. It reads one optional contact, recent messages, calls, call summary, recordings, and voicemail metadata through recued-core.quo, then asks the AI summarizer for context, open questions, risks, and next actions. It never sends text messages, changes conversation status, mutates contacts or tasks, downloads call audio, creates webhooks, or calls arbitrary Quo endpoints.
Scheduled read-only Quo business-phone digest. It lists phone numbers, users, contacts, recent conversations, and tasks through recued-core.quo, renders compact tables, and optionally sends an in-app nudge when conversations or tasks are visible. It never sends messages, changes conversation status, creates contacts, mutates tasks, creates webhooks, downloads recordings, or calls arbitrary Quo endpoints.
Read-only Railway deployment investigation brief. It reads one deployment plus bounded build and runtime logs through recued-core.railway, then asks the AI summarizer for likely failure signals, release state, and concrete next checks. It does not restart, stop, cancel, redeploy, roll back, mutate variables, delete resources, or call arbitrary Railway GraphQL.
Scheduled read-only Railway digest for one project. It reads the project, environments, project members, and recent deployments through recued-core.railway, renders compact operations tables, and can send an in-app notification when deployments are present. It does not create, deploy, restart, stop, roll back, mutate variables, mutate domains or volumes, delete resources, or call arbitrary Railway GraphQL.
Read-only Railway runtime brief for one project service in one environment. It reads the project, environment, service, service instance, domains, and recent deployments through recued-core.railway, then asks the AI summarizer for runtime posture, deployment risk, domain status, and next checks. It never deploys, restarts, stops, rolls back, mutates variables, creates domains or volumes, deletes resources, or calls arbitrary Railway GraphQL.
Ranks marketing qualified leads by engagement-based conversion score with recency weighting. Shows top performers with visual status indicators.
Ranks marketing qualified leads by engagement-based conversion score with visual status indicators.
Rank your CRM accounts by annual revenue and show the top slice as a table — account, domain, industry, revenue. Vendor-neutral: binds to HubSpot companies or Salesforce accounts at pack install; accounts without a revenue figure are excluded from the ranking.
Approval-gated Wave payment workflow. It reads the invoice and payment account, records exactly one manual invoice payment, and can optionally send one payment receipt through recued-core.wave. It does not edit/delete payments, create money transactions, mutate accounts or taxes, update invoices, or call arbitrary GraphQL.
Read-only Recurly account revenue brief. It fetches one account plus balance, subscription, invoice, transaction, and account-note evidence through recued-core.recurly, then asks core.ai.summarize for a compact customer revenue view. It does not mutate billing info, collect invoices, create transactions, cancel subscriptions, create notes, or call arbitrary Recurly endpoints.
Rank your open CRM deals by amount and show the top slice as a table — name, owner, stage, value. Vendor-neutral: one recipe that binds to HubSpot deals or Salesforce opportunities at pack install. 'Open' is the canonical close_state signal (not a raw vendor stage); deals without an amount are excluded from a value ranking.
Reads a single HubSpot deal via the `recued-core.hubspot.deal.read` Tier-P op-step. The call routes through the gateway — operation-level risk/grant/approval resolution against the per-connection profile, plus a per-call `connection.gateway` audit row. `deal.read` is read-tier: it admits once the HubSpot read grant is in place (no enrollment auto-grant) and carries no approval prompt.
Surface your still-warm notes: ranks notes by ongoing relevance (recently touched and frequently referenced rise; dormant ones decay over 180 days) and shows the freshest decile. Private notes stay private by default. Auto-refreshes weekday mornings.
Recommends relevant sales assets using deterministic lookup by deal stage and product interest. Configure your asset library via the `assets` variable. Default includes example entries for immediate use. Key format: {stage}_{product_interest}. Graceful no-match handling with actionable fallbacks.
Recommends the single best next sales action using AI analysis of deal stage, activity recency, contacts, and recent notes. PII-protected. Activities bind to your HubSpot connection via the canonical engagement.list op.
AI analyzes deal state, contacts, and recent activity to recommend 3-5 prioritized next actions with ready-to-use email snippets. Activities bind to your HubSpot connection via the canonical engagement.list op.
Approval-gated Maxio metered usage workflow. It reads the subscription and existing component usage, then records exactly one usage object through recued-core.maxio and re-lists usage for confirmation. It does not create subscriptions, allocate quantity components, create invoices, alter coupons, handle payment profiles, refund, void, delete, or call arbitrary Maxio endpoints.
Approval-gated Sentry release deploy marker workflow. It reads the target release for context, then creates exactly one deploy marker through recued-core.sentry.release.deploy.create. It does not create, update, archive, or delete releases; upload files; read project DSNs; or mutate alert configuration.
Approval-gated Wave estimate deposit workflow. It reads the estimate and payment account, records exactly one manual deposit payment, and can optionally send one receipt through recued-core.wave. It does not edit/delete payments, convert estimates, create money transactions, mutate accounts or taxes, update estimates, or call arbitrary GraphQL.
Read-only Recurly catalog readiness brief. It searches plans, plan add-ons, items, coupons, and business entities through recued-core.recurly, then asks core.ai.summarize for a compact subscription catalog readiness view. It does not create, update, expire, remove, or bulk mutate catalog records, coupon redemptions, subscriptions, or arbitrary Recurly endpoints.
Scheduled read-only Recurly subscription revenue digest. It lists bounded pages of accounts, plans, items, subscriptions, invoices, transactions, coupons, and business entities through recued-core.recurly, renders compact review tables, and optionally sends an in-app nudge when active subscriptions are visible. It never updates accounts, mutates billing info, mutates invoices or transactions, cancels subscriptions, creates purchases, mutates coupon redemptions, changes webhooks, or calls arbitrary Recurly endpoints.
Reactive silent producer. Listens to calendar.created + calendar.updated events; for each fired event builds the cheap pre-summarized rollup the alert recipe consumes. Writes calendar_event_rollup keyed on event_id with a deterministic brief (event summary + attendee count + start_at) plus the canonical attendee list. Dependent policy means deletion of the underlying event cascades the rollup automatically. The full attendee-pattern fold (which would walk timeline-read for each participant) deepens in D-124 housekeeping; this v1 producer keeps the rollup fresh for every newly-created or modified event.
Reactive silent producer. Listens to mail.created events; extracts the sender's email and stamps a contact_timeline_rollup enrichment with the latest interaction signal. Aggregate-policy upsert keyed on contact email. D-122 ships the cheap deterministic fields only — interaction_count seeded at 1, last_interaction set, recent_subjects single-element. The fuller fold (rolling window, attendee co-occurrence, thread-aware subject deduplication) ships in D-124 housekeeping once timeline-read becomes the producer's primary input. Calendar-side contact contributions also defer to the housekeeping pass.
Approval-gated Power BI dataset refresh workflow for one dataset in one workspace. It reads the dataset and recent refresh history for context, then calls recued-core.powerbi.dataset.refresh for exactly that dataset. It does not import, export, clone, write rows, update parameters, change gateway credentials, update refresh schedules, mutate workspace permissions, generate embed tokens, run arbitrary queries, or call admin APIs.
Approval-gated Microsoft Defender for Endpoint release-from-isolation workflow for one machine. It reads the machine and recent machine actions for context, then calls recued-core.microsoft-defender-endpoint.machine.unisolate for exactly that machine. It does not run live response, offboard devices, run antivirus scans, quarantine files, collect packages, mutate tags, create indicators, bulk-update alerts, or call arbitrary Defender APIs.
Approval-gated Adobe Sign reminder workflow. It reads one agreement and its existing reminders for context, then creates one reminder through recued-core.adobe-sign.agreement.reminder.create for the supplied participant IDs. It does not cancel agreements, update notes, create agreements, open signing URLs, mutate participants, delete reminders, or call arbitrary Adobe Sign endpoints.
Approval-gated Dropbox Sign signer reminder workflow. It reads one signature request for context, then sends one reminder to one signer email through recued-core.dropbox-sign.signature_request.remind. It does not update signer identity, cancel requests, resend to multiple signers, bypass reminder limits, download files, remove access, or call arbitrary Dropbox Sign endpoints.
Capture a one-shot personal reminder as a Recued task. Resolve the requested time against the current date/time in your context, in the user's timezone, and pass remind_at as an absolute ISO 8601 timestamp with an explicit offset. The paired reminder-due-notifier recipe fans notification delivery through the user's configured channels.
Approval-gated Front customer reply workflow. It reads the target conversation for context, then sends exactly one reply through recued-core.front.conversation.reply when reply text is present. It does not delete messages, upload attachments, change conversation status, assign teammates, mutate contacts, create tags, or call arbitrary Front API routes.
Hidden reminder firing recipe. It watches Recued reminder tasks at due_at, sends a notification through default fanout, and marks the task state as fired so the reminder does not re-notify after the watcher ledger has fired.
Approval-gated Microsoft Intune device remote-lock workflow for one managed device. It reads the device for context, then calls recued-core.microsoft-intune.managed_device.remote_lock for exactly that device. It does not wipe, retire, delete, reboot, shut down, reset passcodes, bypass activation lock, disable lost mode, request remote assistance, run Defender actions, mutate policies or apps, or call arbitrary Graph APIs.
Approval-gated Auth0 role removal workflow for one user. It reads the user and current role assignments for context, then calls recued-core.auth0.user.role.remove with the supplied role IDs. It does not delete roles, mutate role permissions, change organization-specific roles, revoke sessions or refresh tokens, or call arbitrary Auth0 APIs.
Approval-gated Microsoft Entra group membership removal workflow for one user and one group. It reads the user, group, and current direct members for context, then calls recued-core.microsoft-entra.group.member.remove for that membership reference. It does not delete the user, delete the group, mutate group owners, change dynamic membership rules, assign directory roles, or call arbitrary Graph APIs.
Approval-gated Okta group membership removal for one user and one group. It reads the user and group for context, then calls recued-core.okta.group.user.remove. It does not deactivate users, delete users, create/delete groups, assign admin roles, mutate app assignments directly, or call arbitrary Okta APIs.
Read-only AI-assisted investigation brief for one Render deploy. It reads the service, deploy, recent deploys, service events, jobs, and logs through recued-core.render, then summarizes status, likely failure signals, nearby activity, and concrete next steps. It never triggers, cancels, rolls back, restarts, purges cache, creates jobs, reveals credentials, reads connection-info, mutates env vars/secrets, or calls arbitrary Render API routes.
Scheduled read-only Render service operations digest. It reads one service, recent deploys, service events, custom domains, jobs, and logs through recued-core.render, renders compact review tables, and can send an in-app nudge when service activity is visible. It never creates, updates, deletes, suspends, resumes, runs jobs, reveals credentials, reads connection-info, mutates env vars/secrets, or calls arbitrary Render API routes.
Read-only Replicate model discovery workflow. It searches public models, collections, and docs through recued-core.replicate, reads available hardware, and summarizes candidate models for a requested use case. It never runs predictions, creates models or deployments, uploads/downloads files, reads webhook secrets, starts trainings, or calls arbitrary Replicate API routes.
Approval-gated ServiceNow incident resolution workflow for one incident. It reads the incident for context, then calls recued-core.servicenow.incident.resolve with explicit state, close code, close notes, and optional work notes. It does not delete records, revoke access, mutate CMDB records, or call arbitrary ServiceNow APIs.
Scheduled read-only Replicate operations digest. It reads account context, predictions, trainings, deployments, and file metadata through recued-core.replicate, renders compact review tables, and can send an in-app nudge when prediction activity is visible. It never runs or cancels predictions, creates trainings, mutates models/deployments, uploads/downloads files, reads webhook secrets, or calls arbitrary Replicate API routes.
Workflow origin for the Canva comment reply closure loop. It reads one preview Canva comment thread and reply page for context, creates exactly one owner-provided plaintext reply through recued-core.canva.comment.reply.create, and when the reply succeeds it seeds durable data.shared closure state for canva-comment-reply-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create comment threads, resolve or delete comments, mutate designs, export files, configure webhooks, or call arbitrary Canva endpoints.
Approval-gated Canva comment reply workflow. It reads one preview comment thread and its preview replies, then adds one plaintext reply through recued-core.canva.comment.reply.create. It does not create new threads, delete or resolve comments, mutate designs, export content, upload files, or call arbitrary Canva endpoints.
