diff --git a/.github/workflows/backend-cd.yml b/.github/workflows/backend-cd.yml
index 9a607fc..ac04719 100644
--- a/.github/workflows/backend-cd.yml
+++ b/.github/workflows/backend-cd.yml
@@ -2,7 +2,7 @@ name: Deploy Backend
 
 on:
   push:
-    branches: [staging, main]
+    branches: [staging]
     paths:
       - "packages/fastapi/**"
       - ".github/workflows/backend-cd.yml"
@@ -18,17 +18,6 @@ jobs:
       - name: Checkout code
         uses: actions/checkout@v4
 
-      - name: Determine environment
-        id: env
-        run: |
-          if [ "${{ github.ref }}" = "refs/heads/main" ]; then
-            echo "deploy_path=/opt/harness-api" >> "$GITHUB_OUTPUT"
-            echo "service=harness-api" >> "$GITHUB_OUTPUT"
-          else
-            echo "deploy_path=/opt/harness-api-staging" >> "$GITHUB_OUTPUT"
-            echo "service=harness-api-staging" >> "$GITHUB_OUTPUT"
-          fi
-
       - name: Set up SSH
         run: |
           mkdir -p ~/.ssh
@@ -44,15 +33,15 @@ jobs:
             --exclude='__pycache__' \
             --exclude='.git' \
             -e "ssh -i ~/.ssh/harness.pem" \
-            packages/fastapi/ ec2-user@52.45.218.243:${{ steps.env.outputs.deploy_path }}/
+            packages/fastapi/ ec2-user@52.45.218.243:/opt/harness-api-staging/
 
       - name: Install dependencies and restart
         run: |
           ssh -i ~/.ssh/harness.pem ec2-user@52.45.218.243 << EOF
-            cd ${{ steps.env.outputs.deploy_path }}
+            cd /opt/harness-api-staging
             python3.11 -m venv .venv 2>/dev/null || true
             .venv/bin/pip install -q -r requirements.txt
-            sudo systemctl restart ${{ steps.env.outputs.service }}
+            sudo systemctl restart harness-api-staging
             sleep 2
-            sudo systemctl is-active ${{ steps.env.outputs.service }}
+            sudo systemctl is-active harness-api-staging
           EOF
diff --git a/.github/workflows/frontend-cd.yml b/.github/workflows/frontend-cd.yml
index 5c960f4..8c6e5a3 100644
--- a/.github/workflows/frontend-cd.yml
+++ b/.github/workflows/frontend-cd.yml
@@ -2,7 +2,7 @@ name: Deploy Frontend
 
 on:
   push:
-    branches: [staging, main]
+    branches: [staging]
     paths:
       - "apps/web/**"
       - "packages/convex-backend/**"
@@ -15,7 +15,7 @@ concurrency:
 jobs:
   deploy:
     runs-on: ubuntu-latest
-    environment: ${{ github.ref == 'refs/heads/main' && 'production' || 'staging' }}
+    environment: staging
     steps:
       - name: Checkout code
         uses: actions/checkout@v4
@@ -31,33 +31,26 @@ jobs:
         env:
           CONVEX_DEPLOY_KEY: ${{ secrets.CONVEX_DEPLOY_KEY }}
 
-      - name: Determine environment
-        id: env
-        run: |
-          if [ "${{ github.ref }}" = "refs/heads/main" ]; then
-            echo "env_name=production" >> "$GITHUB_OUTPUT"
-            echo "fastapi_url=${{ secrets.FASTAPI_URL_PROD }}" >> "$GITHUB_OUTPUT"
-          else
-            echo "env_name=staging" >> "$GITHUB_OUTPUT"
-            echo "fastapi_url=${{ secrets.FASTAPI_URL_STAGING }}" >> "$GITHUB_OUTPUT"
-          fi
-
       - name: Build frontend
         run: cd apps/web && bun run build
         env:
           VITE_CONVEX_URL: ${{ secrets.VITE_CONVEX_URL }}
           VITE_CLERK_PUBLISHABLE_KEY: ${{ secrets.VITE_CLERK_PUBLISHABLE_KEY }}
           CLERK_SECRET_KEY: ${{ secrets.CLERK_SECRET_KEY }}
-          VITE_FASTAPI_URL: ${{ steps.env.outputs.fastapi_url }}
+          VITE_FASTAPI_URL: ${{ secrets.FASTAPI_URL_STAGING }}
+          ARCJET_KEY: ${{ secrets.ARCJET_KEY }}
+
+      - name: Set Cloudflare Worker secrets
+        run: |
+          echo "${{ secrets.ARCJET_KEY }}" | cd apps/web && npx wrangler secret put ARCJET_KEY --name harness-web-staging
+        env:
+          CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
 
       # The @cloudflare/vite-plugin flattens only top-level vars into the
       # generated dist/server/wrangler.json and drops env.* blocks, so
       # `--env` alone picks the right Worker name but leaves runtime vars
       # pointing at the top-level defaults. Override at deploy time.
       - name: Deploy to Cloudflare Workers
-        run: |
-          cd apps/web && npx wrangler deploy --env ${{ steps.env.outputs.env_name }} \
-            --var VITE_CONVEX_URL:"${{ secrets.VITE_CONVEX_URL }}" \
-            --var VITE_CLERK_PUBLISHABLE_KEY:"${{ secrets.VITE_CLERK_PUBLISHABLE_KEY }}"
+        run: cd apps/web && npx wrangler deploy --name harness-web-staging
         env:
           CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
new file mode 100644
index 0000000..fd9cef9
--- /dev/null
+++ b/.github/workflows/test.yml
@@ -0,0 +1,109 @@
+name: Tests
+
+on:
+  push:
+    branches: [main, staging]
+  pull_request:
+    branches: [main, staging]
+
+concurrency:
+  group: tests-${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  frontend:
+    name: Frontend (vitest)
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
+
+      - name: Cache Bun install
+        uses: actions/cache@v4
+        with:
+          path: ~/.bun/install/cache
+          key: ${{ runner.os }}-bun-${{ hashFiles('bun.lock') }}
+          restore-keys: |
+            ${{ runner.os }}-bun-
+
+      - name: Install dependencies
+        run: bun install --frozen-lockfile
+
+      - name: Run tests with coverage
+        working-directory: apps/web
+        run: bun run test:coverage
+
+      - name: Upload coverage artifact
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: frontend-coverage
+          path: apps/web/coverage
+          retention-days: 14
+
+  convex:
+    name: Convex (vitest)
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
+
+      - name: Cache Bun install
+        uses: actions/cache@v4
+        with:
+          path: ~/.bun/install/cache
+          key: ${{ runner.os }}-bun-${{ hashFiles('bun.lock') }}
+          restore-keys: |
+            ${{ runner.os }}-bun-
+
+      - name: Install dependencies
+        run: bun install --frozen-lockfile
+
+      - name: Run tests with coverage
+        working-directory: packages/convex-backend
+        run: bun run test:coverage
+
+      - name: Upload coverage artifact
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: convex-coverage
+          path: packages/convex-backend/coverage
+          retention-days: 14
+
+  fastapi:
+    name: FastAPI (pytest)
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.13"
+          cache: pip
+          cache-dependency-path: packages/fastapi/requirements-dev.txt
+
+      - name: Install dependencies
+        working-directory: packages/fastapi
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r requirements-dev.txt
+
+      - name: Run tests with coverage
+        working-directory: packages/fastapi
+        run: pytest --cov --cov-report=term --cov-report=xml --cov-report=html
+
+      - name: Upload coverage artifact
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: fastapi-coverage
+          path: |
+            packages/fastapi/htmlcov
+            packages/fastapi/coverage.xml
+          retention-days: 14
diff --git a/apps/web/.env.example b/apps/web/.env.example
index 4556958..62028eb 100644
--- a/apps/web/.env.example
+++ b/apps/web/.env.example
@@ -9,3 +9,6 @@ VITE_CONVEX_URL=https://your-project.convex.cloud
 
 # FastAPI backend URL
 VITE_FASTAPI_URL=http://localhost:8000
+
+# Arcjet (server-only rate limiting / shield — copy from Arcjet dashboard)
+ARCJET_KEY=
diff --git a/apps/web/package.json b/apps/web/package.json
index 53f4e51..1569e2c 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -11,12 +11,19 @@
     "deploy:staging": "vite build && wrangler deploy --env staging",
     "deploy:production": "vite build && wrangler deploy --env production",
     "test": "vitest run",
+    "test:watch": "vitest",
+    "test:coverage": "vitest run --coverage",
     "format": "biome format --write",
     "lint": "biome lint",
     "check": "biome check",
     "check-types": "tsc --noEmit"
   },
   "dependencies": {
+    "@arcjet/headers": "^1.3.1",
+    "@arcjet/ip": "^1.3.1",
+    "@arcjet/protocol": "^1.3.1",
+    "@arcjet/transport": "^1.3.1",
+    "@clerk/clerk-react": "^5.60.0",
     "@clerk/tanstack-react-start": "^0.29.1",
     "@convex-dev/react-query": "^0.1.0",
     "@harness/convex-backend": "workspace:*",
@@ -33,8 +40,10 @@
     "@xterm/addon-fit": "^0.11.0",
     "@xterm/addon-web-links": "^0.12.0",
     "@xterm/xterm": "^6.0.0",
+    "arcjet": "^1.3.1",
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
+    "cmdk": "^1.1.1",
     "convex": "^1.31.7",
     "geist": "^1.7.0",
     "highlight.js": "^11.11.1",
@@ -51,6 +60,7 @@
     "tailwindcss": "^4.1.18",
     "tw-animate-css": "^1.3.6",
     "use-sync-external-store": "^1.6.0",
+    "vinxi": "^0.5.11",
     "vite-tsconfig-paths": "^6.0.2",
     "zod": "^4.1.11"
   },
@@ -59,11 +69,14 @@
     "@cloudflare/vite-plugin": "^1.30.3",
     "@tanstack/devtools-vite": "^0.3.11",
     "@testing-library/dom": "^10.4.0",
+    "@testing-library/jest-dom": "^6.9.1",
     "@testing-library/react": "^16.2.0",
+    "@testing-library/user-event": "^14.6.1",
     "@types/node": "^22.10.2",
     "@types/react": "^19.2.0",
     "@types/react-dom": "^19.2.0",
     "@vitejs/plugin-react": "^5.0.4",
+    "@vitest/coverage-v8": "^3.0.5",
     "jsdom": "^27.0.0",
     "typescript": "5.9.2",
     "vite": "^7.1.7",
diff --git a/apps/web/src/components/attachment-chip.test.tsx b/apps/web/src/components/attachment-chip.test.tsx
new file mode 100644
index 0000000..9d129a5
--- /dev/null
+++ b/apps/web/src/components/attachment-chip.test.tsx
@@ -0,0 +1,77 @@
+import { fireEvent, render, screen } from "@testing-library/react";
+import { describe, expect, it, vi } from "vitest";
+import type { PendingAttachment } from "../hooks/use-file-attachments";
+import { AttachmentChip } from "./attachment-chip";
+
+function makeAttachment(
+	partial: Partial<PendingAttachment> = {},
+): PendingAttachment {
+	return {
+		localId: "id-1",
+		previewUrl: null,
+		mimeType: "image/png",
+		status: "ready",
+		fileName: "file.png",
+		fileSize: 100,
+		...partial,
+	};
+}
+
+describe("AttachmentChip", () => {
+	it("renders an image preview when previewUrl is set and mime is image/*", () => {
+		const att = makeAttachment({
+			mimeType: "image/png",
+			previewUrl: "blob:abc",
+			fileName: "pic.png",
+		});
+		render(<AttachmentChip attachment={att} onRemove={() => {}} />);
+		const img = screen.getByAltText("pic.png") as HTMLImageElement;
+		expect(img).toBeInTheDocument();
+		expect(img.src).toContain("blob:abc");
+	});
+
+	it("renders a file-name label with icon for PDFs", () => {
+		const att = makeAttachment({
+			mimeType: "application/pdf",
+			fileName: "notes.pdf",
+		});
+		render(<AttachmentChip attachment={att} onRemove={() => {}} />);
+		expect(screen.getByText("notes.pdf")).toBeInTheDocument();
+	});
+
+	it("renders a file-name label with icon for audio", () => {
+		const att = makeAttachment({
+			mimeType: "audio/wav",
+			fileName: "sound.wav",
+		});
+		render(<AttachmentChip attachment={att} onRemove={() => {}} />);
+		expect(screen.getByText("sound.wav")).toBeInTheDocument();
+	});
+
+	it("shows an uploading overlay when status is uploading", () => {
+		const att = makeAttachment({ status: "uploading" });
+		const { container } = render(
+			<AttachmentChip attachment={att} onRemove={() => {}} />,
+		);
+		// Overlay uses bg-background/70 — spinner is rendered inside it.
+		expect(container.querySelector(".bg-background\\/70")).toBeTruthy();
+	});
+
+	it("shows an 'Error' label when status is error", () => {
+		const att = makeAttachment({ status: "error" });
+		render(<AttachmentChip attachment={att} onRemove={() => {}} />);
+		expect(screen.getByText("Error")).toBeInTheDocument();
+	});
+
+	it("calls onRemove when the X button is clicked", () => {
+		const onRemove = vi.fn();
+		const att = makeAttachment({
+			mimeType: "application/pdf",
+			fileName: "a.pdf",
+		});
+		render(<AttachmentChip attachment={att} onRemove={onRemove} />);
+		// The X button is the only <button> in the chip.
+		fireEvent.click(screen.getByRole("button"));
+		expect(onRemove).toHaveBeenCalledTimes(1);
+	});
+});
diff --git a/apps/web/src/components/attachment-chip.tsx b/apps/web/src/components/attachment-chip.tsx
index 2621122..a1de521 100644
--- a/apps/web/src/components/attachment-chip.tsx
+++ b/apps/web/src/components/attachment-chip.tsx
@@ -1,5 +1,6 @@
-import { FileText, Loader2, Music, X } from "lucide-react";
+import { FileText, Music, X } from "lucide-react";
 import type { PendingAttachment } from "../hooks/use-file-attachments";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
 
 export function AttachmentChip({
 	attachment,
@@ -33,7 +34,7 @@ export function AttachmentChip({
 
 			{attachment.status === "uploading" && (
 				<div className="absolute inset-0 flex items-center justify-center bg-background/70">
-					<Loader2 size={10} className="animate-spin text-foreground" />
+					<RoseCurveSpinner size={10} className="text-foreground" />
 				</div>
 			)}
 
diff --git a/apps/web/src/components/command-palette/command-item.tsx b/apps/web/src/components/command-palette/command-item.tsx
new file mode 100644
index 0000000..70e324d
--- /dev/null
+++ b/apps/web/src/components/command-palette/command-item.tsx
@@ -0,0 +1,52 @@
+import { Command as Cmdk } from "cmdk";
+import type { Command } from "../../lib/command-palette/types";
+import { cn } from "../../lib/utils";
+import { CommandKbd } from "./command-kbd";
+
+interface CommandItemProps {
+	command: Command;
+	onRun: (command: Command) => void;
+}
+
+export function CommandItem({ command, onRun }: CommandItemProps) {
+	const Icon = command.icon;
+	return (
+		<Cmdk.Item
+			value={`${command.id} ${command.title} ${(command.keywords ?? []).join(" ")}`}
+			keywords={command.keywords}
+			onSelect={() => onRun(command)}
+			className={cn(
+				"group/cmd-item relative flex h-9 cursor-pointer select-none items-center gap-2.5 rounded-sm px-2 text-sm",
+				"text-foreground/85 outline-none transition-colors",
+				"aria-selected:bg-muted aria-selected:text-foreground",
+				"data-[disabled=true]:pointer-events-none data-[disabled=true]:opacity-40",
+			)}
+		>
+			<span className="flex h-5 w-5 shrink-0 items-center justify-center text-muted-foreground group-aria-selected/cmd-item:text-foreground">
+				{command.colorDot ? (
+					<span
+						className="inline-block h-2 w-2 rounded-full ring-1 ring-border/60"
+						style={{ backgroundColor: command.colorDot }}
+						aria-hidden="true"
+					/>
+				) : Icon ? (
+					<Icon className="h-4 w-4" />
+				) : null}
+			</span>
+			<span className="flex min-w-0 flex-1 items-baseline gap-2">
+				<span className="truncate">{command.title}</span>
+				{command.subtitle && (
+					<span className="truncate text-xs text-muted-foreground">
+						{command.subtitle}
+					</span>
+				)}
+			</span>
+			{command.shortcut && (
+				<CommandKbd
+					shortcut={command.shortcut}
+					className="shrink-0 opacity-0 transition-opacity group-aria-selected/cmd-item:opacity-100"
+				/>
+			)}
+		</Cmdk.Item>
+	);
+}
diff --git a/apps/web/src/components/command-palette/command-kbd.tsx b/apps/web/src/components/command-palette/command-kbd.tsx
new file mode 100644
index 0000000..b5460c0
--- /dev/null
+++ b/apps/web/src/components/command-palette/command-kbd.tsx
@@ -0,0 +1,36 @@
+import { cn } from "../../lib/utils";
+
+/** Split a shortcut label like "⌘⌥1" or "Ctrl+Alt+1" into individual key tokens. */
+function splitKeys(shortcut: string): string[] {
+	if (shortcut.includes("+")) return shortcut.split("+").filter(Boolean);
+	return Array.from(shortcut);
+}
+
+export function CommandKbd({
+	shortcut,
+	className,
+}: {
+	shortcut: string;
+	className?: string;
+}) {
+	const keys = splitKeys(shortcut);
+	return (
+		<kbd
+			className={cn(
+				"pointer-events-none inline-flex items-center gap-1 font-mono text-[10px] text-muted-foreground",
+				className,
+			)}
+			aria-label={shortcut}
+		>
+			{keys.map((key, i) => (
+				<span
+					// biome-ignore lint/suspicious/noArrayIndexKey: shortcut keys form a fixed ordered set
+					key={i}
+					className="inline-flex h-[18px] min-w-[18px] items-center justify-center rounded-sm border border-border/70 bg-muted/60 px-1 leading-none text-foreground/80"
+				>
+					{key}
+				</span>
+			))}
+		</kbd>
+	);
+}
diff --git a/apps/web/src/components/command-palette/command-palette.tsx b/apps/web/src/components/command-palette/command-palette.tsx
new file mode 100644
index 0000000..02a8cfb
--- /dev/null
+++ b/apps/web/src/components/command-palette/command-palette.tsx
@@ -0,0 +1,219 @@
+import { Command as Cmdk } from "cmdk";
+import { Search } from "lucide-react";
+import { useEffect, useMemo, useRef, useState } from "react";
+import { useCommandPaletteHotkey } from "../../hooks/use-command-palette-hotkey";
+import { useCommandPalette } from "../../lib/command-palette/context";
+import {
+	getRecentCommandIds,
+	pushRecentCommand,
+} from "../../lib/command-palette/recent";
+import {
+	COMMAND_GROUP_LABELS,
+	COMMAND_GROUP_ORDER,
+	type Command,
+	type CommandGroupId,
+} from "../../lib/command-palette/types";
+import { cn } from "../../lib/utils";
+import { CommandItem } from "./command-item";
+
+export function CommandPalette() {
+	useCommandPaletteHotkey();
+
+	const { open, setOpen, snapshot } = useCommandPalette();
+	const [search, setSearch] = useState("");
+	const [recentIds, setRecentIds] = useState<string[]>([]);
+	const [snapshotCommands, setSnapshotCommands] = useState<Command[]>([]);
+	const wasOpenRef = useRef(false);
+
+	useEffect(() => {
+		if (!open) {
+			wasOpenRef.current = false;
+			return;
+		}
+		const justOpened = !wasOpenRef.current;
+		wasOpenRef.current = true;
+		if (justOpened) {
+			setSearch("");
+			setRecentIds(getRecentCommandIds());
+		}
+		setSnapshotCommands(snapshot().filter((c) => !c.when || c.when()));
+	}, [open, snapshot]);
+
+	const { groups, recentCommands } = useMemo(() => {
+		const byGroup = new Map<CommandGroupId, Command[]>();
+		for (const cmd of snapshotCommands) {
+			const list = byGroup.get(cmd.group) ?? [];
+			list.push(cmd);
+			byGroup.set(cmd.group, list);
+		}
+
+		const byId = new Map(snapshotCommands.map((c) => [c.id, c]));
+		const recent: Command[] = [];
+		if (search.trim().length === 0) {
+			for (const id of recentIds) {
+				const cmd = byId.get(id);
+				if (cmd) recent.push(cmd);
+				if (recent.length >= 5) break;
+			}
+		}
+
+		const ordered: Array<{ id: CommandGroupId; commands: Command[] }> = [];
+		for (const groupId of COMMAND_GROUP_ORDER) {
+			if (groupId === "recent") continue;
+			const commands = byGroup.get(groupId);
+			if (commands && commands.length > 0) {
+				ordered.push({ id: groupId, commands });
+			}
+		}
+		return { groups: ordered, recentCommands: recent };
+	}, [snapshotCommands, recentIds, search]);
+
+	const runCommand = (command: Command) => {
+		setOpen(false);
+		pushRecentCommand(command.id);
+		// Defer to let the dialog close animation start before the handler fires
+		// (e.g., navigation). Keeps the UI feeling snappy and avoids focus fights.
+		queueMicrotask(() => {
+			try {
+				command.perform();
+			} catch (err) {
+				console.error("[command-palette] command failed", command.id, err);
+			}
+		});
+	};
+
+	return (
+		<Cmdk.Dialog
+			open={open}
+			onOpenChange={setOpen}
+			label="Command Palette"
+			loop
+			overlayClassName={cn(
+				"fixed inset-0 z-[60] bg-black/40 backdrop-blur-[2px]",
+				"data-[state=open]:animate-in data-[state=closed]:animate-out",
+				"data-[state=open]:fade-in-0 data-[state=closed]:fade-out-0",
+			)}
+			contentClassName={cn(
+				"fixed left-1/2 top-[18vh] z-[61] w-[min(640px,calc(100vw-2rem))] -translate-x-1/2",
+				"overflow-hidden rounded-lg border border-border bg-background shadow-2xl shadow-black/30",
+				"outline-none",
+				"data-[state=open]:animate-in data-[state=closed]:animate-out",
+				"data-[state=open]:fade-in-0 data-[state=closed]:fade-out-0",
+				"data-[state=open]:zoom-in-95 data-[state=closed]:zoom-out-95",
+				"data-[state=open]:slide-in-from-top-2 data-[state=closed]:slide-out-to-top-2",
+				"duration-150",
+			)}
+		>
+			<div className="flex items-center gap-2 border-b border-border/80 px-3">
+				<Search
+					className="h-4 w-4 shrink-0 text-muted-foreground"
+					aria-hidden="true"
+				/>
+				<Cmdk.Input
+					value={search}
+					onValueChange={setSearch}
+					autoFocus
+					placeholder="Type a command or search…"
+					className={cn(
+						"flex h-12 w-full bg-transparent text-sm text-foreground outline-none",
+						"placeholder:text-muted-foreground/70 disabled:cursor-not-allowed disabled:opacity-50",
+					)}
+				/>
+				<kbd className="ml-auto hidden shrink-0 items-center rounded-sm border border-border/70 bg-muted/60 px-1.5 py-0.5 font-mono text-[10px] text-muted-foreground sm:inline-flex">
+					esc
+				</kbd>
+			</div>
+
+			<Cmdk.List className="max-h-[min(420px,60vh)] overflow-y-auto overscroll-contain p-1.5">
+				<Cmdk.Empty className="flex h-24 flex-col items-center justify-center gap-1 text-center">
+					<span className="text-sm text-muted-foreground">
+						No results found
+					</span>
+					<span className="text-xs text-muted-foreground/70">
+						Try a different keyword
+					</span>
+				</Cmdk.Empty>
+
+				{recentCommands.length > 0 && (
+					<Cmdk.Group
+						heading={<GroupHeading>Recently used</GroupHeading>}
+						className="mb-1"
+					>
+						{recentCommands.map((command) => (
+							<CommandItem
+								key={`recent-${command.id}`}
+								command={command}
+								onRun={runCommand}
+							/>
+						))}
+					</Cmdk.Group>
+				)}
+
+				{groups.map(({ id, commands }) => (
+					<Cmdk.Group
+						key={id}
+						heading={<GroupHeading>{COMMAND_GROUP_LABELS[id]}</GroupHeading>}
+						className="mb-1"
+					>
+						{commands.map((command) => (
+							<CommandItem
+								key={command.id}
+								command={command}
+								onRun={runCommand}
+							/>
+						))}
+					</Cmdk.Group>
+				))}
+			</Cmdk.List>
+
+			<div className="flex items-center justify-between border-t border-border/80 px-3 py-1.5 text-[11px] text-muted-foreground">
+				<div className="flex items-center gap-3">
+					<FooterHint label="navigate">
+						<FooterKey>↑</FooterKey>
+						<FooterKey>↓</FooterKey>
+					</FooterHint>
+					<FooterHint label="select">
+						<FooterKey>↵</FooterKey>
+					</FooterHint>
+					<FooterHint label="close">
+						<FooterKey>esc</FooterKey>
+					</FooterHint>
+				</div>
+				<span className="hidden font-mono text-[10px] opacity-70 sm:inline">
+					Harness
+				</span>
+			</div>
+		</Cmdk.Dialog>
+	);
+}
+
+function GroupHeading({ children }: { children: React.ReactNode }) {
+	return (
+		<div className="px-2 pt-2 pb-1 text-[10px] font-medium uppercase tracking-wider text-muted-foreground/70">
+			{children}
+		</div>
+	);
+}
+
+function FooterHint({
+	label,
+	children,
+}: {
+	label: string;
+	children: React.ReactNode;
+}) {
+	return (
+		<span className="inline-flex items-center gap-1">
+			<span className="inline-flex items-center gap-0.5">{children}</span>
+			<span>{label}</span>
+		</span>
+	);
+}
+
+function FooterKey({ children }: { children: React.ReactNode }) {
+	return (
+		<kbd className="inline-flex h-4 min-w-[16px] items-center justify-center rounded-[3px] border border-border/70 bg-muted/60 px-1 font-mono text-[10px] leading-none text-foreground/80">
+			{children}
+		</kbd>
+	);
+}
diff --git a/apps/web/src/components/command-palette/commands/chat-commands.ts b/apps/web/src/components/command-palette/commands/chat-commands.ts
new file mode 100644
index 0000000..e2067c5
--- /dev/null
+++ b/apps/web/src/components/command-palette/commands/chat-commands.ts
@@ -0,0 +1,75 @@
+import {
+	MessageSquarePlus,
+	PanelLeftClose,
+	PanelLeftOpen,
+	Square,
+} from "lucide-react";
+import { useMemo } from "react";
+import { useRegisterCommands } from "../../../hooks/use-register-commands";
+import type { Command } from "../../../lib/command-palette/types";
+
+interface ChatPaletteCommandsInput {
+	isStreaming: boolean;
+	canStartNewConversation: boolean;
+	sidebarOpen: boolean;
+	onNewConversation: () => void;
+	onCancelStream: () => void;
+	onToggleSidebar: () => void;
+}
+
+/**
+ * Registers the chat-scoped commands: new conversation, cancel streaming,
+ * and sidebar toggle. Call from whichever route hosts the chat surface
+ * (both `/chat` and `/workspaces` use this — they're mutually exclusive
+ * at runtime, so the command IDs don't collide).
+ */
+export function useChatPaletteCommands({
+	isStreaming,
+	canStartNewConversation,
+	sidebarOpen,
+	onNewConversation,
+	onCancelStream,
+	onToggleSidebar,
+}: ChatPaletteCommandsInput): void {
+	const commands = useMemo<Command[]>(() => {
+		const list: Command[] = [
+			{
+				id: "chat:new-conversation",
+				title: "New conversation",
+				group: "chat",
+				icon: MessageSquarePlus,
+				keywords: ["new", "chat", "convo", "message"],
+				when: () => canStartNewConversation,
+				perform: onNewConversation,
+			},
+			{
+				id: "chat:toggle-sidebar",
+				title: sidebarOpen ? "Hide sidebar" : "Show sidebar",
+				group: "chat",
+				icon: sidebarOpen ? PanelLeftClose : PanelLeftOpen,
+				keywords: ["sidebar", "panel", "toggle"],
+				perform: onToggleSidebar,
+			},
+		];
+		if (isStreaming) {
+			list.push({
+				id: "chat:cancel-stream",
+				title: "Cancel streaming response",
+				group: "chat",
+				icon: Square,
+				keywords: ["stop", "interrupt", "abort"],
+				perform: onCancelStream,
+			});
+		}
+		return list;
+	}, [
+		isStreaming,
+		canStartNewConversation,
+		sidebarOpen,
+		onNewConversation,
+		onCancelStream,
+		onToggleSidebar,
+	]);
+
+	useRegisterCommands(commands);
+}
diff --git a/apps/web/src/components/command-palette/commands/global-commands.tsx b/apps/web/src/components/command-palette/commands/global-commands.tsx
new file mode 100644
index 0000000..2268ab1
--- /dev/null
+++ b/apps/web/src/components/command-palette/commands/global-commands.tsx
@@ -0,0 +1,132 @@
+import { useAuth, useClerk } from "@clerk/tanstack-react-start";
+import { convexQuery } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { useQuery } from "@tanstack/react-query";
+import { useNavigate } from "@tanstack/react-router";
+import {
+	Box,
+	BoxIcon,
+	FolderKanban,
+	LogOut,
+	MessageSquare,
+	Package,
+	SlidersHorizontal,
+} from "lucide-react";
+import { useMemo } from "react";
+import { useRegisterCommands } from "../../../hooks/use-register-commands";
+import type { Command } from "../../../lib/command-palette/types";
+
+/**
+ * Always-available navigation + account commands.
+ * Must be rendered inside `CommandPaletteProvider` — mount once at the root.
+ */
+export function GlobalCommands() {
+	const navigate = useNavigate();
+	const { signOut } = useClerk();
+	const { isSignedIn } = useAuth();
+
+	const { data: harnesses } = useQuery({
+		...convexQuery(api.harnesses.list, {}),
+		enabled: !!isSignedIn,
+	});
+	const { data: sandboxes } = useQuery({
+		...convexQuery(api.sandboxes.list, {}),
+		enabled: !!isSignedIn,
+	});
+
+	const commands = useMemo<Command[]>(() => {
+		if (!isSignedIn) return [];
+
+		const list: Command[] = [
+			{
+				id: "nav:chat",
+				title: "Go to Chat",
+				group: "navigation",
+				icon: MessageSquare,
+				keywords: ["conversation", "message"],
+				perform: () => navigate({ to: "/chat" }),
+			},
+			{
+				id: "nav:workspaces",
+				title: "Go to Workspaces",
+				group: "navigation",
+				icon: FolderKanban,
+				keywords: ["projects"],
+				perform: () => navigate({ to: "/workspaces" }),
+			},
+			{
+				id: "nav:harnesses",
+				title: "Manage Harnesses",
+				group: "navigation",
+				icon: SlidersHorizontal,
+				keywords: ["agents", "configurations"],
+				perform: () => navigate({ to: "/harnesses" }),
+			},
+			{
+				id: "nav:sandboxes",
+				title: "Manage Sandboxes",
+				group: "navigation",
+				icon: Box,
+				keywords: ["environments", "daytona"],
+				perform: () => navigate({ to: "/sandboxes" }),
+			},
+			{
+				id: "sandbox:create",
+				title: "Create sandbox…",
+				group: "sandbox",
+				icon: BoxIcon,
+				keywords: ["new", "sandbox", "add", "daytona"],
+				perform: () => navigate({ to: "/sandboxes/create_sandbox" }),
+			},
+		];
+
+		for (const harness of harnesses ?? []) {
+			list.push({
+				id: `harness:open:${harness._id}`,
+				title: `Open harness: ${harness.name}`,
+				subtitle: harness.status,
+				group: "harness",
+				icon: Package,
+				keywords: ["harness", "agent", harness.name, harness.status],
+				perform: () =>
+					navigate({
+						to: "/harnesses/$harnessId",
+						params: { harnessId: harness._id },
+					}),
+			});
+		}
+
+		for (const sandbox of sandboxes ?? []) {
+			list.push({
+				id: `sandbox:open:${sandbox._id}`,
+				title: `Open sandbox: ${sandbox.name}`,
+				subtitle: sandbox.status,
+				group: "sandbox",
+				icon: Package,
+				keywords: ["sandbox", "environment", sandbox.name, sandbox.status],
+				perform: () =>
+					navigate({
+						to: "/sandboxes/$sandboxId",
+						params: { sandboxId: sandbox._id },
+					}),
+			});
+		}
+
+		list.push({
+			id: "account:sign-out",
+			title: "Sign out",
+			group: "account",
+			icon: LogOut,
+			keywords: ["logout", "leave"],
+			perform: async () => {
+				await signOut();
+				navigate({ to: "/sign-in" });
+			},
+		});
+
+		return list;
+	}, [isSignedIn, navigate, signOut, harnesses, sandboxes]);
+
+	useRegisterCommands(commands);
+	return null;
+}
diff --git a/apps/web/src/components/command-palette/commands/workspace-action-commands.ts b/apps/web/src/components/command-palette/commands/workspace-action-commands.ts
new file mode 100644
index 0000000..0dfe44c
--- /dev/null
+++ b/apps/web/src/components/command-palette/commands/workspace-action-commands.ts
@@ -0,0 +1,90 @@
+import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
+import { Edit3, FolderPlus } from "lucide-react";
+import { useEffect, useMemo, useRef } from "react";
+import { useRegisterCommands } from "../../../hooks/use-register-commands";
+import type { Command } from "../../../lib/command-palette/types";
+import { getWorkspaceColorHex } from "../../../lib/workspace-colors";
+
+interface ActiveWorkspace {
+	_id: Id<"workspaces">;
+	name: string;
+	harnessId?: Id<"harnesses">;
+	sandboxId?: Id<"sandboxes">;
+	color?: string;
+}
+
+interface WorkspaceActionCommandsInput {
+	activeWorkspace: ActiveWorkspace | undefined;
+	canCreateWorkspace: boolean;
+	onCreateWorkspace: () => void;
+	onRenameActiveWorkspace: () => void;
+}
+
+export function useWorkspaceActionCommands({
+	activeWorkspace,
+	canCreateWorkspace,
+	onCreateWorkspace,
+	onRenameActiveWorkspace,
+}: WorkspaceActionCommandsInput): void {
+	const activeColor = activeWorkspace
+		? (getWorkspaceColorHex(activeWorkspace.color) ?? undefined)
+		: undefined;
+
+	const commands = useMemo<Command[]>(() => {
+		const list: Command[] = [
+			{
+				id: "workspace:create",
+				title: "Create workspace…",
+				subtitle: "Open the new workspace dialog",
+				group: "workspace",
+				icon: FolderPlus,
+				keywords: ["new", "workspace", "add"],
+				when: () => canCreateWorkspace,
+				perform: onCreateWorkspace,
+			},
+		];
+
+		if (activeWorkspace) {
+			list.push({
+				id: "workspace:rename-active",
+				title: `Rename workspace: ${activeWorkspace.name}`,
+				group: "workspace",
+				icon: Edit3,
+				colorDot: activeColor,
+				shortcut: "⇧⌘R",
+				keywords: ["rename", "edit", "workspace", activeWorkspace.name],
+				perform: onRenameActiveWorkspace,
+			});
+		}
+
+		return list;
+	}, [
+		activeWorkspace,
+		activeColor,
+		canCreateWorkspace,
+		onCreateWorkspace,
+		onRenameActiveWorkspace,
+	]);
+
+	useRegisterCommands(commands);
+
+	// Latest callback in a ref so the keydown effect doesn't rebind on every
+	// render. We need activeWorkspace's presence though, so the effect still
+	// resubscribes when that flips.
+	const renameRef = useRef(onRenameActiveWorkspace);
+	renameRef.current = onRenameActiveWorkspace;
+	const hasActive = !!activeWorkspace;
+
+	useEffect(() => {
+		if (!hasActive) return;
+		const handler = (e: KeyboardEvent) => {
+			if (e.repeat) return;
+			if (!(e.metaKey || e.ctrlKey) || !e.shiftKey) return;
+			if (e.key !== "r" && e.key !== "R") return;
+			e.preventDefault();
+			renameRef.current();
+		};
+		document.addEventListener("keydown", handler);
+		return () => document.removeEventListener("keydown", handler);
+	}, [hasActive]);
+}
diff --git a/apps/web/src/components/command-palette/commands/workspace-switch-commands.ts b/apps/web/src/components/command-palette/commands/workspace-switch-commands.ts
new file mode 100644
index 0000000..37a8e7a
--- /dev/null
+++ b/apps/web/src/components/command-palette/commands/workspace-switch-commands.ts
@@ -0,0 +1,42 @@
+import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
+import { useMemo } from "react";
+import { useRegisterCommands } from "../../../hooks/use-register-commands";
+import type { Command } from "../../../lib/command-palette/types";
+import { formatShortcut } from "../../../lib/platform";
+import { getWorkspaceColorHex } from "../../../lib/workspace-colors";
+
+interface WorkspaceLike {
+	_id: Id<"workspaces">;
+	name: string;
+	color?: string;
+}
+
+/**
+ * Registers one switch-to-<workspace> command per workspace.
+ * Render from inside the /workspaces route where `onSelect` can directly call
+ * `setActiveWorkspaceId`.
+ */
+export function useWorkspaceSwitchCommands(
+	workspaces: ReadonlyArray<WorkspaceLike> | undefined,
+	onSelect: (id: Id<"workspaces">) => void,
+	isMac: boolean,
+): void {
+	const commands = useMemo<Command[]>(() => {
+		if (!workspaces || workspaces.length === 0) return [];
+		return workspaces.map((workspace, index) => {
+			const colorDot = getWorkspaceColorHex(workspace.color) ?? undefined;
+			const shortcut = index < 9 ? formatShortcut(index + 1, isMac) : undefined;
+			return {
+				id: `workspace:switch:${workspace._id}`,
+				title: `Switch to ${workspace.name}`,
+				group: "workspace",
+				keywords: ["workspace", "switch", workspace.name],
+				colorDot,
+				shortcut,
+				perform: () => onSelect(workspace._id),
+			};
+		});
+	}, [workspaces, onSelect, isMac]);
+
+	useRegisterCommands(commands);
+}
diff --git a/apps/web/src/components/harness-creation-assistant.tsx b/apps/web/src/components/harness-creation-assistant.tsx
new file mode 100644
index 0000000..695973a
--- /dev/null
+++ b/apps/web/src/components/harness-creation-assistant.tsx
@@ -0,0 +1,924 @@
+import { useAuth } from "@clerk/tanstack-react-start";
+import { convexQuery, useConvexMutation } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { useMutation, useQuery } from "@tanstack/react-query";
+import { useNavigate } from "@tanstack/react-router";
+import { useConvex } from "convex/react";
+import {
+	ArrowRight,
+	FileText,
+	Lock,
+	Paperclip,
+	ThumbsDown,
+	ThumbsUp,
+	X,
+} from "lucide-react";
+import { useEffect, useRef, useState } from "react";
+import toast from "react-hot-toast";
+import { env } from "../env";
+import { PRESET_MCPS, presetIdsToServerEntries } from "../lib/mcp";
+import { MODELS } from "../lib/models";
+import { MarkdownMessage } from "./markdown-message";
+import { Badge } from "./ui/badge";
+import { Button } from "./ui/button";
+import { Dialog, DialogContent, DialogHeader, DialogTitle } from "./ui/dialog";
+import { Input } from "./ui/input";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "./ui/select";
+import { Textarea } from "./ui/textarea";
+
+const FASTAPI_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
+const CONTEXT_MAX_CHARS = 8000;
+
+const INITIAL_MESSAGE =
+	"Hi! I'll help you set up a harness. What would you like it to help you with?";
+
+interface ChatMessage {
+	id: string;
+	role: "user" | "assistant";
+	content: string;
+}
+
+interface SkillSuggestion {
+	id: string;
+	fullId: string;
+	description: string;
+	installs: number;
+}
+
+interface HarnessConfigPreview {
+	name: string;
+	model: string;
+	mcpIds: string[];
+	skillIds: string[];
+}
+
+type PrefillData = {
+	name?: string;
+	model?: string;
+	selectedPresetMcps?: string[];
+	skills?: { name: string; description: string }[];
+};
+
+interface Props {
+	open: boolean;
+	onOpenChange: (open: boolean) => void;
+	onEditManually?: (prefill: PrefillData) => void;
+}
+
+function stripConfigBlock(content: string): string {
+	return content
+		.replace(/<harness-config>[\s\S]*?<\/harness-config>/, "")
+		.replace(/<harness-config>[\s\S]*$/, "") // strip partial block during streaming
+		.trim();
+}
+
+export function HarnessCreationAssistant({
+	open,
+	onOpenChange,
+	onEditManually,
+}: Props) {
+	const navigate = useNavigate();
+	const { getToken } = useAuth();
+	const convex = useConvex();
+
+	const [messages, setMessages] = useState<ChatMessage[]>([
+		{ id: "init", role: "assistant", content: INITIAL_MESSAGE },
+	]);
+	const [input, setInput] = useState("");
+	const [isStreaming, setIsStreaming] = useState(false);
+	const [streamingContent, setStreamingContent] = useState("");
+	const [harnessConfig, setHarnessConfig] =
+		useState<HarnessConfigPreview | null>(null);
+	const [editedConfig, setEditedConfig] = useState<HarnessConfigPreview>({
+		name: "",
+		model: "claude-sonnet-4.6",
+		mcpIds: [],
+		skillIds: [],
+	});
+	const [availableSkills, setAvailableSkills] = useState<SkillSuggestion[]>([]);
+	const [similarHarness, setSimilarHarness] = useState<{
+		id: string;
+		name: string;
+	} | null>(null);
+	const [configRating, setConfigRating] = useState<"up" | "down" | null>(null);
+
+	// Context pane state
+	const [showContextPane, setShowContextPane] = useState(false);
+	const [pastedContext, setPastedContext] = useState("");
+	const [contextFileName, setContextFileName] = useState<string | null>(null);
+
+	const messagesEndRef = useRef<HTMLDivElement>(null);
+	const inputRef = useRef<HTMLInputElement>(null);
+	const fileInputRef = useRef<HTMLInputElement>(null);
+
+	const { data: existingHarnesses } = useQuery(
+		convexQuery(api.harnesses.list, {}),
+	);
+
+	const createConversation = useMutation({
+		mutationFn: useConvexMutation(api.conversations.create),
+	});
+	const sendMessage = useMutation({
+		mutationFn: useConvexMutation(api.messages.send),
+	});
+	const createHarness = useMutation({
+		mutationFn: useConvexMutation(api.harnesses.create),
+	});
+	const rateConfig = useMutation({
+		mutationFn: useConvexMutation(api.harnessConfigRatings.rate),
+	});
+
+	// Scroll to bottom when messages change
+	// biome-ignore lint/correctness/useExhaustiveDependencies: intentionally re-runs on new messages and streaming content
+	useEffect(() => {
+		messagesEndRef.current?.scrollIntoView({ behavior: "smooth" });
+	}, [messages, streamingContent]);
+
+	// Focus input when dialog opens
+	useEffect(() => {
+		if (open) {
+			setTimeout(() => inputRef.current?.focus(), 50);
+		}
+	}, [open]);
+
+	const handleFileUpload = (e: React.ChangeEvent<HTMLInputElement>) => {
+		const file = e.target.files?.[0];
+		if (!file) return;
+
+		const allowedTypes = ["text/plain", "text/markdown", "application/json"];
+		const allowedExtensions = [".txt", ".md", ".json"];
+		const hasAllowedExtension = allowedExtensions.some((ext) =>
+			file.name.toLowerCase().endsWith(ext),
+		);
+
+		if (!allowedTypes.includes(file.type) && !hasAllowedExtension) {
+			toast.error("Only .txt, .md, and .json files are supported.");
+			e.target.value = "";
+			return;
+		}
+
+		const reader = new FileReader();
+		reader.onload = (event) => {
+			const content = event.target?.result as string;
+			if (content.length > CONTEXT_MAX_CHARS) {
+				setPastedContext(content.slice(0, CONTEXT_MAX_CHARS));
+				toast("File was truncated to 8,000 characters.");
+			} else {
+				setPastedContext(content);
+			}
+			setContextFileName(file.name);
+			setShowContextPane(true);
+		};
+		reader.readAsText(file);
+		e.target.value = "";
+	};
+
+	const handleClearContext = () => {
+		setPastedContext("");
+		setContextFileName(null);
+		setShowContextPane(false);
+	};
+
+	const handleSend = async () => {
+		if (!input.trim() || isStreaming) return;
+		const userText = input.trim();
+		setInput("");
+		inputRef.current?.focus();
+
+		const updatedMessages: ChatMessage[] = [
+			...messages,
+			{ id: `user-${Date.now()}`, role: "user", content: userText },
+		];
+		setMessages(updatedMessages);
+		setIsStreaming(true);
+		setStreamingContent("");
+
+		// Capture context for this send, then clear it
+		const contextForThisSend = pastedContext.trim() || null;
+		if (contextForThisSend) {
+			handleClearContext();
+		}
+
+		// On first user message, fetch relevant skills from Convex
+		let skillsForThisSend = availableSkills;
+		if (availableSkills.length === 0) {
+			try {
+				const fetched = await convex.query(
+					api.skills.searchForCreationAssistant,
+					{ query: userText },
+				);
+				skillsForThisSend = fetched;
+				setAvailableSkills(fetched);
+			} catch {
+				// Non-fatal — proceed without skills
+			}
+		}
+
+		try {
+			// Stream suggestion from FastAPI
+			const token = await getToken();
+			const response = await fetch(
+				`${FASTAPI_URL}/api/harness/suggest/stream`,
+				{
+					method: "POST",
+					headers: {
+						"Content-Type": "application/json",
+						...(token ? { Authorization: `Bearer ${token}` } : {}),
+					},
+					body: JSON.stringify({
+						messages: updatedMessages.map((m) => ({
+							role: m.role,
+							content: m.content,
+						})),
+						context: contextForThisSend,
+						available_skills:
+							skillsForThisSend.length > 0 ? skillsForThisSend : null,
+					}),
+				},
+			);
+
+			if (!response.ok || !response.body) {
+				throw new Error(`Request failed: ${response.status}`);
+			}
+
+			const reader = response.body.getReader();
+			const decoder = new TextDecoder();
+			let buffer = "";
+			let currentEvent = "";
+			let fullContent = "";
+
+			while (true) {
+				const { done, value } = await reader.read();
+				if (done) break;
+
+				buffer += decoder.decode(value, { stream: true });
+				const lines = buffer.split("\n");
+				buffer = lines.pop() ?? "";
+
+				for (const line of lines) {
+					if (line.startsWith("event: ")) {
+						currentEvent = line.slice(7).trim();
+						continue;
+					}
+					if (line.startsWith("data: ")) {
+						try {
+							const data = JSON.parse(line.slice(6));
+							if (currentEvent === "token" && data.content) {
+								fullContent += data.content;
+								setStreamingContent(fullContent);
+							}
+						} catch {
+							// skip malformed chunks
+						}
+						currentEvent = "";
+					}
+				}
+			}
+
+			// Extract <harness-config> block from complete response
+			const configMatch = fullContent.match(
+				/<harness-config>([\s\S]*?)<\/harness-config>/,
+			);
+			let displayContent = stripConfigBlock(fullContent);
+
+			if (configMatch) {
+				try {
+					const config = JSON.parse(
+						configMatch[1].trim(),
+					) as HarnessConfigPreview;
+
+					const validMcpIds = new Set(PRESET_MCPS.map((p) => p.id));
+					const filteredMcpIds = (config.mcpIds ?? []).filter((id) =>
+						validMcpIds.has(id),
+					);
+					if (filteredMcpIds.length < (config.mcpIds ?? []).length) {
+						toast(
+							"Some suggested integrations aren't available and were removed.",
+						);
+					}
+
+					const validSkillIds = new Set(skillsForThisSend.map((s) => s.id));
+					const filteredSkillIds = (config.skillIds ?? []).filter((id) =>
+						validSkillIds.has(id),
+					);
+
+					const validated: HarnessConfigPreview = {
+						...config,
+						mcpIds: filteredMcpIds,
+						skillIds: filteredSkillIds,
+					};
+					setHarnessConfig(validated);
+					setEditedConfig(validated);
+				} catch {
+					// Config block was malformed — show the full response as-is
+					displayContent = fullContent;
+				}
+			}
+
+			setMessages((prev) => [
+				...prev,
+				{
+					id: `asst-${Date.now()}`,
+					role: "assistant",
+					content: displayContent,
+				},
+			]);
+		} catch {
+			toast.error("Something went wrong. Please try again.");
+			setMessages((prev) => [
+				...prev,
+				{
+					id: `asst-err-${Date.now()}`,
+					role: "assistant",
+					content: "Sorry, I ran into an error. Please try again.",
+				},
+			]);
+		} finally {
+			setIsStreaming(false);
+			setStreamingContent("");
+			setTimeout(() => inputRef.current?.focus(), 0);
+		}
+	};
+
+	const handleCreate = async (skipDuplicateCheck = false) => {
+		if (!skipDuplicateCheck) {
+			const configUrls = new Set(
+				presetIdsToServerEntries(editedConfig.mcpIds).map((s) => s.url),
+			);
+			const configSkillNames = new Set(
+				editedConfig.skillIds
+					.map((id) => availableSkills.find((s) => s.id === id)?.fullId)
+					.filter((n): n is string => n !== undefined),
+			);
+
+			const match = (existingHarnesses ?? []).find((h) => {
+				// Model must match
+				if (h.model !== editedConfig.model) return false;
+
+				// MCPs must match (compare by server URL)
+				const harnessUrls = new Set(h.mcpServers.map((s) => s.url));
+				if (harnessUrls.size !== configUrls.size) return false;
+				for (const url of configUrls) {
+					if (!harnessUrls.has(url)) return false;
+				}
+
+				// Skills must match (compare by fullId / name)
+				const harnessSkillNames = new Set(h.skills.map((s) => s.name));
+				if (harnessSkillNames.size !== configSkillNames.size) return false;
+				for (const name of configSkillNames) {
+					if (!harnessSkillNames.has(name)) return false;
+				}
+
+				return true;
+			});
+			if (match) {
+				setSimilarHarness({ id: match._id, name: match.name });
+				return;
+			}
+		}
+
+		const mcpServers = presetIdsToServerEntries(editedConfig.mcpIds);
+		const skills = editedConfig.skillIds
+			.map((id) => {
+				const skill = availableSkills.find((s) => s.id === id);
+				return skill
+					? { name: skill.fullId, description: skill.description }
+					: null;
+			})
+			.filter((s): s is { name: string; description: string } => s !== null);
+
+		try {
+			const harnessId = await createHarness.mutateAsync({
+				name: editedConfig.name,
+				model: editedConfig.model,
+				status: "started",
+				mcpServers,
+				skills,
+			});
+
+			// Save conversation + all messages now that a harness was created
+			const convoId = await createConversation.mutateAsync({
+				title: "Harness Setup",
+				harnessId,
+			});
+			for (const msg of messages) {
+				await sendMessage.mutateAsync({
+					conversationId: convoId,
+					role: msg.role,
+					content: msg.content,
+				});
+			}
+
+			onOpenChange(false);
+			navigate({ to: "/chat", search: { harnessId: harnessId as string } });
+		} catch {
+			toast.error("Failed to create harness. Please try again.");
+		}
+	};
+
+	const handleEditManually = () => {
+		const skillsForPrefill = editedConfig.skillIds
+			.map((id) => {
+				const skill = availableSkills.find((s) => s.id === id);
+				return skill
+					? { name: skill.fullId, description: skill.description }
+					: null;
+			})
+			.filter((s): s is { name: string; description: string } => s !== null);
+
+		const prefill: PrefillData = {
+			name: editedConfig.name,
+			model: editedConfig.model,
+			selectedPresetMcps: editedConfig.mcpIds,
+			skills: skillsForPrefill,
+		};
+
+		if (onEditManually) {
+			onEditManually(prefill);
+			onOpenChange(false);
+			return;
+		}
+
+		sessionStorage.setItem("harness-prefill", JSON.stringify(prefill));
+		onOpenChange(false);
+		navigate({ to: "/onboarding" });
+	};
+
+	const handleRate = async (rating: "up" | "down") => {
+		if (!harnessConfig || configRating !== null) return;
+		setConfigRating(rating);
+		try {
+			await rateConfig.mutateAsync({
+				rating,
+				configSnapshot: {
+					name: harnessConfig.name,
+					model: harnessConfig.model,
+					mcpIds: harnessConfig.mcpIds,
+				},
+				conversationSnapshot: messages.map((m) => ({
+					role: m.role,
+					content: m.content,
+				})),
+			});
+		} catch {
+			setConfigRating(null);
+			toast.error("Failed to save rating.");
+		}
+	};
+
+	const handleToggleMcp = (id: string) => {
+		setSimilarHarness(null);
+		setEditedConfig((prev) => ({
+			...prev,
+			mcpIds: prev.mcpIds.includes(id)
+				? prev.mcpIds.filter((m) => m !== id)
+				: [...prev.mcpIds, id],
+		}));
+	};
+
+	const handleOpenChange = (nextOpen: boolean) => {
+		if (!nextOpen) {
+			setMessages([
+				{ id: "init", role: "assistant", content: INITIAL_MESSAGE },
+			]);
+			setInput("");
+			setIsStreaming(false);
+			setStreamingContent("");
+			setHarnessConfig(null);
+			setEditedConfig({
+				name: "",
+				model: "claude-sonnet-4.6",
+				mcpIds: [],
+				skillIds: [],
+			});
+			setAvailableSkills([]);
+			setSimilarHarness(null);
+			setConfigRating(null);
+			setPastedContext("");
+			setContextFileName(null);
+			setShowContextPane(false);
+		}
+		onOpenChange(nextOpen);
+	};
+
+	const authRequiredMcps = editedConfig.mcpIds.filter((id) => {
+		const preset = PRESET_MCPS.find((p) => p.id === id);
+		return preset && preset.server.authType !== "none";
+	});
+
+	const contextCharCount = pastedContext.length;
+	const contextOverLimit = contextCharCount > CONTEXT_MAX_CHARS;
+
+	return (
+		<Dialog open={open} onOpenChange={handleOpenChange}>
+			<DialogContent className="flex max-h-[92vh] max-w-lg flex-col gap-0 overflow-hidden p-0">
+				<DialogHeader className="shrink-0 border-b px-5 py-4">
+					<DialogTitle className="text-sm font-medium">
+						Create with AI
+					</DialogTitle>
+				</DialogHeader>
+
+				{/* Message list */}
+				<div className="flex-1 overflow-y-auto p-4 space-y-3 min-h-[120px]">
+					{messages.map((msg) => (
+						<div
+							key={msg.id}
+							className={`flex ${msg.role === "user" ? "justify-end" : "justify-start"}`}
+						>
+							{msg.role === "user" ? (
+								<div className="max-w-[85%] rounded px-3 py-2 text-sm leading-relaxed bg-foreground text-background">
+									{msg.content}
+								</div>
+							) : (
+								<div className="max-w-[85%] text-sm text-foreground">
+									<MarkdownMessage content={msg.content} />
+								</div>
+							)}
+						</div>
+					))}
+
+					{/* Streaming response */}
+					{isStreaming && (
+						<div className="flex justify-start">
+							<div className="max-w-[85%] text-sm text-foreground">
+								{streamingContent ? (
+									(() => {
+										const stripped = stripConfigBlock(streamingContent);
+										return stripped ? (
+											<MarkdownMessage content={stripped} />
+										) : (
+											<span className="text-muted-foreground">…</span>
+										);
+									})()
+								) : (
+									<span className="text-muted-foreground text-xs">
+										Thinking…
+									</span>
+								)}
+							</div>
+						</div>
+					)}
+
+					<div ref={messagesEndRef} />
+				</div>
+
+				{/* Config preview (shown after AI produces a config) */}
+				{harnessConfig && (
+					<div className="shrink-0 border-t bg-background p-4 space-y-3 max-h-[45vh] overflow-y-auto">
+						<p className="text-xs font-medium text-foreground">
+							Review your harness
+						</p>
+
+						<div className="space-y-2">
+							{/* Name */}
+							<div className="space-y-1">
+								<label
+									htmlFor="creation-name"
+									className="text-[11px] text-muted-foreground"
+								>
+									Name
+								</label>
+								<Input
+									id="creation-name"
+									value={editedConfig.name}
+									onChange={(e) =>
+										setEditedConfig((p) => ({ ...p, name: e.target.value }))
+									}
+									className="h-7 text-xs"
+								/>
+							</div>
+
+							{/* Model */}
+							<div className="space-y-1">
+								<p className="text-[11px] text-muted-foreground">Model</p>
+								<Select
+									value={editedConfig.model}
+									onValueChange={(v) =>
+										setEditedConfig((p) => ({ ...p, model: v }))
+									}
+								>
+									<SelectTrigger className="h-7 text-xs">
+										<SelectValue />
+									</SelectTrigger>
+									<SelectContent>
+										{MODELS.map((m) => (
+											<SelectItem
+												key={m.value}
+												value={m.value}
+												className="text-xs"
+											>
+												{m.label}
+											</SelectItem>
+										))}
+									</SelectContent>
+								</Select>
+							</div>
+
+							{/* MCP chips */}
+							{editedConfig.mcpIds.length > 0 && (
+								<div className="space-y-1">
+									<p className="text-[11px] text-muted-foreground">
+										Integrations
+									</p>
+									<div className="flex flex-wrap gap-1.5">
+										{editedConfig.mcpIds.map((id) => {
+											const preset = PRESET_MCPS.find((p) => p.id === id);
+											if (!preset) return null;
+											const needsAuth = preset.server.authType !== "none";
+											return (
+												<Badge
+													key={id}
+													variant="outline"
+													className="flex items-center gap-1 pr-1 text-xs"
+												>
+													{needsAuth && (
+														<Lock
+															size={9}
+															className="shrink-0 text-muted-foreground"
+														/>
+													)}
+													{preset.server.name}
+													<button
+														type="button"
+														onClick={() => handleToggleMcp(id)}
+														className="ml-0.5 text-muted-foreground hover:text-foreground"
+													>
+														<X size={9} />
+													</button>
+												</Badge>
+											);
+										})}
+									</div>
+									{authRequiredMcps.length > 0 && (
+										<p className="text-[10px] text-muted-foreground">
+											Integrations with <Lock size={8} className="inline" />{" "}
+											require sign-in after creation.
+										</p>
+									)}
+								</div>
+							)}
+						</div>
+
+						{/* Skills chips */}
+						{editedConfig.skillIds.length > 0 && (
+							<div className="space-y-1">
+								<p className="text-[11px] text-muted-foreground">Skills</p>
+								<div className="flex flex-wrap gap-1.5">
+									{editedConfig.skillIds.map((id) => {
+										const skill = availableSkills.find((s) => s.id === id);
+										return (
+											<Badge
+												key={id}
+												variant="outline"
+												className="flex items-center gap-1 pr-1 text-xs"
+												title={skill?.description ?? id}
+											>
+												{id.split("/").pop() ?? id}
+												<button
+													type="button"
+													onClick={() =>
+														setEditedConfig((prev) => ({
+															...prev,
+															skillIds: prev.skillIds.filter((s) => s !== id),
+														}))
+													}
+													className="ml-0.5 text-muted-foreground hover:text-foreground"
+												>
+													<X size={9} />
+												</button>
+											</Badge>
+										);
+									})}
+								</div>
+							</div>
+						)}
+
+						{/* Config rating */}
+						<div className="flex items-center justify-between pt-1">
+							<p className="text-[10px] text-muted-foreground">
+								Was this suggestion helpful?
+							</p>
+							<div className="flex items-center gap-1">
+								<button
+									type="button"
+									onClick={() => handleRate("up")}
+									disabled={configRating !== null}
+									className={`flex h-6 w-6 items-center justify-center rounded transition-colors ${
+										configRating === "up"
+											? "text-green-600"
+											: configRating !== null
+												? "cursor-default text-muted-foreground/40"
+												: "text-muted-foreground hover:text-green-600"
+									}`}
+									title="Good suggestion"
+								>
+									<ThumbsUp size={12} />
+								</button>
+								<button
+									type="button"
+									onClick={() => handleRate("down")}
+									disabled={configRating !== null}
+									className={`flex h-6 w-6 items-center justify-center rounded transition-colors ${
+										configRating === "down"
+											? "text-red-500"
+											: configRating !== null
+												? "cursor-default text-muted-foreground/40"
+												: "text-muted-foreground hover:text-red-500"
+									}`}
+									title="Bad suggestion"
+								>
+									<ThumbsDown size={12} />
+								</button>
+							</div>
+						</div>
+
+						{/* Duplicate harness warning */}
+						{similarHarness && (
+							<div className="rounded border border-yellow-200 bg-yellow-50 dark:border-yellow-900 dark:bg-yellow-950 p-2.5 space-y-2">
+								<p className="text-xs text-yellow-800 dark:text-yellow-200">
+									You already have a similar harness:{" "}
+									<span className="font-medium">{similarHarness.name}</span>
+								</p>
+								<div className="flex gap-2">
+									<Button
+										size="sm"
+										variant="outline"
+										onClick={() => {
+											onOpenChange(false);
+											navigate({
+												to: "/chat",
+												search: { harnessId: similarHarness.id },
+											});
+										}}
+										className="flex-1 text-xs"
+									>
+										Go to existing
+									</Button>
+									<Button
+										size="sm"
+										onClick={() => handleCreate(true)}
+										disabled={
+											createHarness.isPending || !editedConfig.name.trim()
+										}
+										className="flex-1 text-xs"
+									>
+										{createHarness.isPending ? "Creating…" : "Create anyway"}
+									</Button>
+								</div>
+							</div>
+						)}
+
+						{/* Action buttons */}
+						{!similarHarness && (
+							<div className="flex gap-2 pt-1">
+								<Button
+									size="sm"
+									onClick={() => handleCreate()}
+									disabled={
+										!editedConfig.name.trim() || createHarness.isPending
+									}
+									className="flex-1 text-xs"
+								>
+									{createHarness.isPending ? "Creating…" : "Create Harness"}
+									{!createHarness.isPending && <ArrowRight size={12} />}
+								</Button>
+								<Button
+									size="sm"
+									variant="outline"
+									onClick={handleEditManually}
+									className="text-xs"
+								>
+									Edit manually
+								</Button>
+							</div>
+						)}
+					</div>
+				)}
+
+				{/* Context pane */}
+				{showContextPane && (
+					<div className="shrink-0 border-t bg-muted/30 p-3 space-y-2">
+						<div className="flex items-center justify-between">
+							<div className="flex items-center gap-1.5">
+								<FileText size={11} className="text-muted-foreground" />
+								<span className="text-[11px] font-medium text-foreground">
+									{contextFileName ? contextFileName : "Context"}
+								</span>
+								<span
+									className={`text-[10px] ${contextOverLimit ? "text-destructive" : "text-muted-foreground"}`}
+								>
+									{contextCharCount}/{CONTEXT_MAX_CHARS}
+								</span>
+							</div>
+							<button
+								type="button"
+								onClick={handleClearContext}
+								className="text-muted-foreground hover:text-foreground"
+							>
+								<X size={11} />
+							</button>
+						</div>
+						<Textarea
+							value={pastedContext}
+							onChange={(e) => {
+								setPastedContext(e.target.value);
+								if (contextFileName) setContextFileName(null);
+							}}
+							placeholder="Paste a document, job description, README, or any relevant context…"
+							className="min-h-[80px] max-h-[160px] resize-none text-xs"
+						/>
+					</div>
+				)}
+
+				{/* Hidden file input */}
+				<input
+					ref={fileInputRef}
+					type="file"
+					accept=".txt,.md,.json"
+					className="hidden"
+					onChange={handleFileUpload}
+				/>
+
+				{/* Input bar */}
+				<div className="shrink-0 border-t p-3">
+					<div className="flex gap-2">
+						<button
+							type="button"
+							onClick={() => {
+								if (showContextPane) {
+									handleClearContext();
+								} else {
+									setShowContextPane(true);
+									setTimeout(() => inputRef.current?.focus(), 50);
+								}
+							}}
+							className={`flex h-8 w-8 shrink-0 items-center justify-center rounded border text-muted-foreground transition-colors hover:text-foreground ${
+								showContextPane
+									? "border-foreground/30 bg-muted text-foreground"
+									: "border-transparent"
+							}`}
+							title={showContextPane ? "Hide context" : "Add context"}
+						>
+							<Paperclip size={13} />
+						</button>
+						<button
+							type="button"
+							onClick={() => fileInputRef.current?.click()}
+							className="flex h-8 w-8 shrink-0 items-center justify-center rounded border border-transparent text-muted-foreground transition-colors hover:text-foreground"
+							title="Upload a file"
+						>
+							<FileText size={13} />
+						</button>
+						<Input
+							ref={inputRef}
+							value={input}
+							onChange={(e) => setInput(e.target.value)}
+							onKeyDown={(e) => {
+								if (e.key === "Enter" && !e.shiftKey) {
+									e.preventDefault();
+									handleSend();
+								}
+							}}
+							placeholder={
+								harnessConfig
+									? "Refine your harness…"
+									: "Describe what you want…"
+							}
+							className="h-8 text-xs"
+							disabled={isStreaming}
+						/>
+						<Button
+							size="sm"
+							onClick={handleSend}
+							disabled={!input.trim() || isStreaming || contextOverLimit}
+							className="h-8 px-3 text-xs"
+						>
+							Send
+						</Button>
+					</div>
+					{pastedContext && !showContextPane && (
+						<div className="mt-1.5 flex items-center gap-1">
+							<FileText size={10} className="text-muted-foreground" />
+							<span className="text-[10px] text-muted-foreground">
+								Context attached
+							</span>
+							<button
+								type="button"
+								onClick={handleClearContext}
+								className="text-[10px] text-muted-foreground underline hover:text-foreground"
+							>
+								Remove
+							</button>
+						</div>
+					)}
+				</div>
+			</DialogContent>
+		</Dialog>
+	);
+}
diff --git a/apps/web/src/components/header-skills-menu.test.tsx b/apps/web/src/components/header-skills-menu.test.tsx
new file mode 100644
index 0000000..d5bbabc
--- /dev/null
+++ b/apps/web/src/components/header-skills-menu.test.tsx
@@ -0,0 +1,113 @@
+import { fireEvent, render, screen } from "@testing-library/react";
+import type { ReactNode } from "react";
+import { describe, expect, it, vi } from "vitest";
+
+// HeaderSkillsMenu pulls in SkillsBrowser / SkillViewerDialog, which in turn
+// import from @convex-dev/react-query + @tanstack/react-query. We don't need
+// those child surfaces for these tests — stub them.
+vi.mock("@convex-dev/react-query", () => ({
+	convexQuery: () => ({}),
+	useConvexAction: () => vi.fn(),
+}));
+vi.mock("@tanstack/react-query", () => ({
+	useQuery: () => ({ data: undefined }),
+	keepPreviousData: {},
+}));
+vi.mock("@harness/convex-backend/convex/_generated/api", () => ({
+	api: { skills: { ensureSkillDetails: "skills:ensureSkillDetails" } },
+}));
+vi.mock("motion/react", () => ({
+	AnimatePresence: ({ children }: { children: unknown }) => children,
+	motion: new Proxy(
+		{},
+		{
+			get:
+				() =>
+				({
+					children,
+					...rest
+				}: { children?: unknown } & Record<string, unknown>) => (
+					<div {...(rest as Record<string, unknown>)}>{children as never}</div>
+				),
+		},
+	),
+}));
+
+import type { SkillEntry } from "../lib/skills";
+import { HeaderSkillsMenu } from "./header-skills-menu";
+import { TooltipProvider } from "./ui/tooltip";
+
+const skillA: SkillEntry = { name: "group/a" } as SkillEntry;
+const skillB: SkillEntry = { name: "group/b" } as SkillEntry;
+
+const renderWithProviders = (ui: ReactNode) =>
+	render(<TooltipProvider>{ui}</TooltipProvider>);
+
+describe("HeaderSkillsMenu", () => {
+	it("shows 'Add skills' when no skills are attached", () => {
+		renderWithProviders(
+			<HeaderSkillsMenu skills={[]} onAdd={() => {}} onRemove={() => {}} />,
+		);
+		expect(screen.getByText("Add skills")).toBeInTheDocument();
+	});
+
+	it("shows a pluralized count with multiple skills", () => {
+		renderWithProviders(
+			<HeaderSkillsMenu
+				skills={[skillA, skillB]}
+				onAdd={() => {}}
+				onRemove={() => {}}
+			/>,
+		);
+		expect(screen.getByText("2 Skills")).toBeInTheDocument();
+	});
+
+	it("shows singular '1 Skill' with exactly one", () => {
+		renderWithProviders(
+			<HeaderSkillsMenu
+				skills={[skillA]}
+				onAdd={() => {}}
+				onRemove={() => {}}
+			/>,
+		);
+		expect(screen.getByText("1 Skill")).toBeInTheDocument();
+	});
+
+	it("opens the menu and displays attached skills on trigger click", () => {
+		renderWithProviders(
+			<HeaderSkillsMenu
+				skills={[skillA]}
+				onAdd={() => {}}
+				onRemove={() => {}}
+			/>,
+		);
+		fireEvent.click(screen.getByText("1 Skill"));
+		// The short name (after the last '/') is rendered in the menu.
+		expect(screen.getByText("a")).toBeInTheDocument();
+		expect(
+			screen.getByRole("button", { name: /Remove group\/a/ }),
+		).toBeInTheDocument();
+	});
+
+	it("invokes onRemove when the X button is clicked in the menu", () => {
+		const onRemove = vi.fn();
+		renderWithProviders(
+			<HeaderSkillsMenu
+				skills={[skillA]}
+				onAdd={() => {}}
+				onRemove={onRemove}
+			/>,
+		);
+		fireEvent.click(screen.getByText("1 Skill"));
+		fireEvent.click(screen.getByRole("button", { name: /Remove group\/a/ }));
+		expect(onRemove).toHaveBeenCalledWith(skillA);
+	});
+
+	it("renders an empty-state message when opened with no skills", () => {
+		renderWithProviders(
+			<HeaderSkillsMenu skills={[]} onAdd={() => {}} onRemove={() => {}} />,
+		);
+		fireEvent.click(screen.getByText("Add skills"));
+		expect(screen.getByText("No skills attached yet.")).toBeInTheDocument();
+	});
+});
diff --git a/apps/web/src/components/header-skills-menu.tsx b/apps/web/src/components/header-skills-menu.tsx
new file mode 100644
index 0000000..0abfcc0
--- /dev/null
+++ b/apps/web/src/components/header-skills-menu.tsx
@@ -0,0 +1,148 @@
+import { Eye, Plus, X, Zap } from "lucide-react";
+import { AnimatePresence, motion } from "motion/react";
+import { useEffect, useRef, useState } from "react";
+import type { SkillEntry } from "../lib/skills";
+import { SkillViewerDialog } from "./skill-viewer-dialog";
+import { SkillsBrowser } from "./skills-browser";
+import { Dialog, DialogContent, DialogHeader, DialogTitle } from "./ui/dialog";
+import { Tooltip, TooltipContent, TooltipTrigger } from "./ui/tooltip";
+
+interface HeaderSkillsMenuProps {
+	skills: SkillEntry[];
+	onAdd: (skill: SkillEntry) => void;
+	onRemove: (skill: SkillEntry) => void;
+}
+
+export function HeaderSkillsMenu({
+	skills,
+	onAdd,
+	onRemove,
+}: HeaderSkillsMenuProps) {
+	const [open, setOpen] = useState(false);
+	const [viewingSkillId, setViewingSkillId] = useState<string | null>(null);
+	const [browseOpen, setBrowseOpen] = useState(false);
+	const ref = useRef<HTMLDivElement>(null);
+
+	useEffect(() => {
+		if (!open) return;
+		const handler = (e: MouseEvent) => {
+			if (viewingSkillId || browseOpen) return;
+			if (ref.current && !ref.current.contains(e.target as Node)) {
+				setOpen(false);
+			}
+		};
+		document.addEventListener("mousedown", handler);
+		return () => document.removeEventListener("mousedown", handler);
+	}, [open, viewingSkillId, browseOpen]);
+
+	const hasSkills = skills.length > 0;
+
+	return (
+		<div ref={ref} className="relative">
+			<Tooltip>
+				<TooltipTrigger asChild>
+					<button
+						type="button"
+						onClick={() => setOpen((prev) => !prev)}
+						className="flex items-center gap-1.5 rounded-sm px-1.5 py-1 text-[10px] font-medium text-muted-foreground transition-colors hover:bg-muted hover:text-foreground"
+					>
+						<Zap size={10} />
+						{hasSkills
+							? `${skills.length} Skill${skills.length !== 1 ? "s" : ""}`
+							: "Add skills"}
+					</button>
+				</TooltipTrigger>
+				<TooltipContent>
+					{hasSkills ? "Manage skills" : "Add skills to this harness"}
+				</TooltipContent>
+			</Tooltip>
+
+			<AnimatePresence>
+				{open && (
+					<motion.div
+						initial={{ opacity: 0, y: -4, scale: 0.97 }}
+						animate={{ opacity: 1, y: 0, scale: 1 }}
+						exit={{ opacity: 0, y: -4, scale: 0.97 }}
+						transition={{ duration: 0.15 }}
+						className="absolute left-0 top-full z-50 mt-1 w-64 border border-border bg-background shadow-lg"
+					>
+						<div className="border-b border-border px-3 py-2">
+							<span className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+								Skills
+							</span>
+						</div>
+						<div className="max-h-48 overflow-y-auto py-1">
+							{hasSkills ? (
+								skills.map((skill) => (
+									<div
+										key={skill.name}
+										className="group flex items-center gap-2 px-3 py-1.5 hover:bg-muted/40"
+									>
+										<Zap size={10} className="shrink-0 text-muted-foreground" />
+										<span className="min-w-0 flex-1 truncate text-xs font-medium">
+											{skill.name.split("/").pop() ?? skill.name}
+										</span>
+										<button
+											type="button"
+											onClick={() => setViewingSkillId(skill.name)}
+											className="shrink-0 text-muted-foreground/40 transition-colors hover:text-foreground"
+											aria-label={`View ${skill.name}`}
+										>
+											<Eye size={12} />
+										</button>
+										<button
+											type="button"
+											onClick={() => onRemove(skill)}
+											className="shrink-0 text-muted-foreground/40 transition-colors hover:text-red-500"
+											aria-label={`Remove ${skill.name}`}
+										>
+											<X size={12} />
+										</button>
+									</div>
+								))
+							) : (
+								<p className="px-3 py-2 text-[11px] text-muted-foreground">
+									No skills attached yet.
+								</p>
+							)}
+						</div>
+						<button
+							type="button"
+							onClick={() => {
+								setOpen(false);
+								setBrowseOpen(true);
+							}}
+							className="flex w-full items-center gap-2 border-t border-border px-3 py-2 text-left text-xs font-medium text-foreground transition-colors hover:bg-muted"
+						>
+							<Plus size={12} />
+							Browse skills…
+						</button>
+					</motion.div>
+				)}
+			</AnimatePresence>
+
+			<SkillViewerDialog
+				fullId={viewingSkillId}
+				onClose={() => setViewingSkillId(null)}
+			/>
+
+			<Dialog open={browseOpen} onOpenChange={setBrowseOpen}>
+				<DialogContent className="flex max-h-[85vh] max-w-2xl flex-col overflow-hidden">
+					<DialogHeader>
+						<DialogTitle>Manage skills</DialogTitle>
+					</DialogHeader>
+					<div className="min-h-0 flex-1 overflow-y-auto overflow-x-hidden">
+						<SkillsBrowser
+							currentSkills={skills}
+							onToggle={(skill) => {
+								const exists = skills.some((s) => s.name === skill.name);
+								if (exists) onRemove(skill);
+								else onAdd(skill);
+							}}
+						/>
+					</div>
+				</DialogContent>
+			</Dialog>
+		</div>
+	);
+}
diff --git a/apps/web/src/components/mcp-oauth-connect-row.tsx b/apps/web/src/components/mcp-oauth-connect-row.tsx
index 57e6f97..f5bc3ac 100644
--- a/apps/web/src/components/mcp-oauth-connect-row.tsx
+++ b/apps/web/src/components/mcp-oauth-connect-row.tsx
@@ -1,10 +1,11 @@
 import { useAuth } from "@clerk/tanstack-react-start";
-import { Loader2, Server, Shield } from "lucide-react";
+import { Server, Shield } from "lucide-react";
 import { motion } from "motion/react";
 import { useCallback, useEffect, useRef, useState } from "react";
 import toast from "react-hot-toast";
 import { env } from "../env";
 import type { McpServerEntry } from "../lib/mcp";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
 import { Badge } from "./ui/badge";
 import { Button } from "./ui/button";
 
