The latest updates on your projects. Learn more about Vercel for GitHub.

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
docs	Skipped		Jun 11, 2026 6:15pm

@greptile

@cursor review

PR Summary

High Risk
Large security/compliance surface: workflows can approve/decline verifications, run watchlist screening, redact PII, and bulk-import user data via authenticated file handling and user-supplied API keys.

Overview
Adds a Persona identity-verification integration so workflows and agents can call Persona with an API key: inquiries (lifecycle, links, PDF, redact), accounts (CRUD, CSV bulk import), cases, screening reports, verifications, documents, and inquiry templates.

Implementation follows existing integration patterns: 26 persona_* tools in the tool registry, shared utils (pinned Persona-Version: 2025-12-08, JSON:API → flat outputs), a Persona workflow block with an operation dropdown and conditional fields, integrations.json + block registry, and docs (persona.mdx, nav, PersonaIcon). CSV import uses an internal /api/tools/persona/import-accounts route (checkInternalAuth, file access checks, base64 upload to Persona); inquiry PDFs return execution files.

^{Reviewed by Cursor Bugbot for commit ca6853d. Configure here.}

Greptile Summary

Adds a full Persona identity-verification integration: 26 tools covering the inquiry lifecycle (create/get/list/update/approve/decline/review/resume/expire/redact), account management (create/get/list/update/import/redact), cases, screening reports (watchlist/adverse-media/PEP), verifications, documents, and inquiry templates. A shared parsePersonaResponse helper guards all tools against non-2xx responses, and print_inquiry_pdf correctly branches on response.ok before the binary read.

• Tools & block: 26 tools with typed params/outputs registered in tools/registry.ts; the Persona block in blocks/blocks/persona.ts wires all operations via a single dropdown with conditional subBlocks, numeric coercions, and a BlockMeta with 8 templates and 6 skills.
• CSV import route: app/api/tools/persona/import-accounts/route.ts enforces internal auth, contract validation, file-ownership assertion, and storage download before forwarding the base64-encoded CSV to Persona — consistent with the project's file-handling conventions.
• Docs: Generated page at apps/docs/content/docs/en/integrations/persona.mdx with manual intro content and integration metadata.

Confidence Score: 5/5

Safe to merge. The integration is self-contained new code with no changes to existing tool paths. All direct-API tools route through the shared parsePersonaResponse guard, the CSV import route enforces auth and file-ownership checks, and print_inquiry_pdf branches correctly on response.ok before the binary read.

Every tool either uses the shared parsePersonaResponse helper (which throws on non-2xx before any mapping) or has its own response.ok guard. The generate_inquiry_link and resume_inquiry tools throw explicitly when expected meta fields are absent. The create_report validation guard letting a middle-name-only query through is a minor quality nit that won't break callers. No existing code is modified, and the new route follows the established internal-auth + file-access pattern correctly.

No files require special attention. create_report.ts has a minor validation gap (accepting nameMiddle alone as a sufficient search term) but it does not break callers.

Important Files Changed

Sequence Diagram

sequenceDiagram
    participant User as User / Workflow
    participant Block as Persona Block
    participant ToolExec as Tool Executor
    participant ImportRoute as /api/tools/persona/import-accounts
    participant Storage as File Storage
    participant PersonaAPI as Persona API

    User->>Block: Trigger operation (e.g. create_inquiry)
    Block->>ToolExec: params(operation, apiKey, …)
    alt Direct API tool (24 tools)
        ToolExec->>PersonaAPI: "fetch(url, {headers: buildPersonaHeaders(apiKey), …})"
        PersonaAPI-->>ToolExec: JSON:API response
        ToolExec->>ToolExec: parsePersonaResponse() — ok? map resource : throw
        ToolExec-->>Block: "{success: true, output: {inquiry/account/…}}"
    else import_accounts (CSV)
        ToolExec->>ImportRoute: "POST /api/tools/persona/import-accounts {apiKey, file}"
        ImportRoute->>ImportRoute: checkInternalAuth + parseRequest + assertToolFileAccess
        ImportRoute->>Storage: downloadFileFromStorage(userFile)
        Storage-->>ImportRoute: Buffer
        ImportRoute->>PersonaAPI: "POST /importer/accounts {data: base64 CSV}"
        PersonaAPI-->>ImportRoute: "{data: importer resource}"
        ImportRoute-->>ToolExec: "{success: true, output: {importer}}"
        ToolExec-->>Block: "{success: true, output: {importer}}"
    else print_inquiry_pdf
        ToolExec->>PersonaAPI: "GET /inquiries/{id}/print Accept: application/pdf"
        PersonaAPI-->>ToolExec: PDF bytes (or error JSON)
        ToolExec->>ToolExec: ok? base64(arrayBuffer) : parse error + throw
        ToolExec-->>Block: "{success: true, output: {file}}"
    end

_{Reviews (8): Last reviewed commit: "improvement(persona): require session to..." | Re-trigger Greptile}

@greptile

@cursor review

Greptile Summary

This PR adds a comprehensive Persona (withpersona.com) identity verification integration with 17 tools covering inquiries, accounts, cases, reports, verifications, and documents. The implementation follows established codebase patterns: internal-routed CSV import with auth/file-access checks, file-upload canonical subBlock pairs for the block UI, JSON:API response mapping to flat camelCase types, and a pinned Persona-Version header.

• 17 tools registered and wired to a single multi-operation PersonaBlock with per-operation conditional subBlocks, wand configs, and a complete BlockMeta with 8 templates and 6 skills.
• File import routes through /api/tools/persona/import-accounts with checkInternalAuth, verifyFileAccess, and downloadFileFromStorage following the standard internal-route contract pattern.
• Response mappers in utils.ts convert JSON:API resource objects to flat typed structs; print_inquiry_pdf handles binary PDF responses and returns an execution-file object.

Confidence Score: 3/5

Safe to merge after fixing the two broken-response paths in generate_inquiry_link.ts and print_inquiry_pdf.ts; all other tools and the import route are well-structured.

The one-time link generator silently delivers an empty string when Persona does not return a link, and the PDF printer wraps non-2xx Persona error bodies into a fake successful file output — both produce wrong data on normal error paths. All 15 other tools and the import route follow established patterns correctly.

apps/sim/tools/persona/generate_inquiry_link.ts and apps/sim/tools/persona/print_inquiry_pdf.ts need attention; all other files look solid.

Important Files Changed

_{Reviews (2): Last reviewed commit: "feat(persona): complete API coverage — i..." | Re-trigger Greptile}

@greptile

@cursor review

@greptile

@cursor review

@greptile

@cursor review

@greptile

@cursor review

@greptile review