Workflow origin for the Confluence inline comment reply closure loop. It reads one Confluence page and its open inline comments for context, creates exactly one owner-provided storage-format reply on an existing inline comment through recued-core.confluence.inline_comment.create, and when the reply succeeds it seeds durable data.shared closure state for confluence-inline-comment-reply-closure-watcher. It uses deterministic owner-provided storage content rather than AI and does not create top-level inline comments, create footer comments, edit or resolve comments, update pages, delete pages, update tasks, alter labels, change permissions, create properties, configure automations, or call arbitrary Atlassian endpoints.
Workflow origin for the Figma comment reply closure loop. It reads one Figma file's comments for context, creates exactly one owner-provided reply on an existing comment through recued-core.figma.comment.create, and when the reply succeeds it seeds durable data.shared closure state for figma-comment-reply-closure-watcher. It uses deterministic owner-provided copy rather than AI and does not create top-level comments, delete comments, add reactions, mutate files, export images, configure webhooks, or call arbitrary Figma endpoints.
Workflow origin for the Freshdesk ticket reply closure loop. It reads one ticket and its conversation context, creates exactly one owner-provided public reply through recued-core.freshdesk.ticket.reply.create, optionally updates that same ticket to a user-configured Freshdesk numeric status, and when the reply succeeds it seeds durable data.shared closure state for freshdesk-ticket-reply-closure-watcher. It uses user-configured deterministic copy rather than AI and does not create tickets, create private notes, delete, bulk update, attach files, mutate contacts or companies, change automations/dispatch rules/SLA/admin settings, or call arbitrary Freshdesk endpoints.
Approval-gated Freshdesk reply workflow. It reads the target ticket and conversation history for context, then adds exactly one public reply or private note through recued-core.freshdesk and can optionally update the ticket status after the note/reply. It does not create tickets, delete, bulk update, attach files, mutate contacts or companies, change automations/admin settings, or call arbitrary Freshdesk endpoints.
Workflow origin for the Front conversation reply reopen loop. It reads one conversation and its latest event, sends exactly one owner-provided customer reply through recued-core.front.conversation.reply, and when the approved reply operation succeeds it seeds durable data.shared state for front-conversation-reply-reopen-watcher. It uses user-configured deterministic copy rather than AI and does not archive conversations, change ticket status, create internal comments, mutate tags or custom fields, configure Front Rules, create reminders, alter inbox/admin settings, create webhooks or application triggers, delete records, upload attachments, bulk mutate, or call arbitrary Front endpoints.
Workflow origin for the Help Scout conversation reply closure loop. It reads one conversation and thread page, creates exactly one owner-provided customer-visible reply through recued-core.helpscout.conversation.reply.create, sets a user-configured Help Scout status in that same reply call, and when the reply succeeds it seeds durable data.shared closure state for helpscout-conversation-reply-closure-watcher. It uses user-configured deterministic copy rather than AI and does not create conversations, create internal notes, mutate tags or custom fields, run Help Scout Workflows, change mailbox/admin settings, create or edit webhooks, delete records, upload attachments, bulk mutate, or call arbitrary Help Scout endpoints.
Approval-gated Help Scout reply workflow. It reads the target conversation and thread history for context, then adds exactly one customer-visible reply or one internal note through recued-core.helpscout. It does not create conversations, update tags or custom fields, mutate customers or users, download or upload attachments, delete, bulk-mutates, run workflows, change inbox/admin settings, or call arbitrary Help Scout endpoints.
Workflow origin for the Intercom conversation reply closure loop. It reads one conversation, sends exactly one owner-provided customer-visible admin comment through recued-core.intercom.conversation.reply, and when the approved reply succeeds it seeds durable data.shared closure state for intercom-conversation-reply-closure-watcher. It uses user-configured deterministic copy rather than AI and does not add internal notes, close, reopen, snooze, assign, tag, mutate contacts or companies, create or update tickets, configure Intercom Workflows or Rules, create webhooks, delete records, bulk mutate, or call arbitrary Intercom endpoints.
Approval-gated Intercom conversation reply workflow. It reads the target conversation, admins, workspace tags, and optional Help Center matches for context, then sends exactly one admin comment or internal note through recued-core.intercom.conversation.reply when conversation ID, admin ID, and body are present. It does not assign, close, reopen, snooze, tag, mutate contacts or companies, create or update tickets, delete, redacts, publish articles, change admin settings, or call arbitrary Intercom APIs.
Approval-gated BambooHR time-off request creation. It reads the target employee, requestable time-off types, assigned policies, and overlapping requests before creating one non-superseding request through recued-core.bamboohr.time_off.request.create. It defaults to requested status and does not approve, deny, supersede, cancel, record history overrides, assign policies, mutate employees, or call arbitrary BambooHR endpoints.
Approval-gated Fly.io ACME certificate request workflow. It reads the target app and existing certificate summaries for context, validates the caller-supplied hostname, then requests exactly one ACME certificate through recued-core.flyio.certificate.request_acme. It does not upload custom certificates, remove certificates, mutate DNS, assign IPs, create machines, alter secrets, or call arbitrary Fly.io API routes.
Approval-gated CircleCI workflow rerun. It reads the workflow and current workflow jobs, then reruns exactly one workflow from failed jobs with SSH disabled through recued-core.circleci.workflow.rerun. It does not trigger new pipeline definitions, approve hold jobs, cancel workflows or jobs, mutate schedules/triggers, enable SSH reruns, or call arbitrary CircleCI API routes.
Approval-gated Acuity appointment reschedule workflow. It reads the appointment and checks availability using the current appointment ID as an ignored appointment, then reschedules one appointment through recued-core.acuity.appointment.reschedule. It does not cancel, update unrelated details, mutate calendars, delete anything, or call arbitrary endpoints.
Approval-gated Google Calendar reschedule workflow. It reads the current event and target-window free/busy state, then patches only the event's start and end dateTime fields through recued-core.google-calendar. It does not edit attendees, descriptions, visibility, recurrence, ACLs, calendars, conference data, attachments, delete events, or call arbitrary Google Calendar APIs.
Owner-visible list/close role for recued-core/adobe-sign-agreement-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/asana-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/asana-task-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/azure-devops-pull-request-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/azure-devops-work-item-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/bitbucket-pull-request-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/canva-comment-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/clickup-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/clickup-task-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/confluence-inline-comment-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/docusign-envelope-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-invoked review for a matched quotation email. It lists small needs_owner linkage rows, re-reads exactly one matched source message, and generates an ephemeral copyable draft from review-time past-deal context. It never persists the source body, context, or generated draft and never sends mail.
Owner-visible list/close role for recued-core/freshdesk-ticket-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/front-conversation-reply-reopen. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/github-issue-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/github-issue-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/gitlab-issue-note-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/google-drive-file-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/google-tasks-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/helpscout-conversation-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/intercom-conversation-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/jira-issue-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/jira-issue-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/linear-issue-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/linear-issue-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/microsoft-todo-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/monday-item-update-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/notion-page-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/pandadoc-document-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/planner-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/smartsheet-row-discussion-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/todoist-task-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/todoist-task-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/trello-card-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/trello-card-comment-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Owner-visible list/close role for recued-core/zendesk-ticket-reply-closure. It lists bounded active, timed-out, and closed rows. Supplying a timed-out or closed key deletes only that exact terminal row; active watches cannot be deleted here.
Three-check risk assessment for deal health. AI analysis runs when enabled and risks are detected.
Approval-gated Heroku release rollback workflow. It reads the app, target release, and recent releases for context, then calls recued-core.heroku.release.rollback with the documented release body field. It does not create builds, restart or stop dynos, scale formation, mutate config vars, delete resources, or call arbitrary Heroku API routes.
Approval-gated Render rollback workflow for one service and one selected deploy. It reads service, target deploy, and recent deploy context, then calls recued-core.render.deploy.rollback with the documented deployId body field. It does not update service settings, create jobs, mutate env vars/secrets, suspend/resume services, delete resources, reveal credentials, or call arbitrary Render API routes.
Approval-gated Vercel rollback workflow. It reads the project, target rollback deployment, and recent rollback candidates, then requests a rollback through recued-core.vercel.deployment.rollback. It never creates deployments, promotes unrelated deployments, pauses projects, mutates domains or environment variables, deletes records, or calls arbitrary Vercel APIs.
Read-only alert triage brief for Rootly. It reads alerts, services, teams, and recent incidents through recued-core.rootly, then summarizes noisy sources, related service/team context, likely incident candidates, and next triage steps. It never creates, acknowledges, resolves, or edits alerts or incidents, never mutates alert routes or sources, and never calls arbitrary Rootly API routes.
Read-only incident command brief for one Rootly incident. It reads the incident, timeline events, action items, services, teams, and users through recued-core.rootly, then asks the AI summarizer for current state, impact, ownership, timeline signal, open work, risks, and next steps. It never creates or edits incidents, action items, alerts, schedules, escalation policies, users, API keys, or arbitrary Rootly API routes.
Scheduled read-only digest for Rootly operations. It reads the current user, incidents, alerts, action items, schedules, and escalation policies through recued-core.rootly, renders compact operations tables, and can send an in-app nudge when incidents or alerts are visible. It never creates, updates, acknowledges, mitigates, resolves, deletes, mutates schedules or escalation policies, changes alert routing/configuration, rotates API keys, or calls arbitrary Rootly API routes.
Approval-gated CircleCI pipeline run workflow. It reads the project and selected pipeline definition, then runs exactly one CircleCI pipeline definition on a selected branch through recued-core.circleci.pipeline.run. It does not create or delete projects, edit pipeline definitions, mutate triggers or schedules, roll back deployments, read environment variables, or call arbitrary CircleCI API routes.
Approval-gated Fly.io machine lifecycle workflow. It reads the target machine for context, then performs exactly one selected action through recued-core.flyio.machine.start, stop, restart, cordon, uncordon, or suspend, and reads the machine again afterwards. It does not create, update, delete, execute commands, send arbitrary signals, mutate metadata or secrets, mint tokens, or call arbitrary Fly.io API routes.
Approval-gated Heroku dyno lifecycle workflow. It reads current app, dyno, and formation context, then performs exactly one selected restart or stop action through recued-core.heroku. It does not create dynos, run one-off commands, scale formation, roll back releases, mutate config vars, delete resources, or call arbitrary Heroku API routes.
Approval-gated Railway deployment lifecycle workflow. It reads one deployment, performs exactly one selected restart, redeploy, rollback, stop, or cancel action through recued-core.railway, then reads the deployment again. Redeploy and rollback are skipped when Railway reports the action unavailable. It does not deploy a service instance, mutate variables, create domains or volumes, delete resources, or call arbitrary Railway GraphQL.
Approval-gated Replicate workflow for running one model prediction by model/version identifier. It reads account and recent prediction context, then calls recued-core.replicate.prediction.create with an explicit version and input JSON. It does not configure webhooks, create or mutate models/deployments, start trainings, upload/download files, reveal secrets, or call arbitrary Replicate API routes.
Read-only Salesloft cadence readiness brief. It fetches one cadence plus bounded cadence memberships, users, and person stages through recued-core.salesloft, then asks core.ai.summarize for a compact operating view. It does not create memberships, import or export cadences, mutate cadence content, send emails, complete calls, delete records, or call arbitrary Salesloft endpoints.
Read-only Salesloft person engagement brief. It fetches one person plus related cadence memberships, tasks, and notes through recued-core.salesloft, then asks core.ai.summarize for a compact seller follow-up brief. It does not create people, add cadence memberships, create tasks or notes, send emails, complete calls, update records, delete records, or call arbitrary Salesloft endpoints.
Scheduled read-only Salesloft revenue engagement digest. It lists bounded pages of people, accounts, cadences, cadence memberships, and tasks through recued-core.salesloft, renders compact review tables, and optionally sends an in-app nudge when people are visible. It never creates people, adds cadence memberships, creates tasks or notes, sends emails, completes calls, imports cadences, administers webhooks, deletes records, or calls arbitrary Salesloft endpoints.
Approval-gated Heroku formation scaling workflow. It reads the app, target formation, and available dyno sizes, then updates exactly one formation process type through recued-core.heroku. It does not restart or stop dynos directly, create dynos, run one-off commands, mutate config vars, roll back releases, delete resources, or call arbitrary Heroku API routes.