@@ -111,11 +112,7 @@ export function OAuthConnectRow({
 					onClick={handleConnect}
 					disabled={connecting}
 				>
-					{connecting ? (
-						<Loader2 size={10} className="animate-spin" />
-					) : (
-						<Shield size={10} />
-					)}
+					{connecting ? <RoseCurveSpinner size={10} /> : <Shield size={10} />}
 					Connect
 				</Button>
 			)}
diff --git a/apps/web/src/components/mcp-server-status.test.ts b/apps/web/src/components/mcp-server-status.test.ts
new file mode 100644
index 0000000..7100f1a
--- /dev/null
+++ b/apps/web/src/components/mcp-server-status.test.ts
@@ -0,0 +1,72 @@
+import { describe, expect, it, vi } from "vitest";
+
+// The module pulls in Clerk + convex query hooks at import time; mock the
+// heavier deps so the pure helper can be imported in isolation.
+vi.mock("@clerk/tanstack-react-start", () => ({
+	useAuth: () => ({ getToken: async () => null }),
+}));
+vi.mock("@convex-dev/react-query", () => ({
+	convexQuery: () => ({}),
+}));
+vi.mock("@tanstack/react-query", () => ({
+	useQuery: () => ({ data: undefined }),
+}));
+vi.mock("react-hot-toast", () => ({
+	default: { error: vi.fn(), success: vi.fn() },
+}));
+vi.mock("motion/react", () => ({
+	AnimatePresence: ({ children }: { children: unknown }) => children,
+	motion: new Proxy({}, { get: () => (props: unknown) => props }),
+}));
+
+import { parseAuthRequiredError } from "./mcp-server-status";
+
+describe("parseAuthRequiredError", () => {
+	it("returns { serverUrl, error } for an auth_required JSON payload", () => {
+		const payload = JSON.stringify({
+			auth_required: true,
+			server_url: "https://mcp.example.com",
+			error: "token expired",
+		});
+		expect(parseAuthRequiredError(payload)).toEqual({
+			serverUrl: "https://mcp.example.com",
+			error: "token expired",
+		});
+	});
+
+	it("defaults error to empty string when not provided", () => {
+		const payload = JSON.stringify({
+			auth_required: true,
+			server_url: "https://mcp.example.com",
+		});
+		expect(parseAuthRequiredError(payload)).toEqual({
+			serverUrl: "https://mcp.example.com",
+			error: "",
+		});
+	});
+
+	it("returns null when auth_required is false", () => {
+		const payload = JSON.stringify({
+			auth_required: false,
+			server_url: "https://mcp.example.com",
+		});
+		expect(parseAuthRequiredError(payload)).toBeNull();
+	});
+
+	it("returns null when server_url is missing", () => {
+		const payload = JSON.stringify({ auth_required: true });
+		expect(parseAuthRequiredError(payload)).toBeNull();
+	});
+
+	it("returns null for non-JSON input", () => {
+		expect(parseAuthRequiredError("not json")).toBeNull();
+	});
+
+	it("returns null for JSON with unrelated shape", () => {
+		expect(parseAuthRequiredError(JSON.stringify({ ok: true }))).toBeNull();
+	});
+
+	it("returns null for an empty string", () => {
+		expect(parseAuthRequiredError("")).toBeNull();
+	});
+});
diff --git a/apps/web/src/components/mcp-server-status.tsx b/apps/web/src/components/mcp-server-status.tsx
index b348bdc..eeb261b 100644
--- a/apps/web/src/components/mcp-server-status.tsx
+++ b/apps/web/src/components/mcp-server-status.tsx
@@ -1,14 +1,42 @@
 import { useAuth } from "@clerk/tanstack-react-start";
-import { convexQuery } from "@convex-dev/react-query";
+import { convexQuery, useConvexMutation } from "@convex-dev/react-query";
 import { api } from "@harness/convex-backend/convex/_generated/api";
-import { useQuery } from "@tanstack/react-query";
-import { AlertTriangle, Loader2, Server, Shield } from "lucide-react";
+import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
+import { useMutation, useQuery } from "@tanstack/react-query";
+import {
+	AlertTriangle,
+	ArrowLeft,
+	Eye,
+	EyeOff,
+	GraduationCap,
+	Plus,
+	Server,
+	Shield,
+	Trash2,
+} from "lucide-react";
 import { AnimatePresence, motion } from "motion/react";
-import { useCallback, useEffect, useRef, useState } from "react";
+import { useCallback, useEffect, useMemo, useRef, useState } from "react";
 import toast from "react-hot-toast";
 import { env } from "../env";
+import {
+	fetchCommandsFromApi,
+	type McpAuthType,
+	type McpServerEntry,
+	PRESET_MCPS,
+	sanitizeServerName,
+	validateMcpUrl,
+} from "../lib/mcp";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
 import { Badge } from "./ui/badge";
 import { Button } from "./ui/button";
+import { Input } from "./ui/input";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "./ui/select";
 import { Tooltip, TooltipContent, TooltipTrigger } from "./ui/tooltip";
 
 const API_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
@@ -97,7 +125,12 @@ export type HealthStatus =
 	| "unreachable"
 	| "auth_required";
 
-type ServerStatus = "connected" | "expired" | "disconnected" | "checking";
+type ServerStatus =
+	| "connected"
+	| "expired"
+	| "disconnected"
+	| "checking"
+	| "needs_verification";
 
 function getServerStatus(
 	server: McpServer,
@@ -125,7 +158,15 @@ function getServerStatus(
 		return "connected";
 	}
 
-	// For non-OAuth servers: use health check result
+	// For Princeton servers: auth_required means no verified netid on the account
+	if (server.authType === "tiger_junction") {
+		if (healthStatus === "auth_required") return "needs_verification";
+		if (healthStatus === "unreachable") return "disconnected";
+		if (healthStatus === "reachable") return "connected";
+		return "checking";
+	}
+
+	// For bearer / none servers: use health check result
 	if (healthStatus === "unreachable") return "disconnected";
 	if (healthStatus === "auth_required") return "disconnected";
 	if (healthStatus === "reachable") return "connected";
@@ -138,6 +179,7 @@ const STATUS_DOT: Record<ServerStatus, string> = {
 	expired: "bg-amber-400",
 	disconnected: "bg-red-400",
 	checking: "bg-muted-foreground/40",
+	needs_verification: "bg-amber-400",
 };
 
 const STATUS_LABEL: Record<ServerStatus, string> = {
@@ -145,21 +187,109 @@ const STATUS_LABEL: Record<ServerStatus, string> = {
 	expired: "Token expired",
 	disconnected: "Unreachable",
 	checking: "Checking…",
+	needs_verification: "Verify Princeton account",
 };
 
 export function McpServerStatus({
 	servers,
+	harnessId,
 	healthStatuses = {},
+	onReconnected,
+	onChanged,
 }: {
 	servers: McpServer[];
+	harnessId?: Id<"harnesses">;
 	healthStatuses?: Record<string, HealthStatus>;
+	onReconnected?: () => void;
+	onChanged?: () => void;
 }) {
 	const { data: oauthStatuses } = useQuery(
 		convexQuery(api.mcpOAuthTokens.listStatuses, {}),
 	);
+	const { getToken } = useAuth();
+	const updateHarnessFn = useConvexMutation(api.harnesses.update);
+	const upsertCommandsFn = useConvexMutation(api.commands.upsert);
 	const [open, setOpen] = useState(false);
+	const [mode, setMode] = useState<"list" | "add">("list");
+	const [removingUrl, setRemovingUrl] = useState<string | null>(null);
 	const ref = useRef<HTMLDivElement>(null);
 
+	const removeServer = useCallback(
+		async (url: string) => {
+			if (!harnessId) return;
+			const target = servers.find((s) => s.url === url);
+			if (!target) return;
+			setRemovingUrl(url);
+			const next = servers
+				.filter((s) => s.url !== url)
+				.map((s) => ({
+					name: s.name,
+					url: s.url,
+					authType: s.authType,
+					...(s.authToken ? { authToken: s.authToken } : {}),
+				}));
+			try {
+				await updateHarnessFn({ id: harnessId, mcpServers: next });
+				toast.success(`Removed ${target.name}`);
+				onChanged?.();
+			} catch (err) {
+				toast.error(
+					err instanceof Error ? err.message : "Failed to remove MCP server",
+				);
+				setRemovingUrl(null);
+				return;
+			}
+
+			// Fire-and-forget: rebuild commandIds for the remaining servers so
+			// orphaned slash commands from the removed server stop appearing.
+			(async () => {
+				try {
+					if (next.length === 0) return;
+					const token = await getToken();
+					const cmds = await fetchCommandsFromApi(API_URL, next, token);
+					if (!cmds || cmds.length === 0) return;
+
+					const ids = await upsertCommandsFn({
+						commands: cmds.map((c) => ({
+							name: c.name,
+							server: c.server,
+							tool: c.tool,
+							description: c.description,
+							parametersJson: JSON.stringify(c.parameters),
+						})),
+					});
+
+					const idByName = new Map(cmds.map((c, i) => [c.name, ids[i]]));
+					const enriched = next.map((s) => ({
+						name: s.name,
+						url: s.url,
+						authType: s.authType,
+						...(s.authToken ? { authToken: s.authToken } : {}),
+						commandIds: [...idByName.entries()]
+							.filter(([name]) =>
+								name.startsWith(`${sanitizeServerName(s.name)}__`),
+							)
+							.map(([, cmdId]) => cmdId),
+					}));
+
+					await updateHarnessFn({ id: harnessId, mcpServers: enriched });
+				} catch {
+					// Non-blocking
+				} finally {
+					setRemovingUrl(null);
+				}
+			})();
+		},
+		[
+			harnessId,
+			servers,
+			updateHarnessFn,
+			upsertCommandsFn,
+			getToken,
+			onChanged,
+		],
+	);
+
 	// Close on outside click
 	useEffect(() => {
 		if (!open) return;
@@ -172,7 +302,14 @@ export function McpServerStatus({
 		return () => document.removeEventListener("mousedown", handler);
 	}, [open]);
 
-	if (servers.length === 0) return null;
+	// Reset to list view whenever the popover closes
+	useEffect(() => {
+		if (!open) setMode("list");
+	}, [open]);
+
+	// Render nothing if there's no harness context AND no servers — there's
+	// nothing to show or add.
+	if (servers.length === 0 && !harnessId) return null;
 
 	const statuses = servers.map((s) => ({
 		server: s,
@@ -181,9 +318,13 @@ export function McpServerStatus({
 			: ("checking" as ServerStatus),
 	}));
 
-	const allConnected = statuses.every((s) => s.status === "connected");
+	const allConnected =
+		statuses.length > 0 && statuses.every((s) => s.status === "connected");
 	const hasIssue = statuses.some(
-		(s) => s.status === "expired" || s.status === "disconnected",
+		(s) =>
+			s.status === "expired" ||
+			s.status === "disconnected" ||
+			s.status === "needs_verification",
 	);
 
 	const anyChecking = statuses.some((s) => s.status === "checking");
@@ -196,6 +337,9 @@ export function McpServerStatus({
 				? "bg-amber-400"
 				: "bg-muted-foreground/40";
 
+	const canAdd = !!harnessId;
+	const panelWidth = mode === "add" ? "w-[360px]" : "w-64";
+
 	return (
 		<div ref={ref} className="relative">
 			<Tooltip>
@@ -207,19 +351,23 @@ export function McpServerStatus({
 					>
 						<div className="relative">
 							{anyChecking ? (
-								<Loader2 size={10} className="animate-spin" />
+								<RoseCurveSpinner size={10} />
 							) : (
 								<Server size={10} />
 							)}
-							<div
-								className={`absolute -right-0.5 -top-0.5 h-1.5 w-1.5 rounded-full ${summaryColor} ${anyChecking ? "animate-pulse" : ""}`}
-							/>
+							{servers.length > 0 && (
+								<div
+									className={`absolute -right-0.5 -top-0.5 h-1.5 w-1.5 rounded-full ${summaryColor} ${anyChecking ? "animate-pulse" : ""}`}
+								/>
+							)}
 						</div>
-						{servers.length} MCP{servers.length !== 1 && "s"}
+						{servers.length > 0
+							? `${servers.length} MCP${servers.length !== 1 ? "s" : ""}`
+							: "Add MCP"}
 					</button>
 				</TooltipTrigger>
 				<TooltipContent>
-					{anyChecking ? "Checking MCP servers..." : "MCP server status"}
+					{anyChecking ? "Checking MCP servers..." : "MCP servers"}
 				</TooltipContent>
 			</Tooltip>
 
@@ -230,23 +378,84 @@ export function McpServerStatus({
 						animate={{ opacity: 1, y: 0, scale: 1 }}
 						exit={{ opacity: 0, y: -4, scale: 0.97 }}
 						transition={{ duration: 0.15 }}
-						className="absolute left-0 top-full z-50 mt-1 w-64 border border-border bg-background shadow-lg"
+						className={`absolute left-0 top-full z-50 mt-1 ${panelWidth} border border-border bg-background shadow-lg`}
 					>
-						<div className="border-b border-border px-3 py-2">
-							<span className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
-								MCP Servers
+						<div className="flex items-center gap-2 border-b border-border px-3 py-2">
+							{mode === "add" && (
+								<button
+									type="button"
+									onClick={() => setMode("list")}
+									className="-ml-1 rounded-sm p-0.5 text-muted-foreground transition-colors hover:bg-muted hover:text-foreground"
+									aria-label="Back to MCP list"
+								>
+									<ArrowLeft size={11} />
+								</button>
+							)}
+							<span className="flex-1 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+								{mode === "add" ? "Add MCP Server" : "MCP Servers"}
 							</span>
+							{mode === "list" && canAdd && (
+								<Tooltip>
+									<TooltipTrigger asChild>
+										<button
+											type="button"
+											onClick={() => setMode("add")}
+											className="rounded-sm p-0.5 text-muted-foreground transition-colors hover:bg-muted hover:text-foreground"
+											aria-label="Add MCP server"
+										>
+											<Plus size={12} />
+										</button>
+									</TooltipTrigger>
+									<TooltipContent>Add MCP server</TooltipContent>
+								</Tooltip>
+							)}
 						</div>
-						<div className="max-h-48 overflow-y-auto py-1">
-							{statuses.map(({ server, status }) => (
-								<McpServerRow
-									key={server.url}
-									server={server}
-									status={status}
-									onReconnected={() => {}}
+						{mode === "list" ? (
+							servers.length > 0 ? (
+								<div className="max-h-48 overflow-y-auto py-1">
+									{statuses.map(({ server, status }) => (
+										<McpServerRow
+											key={server.url}
+											server={server}
+											status={status}
+											onReconnected={onReconnected}
+											onRemove={
+												canAdd ? () => removeServer(server.url) : undefined
+											}
+											removing={removingUrl === server.url}
+										/>
+									))}
+								</div>
+							) : (
+								<div className="px-3 py-4 text-center">
+									<p className="text-[11px] text-muted-foreground">
+										No MCP servers yet.
+									</p>
+									{canAdd && (
+										<Button
+											variant="outline"
+											size="sm"
+											className="mt-2 h-7 gap-1 text-[11px]"
+											onClick={() => setMode("add")}
+										>
+											<Plus size={11} />
+											Add one
+										</Button>
+									)}
+								</div>
+							)
+						) : (
+							harnessId && (
+								<AddMcpPanel
+									harnessId={harnessId}
+									existingServers={servers}
+									onAdded={() => {
+										setMode("list");
+										onChanged?.();
+									}}
 								/>
-							))}
-						</div>
+							)
+						)}
 					</motion.div>
 				)}
 			</AnimatePresence>
@@ -258,10 +467,14 @@ function McpServerRow({
 	server,
 	status,
 	onReconnected,
+	onRemove,
+	removing = false,
 }: {
 	server: McpServer;
 	status: ServerStatus;
-	onReconnected: () => void;
+	onReconnected?: () => void;
+	onRemove?: () => void;
+	removing?: boolean;
 }) {
 	const { getToken } = useAuth();
 	const [connecting, setConnecting] = useState(false);
@@ -271,7 +484,7 @@ function McpServerRow({
 		startOAuthPopup(getToken, server.url, {
 			onSuccess: () => {
 				toast.success(`Reconnected to ${server.name}`);
-				onReconnected();
+				onReconnected?.();
 			},
 			onError: (msg) => toast.error(msg),
 			onDone: () => setConnecting(false),
@@ -282,12 +495,16 @@ function McpServerRow({
 		server.authType === "oauth" &&
 		(status === "expired" || status === "disconnected");
 
+	const showBadges = !needsReconnect;
+
 	return (
-		<div className="flex items-center gap-2 px-3 py-1.5">
+		<div
+			className={`group flex items-center gap-2 px-3 py-1.5 transition-opacity ${removing ? "opacity-50" : ""}`}
+		>
 			{status === "checking" ? (
-				<Loader2
+				<RoseCurveSpinner
 					size={10}
-					className="shrink-0 animate-spin text-muted-foreground"
+					className="shrink-0 text-muted-foreground"
 				/>
 			) : (
 				<div
@@ -308,29 +525,517 @@ function McpServerRow({
 					onClick={handleReconnect}
 					disabled={connecting}
 				>
-					{connecting ? (
-						<Loader2 size={8} className="animate-spin" />
-					) : (
-						<Shield size={8} />
-					)}
+					{connecting ? <RoseCurveSpinner size={8} /> : <Shield size={8} />}
 					Reconnect
 				</Button>
 			)}
-			{server.authType !== "oauth" && status === "connected" && (
-				<Badge variant="secondary" className="shrink-0 text-[9px]">
-					{server.authType === "bearer" ? "Key" : "Open"}
-				</Badge>
+			{showBadges && (
+				<div
+					className={`flex shrink-0 items-center ${onRemove ? "group-hover:hidden" : ""}`}
+				>
+					{status === "connected" && server.authType === "bearer" && (
+						<Badge variant="secondary" className="text-[9px]">
+							Key
+						</Badge>
+					)}
+					{status === "connected" && server.authType === "none" && (
+						<Badge variant="secondary" className="text-[9px]">
+							Public
+						</Badge>
+					)}
+					{status === "connected" && server.authType === "tiger_junction" && (
+						<Badge variant="secondary" className="gap-1 text-[9px]">
+							<GraduationCap size={8} />
+							Princeton
+						</Badge>
+					)}
+					{status === "connected" && server.authType === "oauth" && (
+						<Badge variant="secondary" className="gap-1 text-[9px]">
+							<div className="h-1 w-1 rounded-full bg-emerald-500" />
+							OAuth
+						</Badge>
+					)}
+					{status === "needs_verification" && (
+						<Tooltip>
+							<TooltipTrigger asChild>
+								<Badge
+									variant="secondary"
+									className="gap-1 border border-amber-400/40 bg-amber-500/10 text-[9px] text-amber-700 dark:text-amber-400"
+								>
+									<GraduationCap size={8} />
+									Verify
+								</Badge>
+							</TooltipTrigger>
+							<TooltipContent>
+								Open this harness's settings to verify your Princeton account.
+							</TooltipContent>
+						</Tooltip>
+					)}
+				</div>
 			)}
-			{server.authType === "oauth" && status === "connected" && (
-				<Badge variant="secondary" className="shrink-0 gap-1 text-[9px]">
-					<div className="h-1 w-1 rounded-full bg-emerald-500" />
-					OAuth
-				</Badge>
+			{onRemove && (
+				<Tooltip>
+					<TooltipTrigger asChild>
+						<button
+							type="button"
+							onClick={onRemove}
+							disabled={removing}
+							className="hidden shrink-0 rounded-sm p-0.5 text-muted-foreground transition-colors hover:bg-destructive/10 hover:text-destructive group-hover:block disabled:opacity-30"
+							aria-label={`Remove ${server.name}`}
+						>
+							{removing ? <RoseCurveSpinner size={10} /> : <Trash2 size={11} />}
+						</button>
+					</TooltipTrigger>
+					<TooltipContent>Remove from harness</TooltipContent>
+				</Tooltip>
 			)}
 		</div>
 	);
 }
 
+/* ---------- Add MCP panel ---------- */
+
+function AddMcpPanel({
+	harnessId,
+	existingServers,
+	onAdded,
+}: {
+	harnessId: Id<"harnesses">;
+	existingServers: McpServer[];
+	onAdded: () => void;
+}) {
+	const [tab, setTab] = useState<"presets" | "custom">("presets");
+	const { getToken } = useAuth();
+	const updateHarnessFn = useConvexMutation(api.harnesses.update);
+	const upsertCommandsFn = useConvexMutation(api.commands.upsert);
+	const [pendingId, setPendingId] = useState<string | null>(null);
+
+	const existingUrls = useMemo(
+		() => new Set(existingServers.map((s) => s.url)),
+		[existingServers],
+	);
+
+	const availablePresets = useMemo(
+		() => PRESET_MCPS.filter((p) => !existingUrls.has(p.server.url)),
+		[existingUrls],
+	);
+
+	const addServerEntry = useCallback(
+		async (entry: McpServerEntry, label: string) => {
+			// Build the new mcpServers array. We don't preserve commandIds here
+			// because the prop shape doesn't carry them — the post-add sync below
+			// will refetch and re-link commands for all servers in this harness.
+			const next = [
+				...existingServers.map((s) => ({
+					name: s.name,
+					url: s.url,
+					authType: s.authType,
+					...(s.authToken ? { authToken: s.authToken } : {}),
+				})),
+				{
+					name: entry.name,
+					url: entry.url,
+					authType: entry.authType,
+					...(entry.authToken ? { authToken: entry.authToken } : {}),
+				},
+			];
+
+			try {
+				await updateHarnessFn({
+					id: harnessId,
+					mcpServers: next,
+				});
+				toast.success(`Added ${label}`);
+			} catch (err) {
+				toast.error(
+					err instanceof Error ? err.message : "Failed to add MCP server",
+				);
+				return;
+			}
+
+			// Fire-and-forget: fetch slash commands for the new server set,
+			// upsert, then enrich the harness with commandIds. Mirrors the
+			// post-save logic in the harness editor page.
+			(async () => {
+				try {
+					const token = await getToken();
+					const cmds = await fetchCommandsFromApi(API_URL, next, token);
+					if (!cmds || cmds.length === 0) return;
+
+					const ids = await upsertCommandsFn({
+						commands: cmds.map((c) => ({
+							name: c.name,
+							server: c.server,
+							tool: c.tool,
+							description: c.description,
+							parametersJson: JSON.stringify(c.parameters),
+						})),
+					});
+
+					const idByName = new Map(cmds.map((c, i) => [c.name, ids[i]]));
+					const enriched = next.map((s) => ({
+						name: s.name,
+						url: s.url,
+						authType: s.authType,
+						...(s.authToken ? { authToken: s.authToken } : {}),
+						commandIds: [...idByName.entries()]
+							.filter(([name]) =>
+								name.startsWith(`${sanitizeServerName(s.name)}__`),
+							)
+							.map(([, cmdId]) => cmdId),
+					}));
+
+					await updateHarnessFn({
+						id: harnessId,
+						mcpServers: enriched,
+					});
+				} catch {
+					// Non-blocking — the server is already added; just no commands linked.
+				}
+			})();
+
+			// For OAuth servers, immediately kick off the connect popup so the
+			// user doesn't have to navigate elsewhere.
+			if (entry.authType === "oauth") {
+				startOAuthPopup(getToken, entry.url, {
+					onSuccess: () => toast.success(`Connected ${label}`),
+					onError: (msg) => toast.error(msg),
+				});
+			}
+
+			onAdded();
+		},
+		[
+			existingServers,
+			harnessId,
+			updateHarnessFn,
+			upsertCommandsFn,
+			getToken,
+			onAdded,
+		],
+	);
+
+	const addPresetMutation = useMutation({
+		mutationFn: async ({
+			id,
+			entry,
+			label,
+		}: {
+			id: string;
+			entry: McpServerEntry;
+			label: string;
+		}) => {
+			setPendingId(id);
+			try {
+				await addServerEntry(entry, label);
+			} finally {
+				setPendingId(null);
+			}
+		},
+	});
+
+	return (
+		<div className="flex flex-col">
+			<div className="flex border-b border-border text-[10px]">
+				<TabBtn active={tab === "presets"} onClick={() => setTab("presets")}>
+					Presets
+				</TabBtn>
+				<TabBtn active={tab === "custom"} onClick={() => setTab("custom")}>
+					Custom URL
+				</TabBtn>
+			</div>
+
+			{tab === "presets" ? (
+				<div className="max-h-72 overflow-y-auto py-1">
+					{availablePresets.length === 0 ? (
+						<p className="px-3 py-4 text-center text-[11px] text-muted-foreground">
+							All presets already added.
+						</p>
+					) : (
+						availablePresets.map((preset) => {
+							const adding =
+								addPresetMutation.isPending && pendingId === preset.id;
+							return (
+								<button
+									key={preset.id}
+									type="button"
+									disabled={addPresetMutation.isPending}
+									onClick={() =>
+										addPresetMutation.mutate({
+											id: preset.id,
+											entry: preset.server,
+											label: preset.server.name,
+										})
+									}
+									className="group flex w-full items-start gap-2 px-3 py-2 text-left transition-colors hover:bg-muted/50 disabled:opacity-50"
+								>
+									<div className="min-w-0 flex-1">
+										<div className="flex items-center gap-1.5">
+											<span className="truncate text-xs font-medium">
+												{preset.server.name}
+											</span>
+											<AuthBadge authType={preset.server.authType} />
+										</div>
+										<p className="mt-0.5 line-clamp-2 text-[10px] text-muted-foreground">
+											{preset.description}
+										</p>
+									</div>
+									<div className="shrink-0 self-center">
+										{adding ? (
+											<RoseCurveSpinner size={10} />
+										) : (
+											<Plus
+												size={12}
+												className="text-muted-foreground opacity-0 transition-opacity group-hover:opacity-100"
+											/>
+										)}
+									</div>
+								</button>
+							);
+						})
+					)}
+				</div>
+			) : (
+				<CustomMcpForm
+					onSubmit={async (entry) => {
+						await addServerEntry(entry, entry.name);
+					}}
+					existingUrls={existingUrls}
+				/>
+			)}
+		</div>
+	);
+}
+
+function TabBtn({
+	active,
+	onClick,
+	children,
+}: {
+	active: boolean;
+	onClick: () => void;
+	children: React.ReactNode;
+}) {
+	return (
+		<button
+			type="button"
+			onClick={onClick}
+			className={`flex-1 px-3 py-1.5 font-medium uppercase tracking-wider transition-colors ${
+				active
+					? "border-b-2 border-foreground text-foreground"
+					: "text-muted-foreground hover:text-foreground"
+			}`}
+		>
+			{children}
+		</button>
+	);
+}
+
+function AuthBadge({ authType }: { authType: McpAuthType }) {
+	if (authType === "tiger_junction") {
+		return (
+			<Badge variant="secondary" className="shrink-0 gap-1 text-[9px]">
+				<GraduationCap size={8} />
+				Princeton
+			</Badge>
+		);
+	}
+	if (authType === "oauth") {
+		return (
+			<Badge variant="secondary" className="shrink-0 gap-1 text-[9px]">
+				<div className="h-1 w-1 rounded-full bg-emerald-500" />
+				OAuth
+			</Badge>
+		);
+	}
+	if (authType === "bearer") {
+		return (
+			<Badge variant="secondary" className="shrink-0 text-[9px]">
+				Key
+			</Badge>
+		);
+	}
+	return (
+		<Badge variant="secondary" className="shrink-0 text-[9px]">
+			Public
+		</Badge>
+	);
+}
+
+function CustomMcpForm({
+	onSubmit,
+	existingUrls,
+}: {
+	onSubmit: (entry: McpServerEntry) => Promise<void>;
+	existingUrls: Set<string>;
+}) {
+	const [name, setName] = useState("");
+	const [url, setUrl] = useState("");
+	const [authType, setAuthType] = useState<"none" | "bearer" | "oauth">("none");
+	const [authToken, setAuthToken] = useState("");
+	const [showToken, setShowToken] = useState(false);
+	const [urlError, setUrlError] = useState("");
+	const [submitting, setSubmitting] = useState(false);
+
+	const handleSubmit = async () => {
+		const trimmedName = name.trim();
+		const trimmedUrl = url.trim();
+		if (!trimmedName || !trimmedUrl) return;
+		const error = validateMcpUrl(trimmedUrl);
+		if (error) {
+			setUrlError(error);
+			return;
+		}
+		if (existingUrls.has(trimmedUrl)) {
+			setUrlError("This server URL is already added");
+			return;
+		}
+		if (authType === "bearer" && !authToken.trim()) {
+			toast.error("Bearer token required");
+			return;
+		}
+		setUrlError("");
+		setSubmitting(true);
+		try {
+			await onSubmit({
+				name: trimmedName,
+				url: trimmedUrl,
+				authType,
+				...(authType === "bearer" ? { authToken: authToken.trim() } : {}),
+			});
+		} finally {
+			setSubmitting(false);
+		}
+	};
+
+	const canSubmit =
+		!!name.trim() &&
+		!!url.trim() &&
+		(authType !== "bearer" || !!authToken.trim()) &&
+		!submitting;
+
+	return (
+		<div className="space-y-3 px-3 py-3">
+			<div>
+				<label
+					htmlFor="mcp-status-name"
+					className="mb-1 block text-[10px] uppercase tracking-wider text-muted-foreground"
+				>
+					Display Name
+				</label>
+				<Input
+					id="mcp-status-name"
+					value={name}
+					onChange={(e) => setName(e.target.value)}
+					placeholder="e.g. My Postgres"
+					className="h-7 text-xs"
+				/>
+			</div>
+			<div>
+				<label
+					htmlFor="mcp-status-url"
+					className="mb-1 block text-[10px] uppercase tracking-wider text-muted-foreground"
+				>
+					Server URL
+				</label>
+				<Input
+					id="mcp-status-url"
+					value={url}
+					onChange={(e) => {
+						setUrl(e.target.value);
+						if (urlError) setUrlError("");
+					}}
+					placeholder="https://mcp.example.com/sse"
+					className={`h-7 text-xs ${urlError ? "border-red-500" : ""}`}
+				/>
+				{urlError && (
+					<p className="mt-1 text-[10px] text-red-500">{urlError}</p>
+				)}
+			</div>
+			<div>
+				<label
+					htmlFor="mcp-status-auth"
+					className="mb-1 block text-[10px] uppercase tracking-wider text-muted-foreground"
+				>
+					Authentication
+				</label>
+				<Select
+					value={authType}
+					onValueChange={(v) => setAuthType(v as "none" | "bearer" | "oauth")}
+				>
+					<SelectTrigger className="h-7 text-xs">
+						<SelectValue />
+					</SelectTrigger>
+					<SelectContent>
+						<SelectItem value="none">None</SelectItem>
+						<SelectItem value="bearer">Bearer Token</SelectItem>
+						<SelectItem value="oauth">OAuth</SelectItem>
+					</SelectContent>
+				</Select>
+			</div>
+
+			<AnimatePresence initial={false}>
+				{authType === "bearer" && (
+					<motion.div
+						key="bearer"
+						initial={{ opacity: 0, height: 0 }}
+						animate={{ opacity: 1, height: "auto" }}
+						exit={{ opacity: 0, height: 0 }}
+					>
+						<label
+							htmlFor="mcp-status-token"
+							className="mb-1 block text-[10px] uppercase tracking-wider text-muted-foreground"
+						>
+							Bearer Token
+						</label>
+						<div className="flex gap-1">
+							<Input
+								id="mcp-status-token"
+								type={showToken ? "text" : "password"}
+								value={authToken}
+								onChange={(e) => setAuthToken(e.target.value)}
+								placeholder="Enter token..."
+								className="h-7 flex-1 text-xs"
+							/>
+							<Button
+								variant="ghost"
+								size="icon-xs"
+								onClick={() => setShowToken(!showToken)}
+								type="button"
+							>
+								{showToken ? <EyeOff size={11} /> : <Eye size={11} />}
+							</Button>
+						</div>
+					</motion.div>
+				)}
+				{authType === "oauth" && (
+					<motion.p
+						key="oauth-hint"
+						initial={{ opacity: 0, height: 0 }}
+						animate={{ opacity: 1, height: "auto" }}
+						exit={{ opacity: 0, height: 0 }}
+						className="text-[10px] text-muted-foreground"
+					>
+						You'll be prompted to connect via OAuth right after adding.
+					</motion.p>
+				)}
+			</AnimatePresence>
+
+			<Button
+				size="sm"
+				className="w-full h-7 gap-1 text-[11px]"
+				onClick={handleSubmit}
+				disabled={!canSubmit}
+			>
+				{submitting ? <RoseCurveSpinner size={10} /> : <Plus size={11} />}
+				Add Server
+			</Button>
+		</div>
+	);
+}
+
+/* ---------- OAuth re-auth utilities (existing exports) ---------- */
+
 /**
  * Parse a tool result string to check if it's an auth_required error.
  * Returns { serverUrl, error } if so, null otherwise.
@@ -355,9 +1060,11 @@ export function parseAuthRequiredError(
 export function OAuthReconnectPrompt({
 	serverUrl,
 	errorMessage,
+	onReconnected,
 }: {
 	serverUrl: string;
 	errorMessage: string;
+	onReconnected?: () => void;
 }) {
 	const { getToken } = useAuth();
 	const [connecting, setConnecting] = useState(false);
@@ -369,11 +1076,12 @@ export function OAuthReconnectPrompt({
 			onSuccess: () => {
 				toast.success("Reconnected — you can retry the message");
 				setReconnected(true);
+				onReconnected?.();
 			},
 			onError: (msg) => toast.error(msg),
 			onDone: () => setConnecting(false),
 		});
-	}, [getToken, serverUrl]);
+	}, [getToken, serverUrl, onReconnected]);
 
 	if (reconnected) {
 		return (
@@ -397,11 +1105,7 @@ export function OAuthReconnectPrompt({
 				onClick={handleReconnect}
 				disabled={connecting}
 			>
-				{connecting ? (
-					<Loader2 size={10} className="animate-spin" />
-				) : (
-					<Shield size={10} />
-				)}
+				{connecting ? <RoseCurveSpinner size={10} /> : <Shield size={10} />}
 				Reconnect
 			</Button>
 		</div>
diff --git a/apps/web/src/components/pending-response-indicator.tsx b/apps/web/src/components/pending-response-indicator.tsx
new file mode 100644
index 0000000..540aed8
--- /dev/null
+++ b/apps/web/src/components/pending-response-indicator.tsx
@@ -0,0 +1,70 @@
+import { AnimatePresence, motion } from "motion/react";
+import { useEffect, useState } from "react";
+import { cn } from "@/lib/utils";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
+
+const FLAVOR_MESSAGES = [
+	"Thinking…",
+	"Warming up…",
+	"Consulting the tools…",
+	"Wiring up neurons…",
+	"Querying the oracle…",
+	"Reticulating splines…",
+	"Gathering thoughts…",
+	"Brewing a response…",
+	"Summoning tokens…",
+	"Sharpening the quill…",
+	"Reading the room…",
+	"Chasing down sources…",
+	"Following the thread…",
+	"Picking the right words…",
+	"Double-checking the math…",
+	"Aligning the stars…",
+];
+
+const ROTATE_MS = 2600;
+
+function pickInitial(): number {
+	return Math.floor(Math.random() * FLAVOR_MESSAGES.length);
+}
+
+export function PendingResponseIndicator({
+	className,
+}: {
+	className?: string;
+}) {
+	const [idx, setIdx] = useState(pickInitial);
+
+	useEffect(() => {
+		const prefersReduced =
+			window?.matchMedia?.("(prefers-reduced-motion: reduce)").matches ?? false;
+		if (prefersReduced) return;
+		const id = setInterval(() => {
+			setIdx((prev) => (prev + 1) % FLAVOR_MESSAGES.length);
+		}, ROTATE_MS);
+		return () => clearInterval(id);
+	}, []);
+
+	const message = FLAVOR_MESSAGES[idx];
+
+	return (
+		<div
+			className={cn("flex items-center gap-2 text-muted-foreground", className)}
+			aria-live="polite"
+		>
+			<RoseCurveSpinner size={14} />
+			<AnimatePresence mode="wait">
+				<motion.span
+					key={idx}
+					initial={{ opacity: 0, y: 4 }}
+					animate={{ opacity: 1, y: 0 }}
+					exit={{ opacity: 0, y: -4 }}
+					transition={{ duration: 0.22 }}
+					className="text-xs italic"
+				>
+					{message}
+				</motion.span>
+			</AnimatePresence>
+		</div>
+	);
+}
diff --git a/apps/web/src/components/princeton-connect-row.tsx b/apps/web/src/components/princeton-connect-row.tsx
index 68e7601..dd69204 100644
--- a/apps/web/src/components/princeton-connect-row.tsx
+++ b/apps/web/src/components/princeton-connect-row.tsx
@@ -1,10 +1,15 @@
-import { useUser } from "@clerk/tanstack-react-start";
-import { GraduationCap, Loader2, Mail } from "lucide-react";
+import {
+	isClerkRuntimeError,
+	isReverificationCancelledError,
+} from "@clerk/clerk-react/errors";
+import { useReverification, useUser } from "@clerk/tanstack-react-start";
+import { GraduationCap, Mail } from "lucide-react";
 import { motion } from "motion/react";
 import { useCallback, useState } from "react";
 import toast from "react-hot-toast";
 import type { McpServerEntry } from "../lib/mcp";
 import { getPrincetonNetid } from "../lib/mcp";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
 import { Badge } from "./ui/badge";
 import { Button } from "./ui/button";
 import { Input } from "./ui/input";
@@ -21,12 +26,33 @@ export function PrincetonConnectRow({ server }: { server: McpServerEntry }) {
 	const [loading, setLoading] = useState(false);
 	const [step, setStep] = useState<"email" | "code">("email");
 
