feat(crowdstrike): add tools + validate whatsapp, shopify, trello

apps/docs/components/icons.tsx

@@ -28,6 +28,17 @@ export function AgentMailIcon(props: SVGProps<SVGSVGElement>) {
   )
 }
 
+export function CrowdStrikeIcon(props: SVGProps<SVGSVGElement>) {
+  return (
+    <svg {...props} viewBox='0 0 768 500' fill='none' xmlns='http://www.w3.org/2000/svg'>
+      <path
+        d='m152.8 23.6c-.8.8.3 4.4 1.3 4.4.5 0 .9.5.9 1.2 0 1.5 7.2 15.9 8.8 17.6.6.7 1.2 1.7 1.2 2.2 0 1.3 8.6 13.7 12.8 18.4 10 11.2 28.2 28.1 35.2 32.7 1.4.9 3.9 2.9 5.5 4.3 1.7 1.5 4.8 3.9 7 5.4s4.9 3.5 5.9 4.4c1.1 1 3.8 3 6 4.5 2.3 1.6 5 3.6 6 4.5 1.1 1 3.8 3 6 4.5 2.3 1.5 4.3 3 4.6 3.3s3.7 3 7.5 6c3.9 3 7.5 5.9 8.1 6.5.6.5 4.6 4.1 8.9 8 14.6 13.1 25.8 25.3 32.6 35.5 6.6 10 9.2 14.4 15.1 25.8 3.1 6.2 7.7 14.4 10 18.3 2.4 3.9 5.4 8.9 6.7 11.2s3 4.8 3.8 5.5c.7.7 1.3 1.8 1.3 2.3s.5 1.5 1 2.2c.6.7 5.3 7.7 10.6 15.7 16.9 25.6 40.1 46 62.9 55.1 10.8 4.3 33.4 6 63 4.7 20.6-.8 44.2-.2 48.3 1.3 1.3.5 4.2.9 6.5.9 2.3.1 6 .7 8.2 1.5s4.9 1.5 6 1.5 3.3.7 4.9 1.5c1.5.8 3.5 1.5 4.3 1.5 1.6 0 7.1 2.4 19.8 8.6 18.3 9.1 33.1 19.9 48.7 35.6 10.4 10.5 10.8 10.8 11.4 8.2.8-3.1-.2-13.7-1.5-16.1-.5-1-2-4.1-3.3-6.8-2.5-5.6-7.2-12.3-14.2-20.4-2.7-3.3-4.6-6.5-4.6-7.9 0-4.1-3.9-10.5-8.5-13.9-5.8-4.3-23.6-13.3-26.3-13.3-.5 0-2.3-.7-3.8-1.5-1.6-.8-3.7-1.5-4.7-1.5-.9 0-2.5-.4-3.5-.9-.9-.5-5.1-1.9-9.2-3.1-13.7-4.1-22.5-7.2-25.6-9.1-3.3-2-6.4-7.2-6.4-10.7 0-2.6 3.8-14.4 5-15.6.6-.6 1-1.7 1-2.5 0-.9.6-2.8 1.4-4.3.8-1.4 1.9-5.8 2.6-9.7 3.3-19.4-7.2-31.8-41-48.7-4.5-2.2-12.7-5.9-16.5-7.5-1.1-.4-4.1-1.7-6.7-2.8-2.6-1.2-5.4-2.1-6.2-2.1s-1.8-.5-2.1-1c-.3-.6-1.3-1-2.2-1-.8 0-2.9-.6-4.6-1.4-1.8-.8-10.4-3.8-19.2-6.6-8.8-2.9-16.7-5.6-17.6-6-.9-.5-3.4-1.2-5.5-1.6-2.2-.3-4.3-1-4.9-1.4-.5-.4-2.6-1.1-4.5-1.4-1.9-.4-4.4-1.1-5.5-1.6-1.1-.4-4-1.3-6.5-2-2.5-.6-6.3-1.6-8.5-2.1-2.2-.6-4.9-1.5-6-1.9-1.1-.5-3.6-1.2-5.5-1.6-1.9-.3-4.1-1-5-1.4-.8-.4-4.9-1.8-9-3s-8.2-2.5-9-2.9c-.9-.5-3.1-1.2-5-1.6s-3.9-1-4.5-1.4c-.5-.4-4.4-1.8-8.5-3.1-4.1-1.2-7.9-2.6-8.5-3-.5-.4-3.9-1.7-7.5-3s-6.9-2.7-7.4-3.2c-.6-.4-1.6-.8-2.4-.8-2 