Scans insurance email content for UCSPA/NAIC violations: unauthorized promises, missing disclaimers, material omissions. Cites state code. Note: Email body is analyzed by AI; PII redaction applied automatically per organizational policies.
Scans property listing descriptions and email threads on deals for Fair Housing Act violations. Detects discriminatory language against protected classes with AI analysis and known phrase matching. Cites 42 U.S.C. §3604(c) for all findings. Activities bind to your HubSpot connection via the canonical engagement.list op.
Run a local Gitleaks secret scan against one trusted source path or file ref and preserve the redacted JSON report. The scan goes through the recued-core.gitleaks fixed CLI operation: no shell, no arbitrary flags, no remote access, no custom config path, and detected secrets are redacted in the captured report.
Reactive virus scan for the reception attachment scan-gate (D-173 P5). Fires whenever a file lands in data.file.received (an inbound reception drop / messenger media / mail attachment), scans it with the local ClamAV daemon through the ClamAV pack's file.scan cli operation, and writes the verdict back to the record's scan_status via the MCP-reserved core.storage.file.set-scan-status kernel op. The reception inbox reads scan_status, so a 'flagged' upload surfaces a sharper warning at approve while a 'clean' one clears the advisory warning. The verdict comes from the scanner exit code (0 = clean, 1 = infected); a scan error (clamd not running, exit 2+) halts this run and leaves the record unscanned (the advisory gate still warns). Requires the clamav-pack installed and a running clamd. Install once; the install creates a default dish that runs on every inbound file.
Reactive virus scan for the reception attachment scan-gate (D-173 P5) on a Windows-hosted server — the Defender sibling of scan-inbound-file-clamav. Fires whenever a file lands in data.file.received (an inbound reception drop / messenger media / mail attachment), scans it with the built-in Windows Defender engine through the Defender pack's file.scan cli operation, and writes the verdict back via the MCP-reserved core.storage.file.set-scan-status kernel op. The reception inbox reads scan_status, so a 'flagged' upload surfaces a sharper warning at approve while a 'clean' one clears the advisory warning. The verdict comes from the MpCmdRun exit code: 0 = clean, 2 = malware found (or a scan error, conservatively flagged — fail-safe, no malware passes). Any other code halts this run and leaves the record unscanned (the advisory gate still warns). Requires the defender-pack installed and an ELEVATED, Windows-hosted recued server. Install once; the install creates a default dish that runs on every inbound file. Install EITHER this or scan-inbound-file-clamav for your platform — not both (a double-scan is redundant; if both fire, the last verdict wins).
Scans contact records for unauthorized sensitive PII and flags regulatory violations based on region and permitted fields.
Weekly scan for new real estate regulations in configured states and their impact on your open CRM deals. Open deals bind to your CRM connection via the canonical deal.search op; web search runs through an enrolled Exa connection's gated recued-core.exa.web.search op. Two custom AI-prompt steps (regulation extraction + per-jurisdiction impact) keep this recipe bundled, not marketplace-published.
Create a recurring or one-shot schedule for an already installed Recued recipe. Accepts only an installed recipe_id plus timing fields — no inline recipe JSON or new steps. For one_shot, resolve run_at against the current date/time in your context, in the user's timezone, as an absolute ISO 8601 timestamp with an explicit offset.
Approval-gated Zoho CRM meeting workflow. It reads active users for owner context, then creates exactly one Events record through recued-core.zoho-crm-work with bounded meeting fields. It does not delete events, create recurrence rules, upload attachments, mutate users/settings, bulk-import activities, update unrelated records, or call arbitrary Zoho endpoints.
Scores accounts against Ideal Customer Profile criteria and displays fit status.
Computes engagement score (0-100) using email/meeting activity and recency. Shows health checklist.
Computes activity, close date, and contact risk subscores (0-100) with weighted total risk. Generates AI narrative for high-risk deals.
Search one trusted local folder with the local ripgrep CLI and render a bounded table of matching file, line, and text preview rows. The search runs through the recued-core.ripgrep pack's fixed rg --json operation: no shell, no arbitrary flags, no remote access, and no hidden-file override.
Approval-gated Webex post for one room, optionally as a threaded reply. It reads the destination room for context, then sends exactly one text or Markdown message through recued-core.webex.message.post when text is present. It does not edit or delete messages, change memberships, upload files, manage webhooks, or call arbitrary Webex APIs.
Search the web for a query through an enrolled Exa connection and show the ranked results. The `recued-core.exa.web.search` Tier-P pack op runs through the D-165 gateway (read-tier, audited) — no direct web-egress ingredient.
Segment your CRM contacts by lifecycle stage and show per-stage counts as a table, largest first. Vendor-neutral: binds to HubSpot or Salesforce contacts at pack install (HubSpot lifecyclestage and Salesforce LeadSource both surface as the canonical stage).
Read-only Segment source brief. It reads one source, its connected destinations and warehouses, and its schema settings, then summarizes routing, enablement, labels, and schema-governance signals. It never mutates sources, destinations, warehouses, tracking plans, write keys, labels, or arbitrary Segment routes.
Read-only Segment workspace digest. It reads workspace identity, bounded pages of sources, destinations, warehouses, tracking plans, labels, and audit events, then summarizes governance posture and operational follow-up. It never creates, updates, deletes, changes write keys, mutates IAM, edits destinations, or calls arbitrary Segment routes.
Workflow origin for the Adobe Sign agreement closure loop. It reads the current user and one library document for context, creates one agreement through recued-core.adobe-sign.agreement.create, and when the owner sends the agreement with initial state IN_PROCESS it seeds durable data.shared closure state for adobe-sign-agreement-closure-watcher plus links the agreement back to its library document and optional workflow. It does not send reminders, cancel agreements, update notes, upload transient documents, download binaries, open signing URLs, configure webhooks, start MegaSign/bulk sends, mutate templates, or call arbitrary Adobe Sign endpoints.
Approval-gated Adobe Sign agreement creation workflow. It reads the current user and one library document for context, then creates one agreement through recued-core.adobe-sign.agreement.create using supplied fileInfos, participantSetsInfo, name, signature type, state, group, workflow, and message fields. It does not upload transient documents, author form fields, create signing URLs, download documents, mutate library templates, start MegaSign/bulk sends, or call arbitrary Adobe Sign endpoints.
Action half for HubSpot deal follow-up. The owner provides a deal id, this recipe re-reads the deal, associated contacts, and recent engagement context from HubSpot, drafts a concise deal follow-up, sends it through the mail-send approval gate, links the sent mail to the CRM deal/contact, and seeds data.shared watch state so the outbound follow-up response watcher and reply conversion options can react when the contact replies. It never updates HubSpot, changes deal stages, creates tasks, or sends without the mail approval boundary.
Action half for the Stripe invoice recovery exception queue. Use this only when Stripe native reminders, failed-payment emails, Smart Retries, or Billing Automations are insufficient: missing primary email with an owner-supplied recipient, additional recipient, custom owner context, disabled recovery, or exhausted recovery. The recipe re-reads the invoice and customer live from Stripe, confirms the invoice remains unpaid and exception-eligible, drafts one concise exception note, sends it through the mail-send approval gate, links the sent mail to the Stripe invoice/customer, and seeds data.shared watch state so the watcher can close the loop. It never changes Stripe invoices, payments, customers, subscriptions, refunds, or payouts.
Action half for the Stripe payment exceptions queue. Use this only when Stripe native failed-payment emails, payment-confirmation emails, Smart Retries, or Billing Automations are insufficient: missing primary email with an owner-supplied recipient, additional recipient, custom owner context, unavailable recovery, disabled recovery, or exhausted recovery. The recipe re-reads the payment and customer live from Stripe, confirms the status requires customer payment action, sends the owner-configured subject/body or a deterministic fallback through the mail-send approval gate, links the sent mail to the Stripe payment/customer, and seeds data.shared watch state so the watcher can close the loop. It never calls AI, captures payments, retries charges, updates payment methods, creates refunds, changes invoices, changes subscriptions, or mutates Stripe records.
Exception handler for Wave invoice reminders. Use this only when Wave's native invoice reminder automation is insufficient: the invoice customer has no primary email and the owner supplies an exception recipient, the reminder needs an additional recipient, or the owner provides a specific exception note. The recipe re-reads the business and invoice live from Wave, confirms the invoice still has an amount due, sends exactly one attended Wave invoice email, links the invoice to the customer, and seeds data.shared exception-watch state so wave-invoice-reminder-exception-watcher can close the loop when Wave shows the invoice paid or resolved. It never creates invoices, edits invoices, records payments, changes customers, deletes records, or calls arbitrary GraphQL.
Approval-gated Discord channel post for one channel or thread, optionally as a reply to one message. It reads the destination channel for context, then sends exactly one Discord message through recued-core.discord.channel.message.send when text is present. It suppresses broad mention parsing by default and does not delete, edit, pin, react, create invites, create threads, change roles, or mutate channel settings.
Workflow origin for the DocuSign envelope closure loop. It reads one template and its recipient roles for context, creates either a draft or sent envelope through recued-core.docusign.envelope.create_from_template, and when the owner sends an envelope it seeds durable data.shared closure state for docusign-envelope-closure-watcher plus a link from envelope to template. It does not expose binary uploads, recipient signing URLs, bulk send execution, correction URLs, deletes, purges, reminders, Connect/webhook administration, or arbitrary endpoint passthrough.
Approval-gated DocuSign envelope creation from one template. It reads the template and recipient roles for context, then creates either a draft or sent envelope through recued-core.docusign.envelope.create_from_template. It does not expose binary uploads, recipient signing URLs, bulk send execution, correction URLs, deletes, purges, or arbitrary endpoint passthrough.
Approval-gated Dropbox Sign request creation from existing templates. It reads the primary template for context, then sends one signature request through recued-core.dropbox-sign.signature_request.send_with_template with explicit signer, CC, custom-field, subject, message, metadata, test-mode, and decline settings. It does not upload files, create templates, use embedded signing/editing, bulk-send, delete, cancel, or call arbitrary Dropbox Sign endpoints.
Approval-gated Google Chat text post for one space, optionally as a thread reply. It reads the destination space for context, then sends exactly one plain-text message through recued-core.google-chat.message.post when text is present. It does not edit or delete messages, change memberships, add reactions, upload attachments, create cards/widgets, or call arbitrary Chat APIs.
Workflow origin for the PandaDoc document closure loop. It reads one document's status and details for context, sends that draft document through recued-core.pandadoc.document.send with owner-provided subject/message, and when the send succeeds it seeds durable data.shared closure state for pandadoc-document-closure-watcher. It uses user-configured deterministic copy rather than AI and does not create documents, edit recipients, send reminders, configure auto-reminders or auto-expiration, open embedded sessions, configure webhooks, download files, delete, transfer ownership, or call arbitrary PandaDoc endpoints.
Approval-gated PandaDoc send workflow. It reads one document's status and details for context, then sends that document through recued-core.pandadoc.document.send with a bounded subject, message, and silent-send flag. It does not create documents, edit recipients, send reminders, open embedded sessions, download files, delete, transfer ownership, or call arbitrary PandaDoc endpoints.
Approval-gated Quo SMS send workflow. It reads the sending phone number for context, trims the requested message, and sends one text message through recued-core.quo.message.send to one recipient. It never bulk-sends messages, creates contacts, changes phone settings, creates webhooks, downloads recordings, or calls arbitrary Quo endpoints.
Cross-pack Shopify customer reply workflow. It reads one Shopify order, optional customer context, and line items, drafts a plain-text customer reply from explicit owner guidance, and sends through core.mail.send only when send_reply is enabled. After an approved send returns a mail thread, it seeds durable data.shared watch state in the outbound-follow-up-response-watcher namespace so customer replies are surfaced back to the owner with the Shopify order context. Shopify is read-only; the customer-facing write is the mail-send approval boundary.
Approval-gated Slack channel post for one channel, optionally as a thread reply. It reads the destination channel for context, then sends exactly one Slack message through recued-core.slack.message.post when text is present. It does not delete or edit messages, invite members, change channel settings, upload files, add reactions, pin messages, create bookmarks, or call arbitrary Slack Web API methods.