+	// Adding an email address is a sensitive Clerk action and may require
+	// step-up reverification (a fresh credential check within the last 10
+	// minutes). Wrapping the call in `useReverification` lets Clerk show its
+	// built-in reverification modal automatically and retry once the user
+	// completes it — the same mechanism the Clerk <UserProfile> settings
+	// page uses internally. Without this wrapper, stale sessions get
+	// "you need to provide additional verification to perform this operation".
+	const createPrincetonEmailWithReverify = useReverification(
+		(email: string) => {
+			if (!user) {
+				return Promise.reject(new Error("You must be signed in"));
+			}
+			return user.createEmailAddress({ email });
+		},
+	);
+
 	const handleAddEmail = useCallback(async () => {
-		if (!user || !netidInput.trim()) return;
+		if (!user) return;
+		const rawNetid = netidInput
+			.trim()
+			.toLowerCase()
+			.replace(/@princeton\.edu$/, "");
+		if (!rawNetid) return;
 		setLoading(true);
 		try {
-			const email = `${netidInput.trim()}@princeton.edu`;
-			const res = await user.createEmailAddress({ email });
+			const email = `${rawNetid}@princeton.edu`;
+			const res = await createPrincetonEmailWithReverify(email);
 			await user.reload();
 
 			const emailAddress = user.emailAddresses.find((a) => a.id === res?.id);
@@ -37,6 +63,10 @@ export function PrincetonConnectRow({ server }: { server: McpServerEntry }) {
 			setStep("code");
 			toast.success(`Verification code sent to ${email}`);
 		} catch (err) {
+			// User dismissed Clerk's reverification modal — bail silently.
+			if (isClerkRuntimeError(err) && isReverificationCancelledError(err)) {
+				return;
+			}
 			console.error("[Princeton] Add email error:", err);
 			const message =
 				err instanceof Error ? err.message : "Failed to add email";
@@ -44,7 +74,7 @@ export function PrincetonConnectRow({ server }: { server: McpServerEntry }) {
 		} finally {
 			setLoading(false);
 		}
-	}, [user, netidInput]);
+	}, [user, netidInput, createPrincetonEmailWithReverify]);
 
 	const handleVerifyCode = useCallback(async () => {
 		if (!user || !emailId || !verificationCode.trim()) return;
@@ -132,11 +162,7 @@ export function PrincetonConnectRow({ server }: { server: McpServerEntry }) {
 							onClick={handleAddEmail}
 							disabled={loading || !netidInput.trim()}
 						>
-							{loading ? (
-								<Loader2 size={10} className="animate-spin" />
-							) : (
-								<Mail size={10} />
-							)}
+							{loading ? <RoseCurveSpinner size={10} /> : <Mail size={10} />}
 							Send Code
 						</Button>
 					</div>
@@ -155,7 +181,7 @@ export function PrincetonConnectRow({ server }: { server: McpServerEntry }) {
 							onClick={handleVerifyCode}
 							disabled={loading || !verificationCode.trim()}
 						>
-							{loading ? <Loader2 size={10} className="animate-spin" /> : null}
+							{loading ? <RoseCurveSpinner size={10} /> : null}
 							Verify
 						</Button>
 					</div>
diff --git a/apps/web/src/components/recommended-skills-grid.tsx b/apps/web/src/components/recommended-skills-grid.tsx
index cce343d..2fe1bfb 100644
--- a/apps/web/src/components/recommended-skills-grid.tsx
+++ b/apps/web/src/components/recommended-skills-grid.tsx
@@ -1,6 +1,8 @@
-import { Download, Zap } from "lucide-react";
+import { Download, Eye, Zap } from "lucide-react";
+import { useState } from "react";
 import type { SkillEntry } from "../lib/skills";
-import { RECOMMENDED_SKILLS } from "../lib/skills";
+import { RECOMMENDED_SKILLS, type RecommendedSkill } from "../lib/skills";
+import { SkillViewerDialog } from "./skill-viewer-dialog";
 import { Checkbox } from "./ui/checkbox";
 
 interface RecommendedSkillsGridProps {
@@ -12,6 +14,10 @@ export function RecommendedSkillsGrid({
 	selected,
 	onToggle,
 }: RecommendedSkillsGridProps) {
+	const [viewingSkill, setViewingSkill] = useState<RecommendedSkill | null>(
+		null,
+	);
+
 	if (RECOMMENDED_SKILLS.length === 0) {
 		return null;
 	}
@@ -23,50 +29,67 @@ export function RecommendedSkillsGrid({
 	};
 
 	return (
-		<div className="grid gap-2 sm:grid-cols-2 lg:grid-cols-3">
-			{RECOMMENDED_SKILLS.map((rec) => {
-				const isSelected = selected.some((s) => s.name === rec.skill.fullId);
-				return (
-					<button
-						key={rec.id}
-						type="button"
-						onClick={() =>
-							onToggle({
-								name: rec.skill.fullId,
-								description: rec.skill.description,
-							})
-						}
-						className={`flex items-start gap-3 border p-3 text-left transition-colors ${
-							isSelected
-								? "border-foreground bg-foreground/3"
-								: "border-border hover:border-foreground/20"
-						}`}
-					>
-						<Checkbox
-							checked={isSelected}
-							className="mt-0.5 shrink-0"
-							tabIndex={-1}
-						/>
-						<div className="min-w-0 flex-1">
-							<div className="flex items-center gap-1.5">
-								<Zap size={14} className="shrink-0 text-muted-foreground" />
-								<p className="text-xs font-medium text-foreground">
-									{rec.skill.skillId}
+		<>
+			<div className="grid gap-2 sm:grid-cols-2 lg:grid-cols-3">
+				{RECOMMENDED_SKILLS.map((rec) => {
+					const isSelected = selected.some((s) => s.name === rec.skill.fullId);
+					const skillPayload = {
+						name: rec.skill.fullId,
+						description: rec.skill.description,
+					};
+					return (
+						<div
+							key={rec.id}
+							className={`flex items-start gap-3 border p-3 transition-colors ${
+								isSelected
+									? "border-foreground bg-foreground/3"
+									: "border-border hover:border-foreground/20"
+							}`}
+						>
+							<Checkbox
+								checked={isSelected}
+								className="mt-0.5 shrink-0"
+								onCheckedChange={() => onToggle(skillPayload)}
+							/>
+							<button
+								type="button"
+								onClick={() => onToggle(skillPayload)}
+								className="min-w-0 flex-1 border-0 bg-transparent p-0 text-left outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2"
+							>
+								<div className="flex items-center gap-1.5">
+									<Zap size={14} className="shrink-0 text-muted-foreground" />
+									<p className="text-xs font-medium text-foreground">
+										{rec.skill.skillId}
+									</p>
+									{rec.skill.installs > 0 && (
+										<span className="flex items-center gap-0.5 text-[10px] text-muted-foreground/60">
+											<Download size={10} />
+											{formatInstalls(rec.skill.installs)}
+										</span>
+									)}
+								</div>
+								<p className="text-[10px] leading-tight text-muted-foreground/50">
+									{rec.skill.source}
 								</p>
-								{rec.skill.installs > 0 && (
-									<span className="flex items-center gap-0.5 text-[10px] text-muted-foreground/60">
-										<Download size={10} />
-										{formatInstalls(rec.skill.installs)}
-									</span>
-								)}
-							</div>
-							<p className="text-[10px] leading-tight text-muted-foreground/50">
-								{rec.skill.source}
-							</p>
+							</button>
+							<button
+								type="button"
+								onClick={() => setViewingSkill(rec)}
+								className="mt-0.5 shrink-0 text-muted-foreground/40 transition-colors hover:text-foreground"
+							>
+								<Eye size={14} />
+							</button>
 						</div>
-					</button>
-				);
-			})}
-		</div>
+					);
+				})}
+			</div>
+			<SkillViewerDialog
+				fullId={viewingSkill?.skill.fullId ?? null}
+				skillId={viewingSkill?.skill.skillId}
+				source={viewingSkill?.skill.source}
+				installs={viewingSkill?.skill.installs}
+				onClose={() => setViewingSkill(null)}
+			/>
+		</>
 	);
 }
diff --git a/apps/web/src/components/rose-curve-spinner.tsx b/apps/web/src/components/rose-curve-spinner.tsx
new file mode 100644
index 0000000..88495e2
--- /dev/null
+++ b/apps/web/src/components/rose-curve-spinner.tsx
@@ -0,0 +1,188 @@
+import { useEffect, useRef } from "react";
+import { cn } from "@/lib/utils";
+
+const PARTICLE_COUNT = 78;
+const TRAIL_SPAN = 0.32;
+const DURATION_MS = 5400;
+const ROTATION_DURATION_MS = 28000;
+const PULSE_DURATION_MS = 4600;
+const DEFAULT_STROKE_WIDTH = 4.5;
+const ROSE_A = 9.2;
+const ROSE_A_BOOST = 0.6;
+const ROSE_BREATH_BASE = 0.72;
+const ROSE_BREATH_BOOST = 0.28;
+const ROSE_K = 5;
+const ROSE_SCALE = 3.25;
+const PATH_STEPS = 480;
+const PARTICLE_IDS = Array.from({ length: PARTICLE_COUNT }, (_, i) => `p-${i}`);
+
+const INITIAL_DETAIL_SCALE = getDetailScale(0);
+const INITIAL_PATH_D = buildPathD(INITIAL_DETAIL_SCALE);
+const INITIAL_PARTICLES = PARTICLE_IDS.map((_, i) => {
+	const tailOffset = i / (PARTICLE_COUNT - 1);
+	const point = computePoint(
+		normalizeProgress(-tailOffset * TRAIL_SPAN),
+		INITIAL_DETAIL_SCALE,
+	);
+	const fade = (1 - tailOffset) ** 0.56;
+	return {
+		cx: point.x.toFixed(2),
+		cy: point.y.toFixed(2),
+		r: (0.9 + fade * 2.7).toFixed(2),
+		opacity: (0.04 + fade * 0.96).toFixed(3),
+	};
+});
+
+function normalizeProgress(value: number) {
+	return ((value % 1) + 1) % 1;
+}
+
+function computePoint(progress: number, detailScale: number) {
+	const t = progress * Math.PI * 2;
+	const a = ROSE_A + detailScale * ROSE_A_BOOST;
+	const r =
+		a *
+		(ROSE_BREATH_BASE + detailScale * ROSE_BREATH_BOOST) *
+		Math.cos(ROSE_K * t);
+	return {
+		x: 50 + Math.cos(t) * r * ROSE_SCALE,
+		y: 50 + Math.sin(t) * r * ROSE_SCALE,
+	};
+}
+
+function buildPathD(detailScale: number) {
+	let d = "";
+	for (let i = 0; i <= PATH_STEPS; i++) {
+		const p = computePoint(i / PATH_STEPS, detailScale);
+		d += `${i === 0 ? "M" : "L"} ${p.x.toFixed(2)} ${p.y.toFixed(2)} `;
+	}
+	return d;
+}
+
+function getDetailScale(time: number) {
+	const pulseProgress = (time % PULSE_DURATION_MS) / PULSE_DURATION_MS;
+	const pulseAngle = pulseProgress * Math.PI * 2;
+	return 0.52 + ((Math.sin(pulseAngle + 0.55) + 1) / 2) * 0.48;
+}
+
+function getRotation(time: number) {
+	return -((time % ROTATION_DURATION_MS) / ROTATION_DURATION_MS) * 360;
+}
+
+export interface RoseCurveSpinnerProps {
+	/** Width and height of the spinner. Number is treated as px. Default: 24. */
+	size?: number | string;
+	/** Additional class names. Spinner inherits color via `currentColor`. */
+	className?: string;
+	/** Accessible label for screen readers. Default: "Loading". */
+	label?: string;
+	/** Stroke width of the ghost curve, in viewBox units. Default: 4.5. */
+	strokeWidth?: number;
+}
+
+/**
+ * Animated rose-curve loading indicator. Renders an SVG that draws the path
+ * r = a·cos(kθ) and sweeps trailing particles along it, with a slow rotation
+ * and a breathing-amplitude pulse. Color is inherited via `currentColor`, so
+ * wrap it in a Tailwind `text-*` utility to tint.
+ */
+export function RoseCurveSpinner({
+	size = 24,
+	className,
+	label = "Loading",
+	strokeWidth = DEFAULT_STROKE_WIDTH,
+}: RoseCurveSpinnerProps) {
+	const groupRef = useRef<SVGGElement>(null);
+	const pathRef = useRef<SVGPathElement>(null);
+	const particlesRef = useRef<Array<SVGCircleElement | null>>([]);
+
+	useEffect(() => {
+		const group = groupRef.current;
+		const path = pathRef.current;
+		if (!group || !path) return;
+		const particles = particlesRef.current;
+
+		const render = (elapsed: number) => {
+			const progress = (elapsed % DURATION_MS) / DURATION_MS;
+			const detailScale = getDetailScale(elapsed);
+
+			group.setAttribute("transform", `rotate(${getRotation(elapsed)} 50 50)`);
+			path.setAttribute("d", buildPathD(detailScale));
+
+			for (let i = 0; i < PARTICLE_COUNT; i++) {
+				const node = particles[i];
+				if (!node) continue;
+				const tailOffset = i / (PARTICLE_COUNT - 1);
+				const point = computePoint(
+					normalizeProgress(progress - tailOffset * TRAIL_SPAN),
+					detailScale,
+				);
+				const fade = (1 - tailOffset) ** 0.56;
+				node.setAttribute("cx", point.x.toFixed(2));
+				node.setAttribute("cy", point.y.toFixed(2));
+				node.setAttribute("r", (0.9 + fade * 2.7).toFixed(2));
+				node.setAttribute("opacity", (0.04 + fade * 0.96).toFixed(3));
+			}
+		};
+
+		const prefersReduced =
+			window?.matchMedia?.("(prefers-reduced-motion: reduce)").matches ?? false;
+
+		if (prefersReduced) {
+			render(0);
+			return;
+		}
+
+		const startedAt = performance.now();
+		let rafId = 0;
+		const loop = (now: number) => {
+			render(now - startedAt);
+			rafId = requestAnimationFrame(loop);
+		};
+		rafId = requestAnimationFrame(loop);
+		return () => cancelAnimationFrame(rafId);
+	}, []);
+
+	const dim = typeof size === "number" ? `${size}px` : size;
+
+	return (
+		<svg
+			viewBox="0 0 100 100"
+			fill="none"
+			role="img"
+			aria-label={label}
+			aria-live="polite"
+			className={cn("inline-block shrink-0 overflow-visible", className)}
+			style={{ width: dim, height: dim }}
+		>
+			<title>{label}</title>
+			<g ref={groupRef}>
+				<path
+					ref={pathRef}
+					d={INITIAL_PATH_D}
+					stroke="currentColor"
+					strokeWidth={strokeWidth}
+					strokeLinecap="round"
+					strokeLinejoin="round"
+					opacity={0.1}
+				/>
+				{PARTICLE_IDS.map((id, i) => {
+					const p = INITIAL_PARTICLES[i];
+					return (
+						<circle
+							key={id}
+							ref={(el) => {
+								particlesRef.current[i] = el;
+							}}
+							fill="currentColor"
+							cx={p.cx}
+							cy={p.cy}
+							r={p.r}
+							opacity={p.opacity}
+						/>
+					);
+				})}
+			</g>
+		</svg>
+	);
+}
diff --git a/apps/web/src/components/sandbox-result.tsx b/apps/web/src/components/sandbox-result.tsx
index 9377340..3a302cf 100644
--- a/apps/web/src/components/sandbox-result.tsx
+++ b/apps/web/src/components/sandbox-result.tsx
@@ -175,6 +175,7 @@ function CodeExecutionResult({
 									{highlightedCode ? (
 										<pre className="hljs max-h-60 overflow-auto px-3 py-2 text-xs leading-relaxed">
 											<code
+												// biome-ignore lint/security/noDangerouslySetInnerHtml: highlight.js output for read-only code display
 												dangerouslySetInnerHTML={{
 													__html: highlightedCode,
 												}}
@@ -232,7 +233,13 @@ function CodeExecutionResult({
 					{charts && charts.length > 0 && (
 						<div className="border-t border-border p-2 space-y-2">
 							{charts.map((chart, i) => (
-								<div key={i}>
+								<div
+									key={
+										chart.png
+											? `chart-png-${chart.png.slice(0, 48)}`
+											: (chart.title ?? `chart-${i}`)
+									}
+								>
 									{chart.title && (
 										<p className="mb-1 px-1 text-[10px] font-medium text-muted-foreground">
 											{chart.title}
@@ -241,7 +248,7 @@ function CodeExecutionResult({
 									{chart.png && (
 										<img
 											src={`data:image/png;base64,${chart.png}`}
-											alt={chart.title || `Chart ${i + 1}`}
+											alt={chart.title || "Chart"}
 											className="max-w-full rounded border border-border"
 										/>
 									)}
@@ -357,7 +364,10 @@ function FileContentResult({ data }: { data: Record<string, unknown> }) {
 				<div className="relative border-t border-border">
 					{highlighted ? (
 						<pre className="hljs max-h-80 overflow-auto px-3 py-2 text-xs leading-relaxed">
-							<code dangerouslySetInnerHTML={{ __html: highlighted }} />
+							<code
+								// biome-ignore lint/security/noDangerouslySetInnerHtml: highlight.js output for read-only code display
+								dangerouslySetInnerHTML={{ __html: highlighted }}
+							/>
 						</pre>
 					) : (
 						<pre className="max-h-80 overflow-auto bg-muted/20 px-3 py-2 text-xs leading-relaxed">
@@ -619,7 +629,7 @@ function GitDiffResult({ data }: { data: Record<string, unknown> }) {
 					<pre className="max-h-80 overflow-auto px-3 py-2 text-xs leading-relaxed">
 						{diff.split("\n").map((line, i) => (
 							<span
-								key={i}
+								key={`${i}:${line}`}
 								className={cn(
 									"block",
 									line.startsWith("+") &&
@@ -685,9 +695,9 @@ function SearchResult({ data }: { data: Record<string, unknown> }) {
 			{items.length > 0 && (
 				<div className="max-h-60 overflow-auto border-t border-border">
 					{matches.length > 0
-						? matches.map((m, i) => (
+						? matches.map((m) => (
 								<div
-									key={i}
+									key={`${String(m.file ?? "")}:${String(m.line ?? "")}:${String(m.content ?? "")}`}
 									className="flex gap-2 px-3 py-1 text-xs hover:bg-muted/20"
 								>
 									<span className="shrink-0 text-muted-foreground">
diff --git a/apps/web/src/components/sandbox/command-input.tsx b/apps/web/src/components/sandbox/command-input.tsx
index 069cc6d..7bd17da 100644
--- a/apps/web/src/components/sandbox/command-input.tsx
+++ b/apps/web/src/components/sandbox/command-input.tsx
@@ -1,14 +1,17 @@
 import { useAuth } from "@clerk/clerk-react";
+import { AlertCircle, ChevronRight, TerminalSquare } from "lucide-react";
 import {
-	AlertCircle,
-	ChevronRight,
-	Loader2,
-	TerminalSquare,
-} from "lucide-react";
-import { useCallback, useEffect, useMemo, useRef, useState } from "react";
+	useCallback,
+	useEffect,
+	useId,
+	useMemo,
+	useRef,
+	useState,
+} from "react";
 import { type CommandResponse, createSandboxApi } from "../../lib/sandbox-api";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
 import { cn } from "../../lib/utils";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { ScrollArea } from "../ui/scroll-area";
 
 interface CommandEntry {
@@ -198,13 +201,12 @@ export function CommandRunner() {
 
 	const isRunning = entries.some((e) => e.running);
 	const displayCwd = cwd.replace(/^\/home\/daytona/, "~");
+	const commandInputId = useId();
 
 	return (
-		<div
-			className="flex h-full flex-col"
-			onClick={() => inputRef.current?.focus()}
-			onKeyDown={() => {}}
-			role="presentation"
+		<label
+			htmlFor={commandInputId}
+			className="flex h-full cursor-text flex-col"
 		>
 			{/* Output area */}
 			<ScrollArea className="min-h-0 flex-1 overflow-hidden">
@@ -235,9 +237,9 @@ export function CommandRunner() {
 										{entry.command}
 									</span>
 									{entry.running && (
-										<Loader2
+										<RoseCurveSpinner
 											size={10}
-											className="shrink-0 animate-spin text-muted-foreground/40"
+											className="shrink-0 text-muted-foreground/40"
 										/>
 									)}
 								</div>
@@ -296,6 +298,7 @@ export function CommandRunner() {
 				</span>
 				<ChevronRight size={10} className="shrink-0 text-muted-foreground/35" />
 				<input
+					id={commandInputId}
 					ref={inputRef}
 					type="text"
 					value={input}
@@ -312,7 +315,7 @@ export function CommandRunner() {
 					)}
 				/>
 			</div>
-		</div>
+		</label>
 	);
 }
 
diff --git a/apps/web/src/components/sandbox/file-explorer.tsx b/apps/web/src/components/sandbox/file-explorer.tsx
index 004540f..4b8f615 100644
--- a/apps/web/src/components/sandbox/file-explorer.tsx
+++ b/apps/web/src/components/sandbox/file-explorer.tsx
@@ -4,7 +4,6 @@ import {
 	File,
 	Folder,
 	FolderOpen,
-	Loader2,
 	RefreshCw,
 	Search,
 } from "lucide-react";
@@ -12,6 +11,7 @@ import { useCallback, useEffect, useMemo, useState } from "react";
 import { createSandboxApi, type SandboxFile } from "../../lib/sandbox-api";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
 import { cn } from "../../lib/utils";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { ScrollArea } from "../ui/scroll-area";
 import { FileContextMenu } from "./file-context-menu";
 import { FileSearch } from "./file-search";
@@ -159,9 +159,9 @@ export function FileExplorer() {
 				<div className="py-0.5">
 					{rootNode?.loading && rootNode.files.length === 0 ? (
 						<div className="flex items-center justify-center py-12">
-							<Loader2
+							<RoseCurveSpinner
 								size={14}
-								className="animate-spin text-muted-foreground/40"
+								className="text-muted-foreground/40"
 							/>
 						</div>
 					) : rootNode?.files.length === 0 ? (
@@ -293,7 +293,7 @@ function FileTreeNode({
 						className="flex items-center gap-1 py-1 font-mono text-[10px] text-muted-foreground/35"
 						style={{ paddingLeft: `${(depth + 1) * 12 + 8}px` }}
 					>
-						<Loader2 size={9} className="animate-spin" />
+						<RoseCurveSpinner size={9} />
 					</div>
 				) : (
 					node.files.map((child) => (
diff --git a/apps/web/src/components/sandbox/file-search.tsx b/apps/web/src/components/sandbox/file-search.tsx
index 990d7ca..14164c0 100644
--- a/apps/web/src/components/sandbox/file-search.tsx
+++ b/apps/web/src/components/sandbox/file-search.tsx
@@ -1,8 +1,9 @@
 import { useAuth } from "@clerk/clerk-react";
-import { FileText, Loader2, Search, X } from "lucide-react";
+import { FileText, Search, X } from "lucide-react";
 import { useCallback, useMemo, useRef, useState } from "react";
 import { createSandboxApi, type SearchMatch } from "../../lib/sandbox-api";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { ScrollArea } from "../ui/scroll-area";
 
 export function FileSearch({ onClose }: { onClose: () => void }) {
@@ -61,9 +62,9 @@ export function FileSearch({ onClose }: { onClose: () => void }) {
 					className="flex-1 bg-transparent font-mono text-[11px] text-foreground/80 outline-none placeholder:text-muted-foreground/30"
 				/>
 				{searching && (
-					<Loader2
+					<RoseCurveSpinner
 						size={11}
-						className="shrink-0 animate-spin text-muted-foreground/40"
+						className="shrink-0 text-muted-foreground/40"
 					/>
 				)}
 				<button
diff --git a/apps/web/src/components/sandbox/file-viewer.tsx b/apps/web/src/components/sandbox/file-viewer.tsx
index e2bb8c1..27ef44b 100644
--- a/apps/web/src/components/sandbox/file-viewer.tsx
+++ b/apps/web/src/components/sandbox/file-viewer.tsx
@@ -1,9 +1,10 @@
 import { useAuth } from "@clerk/clerk-react";
-import { Check, Copy, Download, Loader2, Pencil, Save, X } from "lucide-react";
+import { Check, Copy, Download, Pencil, Save, X } from "lucide-react";
 import { useCallback, useEffect, useMemo, useRef, useState } from "react";
 import { createSandboxApi } from "../../lib/sandbox-api";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
 import { detectLanguage, useHighlighted } from "../../lib/syntax-highlight";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { ScrollArea } from "../ui/scroll-area";
 
 interface FileCache {
@@ -75,7 +76,7 @@ export function FileViewer() {
 	if (!entry || entry.loading) {
 		return (
 			<div className="flex flex-1 items-center justify-center">
-				<Loader2 size={14} className="animate-spin text-muted-foreground/40" />
+				<RoseCurveSpinner size={14} className="text-muted-foreground/40" />
 			</div>
 		);
 	}
@@ -242,11 +243,7 @@ function FileContent({
 								title="Save (Cmd+S)"
 								className="flex h-6 items-center gap-1 px-1.5 font-mono text-[10px] text-emerald-500/70 transition-colors hover:text-emerald-500 disabled:opacity-30"
 							>
-								{saving ? (
-									<Loader2 size={11} className="animate-spin" />
-								) : (
-									<Save size={11} />
-								)}
+								{saving ? <RoseCurveSpinner size={11} /> : <Save size={11} />}
 								Save
 							</button>
 						</>
@@ -297,8 +294,8 @@ function FileContent({
 						className="sticky left-0 shrink-0 select-none border-r border-border/60 bg-muted/15 px-2 py-1.5 text-right font-mono text-[10.5px] leading-[1.65] text-muted-foreground/20"
 						aria-hidden
 					>
-						{lines.map((_, i) => (
-							<div key={i}>{i + 1}</div>
+						{lines.map((line, i) => (
+							<div key={`${i + 1}:${line}`}>{i + 1}</div>
 						))}
 					</div>
 
@@ -316,7 +313,10 @@ function FileContent({
 							/>
 						) : highlighted ? (
 							<pre className="hljs whitespace-pre-wrap break-words py-1.5 pl-3 pr-3 font-mono text-[11.5px] leading-[1.65]">
-								<code dangerouslySetInnerHTML={{ __html: highlighted }} />
+								<code
+									// biome-ignore lint/security/noDangerouslySetInnerHtml: highlight.js output for read-only file display
+									dangerouslySetInnerHTML={{ __html: highlighted }}
+								/>
 							</pre>
 						) : (
 							<pre className="whitespace-pre-wrap break-words py-1.5 pl-3 pr-3 font-mono text-[11.5px] leading-[1.65] text-foreground/80">
diff --git a/apps/web/src/components/sandbox/git-panel.tsx b/apps/web/src/components/sandbox/git-panel.tsx
index e20bb04..9255c38 100644
--- a/apps/web/src/components/sandbox/git-panel.tsx
+++ b/apps/web/src/components/sandbox/git-panel.tsx
@@ -4,7 +4,6 @@ import {
 	ChevronRight,
 	GitBranch,
 	GitCommitHorizontal,
-	Loader2,
 	Minus,
 	Plus,
 	RefreshCw,
@@ -17,6 +16,7 @@ import {
 } from "../../lib/sandbox-api";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
 import { cn } from "../../lib/utils";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { ScrollArea } from "../ui/scroll-area";
 
 type Section = "changes" | "log";
@@ -206,7 +206,7 @@ export function GitPanel() {
 					title="Refresh"
 					className="flex h-5 w-5 items-center justify-center text-muted-foreground/40 transition-colors hover:text-muted-foreground disabled:opacity-30"
 				>
-					<RefreshCw size={10} className={loading ? "animate-spin" : ""} />
+					{loading ? <RoseCurveSpinner size={10} /> : <RefreshCw size={10} />}
 				</button>
 			</div>
 
@@ -240,10 +240,7 @@ export function GitPanel() {
 
 			{loading && files.length === 0 && commits.length === 0 ? (
 				<div className="flex flex-1 items-center justify-center">
-					<Loader2
-						size={14}
-						className="animate-spin text-muted-foreground/40"
-					/>
+					<RoseCurveSpinner size={14} className="text-muted-foreground/40" />
 				</div>
 			) : (
 				<>
@@ -268,7 +265,7 @@ export function GitPanel() {
 										className="flex items-center gap-1 rounded bg-foreground/10 px-2 py-1 font-mono text-[10px] text-foreground/80 transition-colors hover:bg-foreground/15 disabled:opacity-30"
 									>
 										{committing ? (
-											<Loader2 size={9} className="animate-spin" />
+											<RoseCurveSpinner size={9} />
 										) : (
 											<Check size={9} />
 										)}
diff --git a/apps/web/src/components/sandbox/sandbox-config-form.tsx b/apps/web/src/components/sandbox/sandbox-config-form.tsx
new file mode 100644
index 0000000..48f76d5
--- /dev/null
+++ b/apps/web/src/components/sandbox/sandbox-config-form.tsx
@@ -0,0 +1,137 @@
+import { Cpu, HardDrive, Play } from "lucide-react";
+import { motion } from "motion/react";
+import { DEFAULT_SANDBOX_CONFIG, type SandboxConfig } from "../../lib/sandbox";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "../ui/select";
+
+type SandboxConfigFormProps = {
+	config: SandboxConfig;
+	setConfig: (config: SandboxConfig) => void;
+	description?: string;
+};
+
+export function SandboxConfigForm({
+	config,
+	setConfig,
+	description = "Create a sandbox for code execution, file management, terminal commands, and git operations.",
+}: SandboxConfigFormProps) {
+	return (
+		<div className="space-y-4">
+			<p className="text-xs text-muted-foreground">{description}</p>
+
+			<motion.div
+				initial={{ opacity: 0, height: 0 }}
+				animate={{ opacity: 1, height: "auto" }}
+				exit={{ opacity: 0, height: 0 }}
+				className="space-y-4"
+			>
+				<div>
+					<span className="mb-1.5 block text-xs font-medium text-foreground">
+						Sandbox Type
+					</span>
+					<div className="grid gap-2 sm:grid-cols-2">
+						<button
+							type="button"
+							onClick={() =>
+								setConfig({
+									...config,
+									persistent: DEFAULT_SANDBOX_CONFIG.persistent,
+								})
+							}
+							className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
+								!config.persistent
+									? "border-foreground bg-foreground/5"
+									: "border-border hover:bg-muted/30"
+							}`}
+						>
+							<Play size={12} className="mt-0.5 shrink-0" />
+							<div>
+								<p className="text-xs font-medium">Ephemeral</p>
+								<p className="text-[11px] text-muted-foreground">
+									Created per conversation, auto-deleted when done
+								</p>
+							</div>
+						</button>
+						<button
+							type="button"
+							onClick={() => setConfig({ ...config, persistent: true })}
+							className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
+								config.persistent
+									? "border-foreground bg-foreground/5"
+									: "border-border hover:bg-muted/30"
+							}`}
+						>
+							<HardDrive size={12} className="mt-0.5 shrink-0" />
+							<div>
+								<p className="text-xs font-medium">Persistent</p>
+								<p className="text-[11px] text-muted-foreground">
+									Maintains state across conversations
+								</p>
+							</div>
+						</button>
+					</div>
+				</div>
+
+				<div>
+					<span className="mb-1.5 block text-xs font-medium text-foreground">
+						Resource Tier
+					</span>
+					<Select
+						value={config.resourceTier}
+						onValueChange={(value) =>
+							setConfig({
+								...config,
+								resourceTier: value as SandboxConfig["resourceTier"],
+							})
+						}
+					>
+						<SelectTrigger className="max-w-sm text-xs">
+							<SelectValue />
+						</SelectTrigger>
+						<SelectContent>
+							<SelectItem value="basic">
+								<Cpu size={10} />
+								Basic - 1 CPU, 1 GB RAM, 3 GB Disk
+							</SelectItem>
+							<SelectItem value="standard">
+								<Cpu size={10} />
+								Standard - 2 CPU, 4 GB RAM, 8 GB Disk
+							</SelectItem>
+							<SelectItem value="performance">
+								<Cpu size={10} />
+								Performance - 4 CPU, 8 GB RAM, 10 GB Disk
+							</SelectItem>
+						</SelectContent>
+					</Select>
+				</div>
+
+				<div>
+					<span className="mb-1.5 block text-xs font-medium text-foreground">
+						Default Language
+					</span>
+					<Select
+						value={config.defaultLanguage}
+						onValueChange={(value) =>
+							setConfig({ ...config, defaultLanguage: value })
+						}
+					>
+						<SelectTrigger className="max-w-sm text-xs">
+							<SelectValue />
+						</SelectTrigger>
+						<SelectContent>
+							<SelectItem value="python">Python</SelectItem>
+							<SelectItem value="javascript">JavaScript</SelectItem>
+							<SelectItem value="typescript">TypeScript</SelectItem>
+							<SelectItem value="bash">Bash</SelectItem>
+						</SelectContent>
+					</Select>
+				</div>
+			</motion.div>
+		</div>
+	);
+}
diff --git a/apps/web/src/components/sandbox/sandbox-panel.tsx b/apps/web/src/components/sandbox/sandbox-panel.tsx
index 5a776a5..6d5735e 100644
--- a/apps/web/src/components/sandbox/sandbox-panel.tsx
+++ b/apps/web/src/components/sandbox/sandbox-panel.tsx
@@ -13,6 +13,7 @@ import {
 	useSandboxPanel,
 } from "../../lib/sandbox-panel-context";
 import { cn } from "../../lib/utils";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 import { CommandRunner } from "./command-input";
 import { FileExplorer } from "./file-explorer";
 import { FileViewer } from "./file-viewer";
@@ -89,6 +90,7 @@ export function SandboxPanel() {
 	const {
 		activeTab,
 		setActiveTab,
+		reloadKey,
 		activeFile,
 		openFiles,
 		togglePanel,
@@ -108,8 +110,10 @@ export function SandboxPanel() {
 			className="relative flex h-full flex-col overflow-hidden border-l border-border bg-background"
 		>
 			{/* Resize handle */}
-			<div
-				className="absolute left-0 top-0 z-10 h-full w-1 cursor-col-resize hover:bg-foreground/10 active:bg-foreground/15"
+			<button
+				type="button"
+				aria-label="Resize sandbox panel"
+				className="absolute left-0 top-0 z-10 h-full w-1 cursor-col-resize border-0 bg-transparent p-0 hover:bg-foreground/10 active:bg-foreground/15"
 				onMouseDown={handleDragStart}
 			/>
 
@@ -179,7 +183,10 @@ export function SandboxPanel() {
 			</div>
 
 			{/* Content */}
-			<div className="flex min-h-0 flex-1 flex-col overflow-hidden">
+			<div
+				key={`${panel.sandboxId ?? "none"}-${reloadKey}`}
+				className="flex min-h-0 flex-1 flex-col overflow-hidden"
+			>
 				{/* Files tab */}
 				{activeTab === "files" && (
 					<AnimatePresence mode="wait" initial={false}>
@@ -266,7 +273,11 @@ export function SandboxPanel() {
 					{terminalMode === "pty" ? (
 						<Suspense
 							fallback={
-								<div className="flex flex-1 items-center justify-center">
+								<div className="flex flex-1 items-center justify-center gap-2">
+									<RoseCurveSpinner
+										size={12}
+										className="text-muted-foreground/40"
+									/>
 									<span className="font-mono text-[10.5px] text-muted-foreground/40">
 										Loading terminal...
 									</span>
diff --git a/apps/web/src/components/sandbox/terminal.tsx b/apps/web/src/components/sandbox/terminal.tsx
index d1bef6b..90230f1 100644
--- a/apps/web/src/components/sandbox/terminal.tsx
+++ b/apps/web/src/components/sandbox/terminal.tsx
@@ -1,9 +1,10 @@
 import { useAuth } from "@clerk/clerk-react";
 import "@xterm/xterm/css/xterm.css";
-import { Loader2, RotateCcw, TerminalSquare } from "lucide-react";
+import { RotateCcw, TerminalSquare } from "lucide-react";
 import { useCallback, useEffect, useRef, useState } from "react";
 import { env } from "../../env";
 import { useSandboxPanel } from "../../lib/sandbox-panel-context";
+import { RoseCurveSpinner } from "../rose-curve-spinner";
 
 const WS_URL = (() => {
 	const url = new URL(env.VITE_FASTAPI_URL ?? "http://localhost:8000");
@@ -230,10 +231,7 @@ export function WebTerminal() {
 									: "disconnected"}
 					</span>
 					{state === "connecting" && (
-						<Loader2
-							size={10}
-							className="animate-spin text-muted-foreground/40"
-						/>
+						<RoseCurveSpinner size={10} className="text-muted-foreground/40" />
 					)}
 				</div>
 				{(state === "disconnected" || state === "error") && (
diff --git a/apps/web/src/components/skill-viewer-dialog.tsx b/apps/web/src/components/skill-viewer-dialog.tsx
new file mode 100644
index 0000000..7cd4790
--- /dev/null
+++ b/apps/web/src/components/skill-viewer-dialog.tsx
@@ -0,0 +1,139 @@
+import { convexQuery, useConvexAction } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { useQuery } from "@tanstack/react-query";
+import { Download } from "lucide-react";
+import { useCallback, useEffect, useRef, useState } from "react";
+import { MarkdownMessage } from "./markdown-message";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
+import {
+	Dialog,
+	DialogContent,
+	DialogDescription,
+	DialogHeader,
+	DialogTitle,
+} from "./ui/dialog";
+
+interface SkillViewerDialogProps {
+	/** The full skill ID, e.g. "vercel-labs/agent-skills/vercel-react-best-practices" */
+	fullId: string | null;
+	/** Short display name */
+	skillId?: string;
+	/** Source repo path */
+	source?: string;
+	/** Install count */
+	installs?: number;
+	onClose: () => void;
+}
+
+export function SkillViewerDialog({
+	fullId,
+	skillId,
+	source,
+	installs,
+	onClose,
+}: SkillViewerDialogProps) {
+	const ensureSkillDetailsFn = useConvexAction(api.skills.ensureSkillDetails);
+	// Track per-skill ensure status: maps fullId → { done, error }
+	const ensureStatusRef = useRef(
+		new Map<string, { done: boolean; error: boolean }>(),
+	);
+	// Force re-render when a status changes
+	const [, forceUpdate] = useState(0);
+
+	const detailQuery = useQuery({
+		...convexQuery(api.skills.getByName, { name: fullId ?? "" }),
+		enabled: !!fullId,
+	});
+
+	const currentStatus = fullId
+		? ensureStatusRef.current.get(fullId)
+		: undefined;
+	const ensureDone = currentStatus?.done ?? false;
+	const ensureError = currentStatus?.error ?? false;
+
+	// Fetch details when a new fullId is opened
+	useEffect(() => {
+		if (!fullId) return;
+		if (ensureStatusRef.current.has(fullId)) return;
+		ensureStatusRef.current.set(fullId, { done: false, error: false });
+		forceUpdate((n) => n + 1);
+		ensureSkillDetailsFn({ names: [fullId] })
+			.then(() => {
+				ensureStatusRef.current.set(fullId, { done: true, error: false });
+				forceUpdate((n) => n + 1);
+			})
+			.catch(() => {
+				ensureStatusRef.current.set(fullId, { done: true, error: true });
+				forceUpdate((n) => n + 1);
+			});
+	}, [fullId, ensureSkillDetailsFn]);
+
+	const formatInstalls = useCallback((n: number) => {
+		if (n >= 1_000_000) return `${(n / 1_000_000).toFixed(1)}M`;
+		if (n >= 1_000) return `${(n / 1_000).toFixed(1)}k`;
+		return n.toString();
+	}, []);
+
+	const displayName = skillId ?? fullId?.split("/").pop() ?? "";
+	const displaySource =
+		source ?? (fullId ? fullId.split("/").slice(0, -1).join("/") : "");
+
+	return (
+		<Dialog
+			open={!!fullId}
+			onOpenChange={(open) => {
+				if (!open) onClose();
+			}}
+		>
+			<DialogContent className="sm:max-w-2xl">
+				<DialogHeader>
+					<DialogTitle className="text-sm">{displayName}</DialogTitle>
+					<DialogDescription className="text-xs">
+						{displaySource}
+						{installs != null && installs > 0 && (
+							<span className="ml-2 inline-flex items-center gap-0.5">
+								<Download size={10} />
+								{formatInstalls(installs)}
+							</span>
+						)}
+					</DialogDescription>
+				</DialogHeader>
+				<div className="max-h-[70vh] overflow-y-auto">
+					{detailQuery.data?.detail ? (
+						<MarkdownMessage
+							content={detailQuery.data.detail.replace(
+								/^---\s*\n[\s\S]*?\n---\s*\n?/,
+								"",
+							)}
+						/>
+					) : detailQuery.isError || ensureError ? (
+						<div className="flex items-center justify-center py-12">
+							<span className="text-sm text-muted-foreground">
+								Failed to load skill documentation.
+							</span>
+						</div>
+					) : ensureDone &&
+						!detailQuery.isLoading &&
+						!detailQuery.isFetching ? (
+						<div className="flex items-center justify-center py-12">
+							<span className="text-sm text-muted-foreground">
+								No documentation available for this skill.
+							</span>
+						</div>
+					) : (
+						<div className="flex items-center justify-center py-12">
+							<RoseCurveSpinner
+								size={20}
+								className="text-muted-foreground"
+								label="Fetching skill documentation"
+							/>
+							<span className="ml-2 text-sm text-muted-foreground">
+								Fetching skill documentation...
+							</span>
+						</div>
+					)}
+				</div>
+			</DialogContent>
+		</Dialog>
+	);
+}
diff --git a/apps/web/src/components/skills-browser.tsx b/apps/web/src/components/skills-browser.tsx
index 219a21d..34cd8b0 100644
--- a/apps/web/src/components/skills-browser.tsx
+++ b/apps/web/src/components/skills-browser.tsx
@@ -5,7 +5,7 @@ import {
 	ArrowLeft,
 	ArrowRight,
 	Download,
-	Loader2,
+	Eye,
 	Search,
 	X,
 	Zap,
@@ -13,6 +13,8 @@ import {
 import { useCallback, useEffect, useRef, useState } from "react";
 import type { SkillEntry, SkillRow } from "../lib/skills";
 import { searchSkillsSh } from "../lib/skills-api";
+import { RoseCurveSpinner } from "./rose-curve-spinner";
+import { SkillViewerDialog } from "./skill-viewer-dialog";
 import { Badge } from "./ui/badge";
 import { Button } from "./ui/button";
 import { Checkbox } from "./ui/checkbox";
@@ -20,6 +22,43 @@ import { Input } from "./ui/input";
 
 const PAGE_SIZE = 20;
 
+/**
+ * Score a skill for search ranking.
+ * Combines text relevance (how well query matches skillId/description)
+ * with popularity (log-scaled installs). This is the standard approach
+ * used by package registries like npm, PyPI, etc.
+ */
+function scoreSkill(skill: SkillRow, query: string): number {
+	const q = query.toLowerCase();
+	const id = skill.skillId.toLowerCase();
+	const desc = skill.description.toLowerCase();
+
+	// Text relevance score (0-100)
+	let textScore = 0;
+	if (id === q) {
+		textScore = 100; // Exact match on skillId
+	} else if (id.startsWith(q)) {
+		textScore = 80; // Prefix match
+	} else if (id.includes(q)) {
+		textScore = 60; // Substring match on skillId
+	} else if (desc.includes(q)) {
+		textScore = 40; // Match in description
+	} else {
+		// Partial/fuzzy: check if all query words appear somewhere
+		const words = q.split(/\s+/);
+		const combined = `${id} ${desc}`;
+		const matchCount = words.filter((w) => combined.includes(w)).length;
+		textScore = 20 * (matchCount / Math.max(words.length, 1));
+	}
+
+	// Popularity score: log-scaled installs (0 ~50 range for typical values)
+	// log10(1) = 0, log10(1000) = 3, log10(1M) = 6
+	const popularityScore = Math.log10(skill.installs + 1) * 8;
+
+	// Weighted combination: relevance is primary, popularity is tiebreaker
+	return textScore * 0.7 + popularityScore * 0.3;
+}
+
 export function SkillsBrowser({
 	currentSkills,
 	onToggle,
@@ -35,6 +74,8 @@ export function SkillsBrowser({
 	const [browsePageIndex, setBrowsePageIndex] = useState(0);
 	const debounceRef = useRef<ReturnType<typeof setTimeout>>(undefined);
 
+	const [viewingSkill, setViewingSkill] = useState<SkillRow | null>(null);
+
 	const discoverSkillsFn = useConvexAction(api.skills.discoverSkillsFromSearch);
 
 	useEffect(() => {
@@ -97,7 +138,7 @@ export function SkillsBrowser({
 		}).catch(() => {});
 	}, [skillsShQuery.data, discoverSkillsFn]);
 
-	// Merge search results: prefer Convex (has descriptions) over skills.sh
+	// Merge and rank search results by relevance + popularity
 	const searchResults = (() => {
 		if (!debouncedSearch) return null;
 		const convexRows: SkillRow[] = (convexSearchQuery.data ?? []).map((d) => ({
@@ -109,15 +150,21 @@ export function SkillsBrowser({
 		}));
 		const shRows = skillsShQuery.data?.rows ?? [];
 
-		// Merge: convex results first, then skills.sh results not already in convex
-		const seen = new Set(convexRows.map((r) => r.fullId));
-		const merged = [...convexRows];
-		for (const row of shRows) {
+		// Merge and deduplicate, preferring Convex rows (have descriptions)
+		const seen = new Set<string>();
+		const merged: SkillRow[] = [];
+		for (const row of [...convexRows, ...shRows]) {
 			if (!seen.has(row.fullId)) {
 				seen.add(row.fullId);
 				merged.push(row);
 			}
 		}
+
+		// Rank by combined text relevance + popularity score
+		merged.sort(
+			(a, b) => scoreSkill(b, debouncedSearch) - scoreSkill(a, debouncedSearch),
+		);
+
 		return merged;
 	})();
 
@@ -217,14 +264,14 @@ export function SkillsBrowser({
 						{(searchResults ?? []).length.toLocaleString()} results
 					</Badge>
 					{isFetching && (
-						<Loader2 size={12} className="animate-spin text-muted-foreground" />
+						<RoseCurveSpinner size={12} className="text-muted-foreground" />
 					)}
 				</div>
 			)}
 
