Feat: Support Triage [agentkit-challenge]

[VITianYash42]

What This Kit Does

Automates customer support by taking inbound tickets and instantly generating a category, sentiment analysis, urgency level, and a draft email response. This saves time, reduces manual routing work, and improves response clarity.

Video Walkthrough: (https://drive.google.com/file/d/192fqT63JLxS9tOcBvN-nEK8ll36xbKhs/view?usp=sharing)

Providers & Prerequisites

• Lamatic Studio Flow
• Gemini Free Tier
  (Note: Requires a 60-second cooldown between requests to prevent 429 Rate Limit errors. The Next.js UI explicitly catches and handles this exception.)
  (Note 2: The Lamatic Studio UI currently lacks the 'Export' button on the flow menu as documented in CONTRIBUTING.md, so raw JSON flow files are intentionally omitted.)

How to Run Locally

1. cd kits/automation/support-triage
2. npm install
3. cp .env.example .env.local and fill in values
4. npm run dev

Live Preview

https://agent-kit-git-feat-suppo-3f22fd-yash-singhals-projects-d43367ba.vercel.app/

Lamatic Flow

Flow ID: c5e67b16-fa77-454d-80d4-77b40adbda38

Files Added Summary

Configuration & Setup Files

• .gitignore - Ignores Node.js artifacts, Next.js build output (.next/, out/, build/), environment files (.env*), TypeScript build artifacts, and common development files
• package.json - Defines the lamatic-triage Next.js application with dependencies: lamatic (^0.3.2), next (16.2.0), react/react-dom (19.2.4); includes dev dependencies for Tailwind, TypeScript, and ESLint
• tsconfig.json - TypeScript configuration with ES2017 target, strict type checking, React JSX via react-jsx, Next.js plugin support, and path alias mapping @/*
• next.config.ts - Next.js configuration file (typed as NextConfig)
• eslint.config.mjs - ESLint flat configuration using eslint-config-next with custom ignore patterns for .next/, out/, build/, and next-env.d.ts
• postcss.config.mjs - PostCSS configuration enabling @tailwindcss/postcss plugin
• config.json - Automation metadata defining the "AI Support Triage Engine" with Lamatic Flow and Gemini integrations, features list, and demo/GitHub URLs

Environment & Documentation

• .env.example - Template for required environment variables: LAMATIC_PROJECT_ENDPOINT, LAMATIC_PROJECT_ID, LAMATIC_PROJECT_API_KEY, LAMATIC_FLOW_ID
• README.md - Documentation describing the kit's purpose, prerequisites (Lamatic Studio Flow + Gemini with 60-second cooldown), and local setup instructions

Frontend Application

• app/layout.tsx - Root Next.js layout component; initializes Google Fonts (Geist and Geist_Mono), exports metadata, and renders the HTML document structure
• app/globals.css - Global CSS with Tailwind integration; defines custom properties for --background/--foreground with light/dark mode support and font variable mappings
• app/page.tsx - Client-side page component (169 lines) featuring:
  • Textarea for ticket input with "Process Ticket" button
  • State management for ticketText, loading, and triageData
  • POST request to /api/triage with error handling for rate limits (429) and quota errors
  • UI rendering: error banner, loading spinner, and result cards for category/sentiment/urgency with draft email display

Backend API

• app/api/triage/route.ts - Next.js API route handler:
  • Accepts POST requests with ticket_text from the client
  • Initializes Lamatic client with environment variables (non-null assertions)
  • Executes Lamatic Flow via lamaticClient.executeFlow(flowId, { ticket_text })
  • Returns triage results as JSON response
  • Error handling: returns HTTP 500 on missing LAMATIC_FLOW_ID or execution failures

High-Level Flow Overview

The Support Triage kit automates customer support ticket processing through a three-tier architecture:

1. Frontend Interface - Accepts inbound support tickets via textarea, submits to backend API, displays real-time processing status and results
2. Backend API - Acts as a bridge between the frontend and Lamatic Flow, executing the flow with ticket data and handling errors
3. Lamatic Flow (external) - Processes tickets using Gemini LLM to perform:
   • Sentiment Analysis - Evaluates customer emotion/tone
   • Urgency Detection - Determines priority level
   • Category Classification - Assigns ticket to appropriate support category
   • Auto-Drafting - Generates draft email response

The flow is identified by environment variable NEXT_PUBLIC_LAMATIC_FLOW_ID (ID: c5e67b16-fa77-454d-80d4-77b40adbda38) and includes built-in rate-limit handling with a 60-second cooldown between requests to avoid Gemini Free Tier 429 errors.