Selected-message send workflow for the customer reply desk. Loads one mail record, assembles thread context, drafts a support reply, and sends it through the mail-send kernel ingredient so attended runs hit the existing preflight approval boundary. After a send it seeds durable data.shared watch state (status watching_customer_response, watched_contact = the customer) in the outbound-follow-up-response-watcher namespace, so that recipe advances the loop when the customer replies.
Approval-gated SurveyMonkey send workflow. It reads one collector message and its recipients for context, then sends now or schedules the existing not_sent message through recued-core.surveymonkey.message.send. It does not create messages, add recipients, delete recipients, bulk import contacts, or call arbitrary SurveyMonkey endpoints.
Approval-gated Microsoft Teams channel post for one team and channel. It reads the destination team and channel for context, then sends exactly one message through recued-core.teams.channel.message.send when content is present. It does not create teams or channels, add members, edit/delete messages, pin content, upload files, set reactions, or call arbitrary Graph endpoints.
Approval-gated Wave estimate send workflow. It reads the business and estimate, optionally approves the estimate, then sends exactly one estimate email through recued-core.wave. It does not create/edit estimates, convert estimates to invoices, record deposits, delete estimates, mutate customers, or call arbitrary GraphQL.
Approval-gated Wave invoice send workflow. It reads the business and invoice, optionally approves the invoice, then sends exactly one invoice email through recued-core.wave. It does not create or edit invoices, record payments, delete invoices, mutate customers, or call arbitrary GraphQL.
Cross-pack WooCommerce customer reply workflow. It reads one WooCommerce order, optional customer context, order notes, and refunds, drafts a plain-text customer reply from explicit owner guidance, and sends through core.mail.send only when send_reply is enabled. After an approved send returns a mail thread, it seeds durable data.shared watch state in the outbound-follow-up-response-watcher namespace so customer replies are surfaced back to the owner with the WooCommerce order context. WooCommerce is read-only in this workflow; it does not edit orders, create refunds, create customer-visible order notes, mutate products, inventory, coupons, shipping, payment gateways, webhooks, WordPress admin surfaces, or arbitrary endpoints.
Workflow origin for the Zendesk ticket reply closure loop. It reads one ticket for context, updates exactly that ticket with an owner-provided public reply through recued-core.zendesk.ticket.update, and when the public reply succeeds it seeds durable data.shared closure state for zendesk-ticket-reply-closure-watcher. It uses user-configured deterministic copy rather than AI and does not create tickets, create internal notes, delete, bulk update, attach files, redact comments, execute macros, create or edit triggers or automations, change SLA/admin settings, or call arbitrary Zendesk endpoints.
Approval-gated Zendesk ticket reply for one ticket. It reads the ticket for context, then updates exactly one ticket with a public reply or internal note and can optionally set a status. It does not create tickets, delete, bulk update, attach files, redact comments, execute macros, change admin settings, or call arbitrary Zendesk endpoints.
Read-only AI-assisted investigation brief for one Sentry issue. It reads issue details, recent events, issue hashes, and values for one diagnostic tag through recued-core.sentry, then summarizes likely impact, recent evidence, tag distribution, and next debugging focus. It never changes issue status, deletes data, bulk-mutates issues, uploads files, or changes alert configuration.
Scheduled read-only issue triage digest for one Sentry organization and project. It reads unresolved issues, recent project events, recent releases, and legacy user feedback through recued-core.sentry, renders compact tables, and optionally sends an in-app nudge when issues are visible. It never deletes issues, bulk-mutates issues, updates alerts, creates projects, creates deploys, uploads files, reads DSNs, or calls arbitrary Sentry API routes.
Scheduled detection half of the Sentry to Linear exception handoff loop. It reads recent matching unresolved Sentry issues, writes one data.shared proposal for the first unhandled issue, and notifies the owner to review whether the issue should become exception Linear work. It never creates Linear issues, updates Sentry issue status, changes Sentry alerts or ownership rules, mutates Linear projects, or calls arbitrary APIs. Sentry alerts, Sentry issue ownership, native Sentry issue-tracker integrations, and Sentry alert ticket creation own their normal paths; this recipe only creates a Recued-visible exception proposal that an owner can approve or dismiss with create-approved-linear-issue-from-sentry.
Scheduled feedback half of the Sentry to Linear exception handoff loop. It reads Linear issues created by create-approved-linear-issue-from-sentry, closes the Recued data.shared handoff when the Linear issue reaches a terminal state, and optionally notifies the owner to review the corresponding Sentry issue. It does not update Sentry issue status, update Linear issues, reopen work, create comments, change alerts, or call arbitrary APIs. Native Sentry and Linear synchronization owns normal issue resolution; this watcher only records Recued-visible exception closure.
Read-only ServiceNow incident review brief. It reads one incident plus related tasks, changes, and problems through recued-core.servicenow, then asks the AI summarizer for impact, ownership, likely blockers, related work, and next steps. It never assigns, resolves, creates, deletes, imports, mutates CMDB records, or calls arbitrary ServiceNow APIs.
Scheduled read-only ServiceNow ITSM digest. It reads bounded pages of incidents, change requests, problems, and CMDB CIs through recued-core.servicenow, renders compact tables, and optionally sends an in-app nudge when matching incidents are visible. It never creates, updates, resolves, deletes, imports, attaches files, orders catalog items, mutates CMDB records, or calls arbitrary ServiceNow APIs.
Approval-gated Etsy fulfillment workflow. It reads one receipt, its transactions, purchased listings, and attached payment records, then creates one receipt shipment tracking record through recued-core.etsy.receipt.shipment.create. It never edits listings, inventory, refunds, payment data, buyer addresses, shop settings, messages, files, images, or arbitrary Etsy endpoints.
Read-only shipment and rate review for one Shippo shipment. It reads the shipment and asks the AI summarizer for sender/recipient context, parcel details, carrier messages, rate options, delivery tradeoffs, and next steps. It never purchases a label, creates shipments, creates refunds, mutates carrier accounts, or calls arbitrary Shippo endpoints.
Scheduled read-only Shippo shipping digest. It lists bounded pages of orders, shipments, label transactions, and refund requests through recued-core.shippo, renders compact operations tables, and optionally sends an in-app nudge when order rows are visible. It never creates addresses, parcels, shipments, labels, refunds, pickups, manifests, carrier accounts, webhooks, or arbitrary Shippo endpoints.
Read-only review brief for one Shopify order. It reads shop metadata, order details, line items, fulfillment records, and tracking details through recued-core.shopify, then asks the AI summarizer for payment and fulfillment status, customer-facing risk, shipment signals, and next actions. It never edits products, prices, inventory, fulfillments, refunds, cancellations, order edit sessions, tags, notes, webhooks, app billing, arbitrary GraphQL, storefront buyer APIs, or arbitrary Shopify passthrough.
Scheduled read-only digest for one Shopify Admin API connection. It reads shop metadata, recent orders, recently updated products, low-stock product variants, and recently updated customers through recued-core.shopify, renders compact commerce tables, and can send an in-app nudge when operational rows are visible. It never edits products, prices, inventory, fulfillments, refunds, cancellations, order edit sessions, webhooks, app billing, arbitrary GraphQL, storefront buyer APIs, or arbitrary Shopify passthrough.
Scheduled read-only activity digest for one Slack channel. It reads channel metadata, recent messages, member IDs, file metadata, pinned items, and bookmarks through the recued-core.slack pack, renders compact tables, and optionally sends an in-app nudge when messages are visible. It never posts Slack messages, changes bookmarks or pins, mutates membership, downloads file bytes, deletes content, or calls arbitrary Slack Web API methods.
Read-only review brief for one Slack thread. It reads channel metadata, thread replies, the message permalink, and reactions through recued-core.slack, then asks the AI summarizer for decisions, blockers, named owners, and next steps. It never posts replies, updates messages, adds reactions, pins messages, changes bookmarks, downloads files, or calls arbitrary Slack Web API methods.
Scheduled adopter for Smartsheet row discussion closure rows seeded by comment-smartsheet-row-with-closure. It lists only Recued-originated row-discussion watches, re-reads a bounded batch of Smartsheet row, and closes the shared row when the configured terminal column reaches a terminal value. Rows that cannot be read remain open instead of closing from cached state. It can notify the owner on terminal state, but it never creates, updates, deletes, shares, imports, uploads attachments, sends update requests, comments on, mutates automations or proofs, or otherwise mutates Smartsheet.
Low-frequency timeout role for recued-core/gitlab-issue-note-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Read-only Smartsheet sheet review brief. It reads one sheet, its columns, and sheet discussions through recued-core.smartsheet, then asks the AI summarizer for structure, recent activity, collaboration signals, and concrete next steps. It never creates rows, edits cells, comments, shares, uploads attachments, sends requests, creates automations, or calls arbitrary Smartsheet endpoints.
Scheduled read-only Smartsheet portfolio digest. It reads the current user, visible workspaces, sheets, and reports through recued-core.smartsheet, renders compact tables, and optionally sends an in-app nudge when portfolio items are visible. It never creates, deletes, shares, imports, uploads attachments, creates webhooks, administers users or groups, moves or copies items, sends email/update requests, mutates automations or proofs, or calls arbitrary Smartsheet endpoints.
D-129 P9 live-sandbox smoke recipe (gated by RECUED_HUBSPOT_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Lists data.enrichment.connection.api.hubspot.contact.* rows via the enrichment-list kernel ingredient, halts if no rows are present, halts again if the first row's meta.email is null OR not lowercase-trimmed (P3 contact reconciler canonicalizes email — uppercase-or-padded is a regression signal). Renders a summary with first-row email + lifecycle_stage to confirm the cross-source-join key is intact for engagement_score_per_contact.
D-130 P9 live-sandbox smoke recipe (gated by RECUED_SALESFORCE_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Verifies the D-130 P7 cross-vendor data.crm.* resolver dispatches correctly to BOTH the HubSpot and Salesforce platform-reference scopes via the crm_alias registry annotation + target_id prefix discriminator. The driver pre-seeds two enrichment rows under known-static target_ids — hubspot_deal_smoke_test and salesforce_opportunity_smoke_test — both carrying deal_health_score with a specific score value. The recipe reads each row through its canonical path (data.enrichment.connection.api.<vendor>.<entity>.<id>.<topic>) AND through the cross-vendor lens (data.crm.deal.<id>.enrichments.<topic>) and asserts both forms resolve to the same value. Halts via fail_on when either dispatch breaks — substrate-broken signal: cross-vendor resolver mis-dispatches by prefix, crm_alias registry walk returns wrong entity, or path-rewrite walker drops segments. Uses pre-seeded enrichment rows under both vendors to avoid double-sandbox dependency (single Salesforce sandbox + locally-seeded HubSpot row covers the dispatch test).
D-129 P9 live-sandbox smoke recipe (gated by RECUED_HUBSPOT_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Lists data.enrichment.connection.api.hubspot.deal.* rows via the enrichment-list kernel ingredient against the user-bound HubSpot connection, halts via fail_on if no rows are present (substrate-broken signal: reconciler never wrote, OAuth scopes denied, or sandbox empty), halts again if the first row's meta.name is null (slim-record → toMeta projection broken). Renders a summary card with counts + first-row meta on success.
D-129 P9 live-sandbox smoke recipe (gated by RECUED_HUBSPOT_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Confirms the Sales Augmentation pack producers (deal-velocity-signal-hubspot + deal-health-score-hubspot reactive) and the kernel housekeeping producer (lifecycle_stage_inferred from D-129 P6) all wrote at least one enrichment row each. Halts if any of the three topics is empty — substrate-broken signal: reactive trigger not firing, AI score producer choking, or housekeeping scheduler stalled. Renders per-topic counts; the alert recipes (surface-stalling-deals / notify-deal-closing-soon / surface-low-engagement-contacts / notify-new-inquiry-from-existing-customer) do not need direct smoke verification — their dispatch path is exercised by the recipe-corpus + d-129-phase-8-pack tests.
D-130 P9 live-sandbox smoke recipe (gated by RECUED_SALESFORCE_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Lists data.enrichment.connection.api.salesforce.contact.* rows via the enrichment-list kernel ingredient, halts if no rows are present, halts again if the first row's meta.email is null OR not lowercase-trimmed (D-130 P3 contact reconciler canonicalizes email — uppercase-or-padded is a regression signal). Renders a summary with first-row email + lifecycle_stage to confirm the cross-source-join key is intact for the cross-vendor engagement_score_per_contact topic. Also surfaces meta.account_id when present (links to salesforce.account target_id).