 			{isLoading ? (
 				<div className="flex items-center justify-center py-12">
-					<Loader2 size={20} className="animate-spin text-muted-foreground" />
+					<RoseCurveSpinner size={20} className="text-muted-foreground" />
 				</div>
 			) : rows.length === 0 ? (
 				<div className="flex flex-col items-center justify-center py-12 text-center">
@@ -239,17 +286,14 @@ export function SkillsBrowser({
 				<div className="grid gap-2 sm:grid-cols-2">
 					{rows.map((skill) => {
 						const added = isAdded(skill.fullId);
+						const skillPayload = {
+							name: skill.fullId,
+							description: skill.description,
+						};
 						return (
-							<button
+							<div
 								key={skill.fullId}
-								type="button"
-								onClick={() =>
-									onToggle({
-										name: skill.fullId,
-										description: skill.description,
-									})
-								}
-								className={`flex items-start gap-3 border p-3 text-left transition-colors ${
+								className={`flex items-start gap-3 border p-3 transition-colors ${
 									added
 										? "border-foreground bg-foreground/3"
 										: "border-border hover:border-foreground/20"
@@ -258,9 +302,14 @@ export function SkillsBrowser({
 								<Checkbox
 									checked={added}
 									className="mt-0.5 shrink-0"
-									tabIndex={-1}
+									onCheckedChange={() => onToggle(skillPayload)}
 								/>
-								<div className="min-w-0 flex-1">
+								<button
+									type="button"
+									aria-label={`Toggle skill ${skill.skillId}`}
+									onClick={() => onToggle(skillPayload)}
+									className="min-w-0 flex-1 border-0 bg-transparent p-0 text-left outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2"
+								>
 									<div className="flex items-center gap-2">
 										<p className="text-xs font-medium text-foreground">
 											{skill.skillId}
@@ -275,8 +324,16 @@ export function SkillsBrowser({
 									<p className="text-[10px] leading-tight text-muted-foreground/50">
 										{skill.source}
 									</p>
-								</div>
-							</button>
+								</button>
+								<button
+									type="button"
+									aria-label={`View skill ${skill.skillId}`}
+									onClick={() => setViewingSkill(skill)}
+									className="mt-0.5 shrink-0 border-0 bg-transparent p-0 text-muted-foreground/40 transition-colors hover:text-foreground"
+								>
+									<Eye size={14} />
+								</button>
+							</div>
 						);
 					})}
 				</div>
@@ -313,6 +370,13 @@ export function SkillsBrowser({
 					</Button>
 				</div>
 			)}
+			<SkillViewerDialog
+				fullId={viewingSkill?.fullId ?? null}
+				skillId={viewingSkill?.skillId}
+				source={viewingSkill?.source}
+				installs={viewingSkill?.installs}
+				onClose={() => setViewingSkill(null)}
+			/>
 		</div>
 	);
 }
diff --git a/apps/web/src/components/slash-commands.tsx b/apps/web/src/components/slash-commands.tsx
new file mode 100644
index 0000000..493708c
--- /dev/null
+++ b/apps/web/src/components/slash-commands.tsx
@@ -0,0 +1,267 @@
+import { Wrench } from "lucide-react";
+import type React from "react";
+import { useCallback, useEffect, useMemo, useRef, useState } from "react";
+import toast from "react-hot-toast";
+import type { McpServerCommand } from "../lib/mcp";
+import { cn } from "../lib/utils";
+
+// ─── Types ───────────────────────────────────────────────────────────────────
+
+export type SlashCommand = McpServerCommand;
+
+// ─── Internal helpers ────────────────────────────────────────────────────────
+
+function parseSlashCommand(
+	text: string,
+	commands: SlashCommand[],
+): { toolName: string; message: string } | null {
+	if (!text.startsWith("/")) return null;
+
+	const afterSlash = text.slice(1).trim();
+	if (!afterSlash) return null;
+
+	const sorted = [...commands].sort((a, b) => b.name.length - a.name.length);
+
+	for (const cmd of sorted) {
+		if (afterSlash === cmd.name || afterSlash.startsWith(`${cmd.name} `)) {
+			return {
+				toolName: cmd.name,
+				message: afterSlash.slice(cmd.name.length).trim(),
+			};
+		}
+		if (afterSlash === cmd.tool || afterSlash.startsWith(`${cmd.tool} `)) {
+			return {
+				toolName: cmd.name,
+				message: afterSlash.slice(cmd.tool.length).trim(),
+			};
+		}
+	}
+
+	return null;
+}
+
+function filterCommands(
+	commands: SlashCommand[],
+	query: string,
+): SlashCommand[] {
+	if (!query) return commands;
+	const q = query.toLowerCase();
+	return commands.filter(
+		(cmd) =>
+			cmd.tool.toLowerCase().includes(q) ||
+			cmd.server.toLowerCase().includes(q) ||
+			cmd.name.toLowerCase().includes(q) ||
+			cmd.description.toLowerCase().includes(q),
+	);
+}
+
+function extractQuery(text: string): string {
+	if (!text.startsWith("/")) return "";
+	const afterSlash = text.slice(1);
+	const spaceIdx = afterSlash.indexOf(" ");
+	return spaceIdx === -1
+		? afterSlash.toLowerCase()
+		: afterSlash.slice(0, spaceIdx).toLowerCase();
+}
+
+// ─── Main hook: useSlashCommandInput ─────────────────────────────────────────
+
+interface UseSlashCommandInputOptions {
+	storedCommands: SlashCommand[];
+	text: string;
+	setText: (text: string) => void;
+	textareaRef: React.RefObject<HTMLTextAreaElement | null>;
+}
+
+export function useSlashCommandInput({
+	storedCommands,
+	text,
+	setText,
+	textareaRef,
+}: UseSlashCommandInputOptions) {
+	const commands = storedCommands;
+	const [menuOpen, setMenuOpen] = useState(false);
+	const [selectedIndex, setSelectedIndex] = useState(0);
+
+	// ── Menu open/close based on text ──────────────────────────────────────────
+
+	useEffect(() => {
+		if (text.startsWith("/") && !text.includes("\n")) {
+			const parsed = parseSlashCommand(text, commands);
+			setMenuOpen(!parsed);
+		} else {
+			setMenuOpen(false);
+		}
+	}, [text, commands]);
+
+	// ── Derived state ──────────────────────────────────────────────────────────
+
+	const query = useMemo(() => extractQuery(text), [text]);
+	const filtered = useMemo(
+		() => filterCommands(commands, query),
+		[commands, query],
+	);
+
+	// biome-ignore lint/correctness/useExhaustiveDependencies: query is intentionally used to reset selection when search changes
+	useEffect(() => {
+		setSelectedIndex(0);
+	}, [query]);
+
+	// ── Select a command from the menu ─────────────────────────────────────────
+
+	const selectCommand = useCallback(
+		(cmd: SlashCommand) => {
+			setText(`/${cmd.tool} `);
+			setMenuOpen(false);
+			textareaRef.current?.focus();
+		},
+		[setText, textareaRef],
+	);
+
+	// ── Keyboard handler ──────────────────────────────────────────────────────
+
+	const handleKeyDown = useCallback(
+		(e: React.KeyboardEvent<HTMLTextAreaElement>): boolean => {
+			if (!menuOpen) return false;
+
+			if (e.key === "Escape") {
+				e.preventDefault();
+				setMenuOpen(false);
+				return true;
+			}
+			if (e.key === "ArrowUp") {
+				e.preventDefault();
+				setSelectedIndex((prev) => (prev > 0 ? prev - 1 : 0));
+				return true;
+			}
+			if (e.key === "ArrowDown") {
+				e.preventDefault();
+				setSelectedIndex((prev) =>
+					prev < filtered.length - 1 ? prev + 1 : prev,
+				);
+				return true;
+			}
+			if (e.key === "Tab" || e.key === "Enter") {
+				e.preventDefault();
+				const selected = filtered[selectedIndex];
+				if (selected) selectCommand(selected);
+				return true;
+			}
+			return false;
+		},
+		[menuOpen, filtered, selectedIndex, selectCommand],
+	);
+
+	// ── trySend ────────────────────────────────────────────────────────────────
+	// Returns { forcedTool, message } if this is a slash command, or null if not.
+	// The caller should strip the command prefix and send the message through the
+	// normal chat stream with forced_tool set.
+
+	const trySend = useCallback(
+		(content: string): { forcedTool: string; message: string } | null => {
+			const parsed = parseSlashCommand(content, commands);
+			if (!parsed) return null;
+
+			if (!parsed.message) {
+				toast.error(
+					"Add a message after the command, e.g. /tool describe what you want",
+				);
+				return { forcedTool: "", message: "" }; // signal "handled but don't send"
+			}
+
+			setMenuOpen(false);
+			return { forcedTool: parsed.toolName, message: parsed.message };
+		},
+		[commands],
+	);
+
+	// ── Public API ─────────────────────────────────────────────────────────────
+
+	return {
+		menuOpen,
+		commands,
+		filtered,
+		selectedIndex,
+		selectCommand,
+		handleKeyDown,
+		trySend,
+	};
+}
+
+// ─── Component: SlashCommandMenu ─────────────────────────────────────────────
+
+interface SlashCommandMenuProps {
+	isOpen: boolean;
+	commands: SlashCommand[];
+	filtered: SlashCommand[];
+	selectedIndex: number;
+	onSelect: (command: SlashCommand) => void;
+}
+
+export function SlashCommandMenu({
+	isOpen,
+	commands,
+	filtered,
+	selectedIndex,
+	onSelect,
+}: SlashCommandMenuProps) {
+	const listRef = useRef<HTMLDivElement>(null);
+
+	useEffect(() => {
+		if (!listRef.current) return;
+		const items = listRef.current.querySelectorAll("[data-command-item]");
+		items[selectedIndex]?.scrollIntoView({ block: "nearest" });
+	}, [selectedIndex]);
+
+	if (!isOpen) return null;
+
+	return (
+		<div className="absolute bottom-full left-0 right-0 z-50 mb-1 max-h-64 overflow-y-auto rounded-md border border-border bg-popover shadow-lg">
+			<div ref={listRef}>
+				{filtered.length === 0 ? (
+					<div className="px-3 py-4 text-sm text-muted-foreground">
+						{commands.length === 0
+							? "No MCP tools available"
+							: "No commands match your search"}
+					</div>
+				) : (
+					filtered.map((cmd, idx) => (
+						<button
+							key={cmd.name}
+							type="button"
+							data-command-item
+							onMouseDown={(e) => {
+								e.preventDefault();
+								onSelect(cmd);
+							}}
+							className={cn(
+								"flex w-full items-start gap-2.5 px-3 py-2 text-left text-sm transition-colors",
+								idx === selectedIndex
+									? "bg-accent text-accent-foreground"
+									: "text-foreground hover:bg-accent/50",
+							)}
+						>
+							<Wrench
+								size={14}
+								className="mt-0.5 shrink-0 text-muted-foreground"
+							/>
+							<div className="min-w-0 flex-1">
+								<div className="flex items-center gap-1.5">
+									<span className="font-medium">/{cmd.tool}</span>
+									<span className="text-xs text-muted-foreground">
+										{cmd.server}
+									</span>
+								</div>
+								{cmd.description && (
+									<p className="mt-0.5 truncate text-xs text-muted-foreground">
+										{cmd.description}
+									</p>
+								)}
+							</div>
+						</button>
+					))
+				)}
+			</div>
+		</div>
+	);
+}
diff --git a/apps/web/src/components/thinking-five-spinner.tsx b/apps/web/src/components/thinking-five-spinner.tsx
new file mode 100644
index 0000000..0f01bdd
--- /dev/null
+++ b/apps/web/src/components/thinking-five-spinner.tsx
@@ -0,0 +1,166 @@
+import { useEffect, useRef } from "react";
+import { cn } from "../lib/utils";
+
+interface ThinkingFiveSpinnerProps {
+	size?: number | string;
+	className?: string;
+	label?: string;
+}
+
+const PARTICLE_COUNT = 62;
+const TRAIL_SPAN = 0.38;
+const DURATION_MS = 4600;
+const ROTATION_DURATION_MS = 28000;
+const PULSE_DURATION_MS = 4200;
+const STROKE_WIDTH = 5.5;
+const BASE_RADIUS = 7;
+const DETAIL_AMPLITUDE = 3;
+const PETAL_COUNT = 5;
+const CURVE_SCALE = 3.9;
+const PATH_STEPS = 480;
+
+function point(progress: number, detailScale: number) {
+	const t = progress * Math.PI * 2;
+	const x =
+		BASE_RADIUS * Math.cos(t) -
+		DETAIL_AMPLITUDE * detailScale * Math.cos(PETAL_COUNT * t);
+	const y =
+		BASE_RADIUS * Math.sin(t) -
+		DETAIL_AMPLITUDE * detailScale * Math.sin(PETAL_COUNT * t);
+	return { x: 50 + x * CURVE_SCALE, y: 50 + y * CURVE_SCALE };
+}
+
+function normalizeProgress(p: number) {
+	return ((p % 1) + 1) % 1;
+}
+
+function getDetailScale(time: number) {
+	const pulseProgress = (time % PULSE_DURATION_MS) / PULSE_DURATION_MS;
+	const pulseAngle = pulseProgress * Math.PI * 2;
+	return 0.52 + ((Math.sin(pulseAngle + 0.55) + 1) / 2) * 0.48;
+}
+
+function buildPath(detailScale: number) {
+	let d = "";
+	for (let i = 0; i <= PATH_STEPS; i++) {
+		const pt = point(i / PATH_STEPS, detailScale);
+		d += `${i === 0 ? "M" : "L"} ${pt.x.toFixed(2)} ${pt.y.toFixed(2)} `;
+	}
+	return d;
+}
+
+const INITIAL_DETAIL_SCALE = getDetailScale(0);
+const INITIAL_PATH_D = buildPath(INITIAL_DETAIL_SCALE);
+const INITIAL_PARTICLES = Array.from({ length: PARTICLE_COUNT }, (_, i) => {
+	const tailOffset = i / (PARTICLE_COUNT - 1);
+	const pt = point(
+		normalizeProgress(-tailOffset * TRAIL_SPAN),
+		INITIAL_DETAIL_SCALE,
+	);
+	const fade = (1 - tailOffset) ** 0.56;
+	return {
+		cx: pt.x.toFixed(2),
+		cy: pt.y.toFixed(2),
+		r: (0.9 + fade * 2.7).toFixed(2),
+		opacity: (0.04 + fade * 0.96).toFixed(3),
+	};
+});
+
+export function ThinkingFiveSpinner({
+	size = 96,
+	className,
+	label = "Loading",
+}: ThinkingFiveSpinnerProps) {
+	const groupRef = useRef<SVGGElement>(null);
+	const pathRef = useRef<SVGPathElement>(null);
+	const particleRefs = useRef<Array<SVGCircleElement | null>>([]);
+
+	useEffect(() => {
+		const group = groupRef.current;
+		const pathEl = pathRef.current;
+		if (!group || !pathEl) return;
+
+		const reduced = window?.matchMedia?.(
+			"(prefers-reduced-motion: reduce)",
+		).matches;
+
+		const paintFrame = (time: number) => {
+			const progress = (time % DURATION_MS) / DURATION_MS;
+			const detailScale = getDetailScale(time);
+			const rotation =
+				-((time % ROTATION_DURATION_MS) / ROTATION_DURATION_MS) * 360;
+
+			group.setAttribute("transform", `rotate(${rotation} 50 50)`);
+			pathEl.setAttribute("d", buildPath(detailScale));
+
+			for (let i = 0; i < PARTICLE_COUNT; i++) {
+				const node = particleRefs.current[i];
+				if (!node) continue;
+				const tailOffset = i / (PARTICLE_COUNT - 1);
+				const pt = point(
+					normalizeProgress(progress - tailOffset * TRAIL_SPAN),
+					detailScale,
+				);
+				const fade = (1 - tailOffset) ** 0.56;
+				node.setAttribute("cx", pt.x.toFixed(2));
+				node.setAttribute("cy", pt.y.toFixed(2));
+				node.setAttribute("r", (0.9 + fade * 2.7).toFixed(2));
+				node.setAttribute("opacity", (0.04 + fade * 0.96).toFixed(3));
+			}
+		};
+
+		if (reduced) {
+			paintFrame(0);
+			return;
+		}
+
+		const startedAt = performance.now();
+		let rafId = 0;
+		const tick = (now: number) => {
+			paintFrame(now - startedAt);
+			rafId = requestAnimationFrame(tick);
+		};
+		rafId = requestAnimationFrame(tick);
+		return () => cancelAnimationFrame(rafId);
+	}, []);
+
+	const dim = typeof size === "number" ? `${size}px` : size;
+
+	return (
+		<svg
+			viewBox="0 0 100 100"
+			fill="none"
+			role="img"
+			aria-label={label}
+			aria-live="polite"
+			className={cn("inline-block shrink-0 overflow-visible", className)}
+			style={{ width: dim, height: dim }}
+		>
+			<g ref={groupRef}>
+				<path
+					ref={pathRef}
+					d={INITIAL_PATH_D}
+					stroke="currentColor"
+					strokeWidth={STROKE_WIDTH}
+					strokeLinecap="round"
+					strokeLinejoin="round"
+					opacity={0.1}
+				/>
+				{INITIAL_PARTICLES.map((p, i) => (
+					<circle
+						// biome-ignore lint/suspicious/noArrayIndexKey: fixed-length ordered set
+						key={i}
+						ref={(el) => {
+							particleRefs.current[i] = el;
+						}}
+						fill="currentColor"
+						cx={p.cx}
+						cy={p.cy}
+						r={p.r}
+						opacity={p.opacity}
+					/>
+				))}
+			</g>
+		</svg>
+	);
+}
diff --git a/apps/web/src/components/usage-dialog.tsx b/apps/web/src/components/usage-dialog.tsx
new file mode 100644
index 0000000..f8ee515
--- /dev/null
+++ b/apps/web/src/components/usage-dialog.tsx
@@ -0,0 +1,26 @@
+import {
+	Dialog,
+	DialogContent,
+	DialogHeader,
+	DialogTitle,
+} from "@/components/ui/dialog";
+import { UsageDisplay } from "./usage-display";
+
+export function UsageDialog({
+	open,
+	onOpenChange,
+}: {
+	open: boolean;
+	onOpenChange: (open: boolean) => void;
+}) {
+	return (
+		<Dialog open={open} onOpenChange={onOpenChange}>
+			<DialogContent className="sm:max-w-md">
+				<DialogHeader>
+					<DialogTitle>Usage</DialogTitle>
+				</DialogHeader>
+				<UsageDisplay />
+			</DialogContent>
+		</Dialog>
+	);
+}
diff --git a/apps/web/src/components/usage-display.test.ts b/apps/web/src/components/usage-display.test.ts
new file mode 100644
index 0000000..a15ac2e
--- /dev/null
+++ b/apps/web/src/components/usage-display.test.ts
@@ -0,0 +1,37 @@
+import { afterEach, beforeEach, describe, expect, it, vi } from "vitest";
+import { formatResetTime } from "./usage-display";
+
+describe("formatResetTime", () => {
+	beforeEach(() => {
+		vi.useFakeTimers();
+		vi.setSystemTime(new Date("2026-04-21T12:00:00Z"));
+	});
+	afterEach(() => {
+		vi.useRealTimers();
+	});
+
+	it("returns 'now' when the reset time is in the past or equal", () => {
+		expect(formatResetTime("2026-04-21T12:00:00Z")).toBe("now");
+		expect(formatResetTime("2026-04-21T11:00:00Z")).toBe("now");
+	});
+
+	it("returns minutes only when less than one hour remains", () => {
+		// 45 min away
+		expect(formatResetTime("2026-04-21T12:45:00Z")).toBe("45m");
+	});
+
+	it("returns hours and minutes when between 1 and 24 hours remain", () => {
+		// 5h 30m away
+		expect(formatResetTime("2026-04-21T17:30:00Z")).toBe("5h 30m");
+	});
+
+	it("returns days and hours when more than 24 hours remain", () => {
+		// 2 days, 3 hours away
+		expect(formatResetTime("2026-04-23T15:00:00Z")).toBe("2d 3h");
+	});
+
+	it("rounds minutes down (uses Math.floor)", () => {
+		// 1h 59m 59s away -> 1h 59m
+		expect(formatResetTime("2026-04-21T13:59:59Z")).toBe("1h 59m");
+	});
+});
diff --git a/apps/web/src/components/usage-display.tsx b/apps/web/src/components/usage-display.tsx
new file mode 100644
index 0000000..ad72f36
--- /dev/null
+++ b/apps/web/src/components/usage-display.tsx
@@ -0,0 +1,227 @@
+import { convexQuery } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { useQuery } from "@tanstack/react-query";
+import { cn } from "@/lib/utils";
+
+function ProgressBar({
+	pct,
+	label,
+	sublabel,
+}: {
+	pct: number;
+	label: string;
+	sublabel?: string;
+}) {
+	const color =
+		pct >= 90 ? "bg-red-500" : pct >= 70 ? "bg-yellow-500" : "bg-emerald-500";
+
+	return (
+		<div className="space-y-1.5">
+			<div className="flex items-center justify-between text-xs">
+				<span className="text-foreground/80">{label}</span>
+				<span
+					className={cn(
+						"font-medium",
+						pct >= 90
+							? "text-red-400"
+							: pct >= 70
+								? "text-yellow-400"
+								: "text-foreground/60",
+					)}
+				>
+					{Math.round(pct)}%
+				</span>
+			</div>
+			<div className="h-1.5 w-full rounded-full bg-white/10">
+				<div
+					className={cn(
+						"h-full rounded-full transition-all duration-500",
+						color,
+					)}
+					style={{ width: `${Math.min(pct, 100)}%` }}
+				/>
+			</div>
+			{sublabel && <p className="text-[10px] text-foreground/40">{sublabel}</p>}
+		</div>
+	);
+}
+
+function ModelBreakdown({
+	items,
+}: {
+	items: Array<{ model: string; pct: number; tokensUsed: number }>;
+}) {
+	if (items.length === 0) return null;
+
+	const sorted = [...items].sort((a, b) => b.pct - a.pct);
+
+	return (
+		<div className="space-y-2">
+			<h4 className="text-xs font-medium text-foreground/60 uppercase tracking-wider">
+				By Model
+			</h4>
+			<div className="space-y-1.5">
+				{sorted.map((item) => (
+					<div key={item.model} className="flex items-center gap-2">
+						<span className="text-[11px] text-foreground/70 w-28 truncate">
+							{item.model}
+						</span>
+						<div className="flex-1 h-1 rounded-full bg-white/10">
+							<div
+								className="h-full rounded-full bg-blue-400/60 transition-all duration-500"
+								style={{ width: `${Math.min(item.pct, 100)}%` }}
+							/>
+						</div>
+						<span className="text-[10px] text-foreground/40 w-10 text-right">
+							{Math.round(item.pct)}%
+						</span>
+					</div>
+				))}
+			</div>
+		</div>
+	);
+}
+
+function HarnessBreakdown({
+	items,
+}: {
+	items: Array<{
+		harnessId: string;
+		harnessName: string;
+		pct: number;
+		tokensUsed: number;
+	}>;
+}) {
+	if (items.length === 0) return null;
+
+	const sorted = [...items].sort((a, b) => b.pct - a.pct);
+
+	return (
+		<div className="space-y-2">
+			<h4 className="text-xs font-medium text-foreground/60 uppercase tracking-wider">
+				By Harness
+			</h4>
+			<div className="space-y-1.5">
+				{sorted.map((item) => (
+					<div key={item.harnessId} className="flex items-center gap-2">
+						<span className="text-[11px] text-foreground/70 w-28 truncate">
+							{item.harnessName}
+						</span>
+						<div className="flex-1 h-1 rounded-full bg-white/10">
+							<div
+								className="h-full rounded-full bg-violet-400/60 transition-all duration-500"
+								style={{ width: `${Math.min(item.pct, 100)}%` }}
+							/>
+						</div>
+						<span className="text-[10px] text-foreground/40 w-10 text-right">
+							{Math.round(item.pct)}%
+						</span>
+					</div>
+				))}
+			</div>
+		</div>
+	);
+}
+
+export function formatResetTime(isoString: string): string {
+	const reset = new Date(isoString);
+	const now = new Date();
+	const diffMs = reset.getTime() - now.getTime();
+	if (diffMs <= 0) return "now";
+
+	const hours = Math.floor(diffMs / (1000 * 60 * 60));
+	const minutes = Math.floor((diffMs % (1000 * 60 * 60)) / (1000 * 60));
+
+	if (hours > 24) {
+		const days = Math.floor(hours / 24);
+		return `${days}d ${hours % 24}h`;
+	}
+	if (hours > 0) return `${hours}h ${minutes}m`;
+	return `${minutes}m`;
+}
+
+export function UsageDisplay() {
+	const { data: usage, error } = useQuery(
+		convexQuery(api.usage.getUserUsage, {}),
+	);
+
+	if (error) {
+		return (
+			<p className="px-4 py-2 text-xs text-destructive">
+				Could not load usage.
+			</p>
+		);
+	}
+
+	if (!usage) {
+		return (
+			<div className="space-y-4 p-4">
+				<div className="h-4 w-32 animate-pulse rounded bg-white/10" />
+				<div className="h-2 w-full animate-pulse rounded bg-white/10" />
+				<div className="h-2 w-full animate-pulse rounded bg-white/10" />
+			</div>
+		);
+	}
+
+	return (
+		<div className="space-y-5">
+			<ProgressBar
+				pct={usage.dailyPctUsed}
+				label="Daily usage"
+				sublabel={`Resets in ${formatResetTime(usage.dailyResetAt)}`}
+			/>
+
+			<ProgressBar
+				pct={usage.weeklyPctUsed}
+				label="Weekly usage"
+				sublabel={`Resets in ${formatResetTime(usage.weeklyResetAt)}`}
+			/>
+
+			{(usage.dailyLimitReached || usage.weeklyLimitReached) && (
+				<div className="rounded-md border border-red-500/30 bg-red-500/10 px-3 py-2 text-xs text-red-300">
+					{usage.dailyLimitReached
+						? "Daily usage limit reached."
+						: "Weekly usage limit reached."}{" "}
+					Your limit will reset soon.
+				</div>
+			)}
+
+			<ModelBreakdown items={usage.perModelPct} />
+			<HarnessBreakdown items={usage.perHarnessPct} />
+		</div>
+	);
+}
+
+/**
+ * Compact usage badge for the sidebar/header.
+ * Shows the higher of daily/weekly percentage with a color indicator.
+ */
+export function UsageBadge({ onClick }: { onClick?: () => void }) {
+	const { data: usage } = useQuery(convexQuery(api.usage.getUserUsage, {}));
+
+	if (!usage) return null;
+
+	const pct = Math.max(usage.dailyPctUsed, usage.weeklyPctUsed);
+	const color =
+		pct >= 90
+			? "text-red-400"
+			: pct >= 70
+				? "text-yellow-400"
+				: "text-foreground/50";
+	const dotColor =
+		pct >= 90 ? "bg-red-400" : pct >= 70 ? "bg-yellow-400" : "bg-emerald-400";
+
+	return (
+		<button
+			type="button"
+			onClick={onClick}
+			className={cn(
+				"flex items-center gap-1.5 rounded-md px-2 py-1 text-xs transition-colors hover:bg-white/5",
+				color,
+			)}
+		>
+			<span className={cn("h-1.5 w-1.5 rounded-full", dotColor)} />
+			<span>{Math.round(pct)}% used</span>
+		</button>
+	);
+}
diff --git a/apps/web/src/components/workspace-color-picker.test.tsx b/apps/web/src/components/workspace-color-picker.test.tsx
new file mode 100644
index 0000000..ced5810
--- /dev/null
+++ b/apps/web/src/components/workspace-color-picker.test.tsx
@@ -0,0 +1,64 @@
+import { fireEvent, render, screen } from "@testing-library/react";
+import { describe, expect, it, vi } from "vitest";
+import { WORKSPACE_COLORS } from "../lib/workspace-colors";
+import { WorkspaceColorPicker } from "./workspace-color-picker";
+
+describe("WorkspaceColorPicker", () => {
+	it("renders the 'No color' button plus one per color", () => {
+		render(<WorkspaceColorPicker value={null} onChange={() => {}} />);
+		// 1 None + N colors
+		const buttons = screen.getAllByRole("button");
+		expect(buttons).toHaveLength(1 + WORKSPACE_COLORS.length);
+		expect(screen.getByLabelText("No color")).toBeInTheDocument();
+		for (const c of WORKSPACE_COLORS) {
+			expect(screen.getByLabelText(c.label)).toBeInTheDocument();
+		}
+	});
+
+	it("marks 'No color' as pressed when value is null", () => {
+		render(<WorkspaceColorPicker value={null} onChange={() => {}} />);
+		expect(screen.getByLabelText("No color")).toHaveAttribute(
+			"aria-pressed",
+			"true",
+		);
+		for (const c of WORKSPACE_COLORS) {
+			expect(screen.getByLabelText(c.label)).toHaveAttribute(
+				"aria-pressed",
+				"false",
+			);
+		}
+	});
+
+	it("marks the selected color as pressed", () => {
+		render(<WorkspaceColorPicker value="mint" onChange={() => {}} />);
+		expect(screen.getByLabelText("Mint")).toHaveAttribute(
+			"aria-pressed",
+			"true",
+		);
+		expect(screen.getByLabelText("No color")).toHaveAttribute(
+			"aria-pressed",
+			"false",
+		);
+	});
+
+	it("calls onChange with the color key when a color button is clicked", () => {
+		const onChange = vi.fn();
+		render(<WorkspaceColorPicker value={null} onChange={onChange} />);
+		fireEvent.click(screen.getByLabelText("Peach"));
+		expect(onChange).toHaveBeenCalledWith("peach");
+	});
+
+	it("calls onChange with null when the 'No color' button is clicked", () => {
+		const onChange = vi.fn();
+		render(<WorkspaceColorPicker value="rose" onChange={onChange} />);
+		fireEvent.click(screen.getByLabelText("No color"));
+		expect(onChange).toHaveBeenCalledWith(null);
+	});
+
+	it("applies the color's background via inline style", () => {
+		render(<WorkspaceColorPicker value={null} onChange={() => {}} />);
+		const rose = screen.getByLabelText("Rose");
+		// jsdom lowercases hex but normalizes to rgb in some browsers; compare via style prop
+		expect(rose.getAttribute("style")).toContain("background-color");
+	});
+});
diff --git a/apps/web/src/components/workspace-color-picker.tsx b/apps/web/src/components/workspace-color-picker.tsx
new file mode 100644
index 0000000..ed839c4
--- /dev/null
+++ b/apps/web/src/components/workspace-color-picker.tsx
@@ -0,0 +1,52 @@
+import { Check } from "lucide-react";
+import { cn } from "../lib/utils";
+import { WORKSPACE_COLORS } from "../lib/workspace-colors";
+
+interface WorkspaceColorPickerProps {
+	value: string | null;
+	onChange: (value: string | null) => void;
+}
+
+export function WorkspaceColorPicker({
+	value,
+	onChange,
+}: WorkspaceColorPickerProps) {
+	return (
+		<div className="flex flex-wrap items-center gap-1.5">
+			<button
+				type="button"
+				onClick={() => onChange(null)}
+				title="No color"
+				aria-label="No color"
+				aria-pressed={value === null}
+				className={cn(
+					"flex h-6 w-6 items-center justify-center rounded-full border border-border bg-background transition-all hover:scale-110",
+					value === null &&
+						"ring-2 ring-foreground/60 ring-offset-1 ring-offset-background",
+				)}
+			>
+				<span className="block h-[2px] w-3 rotate-45 rounded-full bg-muted-foreground/70" />
+			</button>
+			{WORKSPACE_COLORS.map((color) => (
+				<button
+					key={color.key}
+					type="button"
+					onClick={() => onChange(color.key)}
+					title={color.label}
+					aria-label={color.label}
+					aria-pressed={value === color.key}
+					style={{ backgroundColor: color.hex }}
+					className={cn(
+						"flex h-6 w-6 items-center justify-center rounded-full border border-border/50 transition-all hover:scale-110",
+						value === color.key &&
+							"ring-2 ring-foreground/60 ring-offset-1 ring-offset-background",
+					)}
+				>
+					{value === color.key && (
+						<Check size={11} className="text-foreground/70" />
+					)}
+				</button>
+			))}
+		</div>
+	);
+}
diff --git a/apps/web/src/env.ts b/apps/web/src/env.ts
index 1c8b986..7d85b12 100644
--- a/apps/web/src/env.ts
+++ b/apps/web/src/env.ts
@@ -4,6 +4,7 @@ import { z } from "zod";
 export const env = createEnv({
 	server: {
 		SERVER_URL: z.string().url().optional(),
+		ARCJET_KEY: z.string().min(1),
 	},
 
 	/**
@@ -23,7 +24,12 @@ export const env = createEnv({
 	 * What object holds the environment variables at runtime. This is usually
 	 * `process.env` or `import.meta.env`.
 	 */
-	runtimeEnv: import.meta.env,
+	runtimeEnv: {
+		...import.meta.env,
+		SERVER_URL: process.env.SERVER_URL,
+		// Inlined by Vite's `define` in vite.config.ts at build time.
+		ARCJET_KEY: process.env.ARCJET_KEY,
+	},
 
 	/**
 	 * By default, this library will feed the environment variables directly to
diff --git a/apps/web/src/hooks/use-command-palette-hotkey.test.tsx b/apps/web/src/hooks/use-command-palette-hotkey.test.tsx
new file mode 100644
index 0000000..05e5f0d
--- /dev/null
+++ b/apps/web/src/hooks/use-command-palette-hotkey.test.tsx
@@ -0,0 +1,165 @@
+import { act, renderHook } from "@testing-library/react";
+import type { ReactNode } from "react";
+import { describe, expect, it, vi } from "vitest";
+import {
+	CommandPaletteProvider,
+	useCommandPalette,
+} from "../lib/command-palette/context";
+import { useCommandPaletteHotkey } from "./use-command-palette-hotkey";
+
+const wrapper = ({ children }: { children: ReactNode }) => (
+	<CommandPaletteProvider>{children}</CommandPaletteProvider>
+);
+
+function dispatchKey(init: KeyboardEventInit & { target?: Element }) {
+	const target = init.target ?? document.body;
+	const evt = new KeyboardEvent("keydown", {
+		...init,
+		bubbles: true,
+		cancelable: true,
+	});
+	Object.defineProperty(evt, "target", { value: target, configurable: true });
+	target.dispatchEvent(evt);
+	return evt;
+}
+
+describe("useCommandPaletteHotkey", () => {
+	it("opens the palette on Meta+K", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => {
+			dispatchKey({ key: "k", metaKey: true });
+		});
+		expect(result.current.open).toBe(true);
+	});
+
+	it("opens the palette on Ctrl+K", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "K", ctrlKey: true }));
+		expect(result.current.open).toBe(true);
+	});
+
+	it("toggles closed on a second press", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "k", metaKey: true }));
+		expect(result.current.open).toBe(true);
+		act(() => dispatchKey({ key: "k", metaKey: true }));
+		expect(result.current.open).toBe(false);
+	});
+
+	it("opens on Meta+Shift+P", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "p", metaKey: true, shiftKey: true }));
+		expect(result.current.open).toBe(true);
+	});
+
+	it("ignores Shift+P inside an input", () => {
+		const input = document.createElement("input");
+		document.body.appendChild(input);
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() =>
+			dispatchKey({ key: "p", metaKey: true, shiftKey: true, target: input }),
+		);
+		expect(result.current.open).toBe(false);
+		input.remove();
+	});
+
+	it("still fires Meta+K inside an input (mid-typing is fine)", () => {
+		const input = document.createElement("input");
+		document.body.appendChild(input);
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "k", metaKey: true, target: input }));
+		expect(result.current.open).toBe(true);
+		input.remove();
+	});
+
+	it("ignores non-hotkey keys", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "j", metaKey: true }));
+		act(() => dispatchKey({ key: "p", metaKey: true })); // no shift
+		act(() => dispatchKey({ key: "k" })); // no mod
+		expect(result.current.open).toBe(false);
+	});
+
+	it("ignores auto-repeat events", () => {
+		const { result } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		act(() => dispatchKey({ key: "k", metaKey: true, repeat: true }));
+		expect(result.current.open).toBe(false);
+	});
+
+	it("detaches handler on unmount", () => {
+		const { result, unmount } = renderHook(
+			() => {
+				useCommandPaletteHotkey();
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		unmount();
+		// After unmount the listener is gone — reopening via event should not crash.
+		act(() => dispatchKey({ key: "k", metaKey: true }));
+		// Hook's result is stale post-unmount; just ensure no exception was thrown.
+		expect(true).toBe(true);
+		void result;
+	});
+
+	it("prevents default when toggling", () => {
+		renderHook(() => useCommandPaletteHotkey(), { wrapper });
+		const evt = new KeyboardEvent("keydown", {
+			key: "k",
+			metaKey: true,
+			bubbles: true,
+			cancelable: true,
+		});
+		const preventSpy = vi.spyOn(evt, "preventDefault");
+		document.body.dispatchEvent(evt);
+		expect(preventSpy).toHaveBeenCalled();
+	});
+});
diff --git a/apps/web/src/hooks/use-command-palette-hotkey.ts b/apps/web/src/hooks/use-command-palette-hotkey.ts
new file mode 100644
index 0000000..aebdc63
--- /dev/null
+++ b/apps/web/src/hooks/use-command-palette-hotkey.ts
@@ -0,0 +1,44 @@
+import { useEffect } from "react";
+import { useCommandPalette } from "../lib/command-palette/context";
+
+function isEditableTarget(target: EventTarget | null): boolean {
+	if (!(target instanceof HTMLElement)) return false;
+	if (target.isContentEditable) return true;
+	const tag = target.tagName;
+	return tag === "INPUT" || tag === "TEXTAREA" || tag === "SELECT";
+}
+
+/**
+ * Binds the global ⌘K / Ctrl+K (and ⌘⇧P / Ctrl+Shift+P) palette toggles.
+ * Unlike per-command shortcuts, these MUST fire from editable targets too —
+ * users expect to open the palette mid-typing.
+ */
+export function useCommandPaletteHotkey(): void {
+	const { toggle } = useCommandPalette();
+
+	useEffect(() => {
+		const handler = (e: KeyboardEvent) => {
+			if (e.repeat) return;
+
+			const mod = e.metaKey || e.ctrlKey;
+			if (!mod) return;
+
+			const isK = e.key === "k" || e.key === "K";
+			const isShiftP = e.shiftKey && (e.key === "p" || e.key === "P");
+
+			if (!isK && !isShiftP) return;
+
+			// Let ⌘K inside a contenteditable fall through only when it would clash
+			// with a native hotkey. Today nothing in this app binds it, so we
+			// intercept unconditionally — but guard Shift+P inside editable targets
+			// since browsers don't reserve it and users may type "P" into inputs.
+			if (isShiftP && isEditableTarget(e.target)) return;
+
+			e.preventDefault();
+			toggle();
+		};
+
+		document.addEventListener("keydown", handler);
+		return () => document.removeEventListener("keydown", handler);
+	}, [toggle]);
+}
diff --git a/apps/web/src/hooks/use-file-attachments.test.tsx b/apps/web/src/hooks/use-file-attachments.test.tsx
new file mode 100644
index 0000000..b04e199
--- /dev/null
+++ b/apps/web/src/hooks/use-file-attachments.test.tsx
@@ -0,0 +1,260 @@
+import { act, renderHook, waitFor } from "@testing-library/react";
+import { beforeEach, describe, expect, it, vi } from "vitest";
+
+const { mutationMock, queryMock, toastMock } = vi.hoisted(() => ({
+	mutationMock: vi.fn(),
+	queryMock: vi.fn(),
+	toastMock: vi.fn(),
+}));
+
+vi.mock("convex/react", () => ({
+	useConvex: () => ({
+		mutation: mutationMock,
+		query: queryMock,
+	}),
+}));
+
+vi.mock("react-hot-toast", () => ({
+	default: { error: toastMock, success: toastMock },
+}));
+
+vi.mock("@harness/convex-backend/convex/_generated/api", () => ({
+	api: {
+		files: {
+			generateUploadUrl: "files:generateUploadUrl",
+			getFileUrl: "files:getFileUrl",
+		},
+	},
+}));
+
+import { useFileAttachments } from "./use-file-attachments";
+
+function makeFile(name: string, type: string, size: number) {
+	const blob = new Blob([new Uint8Array(size)], { type });
+	return new File([blob], name, { type });
+}
+
+beforeEach(() => {
+	mutationMock.mockReset();
+	queryMock.mockReset();
+	toastMock.mockReset();
+	// URL.createObjectURL / revokeObjectURL in jsdom
+	if (!URL.createObjectURL) {
+		URL.createObjectURL = vi.fn(() => "blob:test");
+	}
+	if (!URL.revokeObjectURL) {
+		URL.revokeObjectURL = vi.fn();
+	}
+});
+
+describe("useFileAttachments", () => {
+	const imageMime = "image/png";
+	const pdfMime = "application/pdf";
+	const audioMime = "audio/wav";
+	const allowed = new Set([imageMime, pdfMime, audioMime]);
+
+	it("starts empty", () => {
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		expect(result.current.attachments).toEqual([]);
+		expect(result.current.hasUploading).toBe(false);
+	});
+
+	it("rejects files with disallowed mime types", () => {
+		const { result } = renderHook(() =>
+			useFileAttachments(new Set([imageMime])),
+		);
+		act(() => {
+			result.current.addFiles([makeFile("a.pdf", pdfMime, 100)]);
+		});
+		expect(result.current.attachments).toEqual([]);
+		expect(toastMock).toHaveBeenCalledWith(
+			"a.pdf: not supported by this model",
+		);
+	});
+
+	it("rejects oversized images (>10 MB)", () => {
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([
+				makeFile("big.png", imageMime, 11 * 1024 * 1024),
+			]);
+		});
+		expect(result.current.attachments).toEqual([]);
+		expect(toastMock).toHaveBeenCalledWith(
+			expect.stringContaining("exceeds 10 MB limit"),
+		);
+	});
+
+	it("rejects oversized PDFs (>20 MB)", () => {
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("big.pdf", pdfMime, 21 * 1024 * 1024)]);
+		});
+		expect(toastMock).toHaveBeenCalledWith(
+			expect.stringContaining("exceeds 20 MB limit"),
+		);
+	});
+
+	it("rejects oversized audio (>25 MB)", () => {
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([
+				makeFile("big.wav", audioMime, 26 * 1024 * 1024),
+			]);
+		});
+		expect(toastMock).toHaveBeenCalledWith(
+			expect.stringContaining("exceeds 25 MB limit"),
+		);
+	});
+
+	it("caps at 5 attachments", () => {
+		mutationMock.mockResolvedValue("https://upload/url");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(JSON.stringify({ storageId: "sid" }), { status: 200 }),
+		);
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		const files = Array.from({ length: 6 }, (_, i) =>
+			makeFile(`f${i}.png`, imageMime, 100),
+		);
+		act(() => {
+			result.current.addFiles(files);
+		});
+		expect(result.current.attachments).toHaveLength(5);
+		expect(toastMock).toHaveBeenCalledWith("Maximum 5 attachments per message");
+	});
+
+	it("creates a preview URL for images, null for non-images", () => {
+		mutationMock.mockResolvedValue("https://upload/url");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(JSON.stringify({ storageId: "sid" }), { status: 200 }),
+		);
+		const createSpy = vi
+			.spyOn(URL, "createObjectURL")
+			.mockReturnValue("blob:x");
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([
+				makeFile("a.png", imageMime, 10),
+				makeFile("b.pdf", pdfMime, 10),
+			]);
+		});
+		const att = result.current.attachments;
+		expect(att).toHaveLength(2);
+		expect(att[0].previewUrl).toBe("blob:x");
+		expect(att[1].previewUrl).toBeNull();
+		expect(createSpy).toHaveBeenCalledTimes(1);
+	});
+
+	it("transitions attachment to ready after successful upload", async () => {
+		mutationMock.mockResolvedValue("https://upload/url");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(JSON.stringify({ storageId: "stored-id" }), { status: 200 }),
+		);
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("a.png", imageMime, 10)]);
+		});
+		await waitFor(() => {
+			expect(result.current.attachments[0].status).toBe("ready");
+		});
+		expect(result.current.attachments[0].storageId).toBe("stored-id");
+		expect(result.current.hasUploading).toBe(false);
+	});
+
+	it("marks attachment as error when upload POST fails", async () => {
+		mutationMock.mockResolvedValue("https://upload/url");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response("boom", { status: 500 }),
+		);
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("a.png", imageMime, 10)]);
+		});
+		await waitFor(() => {
+			expect(result.current.attachments[0].status).toBe("error");
+		});
+		expect(toastMock).toHaveBeenCalledWith("Failed to upload a.png");
+	});
+
+	it("marks attachment as error when generateUploadUrl throws", async () => {
+		mutationMock.mockRejectedValue(new Error("auth"));
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("a.png", imageMime, 10)]);
+		});
+		await waitFor(() => {
+			expect(result.current.attachments[0].status).toBe("error");
+		});
+	});
+
+	it("removeAttachment drops by localId and revokes preview URL", async () => {
+		mutationMock.mockResolvedValue("https://upload");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(JSON.stringify({ storageId: "s" }), { status: 200 }),
+		);
+		const revoke = vi
+			.spyOn(URL, "revokeObjectURL")
+			.mockImplementation(() => {});
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("a.png", imageMime, 10)]);
+		});
+		const id = result.current.attachments[0].localId;
+		act(() => {
+			result.current.removeAttachment(id);
+		});
+		expect(result.current.attachments).toEqual([]);
+		expect(revoke).toHaveBeenCalled();
+	});
+
+	it("clearAttachments drops all and revokes previews", async () => {
+		mutationMock.mockResolvedValue("https://upload");
+		vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(JSON.stringify({ storageId: "s" }), { status: 200 }),
+		);
+		const revoke = vi
+			.spyOn(URL, "revokeObjectURL")
+			.mockImplementation(() => {});
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([
+				makeFile("a.png", imageMime, 10),
+				makeFile("b.png", imageMime, 10),
+			]);
+		});
+		act(() => {
+			result.current.clearAttachments();
+		});
+		expect(result.current.attachments).toEqual([]);
+		expect(revoke).toHaveBeenCalledTimes(2);
+	});
+
+	it("hasUploading is true right after addFiles", () => {
+		mutationMock.mockReturnValue(new Promise(() => {})); // hang forever
+		vi.spyOn(globalThis, "fetch").mockReturnValue(new Promise(() => {}));
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		act(() => {
+			result.current.addFiles([makeFile("a.png", imageMime, 10)]);
+		});
+		expect(result.current.hasUploading).toBe(true);
+	});
+
+	it("resolveSignedUrls returns resolved URLs and filters null", async () => {
+		queryMock.mockImplementation(async (_name, args: { storageId: string }) => {
+			if (args.storageId === "good") return "https://signed/good";
+			return null;
+		});
+		const { result } = renderHook(() => useFileAttachments(allowed));
+		const urls = await result.current.resolveSignedUrls([
+			{ storageId: "good", mimeType: "image/png", fileName: "a.png" },
+			{ storageId: "bad", mimeType: "image/png", fileName: "b.png" },
+		]);
+		expect(urls).toEqual([
+			{
+				url: "https://signed/good",
+				mime_type: "image/png",
+				file_name: "a.png",
+			},
+		]);
+	});
+});
diff --git a/apps/web/src/hooks/use-register-commands.test.tsx b/apps/web/src/hooks/use-register-commands.test.tsx
new file mode 100644
index 0000000..a523d91
--- /dev/null
+++ b/apps/web/src/hooks/use-register-commands.test.tsx
@@ -0,0 +1,77 @@
+import { act, renderHook } from "@testing-library/react";
+import type { ReactNode } from "react";
+import { describe, expect, it, vi } from "vitest";
+import {
+	CommandPaletteProvider,
+	useCommandPalette,
+} from "../lib/command-palette/context";
+import type { Command } from "../lib/command-palette/types";
+import { useRegisterCommands } from "./use-register-commands";
+
+const wrapper = ({ children }: { children: ReactNode }) => (
+	<CommandPaletteProvider>{children}</CommandPaletteProvider>
+);
+
+function cmd(id: string): Command {
+	return { id, title: id, group: "chat", perform: vi.fn() };
+}
+
+describe("useRegisterCommands", () => {
+	it("registers commands on mount", () => {
+		const initial = [cmd("a"), cmd("b")];
+		const { result } = renderHook(
+			() => {
+				useRegisterCommands(initial);
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		const ids = result.current
+			.snapshot()
+			.map((c) => c.id)
+			.sort();
+		expect(ids).toEqual(["a", "b"]);
+	});
+
+	it("skips effect when commands array is empty", () => {
+		const { result } = renderHook(
+			() => {
+				useRegisterCommands([]);
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		expect(result.current.snapshot()).toEqual([]);
+	});
+
+	it("unregisters on unmount", () => {
+		const initial = [cmd("x")];
+		const { result, unmount } = renderHook(
+			() => {
+				useRegisterCommands(initial);
+				return useCommandPalette();
+			},
+			{ wrapper },
+		);
+		expect(result.current.snapshot().map((c) => c.id)).toContain("x");
+		unmount();
+		// Re-mount a peek hook to check registry is empty.
+		const peek = renderHook(() => useCommandPalette(), { wrapper });
+		expect(peek.result.current.snapshot()).toEqual([]);
+	});
+
+	it("replaces stale ids when the commands array changes", () => {
+		const a = cmd("a");
+		const b = cmd("b");
+		const { result, rerender } = renderHook(
+			({ cmds }: { cmds: Command[] }) => {
+				useRegisterCommands(cmds);
+				return useCommandPalette();
+			},
+			{ wrapper, initialProps: { cmds: [a] } },
+		);
+		expect(result.current.snapshot().map((c) => c.id)).toEqual(["a"]);
+		act(() => rerender({ cmds: [b] }));
+		expect(result.current.snapshot().map((c) => c.id)).toEqual(["b"]);
+	});
+});
diff --git a/apps/web/src/hooks/use-register-commands.ts b/apps/web/src/hooks/use-register-commands.ts
new file mode 100644
index 0000000..e5b26af
--- /dev/null
+++ b/apps/web/src/hooks/use-register-commands.ts
@@ -0,0 +1,19 @@
+import { useEffect } from "react";
+import { useCommandPalette } from "../lib/command-palette/context";
+import type { Command } from "../lib/command-palette/types";
+
+/**
+ * Register a set of commands for the lifetime of the calling component.
+ * Pass a memoized `commands` array (e.g. via `useMemo`) to avoid churn.
+ * Commands are keyed by `id`; re-registering with the same id replaces the entry.
+ */
+export function useRegisterCommands(commands: Command[]): void {
+	const { register, unregister } = useCommandPalette();
+
+	useEffect(() => {
+		if (commands.length === 0) return;
+		register(commands);
+		const ids = commands.map((c) => c.id);
+		return () => unregister(ids);
+	}, [commands, register, unregister]);
+}
diff --git a/apps/web/src/hooks/use-workspace-shortcuts.test.tsx b/apps/web/src/hooks/use-workspace-shortcuts.test.tsx
new file mode 100644
index 0000000..0ab7a14
--- /dev/null
+++ b/apps/web/src/hooks/use-workspace-shortcuts.test.tsx
@@ -0,0 +1,182 @@
+import { act, renderHook } from "@testing-library/react";
+import { describe, expect, it, vi } from "vitest";
+import {
+	useModifierHeld,
+	useWorkspaceShortcuts,
+} from "./use-workspace-shortcuts";
+
+type Item = { _id: string };
+
+function dispatchKey(
+	type: "keydown" | "keyup",
+	init: KeyboardEventInit & { target?: Element },
+) {
+	const target = init.target ?? document.body;
+	const evt = new KeyboardEvent(type, {
+		...init,
+		bubbles: true,
+		cancelable: true,
+	});
+	Object.defineProperty(evt, "target", { value: target, configurable: true });
+	target.dispatchEvent(evt);
+	return evt;
+}
+
+describe("useWorkspaceShortcuts", () => {
+	it("fires onSelect for ⌘⌥1 on mac", () => {
+		const onSelect = vi.fn();
+		const items: Item[] = [{ _id: "ws-1" }, { _id: "ws-2" }];
+		renderHook(() => useWorkspaceShortcuts(items, onSelect, true));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit1", metaKey: true, altKey: true });
+		});
+		expect(onSelect).toHaveBeenCalledWith("ws-1");
+	});
+
+	it("fires onSelect for Ctrl+Alt+2 on non-mac", () => {
+		const onSelect = vi.fn();
+		const items: Item[] = [{ _id: "a" }, { _id: "b" }, { _id: "c" }];
+		renderHook(() => useWorkspaceShortcuts(items, onSelect, false));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit2", ctrlKey: true, altKey: true });
+		});
+		expect(onSelect).toHaveBeenCalledWith("b");
+	});
+
+	it("ignores when modifier combo is wrong", () => {
+		const onSelect = vi.fn();
+		renderHook(() => useWorkspaceShortcuts([{ _id: "a" }], onSelect, true));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit1", metaKey: true }); // no alt
+		});
+		expect(onSelect).not.toHaveBeenCalled();
+	});
+
+	it("ignores when digit exceeds workspace count", () => {
+		const onSelect = vi.fn();
+		renderHook(() => useWorkspaceShortcuts([{ _id: "only" }], onSelect, true));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit5", metaKey: true, altKey: true });
+		});
+		expect(onSelect).not.toHaveBeenCalled();
+	});
+
+	it("ignores when target is editable", () => {
+		const onSelect = vi.fn();
+		const input = document.createElement("input");
+		document.body.appendChild(input);
+		renderHook(() => useWorkspaceShortcuts([{ _id: "a" }], onSelect, true));
+		act(() => {
+			dispatchKey("keydown", {
+				code: "Digit1",
+				metaKey: true,
+				altKey: true,
+				target: input,
+			});
+		});
+		expect(onSelect).not.toHaveBeenCalled();
+		input.remove();
+	});
+
+	it("ignores when a modal dialog is open", () => {
+		const onSelect = vi.fn();
+		const dialog = document.createElement("div");
+		dialog.setAttribute("role", "dialog");
+		dialog.setAttribute("aria-modal", "true");
+		document.body.appendChild(dialog);
+		renderHook(() => useWorkspaceShortcuts([{ _id: "a" }], onSelect, true));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit1", metaKey: true, altKey: true });
+		});
+		expect(onSelect).not.toHaveBeenCalled();
+		dialog.remove();
+	});
+
+	it("tolerates undefined workspaces", () => {
+		const onSelect = vi.fn();
+		renderHook(() => useWorkspaceShortcuts(undefined, onSelect, true));
+		act(() => {
+			dispatchKey("keydown", { code: "Digit1", metaKey: true, altKey: true });
+		});
+		expect(onSelect).not.toHaveBeenCalled();
+	});
+
+	it("uses latest workspaces after re-render without rebinding", () => {
+		const onSelect = vi.fn();
+		let items: Item[] = [{ _id: "first" }];
+		const { rerender } = renderHook(
+			({ list }: { list: Item[] }) =>
+				useWorkspaceShortcuts(list, onSelect, true),
+			{ initialProps: { list: items } },
+		);
+		items = [{ _id: "second" }];
+		rerender({ list: items });
+		act(() => {
+			dispatchKey("keydown", { code: "Digit1", metaKey: true, altKey: true });
+		});
+		expect(onSelect).toHaveBeenCalledWith("second");
+	});
+});
+
+describe("useModifierHeld", () => {
+	it("reports held when mac combo is active", () => {
+		const { result } = renderHook(() => useModifierHeld(true));
+		expect(result.current).toBe(false);
+		act(() => {
+			dispatchKey("keydown", { key: "Meta", metaKey: true, altKey: true });
+		});
+		expect(result.current).toBe(true);
+	});
+
+	it("reports held when non-mac combo is active", () => {
+		const { result } = renderHook(() => useModifierHeld(false));
+		act(() => {
+			dispatchKey("keydown", { key: "Control", ctrlKey: true, altKey: true });
+		});
+		expect(result.current).toBe(true);
+	});
+
+	it("drops to false when combo releases", () => {
+		const { result } = renderHook(() => useModifierHeld(true));
+		act(() => {
+			dispatchKey("keydown", { key: "Meta", metaKey: true, altKey: true });
+		});
+		expect(result.current).toBe(true);
+		act(() => {
+			dispatchKey("keyup", { key: "Meta", metaKey: false, altKey: false });
+		});
+		expect(result.current).toBe(false);
+	});
+
+	it("resets on window blur", () => {
+		const { result } = renderHook(() => useModifierHeld(true));
+		act(() => {
+			dispatchKey("keydown", { key: "Meta", metaKey: true, altKey: true });
+		});
+		expect(result.current).toBe(true);
+		act(() => {
+			window.dispatchEvent(new Event("blur"));
+		});
+		expect(result.current).toBe(false);
+	});
+
+	it("resets when document becomes hidden", () => {
+		const { result } = renderHook(() => useModifierHeld(true));
+		act(() => {
+			dispatchKey("keydown", { key: "Meta", metaKey: true, altKey: true });
+		});
+		expect(result.current).toBe(true);
+		Object.defineProperty(document, "hidden", {
+			value: true,
+			configurable: true,
+		});
+		act(() => {
+			document.dispatchEvent(new Event("visibilitychange"));
+		});
+		expect(result.current).toBe(false);
+		Object.defineProperty(document, "hidden", {
+			value: false,
+			configurable: true,
+		});
+	});
+});
diff --git a/apps/web/src/hooks/use-workspace-shortcuts.ts b/apps/web/src/hooks/use-workspace-shortcuts.ts
new file mode 100644
index 0000000..b80c9a9
--- /dev/null
+++ b/apps/web/src/hooks/use-workspace-shortcuts.ts
@@ -0,0 +1,84 @@
+import { useEffect, useRef, useState } from "react";
+
+type WithId<T> = { _id: T };
+
+function isEditableTarget(target: EventTarget | null): boolean {
+	if (!(target instanceof HTMLElement)) return false;
+	if (target.isContentEditable) return true;
+	const tag = target.tagName;
+	return tag === "INPUT" || tag === "TEXTAREA" || tag === "SELECT";
+}
+
+function isModalOpen(): boolean {
+	return document.querySelector('[role="dialog"][aria-modal="true"]') !== null;
+}
+
+export function useWorkspaceShortcuts<T>(
+	workspaces: ReadonlyArray<WithId<T>> | undefined,
+	onSelect: (id: T) => void,
+	isMac: boolean,
+): void {
+	const workspacesRef = useRef(workspaces);
+	const onSelectRef = useRef(onSelect);
+	useEffect(() => {
+		workspacesRef.current = workspaces;
+		onSelectRef.current = onSelect;
+	});
+
+	useEffect(() => {
+		const handler = (e: KeyboardEvent) => {
+			if (e.repeat) return;
+			if (isEditableTarget(e.target)) return;
+			if (isModalOpen()) return;
+
+			const comboHeld = isMac
+				? e.metaKey && e.altKey && !e.ctrlKey && !e.shiftKey
+				: e.ctrlKey && e.altKey && !e.metaKey && !e.shiftKey;
+			if (!comboHeld) return;
+
+			const match = /^Digit([1-9])$/.exec(e.code);
+			if (!match) return;
+			const digit = Number(match[1]);
+			const list = workspacesRef.current;
+			if (!list || digit > list.length) return;
+
+			e.preventDefault();
+			onSelectRef.current(list[digit - 1]._id);
+		};
+		document.addEventListener("keydown", handler);
+		return () => document.removeEventListener("keydown", handler);
+	}, [isMac]);
+}
+
+export function useModifierHeld(isMac: boolean): boolean {
+	const [held, setHeld] = useState(false);
+	const heldRef = useRef(false);
+
+	useEffect(() => {
+		const update = (next: boolean) => {
+			if (heldRef.current === next) return;
+			heldRef.current = next;
+			setHeld(next);
+		};
+		const fromKey = (e: KeyboardEvent) => {
+			update(isMac ? e.metaKey && e.altKey : e.ctrlKey && e.altKey);
+		};
+		const reset = () => update(false);
+		const onVisibility = () => {
+			if (document.hidden) reset();
+		};
+
+		window.addEventListener("keydown", fromKey);
+		window.addEventListener("keyup", fromKey);
+		window.addEventListener("blur", reset);
+		document.addEventListener("visibilitychange", onVisibility);
+		return () => {
+			window.removeEventListener("keydown", fromKey);
+			window.removeEventListener("keyup", fromKey);
+			window.removeEventListener("blur", reset);
+			document.removeEventListener("visibilitychange", onVisibility);
+		};
+	}, [isMac]);
+
+	return held;
+}
diff --git a/apps/web/src/lib/arcjet.ts b/apps/web/src/lib/arcjet.ts
new file mode 100644
index 0000000..7284925
--- /dev/null
+++ b/apps/web/src/lib/arcjet.ts
@@ -0,0 +1,38 @@
+import { createClient } from "@arcjet/protocol/client.js";
+import { createTransport } from "@arcjet/transport";
+import arcjetCore, { shield, tokenBucket } from "arcjet";
+
+import { env } from "@/env";
+
+const BASE_URL = "https://decide.arcjet.com";
+
+const client = createClient({
+	baseUrl: BASE_URL,
+	// biome-ignore lint/suspicious/noExplicitAny: Arcjet SDK doesn't export the sdkStack enum type
+	sdkStack: "NODEJS" as any,
+	// Keep in sync with arcjet version in package.json
+	sdkVersion: "1.3.1",
+	timeout: 500,
+	transport: createTransport(BASE_URL),
+});
+
+export const aj = arcjetCore({
+	client,
+	key: env.ARCJET_KEY,
+	log: {
+		debug: () => {},
+		info: () => {},
+		warn: () => {},
+		error: console.error,
+	},
+	rules: [
+		tokenBucket({
+			mode: "LIVE",
+			characteristics: ["userId"],
+			refillRate: 20,
+			interval: "1m",
+			capacity: 30,
+		}),
+		shield({ mode: "LIVE" }),
+	],
+});
diff --git a/apps/web/src/lib/chat-input.ts b/apps/web/src/lib/chat-input.ts
new file mode 100644
index 0000000..d3c7dec
--- /dev/null
+++ b/apps/web/src/lib/chat-input.ts
@@ -0,0 +1,7 @@
+/** Keep in sync with FastAPI chat route validation. */
+export const CHAT_INPUT_MAX_LENGTH = 16000;
+
+/** Show the character counter once the input crosses this fraction of the cap. */
+export const CHAT_INPUT_COUNTER_THRESHOLD = Math.floor(
+	CHAT_INPUT_MAX_LENGTH * 0.8,
+);
diff --git a/apps/web/src/lib/chat-ratelimit.ts b/apps/web/src/lib/chat-ratelimit.ts
new file mode 100644
index 0000000..f287a6b
--- /dev/null
+++ b/apps/web/src/lib/chat-ratelimit.ts
@@ -0,0 +1,63 @@
+import { ArcjetHeaders } from "@arcjet/headers";
+import { createServerFn } from "@tanstack/react-start";
+import {
+	getRequestHeaders,
+	getRequestHost,
+	getRequestProtocol,
+	getWebRequest,
+} from "vinxi/http";
+import { aj } from "./arcjet";
+
+export interface RateLimitResult {
+	allowed: boolean;
+	retryAfter?: number;
+}
+
+/**
+ * Pre-flight rate limit check via Arcjet.
+ * Called before the frontend sends a chat stream request to FastAPI.
+ * Checks per-user request rate (not token budget — that's in Convex/FastAPI).
+ */
+export const checkChatRateLimit = createServerFn({ method: "POST" })
+	.inputValidator((data: { userId: string }) => data)
+	.handler(async ({ data }): Promise<RateLimitResult> => {
+		const headers = getRequestHeaders();
+		const host = getRequestHost();
+		const protocol = getRequestProtocol();
+		const request = getWebRequest();
+		const url = new URL(request.url);
+
+		const ip =
+			(headers["x-forwarded-for"] as string)?.split(",")[0]?.trim() ||
+			(headers["cf-connecting-ip"] as string) ||
+			"127.0.0.1";
+
+		const decision = await aj.protect(
+			{ getBody: async () => "" },
+			{
+				cookies: headers.cookie ?? "",
+				host,
+				headers: new ArcjetHeaders(headers),
+				ip,
+				method: "POST",
+				path: url.pathname,
+				protocol: `${protocol}:`,
+				query: url.search,
+				userId: data.userId,
+				requested: 1,
+			},
+		);
+
+		if (decision.isDenied()) {
+			let retryAfter: number | undefined;
+			for (const result of decision.results) {
+				if (result.reason.isRateLimit() && "reset" in result.reason) {
+					retryAfter = result.reason.reset as number;
+					break;
+				}
+			}
+			return { allowed: false, retryAfter };
+		}
+
+		return { allowed: true };
+	});
diff --git a/apps/web/src/lib/chat-stream-context.tsx b/apps/web/src/lib/chat-stream-context.tsx
new file mode 100644
index 0000000..47c8442
--- /dev/null
+++ b/apps/web/src/lib/chat-stream-context.tsx
@@ -0,0 +1,303 @@
+import {
+	createContext,
+	type ReactNode,
+	useCallback,
+	useContext,
+	useEffect,
+	useId,
+	useMemo,
+	useRef,
+	useState,
+} from "react";
+import {
+	type BudgetExceededInfo,
+	type ChatStreamRequest,
+	type ConvoStreamState,
+	type StreamPart,
+	type ToolCallEvent,
+	type UsageData,
+	useChatStream,
+} from "./use-chat-stream";
+
+export const EMPTY_STREAM_STATE: ConvoStreamState = {
+	content: null,
+	reasoning: null,
+	toolCalls: [],
+	parts: [],
+	pendingDoneContent: null,
+	usage: null,
+	model: null,
+};
+
+interface ChatStreamSideEffects {
+	onDone?: (
+		conversationId: string,
+		fullContent: string,
+		usage: UsageData | undefined,
+		model: string | undefined,
+	) => void;
+	onAbort?: (conversationId: string) => void;
+	onError?: (conversationId: string, message: string) => void;
+	onMcpError?: (
+		conversationId: string,
+		event: { server_name: string; server_url: string; reason: string },
+	) => void;
+	onBudgetExceeded?: (conversationId: string, info: BudgetExceededInfo) => void;
+	onSandboxStatus?: (
+		conversationId: string,
+		event: { sandbox_id: string; status: string },
+	) => void;
+}
+
+interface ChatStreamContextValue {
+	streamStates: Record<string, ConvoStreamState>;
+	streamStatesRef: React.MutableRefObject<Record<string, ConvoStreamState>>;
+	streamingConvoIds: Set<string>;
+	stream: (body: ChatStreamRequest) => Promise<void>;
+	cancel: (conversationId: string) => void;
+	clearStreamState: (conversationId: string) => void;
+	setStreamState: (
+		conversationId: string,
+		updater: (state: ConvoStreamState) => ConvoStreamState,
+	) => void;
+}
+
+const ChatStreamContext = createContext<ChatStreamContextValue | null>(null);
+
+type SideEffectsRegistry = Map<
+	string,
+	React.MutableRefObject<ChatStreamSideEffects>
+>;
+
+const SideEffectsRegistryContext =
+	createContext<React.MutableRefObject<SideEffectsRegistry> | null>(null);
+
+export function ChatStreamProvider({ children }: { children: ReactNode }) {
+	const [streamStates, setStreamStates] = useState<
+		Record<string, ConvoStreamState>
+	>({});
+	const streamStatesRef = useRef(streamStates);
+	streamStatesRef.current = streamStates;
+
+	const sideEffectsRegistryRef = useRef<SideEffectsRegistry>(new Map());
+
+	const dispatchSideEffect = useCallback(
+		<K extends keyof ChatStreamSideEffects>(
+			key: K,
+			invoke: (handler: NonNullable<ChatStreamSideEffects[K]>) => void,
+		) => {
+			for (const ref of sideEffectsRegistryRef.current.values()) {
+				const handler = ref.current[key];
+				if (handler) invoke(handler as NonNullable<ChatStreamSideEffects[K]>);
+			}
+		},
+		[],
+	);
+
+	const chatStream = useChatStream({
+		onToken: (convoId, content) => {
+			setStreamStates((prev) => {
+				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
+				const parts = [...state.parts];
+				const last = parts[parts.length - 1];
+				if (last?.type === "text") {
+					parts[parts.length - 1] = {
+						...last,
+						content: (last.content ?? "") + content,
+					};
+				} else {
+					parts.push({ type: "text", content } as StreamPart);
+				}
+				return {
+					...prev,
+					[convoId]: {
+						...state,
+						content: (state.content ?? "") + content,
+						parts,
+					},
+				};
+			});
+		},
+		onThinking: (convoId, content) => {
+			setStreamStates((prev) => {
+				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
+				const parts = [...state.parts];
+				const last = parts[parts.length - 1];
+				if (last?.type === "reasoning") {
+					parts[parts.length - 1] = {
+						...last,
+						content: (last.content ?? "") + content,
+					};
+				} else {
+					parts.push({ type: "reasoning", content } as StreamPart);
+				}
+				return {
+					...prev,
+					[convoId]: {
+						...state,
+						reasoning: (state.reasoning ?? "") + content,
+						parts,
+					},
+				};
+			});
+		},
+		onToolCall: (convoId, event: ToolCallEvent) => {
+			setStreamStates((prev) => {
+				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
+				return {
+					...prev,
+					[convoId]: {
+						...state,
+						toolCalls: [...state.toolCalls, event],
+						parts: [
+							...state.parts,
+							{
+								type: "tool_call" as const,
+								tool: event.tool,
+								arguments: event.arguments,
+								call_id: event.call_id,
+							},
+						],
+					},
+				};
+			});
+		},
+		onToolResult: (convoId, event) => {
+			setStreamStates((prev) => {
+				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
+				return {
+					...prev,
+					[convoId]: {
+						...state,
+						toolCalls: state.toolCalls.map((tc) =>
+							tc.call_id === event.call_id
+								? { ...tc, result: event.result }
+								: tc,
+						),
+						parts: state.parts.map((p) =>
+							p.type === "tool_call" && p.call_id === event.call_id
+								? { ...p, result: event.result }
+								: p,
+						),
+					},
+				};
+			});
+		},
+		onMcpError: (convoId, event) => {
+			dispatchSideEffect("onMcpError", (h) => h(convoId, event));
+		},
+		onSandboxStatus: (convoId, event) => {
+			dispatchSideEffect("onSandboxStatus", (h) => h(convoId, event));
+		},
+		onDone: (convoId, fullContent, usage, model) => {
+			setStreamStates((prev) => ({
+				...prev,
+				[convoId]: {
+					content: prev[convoId]?.content ?? fullContent,
+					reasoning: prev[convoId]?.reasoning ?? null,
+					toolCalls: prev[convoId]?.toolCalls ?? [],
+					parts: prev[convoId]?.parts ?? [],
+					pendingDoneContent: fullContent,
+					usage: usage ?? prev[convoId]?.usage ?? null,
+					model: model ?? prev[convoId]?.model ?? null,
+				},
+			}));
+			dispatchSideEffect("onDone", (h) =>
+				h(convoId, fullContent, usage, model),
+			);
+		},
+		onBudgetExceeded: (convoId, info) => {
+			dispatchSideEffect("onBudgetExceeded", (h) => h(convoId, info));
+		},
+		onError: (convoId, message) => {
+			setStreamStates((prev) => {
+				const next = { ...prev };
+				delete next[convoId];
+				return next;
+			});
+			dispatchSideEffect("onError", (h) => h(convoId, message));
+		},
+		onAbort: (convoId) => {
+			dispatchSideEffect("onAbort", (h) => h(convoId));
+		},
+	});
+
+	const clearStreamState = useCallback((convoId: string) => {
+		setStreamStates((prev) => {
+			const next = { ...prev };
+			delete next[convoId];
+			return next;
+		});
+	}, []);
+
+	const setStreamState = useCallback(
+		(
+			convoId: string,
+			updater: (state: ConvoStreamState) => ConvoStreamState,
+		) => {
+			setStreamStates((prev) => ({
+				...prev,
+				[convoId]: updater(prev[convoId] ?? EMPTY_STREAM_STATE),
+			}));
+		},
+		[],
+	);
+
+	const value = useMemo<ChatStreamContextValue>(
+		() => ({
+			streamStates,
+			streamStatesRef,
+			streamingConvoIds: chatStream.streamingConvoIds,
+			stream: chatStream.stream,
+			cancel: chatStream.cancel,
+			clearStreamState,
+			setStreamState,
+		}),
+		[
+			streamStates,
+			chatStream.streamingConvoIds,
+			chatStream.stream,
+			chatStream.cancel,
+			clearStreamState,
+			setStreamState,
+		],
+	);
+
+	return (
+		<ChatStreamContext.Provider value={value}>
+			<SideEffectsRegistryContext.Provider value={sideEffectsRegistryRef}>
+				{children}
+			</SideEffectsRegistryContext.Provider>
+		</ChatStreamContext.Provider>
+	);
+}
+
+export function useChatStreamContext() {
+	const ctx = useContext(ChatStreamContext);
+	if (!ctx) {
+		throw new Error(
+			"useChatStreamContext must be used within ChatStreamProvider",
+		);
+	}
+	return ctx;
+}
+
+export function useChatStreamSideEffects(effects: ChatStreamSideEffects) {
+	const registry = useContext(SideEffectsRegistryContext);
+	if (!registry) {
+		throw new Error(
+			"useChatStreamSideEffects must be used within ChatStreamProvider",
+		);
+	}
+	const id = useId();
+	const effectsRef = useRef(effects);
+	effectsRef.current = effects;
+
+	useEffect(() => {
+		const map = registry.current;
+		map.set(id, effectsRef);
+		return () => {
+			map.delete(id);
+		};
+	}, [registry, id]);
+}
diff --git a/apps/web/src/lib/command-palette/context.test.tsx b/apps/web/src/lib/command-palette/context.test.tsx
new file mode 100644
index 0000000..d21956d
--- /dev/null
+++ b/apps/web/src/lib/command-palette/context.test.tsx
@@ -0,0 +1,110 @@
+import { act, render, renderHook } from "@testing-library/react";
+import type { ReactNode } from "react";
+import { describe, expect, it, vi } from "vitest";
+import { CommandPaletteProvider, useCommandPalette } from "./context";
+import {
+	COMMAND_GROUP_LABELS,
+	COMMAND_GROUP_ORDER,
+	type Command,
+} from "./types";
+
+const wrapper = ({ children }: { children: ReactNode }) => (
+	<CommandPaletteProvider>{children}</CommandPaletteProvider>
+);
+
+function cmd(partial: Partial<Command> & { id: string }): Command {
+	return {
+		id: partial.id,
+		title: partial.title ?? partial.id,
+		group: partial.group ?? "chat",
+		perform: partial.perform ?? vi.fn(),
+		...partial,
+	};
+}
+
+describe("CommandPaletteProvider", () => {
+	it("throws if useCommandPalette is called outside provider", () => {
+		const spy = vi.spyOn(console, "error").mockImplementation(() => {});
+		expect(() => renderHook(() => useCommandPalette())).toThrow(
+			/must be used within a CommandPaletteProvider/,
+		);
+		spy.mockRestore();
+	});
+
+	it("starts closed", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		expect(result.current.open).toBe(false);
+	});
+
+	it("setOpen flips state", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		act(() => result.current.setOpen(true));
+		expect(result.current.open).toBe(true);
+		act(() => result.current.setOpen(false));
+		expect(result.current.open).toBe(false);
+	});
+
+	it("toggle flips state", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		act(() => result.current.toggle());
+		expect(result.current.open).toBe(true);
+		act(() => result.current.toggle());
+		expect(result.current.open).toBe(false);
+	});
+
+	it("register stores commands, snapshot returns them", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		const a = cmd({ id: "a" });
+		const b = cmd({ id: "b", group: "harness" });
+		act(() => result.current.register([a, b]));
+		const snap = result.current.snapshot();
+		expect(snap.map((c) => c.id).sort()).toEqual(["a", "b"]);
+	});
+
+	it("register overwrites by id (latest wins)", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		act(() => result.current.register([cmd({ id: "a", title: "first" })]));
+		act(() => result.current.register([cmd({ id: "a", title: "second" })]));
+		const snap = result.current.snapshot();
+		expect(snap).toHaveLength(1);
+		expect(snap[0].title).toBe("second");
+	});
+
+	it("unregister removes commands", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		act(() => result.current.register([cmd({ id: "a" }), cmd({ id: "b" })]));
+		act(() => result.current.unregister(["a"]));
+		const snap = result.current.snapshot();
+		expect(snap.map((c) => c.id)).toEqual(["b"]);
+	});
+
+	it("unregister on missing id is a no-op", () => {
+		const { result } = renderHook(() => useCommandPalette(), { wrapper });
+		act(() => result.current.register([cmd({ id: "a" })]));
+		act(() => result.current.unregister(["missing"]));
+		expect(result.current.snapshot()).toHaveLength(1);
+	});
+});
+
+describe("command group constants", () => {
+	it("order and labels align", () => {
+		for (const group of COMMAND_GROUP_ORDER) {
+			expect(COMMAND_GROUP_LABELS[group]).toBeTruthy();
+		}
+	});
+
+	it("order has no duplicates", () => {
+		expect(new Set(COMMAND_GROUP_ORDER).size).toBe(COMMAND_GROUP_ORDER.length);
+	});
+});
+
+describe("CommandPaletteProvider rendering", () => {
+	it("renders children", () => {
+		const { getByText } = render(
+			<CommandPaletteProvider>
+				<span>child-marker</span>
+			</CommandPaletteProvider>,
+		);
+		expect(getByText("child-marker")).toBeInTheDocument();
+	});
+});
diff --git a/apps/web/src/lib/command-palette/context.tsx b/apps/web/src/lib/command-palette/context.tsx
new file mode 100644
index 0000000..8b70fd3
--- /dev/null
+++ b/apps/web/src/lib/command-palette/context.tsx
@@ -0,0 +1,74 @@
+import {
+	createContext,
+	type ReactNode,
+	useCallback,
+	useContext,
+	useMemo,
+	useRef,
+	useState,
+} from "react";
+import type { Command } from "./types";
+
+interface CommandPaletteContextValue {
+	open: boolean;
+	setOpen: (value: boolean) => void;
+	toggle: () => void;
+	register: (commands: Command[]) => void;
+	unregister: (ids: string[]) => void;
+	/** Snapshot of all currently-registered commands. Stable while palette is closed. */
+	snapshot: () => Command[];
+}
+
+const CommandPaletteContext = createContext<CommandPaletteContextValue | null>(
+	null,
+);
+
+export function CommandPaletteProvider({ children }: { children: ReactNode }) {
+	const commandsRef = useRef<Map<string, Command>>(new Map());
+	const openRef = useRef(false);
+	const [open, setOpenState] = useState(false);
+
+	const setOpen = useCallback((value: boolean) => {
+		openRef.current = value;
+		setOpenState(value);
+	}, []);
+
+	const toggle = useCallback(() => {
+		setOpen(!openRef.current);
+	}, [setOpen]);
+
+	const register = useCallback((commands: Command[]) => {
+		for (const command of commands) {
+			commandsRef.current.set(command.id, command);
+		}
+	}, []);
+
+	const unregister = useCallback((ids: string[]) => {
+		for (const id of ids) commandsRef.current.delete(id);
+	}, []);
+
+	const snapshot = useCallback(() => {
+		return Array.from(commandsRef.current.values());
+	}, []);
+
+	const value = useMemo<CommandPaletteContextValue>(
+		() => ({ open, setOpen, toggle, register, unregister, snapshot }),
+		[open, setOpen, toggle, register, unregister, snapshot],
+	);
+
+	return (
+		<CommandPaletteContext.Provider value={value}>
+			{children}
+		</CommandPaletteContext.Provider>
+	);
+}
+
+export function useCommandPalette(): CommandPaletteContextValue {
+	const ctx = useContext(CommandPaletteContext);
+	if (!ctx) {
+		throw new Error(
+			"useCommandPalette must be used within a CommandPaletteProvider",
+		);
+	}
+	return ctx;
+}
diff --git a/apps/web/src/lib/command-palette/recent.test.ts b/apps/web/src/lib/command-palette/recent.test.ts
new file mode 100644
index 0000000..385f5af
--- /dev/null
+++ b/apps/web/src/lib/command-palette/recent.test.ts
@@ -0,0 +1,61 @@
+import { afterEach, beforeEach, describe, expect, it } from "vitest";
+import { getRecentCommandIds, pushRecentCommand } from "./recent";
+
+beforeEach(() => {
+	window.localStorage.clear();
+});
+
+afterEach(() => {
+	window.localStorage.clear();
+});
+
+describe("getRecentCommandIds", () => {
+	it("returns empty array when nothing stored", () => {
+		expect(getRecentCommandIds()).toEqual([]);
+	});
+
+	it("returns stored ids", () => {
+		window.localStorage.setItem("cmdk:recent", JSON.stringify(["a", "b"]));
+		expect(getRecentCommandIds()).toEqual(["a", "b"]);
+	});
+
+	it("filters non-string entries", () => {
+		window.localStorage.setItem(
+			"cmdk:recent",
+			JSON.stringify(["a", 42, null, "b"]),
+		);
+		expect(getRecentCommandIds()).toEqual(["a", "b"]);
+	});
+
+	it("returns empty array if stored value is not an array", () => {
+		window.localStorage.setItem("cmdk:recent", JSON.stringify({ foo: "bar" }));
+		expect(getRecentCommandIds()).toEqual([]);
+	});
+
+	it("returns empty array if stored value is invalid JSON", () => {
+		window.localStorage.setItem("cmdk:recent", "{not json}");
+		expect(getRecentCommandIds()).toEqual([]);
+	});
+});
+
+describe("pushRecentCommand", () => {
+	it("stores the id as the head of the list", () => {
+		pushRecentCommand("one");
+		expect(getRecentCommandIds()).toEqual(["one"]);
+	});
+
+	it("moves an existing id to the front (no duplicates)", () => {
+		pushRecentCommand("a");
+		pushRecentCommand("b");
+		pushRecentCommand("a");
+		expect(getRecentCommandIds()).toEqual(["a", "b"]);
+	});
+
+	it("caps the list at 20 entries", () => {
+		for (let i = 0; i < 25; i++) pushRecentCommand(`id-${i}`);
+		const ids = getRecentCommandIds();
+		expect(ids).toHaveLength(20);
+		expect(ids[0]).toBe("id-24");
+		expect(ids[19]).toBe("id-5");
+	});
+});
diff --git a/apps/web/src/lib/command-palette/recent.ts b/apps/web/src/lib/command-palette/recent.ts
new file mode 100644
index 0000000..d03a3ca
--- /dev/null
+++ b/apps/web/src/lib/command-palette/recent.ts
@@ -0,0 +1,37 @@
+const STORAGE_KEY = "cmdk:recent";
+const MAX_RECENT = 20;
+
+function safeStorage(): Storage | null {
+	if (typeof window === "undefined") return null;
+	try {
+		return window.localStorage;
+	} catch {
+		return null;
+	}
+}
+
+export function getRecentCommandIds(): string[] {
+	const storage = safeStorage();
+	if (!storage) return [];
+	try {
+		const raw = storage.getItem(STORAGE_KEY);
+		if (!raw) return [];
+		const parsed = JSON.parse(raw);
+		if (!Array.isArray(parsed)) return [];
+		return parsed.filter((x): x is string => typeof x === "string");
+	} catch {
+		return [];
+	}
+}
+
+export function pushRecentCommand(id: string): void {
+	const storage = safeStorage();
+	if (!storage) return;
+	const current = getRecentCommandIds().filter((x) => x !== id);
+	const next = [id, ...current].slice(0, MAX_RECENT);
+	try {
+		storage.setItem(STORAGE_KEY, JSON.stringify(next));
+	} catch {
+		// Quota exceeded or storage disabled — silent failure is fine.
+	}
+}
diff --git a/apps/web/src/lib/command-palette/types.ts b/apps/web/src/lib/command-palette/types.ts
new file mode 100644
index 0000000..25b992a
--- /dev/null
+++ b/apps/web/src/lib/command-palette/types.ts
@@ -0,0 +1,56 @@
+import type { LucideIcon } from "lucide-react";
+import type { ComponentType } from "react";
+
+export type CommandGroupId =
+	| "recent"
+	| "navigation"
+	| "workspace"
+	| "chat"
+	| "harness"
+	| "sandbox"
+	| "account";
+
+export const COMMAND_GROUP_LABELS: Record<CommandGroupId, string> = {
+	recent: "Recently used",
+	navigation: "Navigate",
+	workspace: "Workspaces",
+	chat: "Chat",
+	harness: "Harnesses",
+	sandbox: "Sandboxes",
+	account: "Account",
+};
+
+export const COMMAND_GROUP_ORDER: CommandGroupId[] = [
+	"recent",
+	"navigation",
+	"workspace",
+	"chat",
+	"harness",
+	"sandbox",
+	"account",
+];
+
+export type CommandIcon = LucideIcon | ComponentType<{ className?: string }>;
+
+export interface Command {
+	/** Stable ID used for dedup and recent-commands tracking. */
+	id: string;
+	/** Primary label — the line users read and match against. */
+	title: string;
+	/** Secondary text rendered right-aligned in muted tone. */
+	subtitle?: string;
+	/** Which group this command renders under. */
+	group: CommandGroupId;
+	/** Extra terms that should match but aren't shown. */
+	keywords?: string[];
+	/** Leading icon. */
+	icon?: CommandIcon;
+	/** Hex color rendered as a 8px leading dot (e.g. workspace color). */
+	colorDot?: string;
+	/** Right-aligned keyboard hint like `⌘⌥1`. */
+	shortcut?: string;
+	/** Handler invoked when the command is activated. Return a promise to show loading. */
+	perform: () => void | Promise<void>;
+	/** If false, the command is hidden. Evaluated at palette-open time. */
+	when?: () => boolean;
+}
diff --git a/apps/web/src/lib/mcp.test.ts b/apps/web/src/lib/mcp.test.ts
new file mode 100644
index 0000000..0931d61
--- /dev/null
+++ b/apps/web/src/lib/mcp.test.ts
@@ -0,0 +1,257 @@
+import type { UserResource } from "@clerk/types";
+import { describe, expect, it, vi } from "vitest";
+import {
+	fetchCommandsFromApi,
+	getPrincetonNetid,
+	hasTigerJunctionServers,
+	type McpServerEntry,
+	PRESET_MCPS,
+	presetIdsToServerEntries,
+	sanitizeServerName,
+	toMcpServerPayload,
+} from "./mcp";
+
+describe("PRESET_MCPS", () => {
+	it("exposes a non-empty preset catalog", () => {
+		expect(PRESET_MCPS.length).toBeGreaterThan(0);
+	});
+
+	it("ids are unique", () => {
+		const ids = PRESET_MCPS.map((p) => p.id);
+		expect(new Set(ids).size).toBe(ids.length);
+	});
+
+	it("each preset has a server URL and auth type", () => {
+		for (const p of PRESET_MCPS) {
+			expect(p.server.url).toMatch(/^https?:\/\//);
+			expect(["none", "bearer", "oauth", "tiger_junction"]).toContain(
+				p.server.authType,
+			);
+		}
+	});
+});
+
+describe("sanitizeServerName", () => {
+	it("keeps alphanumerics, underscores, hyphens", () => {
+		expect(sanitizeServerName("github-copilot_v2")).toBe("github-copilot_v2");
+	});
+
+	it("replaces spaces and punctuation with underscores", () => {
+		expect(sanitizeServerName("Princeton Courses!")).toBe("Princeton_Courses_");
+	});
+
+	it("handles empty string", () => {
+		expect(sanitizeServerName("")).toBe("");
+	});
+});
+
+describe("toMcpServerPayload", () => {
+	it("snake-cases authType and omits missing tokens", () => {
+		const servers: McpServerEntry[] = [
+			{ name: "A", url: "https://a", authType: "none" },
+			{ name: "B", url: "https://b", authType: "bearer", authToken: "tok" },
+		];
+		expect(toMcpServerPayload(servers)).toEqual([
+			{ name: "A", url: "https://a", auth_type: "none" },
+			{ name: "B", url: "https://b", auth_type: "bearer", auth_token: "tok" },
+		]);
+	});
+
+	it("returns empty array for empty input", () => {
+		expect(toMcpServerPayload([])).toEqual([]);
+	});
+});
+
+describe("presetIdsToServerEntries", () => {
+	it("resolves known preset ids", () => {
+		const entries = presetIdsToServerEntries(["github", "notion"]);
+		expect(entries).toHaveLength(2);
+		expect(entries[0].name).toBe("GitHub");
+		expect(entries[1].name).toBe("Notion");
+	});
+
+	it("skips unknown ids silently", () => {
+		const entries = presetIdsToServerEntries(["github", "nonexistent-preset"]);
+		expect(entries).toHaveLength(1);
+		expect(entries[0].name).toBe("GitHub");
+	});
+
+	it("handles empty input", () => {
+		expect(presetIdsToServerEntries([])).toEqual([]);
+	});
+});
+
+describe("hasTigerJunctionServers", () => {
+	it("true when any server has tiger_junction auth", () => {
+		expect(
+			hasTigerJunctionServers([
+				{ name: "x", url: "https://x", authType: "none" },
+				{ name: "pc", url: "https://pc", authType: "tiger_junction" },
+			]),
+		).toBe(true);
+	});
+
+	it("false otherwise", () => {
+		expect(
+			hasTigerJunctionServers([
+				{ name: "x", url: "https://x", authType: "none" },
+				{ name: "y", url: "https://y", authType: "oauth" },
+			]),
+		).toBe(false);
+	});
+
+	it("false for empty list", () => {
+		expect(hasTigerJunctionServers([])).toBe(false);
+	});
+});
+
+describe("getPrincetonNetid", () => {
+	it("returns null for null/undefined user", () => {
+		expect(getPrincetonNetid(null)).toBeNull();
+		expect(getPrincetonNetid(undefined)).toBeNull();
+	});
+
+	it("extracts netid from primary email", () => {
+		const user = {
+			primaryEmailAddress: { emailAddress: "abc123@princeton.edu" },
+			emailAddresses: [],
+			externalAccounts: [],
+		} as unknown as UserResource;
+		expect(getPrincetonNetid(user)).toBe("abc123");
+	});
+
+	it("falls through to verified email addresses", () => {
+		const user = {
+			primaryEmailAddress: { emailAddress: "me@gmail.com" },
+			emailAddresses: [
+				{
+					emailAddress: "me@gmail.com",
+					verification: { status: "verified" },
+				},
+				{
+					emailAddress: "xyz789@princeton.edu",
+					verification: { status: "verified" },
+				},
+			],
+			externalAccounts: [],
+		} as unknown as UserResource;
+		expect(getPrincetonNetid(user)).toBe("xyz789");
+	});
+
+	it("ignores unverified princeton emails", () => {
+		const user = {
+			primaryEmailAddress: { emailAddress: "me@gmail.com" },
+			emailAddresses: [
+				{
+					emailAddress: "xyz789@princeton.edu",
+					verification: { status: "unverified" },
+				},
+			],
+			externalAccounts: [],
+		} as unknown as UserResource;
+		expect(getPrincetonNetid(user)).toBeNull();
+	});
+
+	it("checks external accounts as final fallback", () => {
+		const user = {
+			primaryEmailAddress: { emailAddress: "me@gmail.com" },
+			emailAddresses: [],
+			externalAccounts: [
+				{
+					emailAddress: "netid9@princeton.edu",
+					verification: { status: "verified" },
+				},
+			],
+		} as unknown as UserResource;
+		expect(getPrincetonNetid(user)).toBe("netid9");
+	});
+
+	it("returns null when nothing matches", () => {
+		const user = {
+			primaryEmailAddress: { emailAddress: "me@gmail.com" },
+			emailAddresses: [],
+			externalAccounts: [],
+		} as unknown as UserResource;
+		expect(getPrincetonNetid(user)).toBeNull();
+	});
+});
+
+describe("fetchCommandsFromApi", () => {
+	it("returns commands array on 200", async () => {
+		const servers: McpServerEntry[] = [
+			{ name: "x", url: "https://x", authType: "none" },
+		];
+		const fetchSpy = vi.spyOn(globalThis, "fetch").mockResolvedValue(
+			new Response(
+				JSON.stringify({
+					commands: [
+						{
+							name: "foo",
+							server: "x",
+							tool: "bar",
+							description: "d",
+							parameters: { foo: "bar" },
+						},
+					],
+				}),
+				{ status: 200 },
+			),
+		);
+		const result = await fetchCommandsFromApi(
+			"https://api.example",
+			servers,
+			"tok",
+		);
+		expect(result).toHaveLength(1);
+		expect(result?.[0].name).toBe("foo");
+		expect(fetchSpy).toHaveBeenCalledWith(
+			"https://api.example/api/commands/list",
+			expect.objectContaining({
+				method: "POST",
+				headers: expect.objectContaining({
+					Authorization: "Bearer tok",
+				}),
+			}),
+		);
+		fetchSpy.mockRestore();
+	});
+
+	it("omits Authorization header when no token", async () => {
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockResolvedValue(
+				new Response(JSON.stringify({ commands: [] }), { status: 200 }),
+			);
+		await fetchCommandsFromApi("https://api.example", [], null);
+		const headers = (fetchSpy.mock.calls[0][1]?.headers ?? {}) as Record<
+			string,
+			string
+		>;
+		expect(headers.Authorization).toBeUndefined();
+		fetchSpy.mockRestore();
+	});
+
+	it("returns null on non-ok response", async () => {
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockResolvedValue(new Response("nope", { status: 500 }));
+		expect(await fetchCommandsFromApi("https://api", [], null)).toBeNull();
+		fetchSpy.mockRestore();
+	});
+
+	it("returns null on thrown error", async () => {
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockRejectedValue(new Error("net"));
+		expect(await fetchCommandsFromApi("https://api", [], null)).toBeNull();
+		fetchSpy.mockRestore();
+	});
+
+	it("returns empty array when response has no commands key", async () => {
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockResolvedValue(new Response(JSON.stringify({}), { status: 200 }));
+		expect(await fetchCommandsFromApi("https://api", [], null)).toEqual([]);
+		fetchSpy.mockRestore();
+	});
+});
diff --git a/apps/web/src/lib/mcp.ts b/apps/web/src/lib/mcp.ts
index bf94a98..96ae459 100644
--- a/apps/web/src/lib/mcp.ts
+++ b/apps/web/src/lib/mcp.ts
@@ -2,11 +2,20 @@ import type { UserResource } from "@clerk/types";
 