0-11.4-4.3-35.2-15.9-16.7-8.2-32.1-16.6-35.5-19.3-.5-.4-4.6-3.1-9-6s-8.4-5.6-9-6c-.5-.4-5.2-3.9-10.4-7.8-18.1-13.5-44.4-38.8-55.5-53.5-2.1-2.8-3.9-5.1-4-5.3-.2-.1-.5.1-.8.4zm447.2 303c10.2 3.4 13.5 6 15.9 12.1 2.4 5.9-1.6 7.3-6.5 2.2-1.6-1.7-4.5-4-6.4-5.2s-4.1-2.7-4.8-3.4-1.9-1.3-2.7-1.3c-1.3 0-2.5-2.1-2.5-4.6 0-1.8 1.4-1.8 7 .2zm-519-240c0 1.1 8.5 17.9 10 19.7.6.7 2.7 3.4 4.7 6.2 7.3 9.8 18.7 21.5 33.9 34.5 3.8 3.3 14.2 11.1 17.5 13.2 1.4.9 3.2 2.3 4 3 .8.8 3.2 2.5 5.4 3.8s4.2 2.7 4.5 3c.6.8 30.1 18.3 39.5 23.5 7.4 4.2 15.4 8.2 43.5 21.9 16.5 8.1 19.6 9.7 31.7 17 9.1 5.5 23.7 16.9 31 24.2 4.1 4.1 7.6 7.4 7.8 7.4.3 0-.1-1.1-.7-2.5s-1.5-2.5-2-2.5c-.4 0-.8-.6-.8-1.3 0-.8-.9-2.5-2-3.8s-2.3-2.9-2.7-3.4c-7.3-9.6-13.3-15.4-31.7-31-2.5-2.2-19-13.4-26.7-18.2-6.1-3.9-18.4-10.8-30.9-17.5-3-1.7-5.9-3.4-6.5-3.8-.9-.7-5.2-3-19.5-10.8-9-4.8-31.8-18.9-35.5-21.9-.5-.5-2.8-2-5-3.3s-4.4-2.8-5-3.2c-.5-.4-5.9-4.4-12-8.9-6-4.5-11.2-8.5-11.5-8.8-.3-.4-2.7-2.4-5.5-4.5-5.6-4.2-12.8-10.8-26.2-24-5.1-5-9.3-8.6-9.3-8zm113.6 179.1c-1 1 15.8 16.6 26.9 24.9 5.5 4.1 10.5 7.8 11 8.2 2.6 2 11.6 7.2 12.4 7.2.5 0 1.6.6 2.3 1.2.7.7 2.9 2 4.8 3 13.3 6.3 19 8.8 20.4 8.8.8 0 1.7.4 2 .8.8 1.3 32.3 11.2 35.8 11.2 1 0 2.6.4 3.6 1 .9.5 3.7 1.4 6.2 1.9 8.7 1.9 13.5 3.1 15.5 4 1.1.5 5.4 1.9 9.5 3.2s7.9 2.6 8.5 3.1c.5.4 1.5.8 2.3.8s2.8.6 4.5 1.4c16.4 7.1 20.8 8.8 21.4 8.3.3-.4-.7-1.7-2.3-2.9-2.5-2-6.9-5.9-16.4-14.8-1.5-1.4-4.2-3.8-6-5.4-5-4.3-26-19.9-30.5-22.6-2.2-1.3-4.2-2.7-4.5-3-.3-.4-1.2-1-2-1.4s-4.2-2.2-7.5-4.1c-6.2-3.6-18.9-9.9-26-12.9-2.2-.9-4.7-2.1-5.5-2.5-.9-.5-3-1.2-4.8-1.5-1.7-.4-3.4-1.2-3.7-1.7-.4-.5-1.6-.9-2.8-.9-2.2.1-2.2.1-.2 1.2 1.1.6 2.2 1.4 2.5 1.8.3.3 2.5 1.8 5 3.3 5.3 3.1 15 11.7 15 13.3 0 .6-.7 1.7-1.5 2.4-1.2 1-4.1.9-14.5-.4-7.2-.9-14.1-2.1-15.3-2.6-1.2-.4-4.7-1.6-7.7-2.5-15.6-4.7-47-22.1-56.1-31-.9-.8-1.9-1.2-2.3-.8z'
+        fill='currentColor'
+      />
+    </svg>
+  )
+}
+
 export function SearchIcon(props: SVGProps<SVGSVGElement>) {
   return (
     <svg