D-130 P9 live-sandbox smoke recipe (gated by RECUED_SALESFORCE_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Lists data.enrichment.connection.api.salesforce.opportunity.* rows via the enrichment-list kernel ingredient against the user-bound Salesforce connection, halts via fail_on if no rows are present (substrate-broken signal: opportunity reconciler never wrote, OAuth scopes denied, Object/describe probe failed, or sandbox empty), halts again if the first row's meta.name is null (slim-record → toMeta projection broken). Renders a summary card with counts + first-row meta.name + first-row target_id + first-row meta.stage on success.
D-130 P9 live-sandbox smoke recipe (gated by RECUED_SALESFORCE_LIVE_SMOKE=1 — CI default-skips when unset; sandbox creds in docs/deploy.md). Confirms the Sales Augmentation Salesforce pack producers (deal-velocity-signal-salesforce + deal-health-score-salesforce reactive) plus the kernel housekeeping producer (lifecycle_stage_inferred_salesforce from D-130 P6) all wrote at least one enrichment row each. Halts if any of the three topics is empty — substrate-broken signal: reactive trigger not firing, AI score producer choking on Salesforce slim record, or housekeeping scheduler stalled on the new salesforce variant. Renders per-topic counts; the alert recipes (surface-stalling-deals-salesforce / notify-deal-closing-soon-salesforce / surface-low-engagement-contacts-salesforce / notify-new-inquiry-from-existing-customer-salesforce) do not need direct smoke verification — their dispatch path is exercised by the recipe-corpus + d-130-phase-8-pack tests.
Read-only AI-assisted investigation brief for one Snyk issue. It reads the issue through recued-core.snyk, reads related open issues on the same scan item when Snyk returns that relationship, and summarizes severity, affected surface, evidence, remediation hints, and next triage steps. It never ignores, resolves, deletes, changes project settings, mutates policies, starts exports, uploads SBOMs, or calls arbitrary Snyk API routes.
Scheduled read-only Snyk security posture digest for one organization. It reads the organization, open high/critical issues, projects with issue-count metadata, targets, collections, and inventory assets through recued-core.snyk, renders compact review tables, and can send an in-app nudge when matching issues are visible. It never ignores, resolves, deletes, creates, updates policies/settings, reads secrets, starts exports, uploads SBOMs, or calls arbitrary Snyk API routes.
Scheduled read-only watch for one local SQLite query. During the configured local-time window it runs an approval-gated SELECT against a trusted DB path, counts returned rows, renders a table, and sends an in-app notification only when rows are present. Use it for local queues such as overdue invoices, failed jobs, stale records, or other rows needing attention; for best display, alias columns as label, detail, and result.
Run one approval-gated read-only SQL query against a trusted local SQLite database path and render the rows as a compact report. For best display, alias projected columns as label, detail, and result; the default query lists tables and views from sqlite_schema. The underlying pack operation opens the database read-only, enables sqlite3 safe mode, sets PRAGMA query_only=ON, and never talks to a remote.
Read-only customer revenue brief for Squarespace. It searches profile records, retrieves transaction summaries grouped by contact ID, and renders compact customer value tables through recued-core.squarespace. It does not create, update, delete, fulfill orders, mutate inventory, modify contacts, manage webhooks, or call arbitrary endpoints.
Read-only Squarespace commerce digest. It reads the website profile, store pages, recent orders, products, inventory, transactions, and contact matches through recued-core.squarespace, renders compact store operations tables, and can send an in-app nudge when matching orders are present. It does not create, update, delete, fulfill, mutate inventory, modify products or contacts, manage webhooks, or call arbitrary endpoints.
Today's intervention list for projects: those with no activity past the 14-day stall horizon, plus active projects with no next action (no open task, pending commitment, or recent note) — each with an AI-suggested next step. Auto-refreshes on weekdays.
Approval-gated Firecrawl workflow for starting one crawl job. It maps a small URL preview first, calls recued-core.firecrawl.crawl.create for the explicit target URL, then reads the new crawl status. It does not register webhooks, use custom headers/cookies, run browser actions, bypass TLS verification, enable arbitrary proxy selection, or call arbitrary Firecrawl routes.
Approval-gated Firecrawl workflow for starting one structured extract job from explicit URLs. It calls recued-core.firecrawl.extract.create with an optional prompt/schema and immediately reads the new extract status. It does not crawl arbitrary routes outside the supplied URLs, register webhooks, send custom headers/cookies, run browser actions, mutate team settings, or call arbitrary Firecrawl API routes.
Scheduled read-only digest for one Statuspage page. It reads the page profile, components, unresolved incidents, and active maintenance through recued-core.statuspage, renders compact tables, and can send an in-app nudge when degraded components or open customer-impacting incidents are visible. It never creates incidents, edits component status, changes subscribers, mutates page settings, publishes postmortems, deletes records, or calls arbitrary Statuspage API routes.
Read-only review brief for one Statuspage incident. It reads the page, incident, and component catalog through recued-core.statuspage, then asks the AI summarizer for customer impact, current status, affected components, update history, and next steps. It never creates or updates incidents, edits components, sends notifications, publishes postmortems, deletes records, or calls arbitrary Statuspage APIs.
Scheduled adopter for Stripe billing recovery exception rows in data.shared. It reads the outbound-follow-up watch ledger, re-reads one watched invoice and one watched payment from Stripe, and marks the shared row responded_closed when the source of truth says the invoice is paid/void/uncollectible or the payment no longer needs customer action. It preserves the origin recipe id and does not send mail, notify customers, update Stripe, retry charges, capture payments, void invoices, or create refunds.
Approval-gated AssemblyAI workflow for creating one pre-recorded transcript job from an explicit media URL. It enables useful audio-intelligence options and immediately shows the queued transcript record. It never uploads binary media, registers webhooks, deletes transcripts, uses streaming, creates voice agents, or calls arbitrary AssemblyAI routes.
Approval-gated Jotform response submission workflow. It reads one form and its questions for context, then submits one response through recued-core.jotform.submission.create using Jotform's documented form-encoded submission[*] body shape. It does not update submissions, delete submissions, mutate questions, download files, create webhooks, or call arbitrary endpoints.
Summarizes customer wants, concerns, and decision criteria from recent deal activities. Fallback shows last 5 call note titles when AI disabled. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Summarize your CRM book of business in one card: account count, total annual revenue, and total headcount. Vendor-neutral: binds to HubSpot companies or Salesforce accounts at pack install. Accounts missing a figure are skipped, never counted as zero.
Alert when a customer-stage CRM contact's engagement trajectory is falling and the last meaningful touch is older than a configurable threshold. Cross-vendor: subscribes via the canonical `on: contact.changed` sugar, which fans to every installed CRM vendor carrying the `contact` crm_alias (HubSpot contact + Salesforce contact today, any future vendor automatically). For each fired record reads the cross-vendor `engagement_score_per_contact` and per-vendor lifecycle enrichments via the `core.data.enrichment.list` op with vendor-agnostic dynamic scope (`{{context.event.payload.platform}}`).
Reactive alert. Listens to connection.api.hubspot.contact updated bus events; for each fired contact reads the `engagement_score_per_contact` enrichment (filled by the kernel housekeeping producer from D-129 P6) and `lifecycle_stage_inferred` (also kernel housekeeping). Dispatches a notification when the contact is `customer`-stage AND engagement trajectory is `falling` AND last meaningful touch is older than a configurable threshold. The reconciler's poll cadence drives the practical 'daily watcher' frequency.
Shows days since last email/call/meeting and recent interaction count.
Summarizes customer wants/concerns/criteria from activity notes. Shows last 5 activity subjects (calls/meetings/emails) when AI disabled. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Groups open deals by owner with deal count, pipeline value, and average deal size. Filter owners by minimum deal count threshold.
Extract text from one trusted PDF through the local Poppler pdftotext CLI, then summarize the extracted text through a Gateway-gated file ref. Preview-first: by default it shows the summary and writes no shared record; set write_mode to stage to persist a durable PDF note with a retained text-file pointer.
Create a searchable PDF from a scanned document, extract its text through Poppler pdftotext, and produce preview-first notes from the extracted text file ref. Set write_mode to stage to persist a durable scanned-document note with pointers to the searchable PDF and extracted text; preview mode writes no shared record.
Summarize a config-provided text with the paired recued-server's locally-running Ollama model. Ticks every 5 minutes, quiet outside business hours — nothing leaves the machine.
Low-frequency timeout role for recued-core/azure-devops-pull-request-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Reactive alert. Listens to connection.api.salesforce.contact updated bus events; for each fired contact reads the cross-vendor `engagement_score_per_contact` enrichment (filled by the kernel housekeeping producer from D-129 P6 + D-130 P6 widening) and the Salesforce-flavored `lifecycle_stage_inferred_salesforce` topic (filled by the D-130 P6 kernel producer). Dispatches a notification when the contact is `customer`-stage AND engagement trajectory is `falling` AND last meaningful touch is older than a configurable threshold. The reconciler's poll cadence + CometD streaming drive the practical 'daily watcher' frequency. Salesforce parallel of `surface-low-engagement-contacts-hubspot`; both share `variant_group: surface-low-engagement-contacts`.
Group your open CRM deals by stage — per-stage count, total and average value. Vendor-neutral: binds to HubSpot deals or Salesforce opportunities at pack install; 'open' is the canonical close_state signal, not a raw vendor stage.
Alert when a rep emailed deal contacts outside the CRM — an outbound mail in the last 90 days with no matching CRM engagement record. Fires on HubSpot deal / Salesforce opportunity updates, and only when the deal-association confidence gate passes (single-deal contact, or primary-deal activity in the last 14 days).
Alert when a deal's velocity signal turns 'stalling' and its amount exceeds a configurable floor. The single cross-vendor stalling alert: subscribes via the canonical `on: deal.changed` sugar, which fans to every installed CRM vendor carrying the `deal` crm_alias (HubSpot deal + Salesforce opportunity today, any future vendor automatically) — so one recipe replaces the former per-vendor trio. For each fired record it reads the cross-vendor `deal_velocity_signal` enrichment and the deal's name + amount from the platform-reference `meta` snapshot the vendor reconciler writes at ingest (no per-fire vendor API call). Requires a sales-augmentation pack (HubSpot or Salesforce) installed to populate the velocity signal.
Read-only SurveyMonkey collector and message brief. It reads one collector, collector stats, one message, message stats, and recipients through recued-core.surveymonkey, then asks the AI summarizer for outreach status, delivery/respondent signals, and next steps. It never creates, sends, schedules, deletes, or mutates messages or recipients.
Read-only SurveyMonkey response review brief. It reads one survey, one expanded response, pages, and collectors through recued-core.surveymonkey, then asks the AI summarizer for respondent status, answer themes, routing context, and follow-up next steps. It never mutates responses, surveys, collectors, messages, recipients, or files.
Scheduled read-only SurveyMonkey response digest. It reads the current user, one survey, collectors, recent expanded responses, rollups, and trends through recued-core.surveymonkey, renders compact tables, and optionally sends an in-app nudge when responses are visible. It never mutates surveys, responses, collectors, messages, recipients, webhooks, contacts, or admin resources.
Approval-gated Neon compute suspend workflow for one endpoint. It reads the endpoint for context, then calls recued-core.neon.endpoint.suspend for exactly that endpoint. It does not delete endpoints, change branches, reveal passwords, retrieve connection URIs, create resources, or call arbitrary Neon APIs.
Low-frequency timeout role for recued-core/azure-devops-work-item-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Approval-gated Okta user suspension for one user. It reads the user for context, then calls recued-core.okta.user.lifecycle.suspend for exactly that user. It does not deactivate, delete, unlock, reset passwords or factors, mutate groups, change app assignments, or call arbitrary Okta APIs.