 export type McpAuthType = "none" | "bearer" | "oauth" | "tiger_junction";
 
+export interface McpServerCommand {
+	name: string;
+	server: string;
+	tool: string;
+	description: string;
+	parameters: Record<string, unknown>;
+}
+
 export interface McpServerEntry {
 	name: string;
 	url: string;
 	authType: McpAuthType;
 	authToken?: string;
+	commandIds?: string[];
 }
 
 export interface PresetMcpDefinition {
@@ -17,6 +26,7 @@ export interface PresetMcpDefinition {
 	server: McpServerEntry;
 }
 
+// When adding/removing MCPs, also update _PRESET_MCP_CATALOG in packages/fastapi/app/routes/harness_suggest.py.
 export const PRESET_MCPS: PresetMcpDefinition[] = [
 	{
 		id: "princetoncourses",
@@ -54,6 +64,18 @@ export const PRESET_MCPS: PresetMcpDefinition[] = [
 			authType: "tiger_junction",
 		},
 	},
+	{
+		id: "tigerpath",
+		description:
+			"Plan your 4-year course schedule, explore major requirements, and see when students typically take courses.",
+		iconName: "https://www.google.com/s2/favicons?domain=princeton.edu&sz=64",
+		category: "student",
+		server: {
+			name: "TigerPath",
+			url: "https://junction-engine.tigerapps.org/path/mcp",
+			authType: "tiger_junction",
+		},
+	},
 	{
 		id: "github",
 		description:
@@ -90,18 +112,6 @@ export const PRESET_MCPS: PresetMcpDefinition[] = [
 			authType: "oauth",
 		},
 	},
-	{
-		id: "slack",
-		description:
-			"(wait until deployed)Send messages, read channel history, and search conversations.",
-		iconName: "slack",
-		category: "comms",
-		server: {
-			name: "Slack",
-			url: "https://mcp.slack.com/mcp",
-			authType: "oauth",
-		},
-	},
 	// Not supported for none VIPs yet
 	// {
 	// 	id: "figma",
@@ -138,17 +148,6 @@ export const PRESET_MCPS: PresetMcpDefinition[] = [
 	// 		authType: "oauth",
 	// 	},
 	// },
-	{
-		id: "jira",
-		description: "Create tickets, track sprints, and manage Agile releases.",
-		iconName: "jira",
-		category: "productivity",
-		server: {
-			name: "Jira",
-			url: "https://mcp.atlassian.com/v1/mcp",
-			authType: "oauth",
-		},
-	},
 	{
 		id: "awsknowledge",
 		description:
@@ -186,6 +185,66 @@ export const PRESET_MCPS: PresetMcpDefinition[] = [
 	},
 ];
 
+/** Build the API payload shape for MCP servers. */
+export function toMcpServerPayload(servers: McpServerEntry[]) {
+	return servers.map((s) => ({
+		name: s.name,
+		url: s.url,
+		auth_type: s.authType,
+		...(s.authToken ? { auth_token: s.authToken } : {}),
+	}));
+}
+
+/**
+ * Fetch slash commands from the FastAPI backend.
+ * Returns the raw command list with $-prefixed keys stripped from parameters,
+ * or null if the fetch fails.
+ */
+export async function fetchCommandsFromApi(
+	apiUrl: string,
+	servers: McpServerEntry[],
+	token: string | null,
+): Promise<McpServerCommand[] | null> {
+	try {
+		const res = await fetch(`${apiUrl}/api/commands/list`, {
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				...(token ? { Authorization: `Bearer ${token}` } : {}),
+			},
+			body: JSON.stringify({ mcp_servers: toMcpServerPayload(servers) }),
+		});
+		if (!res.ok) return null;
+		const data = await res.json();
+		return (data.commands ?? []).map((c: McpServerCommand) => ({
+			name: c.name,
+			server: c.server,
+			tool: c.tool,
+			description: c.description,
+			parameters: c.parameters,
+		}));
+	} catch {
+		return null;
+	}
+}
+
+/** Sanitize a name the same way the backend does (non-alphanumeric → underscore). */
+export const sanitizeServerName = (n: string) =>
+	n.replace(/[^a-zA-Z0-9_-]/g, "_");
+
+/** Validate an MCP server URL. Returns an error string or null if valid. */
+export function validateMcpUrl(url: string): string | null {
+	if (/\s/.test(url)) return "URL must not contain spaces";
+	try {
+		const parsed = new URL(url);
+		if (parsed.protocol !== "http:" && parsed.protocol !== "https:")
+			return "URL must start with http:// or https://";
+	} catch {
+		return "Please enter a valid URL";
+	}
+	return null;
+}
+
 /** Converts an array of selected preset IDs into their McpServerEntry objects. */
 export function presetIdsToServerEntries(ids: string[]): McpServerEntry[] {
 	return ids.flatMap((id) => {
diff --git a/apps/web/src/lib/models.test.ts b/apps/web/src/lib/models.test.ts
new file mode 100644
index 0000000..f8244ab
--- /dev/null
+++ b/apps/web/src/lib/models.test.ts
@@ -0,0 +1,111 @@
+import { describe, expect, it } from "vitest";
+import {
+	acceptString,
+	allowedMimeTypes,
+	MODELS,
+	mimeToAudioFormat,
+	modelSupportsAudio,
+	modelSupportsMedia,
+} from "./models";
+
+describe("MODELS catalog", () => {
+	it("has unique values", () => {
+		const values = MODELS.map((m) => m.value);
+		expect(new Set(values).size).toBe(values.length);
+	});
+
+	it("every model has label and modalities array", () => {
+		for (const m of MODELS) {
+			expect(m.value).toBeTruthy();
+			expect(m.label).toBeTruthy();
+			expect(Array.isArray(m.modalities)).toBe(true);
+		}
+	});
+});
+
+describe("modelSupportsMedia", () => {
+	it("true for image-capable models", () => {
+		expect(modelSupportsMedia("gpt-5.4")).toBe(true);
+		expect(modelSupportsMedia("claude-opus-4.7")).toBe(true);
+		expect(modelSupportsMedia("gemini-3.1-pro")).toBe(true);
+	});
+
+	it("false for unknown models", () => {
+		expect(modelSupportsMedia("made-up-model-2")).toBe(false);
+	});
+
+	it("false for undefined / unknown models", () => {
+		expect(modelSupportsMedia(undefined)).toBe(false);
+		expect(modelSupportsMedia("made-up-model")).toBe(false);
+	});
+});
+
+describe("modelSupportsAudio", () => {
+	it("true for gemini audio-capable models", () => {
+		expect(modelSupportsAudio("gemini-3.1-pro")).toBe(true);
+		expect(modelSupportsAudio("gemini-3-flash")).toBe(true);
+	});
+
+	it("false for non-audio models", () => {
+		expect(modelSupportsAudio("gpt-5.4")).toBe(false);
+		expect(modelSupportsAudio("claude-sonnet-4.6")).toBe(false);
+	});
+
+	it("false for undefined", () => {
+		expect(modelSupportsAudio(undefined)).toBe(false);
+	});
+});
+
+describe("allowedMimeTypes", () => {
+	it("returns empty set for text-only model", () => {
+		expect(allowedMimeTypes("made-up-model").size).toBe(0);
+	});
+
+	it("returns images + pdf for gpt-5.4", () => {
+		const mimes = allowedMimeTypes("gpt-5.4");
+		expect(mimes.has("image/png")).toBe(true);
+		expect(mimes.has("image/jpeg")).toBe(true);
+		expect(mimes.has("application/pdf")).toBe(true);
+		expect(mimes.has("audio/wav")).toBe(false);
+	});
+
+	it("returns image + pdf + audio for gemini-3.1-pro", () => {
+		const mimes = allowedMimeTypes("gemini-3.1-pro");
+		expect(mimes.has("image/png")).toBe(true);
+		expect(mimes.has("application/pdf")).toBe(true);
+		expect(mimes.has("audio/wav")).toBe(true);
+		expect(mimes.has("audio/mpeg")).toBe(true);
+	});
+
+	it("returns empty set for undefined model", () => {
+		expect(allowedMimeTypes(undefined).size).toBe(0);
+	});
+});
+
+describe("acceptString", () => {
+	it("returns comma-separated mime list", () => {
+		const accept = acceptString("gpt-5.4");
+		expect(accept).toContain("image/png");
+		expect(accept).toContain("application/pdf");
+		expect(accept.split(",")).toHaveLength(5);
+	});
+
+	it("returns empty string when no modalities", () => {
+		expect(acceptString("made-up-model")).toBe("");
+	});
+});
+
+describe("mimeToAudioFormat", () => {
+	it("maps known audio mimes", () => {
+		expect(mimeToAudioFormat("audio/wav")).toBe("wav");
+		expect(mimeToAudioFormat("audio/mpeg")).toBe("mp3");
+		expect(mimeToAudioFormat("audio/mp3")).toBe("mp3");
+		expect(mimeToAudioFormat("audio/x-m4a")).toBe("m4a");
+		expect(mimeToAudioFormat("audio/webm")).toBe("webm");
+	});
+
+	it("falls back to wav for unknown mimes", () => {
+		expect(mimeToAudioFormat("audio/something-else")).toBe("wav");
+		expect(mimeToAudioFormat("")).toBe("wav");
+	});
+});
diff --git a/apps/web/src/lib/models.ts b/apps/web/src/lib/models.ts
index 0623cef..73295f2 100644
--- a/apps/web/src/lib/models.ts
+++ b/apps/web/src/lib/models.ts
@@ -7,55 +7,51 @@ export const MODELS: Array<{
 	label: string;
 	modalities: Modality[];
 }> = [
-	// Audio input: only Gemini models are confirmed on OpenRouter
-	{ value: "openai/gpt-5.4", label: "GPT-5.4", modalities: ["image", "pdf"] },
-	{ value: "gpt-4o", label: "GPT-4o", modalities: ["image", "pdf"] },
-	{ value: "gpt-4.1", label: "GPT-4.1", modalities: ["image", "pdf"] },
+	// OpenAI
+	{ value: "gpt-5.5", label: "GPT-5.5", modalities: ["image", "pdf"] },
+	{ value: "gpt-5.4", label: "GPT-5.4", modalities: ["image", "pdf"] },
+	// Anthropic
 	{
-		value: "gpt-4.1-mini",
-		label: "GPT-4.1 Mini",
+		value: "claude-sonnet-4.6",
+		label: "Claude Sonnet 4.6",
 		modalities: ["image", "pdf"],
 	},
 	{
-		value: "claude-sonnet-4",
-		label: "Claude Sonnet 4",
+		value: "claude-sonnet-4.6-thinking",
+		label: "Claude Sonnet 4.6 (Thinking)",
 		modalities: ["image", "pdf"],
 	},
 	{
-		value: "claude-sonnet-4-thinking",
-		label: "Claude Sonnet 4 (Thinking)",
+		value: "claude-opus-4.6-fast",
+		label: "Claude Opus 4.6 (Fast)",
 		modalities: ["image", "pdf"],
 	},
 	{
-		value: "claude-opus-4",
-		label: "Claude Opus 4",
+		value: "claude-opus-4.7",
+		label: "Claude Opus 4.7",
 		modalities: ["image", "pdf"],
 	},
 	{
-		value: "claude-opus-4-thinking",
-		label: "Claude Opus 4 (Thinking)",
+		value: "claude-opus-4.7-thinking",
+		label: "Claude Opus 4.7 (Thinking)",
 		modalities: ["image", "pdf"],
 	},
+	// Google — audio input confirmed on OpenRouter
 	{
-		value: "google/gemini-3.1-flash-lite-preview",
-		label: "Gemini 3.1 Flash Lite Preview",
+		value: "gemini-3.1-pro",
+		label: "Gemini 3.1 Pro Preview",
 		modalities: ["image", "pdf", "audio"],
 	},
 	{
-		value: "gemini-2.5-pro",
-		label: "Gemini 2.5 Pro",
+		value: "gemini-3-flash",
+		label: "Gemini 3 Flash Preview",
 		modalities: ["image", "pdf", "audio"],
 	},
 	{
-		value: "gemini-2.5-flash",
-		label: "Gemini 2.5 Flash",
+		value: "gemini-3.1-flash-lite",
+		label: "Gemini 3.1 Flash Lite Preview",
 		modalities: ["image", "pdf", "audio"],
 	},
-	{ value: "kimi-k2", label: "Kimi K2", modalities: ["image"] },
-	{ value: "deepseek-r1", label: "DeepSeek R1", modalities: [] },
-	{ value: "deepseek-v3", label: "DeepSeek V3", modalities: [] },
-	{ value: "grok-3", label: "Grok 3", modalities: ["image"] },
-	{ value: "grok-3-mini", label: "Grok 3 Mini", modalities: [] },
 ];
 
 // Lookup index built once from the MODELS array
diff --git a/apps/web/src/lib/multimodal.test.ts b/apps/web/src/lib/multimodal.test.ts
new file mode 100644
index 0000000..a0529a9
--- /dev/null
+++ b/apps/web/src/lib/multimodal.test.ts
@@ -0,0 +1,112 @@
+import { describe, expect, it, vi } from "vitest";
+import { buildMultimodalContent } from "./multimodal";
+
+function makeResolver(
+	signed: Array<{ url: string; mime_type: string; file_name: string }>,
+) {
+	return vi.fn().mockResolvedValue(signed);
+}
+
+describe("buildMultimodalContent", () => {
+	it("returns plain text when no attachments resolved", async () => {
+		const out = await buildMultimodalContent("hello", [], makeResolver([]));
+		expect(out).toBe("hello");
+	});
+
+	it("returns text-only parts when input text is empty but images exist", async () => {
+		const out = await buildMultimodalContent(
+			"",
+			[{ storageId: "a", mimeType: "image/png", fileName: "a.png" }],
+			makeResolver([
+				{ url: "https://s/a", mime_type: "image/png", file_name: "a.png" },
+			]),
+		);
+		expect(Array.isArray(out)).toBe(true);
+		expect(out).toEqual([
+			{ type: "image_url", image_url: { url: "https://s/a" } },
+		]);
+	});
+
+	it("builds text + image parts", async () => {
+		const out = await buildMultimodalContent(
+			"caption",
+			[{ storageId: "a", mimeType: "image/png", fileName: "a.png" }],
+			makeResolver([
+				{ url: "https://s/a", mime_type: "image/png", file_name: "a.png" },
+			]),
+		);
+		expect(out).toEqual([
+			{ type: "text", text: "caption" },
+			{ type: "image_url", image_url: { url: "https://s/a" } },
+		]);
+	});
+
+	it("builds pdf file part", async () => {
+		const out = await buildMultimodalContent(
+			"",
+			[{ storageId: "p", mimeType: "application/pdf", fileName: "doc.pdf" }],
+			makeResolver([
+				{
+					url: "https://s/p",
+					mime_type: "application/pdf",
+					file_name: "doc.pdf",
+				},
+			]),
+		);
+		expect(out).toEqual([
+			{
+				type: "file",
+				file: { filename: "doc.pdf", file_data: "https://s/p" },
+			},
+		]);
+	});
+
+	it("encodes audio as base64", async () => {
+		// Base64 of "hi" is "aGk="; data URL prefix is "data:audio/wav;base64,"
+		const dataUrl = "data:audio/wav;base64,aGk=";
+		const mockReader = {
+			result: dataUrl,
+			onloadend: null as (() => void) | null,
+			onerror: null as (() => void) | null,
+			readAsDataURL() {
+				queueMicrotask(() => this.onloadend?.());
+			},
+		};
+		// @ts-expect-error jsdom stub
+		globalThis.FileReader = vi.fn(() => mockReader);
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockResolvedValue(new Response("hi", { status: 200 }));
+
+		const out = await buildMultimodalContent(
+			"",
+			[{ storageId: "a", mimeType: "audio/wav", fileName: "clip.wav" }],
+			makeResolver([
+				{ url: "https://s/a", mime_type: "audio/wav", file_name: "clip.wav" },
+			]),
+		);
+		expect(out).toEqual([
+			{
+				type: "input_audio",
+				input_audio: { data: "aGk=", format: "wav" },
+			},
+		]);
+		fetchSpy.mockRestore();
+	});
+
+	it("raises a descriptive error when audio fetch fails", async () => {
+		const fetchSpy = vi
+			.spyOn(globalThis, "fetch")
+			.mockResolvedValue(new Response("err", { status: 500 }));
+		await expect(
+			buildMultimodalContent(
+				"",
+				[{ storageId: "a", mimeType: "audio/wav", fileName: "boom.wav" }],
+				makeResolver([
+					{ url: "https://s/a", mime_type: "audio/wav", file_name: "boom.wav" },
+				]),
+			),
+		).rejects.toThrow(/Failed to encode audio "boom\.wav"/);
+		fetchSpy.mockRestore();
+	});
+});
diff --git a/apps/web/src/lib/platform.test.ts b/apps/web/src/lib/platform.test.ts
new file mode 100644
index 0000000..71031ff
--- /dev/null
+++ b/apps/web/src/lib/platform.test.ts
@@ -0,0 +1,120 @@
+import { renderHook } from "@testing-library/react";
+import { afterEach, describe, expect, it } from "vitest";
+import {
+	ariaKeyShortcut,
+	formatShortcut,
+	getIsMac,
+	useIsMac,
+} from "./platform";
+
+const origNavigator = globalThis.navigator;
+
+afterEach(() => {
+	Object.defineProperty(globalThis, "navigator", {
+		value: origNavigator,
+		configurable: true,
+	});
+});
+
+describe("getIsMac", () => {
+	it("returns true when userAgentData.platform says mac", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: {
+				userAgentData: { platform: "macOS" },
+				platform: "",
+				userAgent: "",
+			},
+			configurable: true,
+		});
+		expect(getIsMac()).toBe(true);
+	});
+
+	it("returns false when userAgentData.platform is Windows", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: {
+				userAgentData: { platform: "Windows" },
+				platform: "",
+				userAgent: "",
+			},
+			configurable: true,
+		});
+		expect(getIsMac()).toBe(false);
+	});
+
+	it("falls back to navigator.platform", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: { platform: "MacIntel", userAgent: "" },
+			configurable: true,
+		});
+		expect(getIsMac()).toBe(true);
+	});
+
+	it("falls back to userAgent", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: { platform: "", userAgent: "Mozilla/5.0 (Macintosh)" },
+			configurable: true,
+		});
+		expect(getIsMac()).toBe(true);
+	});
+
+	it("returns false when navigator is undefined", () => {
+		const originalDescriptor = Object.getOwnPropertyDescriptor(
+			globalThis,
+			"navigator",
+		);
+		// @ts-expect-error — intentionally deleting for SSR simulation
+		delete globalThis.navigator;
+		expect(getIsMac()).toBe(false);
+		if (originalDescriptor) {
+			Object.defineProperty(globalThis, "navigator", originalDescriptor);
+		}
+	});
+});
+
+describe("formatShortcut", () => {
+	it("uses mac glyphs when isMac", () => {
+		expect(formatShortcut(1, true)).toBe("⌘⌥1");
+	});
+
+	it("uses Ctrl+Alt when not mac", () => {
+		expect(formatShortcut(3, false)).toBe("Ctrl+Alt+3");
+	});
+});
+
+describe("ariaKeyShortcut", () => {
+	it("returns Meta+Alt form on mac", () => {
+		expect(ariaKeyShortcut(1, true)).toBe("Meta+Alt+1");
+	});
+
+	it("returns Control+Alt form off mac", () => {
+		expect(ariaKeyShortcut(2, false)).toBe("Control+Alt+2");
+	});
+});
+
+describe("useIsMac", () => {
+	it("reports mac correctly after effect runs", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: {
+				userAgentData: { platform: "macOS" },
+				platform: "",
+				userAgent: "",
+			},
+			configurable: true,
+		});
+		const { result } = renderHook(() => useIsMac());
+		expect(result.current).toBe(true);
+	});
+
+	it("returns false on non-mac", () => {
+		Object.defineProperty(globalThis, "navigator", {
+			value: {
+				userAgentData: { platform: "Windows" },
+				platform: "",
+				userAgent: "",
+			},
+			configurable: true,
+		});
+		const { result } = renderHook(() => useIsMac());
+		expect(result.current).toBe(false);
+	});
+});
diff --git a/apps/web/src/lib/platform.ts b/apps/web/src/lib/platform.ts
new file mode 100644
index 0000000..6b1edf8
--- /dev/null
+++ b/apps/web/src/lib/platform.ts
@@ -0,0 +1,29 @@
+import { useEffect, useState } from "react";
+
+export function getIsMac(): boolean {
+	if (typeof navigator === "undefined") return false;
+	const uaData = (
+		navigator as Navigator & {
+			userAgentData?: { platform?: string };
+		}
+	).userAgentData;
+	if (uaData?.platform) return /mac/i.test(uaData.platform);
+	if (navigator.platform) return /mac/i.test(navigator.platform);
+	return /mac/i.test(navigator.userAgent);
+}
+
+export function useIsMac(): boolean {
+	const [isMac, setIsMac] = useState(false);
+	useEffect(() => {
+		setIsMac(getIsMac());
+	}, []);
+	return isMac;
+}
+
+export function formatShortcut(digit: number, isMac: boolean): string {
+	return isMac ? `⌘⌥${digit}` : `Ctrl+Alt+${digit}`;
+}
+
+export function ariaKeyShortcut(digit: number, isMac: boolean): string {
+	return isMac ? `Meta+Alt+${digit}` : `Control+Alt+${digit}`;
+}
diff --git a/apps/web/src/lib/sandbox-api.ts b/apps/web/src/lib/sandbox-api.ts
index 8fbbec3..84fb496 100644
--- a/apps/web/src/lib/sandbox-api.ts
+++ b/apps/web/src/lib/sandbox-api.ts
@@ -55,6 +55,28 @@ export interface GitCommit {
 	date: string;
 }
 
+export interface SandboxLifecycleResponse {
+	success: boolean;
+	status: string;
+}
+
+export interface CreateSandboxRequest {
+	harnessId?: string;
+	name: string;
+	language: string;
+	resourceTier: "basic" | "standard" | "performance";
+	ephemeral: boolean;
+	gitRepo?: string;
+}
+
+export interface CreateSandboxResponse {
+	id: string;
+	status: string;
+	language: string;
+	resource_tier: string;
+	ephemeral: boolean;
+}
+
 async function sandboxFetch<T>(
 	path: string,
 	getToken: () => Promise<string | null>,
@@ -82,6 +104,36 @@ async function sandboxFetch<T>(
 
 export function createSandboxApi(getToken: () => Promise<string | null>) {
 	return {
+		createSandbox(request: CreateSandboxRequest) {
+			return sandboxFetch<CreateSandboxResponse>("/api/sandbox", getToken, {
+				method: "POST",
+				body: JSON.stringify({
+					harness_id: request.harnessId,
+					name: request.name,
+					language: request.language,
+					resource_tier: request.resourceTier,
+					ephemeral: request.ephemeral,
+					git_repo: request.gitRepo,
+				}),
+			});
+		},
+
+		startSandbox(sandboxId: string) {
+			return sandboxFetch<SandboxLifecycleResponse>(
+				`/api/sandbox/${sandboxId}/start`,
+				getToken,
+				{ method: "POST" },
+			);
+		},
+
+		stopSandbox(sandboxId: string) {
+			return sandboxFetch<SandboxLifecycleResponse>(
+				`/api/sandbox/${sandboxId}/stop`,
+				getToken,
+				{ method: "POST" },
+			);
+		},
+
 		listFiles(sandboxId: string, path = "/home/daytona") {
 			return sandboxFetch<ListFilesResponse>(
 				`/api/sandbox/${sandboxId}/files?path=${encodeURIComponent(path)}`,
diff --git a/apps/web/src/lib/sandbox-panel-context.tsx b/apps/web/src/lib/sandbox-panel-context.tsx
index 1e7431a..5db4821 100644
--- a/apps/web/src/lib/sandbox-panel-context.tsx
+++ b/apps/web/src/lib/sandbox-panel-context.tsx
@@ -2,7 +2,9 @@ import {
 	createContext,
 	useCallback,
 	useContext,
+	useEffect,
 	useMemo,
+	useRef,
 	useState,
 } from "react";
 
@@ -15,6 +17,8 @@ interface SandboxPanelState {
 	activeTab: SandboxTab;
 	/** The Daytona sandbox ID for API calls. */
 	sandboxId: string | null;
+	/** Incremented whenever the sandbox changes so panel children can remount. */
+	reloadKey: number;
 	/** Currently open file paths (tabs in the file viewer). */
 	openFiles: string[];
 	/** Which open file is active. */
@@ -44,6 +48,18 @@ export function SandboxPanelProvider({
 	const [openFiles, setOpenFiles] = useState<string[]>([]);
 	const [activeFile, setActiveFile] = useState<string | null>(null);
 	const [currentDir, setCurrentDir] = useState("/home/daytona");
+	const [reloadKey, setReloadKey] = useState(0);
+	const previousSandboxIdRef = useRef(sandboxId);
+
+	useEffect(() => {
+		if (previousSandboxIdRef.current === sandboxId) return;
+		previousSandboxIdRef.current = sandboxId;
+		setActiveTab("files");
+		setOpenFiles([]);
+		setActiveFile(null);
+		setCurrentDir("/home/daytona");
+		setReloadKey((key) => key + 1);
+	}, [sandboxId]);
 
 	const togglePanel = useCallback(() => setPanelOpen((o) => !o), []);
 