apps/docs/components/ui/icon-mapping.ts

@@ -32,6 +32,7 @@ import {
   CloudflareIcon,
   CloudWatchIcon,
   ConfluenceIcon,
+  CrowdStrikeIcon,
   CursorIcon,
   DagsterIcon,
   DatabricksIcon,
@@ -220,6 +221,7 @@ export const blockTypeToIconMap: Record<string, IconComponent> = {
   cloudformation: CloudFormationIcon,
   cloudwatch: CloudWatchIcon,
   confluence_v2: ConfluenceIcon,
+  crowdstrike: CrowdStrikeIcon,
   cursor_v2: CursorIcon,
   dagster: DagsterIcon,
   databricks: DatabricksIcon,

apps/docs/content/docs/en/tools/crowdstrike.mdx

@@ -0,0 +1,144 @@
+---
+title: CrowdStrike
+description: Query CrowdStrike Identity Protection sensors and documented aggregates
+---
+
+import { BlockInfoCard } from "@/components/ui/block-info-card"
+
+<BlockInfoCard 
+  type="crowdstrike"
+  color="#E01F3D"
+/>
+
+## Usage Instructions
+
+Integrate CrowdStrike Identity Protection into workflows to search sensors, fetch documented sensor details by device ID, and run documented sensor aggregate queries.
+
+
+
+## Tools
+
+### `crowdstrike_get_sensor_aggregates`
+
+Get documented CrowdStrike Identity Protection sensor aggregates from a JSON aggregate query body
+
+#### Input
+
+| Parameter | Type | Required | Description |
+| --------- | ---- | -------- | ----------- |
+| `clientId` | string | Yes | CrowdStrike Falcon API client ID |
+| `clientSecret` | string | Yes | CrowdStrike Falcon API client secret |
+| `cloud` | string | Yes | CrowdStrike Falcon cloud region |
+| `aggregateQuery` | json | Yes | JSON aggregate query body documented by CrowdStrike for sensor aggregates |
+
+#### Output
+
+| Parameter | Type | Description |
+| --------- | ---- | ----------- |
+| `aggregates` | array | Aggregate result groups returned by CrowdStrike |
+|   ↳ `buckets` | array | Buckets within the aggregate result |
+|     ↳ `count` | number | Bucket document count |
+|     ↳ `from` | number | Bucket lower bound |
+|     ↳ `keyAsString` | string | String representation of the bucket key |
+|     ↳ `label` | json | Bucket label object |
+|     ↳ `stringFrom` | string | String lower bound |
+|     ↳ `stringTo` | string | String upper bound |
+|     ↳ `subAggregates` | json | Nested aggregate results for this bucket |
+|     ↳ `to` | number | Bucket upper bound |
+|     ↳ `value` | number | Bucket metric value |
+|     ↳ `valueAsString` | string | String representation of the bucket value |
+|   ↳ `docCountErrorUpperBound` | number | Upper bound for bucket count error |
+|   ↳ `name` | string | Aggregate result name |
+|   ↳ `sumOtherDocCount` | number | Document count not included in the returned buckets |
+| `count` | number | Number of aggregate result groups returned |
+
+### `crowdstrike_get_sensor_details`
+
+Get documented CrowdStrike Identity Protection sensor details for one or more device IDs
+
+#### Input
+
+| Parameter | Type | Required | Description |
+| --------- | ---- | -------- | ----------- |
+| `clientId` | string | Yes | CrowdStrike Falcon API client ID |
+| `clientSecret` | string | Yes | CrowdStrike Falcon API client secret |
+| `cloud` | string | Yes | CrowdStrike Falcon cloud region |
+| `ids` | json | Yes | JSON array of CrowdStrike sensor device IDs |
+
+#### Output
+
+| Parameter | Type | Description |
+| --------- | ---- | ----------- |
+| `sensors` | array | CrowdStrike identity sensor detail records |
+|   ↳ `agentVersion` | string | Sensor agent version |
+|   ↳ `cid` | string | CrowdStrike customer identifier |
+|   ↳ `deviceId` | string | Sensor device identifier |
+|   ↳ `heartbeatTime` | number | Last heartbeat timestamp |
+|   ↳ `hostname` | string | Sensor hostname |
+|   ↳ `idpPolicyId` | string | Assigned Identity Protection policy ID |
+|   ↳ `idpPolicyName` | string | Assigned Identity Protection policy name |
+|   ↳ `ipAddress` | string | Sensor local IP address |
+|   ↳ `kerberosConfig` | string | Kerberos configuration status |
+|   ↳ `ldapConfig` | string | LDAP configuration status |
+|   ↳ `ldapsConfig` | string | LDAPS configuration status |
+|   ↳ `machineDomain` | string | Machine domain |
+|   ↳ `ntlmConfig` | string | NTLM configuration status |