D-179 worked example, stage 2 (the sweeper; the scheduled-operate shape). Reconciles queue rows against completion-marker evidence with no dynamic-key reads: it lists rows still in play (state open OR fail_timeout - the latter so a marker that lands just after a timeout still upgrades the row on a later sweep, before the failure handler finalizes it) and the <result_key>.exit.<code> marker files, joins them by result_key membership, and flips each matched row to success (exit 0) or fail (non-zero). A result_key with both a 0 and a non-zero marker (a rare double launch) resolves to success - success wins. Matched markers are consumed here (deleted) so the next sweep is idempotent and downstream handlers stay file-free. An OPEN row past the timeout with no matched marker becomes fail_timeout; a young open row with no marker is left open (skip - reclassified next cycle). A marker that arrives before its row (codex faster than the next kickoff tick) is an orphan this cycle and is left for the next. Once a row is finalized (done / failed_notified by a handler) it is terminal; a marker arriving after that is an accepted orphan.
Approval-gated Microsoft Intune device sync workflow for one managed device. It reads the device for context, then calls recued-core.microsoft-intune.managed_device.sync for exactly that device. It does not wipe, retire, delete, reboot, shut down, reset passcodes, bypass activation lock, disable lost mode, request remote assistance, run Defender actions, mutate policies or apps, or call arbitrary Graph APIs.
Scheduled read-only activity digest for one Microsoft Teams channel. It reads team and channel context, a bounded page of channel messages, members, and tabs through the recued-core.teams pack, renders compact tables, and optionally sends an in-app nudge when messages are visible. It never sends Teams messages, changes membership, edits tabs, reads hosted-content binaries, or calls arbitrary Graph endpoints.
Read-only review brief for one Microsoft Teams channel message thread. It reads the parent team, channel, message, and replies through recued-core.teams, then asks the AI summarizer for decisions, blockers, owners, and next steps. It never sends replies, sets reactions, edits messages, reads hosted-content binaries, or calls arbitrary Graph endpoints.
Notify ahead of each upcoming meeting at -3d / -1d / -3h with a short brief grounded in the meeting's context and the attendees' behavioral patterns (reschedule history etc.). Dispatches via your configured channels; never re-fires the same event + offset.
Low-frequency timeout role for recued-core/adobe-sign-agreement-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/asana-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/asana-task-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/bitbucket-pull-request-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/canva-comment-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/clickup-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/clickup-task-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/confluence-inline-comment-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/docusign-envelope-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/expected-quotation-email. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/figma-comment-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/freshdesk-ticket-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/front-conversation-reply-reopen. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/github-issue-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/github-issue-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/google-drive-file-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/google-tasks-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/helpscout-conversation-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/intercom-conversation-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/jira-issue-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/jira-issue-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/linear-issue-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/linear-issue-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/microsoft-todo-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/monday-item-update-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/notion-page-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/pandadoc-document-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/planner-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/smartsheet-row-discussion-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/todoist-task-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/todoist-task-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/trello-card-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/trello-card-comment-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Low-frequency timeout role for recued-core/zendesk-ticket-reply-closure. It moves a bounded batch of expired rows from active to timed_out, deletes the active copy only after the durable timeout write succeeds, and notifies the owner once per batch.
Morning glance card: today's calendar, the contacts and projects carrying the most open loops (unresolved commitments, tasks, unanswered threads), and active projects with no next action. Auto-refreshes weekday mornings (window configurable via start_hour / end_hour); invoke any time for a fresh snapshot.
Scheduled adopter for Todoist task closure rows seeded by create-todoist-task-with-closure. It lists only Recued-originated Todoist task watches, re-reads a bounded batch of Todoist task, closes the shared row when Todoist explicitly reports the task checked or completed, and marks the row for owner review when Todoist reports the task deleted before completion. It can notify the owner on terminal state, but it never creates, updates, moves, closes, reopens, deletes, labels, sections, projects, reminds, templates, webhooks, comments on, or otherwise mutates Todoist tasks.
Scheduled adopter for Todoist task comment closure rows seeded by comment-todoist-task-with-closure. It lists only Recued-originated task-comment watches, re-reads a bounded batch of Todoist task and one Todoist comment, closes the shared row when Todoist explicitly reports the task checked or completed, and marks the row for owner review when the task or comment was deleted before completion. It can notify the owner on terminal state, but it never creates, updates, moves, closes, reopens, deletes, labels, sections, projects, reminds, templates, webhooks, comments on, or otherwise mutates Todoist tasks.
Read-only review brief for one Todoist task and project. It reads task details, project metadata, project sections, project tasks, task comments, project comments, and labels through recued-core.todoist, then asks the AI summarizer for status, blockers, due signals, context, and next actions. It never creates, updates, moves, closes, reopens, deletes, comments on, uploads files, or calls arbitrary Todoist APIs.
Scheduled read-only digest for Todoist. It reads today, overdue, upcoming, priority-1, and no-date task views plus projects and labels through recued-core.todoist, renders compact tables, and can send an in-app nudge when visible tasks exist. It does not create, update, move, close, reopen, delete, comment on, upload to, or call arbitrary Todoist APIs.
Non-streaming Together AI chat workflow. It sends one explicit question to a selected model, tables returned choices, and summarizes answer quality, finish reason, model, and token usage. It never enables streaming, tool/function calling, file APIs, batches, audio/video APIs, fine-tuning, deployment mutation, or arbitrary Together AI routes.
Prompt-only Together AI image generation workflow. It generates one or more images from an explicit text prompt and summarizes output metadata. It never sends reference images, edits images, disables safety checking, uploads files, creates videos, or calls arbitrary Together AI routes.
Read-only Together AI operations workflow. It lists model catalog entries, deployments, and hardware inventory, then summarizes capacity, model-selection, and deployment-health signals. It never uploads models, creates batches, starts fine-tuning, mutates deployments/endpoints/secrets/storage, or calls arbitrary Together AI routes.
Read-only Together AI RAG preparation workflow. It embeds explicit text inputs, reranks explicit documents for one query, tables relevance scores, and summarizes retrieval readiness. It never fetches remote documents, uploads files, creates batches, starts fine-tuning, mutates deployments, or calls arbitrary Together AI routes.
Record a per-contact meeting-reschedule pattern whenever an event's start time actually changes (title-only edits don't fire) — the behavioral signal time-alert-before-event reads for its briefs.
Read-only Shippo tracking workflow. It reads tracking status for one carrier and tracking number through recued-core.shippo.track.read, renders recent tracking history, and does not create shipments, purchase labels, request refunds, mutate orders, or call arbitrary Shippo endpoints.
Transcribe a recorded audio file (meeting / call / standup) with the local whisper tool, then extract concrete action items and decisions with per-item confidence. Preview-first: shows the extracted items and writes nothing; set write_mode to create to save the confident, titled items as Recued tasks. Content-isolated via Gateway-gated file refs. Source: a local audio path or a data.file ref from another step.
Transcribe a recorded audio file (meeting / call / standup) with the local whisper tool, then extract explicit commitments - who promised what to whom - with direction (inbound: promised to the owner; outbound: the owner promised), optional deadline, counterparty, and per-item confidence. Preview-first: shows the commitments and writes nothing; set write_mode to create to save the confident ones to Recued's commitment tracker. Content-isolated via Gateway-gated file refs. Source: a local audio path or a data.file ref.
Transcribe a recorded audio file (meeting / call / voice memo / interview) with the local whisper tool, then summarize the transcript into a readable note with key points, steered by the focus variable. Content-isolated: audio and transcript move as Gateway-gated file refs, never through step values. Preview-first: shows the note and writes nothing; set write_mode to stage to persist it (with a transcript pointer) into data.shared. Source: a local audio path or a data.file ref from another step.
Watch a Google Drive folder for new audio or video recordings and stage a transcript + summary note for each. Polls the folder via the gdrive file.list operation, picks the newest media file (audio/* or video/*), downloads its bytes straight into the warehouse CAS as a Gateway-gated data.file (file.download surfaces result.file_ref, so the bytes never flow through op-step values). A video is run through the local ffmpeg tool first to extract a compact audio track; an audio file goes straight to the local whisper tool, which transcribes it into plain text captured as a second data.file ref; core-ai-summarize reads that transcript via the ref (a document content part, so it needs a document-capable model) and returns a short summary plus key points, steered by the focus variable. The media bytes and the transcript text never flow through op-step values. Preview-first: by default it shows the summary and writes nothing; set write_mode to stage to persist a durable staged note (summary, key points, and pointers to the extracted audio and the transcript files) into data.shared for later review. A per-run context guard skips re-processing the same newest file across polls. This is the Drive-folder source lane for the media-transcribe toolkit; the manual single-file lanes are transcribe-audio-to-notes and transcribe-video-to-notes.
Transcribe a recorded video (screen recording / call recording / webinar): the local ffmpeg tool extracts the audio track, the local whisper tool transcribes it, and the transcript is summarized into a readable note with key points, steered by the focus variable. Content-isolated: media and transcript move as Gateway-gated file refs, never through step values. Preview-first: shows the note and writes nothing; set write_mode to stage to persist it (with audio and transcript pointers) into data.shared. Source: a local video path or a data.file ref (e.g. a Drive download).
Translates contact emails to English and drafts professional replies in the original language.
Scheduled read-only digest for one Trello board. It reads board metadata, lists, cards, members, labels, and recent actions through recued-core.trello, renders compact tables, and can send an in-app nudge when open cards are visible. It does not create, update, archive, delete, attach, assign, label, comment, mutate webhooks, or call arbitrary Trello endpoints.
Scheduled adopter for Trello card closure rows seeded by create-trello-card-with-closure. It lists only Recued-originated card watches, re-reads a bounded batch of Trello card, and closes the shared row when Trello reports the card archived, due-complete, or moved into a configured terminal list. It can notify the owner on closure, but it never creates, updates, archives, moves, deletes, comments on, attaches to, assigns, labels, checklists, due-completes, webhooks, or otherwise mutates Trello cards.
Scheduled adopter for Trello card comment closure rows seeded by comment-trello-card-with-closure. It lists only Recued-originated card-comment watches, re-reads a bounded batch of Trello card, and closes the shared row when Trello reports the card archived, due-complete, or moved into a configured terminal list. It can notify the owner on closure, but it never creates, updates, archives, moves, deletes, attaches to, assigns, labels, checklists, due-completes, webhooks, comments on, or otherwise mutates Trello cards.
Read-only review brief for one Trello card. It reads the card, recent actions, members, attachments, checklists, and custom-field values through recued-core.trello, then asks the AI summarizer for status, blockers, owners, dates, and next actions. It never creates, updates, archives, comments, attaches, assigns, labels, deletes, mutates webhooks, or calls arbitrary Trello endpoints.
Read-only reply desk queue. Scans a mail warehouse folder, classifies likely customer support messages, and renders the records the owner should open next. It does not draft or send; use draft-support-reply-from-mail for the selected record.
Classify each inbound email into urgent_action / awaiting_response / fyi / promotional / spam and send an in-app notification for urgent_action + awaiting_response (subject, sender, suggested next action). Promotional / spam classify silently — no notification noise on bulk mail. Fires automatically on inbound mail; the classifier model sees only PII-aliased text, never the raw sender.
Approval-gated Render workflow for triggering one deploy on one service. It reads service and recent deploy context, then calls recued-core.render.deploy.create with the documented clearCache body field. It does not update service settings, create jobs, mutate env vars/secrets, suspend/resume services, delete resources, reveal credentials, or call arbitrary Render API routes.
Launch a pre-created Cloudflare tunnel on the paired recued-server as a D-179 user-space detached job. The cloudflared CLI runs outside the service supervisor; Recued records log, pid, and completion-marker paths under the configured result directory. Use a scheduled dish or a sweeper over the marker files when you want lifecycle classification.
Approval-gated LaunchDarkly feature flag workflow. It reads the project, environment, flag, and current flag status for context, then applies exactly one semantic patch instruction, turnFlagOff, through recued-core.launchdarkly. It does not change targeting rules, variations, prerequisites, segments, approvals, flag metadata, or any other LaunchDarkly resource.
Approval-gated LaunchDarkly feature flag workflow. It reads the project, environment, flag, and current flag status for context, then applies exactly one semantic patch instruction, turnFlagOn, through recued-core.launchdarkly. It does not change targeting rules, variations, prerequisites, segments, approvals, flag metadata, or any other LaunchDarkly resource.
Approval-gated Clerk user unban workflow for one user. It reads the user for context, then calls recued-core.clerk.user.unban for exactly that user. It does not create sessions or tokens, reset credentials, change MFA, mutate organization roles, delete users, or call arbitrary Clerk APIs.