@@ -78,6 +94,7 @@ export function SandboxPanelProvider({
 			panelOpen,
 			activeTab,
 			sandboxId,
+			reloadKey,
 			openFiles,
 			activeFile,
 			currentDir,
@@ -92,6 +109,7 @@ export function SandboxPanelProvider({
 			panelOpen,
 			activeTab,
 			sandboxId,
+			reloadKey,
 			openFiles,
 			activeFile,
 			currentDir,
diff --git a/apps/web/src/lib/sandbox.ts b/apps/web/src/lib/sandbox.ts
new file mode 100644
index 0000000..98433ba
--- /dev/null
+++ b/apps/web/src/lib/sandbox.ts
@@ -0,0 +1,88 @@
+import { convexQuery } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import type {
+	Doc,
+	Id,
+} from "@harness/convex-backend/convex/_generated/dataModel";
+import type { QueryClient } from "@tanstack/react-query";
+
+export type Sandbox = Doc<"sandboxes">;
+
+export type SandboxConfig = {
+	persistent: boolean;
+	autoStart: boolean;
+	defaultLanguage: string;
+	resourceTier: "basic" | "standard" | "performance";
+};
+
+export type DefaultSandboxSelection = {
+	sandboxId: Id<"sandboxes">;
+	daytonaSandboxId: string;
+	config: SandboxConfig;
+};
+
+export const DEFAULT_SANDBOX_CONFIG: SandboxConfig = {
+	persistent: false,
+	autoStart: true,
+	defaultLanguage: "python",
+	resourceTier: "basic",
+};
+
+// Per-user sandbox cap. Mirrored in Convex at
+// packages/convex-backend/convex/sandboxes.ts (MAX_SANDBOXES_PER_USER) —
+// Convex enforces the cap; this constant is for the UX banner only.
+export const MAX_SANDBOXES_PER_USER = 5;
+
+export function getDefaultSandboxSelection(
+	sandbox: Sandbox | undefined,
+): DefaultSandboxSelection | undefined {
+	if (!sandbox) return undefined;
+	return {
+		sandboxId: sandbox._id,
+		daytonaSandboxId: sandbox.daytonaSandboxId,
+		config: {
+			persistent: !sandbox.ephemeral,
+			autoStart: true,
+			defaultLanguage: sandbox.language ?? "python",
+			resourceTier: getResourceTierFromSandbox(sandbox),
+		},
+	};
+}
+
+export function getResourceTierFromSandbox(
+	sandbox: Sandbox,
+): SandboxConfig["resourceTier"] {
+	if (sandbox.resources.cpu >= 4 || sandbox.resources.memoryGB >= 8) {
+		return "performance";
+	}
+	if (sandbox.resources.cpu >= 2 || sandbox.resources.memoryGB >= 4) {
+		return "standard";
+	}
+	return "basic";
+}
+
+export function formatSandboxMeta(sandbox: Sandbox) {
+	const type = sandbox.ephemeral ? "Ephemeral" : "Persistent";
+	const language = sandbox.language
+		? sandbox.language.charAt(0).toUpperCase() + sandbox.language.slice(1)
+		: "Default";
+	return `${type} - ${language} - ${sandbox.resources.cpu} CPU - ${sandbox.resources.memoryGB} GB RAM`;
+}
+
+export async function waitForSandboxRecord(
+	queryClient: QueryClient,
+	daytonaSandboxId: string,
+	attempts = 12,
+) {
+	for (let attempt = 0; attempt < attempts; attempt += 1) {
+		const sandboxes = await queryClient.fetchQuery(
+			convexQuery(api.sandboxes.list, {}),
+		);
+		const sandbox = sandboxes.find(
+			(item) => item.daytonaSandboxId === daytonaSandboxId,
+		);
+		if (sandbox) return sandbox;
+		await new Promise((resolve) => setTimeout(resolve, 250));
+	}
+	return null;
+}
diff --git a/apps/web/src/lib/skills.test.ts b/apps/web/src/lib/skills.test.ts
new file mode 100644
index 0000000..9a894e3
--- /dev/null
+++ b/apps/web/src/lib/skills.test.ts
@@ -0,0 +1,30 @@
+import { describe, expect, it } from "vitest";
+import { RECOMMENDED_SKILLS } from "./skills";
+
+describe("RECOMMENDED_SKILLS", () => {
+	it("contains at least 5 curated skills", () => {
+		expect(RECOMMENDED_SKILLS.length).toBeGreaterThanOrEqual(5);
+	});
+
+	it("each entry has id + skill with consistent shape", () => {
+		for (const r of RECOMMENDED_SKILLS) {
+			expect(r.id).toBeTruthy();
+			expect(r.skill.skillId).toBeTruthy();
+			expect(r.skill.fullId.includes(r.skill.skillId)).toBe(true);
+			expect(r.skill.source).toBeTruthy();
+			expect(typeof r.skill.installs).toBe("number");
+			expect(r.skill.installs).toBeGreaterThan(0);
+		}
+	});
+
+	it("ids are unique", () => {
+		const ids = RECOMMENDED_SKILLS.map((r) => r.id);
+		expect(new Set(ids).size).toBe(ids.length);
+	});
+
+	it("top id matches its skillId", () => {
+		for (const r of RECOMMENDED_SKILLS) {
+			expect(r.id).toBe(r.skill.skillId);
+		}
+	});
+});
diff --git a/apps/web/src/lib/system-prompt.ts b/apps/web/src/lib/system-prompt.ts
new file mode 100644
index 0000000..d8ab99b
--- /dev/null
+++ b/apps/web/src/lib/system-prompt.ts
@@ -0,0 +1,2 @@
+/** Keep in sync with FastAPI `HarnessConfig.system_prompt` and Convex `harnesses` mutations. */
+export const SYSTEM_PROMPT_MAX_LENGTH = 4000;
diff --git a/apps/web/src/lib/use-chat-stream.ts b/apps/web/src/lib/use-chat-stream.ts
index ece2b84..fa6b7af 100644
--- a/apps/web/src/lib/use-chat-stream.ts
+++ b/apps/web/src/lib/use-chat-stream.ts
@@ -1,6 +1,7 @@
-import { useAuth } from "@clerk/tanstack-react-start";
+import { useAuth, useUser } from "@clerk/tanstack-react-start";
 import { useCallback, useRef, useState } from "react";
 import { env } from "../env";
+import { checkChatRateLimit } from "./chat-ratelimit";
 
 const FASTAPI_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
 
@@ -37,6 +38,13 @@ export interface ConvoStreamState {
 	model: string | null;
 }
 
+export interface BudgetExceededInfo {
+	dailyPct: number;
+	weeklyPct: number;
+	dailyReset: string;
+	weeklyReset: string;
+}
+
 interface UseChatStreamCallbacks {
 	onToken: (conversationId: string, content: string) => void;
 	onThinking: (conversationId: string, content: string) => void;
@@ -60,6 +68,7 @@ interface UseChatStreamCallbacks {
 		event: { sandbox_id: string; status: string },
 	) => void;
 	onError: (conversationId: string, error: string) => void;
+	onBudgetExceeded?: (conversationId: string, info: BudgetExceededInfo) => void;
 	onAbort?: (conversationId: string) => void;
 }
 
@@ -78,6 +87,7 @@ export interface ChatStreamRequest {
 		skills: Array<{ name: string; description: string }>;
 		name: string;
 		harness_id?: string;
+		system_prompt?: string;
 		sandbox_enabled?: boolean;
 		sandbox_id?: string;
 		sandbox_config?: {
@@ -88,6 +98,7 @@ export interface ChatStreamRequest {
 		};
 	};
 	conversation_id: string;
+	forced_tool?: string;
 }
 
 export function useChatStream(callbacks: UseChatStreamCallbacks) {
@@ -96,6 +107,7 @@ export function useChatStream(callbacks: UseChatStreamCallbacks) {
 	);
 	const abortControllers = useRef<Map<string, AbortController>>(new Map());
 	const { getToken } = useAuth();
+	const { user } = useUser();
 	const cbRef = useRef(callbacks);
 	cbRef.current = callbacks;
 
@@ -111,6 +123,25 @@ export function useChatStream(callbacks: UseChatStreamCallbacks) {
 			setStreamingConvoIds((prev) => new Set(prev).add(convoId));
 
 			try {
+				// Arcjet pre-flight request rate check (fail-open: Arcjet outage must not block chat)
+				if (user?.id) {
+					try {
+						const rateCheck = await checkChatRateLimit({
+							data: { userId: user.id },
+						});
+						if (!rateCheck.allowed) {
+							cbRef.current.onError(
+								convoId,
+								`Too many requests. Please wait ${rateCheck.retryAfter ?? "a few"} seconds.`,
+							);
+							return;
+						}
+					} catch {
+						// Arcjet unreachable — allow the request through.
+						// Budget enforcement in FastAPI/Convex is the hard gate.
+					}
+				}
+
 				const token = await getToken({ template: "convex" });
 				const response = await fetch(`${FASTAPI_URL}/api/chat/stream`, {
 					method: "POST",
@@ -181,7 +212,18 @@ export function useChatStream(callbacks: UseChatStreamCallbacks) {
 										);
 										break;
 									case "error":
-										cbRef.current.onError(convoId, data.message);
+										if (
+											data.code === "BUDGET_EXCEEDED" &&
+											data.usage &&
+											cbRef.current.onBudgetExceeded
+										) {
+											cbRef.current.onBudgetExceeded(
+												convoId,
+												data.usage as BudgetExceededInfo,
+											);
+										} else {
+											cbRef.current.onError(convoId, data.message);
+										}
 										break;
 								}
 							} catch {
@@ -206,7 +248,7 @@ export function useChatStream(callbacks: UseChatStreamCallbacks) {
 				});
 			}
 		},
-		[getToken],
+		[getToken, user?.id],
 	);
 
 	const cancel = useCallback((conversationId: string) => {
diff --git a/apps/web/src/lib/utils.test.ts b/apps/web/src/lib/utils.test.ts
new file mode 100644
index 0000000..743025b
--- /dev/null
+++ b/apps/web/src/lib/utils.test.ts
@@ -0,0 +1,24 @@
+import { describe, expect, it } from "vitest";
+import { cn } from "./utils";
+
+describe("cn", () => {
+	it("joins plain class names", () => {
+		expect(cn("a", "b")).toBe("a b");
+	});
+
+	it("drops falsy values", () => {
+		expect(cn("a", false, null, undefined, "", "b")).toBe("a b");
+	});
+
+	it("merges conflicting tailwind classes (last wins)", () => {
+		expect(cn("p-2", "p-4")).toBe("p-4");
+	});
+
+	it("flattens nested arrays and object syntax", () => {
+		expect(cn(["a", { b: true, c: false }], "d")).toBe("a b d");
+	});
+
+	it("returns empty string for no inputs", () => {
+		expect(cn()).toBe("");
+	});
+});
diff --git a/apps/web/src/lib/workspace-colors.test.ts b/apps/web/src/lib/workspace-colors.test.ts
new file mode 100644
index 0000000..589d23c
--- /dev/null
+++ b/apps/web/src/lib/workspace-colors.test.ts
@@ -0,0 +1,38 @@
+import { describe, expect, it } from "vitest";
+import { getWorkspaceColorHex, WORKSPACE_COLORS } from "./workspace-colors";
+
+describe("WORKSPACE_COLORS", () => {
+	it("exposes 8 color entries", () => {
+		expect(WORKSPACE_COLORS).toHaveLength(8);
+	});
+
+	it("each entry has key, label, hex", () => {
+		for (const color of WORKSPACE_COLORS) {
+			expect(color.key).toMatch(/^[a-z]+$/);
+			expect(color.label).toMatch(/^[A-Z]/);
+			expect(color.hex).toMatch(/^#[0-9A-F]{6}$/);
+		}
+	});
+
+	it("keys are unique", () => {
+		const keys = WORKSPACE_COLORS.map((c) => c.key);
+		expect(new Set(keys).size).toBe(keys.length);
+	});
+});
+
+describe("getWorkspaceColorHex", () => {
+	it("returns hex for known key", () => {
+		expect(getWorkspaceColorHex("rose")).toBe("#FFD9DE");
+		expect(getWorkspaceColorHex("mint")).toBe("#D4EEDB");
+	});
+
+	it("returns null for unknown key", () => {
+		expect(getWorkspaceColorHex("fuchsia")).toBeNull();
+	});
+
+	it("returns null for null / undefined / empty", () => {
+		expect(getWorkspaceColorHex(null)).toBeNull();
+		expect(getWorkspaceColorHex(undefined)).toBeNull();
+		expect(getWorkspaceColorHex("")).toBeNull();
+	});
+});
diff --git a/apps/web/src/lib/workspace-colors.ts b/apps/web/src/lib/workspace-colors.ts
new file mode 100644
index 0000000..eeff399
--- /dev/null
+++ b/apps/web/src/lib/workspace-colors.ts
@@ -0,0 +1,19 @@
+export const WORKSPACE_COLORS = [
+	{ key: "rose", label: "Rose", hex: "#FFD9DE" },
+	{ key: "peach", label: "Peach", hex: "#FFE4C9" },
+	{ key: "butter", label: "Butter", hex: "#FFF3C2" },
+	{ key: "mint", label: "Mint", hex: "#D4EEDB" },
+	{ key: "sky", label: "Sky", hex: "#D1E7F7" },
+	{ key: "lilac", label: "Lilac", hex: "#E3D5F2" },
+	{ key: "blush", label: "Blush", hex: "#F5DCE6" },
+	{ key: "sand", label: "Sand", hex: "#EDE1CB" },
+] as const;
+
+export type WorkspaceColorKey = (typeof WORKSPACE_COLORS)[number]["key"];
+
+export function getWorkspaceColorHex(
+	key: string | null | undefined,
+): string | null {
+	if (!key) return null;
+	return WORKSPACE_COLORS.find((c) => c.key === key)?.hex ?? null;
+}
diff --git a/apps/web/src/routeTree.gen.ts b/apps/web/src/routeTree.gen.ts
index 6f2e5e6..26d7076 100644
--- a/apps/web/src/routeTree.gen.ts
+++ b/apps/web/src/routeTree.gen.ts
@@ -9,13 +9,24 @@
 // Additionally, you should also exclude this file from your linter and/or formatter to prevent it from being checked or modified.
 
 import { Route as rootRouteImport } from './routes/__root'
+import { Route as SignUpRouteImport } from './routes/sign-up'
 import { Route as SignInRouteImport } from './routes/sign-in'
 import { Route as OnboardingRouteImport } from './routes/onboarding'
+import { Route as AppRouteImport } from './routes/app'
 import { Route as IndexRouteImport } from './routes/index'
+import { Route as WorkspacesIndexRouteImport } from './routes/workspaces/index'
+import { Route as SandboxesIndexRouteImport } from './routes/sandboxes/index'
 import { Route as HarnessesIndexRouteImport } from './routes/harnesses/index'
 import { Route as ChatIndexRouteImport } from './routes/chat/index'
+import { Route as SandboxesCreate_sandboxRouteImport } from './routes/sandboxes/create_sandbox'
+import { Route as SandboxesSandboxIdRouteImport } from './routes/sandboxes/$sandboxId'
 import { Route as HarnessesHarnessIdRouteImport } from './routes/harnesses/$harnessId'
 
+const SignUpRoute = SignUpRouteImport.update({
+  id: '/sign-up',
+  path: '/sign-up',
+  getParentRoute: () => rootRouteImport,
+} as any)
 const SignInRoute = SignInRouteImport.update({
   id: '/sign-in',
   path: '/sign-in',
@@ -26,11 +37,26 @@ const OnboardingRoute = OnboardingRouteImport.update({
   path: '/onboarding',
   getParentRoute: () => rootRouteImport,
 } as any)
+const AppRoute = AppRouteImport.update({
+  id: '/app',
+  path: '/app',
+  getParentRoute: () => rootRouteImport,
+} as any)
 const IndexRoute = IndexRouteImport.update({
   id: '/',
   path: '/',
   getParentRoute: () => rootRouteImport,
 } as any)
+const WorkspacesIndexRoute = WorkspacesIndexRouteImport.update({
+  id: '/workspaces/',
+  path: '/workspaces/',
+  getParentRoute: () => rootRouteImport,
+} as any)
+const SandboxesIndexRoute = SandboxesIndexRouteImport.update({
+  id: '/sandboxes/',
+  path: '/sandboxes/',
+  getParentRoute: () => rootRouteImport,
+} as any)
 const HarnessesIndexRoute = HarnessesIndexRouteImport.update({
   id: '/harnesses/',
   path: '/harnesses/',
@@ -41,6 +67,16 @@ const ChatIndexRoute = ChatIndexRouteImport.update({
   path: '/chat/',
   getParentRoute: () => rootRouteImport,
 } as any)
+const SandboxesCreate_sandboxRoute = SandboxesCreate_sandboxRouteImport.update({
+  id: '/sandboxes/create_sandbox',
+  path: '/sandboxes/create_sandbox',
+  getParentRoute: () => rootRouteImport,
+} as any)
+const SandboxesSandboxIdRoute = SandboxesSandboxIdRouteImport.update({
+  id: '/sandboxes/$sandboxId',
+  path: '/sandboxes/$sandboxId',
+  getParentRoute: () => rootRouteImport,
+} as any)
 const HarnessesHarnessIdRoute = HarnessesHarnessIdRouteImport.update({
   id: '/harnesses/$harnessId',
   path: '/harnesses/$harnessId',
@@ -49,67 +85,116 @@ const HarnessesHarnessIdRoute = HarnessesHarnessIdRouteImport.update({
 
 export interface FileRoutesByFullPath {
   '/': typeof IndexRoute
+  '/app': typeof AppRoute
   '/onboarding': typeof OnboardingRoute
   '/sign-in': typeof SignInRoute
+  '/sign-up': typeof SignUpRoute
   '/harnesses/$harnessId': typeof HarnessesHarnessIdRoute
+  '/sandboxes/$sandboxId': typeof SandboxesSandboxIdRoute
+  '/sandboxes/create_sandbox': typeof SandboxesCreate_sandboxRoute
   '/chat/': typeof ChatIndexRoute
   '/harnesses/': typeof HarnessesIndexRoute
+  '/sandboxes/': typeof SandboxesIndexRoute
+  '/workspaces/': typeof WorkspacesIndexRoute
 }
 export interface FileRoutesByTo {
   '/': typeof IndexRoute
+  '/app': typeof AppRoute
   '/onboarding': typeof OnboardingRoute
   '/sign-in': typeof SignInRoute
+  '/sign-up': typeof SignUpRoute
   '/harnesses/$harnessId': typeof HarnessesHarnessIdRoute
+  '/sandboxes/$sandboxId': typeof SandboxesSandboxIdRoute
+  '/sandboxes/create_sandbox': typeof SandboxesCreate_sandboxRoute
   '/chat': typeof ChatIndexRoute
   '/harnesses': typeof HarnessesIndexRoute
+  '/sandboxes': typeof SandboxesIndexRoute
+  '/workspaces': typeof WorkspacesIndexRoute
 }
 export interface FileRoutesById {
   __root__: typeof rootRouteImport
   '/': typeof IndexRoute
+  '/app': typeof AppRoute
   '/onboarding': typeof OnboardingRoute
   '/sign-in': typeof SignInRoute
+  '/sign-up': typeof SignUpRoute
   '/harnesses/$harnessId': typeof HarnessesHarnessIdRoute
+  '/sandboxes/$sandboxId': typeof SandboxesSandboxIdRoute
+  '/sandboxes/create_sandbox': typeof SandboxesCreate_sandboxRoute
   '/chat/': typeof ChatIndexRoute
   '/harnesses/': typeof HarnessesIndexRoute
+  '/sandboxes/': typeof SandboxesIndexRoute
+  '/workspaces/': typeof WorkspacesIndexRoute
 }
 export interface FileRouteTypes {
   fileRoutesByFullPath: FileRoutesByFullPath
   fullPaths:
     | '/'
+    | '/app'
     | '/onboarding'
     | '/sign-in'
+    | '/sign-up'
     | '/harnesses/$harnessId'
+    | '/sandboxes/$sandboxId'
+    | '/sandboxes/create_sandbox'
     | '/chat/'
     | '/harnesses/'
+    | '/sandboxes/'
+    | '/workspaces/'
   fileRoutesByTo: FileRoutesByTo
   to:
     | '/'
+    | '/app'
     | '/onboarding'
     | '/sign-in'
+    | '/sign-up'
     | '/harnesses/$harnessId'
+    | '/sandboxes/$sandboxId'
+    | '/sandboxes/create_sandbox'
     | '/chat'
     | '/harnesses'
+    | '/sandboxes'
+    | '/workspaces'
   id:
     | '__root__'
     | '/'
+    | '/app'
     | '/onboarding'
     | '/sign-in'
+    | '/sign-up'
     | '/harnesses/$harnessId'
+    | '/sandboxes/$sandboxId'
+    | '/sandboxes/create_sandbox'
     | '/chat/'
     | '/harnesses/'
+    | '/sandboxes/'
+    | '/workspaces/'
   fileRoutesById: FileRoutesById
 }
 export interface RootRouteChildren {
   IndexRoute: typeof IndexRoute
+  AppRoute: typeof AppRoute
   OnboardingRoute: typeof OnboardingRoute
   SignInRoute: typeof SignInRoute
+  SignUpRoute: typeof SignUpRoute
   HarnessesHarnessIdRoute: typeof HarnessesHarnessIdRoute
+  SandboxesSandboxIdRoute: typeof SandboxesSandboxIdRoute
+  SandboxesCreate_sandboxRoute: typeof SandboxesCreate_sandboxRoute
   ChatIndexRoute: typeof ChatIndexRoute
   HarnessesIndexRoute: typeof HarnessesIndexRoute
+  SandboxesIndexRoute: typeof SandboxesIndexRoute
+  WorkspacesIndexRoute: typeof WorkspacesIndexRoute
 }
 
 declare module '@tanstack/react-router' {
   interface FileRoutesByPath {
+    '/sign-up': {
+      id: '/sign-up'
+      path: '/sign-up'
+      fullPath: '/sign-up'
+      preLoaderRoute: typeof SignUpRouteImport
+      parentRoute: typeof rootRouteImport
+    }
     '/sign-in': {
       id: '/sign-in'
       path: '/sign-in'
@@ -124,6 +209,13 @@ declare module '@tanstack/react-router' {
       preLoaderRoute: typeof OnboardingRouteImport
       parentRoute: typeof rootRouteImport
     }
+    '/app': {
+      id: '/app'
+      path: '/app'
+      fullPath: '/app'
+      preLoaderRoute: typeof AppRouteImport
+      parentRoute: typeof rootRouteImport
+    }
     '/': {
       id: '/'
       path: '/'
@@ -131,6 +223,20 @@ declare module '@tanstack/react-router' {
       preLoaderRoute: typeof IndexRouteImport
       parentRoute: typeof rootRouteImport
     }
+    '/workspaces/': {
+      id: '/workspaces/'
+      path: '/workspaces'
+      fullPath: '/workspaces/'
+      preLoaderRoute: typeof WorkspacesIndexRouteImport
+      parentRoute: typeof rootRouteImport
+    }
+    '/sandboxes/': {
+      id: '/sandboxes/'
+      path: '/sandboxes'
+      fullPath: '/sandboxes/'
+      preLoaderRoute: typeof SandboxesIndexRouteImport
+      parentRoute: typeof rootRouteImport
+    }
     '/harnesses/': {
       id: '/harnesses/'
       path: '/harnesses'
@@ -145,6 +251,20 @@ declare module '@tanstack/react-router' {
       preLoaderRoute: typeof ChatIndexRouteImport
       parentRoute: typeof rootRouteImport
     }
+    '/sandboxes/create_sandbox': {
+      id: '/sandboxes/create_sandbox'
+      path: '/sandboxes/create_sandbox'
+      fullPath: '/sandboxes/create_sandbox'
+      preLoaderRoute: typeof SandboxesCreate_sandboxRouteImport
+      parentRoute: typeof rootRouteImport
+    }
+    '/sandboxes/$sandboxId': {
+      id: '/sandboxes/$sandboxId'
+      path: '/sandboxes/$sandboxId'
+      fullPath: '/sandboxes/$sandboxId'
+      preLoaderRoute: typeof SandboxesSandboxIdRouteImport
+      parentRoute: typeof rootRouteImport
+    }
     '/harnesses/$harnessId': {
       id: '/harnesses/$harnessId'
       path: '/harnesses/$harnessId'
@@ -157,11 +277,17 @@ declare module '@tanstack/react-router' {
 
 const rootRouteChildren: RootRouteChildren = {
   IndexRoute: IndexRoute,
+  AppRoute: AppRoute,
   OnboardingRoute: OnboardingRoute,
   SignInRoute: SignInRoute,
+  SignUpRoute: SignUpRoute,
   HarnessesHarnessIdRoute: HarnessesHarnessIdRoute,
+  SandboxesSandboxIdRoute: SandboxesSandboxIdRoute,
+  SandboxesCreate_sandboxRoute: SandboxesCreate_sandboxRoute,
   ChatIndexRoute: ChatIndexRoute,
   HarnessesIndexRoute: HarnessesIndexRoute,
+  SandboxesIndexRoute: SandboxesIndexRoute,
+  WorkspacesIndexRoute: WorkspacesIndexRoute,
 }
 export const routeTree = rootRouteImport
   ._addFileChildren(rootRouteChildren)
diff --git a/apps/web/src/routes/__root.tsx b/apps/web/src/routes/__root.tsx
index b203859..cfe968e 100644
--- a/apps/web/src/routes/__root.tsx
+++ b/apps/web/src/routes/__root.tsx
@@ -17,7 +17,11 @@ import type { ConvexReactClient } from "convex/react";
 import { ConvexProviderWithClerk } from "convex/react-clerk";
 
 import { Toaster } from "react-hot-toast";
+import { CommandPalette } from "../components/command-palette/command-palette";
+import { GlobalCommands } from "../components/command-palette/commands/global-commands";
 import { TooltipProvider } from "../components/ui/tooltip";
+import { ChatStreamProvider } from "../lib/chat-stream-context";
+import { CommandPaletteProvider } from "../lib/command-palette/context";
 import appCss from "../styles.css?url";
 
 const CHROMELESS_ROUTES = ["/", "/sign-in", "/onboarding"];
@@ -121,24 +125,30 @@ function RootComponent() {
 		>
 			<ConvexProviderWithClerk client={context.convexClient} useAuth={useAuth}>
 				<TooltipProvider delayDuration={300}>
-					{isChromeless ? (
-						<Outlet />
-					) : (
-						<div className="flex h-screen overflow-hidden">
-							<div className="flex flex-1 flex-col overflow-hidden">
+					<CommandPaletteProvider>
+						<ChatStreamProvider>
+							{isChromeless ? (
 								<Outlet />
-							</div>
-						</div>
-					)}
-					<Toaster
-						position="bottom-right"
-						toastOptions={{
-							style: {
-								borderRadius: "0px",
-								fontSize: "13px",
-							},
-						}}
-					/>
+							) : (
+								<div className="flex h-screen overflow-hidden">
+									<div className="flex flex-1 flex-col overflow-hidden">
+										<Outlet />
+									</div>
+								</div>
+							)}
+							<GlobalCommands />
+							<CommandPalette />
+							<Toaster
+								position="bottom-right"
+								toastOptions={{
+									style: {
+										borderRadius: "0px",
+										fontSize: "13px",
+									},
+								}}
+							/>
+						</ChatStreamProvider>
+					</CommandPaletteProvider>
 				</TooltipProvider>
 			</ConvexProviderWithClerk>
 		</ClerkProvider>
diff --git a/apps/web/src/routes/app.tsx b/apps/web/src/routes/app.tsx
new file mode 100644
index 0000000..90bfc5a
--- /dev/null
+++ b/apps/web/src/routes/app.tsx
@@ -0,0 +1,33 @@
+// redirect to either workspaces or chat based on workspacesMode setting
+import { convexQuery } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { createFileRoute, redirect } from "@tanstack/react-router";
+
+export const Route = createFileRoute("/app")({
+	validateSearch: (
+		search: Record<string, unknown>,
+	): { harnessId?: string; workspaceId?: string } => ({
+		harnessId: (search.harnessId as string) ?? undefined,
+		workspaceId: (search.workspaceId as string) ?? undefined,
+	}),
+	beforeLoad: async ({ context, search }) => {
+		if (!context.userId) {
+			throw redirect({ to: "/sign-in" });
+		}
+		const settings = await context.queryClient.ensureQueryData(
+			convexQuery(api.userSettings.get, {}),
+		);
+
+		if (settings.workspacesMode === "workspaces") {
+			throw redirect({
+				to: "/workspaces",
+				search: {},
+			});
+		} else {
+			throw redirect({
+				to: "/chat",
+				search: { harnessId: search.harnessId },
+			});
+		}
+	},
+});
diff --git a/apps/web/src/routes/chat/index.tsx b/apps/web/src/routes/chat/index.tsx
index 450083c..1c89ee0 100644
--- a/apps/web/src/routes/chat/index.tsx
+++ b/apps/web/src/routes/chat/index.tsx
@@ -9,16 +9,16 @@ import {
 	redirect,
 	useNavigate,
 } from "@tanstack/react-router";
-import { usePaginatedQuery } from "convex/react";
+import { useConvexAuth, usePaginatedQuery } from "convex/react";
 import {
 	AlertTriangle,
 	ArrowUp,
+	Box,
 	Brain,
 	Check,
 	ChevronDown,
 	ChevronRight,
 	Cpu,
-	Loader2,
 	LogOut,
 	MessageSquare,
 	Mic,
@@ -26,6 +26,7 @@ import {
 	PanelLeftOpen,
 	Paperclip,
 	Plus,
+	RotateCcw,
 	Search, // Icon for search
 	Settings,
 	SlidersHorizontal,
@@ -35,7 +36,6 @@ import {
 	User,
 	Wrench,
 	X,
-	Zap,
 } from "lucide-react";
 import { AnimatePresence, motion } from "motion/react";
 import React, {
@@ -49,7 +49,9 @@ import React, {
 } from "react";
 import toast from "react-hot-toast";
 import { AttachmentChip } from "../../components/attachment-chip";
+import { useChatPaletteCommands } from "../../components/command-palette/commands/chat-commands";
 import { HarnessMark } from "../../components/harness-mark";
+import { HeaderSkillsMenu } from "../../components/header-skills-menu";
 import { MarkdownMessage } from "../../components/markdown-message";
 import {
 	type HealthStatus,
@@ -62,8 +64,15 @@ import {
 	MessageActions,
 } from "../../components/message-actions";
 import { MessageAttachments } from "../../components/message-attachments";
+import { PendingResponseIndicator } from "../../components/pending-response-indicator";
+import { RoseCurveSpinner } from "../../components/rose-curve-spinner";
 import { SandboxPanel } from "../../components/sandbox/sandbox-panel";
 import { SandboxResult } from "../../components/sandbox-result";
+import {
+	SlashCommandMenu,
+	useSlashCommandInput,
+} from "../../components/slash-commands";
+import { ThinkingFiveSpinner } from "../../components/thinking-five-spinner";
 import {
 	Avatar,
 	AvatarFallback,
@@ -102,9 +111,21 @@ import {
 	TooltipContent,
 	TooltipTrigger,
 } from "../../components/ui/tooltip";
+import { UsageDialog } from "../../components/usage-dialog";
+import { formatResetTime, UsageBadge } from "../../components/usage-display";
 import { env } from "../../env";
 import { useFileAttachments } from "../../hooks/use-file-attachments";
-import type { McpAuthType } from "../../lib/mcp";
+import {
+	CHAT_INPUT_COUNTER_THRESHOLD,
+	CHAT_INPUT_MAX_LENGTH,
+} from "../../lib/chat-input";
+import {
+	EMPTY_STREAM_STATE,
+	useChatStreamContext,
+	useChatStreamSideEffects,
+} from "../../lib/chat-stream-context";
+import type { McpAuthType, McpServerCommand } from "../../lib/mcp";
+import { fetchCommandsFromApi, sanitizeServerName } from "../../lib/mcp";
 import {
 	acceptString,
 	allowedMimeTypes,
@@ -118,23 +139,32 @@ import {
 	useSandboxPanel,
 } from "../../lib/sandbox-panel-context";
 import type { SkillEntry } from "../../lib/skills";
-import {
-	type ConvoStreamState,
-	type StreamPart,
-	type ToolCallEvent,
-	type UsageData,
-	useChatStream,
+import type {
+	BudgetExceededInfo,
+	StreamPart,
+	ToolCallEvent,
+	UsageData,
 } from "../../lib/use-chat-stream";
 import { cn } from "../../lib/utils";
 
 export const Route = createFileRoute("/chat/")({
-	validateSearch: (search: Record<string, unknown>) => ({
+	validateSearch: (
+		search: Record<string, unknown>,
+	): { harnessId?: string } => ({
 		harnessId: (search.harnessId as string) ?? undefined,
 	}),
-	beforeLoad: ({ context }) => {
+	beforeLoad: async ({ context }) => {
 		if (!context.userId) {
 			throw redirect({ to: "/sign-in" });
 		}
+		const settings = await context.queryClient.ensureQueryData(
+			convexQuery(api.userSettings.get, {}),
+		);
+		if (settings.workspacesMode === "workspaces") {
+			throw redirect({
+				to: "/workspaces",
+			});
+		}
 	},
 	component: ChatPage,
 });
@@ -148,15 +178,7 @@ const SUGGESTED_PROMPTS = [
 	"Create a deployment checklist for production",
 ];
 
-const EMPTY_STREAM_STATE: ConvoStreamState = {
-	content: null,
-	reasoning: null,
-	toolCalls: [],
-	parts: [],
-	pendingDoneContent: null,
-	usage: null,
-	model: null,
-};
+type SandboxSelection = "harness" | "none" | Id<"sandboxes">;
 
 function ChatPage() {
 	const navigate = useNavigate();
@@ -169,12 +191,15 @@ function ChatPage() {
 	const { data: conversations } = useQuery(
 		convexQuery(api.conversations.list, {}),
 	);
+	const { data: sandboxes } = useQuery(convexQuery(api.sandboxes.list, {}));
 	const { data: userSettings } = useQuery(
 		convexQuery(api.userSettings.get, {}),
 	);
 
 	const [activeHarnessId, setActiveHarnessId] =
 		useState<Id<"harnesses"> | null>(null);
+	const [activeSandboxSelection, setActiveSandboxSelection] =
+		useState<SandboxSelection>("harness");
 	const [activeConvoId, setActiveConvoId] =
 		useState<Id<"conversations"> | null>(null);
 	// Session-only model override — does not persist to the harness
@@ -185,14 +210,15 @@ function ChatPage() {
 		useState<Id<"messages"> | null>(null);
 	const [editingContent, setEditingContent] = useState("");
 
-	// Per-conversation streaming state
-	const [streamStates, setStreamStates] = useState<
-		Record<string, ConvoStreamState>
-	>({});
-	const streamStatesRef = useRef(streamStates);
-	useEffect(() => {
-		streamStatesRef.current = streamStates;
-	}, [streamStates]);
+	// Budget exceeded state
+	const [budgetExceeded, setBudgetExceeded] =
+		useState<BudgetExceededInfo | null>(null);
+
+	// Streaming state lives in the global provider so an in-flight stream
+	// survives navigation away from /chat (e.g. to /harnesses) and back.
+	const chatStream = useChatStreamContext();
+	const { streamStates, streamStatesRef, clearStreamState, setStreamState } =
+		chatStream;
 
 	// MCP server failures reported during stream start
 	type McpFailure = {
@@ -209,6 +235,13 @@ function ChatPage() {
 		Record<string, HealthStatus>
 	>({});
 
+	// Bump to force a slash-command refetch (after OAuth, harness edit, etc.)
+	const [commandRefreshKey, setCommandRefreshKey] = useState(0);
+	const refreshCommands = useCallback(
+		() => setCommandRefreshKey((k) => k + 1),
+		[],
+	);
+
 	// Track conversations that just finished streaming (show green checkmark briefly)
 	const [doneConvoIds, setDoneConvoIds] = useState<Set<string>>(new Set());
 	const prevStreamingRef = useRef<Set<string>>(new Set());
@@ -267,6 +300,9 @@ function ChatPage() {
 	const updateHarness = useMutation({
 		mutationFn: useConvexMutation(api.harnesses.update),
 	});
+	const upsertCommandsMut = useMutation({
+		mutationFn: useConvexMutation(api.commands.upsert),
+	});
 
 	// Save interrupted assistant message from frontend
 	const saveInterruptedMsg = useMutation({
@@ -278,95 +314,7 @@ function ChatPage() {
 		mutationFn: useConvexMutation(api.messages.send),
 	});
 
-	const chatStream = useChatStream({
-		onToken: (convoId, content) => {
-			setStreamStates((prev) => {
-				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
-				const parts = [...state.parts];
-				const last = parts[parts.length - 1];
-				if (last?.type === "text") {
-					parts[parts.length - 1] = {
-						...last,
-						content: (last.content ?? "") + content,
-					};
-				} else {
-					parts.push({ type: "text", content });
-				}
-				return {
-					...prev,
-					[convoId]: {
-						...state,
-						content: (state.content ?? "") + content,
-						parts,
-					},
-				};
-			});
-		},
-		onThinking: (convoId, content) => {
-			setStreamStates((prev) => {
-				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
-				const parts = [...state.parts];
-				const last = parts[parts.length - 1];
-				if (last?.type === "reasoning") {
-					parts[parts.length - 1] = {
-						...last,
-						content: (last.content ?? "") + content,
-					};
-				} else {
-					parts.push({ type: "reasoning", content });
-				}
-				return {
-					...prev,
-					[convoId]: {
-						...state,
-						reasoning: (state.reasoning ?? "") + content,
-						parts,
-					},
-				};
-			});
-		},
-		onToolCall: (convoId, event) => {
-			setStreamStates((prev) => {
-				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
-				return {
-					...prev,
-					[convoId]: {
-						...state,
-						toolCalls: [...state.toolCalls, event],
-						parts: [
-							...state.parts,
-							{
-								type: "tool_call" as const,
-								tool: event.tool,
-								arguments: event.arguments,
-								call_id: event.call_id,
-							},
-						],
-					},
-				};
-			});
-		},
-		onToolResult: (convoId, event) => {
-			setStreamStates((prev) => {
-				const state = prev[convoId] ?? EMPTY_STREAM_STATE;
-				return {
-					...prev,
-					[convoId]: {
-						...state,
-						toolCalls: state.toolCalls.map((tc) =>
-							tc.call_id === event.call_id
-								? { ...tc, result: event.result }
-								: tc,
-						),
-						parts: state.parts.map((p) =>
-							p.type === "tool_call" && p.call_id === event.call_id
-								? { ...p, result: event.result }
-								: p,
-						),
-					},
-				};
-			});
-		},
+	useChatStreamSideEffects({
 		onMcpError: (_convoId, event) => {
 			setMcpFailures((prev) => [
 				...prev,
@@ -378,27 +326,15 @@ function ChatPage() {
 				},
 			]);
 		},
-		onDone: (convoId, fullContent, usage, model) => {
-			setStreamStates((prev) => ({
-				...prev,
-				[convoId]: {
-					content: prev[convoId]?.content ?? fullContent,
-					reasoning: prev[convoId]?.reasoning ?? null,
-					toolCalls: prev[convoId]?.toolCalls ?? [],
-					parts: prev[convoId]?.parts ?? [],
-					pendingDoneContent: fullContent,
-					usage: usage ?? prev[convoId]?.usage ?? null,
-					model: model ?? prev[convoId]?.model ?? null,
-				},
-			}));
+		onBudgetExceeded: (_convoId, info) => {
+			setBudgetExceeded(info);
+			const which = info.dailyPct >= 100 ? "daily" : "weekly";
+			toast.error(
+				`${which.charAt(0).toUpperCase() + which.slice(1)} usage limit reached`,
+			);
 		},
-		onError: (convoId, error) => {
+		onError: (_convoId, error) => {
 			toast.error(error);
-			setStreamStates((prev) => {
-				const next = { ...prev };
-				delete next[convoId];
-				return next;
-			});
 		},
 		onAbort: (convoId) => {
 			const state = streamStatesRef.current[convoId];
@@ -427,11 +363,7 @@ function ChatPage() {
 				(!state.content && !state.reasoning && state.toolCalls.length === 0)
 			) {
 				// Nothing accumulated — just clear state
-				setStreamStates((prev) => {
-					const next = { ...prev };
-					delete next[convoId];
-					return next;
-				});
+				clearStreamState(convoId);
 			} else {
 				// Filter: only keep completed tool calls (those with results)
 				const completedToolCalls = state.toolCalls.filter(
@@ -449,7 +381,8 @@ function ChatPage() {
 				const partialContent = state.content ?? "";
 				// model is only sent in the "done" event which doesn't fire on abort,
 				// so fall back to the session model, then the harness model
-				const model = state.model ?? sessionModel ?? activeHarness?.model ?? null;
+				const model =
+					state.model ?? sessionModel ?? activeHarness?.model ?? null;
 
 				saveInterruptedMsg.mutate({
 					conversationId: convoId as Id<"conversations">,
@@ -465,15 +398,12 @@ function ChatPage() {
 
 				// Keep streaming bubble visible until Convex syncs the interrupted message
 				// (same pattern as onDone — set pendingDoneContent so convexHasMessage can match)
-				setStreamStates((prev) => ({
-					...prev,
-					[convoId]: {
-						...state,
-						toolCalls: completedToolCalls,
-						parts: cleanedParts,
-						pendingDoneContent: partialContent,
-						model,
-					},
+				setStreamState(convoId, () => ({
+					...state,
+					toolCalls: completedToolCalls,
+					parts: cleanedParts,
+					pendingDoneContent: partialContent,
+					model,
 				}));
 			}
 
@@ -513,10 +443,25 @@ function ChatPage() {
 	}, [activeHarnessId, activeConvoId]);
 
 	useEffect(() => {
-		if (harnesses && harnesses.length === 0) {
+		if (
+			activeSandboxSelection === "harness" ||
+			activeSandboxSelection === "none" ||
+			!sandboxes
+		) {
+			return;
+		}
+
+		if (!sandboxes.some((sandbox) => sandbox._id === activeSandboxSelection)) {
+			setActiveSandboxSelection("harness");
+		}
+	}, [activeSandboxSelection, sandboxes]);
+
+	const { isAuthenticated: convexAuthReady } = useConvexAuth();
+	useEffect(() => {
+		if (convexAuthReady && harnesses && harnesses.length === 0) {
 			navigate({ to: "/onboarding" });
 		}
-	}, [harnesses, navigate]);
+	}, [convexAuthReady, harnesses, navigate]);
 
 	useEffect(() => {
 		const prev = prevStreamingRef.current;
@@ -540,11 +485,7 @@ function ChatPage() {
 
 	const handleStreamSynced = useCallback(
 		(convoId: string) => {
-			setStreamStates((prev) => {
-				const next = { ...prev };
-				delete next[convoId];
-				return next;
-			});
+			clearStreamState(convoId);
 
 			// Process next queued message now that Convex has synced
 			if (messageQueueRef.current.length > 0) {
@@ -554,88 +495,263 @@ function ChatPage() {
 				}
 			}
 		},
-		[shiftQueue],
+		[clearStreamState, shiftQueue],
 	);
 
 	const activeHarness = harnesses?.find((h) => h._id === activeHarnessId);
+	const selectedSandbox =
+		activeSandboxSelection !== "harness" && activeSandboxSelection !== "none"
+			? sandboxes?.find((sandbox) => sandbox._id === activeSandboxSelection)
+			: undefined;
+	const effectiveSandboxDaytonaId =
+		activeSandboxSelection === "none"
+			? null
+			: (selectedSandbox?.daytonaSandboxId ??
+				activeHarness?.daytonaSandboxId ??
+				null);
+	const effectiveSandboxEnabled =
+		activeSandboxSelection === "none"
+			? false
+			: Boolean(
+					selectedSandbox?.daytonaSandboxId ?? activeHarness?.daytonaSandboxId,
+				);
+
+	const handleAddSkill = useCallback(
+		(skill: SkillEntry) => {
+			if (!activeHarness) return;
+			const existing = activeHarness.skills ?? [];
+			if (existing.some((s) => s.name === skill.name)) return;
+			updateHarness.mutate({
+				id: activeHarness._id,
+				skills: [...existing, skill],
+			});
+		},
+		[activeHarness, updateHarness],
+	);
+
+	const handleRemoveSkill = useCallback(
+		(skill: SkillEntry) => {
+			if (!activeHarness) return;
+			const filtered = (activeHarness.skills ?? []).filter(
+				(s) => s.name !== skill.name,
+			);
+			updateHarness.mutate({ id: activeHarness._id, skills: filtered });
+		},
+		[activeHarness, updateHarness],
+	);
+
+	const buildHarnessConfig = useCallback(() => {
+		if (!activeHarness) return null;
+
+		return {
+			model: sessionModel ?? activeHarness.model,
+			mcp_servers: activeHarness.mcpServers.map((s) => ({
+				name: s.name,
+				url: s.url,
+				auth_type: s.authType as "none" | "bearer" | "oauth" | "tiger_junction",
+				auth_token: s.authToken,
+			})),
+			skills: activeHarness.skills ?? [],
+			name: activeHarness.name,
+			harness_id: activeHarness._id,
+			system_prompt: activeHarness.systemPrompt ?? undefined,
+			sandbox_enabled: effectiveSandboxEnabled,
+			sandbox_id: effectiveSandboxDaytonaId ?? undefined,
+			sandbox_config: activeHarness.sandboxConfig
+				? {
+						persistent: activeHarness.sandboxConfig.persistent,
+						auto_start: activeHarness.sandboxConfig.autoStart,
+						default_language: activeHarness.sandboxConfig.defaultLanguage,
+						resource_tier: activeHarness.sandboxConfig.resourceTier,
+					}
+				: undefined,
+		};
+	}, [
+		activeHarness,
+		effectiveSandboxDaytonaId,
+		effectiveSandboxEnabled,
+		sessionModel,
+	]);
 
-	// Health-check MCP servers when harness changes
-	// biome-ignore lint/correctness/useExhaustiveDependencies: only re-run when harness ID changes
+	// Collect all command IDs across the active harness's MCP servers
+	const allCommandIds = useMemo(
+		() => (activeHarness?.mcpServers ?? []).flatMap((s) => s.commandIds ?? []),
+		[activeHarness?.mcpServers],
+	);
+	const { data: storedCommands } = useQuery(
+		convexQuery(
+			api.commands.getByIds,
+			allCommandIds.length > 0 ? { ids: allCommandIds } : "skip",
+		),
+	);
+
+	// Health-check MCP servers when harness changes, or on-demand via refreshHealth.
+	const healthCheckRunRef = useRef<{ cancel: () => void } | null>(null);
+	const runHealthCheck = useCallback(
+		(
+			servers: Array<{
+				name: string;
+				url: string;
+				authType: McpAuthType;
+				authToken?: string;
+			}>,
+		) => {
+			healthCheckRunRef.current?.cancel();
+
+			if (servers.length === 0) {
+				setMcpHealthStatuses({});
+				return;
+			}
+
+			// Mark unknown URLs as checking; preserve already-known statuses so
+			// previously-healthy servers don't flash to "Checking…" during a
+			// refresh triggered by adding/removing a server.
+			setMcpHealthStatuses((prev) => {
+				const next: Record<string, HealthStatus> = {};
+				for (const s of servers) {
+					next[s.url] = prev[s.url] ?? "checking";
+				}
+				return next;
+			});
+
+			let cancelled = false;
+			const run = async () => {
+				try {
+					const token = await getToken();
+					const res = await fetch(`${FASTAPI_URL}/api/mcp/health/check`, {
+						method: "POST",
+						headers: {
+							"Content-Type": "application/json",
+							...(token ? { Authorization: `Bearer ${token}` } : {}),
+						},
+						body: JSON.stringify({
+							mcp_servers: servers.map((s) => ({
+								name: s.name,
+								url: s.url,
+								auth_type: s.authType,
+								...(s.authToken ? { auth_token: s.authToken } : {}),
+							})),
+							force: true,
+						}),
+					});
+					if (cancelled) return;
+					if (!res.ok) {
+						const fallback: Record<string, HealthStatus> = {};
+						for (const s of servers) fallback[s.url] = "unreachable";
+						setMcpHealthStatuses(fallback);
+						return;
+					}
+					const data = await res.json();
+					if (cancelled) return;
+					const statuses: Record<string, HealthStatus> = {};
+					for (const server of data.servers) {
+						if (server.status === "ok") statuses[server.url] = "reachable";
+						else if (server.status === "auth_required")
+							statuses[server.url] = "auth_required";
+						else statuses[server.url] = "unreachable";
+					}
+					setMcpHealthStatuses(statuses);
+				} catch {
+					if (cancelled) return;
+					const fallback: Record<string, HealthStatus> = {};
+					for (const s of servers) fallback[s.url] = "unreachable";
+					setMcpHealthStatuses(fallback);
+				}
+			};
+
+			run();
+			healthCheckRunRef.current = {
+				cancel: () => {
+					cancelled = true;
+				},
+			};
+		},
+		[getToken],
+	);
+
+	const refreshHealth = useCallback(() => {
+		if (activeHarness) runHealthCheck(activeHarness.mcpServers);
+	}, [activeHarness, runHealthCheck]);
+
+	// Re-run when the harness or its set of MCP server URLs changes. The URL
+	// key catches inline adds/removes from the header tooltip without making
+	// every harness-doc edit (name, model, etc.) trigger a health re-check.
+	const mcpUrlKey = activeHarness?.mcpServers.map((s) => s.url).join("|") ?? "";
+	// biome-ignore lint/correctness/useExhaustiveDependencies: deps are id + url-set; runHealthCheck is stable
 	useEffect(() => {
-		if (!activeHarness || activeHarness.mcpServers.length === 0) {
+		if (!activeHarness) {
 			setMcpHealthStatuses({});
 			return;
 		}
+		runHealthCheck(activeHarness.mcpServers);
+		return () => {
+			healthCheckRunRef.current?.cancel();
+		};
+	}, [activeHarness?._id, mcpUrlKey]);
 
-		// Set all servers to "checking"
-		const checking: Record<string, HealthStatus> = {};
-		for (const s of activeHarness.mcpServers) {
-			checking[s.url] = "checking";
-		}
-		setMcpHealthStatuses(checking);
+	// Sync slash commands: fetch from MCP servers, upsert into commands table,
+	// and store the resulting IDs on the harness's mcpServers.
+	// Only runs on explicit triggers (OAuth reconnect, etc.) — NOT on harness
+	// switch or page load, since connecting to each MCP server is expensive.
+	// biome-ignore lint/correctness/useExhaustiveDependencies: only fires on commandRefreshKey
+	useEffect(() => {
+		if (commandRefreshKey === 0) return; // skip initial mount
+		if (!activeHarness || activeHarness.mcpServers.length === 0) return;
 
 		let cancelled = false;
-
-		const runCheck = async () => {
+		(async () => {
 			try {
 				const token = await getToken();
-				const res = await fetch(`${FASTAPI_URL}/api/mcp/health/check`, {
-					method: "POST",
-					headers: {
-						"Content-Type": "application/json",
-						...(token ? { Authorization: `Bearer ${token}` } : {}),
-					},
-					body: JSON.stringify({
-						mcp_servers: activeHarness.mcpServers.map((s) => ({
-							name: s.name,
-							url: s.url,
-							auth_type: s.authType,
-							...(s.authToken ? { auth_token: s.authToken } : {}),
-						})),
-						force: true,
-					}),
+				const cmds = await fetchCommandsFromApi(
+					FASTAPI_URL,
+					activeHarness.mcpServers,
+					token,
+				);
+				if (cancelled || !cmds || cmds.length === 0) return;
+
+				// Upsert all commands into the commands table (stringify parameters)
+				const ids: string[] = await upsertCommandsMut.mutateAsync({
+					commands: cmds.map((c) => ({
+						name: c.name,
+						server: c.server,
+						tool: c.tool,
+						description: c.description,
+						parametersJson: JSON.stringify(c.parameters),
+					})),
 				});
 
 				if (cancelled) return;
 
-				if (!res.ok) {
-					const fallback: Record<string, HealthStatus> = {};
-					for (const s of activeHarness.mcpServers) {
-						fallback[s.url] = "unreachable";
-					}
-					setMcpHealthStatuses(fallback);
-					return;
-				}
-
-				const data = await res.json();
-				if (cancelled) return;
+				// Build a name→id map, then assign IDs to each mcpServer
+				const idByName = new Map(
+					cmds.map((c, i) => [c.name, ids[i] as Id<"commands">]),
+				);
+				const enriched = activeHarness.mcpServers.map((s) => ({
+					name: s.name,
+					url: s.url,
+					authType: s.authType,
+					...(s.authToken ? { authToken: s.authToken } : {}),
+					commandIds: [...idByName.entries()]
+						.filter(([name]) =>
+							name.startsWith(`${sanitizeServerName(s.name)}__`),
+						)
+						.map(([, id]) => id),
+				}));
 
-				const statuses: Record<string, HealthStatus> = {};
-				for (const server of data.servers) {
-					if (server.status === "ok") {
-						statuses[server.url] = "reachable";
-					} else if (server.status === "auth_required") {
-						statuses[server.url] = "auth_required";
-					} else {
-						statuses[server.url] = "unreachable";
-					}
+				if (!cancelled) {
+					updateHarness.mutate({
+						id: activeHarness._id,
+						mcpServers: enriched,
+					});
 				}
-				setMcpHealthStatuses(statuses);
 			} catch {
-				if (cancelled) return;
-				const fallback: Record<string, HealthStatus> = {};
-				for (const s of activeHarness.mcpServers) {
-					fallback[s.url] = "unreachable";
-				}
-				setMcpHealthStatuses(fallback);
+				// Non-blocking — commands are optional
 			}
-		};
-
-		runCheck();
+		})();
 		return () => {
 			cancelled = true;
 		};
-	}, [activeHarness?._id, getToken]);
+	}, [commandRefreshKey]);
 
 	const handleInterrupt = useCallback(
 		(convoId: string) => {
@@ -690,37 +806,12 @@ function ChatPage() {
 				{ role: "user", content: pending.content },
 			];
 
+			const harnessConfig = buildHarnessConfig();
+			if (!harnessConfig) return;
+
 			chatStream.stream({
 				messages: history,
-				harness: {
-					model: sessionModel ?? activeHarness.model,
-					mcp_servers: activeHarness.mcpServers.map((s) => ({
-						name: s.name,
-						url: s.url,
-						auth_type: s.authType as
-							| "none"
-							| "bearer"
-							| "oauth"
-							| "tiger_junction",
-						auth_token: s.authToken,
-					})),
-					skills: activeHarness.skills ?? [],
-					name: activeHarness.name,
-					harness_id: activeHarness._id,
-
-					sandbox_enabled: (activeHarness as any).sandboxEnabled ?? false,
-					sandbox_id: (activeHarness as any).daytonaSandboxId ?? undefined,
-					sandbox_config: (activeHarness as any).sandboxConfig
-						? {
-								persistent: (activeHarness as any).sandboxConfig.persistent,
-								auto_start: (activeHarness as any).sandboxConfig.autoStart,
-								default_language: (activeHarness as any).sandboxConfig
-									.defaultLanguage,
-								resource_tier: (activeHarness as any).sandboxConfig
-									.resourceTier,
-							}
-						: undefined,
-				},
+				harness: harnessConfig,
 				conversation_id: convoId,
 			});
 		};
@@ -731,7 +822,7 @@ function ChatPage() {
 		activeHarness,
 		chatStream,
 		sendMessageFromQueue,
-		sessionModel,
+		buildHarnessConfig,
 	]);
 
 	const handleSelectConversation = useCallback(
@@ -780,33 +871,8 @@ function ChatPage() {
 
 			await removeMessage.mutateAsync({ id: messageId });
 
-			const harnessConfig = {
-				model: sessionModel ?? activeHarness.model,
-				mcp_servers: activeHarness.mcpServers.map((s) => ({
-					name: s.name,
-					url: s.url,
-					auth_type: s.authType as
-						| "none"
-						| "bearer"
-						| "oauth"
-						| "tiger_junction",
-					auth_token: s.authToken,
-				})),
-				skills: activeHarness.skills ?? [],
-				name: activeHarness.name,
-				harness_id: activeHarness._id,
-				sandbox_enabled: (activeHarness as any).sandboxEnabled ?? false,
-				sandbox_id: (activeHarness as any).daytonaSandboxId ?? undefined,
-				sandbox_config: (activeHarness as any).sandboxConfig
-					? {
-							persistent: (activeHarness as any).sandboxConfig.persistent,
-							auto_start: (activeHarness as any).sandboxConfig.autoStart,
-							default_language: (activeHarness as any).sandboxConfig
-								.defaultLanguage,
-							resource_tier: (activeHarness as any).sandboxConfig.resourceTier,
-						}
-					: undefined,
-			};
+			const harnessConfig = buildHarnessConfig();
+			if (!harnessConfig) return;
 
 			chatStream.stream({
 				messages: history,
@@ -814,7 +880,13 @@ function ChatPage() {
 				conversation_id: activeConvoId,
 			});
 		},
-		[activeHarness, activeConvoId, chatStream, removeMessage, sessionModel],
+		[
+			activeHarness,
+			activeConvoId,
+			chatStream,
+			removeMessage,
+			buildHarnessConfig,
+		],
 	);
 
 	const forkConversation = useMutation({
@@ -877,23 +949,12 @@ function ChatPage() {
 				}));
 				history.push({ role: "user", content: newContent });
 
+				const harnessConfig = buildHarnessConfig();
+				if (!harnessConfig) return;
+
 				chatStream.stream({
 					messages: history,
-					harness: {
-						model: sessionModel ?? activeHarness.model,
-						mcp_servers: activeHarness.mcpServers.map((s) => ({
-							name: s.name,
-							url: s.url,
-							auth_type: s.authType as
-								| "none"
-								| "bearer"
-								| "oauth"
-								| "tiger_junction",
-							auth_token: s.authToken,
-						})),
-						skills: activeHarness.skills ?? [],
-						name: activeHarness.name,
-					},
+					harness: harnessConfig,
 					conversation_id: newConvoId,
 				});
 
@@ -910,10 +971,23 @@ function ChatPage() {
 			editForkAndSend,
 			handleSelectConversation,
 			chatStream,
-			sessionModel,
+			buildHarnessConfig,
 		],
 	);
 
+	useChatPaletteCommands({
+		isStreaming: activeConvoId
+			? chatStream.streamingConvoIds.has(activeConvoId)
+			: false,
+		canStartNewConversation: Boolean(activeHarnessId),
+		sidebarOpen,
+		onNewConversation: () => setActiveConvoId(null),
+		onCancelStream: () => {
+			if (activeConvoId) handleInterrupt(activeConvoId);
+		},
+		onToggleSidebar: () => setSidebarOpen((v) => !v),
+	});
+
 	if (harnessesLoading || !harnesses || harnesses.length === 0) {
 		return <ChatSkeleton />;
 	}
@@ -927,11 +1001,10 @@ function ChatPage() {
 		? chatStream.streamingConvoIds.has(activeConvoId)
 		: false;
 