[coderabbitai]

Walkthrough

This PR establishes a complete Next.js-based "AI Support Triage Engine" automation kit within the support-triage directory. It introduces a client-side interface for processing support tickets, a backend API route for AI integration via Lamatic, comprehensive project configuration, and documentation.

Changes

Cohort / File(s)	Summary
Project Setup & Configuration kits/automation/support-triage/package.json, kits/automation/support-triage/tsconfig.json, kits/automation/support-triage/next.config.ts, kits/automation/support-triage/eslint.config.mjs, kits/automation/support-triage/postcss.config.mjs, kits/automation/support-triage/.gitignore	Establishes Node.js/Next.js project infrastructure with dependencies (Next 16.2.0, React 19.2.4, Lamatic, Tailwind), TypeScript strict mode, ESLint with Next.js presets, PostCSS/Tailwind pipeline, and standard git ignores for build artifacts and node modules.
Documentation & Environment Configuration kits/automation/support-triage/README.md, kits/automation/support-triage/.env.example, kits/automation/support-triage/config.json	Provides kit documentation describing automated categorization and sentiment analysis functionality, environment variable templates for Lamatic credentials and flow configuration, and automation system metadata (features, integrations, demo/repository URLs).
Frontend UI Components kits/automation/support-triage/app/layout.tsx, kits/automation/support-triage/app/page.tsx, kits/automation/support-triage/app/globals.css	Implements root Next.js layout with Google Fonts (Geist/Geist\_Mono), global Tailwind CSS custom properties for light/dark mode theming, and a client-side page component featuring ticket textarea input, loading states, error handling with rate-limit detection (429 status and quota messages), and triage result display cards.
Backend API Endpoint kits/automation/support-triage/app/api/triage/route.ts	Implements POST handler that extracts ticket\_text from request, validates LAMATIC_FLOW_ID environment variable availability, executes Lamatic flow with ticket payload, and returns JSON response with error handling (500 on missing config or execution failure).

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'Feat: Support Triage [agentkit-challenge]' accurately reflects the main change—a new Support Triage automation kit. It is specific and directly related to the changeset's primary objective.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 8

🧹 Nitpick comments (4)

kits/automation/support-triage/README.md (1)

16-17: Update placeholder Flow ID.

The Flow ID shows your-flow-id as a placeholder. Consider either removing this line (since users will set it via environment variables) or noting this is obtained from Lamatic Studio after flow creation.

kits/automation/support-triage/app/layout.tsx (1)

15-18: Update boilerplate metadata.

The metadata still contains default "Create Next App" values. Update to reflect the actual kit purpose.

✏️ Suggested metadata

 export const metadata: Metadata = {
-  title: "Create Next App",
-  description: "Generated by create next app",
+  title: "AI Support Triage Engine",
+  description: "Automated customer support ticket categorization, sentiment analysis, and draft response generation",
 };

kits/automation/support-triage/app/globals.css (1)

22-26: Use the configured font variable instead of hardcoded Arial.

The @theme inline block defines --font-sans: var(--font-geist-sans), but the body styles hardcode Arial, Helvetica, sans-serif. Use the Tailwind font variable for consistency with the configured Geist fonts.

✏️ Proposed fix

 body {
   background: var(--background);
   color: var(--foreground);
-  font-family: Arial, Helvetica, sans-serif;
+  font-family: var(--font-sans), Arial, Helvetica, sans-serif;
 }

kits/automation/support-triage/config.json (1)

19-22: Populate public URLs in config for discoverability.

Given this PR already provides a live preview and walkthrough, leaving demoUrl, deployUrl, and documentationUrl empty misses useful kit metadata.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: dfad26f1-5b68-4704-bd09-a8fec7c77d22

📥 Commits

Reviewing files that changed from the base of the PR and between e1ceb47 and cbb842d.