Approval-gated Auth0 user unblock workflow for one user. It reads the user for context, then calls recued-core.auth0.user.unblock for exactly that user with blocked=false. It does not reset credentials, verify email, change MFA, mutate roles, or call arbitrary Auth0 APIs.
Read-only operating queue for a one-person company. It gathers Recued-native work signals from tasks, commitments, projects, notes, mail, calendar, and contact rollups into one view so the owner can see where attention is leaking before opening separate desks.
Approval-gated Datadog monitor scoped unmute workflow. It reads the target monitor for context, then unmutes exactly one monitor scope through recued-core.datadog. It does not unmute all monitors, change downtimes, update monitor configuration, delete monitors, or call arbitrary Datadog APIs.
Approval-gated Okta user unsuspension for one user. It reads the user for context, then calls recued-core.okta.user.lifecycle.unsuspend for exactly that user. It does not activate, unlock, reset passwords or factors, mutate groups, change app assignments, or call arbitrary Okta APIs.
Approval-gated Acuity appointment detail update workflow. It reads one appointment for context, then updates Acuity's documented whitelist of client/detail fields through recued-core.acuity.appointment.update. It does not reschedule, cancel, delete, mutate calendars, mutate appointment types, mutate clients outside the appointment, or call arbitrary endpoints.
Approval-gated Adobe Sign note workflow. It reads one agreement and the API user's current note for context, then updates that user's latest note through recued-core.adobe-sign.agreement.note.update. It does not create agreements, send reminders, cancel, mutate participants, upload or download documents, or call arbitrary Adobe Sign endpoints.
Approval-gated BigCommerce order status workflow. It reads one order and the available status list, then updates exactly one order's status_id through recued-core.bigcommerce. It does not edit line items, shipments, payments, refunds, products, inventory, customer records, checkout, carts, webhooks, scripts, or arbitrary BigCommerce endpoints.
Approval-gated Smartsheet row update workflow. It reads one row for context, then calls recued-core.smartsheet.row.update with a caller-provided JSON array of Smartsheet Row objects for exactly that sheet and approved row target. It does not add rows, delete rows, copy or move rows, upload attachments, send update requests, share the sheet, import files, or call arbitrary Smartsheet endpoints.
Approval-gated BigCommerce product listing workflow. It reads one product, then can update bounded daily listing fields through recued-core.bigcommerce: product name, storefront visibility, base price, sale price, inventory level, and availability. It never creates or deletes products, batch edits, edits images/videos/metafields/options, changes tax/shipping/payment settings, mutates orders, or calls arbitrary BigCommerce endpoints.
Approval-gated Canva asset metadata workflow. It reads one asset, then updates only its name and replacement tag list through recued-core.canva.asset.update. It does not upload, download, delete, move, or transform assets, mutate designs, or call arbitrary Canva endpoints.
Updates an existing HubSpot contact via the `recued-core.hubspot.contact.update` Tier-P op-step (exercising path-param substitution: the target contact id goes into /crm/v3/objects/contacts/{{contact_id}}). `contact.update` is WRITE-tier, so the call routes through the gateway's preflight approval: the run pauses (awaiting_approval), surfaces a `notification.ask` ('Approve updating this contact?'), and only after you approve does it PATCH the contact — emitting a `connection.gateway` audit row. Prerequisite: the HubSpot contacts write grant must be in place; write ops are NOT auto-granted at enrollment (read-tier only, Invariant 3), so grant it explicitly first.
Approval-gated Contentful entry field replacement workflow. It reads the current entry and content type, then replaces the entry with the supplied complete locale-wrapped fields object using the entry's current version header. It is intended for deliberate full-field replacement; it does not patch individual fields, publish, unpublish, delete, upload assets, mutate content types, or call arbitrary Contentful routes.
Approval-gated Dropbox Sign signer update workflow. It reads one signature request for context, then updates one signer by signature ID through recued-core.dropbox-sign.signature_request.update_signer with bounded signer email, name, and expiration fields. It does not update the document, add signers, send reminders, cancel requests, remove access, upload files, or call arbitrary Dropbox Sign endpoints.
Approval-gated Etsy listing inventory workflow. It reads the current listing and inventory document, then replaces one listing inventory document through recued-core.etsy.listing.inventory.update using supplied Etsy products. It never edits listing text, state, taxonomy, shipping profile, media, files, refunds, buyer messages, payment data, addresses, or arbitrary Etsy endpoints.
Approval-gated Etsy listing storefront workflow. It reads one listing, then updates only the listing title and description through recued-core.etsy.listing.update. It never changes price, inventory, taxonomy, shipping profile, shop section, media, files, refunds, buyer messages, payment data, addresses, or arbitrary Etsy endpoints.
Approval-gated Front conversation status workflow. It reads the target conversation for context, updates exactly one conversation status through recued-core.front.conversation.update, and can add one internal note when note text is present. It does not send a customer reply, delete data, upload attachments, create tags, alter rules, mutate inbox settings, or call arbitrary Front API routes.
Approval-gated Gmail vacation responder workflow. It reads the mailbox profile, current vacation responder settings, and send-as identities for context, then updates only the Gmail vacation responder through recued-core.gmail when the requested settings are complete. It does not send mail, create or send drafts, mutate labels, change filters, patch send-as identities, verify send-as addresses, delete, trash, import, watch Pub/Sub, or call arbitrary Gmail APIs.
Approval-gated incident.io incident field update workflow. It reads the target incident, severities, and statuses for context, then edits exactly that incident through recued-core.incidentio.incident.edit with a caller-supplied incident patch object and notification flag. It does not create incidents, close incidents through destructive APIs, create actions or follow-ups, mutate schedules, escalations, status pages, settings, API keys, or call arbitrary incident.io APIs.
Approval-gated Klarna cart update workflow. It updates cart totals and order lines through recued-core.klarna.payment_session.update, then reads the payment session back. It does not create an order, cancel an authorization, create a customer token, or call arbitrary endpoints.
Approval-gated Microsoft Defender for Endpoint alert workflow for one alert. It reads the alert for context, then updates only workflow fields through recued-core.microsoft-defender-endpoint.alert.update: status, assignee, classification, determination, and comment. It does not create alerts, bulk-update alerts, run machine actions, mutate machines, run advanced hunting, or call arbitrary Defender APIs.
Approval-gated OneSignal user update workflow. It reads the current user and identity aliases, then updates properties or counters for exactly one user through recued-core.onesignal.user.update. It never creates users, creates subscriptions, sends notifications, deletes identity aliases, deletes users, exports data, or calls arbitrary OneSignal APIs.
Approval-gated PagerDuty incident status update for one incident. It reads the incident for context, acknowledges or resolves exactly that incident through recued-core.pagerduty.incident.status.update, and optionally adds one incident note through recued-core.pagerduty.incident.note.create when note text is present. It does not create incidents, bulk update incidents, reassign, escalate, change priority, edit services, or call arbitrary PagerDuty APIs.
Approval-gated Rootly incident status workflow. It reads the target incident and available statuses for context, then performs exactly one caller-selected lifecycle action through recued-core.rootly.incident.mitigate or recued-core.rootly.incident.resolve with an optional Rootly JSON:API message. It does not create incidents, change arbitrary incident fields, create timeline events or action items, mutate alerts, schedules, escalation policies, services, teams, severities, statuses, users, API keys, or arbitrary Rootly API routes.
Approval-gated Sentry issue status workflow. It reads the target issue for context, then updates exactly one issue status through recued-core.sentry.issue.update_status. It does not delete issues, bulk update issues, assign ownership, publish issues, discard events, change alert rules, or call arbitrary Sentry API routes.
Approval-gated ServiceNow assignment workflow for one incident. It reads the incident for context, then calls recued-core.servicenow.incident.assign with assignment group, assignee, and optional work notes. It does not resolve the incident, delete records, mutate users/groups, or call arbitrary ServiceNow APIs.
Approval-gated Shopify order triage workflow. It reads shop and order context, then can update the internal order note and add bounded triage tags through recued-core.shopify. It does not edit line items, fulfillments, payments, refunds, cancellations, order edit sessions, products, prices, inventory, customers, webhooks, app billing, arbitrary GraphQL, storefront buyer APIs, or arbitrary Shopify passthrough.
Approval-gated Squarespace catalog workflow. It reads the target product, updates one product's name and visibility, then optionally updates one variant price through recued-core.squarespace. It does not delete products or variants, upload images, mutate inventory, create orders, refund payments, or call arbitrary endpoints.
Approval-gated Statuspage component status update for one component. It reads the page and component for context, then updates exactly that component's status through recued-core.statuspage.component.update. It does not create or delete components, change component groups, mutate page-access users or subscribers, create incidents, publish postmortems, or call arbitrary Statuspage APIs.
Approval-gated Statuspage incident status update for one incident. It reads the page and incident for context, then updates exactly that incident through recued-core.statuspage.incident.update with a new status, body text, and notification choice. It does not delete incidents, create postmortems, publish or revert postmortems, mutate subscribers, change page settings, or call arbitrary Statuspage APIs.
Approval-gated Zoho CRM campaign planning workflow. It reads one campaign, then updates only the campaign name, status, type, date window, and budgeted cost through recued-core.zoho-crm-sales. It does not delete campaigns, mass-associate leads or contacts, change campaign membership, update actual costs, edit campaign responses, create tasks, upload attachments, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM deal follow-up workflow. It reads one deal, updates bounded daily deal fields, and can add one note to the deal timeline. It does not create deals, delete records, convert leads, merge records, bulk-update, mutate settings, run COQL/query APIs, attach files, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM invoice status workflow. It reads one invoice, then updates only the status and due date through recued-core.zoho-crm-backoffice. It does not create invoices, edit invoiced line items, change prices, taxes, discounts, accounts, contacts, sales orders, purchase orders, products, attachments, PDFs, payments, refunds, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM price book settings workflow. It reads one price book, then updates only the price book name and active flag through recued-core.zoho-crm-backoffice. It does not edit pricing tiers, import list prices, associate products, mutate quotes or order documents, upload attachments, alter related records, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM product listing workflow. It reads one product, then updates only the product name, active flag, and unit price through recued-core.zoho-crm-backoffice. It does not create products, delete products, update stock counts, edit product codes/categories, mutate price books, change quotes or order documents, upload attachments, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM purchase order status workflow. It reads one purchase order, then updates only the status, due date, carrier, and tracking number through recued-core.zoho-crm-backoffice. It does not create purchase orders, edit purchased line items, change vendors, prices, taxes, discounts, products, receipts, bills, payments, attachments, PDFs, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM quote status workflow. It reads one quote, then updates only the quote stage and valid-till date through recued-core.zoho-crm-backoffice. It does not create quotes, edit quoted line items, change prices, discounts, taxes, accounts, contacts, products, price books, attachments, PDFs, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM sales order status workflow. It reads one sales order, then updates only the status, due date, and carrier through recued-core.zoho-crm-backoffice. It does not create sales orders, edit ordered line items, change prices, taxes, discounts, accounts, contacts, quotes, products, attachments, PDFs, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM service availability workflow. It reads one service, then updates only service status, unavailable window, and description while preserving the current duration, location, members, and availability type required by Zoho. It does not create services, change service members, change pricing, change taxes, alter appointment records, upload attachments, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM solution article workflow. It reads one solution, then updates only the solution title, status, question, answer, and optional product link through recued-core.zoho-crm-work. It does not delete solutions, publish bulk knowledge-base changes, mutate cases, upload attachments, alter related records, change layout/settings, or call arbitrary Zoho endpoints.
Approval-gated Zoho CRM vendor profile workflow. It reads one vendor, then updates only the vendor name, email, phone, website, and description through recued-core.zoho-crm-backoffice. It does not create vendors, delete vendors, mutate purchase orders, change products, edit invoices, upload attachments, alter related records, or call arbitrary Zoho endpoints.
Validates commission splits against total amount, signature status, and role documentation for real estate deals.
Validates state-specific compliance filings against regulatory requirements. Reads the most recent NOTE on the deal as the filing document and extracts the property's state from it; default includes CA requirements, extend `state_filing_requirements` for other states. Validates disclosure completeness against state-specific lists and filing timelines. Designed for HubSpot deals that carry the filing as a deal note — activities + the filing note bind to your HubSpot connection via the canonical engagement.list op.
