feat(questionnaire): add security questionnaire feature with AI parsing and auto-answering (#1755)

- Add questionnaire file upload and parsing functionality
- Implement AI-powered question extraction from PDFs
- Add auto-answer functionality using RAG with vector embeddings
- Add questionnaire results display, editing, and export
- Implement vector embedding sync for organization policies
- Add batch processing for questionnaire answers
- Fix TypeScript build error in analytics package
- Resolve merge conflict in bun.lock

Co-authored-by: Tofik Hasanov <annexcies@gmail.com>

Author: github-actions[bot]

.gitignore

@@ -84,4 +84,5 @@ packages/*/dist
 **/src/db/generated/
 
 # Release script
-scripts/sync-release-branch.sh
+scripts/sync-release-branch.sh
+/.vscode

.vscode/settings.json

@@ -23,5 +23,6 @@
   },
   "[typescriptreact]": {
     "editor.defaultFormatter": "esbenp.prettier-vscode"
-  }
+  },
+  "typescript.tsserver.experimental.enableProjectDiagnostics": true
 }

apps/app/package.json

@@ -80,6 +80,7 @@
     "next-safe-action": "^8.0.3",
     "next-themes": "^0.4.4",
     "nuqs": "^2.4.3",
+    "pdf-parse": "^2.4.5",
     "playwright-core": "^1.52.0",
     "posthog-js": "^1.236.6",
     "posthog-node": "^5.8.2",

apps/app/public/questionaire/tmp-questionaire-empty-state.png

@@ -0,0 +1,82 @@
+'use server';
+
+import { auth as betterAuth } from '@/utils/auth';
+import { auth } from '@trigger.dev/sdk';
+import { headers } from 'next/headers';
+
+// Create trigger token for auto-answer (can trigger and read)
+export const createTriggerToken = async (taskId: 'parse-questionnaire' | 'vendor-questionnaire-orchestrator' | 'answer-question') => {
+  const session = await betterAuth.api.getSession({
+    headers: await headers(),
+  });
+
+  if (!session) {
+    return {
+      success: false,
+      error: 'Unauthorized',
+    };
+  }
+
+  const orgId = session.session?.activeOrganizationId;
+  if (!orgId) {
+    return {
+      success: false,
+      error: 'No active organization',
+    };
+  }
+
+  try {
+    const token = await auth.createTriggerPublicToken(taskId, {
+      multipleUse: true,
+      expirationTime: '1hr',
+    });
+
+    return {
+      success: true,
+      token,
+    };
+  } catch (error) {
+    console.error('Error creating trigger token:', error);
+    return {
+      success: false,
+      error: error instanceof Error ? error.message : 'Failed to create trigger token',
+    };
+  }
+};
+
+// Create public token with read permissions for a specific run
+export const createRunReadToken = async (runId: string) => {
+  const session = await betterAuth.api.getSession({
+    headers: await headers(),
+  });
+
+  if (!session) {
+    return {
+      success: false,
+      error: 'Unauthorized',
+    };
+  }
+
+  try {
+    const token = await auth.createPublicToken({
+      scopes: {
+        read: {
+          runs: [runId],
+        },
+      },
+      expirationTime: '1hr',
+    });
+
+    return {
+      success: true,
+      token,
+    };
+  } catch (error) {
+    console.error('Error creating run read token:', error);
+    return {
+      success: false,
+      error: error instanceof Error ? error.message : 'Failed to create run read token',
+    };
+  }
+};
+