⛔ Files ignored due to path filters (7)

• kits/automation/support-triage/app/favicon.ico is excluded by !**/*.ico
• kits/automation/support-triage/package-lock.json is excluded by !**/package-lock.json
• kits/automation/support-triage/public/file.svg is excluded by !**/*.svg
• kits/automation/support-triage/public/globe.svg is excluded by !**/*.svg
• kits/automation/support-triage/public/next.svg is excluded by !**/*.svg
• kits/automation/support-triage/public/vercel.svg is excluded by !**/*.svg
• kits/automation/support-triage/public/window.svg is excluded by !**/*.svg

📒 Files selected for processing (12)

• kits/automation/support-triage/.gitignore
• kits/automation/support-triage/README.md
• kits/automation/support-triage/app/globals.css
• kits/automation/support-triage/app/layout.tsx
• kits/automation/support-triage/app/page.tsx
• kits/automation/support-triage/app/utils.ts
• kits/automation/support-triage/config.json
• kits/automation/support-triage/eslint.config.mjs
• kits/automation/support-triage/next.config.ts
• kits/automation/support-triage/package.json
• kits/automation/support-triage/postcss.config.mjs
• kits/automation/support-triage/tsconfig.json

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Security: API key exposed to the browser via NEXT_PUBLIC_ prefix.

Environment variables prefixed with NEXT_PUBLIC_ are bundled into the client-side JavaScript and visible to anyone inspecting the page. The NEXT_PUBLIC_LAMATIC_PROJECT_API_KEY will be exposed in the browser, allowing unauthorized use of your API credentials.

Move API calls to a server-side API route (app/api/triage/route.ts) and use non-prefixed environment variables.

🔒 Recommended approach: Create a server-side API route

Create app/api/triage/route.ts:

import { Lamatic } from 'lamatic';
import { NextRequest, NextResponse } from 'next/server';

const lamaticClient = new Lamatic({
  endpoint: process.env.LAMATIC_PROJECT_ENDPOINT!,
  projectId: process.env.LAMATIC_PROJECT_ID!,
  apiKey: process.env.LAMATIC_PROJECT_API_KEY!,
});

export async function POST(request: NextRequest) {
  const { ticket_text } = await request.json();
  
  const response = await lamaticClient.executeFlow(
    process.env.LAMATIC_FLOW_ID!,
    { ticket_text }
  );
  
  return NextResponse.json(response);
}

[amanintech]

please use server side JWT encryptions

[coderabbitai]

@amanintech, understood! Here's the mission plan to implement server-side JWT authentication to lock down the /api/triage route while keeping all credentials out of the browser.

Mission: Server-side JWT Encryption for /api/triage

• Add jose for Edge-compatible JWT signing/verification
• Add JWT_SECRET to .env.example
• Create /api/token route to issue short-lived JWTs server-side
• Protect /api/triage route with JWT verification
• Remove utils.ts (the leaked client)
• Update page.tsx to fetch a token before calling /api/triage

Here's the overall security flow after these changes:

sequenceDiagram
    participant Browser
    participant TokenServer as /api/token (Server)
    participant TriageServer as /api/triage (Server)
    participant Lamatic

    Browser->>+TokenServer: POST (no credentials)
    TokenServer-->>-Browser: { token: "<signed JWT, 2min TTL>" }
    Browser->>+TriageServer: POST Authorization: Bearer <token>
    TriageServer->>+TriageServer: jwtVerify(token, JWT_SECRET)
    TriageServer->>+Lamatic: executeFlow(flowId, { ticket_text })
    Lamatic-->>-TriageServer: triage result
    TriageServer-->>-Browser: { category, sentiment, urgency, draft }

Loading

Key security properties of this approach:

• 🔒 LAMATIC_PROJECT_API_KEY, LAMATIC_PROJECT_ID, and JWT_SECRET never leave the server
• ⏱️ JWTs are short-lived (2 min), limiting replay attack windows
• 🚫 /api/triage rejects any request without a valid, unexpired JWT
• ✅ No NEXT_PUBLIC_ prefixes needed anywhere