-	const sandboxEnabled = (activeHarness as any)?.sandboxEnabled ?? false;
-	const daytonaSandboxId = (activeHarness as any)?.daytonaSandboxId ?? null;
-
 	return (
-		<SandboxPanelProvider sandboxId={sandboxEnabled ? daytonaSandboxId : null}>
+		<SandboxPanelProvider
+			sandboxId={effectiveSandboxEnabled ? effectiveSandboxDaytonaId : null}
+		>
 			<div className="flex h-full overflow-hidden bg-background">
 				<AnimatePresence>
 					{sidebarOpen && (
@@ -964,10 +1037,18 @@ function ChatPage() {
 						harness={activeHarness}
 						harnesses={harnesses ?? []}
 						onSwitchHarness={setActiveHarnessId}
+						sandboxes={sandboxes ?? []}
+						activeSandboxSelection={activeSandboxSelection}
+						onSwitchSandbox={setActiveSandboxSelection}
+						effectiveSandboxEnabled={effectiveSandboxEnabled}
 						sidebarOpen={sidebarOpen}
 						onToggleSidebar={() => setSidebarOpen(!sidebarOpen)}
 						isStreaming={isActiveConvoStreaming}
 						mcpHealthStatuses={mcpHealthStatuses}
+						onRefreshCommands={refreshCommands}
+						onRefreshHealth={refreshHealth}
+						onAddSkill={handleAddSkill}
+						onRemoveSkill={handleRemoveSkill}
 					/>
 
 					<McpFailureBanner
@@ -978,6 +1059,31 @@ function ChatPage() {
 						onDismissAll={() => setMcpFailures([])}
 					/>
 
+					{budgetExceeded && (
+						<div className="mx-4 mt-2 flex items-center justify-between rounded-lg border border-red-500/30 bg-red-500/10 px-4 py-3 text-sm text-red-300">
+							<div>
+								<p className="font-medium">
+									{budgetExceeded.dailyPct >= 100 ? "Daily" : "Weekly"} usage
+									limit reached
+								</p>
+								<p className="text-xs text-red-300/70 mt-0.5">
+									Resets in{" "}
+									{budgetExceeded.dailyPct >= 100
+										? formatResetTime(budgetExceeded.dailyReset)
+										: formatResetTime(budgetExceeded.weeklyReset)}
+								</p>
+							</div>
+							<Button
+								variant="ghost"
+								size="sm"
+								className="text-red-300 hover:text-red-200"
+								onClick={() => setBudgetExceeded(null)}
+							>
+								<X size={14} />
+							</Button>
+						</div>
+					)}
+
 					{activeConvoId ? (
 						<ChatMessages
 							conversationId={activeConvoId}
@@ -1030,8 +1136,17 @@ function ChatPage() {
 					<ChatInput
 						conversationId={activeConvoId}
 						activeHarness={activeHarness}
+						slashCommands={(storedCommands ?? []).filter(Boolean).map((c) => ({
+							name: c?.name,
+							server: c?.server,
+							tool: c?.tool,
+							description: c?.description,
+							parameters: JSON.parse(c?.parametersJson),
+						}))}
 						sessionModel={
-						userSettings?.modelSelectorMode === "harness" ? null : sessionModel
+							userSettings?.modelSelectorMode === "harness"
+								? null
+								: sessionModel
 						}
 						modelSelectorMode={
 							(userSettings?.modelSelectorMode as "session" | "harness") ??
@@ -1050,6 +1165,8 @@ function ChatPage() {
 							}
 						}}
 						onConvoCreated={handleSelectConversation}
+						sandboxEnabled={effectiveSandboxEnabled}
+						sandboxId={effectiveSandboxDaytonaId ?? undefined}
 						isStreaming={isActiveConvoStreaming}
 						onStream={chatStream.stream}
 						onInterrupt={handleInterrupt}
@@ -1060,11 +1177,12 @@ function ChatPage() {
 						onSendNow={handleSendNow}
 						pendingPrompt={pendingPrompt}
 						onPendingPromptConsumed={() => setPendingPrompt(null)}
+						budgetExceeded={!!budgetExceeded}
 					/>
 				</div>
 
 				<AnimatePresence>
-					{sandboxEnabled && <SandboxPanelToggle />}
+					{effectiveSandboxEnabled && <SandboxPanelToggle />}
 				</AnimatePresence>
 			</div>
 		</SandboxPanelProvider>
@@ -1183,16 +1301,17 @@ function ChatSidebar({
 	const grouped = groupByDate(conversations);
 
 	const [settingsOpen, setSettingsOpen] = useState(false);
+	const [usageOpen, setUsageOpen] = useState(false);
 
 	return (
 		<div className="flex h-full w-[280px] flex-col bg-background">
 			<div className="flex items-center justify-between px-3 py-3">
-				<div className="flex items-center gap-2">
+				<Link to="/" className="flex items-center gap-2">
 					<HarnessMark size={18} className="text-foreground" />
 					<span className="text-sm font-semibold tracking-tight text-foreground">
 						Harness
 					</span>
-				</div>
+				</Link>
 				<div className="flex items-center gap-1">
 					<Tooltip>
 						<TooltipTrigger asChild>
@@ -1401,9 +1520,9 @@ function ChatSidebar({
 														transition={{ duration: 0.15 }}
 														className="flex shrink-0"
 													>
-														<Loader2
+														<RoseCurveSpinner
 															size={12}
-															className="animate-spin text-muted-foreground"
+															className="text-muted-foreground"
 														/>
 													</motion.span>
 												) : doneConvoIds.has(convo._id) ? (
@@ -1453,8 +1572,23 @@ function ChatSidebar({
 				)}
 			</ScrollArea>
 
+			<Separator />
+			<div className="px-2 py-1">
+				<UsageBadge onClick={() => setUsageOpen(true)} />
+			</div>
 			<Separator />
 			<div className="space-y-0.5 p-2">
+				<Button
+					variant="ghost"
+					size="sm"
+					className="w-full justify-start"
+					asChild
+				>
+					<Link to="/sandboxes">
+						<Box size={12} />
+						Manage Sandboxes
+					</Link>
+				</Button>
 				<Button
 					variant="ghost"
 					size="sm"
@@ -1478,6 +1612,7 @@ function ChatSidebar({
 			</div>
 
 			<SettingsDialog open={settingsOpen} onOpenChange={setSettingsOpen} />
+			<UsageDialog open={usageOpen} onOpenChange={setUsageOpen} />
 		</div>
 	);
 }
@@ -1584,9 +1719,7 @@ function SettingsDialog({
 								</p>
 							</div>
 							<Select
-								value={
-									(userSettings?.modelSelectorMode as string) ?? "session"
-								}
+								value={(userSettings?.modelSelectorMode as string) ?? "session"}
 								onValueChange={(value) => {
 									updateSettings.mutate({
 										modelSelectorMode: value as "session" | "harness",
@@ -1641,6 +1774,47 @@ function SettingsDialog({
 
 					<Separator />
 
+					{/* workspaces selector option */}
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Advanced Layout: Workspaces
+						</p>
+						<div className="flex items-center justify-between gap-3 py-1.5">
+							<div>
+								<p className="text-xs font-medium text-foreground">
+									Advanced Layout: Workspaces
+								</p>
+								<p className="text-[11px] text-muted-foreground">
+									Controls whether the basic layout or the workspaces advanced
+									layout is in use
+								</p>
+							</div>
+							<Select
+								value={(userSettings?.workspacesMode as string) ?? "basic"}
+								onValueChange={async (value) => {
+									await updateSettings.mutateAsync({
+										workspacesMode: value as "basic" | "workspaces",
+									});
+									onOpenChange(false);
+									navigate({
+										to: value === "workspaces" ? "/workspaces" : "/chat",
+										replace: true,
+									});
+								}}
+							>
+								<SelectTrigger className="w-[120px]">
+									<SelectValue />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value="basic">Basic</SelectItem>
+									<SelectItem value="workspaces">Workspaces</SelectItem>
+								</SelectContent>
+							</Select>
+						</div>
+					</div>
+
+					<Separator />
+
 					<div>
 						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
 							Account
@@ -1735,54 +1909,22 @@ function McpFailureBanner({
 	);
 }
 
-function SkillsStatus({ skills }: { skills: SkillEntry[] }) {
-	if (skills.length === 0) return null;
-
-	return (
-		<DropdownMenu>
-			<DropdownMenuTrigger asChild>
-				<Tooltip>
-					<TooltipTrigger asChild>
-						<button
-							type="button"
-							className="flex items-center gap-1.5 rounded-sm px-1.5 py-1 text-[10px] font-medium text-muted-foreground transition-colors hover:bg-muted hover:text-foreground"
-						>
-							<Zap size={10} />
-							{skills.length} Skill{skills.length !== 1 && "s"}
-						</button>
-					</TooltipTrigger>
-					<TooltipContent>Active skills</TooltipContent>
-				</Tooltip>
-			</DropdownMenuTrigger>
-
-			<DropdownMenuContent align="start" className="w-72">
-				<div className="border-b border-border px-3 py-2">
-					<span className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
-						Skills
-					</span>
-				</div>
-				<div className="max-h-48 overflow-y-auto py-1">
-					{skills.map((skill) => (
-						<DropdownMenuItem key={skill.name} className="px-3 py-1.5">
-							<span className="truncate text-xs font-medium">
-								{skill.name.split("/").pop() ?? skill.name}
-							</span>
-						</DropdownMenuItem>
-					))}
-				</div>
-			</DropdownMenuContent>
-		</DropdownMenu>
-	);
-}
-
 function ChatHeader({
 	harness,
 	harnesses,
 	onSwitchHarness,
+	sandboxes,
+	activeSandboxSelection,
+	onSwitchSandbox,
+	effectiveSandboxEnabled,
 	sidebarOpen,
 	onToggleSidebar,
 	isStreaming,
 	mcpHealthStatuses,
+	onRefreshCommands,
+	onRefreshHealth,
+	onAddSkill,
+	onRemoveSkill,
 }: {
 	harness?: {
 		_id: Id<"harnesses">;
@@ -1794,8 +1936,11 @@ function ChatHeader({
 			url: string;
 			authType: McpAuthType;
 			authToken?: string;
+			commandIds?: string[];
 		}>;
 		skills: SkillEntry[];
+		sandboxEnabled?: boolean;
+		daytonaSandboxId?: string;
 	};
 	harnesses: Array<{
 		_id: Id<"harnesses">;
@@ -1804,10 +1949,24 @@ function ChatHeader({
 		status: string;
 	}>;
 	onSwitchHarness: (id: Id<"harnesses">) => void;
+	sandboxes: Array<{
+		_id: Id<"sandboxes">;
+		name: string;
+		daytonaSandboxId: string;
+		status: string;
+		ephemeral: boolean;
+	}>;
+	activeSandboxSelection: SandboxSelection;
+	onSwitchSandbox: (selection: SandboxSelection) => void;
+	effectiveSandboxEnabled: boolean;
 	sidebarOpen: boolean;
 	onToggleSidebar: () => void;
 	isStreaming: boolean;
 	mcpHealthStatuses?: Record<string, HealthStatus>;
+	onRefreshCommands: () => void;
+	onRefreshHealth: () => void;
+	onAddSkill: (skill: SkillEntry) => void;
+	onRemoveSkill: (skill: SkillEntry) => void;
 }) {
 	return (
 		<header className="flex items-center justify-between border-b border-border px-4 py-2.5">
@@ -1863,51 +2022,181 @@ function ChatHeader({
 					</DropdownMenuContent>
 				</DropdownMenu>
 
-				{harness && harness.mcpServers.length > 0 && (
+				{harness && (
 					<McpServerStatus
 						servers={harness.mcpServers}
+						harnessId={harness._id}
 						healthStatuses={mcpHealthStatuses}
+						onReconnected={() => {
+							onRefreshHealth();
+							onRefreshCommands();
+						}}
+						onChanged={() => {
+							onRefreshHealth();
+							onRefreshCommands();
+						}}
 					/>
 				)}
 
-				{harness && harness.skills.length > 0 && (
-					<SkillsStatus skills={harness.skills} />
+				{harness && (
+					<HeaderSkillsMenu
+						skills={harness.skills}
+						onAdd={onAddSkill}
+						onRemove={onRemoveSkill}
+					/>
 				)}
 
-				{harness && (harness as any).sandboxEnabled && <SandboxBadge />}
+				<SandboxSelector
+					harness={harness}
+					sandboxes={sandboxes}
+					activeSandboxSelection={activeSandboxSelection}
+					onSwitchSandbox={onSwitchSandbox}
+					isStreaming={isStreaming}
+					panelAvailable={effectiveSandboxEnabled}
+				/>
 			</div>
 		</header>
 	);
 }
 
-/** Clickable sandbox badge in the header — toggles the sandbox panel. */
-function SandboxBadge() {
+function SandboxSelector({
+	harness,
+	sandboxes,
+	activeSandboxSelection,
+	onSwitchSandbox,
+	isStreaming,
+	panelAvailable,
+}: {
+	harness?: {
+		name: string;
+		sandboxEnabled?: boolean;
+		daytonaSandboxId?: string;
+	};
+	sandboxes: Array<{
+		_id: Id<"sandboxes">;
+		name: string;
+		daytonaSandboxId: string;
+		status: string;
+		ephemeral: boolean;
+	}>;
+	activeSandboxSelection: SandboxSelection;
+	onSwitchSandbox: (selection: SandboxSelection) => void;
+	isStreaming: boolean;
+	panelAvailable: boolean;
+}) {
 	const panel = useSandboxPanel();
+	const panelOpen = !!panel?.panelOpen;
+	const selectedSandbox =
+		activeSandboxSelection !== "harness" && activeSandboxSelection !== "none"
+			? sandboxes.find((sandbox) => sandbox._id === activeSandboxSelection)
+			: undefined;
+	const defaultSandbox = harness?.daytonaSandboxId
+		? sandboxes.find(
+				(sandbox) => sandbox.daytonaSandboxId === harness.daytonaSandboxId,
+			)
+		: undefined;
+	const defaultSandboxName =
+		defaultSandbox?.name ?? harness?.daytonaSandboxId ?? "None";
+	const label =
+		activeSandboxSelection === "none"
+			? "No sandbox"
+			: (selectedSandbox?.name ?? `Default: ${defaultSandboxName}`);
+
 	return (
-		<Tooltip>
-			<TooltipTrigger asChild>
-				<button
-					type="button"
-					onClick={() => panel?.togglePanel()}
+		<DropdownMenu>
+			<DropdownMenuTrigger asChild>
+				<Button
+					variant="ghost"
+					size="sm"
 					className={cn(
-						"flex items-center gap-1.5 border px-2 py-1 text-[10px] transition-colors",
-						panel?.panelOpen
-							? "border-emerald-500/40 bg-emerald-500/10 text-emerald-600 dark:text-emerald-400"
-							: "border-border text-muted-foreground hover:bg-muted/30",
+						"gap-1.5",
+						panelOpen &&
+							"text-emerald-600 hover:text-emerald-600 dark:text-emerald-400 dark:hover:text-emerald-400",
 					)}
+					disabled={isStreaming}
 				>
-					<div className="h-1.5 w-1.5 bg-emerald-500" />
-					<span>Sandbox</span>
-				</button>
-			</TooltipTrigger>
-			<TooltipContent>
-				<p>
-					{panel?.panelOpen
-						? "Close sandbox panel"
-						: "Open sandbox panel — browse files and interact directly"}
-				</p>
-			</TooltipContent>
-		</Tooltip>
+					<Box size={12} />
+					<span className="max-w-[140px] truncate text-xs font-medium">
+						{label}
+					</span>
+					{panelOpen && (
+						<span className="h-1.5 w-1.5 bg-emerald-500" aria-hidden="true" />
+					)}
+					<ChevronDown size={12} className="text-muted-foreground" />
+				</Button>
+			</DropdownMenuTrigger>
+			<DropdownMenuContent align="start" className="min-w-60">
+				<DropdownMenuItem
+					onClick={() => panel?.togglePanel()}
+					disabled={!panelAvailable}
+				>
+					<span className="w-3 shrink-0">
+						{panelOpen ? <Check size={12} /> : null}
+					</span>
+					<div className="min-w-0 flex-1">
+						<p className="truncate text-xs">
+							{panelOpen ? "Close sandbox panel" : "Open sandbox panel"}
+						</p>
+						<p className="truncate text-[10px] text-muted-foreground">
+							{panelAvailable
+								? "Browse files and interact directly"
+								: "Attach a sandbox to enable the panel"}
+						</p>
+					</div>
+				</DropdownMenuItem>
+				<DropdownMenuSeparator />
+				<DropdownMenuItem onClick={() => onSwitchSandbox("harness")}>
+					{activeSandboxSelection === "harness" ? (
+						<Check size={12} className="shrink-0" />
+					) : (
+						<span className="w-3 shrink-0" />
+					)}
+					<div className="min-w-0 flex-1">
+						<p className="truncate text-xs">
+							Use default: {defaultSandboxName}
+						</p>
+						<p className="truncate text-[10px] text-muted-foreground">
+							{harness?.daytonaSandboxId
+								? harness.daytonaSandboxId
+								: "No default sandbox"}
+						</p>
+					</div>
+				</DropdownMenuItem>
+				<DropdownMenuItem onClick={() => onSwitchSandbox("none")}>
+					{activeSandboxSelection === "none" ? (
+						<Check size={12} className="shrink-0" />
+					) : (
+						<span className="w-3 shrink-0" />
+					)}
+					<div className="min-w-0 flex-1">
+						<p className="truncate text-xs">No sandbox</p>
+						<p className="truncate text-[10px] text-muted-foreground">
+							Chat without sandbox tools
+						</p>
+					</div>
+				</DropdownMenuItem>
+				{sandboxes.length > 0 && <DropdownMenuSeparator />}
+				{sandboxes.map((sandbox) => (
+					<DropdownMenuItem
+						key={sandbox._id}
+						onClick={() => onSwitchSandbox(sandbox._id)}
+					>
+						{activeSandboxSelection === sandbox._id ? (
+							<Check size={12} className="shrink-0" />
+						) : (
+							<span className="w-3 shrink-0" />
+						)}
+						<div className="min-w-0 flex-1">
+							<p className="truncate text-xs">{sandbox.name}</p>
+							<p className="truncate text-[10px] text-muted-foreground">
+								{sandbox.status}
+								{sandbox.ephemeral ? " · ephemeral" : " · persistent"}
+							</p>
+						</div>
+					</DropdownMenuItem>
+				))}
+			</DropdownMenuContent>
+		</DropdownMenu>
 	);
 }
 
@@ -2154,9 +2443,13 @@ function ChatMessages({
 		lastMsg.content === pendingDoneContent;
 	const isActivelyStreaming =
 		streamingContent !== null || streamingReasoning !== null;
-	// Show the streaming bubble when we have content, reasoning, or tool calls, but Convex hasn't synced yet
+	// Show the streaming bubble while we're waiting for or receiving a response
+	// (content, reasoning, tool calls) but Convex hasn't synced yet. Include
+	// `isStreaming` so the bubble appears immediately with a pending spinner
+	// before the first chunk arrives.
 	const showStreamingBubble =
-		(streamingContent !== null ||
+		(isStreaming ||
+			streamingContent !== null ||
 			streamingReasoning !== null ||
 			activeToolCalls.length > 0) &&
 		!convexHasMessage;
@@ -2621,12 +2914,7 @@ function ChatMessages({
 										})
 									: !streamingReasoning &&
 										activeToolCalls.length === 0 &&
-										!streamingContent && (
-											<Loader2
-												size={14}
-												className="animate-spin text-muted-foreground"
-											/>
-										)}
+										!streamingContent && <PendingResponseIndicator />}
 							</div>
 							{displayMode === "developer" && streamUsage && (
 								<div className="flex items-center gap-3 pt-1">
@@ -2690,7 +2978,7 @@ function ThinkingBlock({
 				{isStreaming ? (
 					<span className="flex items-center gap-1">
 						Thinking
-						<Loader2 size={8} className="animate-spin" />
+						<RoseCurveSpinner size={8} />
 					</span>
 				) : (
 					<span>Thought process</span>
@@ -2803,7 +3091,7 @@ function ToolCallBlock({
 					<ChevronRight size={10} />
 				</motion.span>
 				{isStreaming ? (
-					<Loader2 size={10} className="animate-spin" />
+					<RoseCurveSpinner size={10} />
 				) : authError ? (
 					<Wrench size={10} className="text-destructive" />
 				) : (
@@ -2901,8 +3189,8 @@ function EmptyChat({
 				transition={{ duration: 0.4 }}
 				className="text-center"
 			>
-				<div className="mx-auto mb-6 flex h-14 w-14 items-center justify-center bg-foreground">
-					<HarnessMark size={24} className="text-background" />
+				<div className="mx-auto mb-6 flex items-center justify-center">
+					<ThinkingFiveSpinner size={96} className="text-foreground" />
 				</div>
 				<h2 className="mb-2 text-lg font-medium text-foreground">
 					Start a conversation
@@ -2930,10 +3218,13 @@ function EmptyChat({
 function ChatInput({
 	conversationId,
 	activeHarness,
+	slashCommands,
 	sessionModel,
 	modelSelectorMode = "session",
 	onSessionModelChange,
 	onConvoCreated,
+	sandboxEnabled,
+	sandboxId,
 	isStreaming,
 	onStream,
 	onInterrupt,
@@ -2944,6 +3235,7 @@ function ChatInput({
 	onSendNow,
 	pendingPrompt,
 	onPendingPromptConsumed,
+	budgetExceeded,
 }: {
 	conversationId: Id<"conversations"> | null;
 	activeHarness?: {
@@ -2955,10 +3247,24 @@ function ChatInput({
 			url: string;
 			authType: McpAuthType;
 			authToken?: string;
+			commandIds?: string[];
 		}>;
 		skills: SkillEntry[];
+		systemPrompt?: string;
+		sandboxEnabled?: boolean;
+		daytonaSandboxId?: string;
+		sandboxConfig?: {
+			persistent: boolean;
+			autoStart: boolean;
+			defaultLanguage: string;
+			resourceTier: "basic" | "standard" | "performance";
+			gitRepo?: string;
+		};
 	};
+	slashCommands: McpServerCommand[];
 	onConvoCreated: (id: Id<"conversations">) => void;
+	sandboxEnabled: boolean;
+	sandboxId?: string;
 	isStreaming: boolean;
 	onStream: (body: {
 		messages: Array<{
@@ -2975,8 +3281,19 @@ function ChatInput({
 			}>;
 			skills: SkillEntry[];
 			name: string;
+			harness_id?: string;
+			system_prompt?: string;
+			sandbox_enabled?: boolean;
+			sandbox_id?: string;
+			sandbox_config?: {
+				persistent: boolean;
+				auto_start: boolean;
+				default_language: string;
+				resource_tier: string;
+			};
 		};
 		conversation_id: string;
+		forced_tool?: string;
 	}) => Promise<void>;
 	onInterrupt: (convoId: string) => void;
 	onEnqueue: (content: string) => void;
@@ -2998,6 +3315,7 @@ function ChatInput({
 	modelSelectorMode?: "session" | "harness";
 	onSessionModelChange: (model: string | null) => void;
 	onPendingPromptConsumed?: () => void;
+	budgetExceeded?: boolean;
 }) {
 	const [text, setText] = useState("");
 	const textareaRef = useRef<HTMLTextAreaElement>(null);
@@ -3006,7 +3324,9 @@ function ChatInput({
 
 	const effectiveModel = sessionModel ?? activeHarness?.model;
 	const currentModelLabel =
-		MODELS.find((m) => m.value === effectiveModel)?.label ?? effectiveModel ?? "Model";
+		MODELS.find((m) => m.value === effectiveModel)?.label ??
+		effectiveModel ??
+		"Model";
 
 	const supportsMedia = modelSupportsMedia(effectiveModel);
 	const supportsAudio = modelSupportsAudio(effectiveModel);
@@ -3031,6 +3351,14 @@ function ChatInput({
 		if (!supportsAnyAttachment) clearAttachments();
 	}, [supportsAnyAttachment, clearAttachments]);
 
+	// ── Slash commands ──────────────────────────────────────────────
+	const slash = useSlashCommandInput({
+		storedCommands: slashCommands,
+		text,
+		setText,
+		textareaRef,
+	});
+
 	// ── Voice recording ──────────────────────────────────────────────
 	const [isRecording, setIsRecording] = useState(false);
 	const mediaRecorderRef = useRef<MediaRecorder | null>(null);
@@ -3113,7 +3441,19 @@ function ChatInput({
 
 	const handleSend = async () => {
 		const content = text.trim();
-		if (!content || !activeHarness) return;
+		if (!content || !activeHarness || budgetExceeded) return;
+
+		// ── Slash command interception ────────────────────────────────
+		// If it's a slash command, trySend returns the forced tool + cleaned message.
+		// We then send it through the normal chat flow with forced_tool set.
+		const slashResult = slash.trySend(content);
+		if (slashResult !== null) {
+			if (!slashResult.forcedTool) return; // validation error (e.g. no message), already toasted
+		}
+
+		// Use the cleaned message for slash commands, or the raw content for normal messages
+		const messageContent = slashResult ? slashResult.message : content;
+		const forcedTool = slashResult?.forcedTool;
 
 		setText("");
 		setHistoryIndex(-1);
@@ -3126,6 +3466,8 @@ function ChatInput({
 			return;
 		}
 
+		const resolvedSandboxId = sandboxEnabled ? sandboxId : undefined;
+
 		// Snapshot harness config at send time (convert to snake_case for FastAPI)
 		const harnessConfig = {
 			model: effectiveModel ?? activeHarness.model,
@@ -3138,15 +3480,15 @@ function ChatInput({
 			skills: activeHarness.skills ?? [],
 			name: activeHarness.name,
 			harness_id: activeHarness._id,
-			sandbox_enabled: (activeHarness as any).sandboxEnabled ?? false,
-			sandbox_id: (activeHarness as any).daytonaSandboxId ?? undefined,
-			sandbox_config: (activeHarness as any).sandboxConfig
+			system_prompt: activeHarness.systemPrompt ?? undefined,
+			sandbox_enabled: Boolean(resolvedSandboxId),
+			sandbox_id: resolvedSandboxId,
+			sandbox_config: activeHarness.sandboxConfig
 				? {
-						persistent: (activeHarness as any).sandboxConfig.persistent,
-						auto_start: (activeHarness as any).sandboxConfig.autoStart,
-						default_language: (activeHarness as any).sandboxConfig
-							.defaultLanguage,
-						resource_tier: (activeHarness as any).sandboxConfig.resourceTier,
+						persistent: activeHarness.sandboxConfig.persistent,
+						auto_start: activeHarness.sandboxConfig.autoStart,
+						default_language: activeHarness.sandboxConfig.defaultLanguage,
+						resource_tier: activeHarness.sandboxConfig.resourceTier,
 					}
 				: undefined,
 		};
@@ -3171,7 +3513,7 @@ function ChatInput({
 				fileSize: a.fileSize,
 			}));
 
-		// Save user message to Convex
+		// Save user message to Convex (original text including /command prefix)
 		await sendMessage.mutateAsync({
 			conversationId: convoId,
 			role: "user",
@@ -3200,18 +3542,21 @@ function ChatInput({
 			}
 		}
 
+		// For slash commands, send the cleaned message (without /command prefix) to the LLM
+		const llmContent = messageContent;
+
 		// Add the new user message (with any current attachments)
 		if (readyAttachments.length > 0) {
 			history.push({
 				role: "user",
 				content: await buildMultimodalContent(
-					content,
+					llmContent,
 					readyAttachments,
 					resolveSignedUrls,
 				),
 			});
 		} else {
-			history.push({ role: "user", content });
+			history.push({ role: "user", content: llmContent });
 		}
 
 		// Start streaming from FastAPI
@@ -3219,10 +3564,14 @@ function ChatInput({
 			messages: history,
 			harness: harnessConfig,
 			conversation_id: convoId,
+			...(forcedTool ? { forced_tool: forcedTool } : {}),
 		});
 	};
 
 	const handleKeyDown = (e: KeyboardEvent<HTMLTextAreaElement>) => {
+		// Slash command menu gets first shot at keyboard events
+		if (slash.handleKeyDown(e)) return;
+
 		if (e.key === "Enter" && !e.shiftKey) {
 			e.preventDefault();
 			handleSend();
@@ -3408,6 +3757,17 @@ function ChatInput({
 					)}
 				</AnimatePresence>
 
+				{/* Slash command autocomplete menu */}
+				<div className="relative">
+					<SlashCommandMenu
+						isOpen={slash.menuOpen}
+						commands={slash.commands}
+						filtered={slash.filtered}
+						selectedIndex={slash.selectedIndex}
+						onSelect={slash.selectCommand}
+					/>
+				</div>
+
 				<div className="flex items-center gap-2 border border-border bg-background px-3 py-2 focus-within:border-foreground/30">
 					{/* Attach button — hidden for models that don't support media */}
 					{supportsAnyAttachment && (
@@ -3461,6 +3821,7 @@ function ChatInput({
 						onPaste={handlePaste}
 						placeholder="Send a message..."
 						rows={1}
+						maxLength={CHAT_INPUT_MAX_LENGTH}
 						className="max-h-[200px] min-h-[24px] flex-1 resize-none bg-transparent text-sm text-foreground outline-none placeholder:text-muted-foreground"
 					/>
 					{activeHarness && (
@@ -3475,7 +3836,9 @@ function ChatInput({
 											{sessionModel && (
 												<span className="size-1.5 shrink-0 rounded-full bg-primary" />
 											)}
-											<span className="max-w-[90px] truncate">{currentModelLabel}</span>
+											<span className="max-w-[90px] truncate">
+												{currentModelLabel}
+											</span>
 											<ChevronDown size={10} />
 										</button>
 									</DropdownMenuTrigger>
@@ -3488,14 +3851,17 @@ function ChatInput({
 											: "Switch model for this session"}
 								</TooltipContent>
 							</Tooltip>
-							<DropdownMenuContent align="end" className="max-h-72 overflow-y-auto">
+							<DropdownMenuContent
+								align="end"
+								className="max-h-72 overflow-y-auto"
+							>
 								{modelSelectorMode === "session" && sessionModel && (
 									<>
 										<DropdownMenuItem
 											onClick={() => onSessionModelChange(null)}
-											className="flex items-center gap-2 text-muted-foreground italic"
+											className="flex items-center gap-2"
 										>
-											<span className="w-3 shrink-0" />
+											<RotateCcw size={12} className="shrink-0" />
 											Use harness default
 										</DropdownMenuItem>
 										<DropdownMenuSeparator />
@@ -3531,7 +3897,8 @@ function ChatInput({
 								}}
 								disabled={
 									!showStopButton &&
-									(!text.trim() ||
+									(budgetExceeded ||
+										!text.trim() ||
 										hasUploading ||
 										sendMessage.isPending ||
 										createConvo.isPending)
@@ -3551,7 +3918,20 @@ function ChatInput({
 					</Tooltip>
 				</div>
 				<p className="mt-1.5 text-center text-[10px] text-muted-foreground">
-					Harness may produce inaccurate information.
+					{text.length >= CHAT_INPUT_COUNTER_THRESHOLD ? (
+						<span
+							className={
+								text.length >= CHAT_INPUT_MAX_LENGTH
+									? "text-destructive"
+									: "text-amber-500"
+							}
+						>
+							{text.length.toLocaleString()} /{" "}
+							{CHAT_INPUT_MAX_LENGTH.toLocaleString()} characters
+						</span>
+					) : (
+						"Harness may produce inaccurate information."
+					)}
 				</p>
 			</div>
 		</div>
@@ -3574,7 +3954,7 @@ function ChatSkeleton() {
 					<Skeleton className="h-6 w-40" />
 				</div>
 				<div className="flex flex-1 items-center justify-center">
-					<div className="h-5 w-5 animate-spin border-2 border-foreground border-t-transparent" />
+					<RoseCurveSpinner size={48} className="text-foreground" />
 				</div>
 			</div>
 		</div>
diff --git a/apps/web/src/routes/harnesses/$harnessId.tsx b/apps/web/src/routes/harnesses/$harnessId.tsx
index d8972a6..10bba70 100644
--- a/apps/web/src/routes/harnesses/$harnessId.tsx
+++ b/apps/web/src/routes/harnesses/$harnessId.tsx
@@ -5,22 +5,26 @@ import {
 	useConvexMutation,
 } from "@convex-dev/react-query";
 import { api } from "@harness/convex-backend/convex/_generated/api";
-import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
+import type {
+	Doc,
+	Id,
+} from "@harness/convex-backend/convex/_generated/dataModel";
 import { useMutation, useQuery } from "@tanstack/react-query";
-import { createFileRoute, Link, redirect } from "@tanstack/react-router";
 import {
+	createFileRoute,
+	Link,
+	redirect,
+	useNavigate,
+} from "@tanstack/react-router";
+import {
+	AlertCircle,
 	ArrowLeft,
 	Box,
 	Check,
-	ChevronDown,
 	Cpu,
 	Eye,
 	EyeOff,
-	Globe,
-	HardDrive,
-	Loader2,
 	Pencil,
-	Play,
 	Plus,
 	Server,
 	Shield,
@@ -35,6 +39,8 @@ import { OAuthConnectRow } from "../../components/mcp-oauth-connect-row";
 import { PresetMcpGrid } from "../../components/preset-mcp-grid";
 import { PrincetonConnectRow } from "../../components/princeton-connect-row";
 import { RecommendedSkillsGrid } from "../../components/recommended-skills-grid";
+import { RoseCurveSpinner } from "../../components/rose-curve-spinner";
+import { SkillViewerDialog } from "../../components/skill-viewer-dialog";
 import { SkillsBrowser } from "../../components/skills-browser";
 import { Badge } from "../../components/ui/badge";
 import { Button } from "../../components/ui/button";
@@ -57,14 +63,67 @@ import {
 } from "../../components/ui/select";
 import { Separator } from "../../components/ui/separator";
 import { Skeleton } from "../../components/ui/skeleton";
+import { Textarea } from "../../components/ui/textarea";
 import { env } from "../../env";
 import type { McpServerEntry } from "../../lib/mcp";
-import { PRESET_MCPS } from "../../lib/mcp";
+import {
+	fetchCommandsFromApi,
+	PRESET_MCPS,
+	sanitizeServerName,
+	toMcpServerPayload,
+	validateMcpUrl,
+} from "../../lib/mcp";
 import { MODELS } from "../../lib/models";
 import type { SkillEntry } from "../../lib/skills";
+import { SYSTEM_PROMPT_MAX_LENGTH } from "../../lib/system-prompt";
 
 const API_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
 
+type SandboxConfig = {
+	persistent: boolean;
+	autoStart: boolean;
+	defaultLanguage: string;
+	resourceTier: "basic" | "standard" | "performance";
+	snapshotId?: string;
+	gitRepo?: string;
+	networkRestricted?: boolean;
+};
+
+type Sandbox = Doc<"sandboxes">;
+
+type HarnessStatus = "draft" | "started" | "stopped";
+
+function getResourceTierFromSandbox(
+	sandbox: Sandbox,
+): SandboxConfig["resourceTier"] {
+	if (sandbox.resources.cpu >= 4 || sandbox.resources.memoryGB >= 8) {
+		return "performance";
+	}
+	if (sandbox.resources.cpu >= 2 || sandbox.resources.memoryGB >= 4) {
+		return "standard";
+	}
+	return "basic";
+}
+
+function getSandboxConfigFromSandbox(sandbox: Sandbox): SandboxConfig {
+	return {
+		persistent: !sandbox.ephemeral,
+		autoStart: true,
+		defaultLanguage: sandbox.language ?? "python",
+		resourceTier: getResourceTierFromSandbox(sandbox),
+		gitRepo: sandbox.gitRepo,
+		snapshotId: sandbox.snapshotId,
+	};
+}
+
+function formatSandboxMeta(sandbox: Sandbox) {
+	const type = sandbox.ephemeral ? "Ephemeral" : "Persistent";
+	const language = sandbox.language
+		? sandbox.language.charAt(0).toUpperCase() + sandbox.language.slice(1)
+		: "Default";
+	return `${type} - ${language} - ${sandbox.resources.cpu} CPU - ${sandbox.resources.memoryGB} GB RAM`;
+}
+
 export const Route = createFileRoute("/harnesses/$harnessId")({
 	beforeLoad: ({ context }) => {
 		if (!context.userId) {
@@ -75,15 +134,20 @@ export const Route = createFileRoute("/harnesses/$harnessId")({
 });
 
 function HarnessEditPage() {
+	const navigate = useNavigate();
 	const { harnessId } = Route.useParams();
 	const { data: harness, isLoading } = useQuery(
 		convexQuery(api.harnesses.get, {
 			id: harnessId as Id<"harnesses">,
 		}),
 	);
+	const { data: sandboxes, isLoading: sandboxesLoading } = useQuery(
+		convexQuery(api.sandboxes.list, {}),
+	);
 
 	const { getToken } = useAuth();
 	const updateHarnessFn = useConvexMutation(api.harnesses.update);
+	const upsertCommandsFn = useConvexMutation(api.commands.upsert);
 	const ensureSkillDetailsFn = useConvexAction(api.skills.ensureSkillDetails);
 
 	const updateHarness = useMutation({
@@ -94,9 +158,12 @@ function HarnessEditPage() {
 
 			setName(null);
 			setModel(null);
+			setStatus(null);
 			setMcpServers(null);
 			setSkills(null);
+			setSystemPrompt(null);
 			toast.success("Harness saved");
+			navigate({ to: "/harnesses" });
 
 			// Fire-and-forget: sync skill details for newly added skills
 			if (savedSkills !== null && savedSkills.length > 0) {
@@ -105,7 +172,7 @@ function HarnessEditPage() {
 				);
 			}
 
-			// Regenerate suggested prompts when MCP servers changed
+			// Regenerate suggested prompts and commands when MCP servers changed
 			if (savedMcpServers !== null && savedMcpServers.length > 0) {
 				(async () => {
 					try {
@@ -119,12 +186,7 @@ function HarnessEditPage() {
 									...(token ? { Authorization: `Bearer ${token}` } : {}),
 								},
 								body: JSON.stringify({
-									mcp_servers: savedMcpServers.map((s) => ({
-										name: s.name,
-										url: s.url,
-										auth_type: s.authType,
-										...(s.authToken ? { auth_token: s.authToken } : {}),
-									})),
+									mcp_servers: toMcpServerPayload(savedMcpServers),
 								}),
 							},
 						);
@@ -141,29 +203,70 @@ function HarnessEditPage() {
 						// Non-blocking
 					}
 				})();
+
+				// Fire-and-forget: fetch commands, upsert, and link to harness
+				(async () => {
+					try {
+						const token = await getToken();
+						const cmds = await fetchCommandsFromApi(
+							API_URL,
+							savedMcpServers,
+							token,
+						);
+						if (!cmds || cmds.length === 0) return;
+
+						const ids = await upsertCommandsFn({
+							commands: cmds.map((c) => ({
+								name: c.name,
+								server: c.server,
+								tool: c.tool,
+								description: c.description,
+								parametersJson: JSON.stringify(c.parameters),
+							})),
+						});
+
+						const idByName = new Map(cmds.map((c, i) => [c.name, ids[i]]));
+						const enriched = savedMcpServers.map((s) => ({
+							name: s.name,
+							url: s.url,
+							authType: s.authType,
+							...(s.authToken ? { authToken: s.authToken } : {}),
+							commandIds: [...idByName.entries()]
+								.filter(([name]) =>
+									name.startsWith(`${sanitizeServerName(s.name)}__`),
+								)
+								.map(([, cmdId]) => cmdId),
+						}));
+
+						await updateHarnessFn({
+							id: harnessId as Id<"harnesses">,
+							mcpServers: enriched,
+						});
+					} catch {
+						// Non-blocking
+					}
+				})();
 			}
 		},
 	});
 
 	const [name, setName] = useState<string | null>(null);
 	const [model, setModel] = useState<string | null>(null);
+	const [status, setStatus] = useState<HarnessStatus | null>(null);
 	const [mcpServers, setMcpServers] = useState<McpServerEntry[] | null>(null);
 	const [skills, setSkills] = useState<SkillEntry[] | null>(null);
 	const [skillsBrowserOpen, setSkillsBrowserOpen] = useState(false);
+	const [viewingSkillId, setViewingSkillId] = useState<string | null>(null);
+	const [systemPrompt, setSystemPrompt] = useState<string | null>(null);
 	const [sandboxEnabled, setSandboxEnabled] = useState<boolean | null>(null);
-	const [sandboxConfig, setSandboxConfig] = useState<{
-		persistent: boolean;
-		autoStart: boolean;
-		defaultLanguage: string;
-		resourceTier: "basic" | "standard" | "performance";
-		snapshotId?: string;
-		gitRepo?: string;
-		networkRestricted?: boolean;
-	} | null>(null);
+	const [selectedSandboxId, setSelectedSandboxId] =
+		useState<Id<"sandboxes"> | null>(null);
 
 	// Use local state if edited, otherwise fall back to server data
 	const currentName = name ?? harness?.name ?? "";
 	const currentModel = model ?? harness?.model ?? "";
+	const currentStatus: HarnessStatus =
+		status ?? (harness?.status as HarnessStatus | undefined) ?? "draft";
 	const currentMcpServers = mcpServers ?? harness?.mcpServers ?? [];
 	const currentSkills: SkillEntry[] = skills ?? harness?.skills ?? [];
 
@@ -177,22 +280,35 @@ function HarnessEditPage() {
 	};
 
 	const currentSandboxEnabled =
-		sandboxEnabled ?? (harness as any)?.sandboxEnabled ?? false;
-	const currentSandboxConfig = sandboxConfig ??
-		(harness as any)?.sandboxConfig ?? {
-			persistent: false,
-			autoStart: true,
-			defaultLanguage: "python",
-			resourceTier: "basic" as const,
-		};
+		sandboxEnabled ?? harness?.sandboxEnabled ?? false;
+	const linkedSandbox = useMemo(
+		() =>
+			sandboxes?.find(
+				(sandbox) =>
+					sandbox._id === harness?.sandboxId ||
+					sandbox.daytonaSandboxId === harness?.daytonaSandboxId,
+			),
+		[sandboxes, harness?.sandboxId, harness?.daytonaSandboxId],
+	);
+	const currentSelectedSandboxId =
+		selectedSandboxId ?? linkedSandbox?._id ?? null;
+	const currentSelectedSandbox = useMemo(
+		() =>
+			sandboxes?.find((sandbox) => sandbox._id === currentSelectedSandboxId),
+		[sandboxes, currentSelectedSandboxId],
+	);
+
+	const currentSystemPrompt = systemPrompt ?? harness?.systemPrompt ?? "";
 
 	const hasChanges =
 		name !== null ||
 		model !== null ||
+		status !== null ||
 		mcpServers !== null ||
 		skills !== null ||
+		systemPrompt !== null ||
 		sandboxEnabled !== null ||
-		sandboxConfig !== null;
+		selectedSandboxId !== null;
 
 	// Derived: which preset IDs are already in the server list
 	const selectedPresetMcps = useMemo(
@@ -247,12 +363,26 @@ function HarnessEditPage() {
 		const updates: Record<string, unknown> = {
 			id: harnessId as Id<"harnesses">,
 		};
+		if (currentSandboxEnabled && !currentSelectedSandbox) {
+			toast.error("Select an existing sandbox");
+			return;
+		}
 		if (name !== null) updates.name = name;
 		if (model !== null) updates.model = model;
+		if (status !== null) updates.status = status;
 		if (mcpServers !== null) updates.mcpServers = mcpServers;
 		if (skills !== null) updates.skills = skills;
-		if (sandboxEnabled !== null) updates.sandboxEnabled = sandboxEnabled;
-		if (sandboxConfig !== null) updates.sandboxConfig = sandboxConfig;
+		if (systemPrompt !== null) updates.systemPrompt = systemPrompt.trim();
+		if (currentSandboxEnabled) {
+			updates.sandboxEnabled = true;
+			updates.sandboxId = currentSelectedSandbox?._id;
+			updates.daytonaSandboxId = currentSelectedSandbox?.daytonaSandboxId;
+			updates.sandboxConfig = currentSelectedSandbox
+				? getSandboxConfigFromSandbox(currentSelectedSandbox)
+				: undefined;
+		} else if (sandboxEnabled === false) {
+			updates.sandboxEnabled = false;
+		}
 		updateHarness.mutate(updates as Parameters<typeof updateHarness.mutate>[0]);
 	};
 
@@ -309,7 +439,7 @@ function HarnessEditPage() {
 					disabled={!hasChanges || updateHarness.isPending}
 				>
 					{updateHarness.isPending ? (
-						<Loader2 size={14} className="animate-spin" />
+						<RoseCurveSpinner size={14} />
 					) : (
 						<Check size={14} />
 					)}
@@ -319,6 +449,78 @@ function HarnessEditPage() {
 
 			<div className="flex-1 p-6">
 				<div className="mx-auto max-w-3xl space-y-8">
+					{/* Status */}
+					<motion.section
+						initial={{ opacity: 0, y: 8 }}
+						animate={{ opacity: 1, y: 0 }}
+					>
+						<h2 className="mb-4 text-xs font-medium uppercase tracking-wider text-muted-foreground">
+							Status
+						</h2>
+						{harness.status === "draft" && (
+							<div className="mb-3 flex items-start gap-2 border border-amber-400/40 bg-amber-400/10 px-3 py-2 text-xs text-foreground">
+								<AlertCircle
+									size={14}
+									className="mt-0.5 shrink-0 text-amber-500"
+								/>
+								<p>
+									This harness is a <strong>draft</strong> and won't appear in
+									the chat selector. Change the status to{" "}
+									<strong>Started</strong> and save to activate it and make it
+									selectable.
+								</p>
+							</div>
+						)}
+						{harness.status === "stopped" && (
+							<div className="mb-3 flex items-start gap-2 border border-border bg-muted/40 px-3 py-2 text-xs text-foreground">
+								<AlertCircle
+									size={14}
+									className="mt-0.5 shrink-0 text-muted-foreground"
+								/>
+								<p>
+									This harness is <strong>stopped</strong>. It's still
+									selectable in chats, but it isn't active. Change the status to{" "}
+									<strong>Started</strong> and save to activate it.
+								</p>
+							</div>
+						)}
+						<Select
+							value={currentStatus}
+							onValueChange={(v) => setStatus(v as HarnessStatus)}
+						>
+							<SelectTrigger className="max-w-sm">
+								<SelectValue placeholder="Select status" />
+							</SelectTrigger>
+							<SelectContent>
+								<SelectItem value="draft">
+									<div className="flex items-center gap-2">
+										<div className="h-2 w-2 bg-amber-400" />
+										<span>Draft</span>
+									</div>
+								</SelectItem>
+								<SelectItem value="started">
+									<div className="flex items-center gap-2">
+										<div className="h-2 w-2 bg-emerald-500" />
+										<span>Started</span>
+									</div>
+								</SelectItem>
+								<SelectItem value="stopped">
+									<div className="flex items-center gap-2">
+										<div className="h-2 w-2 bg-muted-foreground/40" />
+										<span>Stopped</span>
+									</div>
+								</SelectItem>
+							</SelectContent>
+						</Select>
+						{harness.status === "draft" && currentStatus !== "draft" && (
+							<p className="mt-2 text-[11px] text-muted-foreground">
+								Saving will promote this harness out of draft.
+							</p>
+						)}
+					</motion.section>
+
+					<Separator />
+
 					{/* Name & Model */}
 					<motion.section
 						initial={{ opacity: 0, y: 8 }}
@@ -364,6 +566,29 @@ function HarnessEditPage() {
 									</SelectContent>
 								</Select>
 							</div>
+							<div>
+								<label
+									htmlFor="system-prompt"
+									className="mb-1.5 block text-xs font-medium text-foreground"
+								>
+									System Prompt{" "}
+									<span className="font-normal text-muted-foreground">
+										(Optional)
+									</span>
+								</label>
+								<Textarea
+									id="system-prompt"
+									placeholder="e.g. You are a helpful coding assistant that always explains your reasoning."
+									value={currentSystemPrompt}
+									maxLength={SYSTEM_PROMPT_MAX_LENGTH}
+									onChange={(e) => setSystemPrompt(e.target.value)}
+									className="h-24 max-w-lg resize-y"
+								/>
+								<p className="mt-1.5 text-xs text-muted-foreground">
+									Custom instructions prepended to every conversation (max{" "}
+									{SYSTEM_PROMPT_MAX_LENGTH.toLocaleString()} characters).
+								</p>
+							</div>
 						</div>
 					</motion.section>
 
@@ -452,24 +677,30 @@ function HarnessEditPage() {
 
 						<div className="space-y-4">
 							{/* Enable toggle */}
-							<label className="flex cursor-pointer items-center gap-3 border border-border px-3 py-2.5 transition-colors hover:bg-muted/30">
+							<div className="flex items-center gap-3 border border-border px-3 py-2.5 transition-colors hover:bg-muted/30">
 								<Checkbox
+									id="harness-sandbox-enabled"
 									checked={currentSandboxEnabled}
 									onCheckedChange={(checked) =>
 										setSandboxEnabled(checked === true)
 									}
 								/>
-								<div className="flex-1">
-									<p className="text-xs font-medium text-foreground">
-										Enable sandbox for this harness
-									</p>
-									<p className="text-[11px] text-muted-foreground">
-										Gives this harness access to code execution, file system,
-										terminal, and git operations in an isolated environment
-									</p>
-								</div>
-								<Box size={14} className="shrink-0 text-muted-foreground" />
-							</label>
+								<label
+									htmlFor="harness-sandbox-enabled"
+									className="flex min-w-0 flex-1 cursor-pointer items-center gap-3"
+								>
+									<div className="flex-1">
+										<p className="text-xs font-medium text-foreground">
+											Enable sandbox for this harness
+										</p>
+										<p className="text-[11px] text-muted-foreground">
+											Gives this harness access to code execution, file system,
+											terminal, and git operations in an isolated environment
+										</p>
+									</div>
+									<Box size={14} className="shrink-0 text-muted-foreground" />
+								</label>
+							</div>
 
 							{currentSandboxEnabled && (
 								<motion.div
@@ -478,178 +709,47 @@ function HarnessEditPage() {
 									exit={{ opacity: 0, height: 0 }}
 									className="space-y-4"
 								>
-									{/* Sandbox type */}
-									<div>
-										<label className="mb-1.5 block text-xs font-medium text-foreground">
-											Sandbox Type
-										</label>
-										<div className="grid gap-2 sm:grid-cols-2">
-											<button
-												type="button"
-												onClick={() =>
-													setSandboxConfig({
-														...currentSandboxConfig,
-														persistent: false,
-													})
+									<div className="space-y-2">
+										<span className="block text-xs font-medium text-foreground">
+											Attach Existing Sandbox
+										</span>
+										{sandboxesLoading ? (
+											<p className="text-[11px] text-muted-foreground">
+												Loading sandboxes...
+											</p>
+										) : sandboxes && sandboxes.length > 0 ? (
+											<Select
+												value={currentSelectedSandboxId ?? undefined}
+												onValueChange={(value) =>
+													setSelectedSandboxId(value as Id<"sandboxes">)
 												}
-												className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
-													!currentSandboxConfig.persistent
-														? "border-foreground bg-foreground/5"
-														: "border-border hover:bg-muted/30"
-												}`}
 											>
-												<Play size={12} className="mt-0.5 shrink-0" />
-												<div>
-													<p className="text-xs font-medium">Ephemeral</p>
-													<p className="text-[11px] text-muted-foreground">
-														Created per conversation, auto-deleted when done
-													</p>
-												</div>
-											</button>
-											<button
-												type="button"
-												onClick={() =>
-													setSandboxConfig({
-														...currentSandboxConfig,
-														persistent: true,
-													})
-												}
-												className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
-													currentSandboxConfig.persistent
-														? "border-foreground bg-foreground/5"
-														: "border-border hover:bg-muted/30"
-												}`}
-											>
-												<HardDrive size={12} className="mt-0.5 shrink-0" />
-												<div>
-													<p className="text-xs font-medium">Persistent</p>
-													<p className="text-[11px] text-muted-foreground">
-														Maintains state across conversations
-													</p>
-												</div>
-											</button>
-										</div>
-									</div>
-
-									{/* Resource tier */}
-									<div>
-										<label className="mb-1.5 block text-xs font-medium text-foreground">
-											Resource Tier
-										</label>
-										<Select
-											value={currentSandboxConfig.resourceTier}
-											onValueChange={(v) =>
-												setSandboxConfig({
-													...currentSandboxConfig,
-													resourceTier: v as
-														| "basic"
-														| "standard"
-														| "performance",
-												})
-											}
-										>
-											<SelectTrigger className="max-w-sm text-xs">
-												<SelectValue />
-											</SelectTrigger>
-											<SelectContent>
-												<SelectItem value="basic">
-													<Cpu size={10} />
-													Basic — 1 CPU, 1 GB RAM, 3 GB Disk
-												</SelectItem>
-												<SelectItem value="standard">
-													<Cpu size={10} />
-													Standard — 2 CPU, 4 GB RAM, 8 GB Disk
-												</SelectItem>
-												<SelectItem value="performance">
-													<Cpu size={10} />
-													Performance — 4 CPU, 8 GB RAM, 10 GB Disk
-												</SelectItem>
-											</SelectContent>
-										</Select>
-									</div>
-
-									{/* Default language */}
-									<div>
-										<label className="mb-1.5 block text-xs font-medium text-foreground">
-											Default Language
-										</label>
-										<Select
-											value={currentSandboxConfig.defaultLanguage}
-											onValueChange={(v) =>
-												setSandboxConfig({
-													...currentSandboxConfig,
-													defaultLanguage: v,
-												})
-											}
-										>
-											<SelectTrigger className="max-w-sm text-xs">
-												<SelectValue />
-											</SelectTrigger>
-											<SelectContent>
-												<SelectItem value="python">Python</SelectItem>
-												<SelectItem value="javascript">JavaScript</SelectItem>
-												<SelectItem value="typescript">TypeScript</SelectItem>
-											</SelectContent>
-										</Select>
-									</div>
-
-									{/* Advanced options */}
-									<details className="group">
-										<summary className="flex cursor-pointer items-center gap-1.5 text-[11px] text-muted-foreground hover:text-foreground">
-											<ChevronDown
-												size={10}
-												className="transition-transform group-open:rotate-180"
-											/>
-											Advanced Options
-										</summary>
-										<div className="mt-3 space-y-3 border-l-2 border-border pl-3">
-											<div>
-												<label
-													htmlFor="sandbox-git-repo"
-													className="mb-1 block text-[11px] text-muted-foreground"
-												>
-													Auto-clone Repository
-												</label>
-												<Input
-													id="sandbox-git-repo"
-													value={currentSandboxConfig.gitRepo ?? ""}
-													onChange={(e) =>
-														setSandboxConfig({
-															...currentSandboxConfig,
-															gitRepo: e.target.value || undefined,
-														})
-													}
-													placeholder="https://github.com/user/repo.git"
-													className="max-w-sm text-xs"
-												/>
+												<SelectTrigger className="w-full max-w-lg text-xs">
+													<SelectValue placeholder="Choose a sandbox" />
+												</SelectTrigger>
+												<SelectContent>
+													{sandboxes.map((sandbox) => (
+														<SelectItem key={sandbox._id} value={sandbox._id}>
+															<span className="truncate">{sandbox.name}</span>
+															<span className="text-[10px] text-muted-foreground">
+																{formatSandboxMeta(sandbox)}
+															</span>
+														</SelectItem>
+													))}
+												</SelectContent>
+											</Select>
+										) : (
+											<div className="border border-dashed border-border px-3 py-2.5">
+												<p className="text-xs font-medium text-foreground">
+													No existing sandboxes
+												</p>
+												<p className="mt-1 text-[11px] text-muted-foreground">
+													Create a sandbox from the Sandboxes page, then return
+													here to attach it.
+												</p>
 											</div>
-											<label className="flex cursor-pointer items-center gap-2.5">
-												<Checkbox
-													checked={
-														currentSandboxConfig.networkRestricted ?? false
-													}
-													onCheckedChange={(checked) =>
-														setSandboxConfig({
-															...currentSandboxConfig,
-															networkRestricted: checked === true,
-														})
-													}
-												/>
-												<div>
-													<p className="text-xs text-foreground">
-														Restrict network access
-													</p>
-													<p className="text-[11px] text-muted-foreground">
-														Block all outbound network traffic from the sandbox
-													</p>
-												</div>
-												<Globe
-													size={12}
-													className="shrink-0 text-muted-foreground"
-												/>
-											</label>
-										</div>
-									</details>
+										)}
+									</div>
 								</motion.div>
 							)}
 						</div>
@@ -718,25 +818,39 @@ function HarnessEditPage() {
 								{currentSkills.map((skill) => {
 									const displayName = skill.name.split("/").pop() ?? skill.name;
 									return (
-										<button
+										<div
 											key={skill.name}
-											type="button"
-											onClick={() => toggleSkill(skill)}
-											className="flex w-full items-start gap-3 border border-foreground bg-foreground/3 p-3 text-left transition-colors hover:border-foreground/20"
+											className="flex w-full items-start gap-3 border border-foreground bg-foreground/3 p-3 transition-colors hover:border-foreground/20"
 										>
 											<Checkbox
 												checked={true}
 												className="mt-0.5 shrink-0"
-												tabIndex={-1}
+												onCheckedChange={() => toggleSkill(skill)}
 											/>
-											<div className="min-w-0 flex-1">
+											<button
+												type="button"
+												onClick={() => toggleSkill(skill)}
+												className="min-w-0 flex-1 border-0 bg-transparent p-0 text-left outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2"
+											>
 												<p className="text-xs font-medium text-foreground">
 													{displayName}
 												</p>
-											</div>
-										</button>
+											</button>
+											<button
+												type="button"
+												aria-label={`View skill ${displayName}`}
+												onClick={() => setViewingSkillId(skill.name)}
+												className="mt-0.5 shrink-0 text-muted-foreground/40 transition-colors hover:text-foreground"
+											>
+												<Eye size={14} />
+											</button>
+										</div>
 									);
 								})}
+								<SkillViewerDialog
+									fullId={viewingSkillId}
+									onClose={() => setViewingSkillId(null)}
+								/>
 							</div>
 						)}
 