Validates deal amount against stage-specific ranges and renders a health checklist.
Validates deal amount against stage-specific ranges with clear checklist feedback.
Validates deal stage progression requirements with dynamic checklist items.
Validates insurance quotes against state DOI rate filings for base rates, discounts, and surcharges. Flags regulatory violations with approval references and validation details.
Extracts key fields from seller disclosure forms, validates for missing/incomplete/contradictory entries against state requirements, and cites compliance statutes. Reads the most recent NOTE on the deal as the disclosure document (via the canonical engagement.list op) and extracts the property's state from it; unrecognized states fall to generic disclosure requirements.
Read-only Vercel deployment investigation brief. It reads one deployment, bounded deployment events, and assigned aliases through recued-core.vercel, then asks the AI summarizer for failure signals, readiness state, routing impact, and next actions. It never cancels, promotes, rolls back, deletes deployments, reads deployment file contents, mutates project settings, or calls arbitrary Vercel APIs.
Read-only Vercel release brief for one project. It reads project metadata, recent deployments, domains, and environment-variable metadata with decrypt=false through recued-core.vercel, then asks the AI summarizer for release posture, domain readiness, environment coverage, and next actions. It never creates deployments, promotes or rolls back deployments, pauses projects, mutates domains or environment variables, reads secret values, deletes records, or calls arbitrary Vercel APIs.
Scheduled read-only digest for Vercel release operations. It reads the authenticated user, one page of projects, and one page of deployments through recued-core.vercel, renders compact tables, and can send an in-app nudge when release records are visible. It never creates deployments, promotes or rolls back deployments, pauses projects, mutates domains or environment variables, reads secret values, deletes records, or calls arbitrary Vercel APIs.
Scheduled detection half of the Vercel to Statuspage incident loop. It reads recent failed production Vercel deployments, writes one data.shared proposal for the first unhandled deployment, and notifies the owner to review whether customer communication is needed. It never creates or updates Statuspage incidents, rolls back deployments, promotes deployments, pauses projects, mutates domains or environment variables, or calls arbitrary APIs. Vercel native notifications and rollback controls own their native surfaces; this recipe only creates a Recued-visible cross-system proposal that an owner can approve or dismiss with create-approved-statuspage-incident-from-vercel.
Verifies Residential Lead-Based Paint Hazard Reduction Act compliance for pre-1978 properties. Checks disclosure forms, pamphlet delivery, inspection window, and hazard disclosures per 42 U.S.C. §4852d.
Displays the most recent deal activities with relative timestamps and truncated subjects. Activities bind to your CRM connection via the canonical engagement.list op (HubSpot engagements).
Register a one-time watcher for a future inbound quotation email from a known sender and bounded match terms. The durable row stores only matching/routing scalars and source identifiers; past-deal context is supplied later to the review recipe and is never persisted in data.shared.
Scheduled local secret-scan workflow for one trusted project path. During the configured local-time window it runs the recued-core.gitleaks redacted-report scan, persists the JSON report, and sends a completion notification with the retained report ref. It never shells out, accepts arbitrary gitleaks flags, or talks to a remote.
Scheduled local project search for TODO/FIXME/HACK-style markers in one trusted folder. During the configured local-time window it runs the recued-core.ripgrep bounded JSONL search, counts match events, renders the table, and sends an in-app notification only when matches are present. It never shells out, accepts arbitrary rg flags, or talks to a remote.
Read-only daily Wave Accounting cockpit for a one-person company. It reads one business, overdue/unpaid/partial invoices, customers, products/services, payment accounts, and sales taxes through recued-core.wave, then surfaces invoice pressure and setup gaps without creating invoices, sending emails, recording payments, mutating accounts, changing taxes, or calling arbitrary GraphQL.
Read-only Wave collections exception briefing. It reads a chosen invoice status bucket and asks the AI summarizer for exception-handling priorities: missing customer email, additional-recipient needs, unusual customer context, and largest or oldest receivables. Assume Wave native invoice reminders cover routine reminders. This recipe does not send invoice emails, mark invoices sent, record payments, update customers, or call arbitrary GraphQL.
Scheduled adopter for Wave invoice reminder exception rows in data.shared. It reads the exception-watch ledger, re-reads one watched invoice from Wave, and marks the shared row responded_closed when the source of truth says the invoice is paid or has no amount due. It preserves the origin recipe id and does not send email, notify customers, record payments, edit invoices, change customers, or call arbitrary GraphQL.
Read-only review brief for one Webex room message. It reads the room, seed message, optional thread replies, and visible memberships through recued-core.webex, then asks the AI summarizer for decisions, blockers, named owners, and next steps. It never sends replies, edits or deletes messages, changes memberships, downloads files, or calls arbitrary Webex APIs.
Scheduled read-only activity digest for one Webex room. It reads room context, a bounded page of recent messages, and visible memberships through recued-core.webex, renders compact tables, and optionally sends an in-app nudge when messages are visible. It never sends Webex messages, changes memberships, downloads files, edits rooms, or calls arbitrary Webex APIs.
Scheduled read-only review for a one-person company owner. It turns Recued-native work queue signals into a weekly discipline surface: which relationships need closure, which projects need next actions, where commitments are getting soft, and what context should stay visible.
Read-only review brief for one WooCommerce order and customer. It reads order details, the customer profile, order notes, refunds, and customer downloads through recued-core.woocommerce, then asks the AI summarizer for fulfillment risks, payment/customer context, and the next concrete action. It never updates orders, creates refunds, changes customers, creates notes, mutates webhooks, or calls arbitrary WordPress admin endpoints.
Scheduled read-only digest for a WooCommerce store. It reads store status, currency, recent orders, low-stock or out-of-stock products, coupons, sales reports, top sellers, totals, payment gateways, and shipping zones through recued-core.woocommerce, renders compact tables, and can send an in-app nudge when matching orders are present. It does not create, update, delete, refund, mutate webhooks, change payment/shipping settings, or call arbitrary WordPress admin endpoints.
Scheduled read-only digest for one WordPress site. It reads site settings, recent posts, recent pages, recent comments, categories, and tags through recued-core.wordpress, renders compact tables, and optionally sends an in-app nudge when recent content or comments are visible. It never creates, updates, deletes, uploads media, changes settings, mutates users, installs plugins, or calls arbitrary WordPress endpoints.
Read-only brief for one WordPress post. It reads the post, visible comments, revisions, and optionally the featured media through recued-core.wordpress, then renders a compact editorial context card. It never creates, updates, deletes, uploads media, mutates comments, changes settings, edits users, or calls arbitrary WordPress endpoints.
Scheduled read-only digest for WorkOS access governance. It reads one page each of organizations, users, organization memberships, invitations, directories, SSO connections, roles, and permissions through recued-core.workos, renders compact tables, and can send an in-app nudge when access records are visible. It never creates, updates, deactivates, revokes, deletes, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Read-only directory-sync review brief for one WorkOS directory. It reads directory metadata plus one page each of directory users and groups through recued-core.workos, then asks the AI summarizer for sync state, inactive/suspended users, group coverage, role mapping signals, and follow-ups. It never creates, updates, deactivates, deletes, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Read-only access review brief for one WorkOS organization. It reads organization metadata, users, memberships, invitations, directories, SSO connections, and custom roles through recued-core.workos, then asks the AI summarizer for active access, pending access, directory-managed membership risk, SSO/directory posture, and next actions. It never creates, updates, deactivates, revokes, deletes, authenticates users, exchanges tokens, exports audit logs, or calls arbitrary WorkOS APIs.
Scheduled read-only digest for one YouTube channel. It reads channel metadata, recent videos, channel playlists, and recent comment threads through recued-core.youtube, renders compact creator tables, and can send an in-app nudge when recent videos or comment threads are visible. It never uploads, updates, deletes, rates, reports, or moderates videos; never writes comments; never mutates playlists; never touches caption media, live controls, channel branding, subscriptions, partner administration, arbitrary Google APIs, or arbitrary YouTube passthrough.
Read-only review brief for one YouTube video. It reads video metadata, caption-track metadata, comment threads, and comment replies through recued-core.youtube, then asks the AI summarizer for content status, audience signals, common themes, risks, and next actions. It never uploads, updates, deletes, rates, reports, or moderates videos; never writes comments; never mutates playlists; never touches caption media, live controls, channel branding, subscriptions, partner administration, arbitrary Google APIs, or arbitrary YouTube passthrough.
Scheduled adopter for Zendesk ticket reply closure rows seeded by send-zendesk-ticket-reply-with-closure. It lists only Recued-originated public-reply watches, re-reads a bounded batch of ticket from Zendesk, and closes or flags the shared row when Zendesk reports a configured closure or owner-actionable status. It can notify the owner on closure or customer-return states, but it never updates tickets, replies to customers, executes macros, creates or edits triggers or automations, changes SLA/admin settings, redacts comments, deletes records, or calls arbitrary Zendesk endpoints.
Read-only review brief for one Zendesk ticket. It reads ticket details, comments, audits, and ticket metrics through recued-core.zendesk, then asks the AI summarizer for customer ask, status, blockers, owner expectations, and the next response. It never creates, updates, deletes, redacts comments, executes macros, changes admin settings, or calls arbitrary Zendesk endpoints.
Scheduled read-only digest for one Zendesk view. It reads the current agent, view metadata, and a bounded page of view rows through recued-core.zendesk, renders a compact table, and can send an in-app nudge when tickets are visible. It does not create, update, delete, bulk update, attach files, redact comments, execute macros, change admin settings, or call arbitrary Zendesk endpoints.
Scheduled read-only digest for one Zoho CRM connection. It reads organization context, active users, recent deals, recent leads, recent cases, open tasks, calls, events/meetings, and recent notes through recued-core.zoho-crm-sales, renders compact sales and support tables, and can send an in-app nudge when deal rows are visible. It never creates, updates, deletes, converts, merges, bulk-imports, mutates settings, runs COQL/query APIs, changes users, or calls arbitrary Zoho endpoints.
Read-only review brief for one Zoho CRM deal. It reads the deal, attached notes, optional contact, optional account, and recent tasks through recued-core.zoho-crm-sales, then asks the AI summarizer for deal status, risk, missing context, and the next concrete follow-up. It never creates, updates, deletes, converts, merges, mutates settings, runs COQL/query APIs, or calls arbitrary Zoho endpoints.
Read-only review brief for one Zoom meeting. It reads meeting details, invitation text, registrants, configured polls, and optional past-meeting participants, Q&A, poll results, recording metadata, and recording analytics through recued-core.zoom, then asks the AI summarizer for readiness, attendance, engagement, recording signals, risks, and next actions. It never creates, updates, cancels, registers attendees, changes registrant status, deletes recordings, downloads recording bytes, changes settings, controls meetings, creates webhooks, or calls arbitrary Zoom APIs.
Scheduled read-only digest for one Zoom user. It reads the user profile, user settings, upcoming scheduled meetings, and recent cloud-recording metadata through recued-core.zoom, renders compact meeting and recording tables, and can send an in-app nudge when upcoming meetings are visible. It never creates, updates, cancels, registers attendees, changes registrant status, deletes recordings, downloads recording bytes, changes settings, controls meetings, creates webhooks, or calls arbitrary Zoom APIs.
Read-only Zuora account brief. Reads account, summary, and subscriptions through recued-core.zuora, then summarizes balance, invoices, payments, renewal risk, and follow-up. No writes or arbitrary endpoints.
Read-only AI-assisted catalog readiness brief for Zuora. It reads one product catalog page and product charge definitions through recued-core.zuora, then summarizes catalog coverage, pricing model evidence, billing-period gaps, revenue-rule signals, and follow-up. It never creates or mutates products, charges, subscriptions, orders, invoices, payment methods, bill runs, custom objects, files, webhooks, or calls arbitrary Zuora endpoints.
Scheduled read-only Zuora revenue operations digest. It reads one page of orders, product catalog, and product charge definitions through recued-core.zuora, then summarizes subscription revenue operations evidence. It never creates accounts, mutates subscriptions, orders, invoices, payment methods, bill runs, custom objects, files, webhooks, or calls arbitrary Zuora endpoints.