---

✏️ Learnings added

Learnt from: amanintech
Repo: Lamatic/AgentKit PR: 80
File: kits/automation/support-triage/app/utils.ts:0-0
Timestamp: 2026-03-27T19:13:29.605Z
Learning: In `kits/automation/support-triage`, the maintainer (amanintech) requires server-side JWT authentication for API routes. Use the `jose` library with an `HS256` short-lived JWT (2-minute TTL) issued by `/api/token` and verified in `/api/triage`. The JWT_SECRET must be a non-NEXT_PUBLIC_ env var. All Lamatic credentials (LAMATIC_PROJECT_ENDPOINT, LAMATIC_PROJECT_ID, LAMATIC_PROJECT_API_KEY, LAMATIC_FLOW_ID) must also be non-NEXT_PUBLIC_ and server-only.

Note: Learnings are effective only in the context of similar code segments. To apply general coding guidelines, please configure review instructions. You can manage existing learnings in the app.

---

🧠 Learnings used

Learnt from: CR
Repo: Lamatic/AgentKit PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-23T17:08:51.738Z
Learning: Applies to kits/**/lib/lamatic-client.ts : Use the `lib/lamatic-client.ts` pattern to initialize the Lamatic SDK with `LAMATIC_API_URL`, `LAMATIC_PROJECT_ID`, and `LAMATIC_API_KEY`

---

Learnt from: CR
Repo: Lamatic/AgentKit PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-23T17:08:51.738Z
Learning: Applies to kits/**/actions/**/*.ts : Kit server action files (e.g., `actions/orchestrate.ts`) must call Lamatic flows via the SDK and read flow IDs from environment variables

---

Failed to handle agent chat message. Please try again.

[coderabbitai]

Actionable comments posted: 4

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 431fe6de-06eb-4766-89f8-5b0d5cd6b042

📥 Commits

Reviewing files that changed from the base of the PR and between cbb842d and 04f3aad.

📒 Files selected for processing (7)

• kits/automation/support-triage/.env.example
• kits/automation/support-triage/.gitignore
• kits/automation/support-triage/app/api/triage/route.js
• kits/automation/support-triage/app/globals.css
• kits/automation/support-triage/app/layout.tsx
• kits/automation/support-triage/app/page.tsx
• kits/automation/support-triage/config.json

✅ Files skipped from review due to trivial changes (2)

• kits/automation/support-triage/.gitignore
• kits/automation/support-triage/config.json

🚧 Files skipped from review as they are similar to previous changes (1)

• kits/automation/support-triage/app/layout.tsx

[coderabbitai]

Actionable comments posted: 2

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: ca9f0c9f-ba30-4ca1-ab93-fda9e0b4cbb1

📥 Commits

Reviewing files that changed from the base of the PR and between 04f3aad and afe8151.

📒 Files selected for processing (1)

• kits/automation/support-triage/app/page.tsx

[coderabbitai]

Actionable comments posted: 2

♻️ Duplicate comments (2)

kits/automation/support-triage/app/api/triage/route.ts (2)

12-12: ⚠️ Potential issue | 🟠 Major

Agent, your perimeter is unguarded—hostile payloads may breach.

The API currently trusts client input without validation. A missing, non-string, or empty ticket_text will pass through to the Lamatic provider, causing unnecessary calls and ambiguous failures. This intel was previously transmitted—awaiting implementation.

🛡️ Proposed validation block

-    const { ticket_text } = await request.json();
+    const body = await request.json();
+    const ticket_text =
+      typeof body?.ticket_text === "string" ? body.ticket_text.trim() : "";
+
+    if (!ticket_text) {
+      return NextResponse.json(
+        { error: "ticket_text must be a non-empty string." },
+        { status: 400 }
+      );
+    }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@kits/automation/support-triage/app/api/triage/route.ts` at line 12, Validate
the incoming ticket_text immediately after parsing request.json(): ensure
ticket_text exists, is a string, and is not empty/whitespace; if validation
fails return a 400/Bad Request response with a clear error message instead of
calling the Lamatic provider. Update the code around the const { ticket_text } =
await request.json(); extraction (the request.json() parsing and any subsequent
call to the Lamatic provider) to perform these checks and short-circuit on
invalid input.