+|   ↳ `osVersion` | string | Operating system version |
+|   ↳ `rdpToDcConfig` | string | RDP to domain controller configuration status |
+|   ↳ `smbToDcConfig` | string | SMB to domain controller configuration status |
+|   ↳ `status` | string | Sensor protection status |
+|   ↳ `statusCauses` | array | Documented causes behind the current status |
+|   ↳ `tiEnabled` | string | Threat intelligence enablement status |
+| `count` | number | Number of sensors returned |
+| `pagination` | json | Pagination metadata when returned by the underlying API |
+|   ↳ `limit` | number | Page size used for the query |
+|   ↳ `offset` | number | Offset returned by CrowdStrike |
+|   ↳ `total` | number | Total records available |
+
+### `crowdstrike_query_sensors`
+
+Search CrowdStrike identity protection sensors by hostname, IP, or related fields
+
+#### Input
+
+| Parameter | Type | Required | Description |
+| --------- | ---- | -------- | ----------- |
+| `clientId` | string | Yes | CrowdStrike Falcon API client ID |
+| `clientSecret` | string | Yes | CrowdStrike Falcon API client secret |
+| `cloud` | string | Yes | CrowdStrike Falcon cloud region |
+| `filter` | string | No | Falcon Query Language filter for identity sensor search |
+| `limit` | number | No | Maximum number of sensor records to return |
+| `offset` | number | No | Pagination offset for the identity sensor query |
+| `sort` | string | No | Sort expression for identity sensor results |
+
+#### Output
+
+| Parameter | Type | Description |
+| --------- | ---- | ----------- |
+| `sensors` | array | Matching CrowdStrike identity sensor records |
+|   ↳ `agentVersion` | string | Sensor agent version |
+|   ↳ `cid` | string | CrowdStrike customer identifier |
+|   ↳ `deviceId` | string | Sensor device identifier |
+|   ↳ `heartbeatTime` | number | Last heartbeat timestamp |
+|   ↳ `hostname` | string | Sensor hostname |
+|   ↳ `idpPolicyId` | string | Assigned Identity Protection policy ID |
+|   ↳ `idpPolicyName` | string | Assigned Identity Protection policy name |
+|   ↳ `ipAddress` | string | Sensor local IP address |
+|   ↳ `kerberosConfig` | string | Kerberos configuration status |
+|   ↳ `ldapConfig` | string | LDAP configuration status |
+|   ↳ `ldapsConfig` | string | LDAPS configuration status |
+|   ↳ `machineDomain` | string | Machine domain |
+|   ↳ `ntlmConfig` | string | NTLM configuration status |
+|   ↳ `osVersion` | string | Operating system version |
+|   ↳ `rdpToDcConfig` | string | RDP to domain controller configuration status |
+|   ↳ `smbToDcConfig` | string | SMB to domain controller configuration status |
+|   ↳ `status` | string | Sensor protection status |
+|   ↳ `statusCauses` | array | Documented causes behind the current status |
+|   ↳ `tiEnabled` | string | Threat intelligence enablement status |
+| `count` | number | Number of sensors returned |
+| `pagination` | json | Pagination metadata \(limit, offset, total\) |
+|   ↳ `limit` | number | Page size used for the query |
+|   ↳ `offset` | number | Offset returned by CrowdStrike |
+|   ↳ `total` | number | Total records available |
+
+

apps/docs/content/docs/en/tools/meta.json

@@ -27,6 +27,7 @@
     "cloudformation",
     "cloudwatch",
     "confluence",
+    "crowdstrike",
     "cursor",
     "dagster",
     "databricks",

apps/docs/content/docs/en/tools/shopify.mdx

@@ -314,8 +314,8 @@ Cancel an order in your Shopify store
 | `orderId` | string | Yes | Order ID to cancel \(gid://shopify/Order/123456789\) |
 | `reason` | string | Yes | Cancellation reason \(CUSTOMER, DECLINED, FRAUD, INVENTORY, STAFF, OTHER\) |
 | `notifyCustomer` | boolean | No | Whether to notify the customer about the cancellation |
-| `refund` | boolean | No | Whether to refund the order |
-| `restock` | boolean | No | Whether to restock the inventory |
+| `restock` | boolean | Yes | Whether to restock the inventory committed to the order |
+| `refundMethod` | json | No | Optional refund method object, for example \{"originalPaymentMethodsRefund": true\} |
 | `staffNote` | string | No | A note about the cancellation for staff reference |
 
 #### Output