---

19-20: ⚠️ Potential issue | 🟠 Major

Agent, mission control is receiving false positives.

The executeFlow response may include { status: "error", message: ... }, which this route currently returns as HTTP 200. The frontend in page.tsx (lines 26-39) checks for data.error and rate-limit patterns, but a Lamatic error response won't trigger those guards—it'll slip through as "success."

Other kits in this repo check response?.status === "error" and handle accordingly. This intel was previously transmitted—awaiting alignment with established protocol.

🔧 Proposed response handling

     const response = await lamaticClient.executeFlow(flowId, { ticket_text });
-    return NextResponse.json(response);
+    if (response?.status === "error") {
+      return NextResponse.json(
+        { error: response?.message || "Lamatic flow execution failed." },
+        { status: 502 }
+      );
+    }
+
+    return NextResponse.json(response?.result ?? response);

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@kits/automation/support-triage/app/api/triage/route.ts` around lines 19 - 20,
The route currently returns lamaticClient.executeFlow(flowId, { ticket_text })
directly as HTTP 200 even when the response is an error object; update the
handler in route.ts to inspect the returned value from lamaticClient.executeFlow
(e.g., check response?.status === "error" or presence of response.message) and
return an appropriate non-200 response (use NextResponse.json with a 4xx/5xx
status or NextResponse.error) when an error status is present, otherwise return
the successful payload via NextResponse.json; reference
lamaticClient.executeFlow, flowId, ticket_text, and NextResponse.json when
making this change.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@kits/automation/support-triage/app/api/triage/route.ts`:
- Around line 4-8: The Lamatic client is being constructed at module load using
non-null assertions (Lamatic and lamaticClient built from
process.env.LAMATIC_PROJECT_ENDPOINT!, LAMATIC_PROJECT_ID!,
LAMATIC_PROJECT_API_KEY!), which will crash the module with a cryptic error if
any env var is missing; change this to either validate env vars up-front with
clear diagnostic messages or lazily create the client at request time via a
factory like getLamaticClient() that checks
process.env.LAMATIC_PROJECT_ENDPOINT/ID/API_KEY and throws or returns a
controlled error; update any callers (e.g., where flowId is checked) to call the
factory and handle/report the explicit error instead of relying on non-null
assertions at import time.
- Line 21: The catch currently types the caught value as any; change it to
unknown (catch(error: unknown)) and explicitly narrow before using it: check if
error is an instance of Error to access error.message/stack, otherwise coerce to
string (e.g., String(error)) before logging/returning. Update the error handling
inside the same route handler in route.ts (the catch(error: any) block) to
perform this narrowing so TypeScript safety is preserved.

---

Duplicate comments:
In `@kits/automation/support-triage/app/api/triage/route.ts`:
- Line 12: Validate the incoming ticket_text immediately after parsing
request.json(): ensure ticket_text exists, is a string, and is not
empty/whitespace; if validation fails return a 400/Bad Request response with a
clear error message instead of calling the Lamatic provider. Update the code
around the const { ticket_text } = await request.json(); extraction (the
request.json() parsing and any subsequent call to the Lamatic provider) to
perform these checks and short-circuit on invalid input.
- Around line 19-20: The route currently returns
lamaticClient.executeFlow(flowId, { ticket_text }) directly as HTTP 200 even
when the response is an error object; update the handler in route.ts to inspect
the returned value from lamaticClient.executeFlow (e.g., check response?.status
=== "error" or presence of response.message) and return an appropriate non-200
response (use NextResponse.json with a 4xx/5xx status or NextResponse.error)
when an error status is present, otherwise return the successful payload via
NextResponse.json; reference lamaticClient.executeFlow, flowId, ticket_text, and
NextResponse.json when making this change.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository UI (base), Organization UI (inherited)

Review profile: ASSERTIVE

Plan: Pro

Run ID: ad30a0ae-20a4-4a81-979e-a620388e7fe7

📥 Commits

Reviewing files that changed from the base of the PR and between afe8151 and d696140.

📒 Files selected for processing (1)

• kits/automation/support-triage/app/api/triage/route.ts

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Agent, this initialization sequence has a critical vulnerability.

Non-null assertions (!) at module initialization time mean if any environment variable is missing, the entire module will fail to load with a cryptic runtime error—long before your helpful flowId check on line 15-17 can provide meaningful feedback.

Consider validating these values at request time or failing fast with clear diagnostics at startup.

🛡️ Proposed defensive initialization

-const lamaticClient = new Lamatic({
-  endpoint: process.env.LAMATIC_PROJECT_ENDPOINT!,
-  projectId: process.env.LAMATIC_PROJECT_ID!,
-  apiKey: process.env.LAMATIC_PROJECT_API_KEY!,
-});
+function getLamaticClient() {
+  const endpoint = process.env.LAMATIC_PROJECT_ENDPOINT;
+  const projectId = process.env.LAMATIC_PROJECT_ID;
+  const apiKey = process.env.LAMATIC_PROJECT_API_KEY;
+
+  if (!endpoint || !projectId || !apiKey) {
+    throw new Error("Missing Lamatic configuration: LAMATIC_PROJECT_ENDPOINT, LAMATIC_PROJECT_ID, and LAMATIC_PROJECT_API_KEY are required.");
+  }
+
+  return new Lamatic({ endpoint, projectId, apiKey });
+}
+
+const lamaticClient = getLamaticClient();

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	const lamaticClient = new Lamatic({
	endpoint: process.env.LAMATIC_PROJECT_ENDPOINT!,
	projectId: process.env.LAMATIC_PROJECT_ID!,
	apiKey: process.env.LAMATIC_PROJECT_API_KEY!,
	});
	function getLamaticClient() {
	const endpoint = process.env.LAMATIC_PROJECT_ENDPOINT;
	const projectId = process.env.LAMATIC_PROJECT_ID;
	const apiKey = process.env.LAMATIC_PROJECT_API_KEY;
	if (!endpoint || !projectId || !apiKey) {
	throw new Error("Missing Lamatic configuration: LAMATIC_PROJECT_ENDPOINT, LAMATIC_PROJECT_ID, and LAMATIC_PROJECT_API_KEY are required.");
	}
	return new Lamatic({ endpoint, projectId, apiKey });
	}
	const lamaticClient = getLamaticClient();

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@kits/automation/support-triage/app/api/triage/route.ts` around lines 4 - 8,
The Lamatic client is being constructed at module load using non-null assertions
(Lamatic and lamaticClient built from process.env.LAMATIC_PROJECT_ENDPOINT!,
LAMATIC_PROJECT_ID!, LAMATIC_PROJECT_API_KEY!), which will crash the module with
a cryptic error if any env var is missing; change this to either validate env
vars up-front with clear diagnostic messages or lazily create the client at
request time via a factory like getLamaticClient() that checks
process.env.LAMATIC_PROJECT_ENDPOINT/ID/API_KEY and throws or returns a
controlled error; update any callers (e.g., where flowId is checked) to call the
factory and handle/report the explicit error instead of relying on non-null
assertions at import time.

[coderabbitai]

🧹 Nitpick | 🔵 Trivial

Agent, any is a liability in your cover.

Using any type defeats TypeScript's safety guarantees. Prefer unknown and narrow explicitly, or use a more specific error type.

♻️ Proposed type-safe error handling

-  } catch (error: any) {
-    return NextResponse.json({ error: error.message || "API execution failed" }, { status: 500 });
+  } catch (error: unknown) {
+    const message = error instanceof Error ? error.message : "API execution failed";
+    return NextResponse.json({ error: message }, { status: 500 });
   }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@kits/automation/support-triage/app/api/triage/route.ts` at line 21, The catch
currently types the caught value as any; change it to unknown (catch(error:
unknown)) and explicitly narrow before using it: check if error is an instance
of Error to access error.message/stack, otherwise coerce to string (e.g.,
String(error)) before logging/returning. Update the error handling inside the
same route handler in route.ts (the catch(error: any) block) to perform this
narrowing so TypeScript safety is preserved.