@@ -770,51 +884,12 @@ function HarnessEditPage() {
 							</DialogContent>
 						</Dialog>
 					</motion.section>
-
-					<Separator />
-
-					{/* Status */}
-					<motion.section
-						initial={{ opacity: 0, y: 8 }}
-						animate={{ opacity: 1, y: 0 }}
-						transition={{ delay: 0.1 }}
-					>
-						<h2 className="mb-4 text-xs font-medium uppercase tracking-wider text-muted-foreground">
-							Status
-						</h2>
-						<div className="flex items-center gap-3">
-							<div
-								className={`h-2 w-2 ${
-									harness.status === "started"
-										? "bg-emerald-500"
-										: harness.status === "stopped"
-											? "bg-muted-foreground/40"
-											: "bg-amber-400"
-								}`}
-							/>
-							<span className="text-sm text-foreground capitalize">
-								{harness.status}
-							</span>
-						</div>
-					</motion.section>
 				</div>
 			</div>
 		</div>
 	);
 }
 
-function validateMcpUrl(url: string): string | null {
-	if (/\s/.test(url)) return "URL must not contain spaces";
-	try {
-		const parsed = new URL(url);
-		if (parsed.protocol !== "http:" && parsed.protocol !== "https:")
-			return "URL must start with http:// or https://";
-	} catch {
-		return "Please enter a valid URL";
-	}
-	return null;
-}
-
 function McpServerRow({
 	server,
 	onRemove,
diff --git a/apps/web/src/routes/harnesses/index.tsx b/apps/web/src/routes/harnesses/index.tsx
index eb9a279..870e7b1 100644
--- a/apps/web/src/routes/harnesses/index.tsx
+++ b/apps/web/src/routes/harnesses/index.tsx
@@ -9,6 +9,7 @@ import {
 	useNavigate,
 } from "@tanstack/react-router";
 import {
+	AlertCircle,
 	ArrowLeft,
 	Copy,
 	Cpu,
@@ -17,6 +18,7 @@ import {
 	MoreHorizontal,
 	Play,
 	Plus,
+	Sparkles,
 	Square,
 	Trash2,
 	Zap,
@@ -24,6 +26,7 @@ import {
 import { motion } from "motion/react";
 import { useState } from "react";
 import toast from "react-hot-toast";
+import { HarnessCreationAssistant } from "../../components/harness-creation-assistant";
 import { HarnessMark } from "../../components/harness-mark";
 import { Badge } from "../../components/ui/badge";
 import { Button } from "../../components/ui/button";
@@ -74,6 +77,7 @@ function HarnessesPage() {
 	const [deleteTarget, setDeleteTarget] = useState<Id<"harnesses"> | null>(
 		null,
 	);
+	const [creationAssistantOpen, setCreationAssistantOpen] = useState(false);
 
 	if (isLoading) {
 		return <LoadingSkeleton />;
@@ -89,6 +93,13 @@ function HarnessesPage() {
 	const active = harnesses?.filter((h) => h.status === "started") ?? [];
 	const stopped = harnesses?.filter((h) => h.status === "stopped") ?? [];
 	const drafts = harnesses?.filter((h) => h.status === "draft") ?? [];
+	const duplicateHarnessNames = (() => {
+		const counts = new Map<string, number>();
+		for (const h of harnesses ?? []) {
+			counts.set(h.name, (counts.get(h.name) ?? 0) + 1);
+		}
+		return [...counts.entries()].filter(([, n]) => n > 1).map(([name]) => name);
+	})();
 
 	const handleToggleStatus = (
 		id: Id<"harnesses">,
@@ -123,19 +134,55 @@ function HarnessesPage() {
 						</p>
 					</div>
 				</div>
-				<Button size="sm" asChild>
-					<Link to="/onboarding">
-						<Plus size={14} />
-						Create New
-					</Link>
-				</Button>
+				<div className="flex items-center gap-2">
+					<Button
+						size="sm"
+						variant="outline"
+						onClick={() => setCreationAssistantOpen(true)}
+					>
+						<Sparkles size={14} />
+						Create with AI
+					</Button>
+					<Button size="sm" asChild>
+						<Link to="/onboarding">
+							<Plus size={14} />
+							Create New
+						</Link>
+					</Button>
+				</div>
 			</header>
 
+			<HarnessCreationAssistant
+				open={creationAssistantOpen}
+				onOpenChange={setCreationAssistantOpen}
+			/>
+
 			<div className="flex-1 p-6">
 				{harnesses?.length === 0 ? (
 					<EmptyState />
 				) : (
 					<div className="mx-auto max-w-4xl space-y-8">
+						{duplicateHarnessNames.length > 0 && (
+							<div className="flex items-start gap-2 border border-border bg-muted/40 px-4 py-3 text-xs text-foreground">
+								<AlertCircle
+									size={16}
+									className="mt-0.5 shrink-0 text-muted-foreground"
+								/>
+								<div>
+									<p className="font-medium">
+										Duplicate harness name
+										{duplicateHarnessNames.length > 1 ? "s" : ""}
+									</p>
+									<p className="mt-0.5 text-muted-foreground">
+										You have multiple harnesses named{" "}
+										{duplicateHarnessNames.map((n) => `"${n}"`).join(", ")}.
+										This is allowed, but it can make picking the right one
+										harder elsewhere — consider renaming them so each name is
+										unique.
+									</p>
+								</div>
+							</div>
+						)}
 						{active.length > 0 && (
 							<HarnessGroup
 								title="Active"
@@ -231,7 +278,7 @@ function HarnessGroup({
 			authType: "none" | "bearer" | "oauth" | "tiger_junction";
 			authToken?: string;
 		}>;
-		skills: string[];
+		skills: { name: string; description: string }[];
 	}>;
 	onToggle: (
 		id: Id<"harnesses">,
@@ -286,7 +333,7 @@ function HarnessCard({
 			authType: "none" | "bearer" | "oauth" | "tiger_junction";
 			authToken?: string;
 		}>;
-		skills: string[];
+		skills: { name: string; description: string }[];
 	};
 	onToggle: (
 		id: Id<"harnesses">,
diff --git a/apps/web/src/routes/index.tsx b/apps/web/src/routes/index.tsx
index c0fcf87..55330b6 100644
--- a/apps/web/src/routes/index.tsx
+++ b/apps/web/src/routes/index.tsx
@@ -1,17 +1,19 @@
 import { useAuth } from "@clerk/tanstack-react-start";
 import { createFileRoute, Link } from "@tanstack/react-router";
 import {
-	ArrowLeftRight,
 	ArrowRight,
-	Code,
-	Database,
-	Globe,
+	Check,
+	FolderTree,
+	GitBranch,
 	Layers,
 	Menu,
-	MessageSquare,
-	Terminal,
+	Plug,
+	Plus,
+	Server,
+	Sparkles,
+	TerminalSquare,
+	Wallet,
 	X,
-	Zap,
 } from "lucide-react";
 import {
 	AnimatePresence,
@@ -34,11 +36,11 @@ export const Route = createFileRoute("/")({
 	component: LandingPage,
 	head: () => ({
 		meta: [
-			{ title: "Harness — The toolkit for AI agents" },
+			{ title: "Harness — One chat, every tool your agent needs" },
 			{
 				name: "description",
 				content:
-					"Create, manage, and deploy custom tool configurations for AI agents. Switch contexts in seconds.",
+					"Bundle your model, MCP servers, skills, and a live sandbox into a harness. Switch from coding to research to ops in one click.",
 			},
 		],
 	}),
@@ -47,104 +49,72 @@ export const Route = createFileRoute("/")({
 /* ─────────────────────── Constants ─────────────────────── */
 
 const rotatingWords = [
-	"anything",
-	"coding",
-	"research",
-	"browsing",
-	"learning",
+	"code review",
+	"issue triage",
+	"deep research",
+	"weekly notes",
 ];
 
-const features = [
+const primaryFeatures = [
 	{
-		icon: ArrowLeftRight,
-		title: "Instant Context Switching",
+		icon: Layers,
+		title: "One agent, many contexts",
 		description:
-			"Swap between agent profiles on the fly. Go from coding to research to browsing — without missing a beat.",
+			"A harness saves your model, system prompt, MCPs, skills, and sandbox. Switch from a coding agent to a research agent in one click.",
 	},
 	{
-		icon: MessageSquare,
-		title: "Unified Chat Interface",
+		icon: Plug,
+		title: "Plug in any tool",
 		description:
-			"Talk to your configured agents through a powerful chat interface. Every tool at your fingertips, one conversation away.",
+			"A growing catalog — GitHub, Notion, Linear, Exa, Context7, and more. OAuth handled. Custom MCP URLs welcome.",
 	},
 	{
-		icon: Code,
-		title: "Developer-First API",
+		icon: TerminalSquare,
+		title: "Real code, not just chat",
 		description:
-			"Access your harnesses programmatically through a clean REST API. Build downstream applications with our SDK.",
+			"Each harness can attach a Daytona-backed sandbox: file explorer, terminal, git. Your agent edits, runs, and ships — you watch it land.",
 	},
 ];
 
-const steps = [
+const secondaryFeatures = [
 	{
-		num: "01",
-		title: "Configure",
+		icon: Sparkles,
+		title: "Skills from skills.sh",
 		description:
-			"Define your harness with the tools, MCPs, and environments your agent needs.",
+			"Pull battle-tested instructions for code review, debugging, web search, PDFs. Your agent learns your team's playbook on import.",
 	},
 	{
-		num: "02",
-		title: "Deploy",
+		icon: Server,
+		title: "Slash commands & rich attachments",
 		description:
-			"We handle provisioning and orchestration. Your harness goes live instantly.",
+			"Every MCP tool becomes a / command. Drop in images, PDFs, audio. Streaming reasoning across Claude, GPT, and Gemini.",
 	},
 	{
-		num: "03",
-		title: "Use",
+		icon: Wallet,
+		title: "Transparent budgets",
 		description:
-			"Chat with your agent or integrate via API. Fully equipped, ready to go.",
+			"Daily and weekly cost caps with per-model and per-harness breakdowns. No surprise bills at the end of the month.",
 	},
 ];
 
-const toolNodes = [
-	{ icon: Globe, label: "Browser" },
-	{ icon: Terminal, label: "Terminal" },
-	{ icon: Code, label: "Editor" },
-	{ icon: Database, label: "Storage" },
-	{ icon: Zap, label: "API" },
-	{ icon: Layers, label: "MCP" },
-];
-
-const terminalLines: {
-	prefix: string;
-	text: string;
-	color: string;
-}[] = [
-	{
-		prefix: "$",
-		text: "harness deploy --profile coding",
-		color: "text-emerald-400",
-	},
-	{
-		prefix: "→",
-		text: "Loading tools: editor, terminal, git",
-		color: "text-white/60",
-	},
-	{
-		prefix: "→",
-		text: "MCP servers: 3 connected",
-		color: "text-white/60",
-	},
-	{
-		prefix: "✓",
-		text: "Agent equipped. Ready.",
-		color: "text-emerald-400",
-	},
-	{ prefix: "", text: "", color: "" },
+const steps = [
 	{
-		prefix: "$",
-		text: "harness switch research",
-		color: "text-emerald-400",
+		num: "01",
+		title: "Configure",
+		description:
+			"Name a harness. Pick a model — Claude, GPT, or Gemini. Attach the MCPs and skills your agent needs. Optionally add a Daytona sandbox.",
 	},
 	{
-		prefix: "→",
-		text: "Switching context...",
-		color: "text-white/60",
+		num: "02",
+		title: "Connect",
+		description:
+			"OAuth into GitHub, Notion, Linear, or any provider in one popup. Tokens are stored encrypted and refreshed on demand — no manual key wrangling.",
 	},
 	{
-		prefix: "✓",
-		text: "Research profile active. 4 tools loaded.",
-		color: "text-emerald-400",
+		num: "03",
+		title: "Chat",
+		description:
+			"Streaming reasoning, slash commands, tool calls, attachments, and live sandbox output — all in one conversation.",
 	},
 ];
 
@@ -203,219 +173,6 @@ function RotatingWord() {
 	);
 }
 
-/* ─────────────────────── Animated Graphics ─────────────────────── */
-
-function NetworkGraph() {
-	const containerRef = useRef<HTMLDivElement>(null);
-	const isInView = useInView(containerRef, { once: true, margin: "-80px" });
-
-	const nodeCount = toolNodes.length;
-	const radius = 135;
-	const center = { x: 200, y: 200 };
-
-	const positions = toolNodes.map((_, i) => {
-		const angle = (i * 2 * Math.PI) / nodeCount - Math.PI / 2;
-		return {
-			x: center.x + radius * Math.cos(angle),
-			y: center.y + radius * Math.sin(angle),
-		};
-	});
-
-	return (
-		<div
-			ref={containerRef}
-			className="relative mx-auto aspect-square w-full max-w-[440px]"
-		>
-			<div className="absolute left-1/2 top-1/2 h-72 w-72 -translate-x-1/2 -translate-y-1/2 rounded-full bg-black/[0.015] blur-[80px]" />
-
-			<svg
-				viewBox="0 0 400 400"
-				className="absolute inset-0 h-full w-full"
-				fill="none"
-				role="img"
-				aria-label="Animated network graph showing AI agent connected to tools"
-			>
-				{positions.map((pos, i) => (
-					<g key={toolNodes[i].label}>
-						<motion.path
-							d={`M${center.x},${center.y} L${pos.x},${pos.y}`}
-							stroke="rgba(0,0,0,0.07)"
-							strokeWidth="1"
-							initial={{ pathLength: 0, opacity: 0 }}
-							animate={isInView ? { pathLength: 1, opacity: 1 } : {}}
-							transition={{
-								duration: 1,
-								delay: 0.4 + i * 0.1,
-								ease: "easeOut",
-							}}
-						/>
-
-						{isInView && (
-							<circle r="2.5" fill="rgba(0,0,0,0.12)">
-								<animateMotion
-									dur={`${2.5 + i * 0.3}s`}
-									repeatCount="indefinite"
-									begin={`${1.5 + i * 0.1}s`}
-									path={`M${center.x},${center.y} L${pos.x},${pos.y}`}
-								/>
-							</circle>
-						)}
-
-						{isInView && (
-							<circle r="1.8" fill="rgba(0,0,0,0.06)">
-								<animateMotion
-									dur={`${3.2 + i * 0.4}s`}
-									repeatCount="indefinite"
-									begin={`${2 + i * 0.2}s`}
-									path={`M${pos.x},${pos.y} L${center.x},${center.y}`}
-								/>
-							</circle>
-						)}
-					</g>
-				))}
-
-				{isInView &&
-					[0, 1.5].map((delay) => (
-						<circle
-							key={delay}
-							cx={center.x}
-							cy={center.y}
-							r="28"
-							fill="none"
-							stroke="rgba(0,0,0,0.05)"
-							strokeWidth="1"
-						>
-							<animate
-								attributeName="r"
-								from="28"
-								to="70"
-								dur="3s"
-								begin={`${delay}s`}
-								repeatCount="indefinite"
-							/>
-							<animate
-								attributeName="opacity"
-								from="0.3"
-								to="0"
-								dur="3s"
-								begin={`${delay}s`}
-								repeatCount="indefinite"
-							/>
-						</circle>
-					))}
-			</svg>
-
-			<motion.div
-				className="absolute left-1/2 top-1/2 z-10 -translate-x-1/2 -translate-y-1/2"
-				initial={{ scale: 0, opacity: 0 }}
-				animate={isInView ? { scale: 1, opacity: 1 } : {}}
-				transition={{ duration: 0.5, delay: 0.15, ease }}
-			>
-				<div className="flex h-16 w-16 items-center justify-center bg-primary shadow-xl shadow-primary/20">
-					<HarnessMark size={28} className="text-primary-foreground" />
-				</div>
-			</motion.div>
-
-			{toolNodes.map((node, i) => {
-				const pos = positions[i];
-				const pctLeft = (pos.x / 400) * 100;
-				const pctTop = (pos.y / 400) * 100;
-
-				return (
-					<motion.div
-						key={node.label}
-						className="absolute z-10 -translate-x-1/2 -translate-y-1/2"
-						style={{ left: `${pctLeft}%`, top: `${pctTop}%` }}
-						initial={{ scale: 0, opacity: 0 }}
-						animate={isInView ? { scale: 1, opacity: 1 } : {}}
-						transition={{ duration: 0.4, delay: 0.6 + i * 0.08, ease }}
-					>
-						<motion.div
-							animate={{ y: [0, -5, 0] }}
-							transition={{
-								duration: 3 + i * 0.4,
-								repeat: Number.POSITIVE_INFINITY,
-								ease: "easeInOut",
-								delay: i * 0.3,
-							}}
-						>
-							<div className="flex h-12 w-12 items-center justify-center border border-black/[0.06] bg-white shadow-sm transition-shadow hover:shadow-md">
-								<node.icon
-									size={20}
-									strokeWidth={1.5}
-									className="text-black/70"
-								/>
-							</div>
-							<p className="mt-1.5 text-center text-[10px] font-medium text-black/40">
-								{node.label}
-							</p>
-						</motion.div>
-					</motion.div>
-				);
-			})}
-		</div>
-	);
-}
-
-function AnimatedTerminal() {
-	const ref = useRef<HTMLDivElement>(null);
-	const isInView = useInView(ref, { once: true, margin: "-80px" });
-
-	return (
-		<div ref={ref} className="mx-auto w-full max-w-2xl">
-			<div className="overflow-hidden border border-white/[0.06] bg-[#0a0a0a] shadow-2xl shadow-black/40">
-				<div className="flex items-center gap-2 border-b border-white/[0.06] px-4 py-3">
-					<div className="h-3 w-3 rounded-full bg-white/10" />
-					<div className="h-3 w-3 rounded-full bg-white/10" />
-					<div className="h-3 w-3 rounded-full bg-white/10" />
-					<span className="ml-3 font-mono text-xs text-white/20">terminal</span>
-				</div>
-
-				<div className="space-y-1.5 p-5 font-mono text-sm leading-relaxed">
-					{terminalLines.map((line) => {
-						if (!line.text) {
-							return (
-								<motion.div
-									key="spacer"
-									className="h-3"
-									initial={{ opacity: 0 }}
-									animate={isInView ? { opacity: 1 } : {}}
-									transition={{ delay: 1.2 }}
-								/>
-							);
-						}
-
-						return (
-							<motion.div
-								key={`${line.prefix}-${line.text}`}
-								initial={{ opacity: 0, x: -10 }}
-								animate={isInView ? { opacity: 1, x: 0 } : {}}
-								transition={{
-									delay: 0.2 + terminalLines.indexOf(line) * 0.3,
-									duration: 0.4,
-									ease,
-								}}
-							>
-								<span className="mr-2 text-white/25">{line.prefix}</span>
-								<span className={line.color}>{line.text}</span>
-							</motion.div>
-						);
-					})}
-
-					<motion.div
-						initial={{ opacity: 0 }}
-						animate={isInView ? { opacity: 1 } : {}}
-						transition={{ delay: terminalLines.length * 0.3 + 0.5 }}
-					>
-						<span className="mr-2 text-white/25">$</span>
-						<span className="inline-block h-4 w-[7px] translate-y-[2px] animate-pulse bg-emerald-400/80" />
-					</motion.div>
-				</div>
-			</div>
-		</div>
-	);
-}
-
 function GradientOrb({
 	className,
 	delay = 0,
@@ -475,6 +232,335 @@ function FloatingDots() {
 	);
 }
 
+/* ─────────────────────── Product Mocks ─────────────────────── */
+
+/**
+ * MockChatPanel — visual stand-in for the real chat surface, used in the hero.
+ * Not interactive. Shows a generic issue-triage agent example wired to GitHub
+ * + Linear MCPs to highlight the agent → tool-call → answer loop.
+ */
+function MockChatPanel() {
+	const ref = useRef<HTMLDivElement>(null);
+	const isInView = useInView(ref, { once: true, margin: "-60px" });
+
+	return (
+		<div ref={ref} className="relative w-full max-w-[460px]">
+			<div className="absolute -inset-6 -z-10 bg-black/[0.015] blur-3xl" />
+			<motion.div
+				initial={{ opacity: 0, y: 20 }}
+				animate={isInView ? { opacity: 1, y: 0 } : {}}
+				transition={{ duration: 0.6, ease }}
+				className="border border-black/[0.08] bg-white shadow-[0_24px_64px_-32px_rgba(0,0,0,0.18)]"
+			>
+				{/* Header */}
+				<div className="flex items-center gap-2 border-b border-black/[0.06] px-4 py-2.5">
+					<div className="flex h-6 w-6 items-center justify-center bg-black">
+						<HarnessMark size={12} className="text-white" />
+					</div>
+					<div className="flex min-w-0 flex-1 items-center gap-2 text-[11px]">
+						<span className="font-medium">Issue triage agent</span>
+						<span className="text-black/30">·</span>
+						<span className="text-black/50">claude-sonnet-4.6</span>
+					</div>
+					<div className="flex items-center gap-1 text-[10px] text-black/40">
+						<div className="h-1.5 w-1.5 rounded-full bg-emerald-500" />
+						<span>3 MCPs</span>
+					</div>
+				</div>
+
+				{/* Messages */}
+				<div className="space-y-3 px-4 py-4 text-[12px] leading-relaxed">
+					<motion.div
+						initial={{ opacity: 0, y: 6 }}
+						animate={isInView ? { opacity: 1, y: 0 } : {}}
+						transition={{ duration: 0.4, delay: 0.4, ease }}
+						className="ml-auto max-w-[85%] bg-[#fafafa] px-3 py-2 text-black/80"
+					>
+						Pull this week's open auth-related bug reports and file the
+						highest-signal ones in Linear.
+					</motion.div>
+
+					<motion.div
+						initial={{ opacity: 0, y: 6 }}
+						animate={isInView ? { opacity: 1, y: 0 } : {}}
+						transition={{ duration: 0.4, delay: 0.9, ease }}
+						className="space-y-2"
+					>
+						<MockToolCall
+							server="github"
+							tool="search_issues"
+							arg="auth is:open"
+							ms={142}
+						/>
+						<MockToolCall
+							server="linear"
+							tool="create_issue"
+							arg="Auth: SSO token refresh"
+							ms={268}
+						/>
+
+						<div className="text-black/85">
+							Found 7 open issues mentioning auth. The top theme — SSO token
+							refresh failing — appears in{" "}
+							<span className="font-medium">4 reports</span>. Filed{" "}
+							<span className="bg-emerald-500/10 px-1 text-emerald-700">
+								LIN-481
+							</span>{" "}
+							and grouped the long tail under{" "}
+							<span className="font-medium">LIN-482</span>.
+						</div>
+
+						<MockStreamingDot />
+					</motion.div>
+				</div>
+
+				{/* Composer with slash hint */}
+				<div className="border-t border-black/[0.06] px-3 py-2">
+					<div className="flex items-center gap-2 border border-black/[0.08] bg-white px-2.5 py-1.5">
+						<span className="font-mono text-[11px] text-emerald-600">/</span>
+						<span className="font-mono text-[11px] text-black/45">
+							linear_create_issue
+						</span>
+						<span className="ml-auto text-[10px] text-black/30">↵ run</span>
+					</div>
+				</div>
+			</motion.div>
+		</div>
+	);
+}
+
+function MockToolCall({
+	server,
+	tool,
+	arg,
+	ms,
+}: {
+	server: string;
+	tool: string;
+	arg: string;
+	ms: number;
+}) {
+	return (
+		<div className="flex items-center gap-2 border border-black/[0.06] bg-[#fafafa] px-2 py-1.5 font-mono text-[10.5px]">
+			<Check size={10} className="shrink-0 text-emerald-600" />
+			<span className="text-black/55">{server}</span>
+			<span className="text-black/30">·</span>
+			<span className="text-black/80">{tool}</span>
+			<span className="truncate text-black/40">("{arg}")</span>
+			<span className="ml-auto shrink-0 text-black/35">{ms}ms</span>
+		</div>
+	);
+}
+
+function MockStreamingDot() {
+	return (
+		<div className="flex items-center gap-1">
+			{[0, 0.15, 0.3].map((delay) => (
+				<motion.div
+					key={delay}
+					className="h-1.5 w-1.5 rounded-full bg-black/30"
+					animate={{ opacity: [0.3, 1, 0.3] }}
+					transition={{
+						duration: 1.2,
+						repeat: Number.POSITIVE_INFINITY,
+						delay,
+						ease: "easeInOut",
+					}}
+				/>
+			))}
+		</div>
+	);
+}
+
+/**
+ * MockMcpPopover — visual stand-in for the new inline MCP add popover.
+ * Mirrors the real component (mcp-server-status.tsx) at a glance.
+ */
+function MockMcpPopover() {
+	return (
+		<div className="border border-black/[0.08] bg-white shadow-[0_16px_48px_-20px_rgba(0,0,0,0.18)]">
+			<div className="flex items-center gap-2 border-b border-black/[0.06] px-3 py-2">
+				<span className="flex-1 text-[10px] font-medium uppercase tracking-wider text-black/50">
+					MCP Servers
+				</span>
+				<div className="flex h-4 w-4 items-center justify-center text-black/50">
+					<Plus size={11} />
+				</div>
+			</div>
+			<div className="py-1">
+				{[
+					{ name: "GitHub", status: "Connected", badge: "OAuth", oauth: true },
+					{
+						name: "Linear",
+						status: "Connected",
+						badge: "OAuth",
+						oauth: true,
+					},
+					{
+						name: "Context7",
+						status: "Connected",
+						badge: "Public",
+					},
+					{ name: "Notion", status: "Token expired", warn: true },
+				].map((s) => (
+					<div
+						key={s.name}
+						className="flex items-center gap-2 px-3 py-1.5 text-[11px]"
+					>
+						<div
+							className={`h-1.5 w-1.5 shrink-0 rounded-full ${
+								s.warn ? "bg-amber-400" : "bg-emerald-500"
+							}`}
+						/>
+						<div className="min-w-0 flex-1">
+							<div className="truncate font-medium text-black/85">{s.name}</div>
+							<div className="text-[10px] text-black/45">{s.status}</div>
+						</div>
+						{s.badge && (
+							<span className="flex shrink-0 items-center gap-0.5 bg-black/[0.05] px-1.5 py-0.5 text-[9px] text-black/65">
+								{s.oauth && (
+									<span className="h-1 w-1 rounded-full bg-emerald-500" />
+								)}
+								{s.badge}
+							</span>
+						)}
+					</div>
+				))}
+			</div>
+		</div>
+	);
+}
+
+/**
+ * MockSlashPalette — visual stand-in for the / command palette.
+ */
+function MockSlashPalette() {
+	const commands = [
+		{ name: "github_search_repositories", desc: "Search public + your repos" },
+		{ name: "notion_create_page", desc: "Create a page in a database" },
+		{ name: "linear_create_issue", desc: "Open an issue in your team" },
+		{
+			name: "context7_fetch_docs",
+			desc: "Pull up-to-date library docs",
+		},
+		{ name: "exa_search", desc: "Semantic web search" },
+	];
+	return (
+		<div className="border border-black/[0.08] bg-white shadow-[0_16px_48px_-20px_rgba(0,0,0,0.18)]">
+			<div className="flex items-center gap-2 border-b border-black/[0.06] px-3 py-2 font-mono text-[11px]">
+				<span className="text-emerald-600">/</span>
+				<span className="text-black/85">github</span>
+				<span className="ml-auto text-[9px] uppercase tracking-wider text-black/35">
+					commands
+				</span>
+			</div>
+			<div className="py-1">
+				{commands.map((c, i) => (
+					<div
+						key={c.name}
+						className={`flex items-center gap-2 px-3 py-1.5 ${
+							i === 0 ? "bg-black/[0.03]" : ""
+						}`}
+					>
+						<span
+							className={`shrink-0 font-mono text-[11px] ${
+								i === 0 ? "text-emerald-600" : "text-black/35"
+							}`}
+						>
+							/
+						</span>
+						<div className="min-w-0 flex-1">
+							<div className="truncate font-mono text-[11px] text-black/85">
+								{c.name}
+							</div>
+							<div className="truncate text-[10px] text-black/45">{c.desc}</div>
+						</div>
+						{i === 0 && (
+							<span className="shrink-0 text-[9px] text-black/40">↵</span>
+						)}
+					</div>
+				))}
+			</div>
+		</div>
+	);
+}
+
+/**
+ * MockSandboxTabs — visual stand-in for the Daytona sandbox panel.
+ */
+function MockSandboxTabs() {
+	const ref = useRef<HTMLDivElement>(null);
+	const isInView = useInView(ref, { once: true, margin: "-60px" });
+	const lines = [
+		{ t: "$", c: "npm test", color: "text-emerald-400" },
+		{ t: "→", c: "Test Suites: 12 passed, 12 total", color: "text-white/60" },
+		{ t: "→", c: "Tests:       148 passed, 148 total", color: "text-white/60" },
+		{ t: "✓", c: "All green. Committing.", color: "text-emerald-400" },
+		{
+			t: "$",
+			c: "git commit -m 'feat: streaming retries'",
+			color: "text-emerald-400",
+		},
+		{
+			t: "→",
+			c: "[main 2f1e9a0] feat: streaming retries",
+			color: "text-white/60",
+		},
+	];
+
+	return (
+		<div
+			ref={ref}
+			className="border border-black/[0.08] bg-[#0a0a0a] shadow-[0_24px_64px_-28px_rgba(0,0,0,0.45)]"
+		>
+			{/* Tab strip */}
+			<div className="flex items-center border-b border-white/[0.06] px-1 py-1">
+				{[
+					{ icon: FolderTree, label: "Files" },
+					{ icon: TerminalSquare, label: "Terminal", active: true },
+					{ icon: GitBranch, label: "Git" },
+				].map((tab) => (
+					<div
+						key={tab.label}
+						className={`flex items-center gap-1.5 px-3 py-1.5 text-[11px] ${
+							tab.active ? "bg-white/[0.06] text-white" : "text-white/40"
+						}`}
+					>
+						<tab.icon size={11} />
+						{tab.label}
+					</div>
+				))}
+				<span className="ml-auto px-2 text-[10px] text-white/30">
+					sandbox · running
+				</span>
+			</div>
+
+			{/* Terminal body */}
+			<div className="space-y-1 px-4 py-3 font-mono text-[11px] leading-relaxed">
+				{lines.map((line, i) => (
+					<motion.div
+						key={`${line.t}-${line.c}`}
+						initial={{ opacity: 0, x: -8 }}
+						animate={isInView ? { opacity: 1, x: 0 } : {}}
+						transition={{ duration: 0.35, delay: 0.2 + i * 0.18, ease }}
+					>
+						<span className="mr-2 text-white/25">{line.t}</span>
+						<span className={line.color}>{line.c}</span>
+					</motion.div>
+				))}
+				<motion.div
+					initial={{ opacity: 0 }}
+					animate={isInView ? { opacity: 1 } : {}}
+					transition={{ delay: lines.length * 0.18 + 0.3 }}
+				>
+					<span className="mr-2 text-white/25">$</span>
+					<span className="inline-block h-3 w-[6px] translate-y-[2px] animate-pulse bg-emerald-400/80" />
+				</motion.div>
+			</div>
+		</div>
+	);
+}
+
 /* ─────────────────────── Nav ─────────────────────── */
 
 function LandingNav() {
@@ -513,6 +599,12 @@ function LandingNav() {
 					>
 						Features
 					</a>
+					<a
+						href="#product"
+						className="text-[15px] font-medium text-black/70 transition-colors hover:text-black"
+					>
+						Product
+					</a>
 					<a
 						href="#how-it-works"
 						className="text-[15px] font-medium text-black/70 transition-colors hover:text-black"
@@ -524,8 +616,8 @@ function LandingNav() {
 				<div className="hidden items-center gap-3 lg:flex">
 					{isSignedIn ? (
 						<Button size="sm" asChild>
-							<Link to="/chat">
-								Chat
+							<Link to="/app">
+								Open Harness
 								<ArrowRight size={14} />
 							</Link>
 						</Button>
@@ -535,7 +627,7 @@ function LandingNav() {
 								<Link to="/sign-in">Log in</Link>
 							</Button>
 							<Button size="sm" asChild>
-								<Link to="/sign-in">
+								<Link to="/sign-up">
 									Get Started
 									<ArrowRight size={14} />
 								</Link>
@@ -564,36 +656,31 @@ function LandingNav() {
 						className="overflow-hidden border-t border-black/5 bg-white lg:hidden"
 					>
 						<nav className="flex flex-col gap-1 px-6 py-4">
-							<button
-								type="button"
-								onClick={() => {
-									setOpen(false);
-									document
-										.getElementById("features")
-										?.scrollIntoView({ behavior: "smooth" });
-								}}
-								className="px-3 py-2.5 text-left text-[15px] font-medium transition-colors hover:bg-black/[0.03]"
-							>
-								Features
-							</button>
-							<button
-								type="button"
-								onClick={() => {
-									setOpen(false);
-									document
-										.getElementById("how-it-works")
-										?.scrollIntoView({ behavior: "smooth" });
-								}}
-								className="px-3 py-2.5 text-left text-[15px] font-medium transition-colors hover:bg-black/[0.03]"
-							>
-								How It Works
-							</button>
+							{[
+								["Features", "features"],
+								["Product", "product"],
+								["How It Works", "how-it-works"],
+							].map(([label, id]) => (
+								<button
+									key={id}
+									type="button"
+									onClick={() => {
+										setOpen(false);
+										document
+											.getElementById(id)
+											?.scrollIntoView({ behavior: "smooth" });
+									}}
+									className="px-3 py-2.5 text-left text-[15px] font-medium transition-colors hover:bg-black/[0.03]"
+								>
+									{label}
+								</button>
+							))}
 							<Separator className="my-2" />
 							<div className="flex flex-col gap-2 pt-1">
 								{isSignedIn ? (
 									<Button asChild>
-										<Link to="/chat" onClick={() => setOpen(false)}>
-											Enter Harness
+										<Link to="/app" onClick={() => setOpen(false)}>
+											Open Harness
 											<ArrowRight size={14} />
 										</Link>
 									</Button>
@@ -605,7 +692,7 @@ function LandingNav() {
 											</Link>
 										</Button>
 										<Button asChild>
-											<Link to="/sign-in" onClick={() => setOpen(false)}>
+											<Link to="/sign-up" onClick={() => setOpen(false)}>
 												Get Started
 												<ArrowRight size={14} />
 											</Link>
@@ -631,7 +718,7 @@ function HeroSection() {
 			<FloatingDots />
 
 			<div className="relative mx-auto max-w-[76rem] px-6 lg:px-12">
-				<div className="grid items-center gap-12 lg:grid-cols-2 lg:gap-16">
+				<div className="grid items-center gap-12 lg:grid-cols-[1.1fr_1fr] lg:gap-16">
 					<div>
 						<motion.div
 							initial={{ opacity: 0, y: 16 }}
@@ -639,7 +726,7 @@ function HeroSection() {
 							transition={{ duration: 0.5, ease }}
 						>
 							<Badge variant="secondary" className="mb-6 font-medium">
-								The Agent Platform
+								AI toolkit, not a platform
 							</Badge>
 						</motion.div>
 
@@ -650,17 +737,18 @@ function HeroSection() {
 							className="mb-6 text-[clamp(2.25rem,5vw,4.5rem)] font-medium leading-[1.05] tracking-tight"
 							style={{ textWrap: "balance" }}
 						>
-							Equip your AI agents for <RotatingWord />.
+							Equip your AI agent for <RotatingWord />.
 						</motion.h1>
 
 						<motion.p
 							initial={{ opacity: 0, y: 20 }}
 							animate={{ opacity: 1, y: 0 }}
 							transition={{ duration: 0.6, delay: 0.16, ease }}
-							className="mb-10 max-w-[28rem] text-[clamp(1rem,1.8vw,1.125rem)] leading-[1.6] text-black/55"
+							className="mb-10 max-w-[32rem] text-[clamp(1rem,1.8vw,1.125rem)] leading-[1.6] text-black/55"
 						>
-							Create, manage, and deploy custom tool configurations for AI
-							agents — switching contexts in seconds, not hours.
+							A harness bundles your model, MCP servers, skills, and a live
+							sandbox. Switch contexts in one click — your agent gets a
+							different brain for every job.
 						</motion.p>
 
 						<motion.div
@@ -670,27 +758,47 @@ function HeroSection() {
 							className="flex flex-wrap items-center gap-4"
 						>
 							<Button size="lg" asChild>
-								<Link to={isSignedIn ? "/chat" : "/sign-in"}>
-									{isSignedIn ? "Go to Chat" : "Get Started"}
+								<Link to={isSignedIn ? "/app" : "/sign-up"}>
+									{isSignedIn ? "Open Harness" : "Get Started"}
 									<ArrowRight size={16} />
 								</Link>
 							</Button>
 							<Button variant="ghost" size="lg" asChild>
-								<a href="#features">
-									Learn more
+								<a href="#product">
+									See it in action
 									<ArrowRight size={14} />
 								</a>
 							</Button>
 						</motion.div>
+
+						<motion.div
+							initial={{ opacity: 0 }}
+							animate={{ opacity: 1 }}
+							transition={{ duration: 0.6, delay: 0.4, ease }}
+							className="mt-10 flex flex-wrap items-center gap-x-5 gap-y-1.5 text-[12px] text-black/45"
+						>
+							<span className="flex items-center gap-1.5">
+								<Check size={12} className="text-emerald-600" />
+								Bring your own MCPs
+							</span>
+							<span className="flex items-center gap-1.5">
+								<Check size={12} className="text-emerald-600" />
+								Daily + weekly cost caps
+							</span>
+							<span className="flex items-center gap-1.5">
+								<Check size={12} className="text-emerald-600" />
+								Live sandbox built in
+							</span>
+						</motion.div>
 					</div>
 
 					<motion.div
-						initial={{ opacity: 0, scale: 0.95 }}
+						initial={{ opacity: 0, scale: 0.96 }}
 						animate={{ opacity: 1, scale: 1 }}
 						transition={{ duration: 0.8, delay: 0.3, ease }}
-						className="hidden lg:block"
+						className="hidden justify-self-center lg:flex"
 					>
-						<NetworkGraph />
+						<MockChatPanel />
 					</motion.div>
 				</div>
 			</div>
@@ -712,16 +820,18 @@ function FeaturesSection() {
 						Features
 					</Badge>
 					<h2
-						className="mb-16 max-w-[32rem] text-[clamp(1.75rem,4vw,3rem)] font-medium leading-[1.1] tracking-tight md:mb-20"
+						className="mb-16 max-w-[34rem] text-[clamp(1.75rem,4vw,3rem)] font-medium leading-[1.1] tracking-tight md:mb-20"
 						style={{ textWrap: "balance" }}
 					>
-						Everything your agents need.{" "}
-						<span className="text-black/40">Nothing they don't.</span>
+						Built for the agent you actually use.{" "}
+						<span className="text-black/40">
+							Not the demo your boss saw on Twitter.
+						</span>
 					</h2>
 				</FadeIn>
 
 				<div className="grid gap-5 md:grid-cols-3">
-					{features.map((f, i) => (
+					{primaryFeatures.map((f, i) => (
 						<FadeIn key={f.title} delay={0.1 * i}>
 							<motion.div
 								whileHover={{ y: -4 }}
@@ -747,16 +857,41 @@ function FeaturesSection() {
 						</FadeIn>
 					))}
 				</div>
+
+				{/* Secondary features — smaller, denser */}
+				<FadeIn delay={0.2}>
+					<div className="mt-12 grid gap-4 md:grid-cols-3">
+						{secondaryFeatures.map((f) => (
+							<div
+								key={f.title}
+								className="flex gap-3 border border-black/[0.05] bg-white p-5 transition-shadow hover:shadow-md hover:shadow-black/[0.03]"
+							>
+								<div className="flex h-8 w-8 shrink-0 items-center justify-center border border-black/[0.06] bg-[#fafafa]">
+									<f.icon size={14} strokeWidth={1.5} />
+								</div>
+								<div>
+									<h3 className="mb-1 text-[14px] font-medium">{f.title}</h3>
+									<p className="text-[13px] leading-[1.55] text-black/55">
+										{f.description}
+									</p>
+								</div>
+							</div>
+						))}
+					</div>
+				</FadeIn>
 			</div>
 		</section>
 	);
 }
 
-/* ─────────────────────── Terminal Demo Section ─────────────────────── */
+/* ─────────────────────── Product Mocks Section ─────────────────────── */
 
-function TerminalSection() {
+function ProductSection() {
 	return (
-		<section className="relative overflow-hidden bg-white pb-20 pt-20 text-black md:pb-28 md:pt-28 lg:pb-36 lg:pt-36">
+		<section
+			id="product"
+			className="relative overflow-hidden bg-white pb-20 pt-20 text-black md:pb-28 md:pt-28 lg:pb-36 lg:pt-36"
+		>
 			<GradientOrb
 				className="left-[5%] top-[10%] h-80 w-80 bg-black/[0.02]"
 				delay={0}
@@ -767,27 +902,79 @@ function TerminalSection() {
 			/>
 
 			<div className="relative mx-auto max-w-[76rem] px-6 lg:px-12">
-				<div className="grid items-center gap-12 lg:grid-cols-2 lg:gap-20">
-					<FadeIn>
-						<Badge variant="outline" className="mb-5">
-							In Action
-						</Badge>
-						<h2
-							className="mb-6 text-[clamp(1.75rem,4vw,3rem)] font-medium leading-[1.1] tracking-tight"
-							style={{ textWrap: "balance" }}
-						>
-							Deploy and switch{" "}
-							<span className="text-black/40">in seconds.</span>
-						</h2>
-						<p className="max-w-[26rem] text-[15px] leading-[1.6] text-black/55">
-							Watch your agent come alive. Deploy a fully-equipped coding agent,
-							then switch to research mode — instantly. No restarts, no
-							reconfiguration.
-						</p>
+				<FadeIn>
+					<Badge variant="outline" className="mb-5">
+						The Product
+					</Badge>
+					<h2
+						className="mb-4 max-w-[36rem] text-[clamp(1.75rem,4vw,3rem)] font-medium leading-[1.1] tracking-tight"
+						style={{ textWrap: "balance" }}
+					>
+						Three real surfaces.{" "}
+						<span className="text-black/40">No mockups.</span>
+					</h2>
+					<p className="mb-16 max-w-[36rem] text-[15px] leading-[1.6] text-black/55 md:mb-20">
+						This is what you'll see five minutes after signup — the same UI we
+						use every day.
+					</p>
+				</FadeIn>
+
+				<div className="grid gap-12 lg:grid-cols-2 lg:gap-16">
+					<FadeIn delay={0.05}>
+						<div>
+							<p className="mb-3 text-[11px] font-medium uppercase tracking-[0.16em] text-black/40">
+								MCP Status & Add
+							</p>
+							<h3 className="mb-3 text-xl font-medium tracking-tight">
+								Add servers without leaving the chat.
+							</h3>
+							<p className="mb-6 max-w-md text-[14px] leading-[1.6] text-black/55">
+								Click the MCP indicator in the header. Pick from the catalog or
+								paste a custom URL. OAuth pops automatically. Status badges
+								update live.
+							</p>
+							<div className="max-w-[300px]">
+								<MockMcpPopover />
+							</div>
+						</div>
 					</FadeIn>
 
 					<FadeIn delay={0.15}>
-						<AnimatedTerminal />
+						<div>
+							<p className="mb-3 text-[11px] font-medium uppercase tracking-[0.16em] text-black/40">
+								Slash Command Palette
+							</p>
+							<h3 className="mb-3 text-xl font-medium tracking-tight">
+								Every MCP tool. One keystroke away.
+							</h3>
+							<p className="mb-6 max-w-md text-[14px] leading-[1.6] text-black/55">
+								Type <span className="font-mono text-black/80">/</span> to
+								filter across every connected server's tools. Keyboard-first,
+								typo-forgiving, scoped to the active harness.
+							</p>
+							<div className="max-w-[380px]">
+								<MockSlashPalette />
+							</div>
+						</div>
+					</FadeIn>
+
+					<FadeIn delay={0.2} className="lg:col-span-2">
+						<div className="grid gap-8 lg:grid-cols-[1fr_1.1fr] lg:gap-12 lg:items-center">
+							<div>
+								<p className="mb-3 text-[11px] font-medium uppercase tracking-[0.16em] text-black/40">
+									Live Sandbox
+								</p>
+								<h3 className="mb-3 text-xl font-medium tracking-tight">
+									A real dev environment, attached to the chat.
+								</h3>
+								<p className="max-w-md text-[14px] leading-[1.6] text-black/55">
+									Daytona-backed sandboxes give your agent file editing, a real
+									terminal, and git — persistent across sessions. Watch tests
+									pass before the agent commits.
+								</p>
+							</div>
+							<MockSandboxTabs />
+						</div>
 					</FadeIn>
 				</div>
 			</div>
@@ -823,7 +1010,8 @@ function HowItWorksSection() {
 						className="mb-16 text-[clamp(1.75rem,4vw,3rem)] font-medium leading-[1.1] tracking-tight md:mb-20"
 						style={{ textWrap: "balance" }}
 					>
-						Set up in minutes. <span className="text-white/40">Not weeks.</span>
+						Three minutes from signup to first answer.{" "}
+						<span className="text-white/40">No SDK to install.</span>
 					</h2>
 				</FadeIn>
 
@@ -914,21 +1102,21 @@ function CTASection() {
 							className="mb-6 text-[clamp(1.75rem,4vw,3.5rem)] font-medium leading-[1.1] tracking-tight"
 							style={{ textWrap: "balance" }}
 						>
-							Ready to equip your agents?
+							Build your first harness.
 						</h2>
 						<p className="mx-auto mb-10 max-w-md text-[15px] leading-[1.6] text-black/55">
-							Join the next generation of AI-powered workflows. Set up your
-							first harness in minutes.
+							Free to try. Bring your own MCPs and your own model preferences.
+							Three minutes to your first answer.
 						</p>
 						<div className="flex flex-wrap items-center justify-center gap-4">
 							<Button size="lg" asChild>
-								<Link to={isSignedIn ? "/chat" : "/sign-in"}>
-									{isSignedIn ? "Go to Chat" : "Get Started Free"}
+								<Link to={isSignedIn ? "/app" : "/sign-up"}>
+									{isSignedIn ? "Open Harness" : "Get Started"}
 									<ArrowRight size={16} />
 								</Link>
 							</Button>
 							<Button size="lg" variant="outline" asChild>
-								<a href="#features">See Features</a>
+								<a href="#features">See features</a>
 							</Button>
 						</div>
 					</FadeIn>
@@ -945,17 +1133,17 @@ function LandingFooter() {
 		<footer className="bg-[#fafafa] py-12 text-black md:py-16">
 			<div className="mx-auto max-w-[76rem] px-6 lg:px-12">
 				<div className="grid gap-10 sm:grid-cols-12 sm:gap-8">
-					<div className="sm:col-span-4">
+					<div className="sm:col-span-5">
 						<span className="flex items-center gap-2 text-lg font-semibold tracking-tight">
 							<HarnessMark size={20} />
 							Harness
 						</span>
-						<p className="mt-2 max-w-[14rem] text-sm leading-relaxed text-black/40">
-							The toolkit for AI agents. Create, manage, and deploy custom tool
-							configurations.
+						<p className="mt-2 max-w-[18rem] text-sm leading-relaxed text-black/45">
+							The toolkit for AI agents. Bundle your model, MCPs, skills, and a
+							live sandbox into one chat.
 						</p>
 					</div>
-					<div className="grid grid-cols-2 gap-8 sm:col-span-8 sm:grid-cols-3">
+					<div className="grid grid-cols-2 gap-8 sm:col-span-7 sm:grid-cols-2">
 						<div>
 							<h3 className="mb-4 text-sm font-medium">Product</h3>
 							<ul className="space-y-3">
@@ -969,33 +1157,40 @@ function LandingFooter() {
 								</li>
 								<li>
 									<a
-										href="#how-it-works"
+										href="#product"
 										className="text-sm text-black/50 transition-colors hover:text-black"
 									>
-										How It Works
+										Product
 									</a>
 								</li>
-							</ul>
-						</div>
-						<div>
-							<h3 className="mb-4 text-sm font-medium">Company</h3>
-							<ul className="space-y-3">
 								<li>
-									<span className="text-sm text-black/50">About</span>
-								</li>
-								<li>
-									<span className="text-sm text-black/50">GitHub</span>
+									<a
+										href="#how-it-works"
+										className="text-sm text-black/50 transition-colors hover:text-black"
+									>
+										How it works
+									</a>
 								</li>
 							</ul>
 						</div>
 						<div>
-							<h3 className="mb-4 text-sm font-medium">Legal</h3>
+							<h3 className="mb-4 text-sm font-medium">Get started</h3>
 							<ul className="space-y-3">
 								<li>
-									<span className="text-sm text-black/50">Privacy</span>
+									<Link
+										to="/sign-up"
+										className="text-sm text-black/50 transition-colors hover:text-black"
+									>
+										Sign up
+									</Link>
 								</li>
 								<li>
-									<span className="text-sm text-black/50">Terms</span>
+									<Link
+										to="/sign-in"
+										className="text-sm text-black/50 transition-colors hover:text-black"
+									>
+										Log in
+									</Link>
 								</li>
 							</ul>
 						</div>
@@ -1019,7 +1214,7 @@ function LandingPage() {
 			<main>
 				<HeroSection />
 				<FeaturesSection />
-				<TerminalSection />
+				<ProductSection />
 				<HowItWorksSection />
 				<CTASection />
 			</main>
diff --git a/apps/web/src/routes/onboarding.tsx b/apps/web/src/routes/onboarding.tsx
index 11e91c5..2a1df14 100644
--- a/apps/web/src/routes/onboarding.tsx
+++ b/apps/web/src/routes/onboarding.tsx
@@ -6,23 +6,28 @@ import {
 } from "@convex-dev/react-query";
 import { api } from "@harness/convex-backend/convex/_generated/api";
 import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
-import { useMutation, useQuery } from "@tanstack/react-query";
-import { createFileRoute, redirect, useNavigate } from "@tanstack/react-router";
+import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query";
 import {
+	createFileRoute,
+	Link,
+	redirect,
+	useNavigate,
+} from "@tanstack/react-router";
+import {
+	AlertCircle,
 	ArrowLeft,
 	ArrowRight,
 	Box,
 	Check,
-	Cpu,
+	ChevronDown,
 	Eye,
 	EyeOff,
-	HardDrive,
 	Layers,
 	Link2,
-	Play,
 	Plus,
 	Server,
 	Shield,
+	Sparkles,
 	Terminal,
 	Trash2,
 	Wrench,
@@ -30,12 +35,15 @@ import {
 	Zap,
 } from "lucide-react";
 import { AnimatePresence, motion } from "motion/react";
-import { useMemo, useState } from "react";
-import { HarnessMark } from "../components/harness-mark";
+import { useEffect, useMemo, useState } from "react";
+import toast from "react-hot-toast";
+import { HarnessCreationAssistant } from "../components/harness-creation-assistant";
 import { OAuthConnectRow } from "../components/mcp-oauth-connect-row";
 import { PresetMcpGrid } from "../components/preset-mcp-grid";
 import { PrincetonConnectRow } from "../components/princeton-connect-row";
 import { RecommendedSkillsGrid } from "../components/recommended-skills-grid";
+import { RoseCurveSpinner } from "../components/rose-curve-spinner";
+import { SandboxConfigForm } from "../components/sandbox/sandbox-config-form";
 import { SkillsBrowser } from "../components/skills-browser";
 import { Badge } from "../components/ui/badge";
 import { Button } from "../components/ui/button";
@@ -48,11 +56,29 @@ import {
 	SelectTrigger,
 	SelectValue,
 } from "../components/ui/select";
+import { Textarea } from "../components/ui/textarea";
 import { env } from "../env";
 import type { McpServerEntry } from "../lib/mcp";
-import { presetIdsToServerEntries } from "../lib/mcp";
+import {
+	fetchCommandsFromApi,
+	PRESET_MCPS,
+	presetIdsToServerEntries,
+	sanitizeServerName,
+	toMcpServerPayload,
+} from "../lib/mcp";
 import { MODELS } from "../lib/models";
+import {
+	DEFAULT_SANDBOX_CONFIG,
+	formatSandboxMeta,
+	getDefaultSandboxSelection,
+	MAX_SANDBOXES_PER_USER,
+	type Sandbox,
+	type SandboxConfig,
+	waitForSandboxRecord,
+} from "../lib/sandbox";
 import type { SkillEntry } from "../lib/skills";
+import { RECOMMENDED_SKILLS } from "../lib/skills";
+import { SYSTEM_PROMPT_MAX_LENGTH } from "../lib/system-prompt";
 
 const API_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
 
@@ -76,23 +102,49 @@ const CONNECT_STEP = { key: "connect", label: "Connect", icon: Link2 };
 
 function OnboardingPage() {
 	const navigate = useNavigate();
+	const queryClient = useQueryClient();
 
-	const [name, setName] = useState("");
-	const [model, setModel] = useState("");
+	const _prefill = (() => {
+		try {
+			const raw = sessionStorage.getItem("harness-prefill");
+			if (raw) {
+				sessionStorage.removeItem("harness-prefill");
+				return JSON.parse(raw) as {
+					name?: string;
+					model?: string;
+					selectedPresetMcps?: string[];
+					skills?: { name: string; description: string }[];
+				};
+			}
+		} catch {}
+		return null;
+	})();
+
+	const [name, setName] = useState(_prefill?.name ?? "");
+	const [model, setModel] = useState(_prefill?.model ?? "");
+	const [systemPrompt, setSystemPrompt] = useState("");
 	const [customMcpServers, setCustomMcpServers] = useState<McpServerEntry[]>(
 		[],
 	);
 	const [sandboxEnabled, setSandboxEnabled] = useState(false);
-	const [sandboxConfig, setSandboxConfig] = useState({
-		persistent: false,
-		autoStart: true,
-		defaultLanguage: "python",
-		resourceTier: "basic" as "basic" | "standard" | "performance",
-	});
-	const [selectedPresetMcps, setSelectedPresetMcps] = useState<string[]>([]);
-	const [selectedSkills, setSelectedSkills] = useState<SkillEntry[]>([]);
+	const [sandboxMode, setSandboxMode] = useState<"existing" | "new">(
+		"existing",
+	);
+	const [selectedSandboxId, setSelectedSandboxId] =
+		useState<Id<"sandboxes"> | null>(null);
+	const [newSandboxName, setNewSandboxName] = useState("New sandbox");
+	const [newSandboxConfig, setNewSandboxConfig] = useState<SandboxConfig>(
+		DEFAULT_SANDBOX_CONFIG,
+	);
+	const [selectedPresetMcps, setSelectedPresetMcps] = useState<string[]>(
+		_prefill?.selectedPresetMcps ?? [],
+	);
+	const [selectedSkills, setSelectedSkills] = useState<SkillEntry[]>(
+		_prefill?.skills ?? [],
+	);
 
 	const [stepIndex, setStepIndex] = useState(0);
+	const [aiAssistantOpen, setAiAssistantOpen] = useState(false);
 
 	const allMcpServers = useMemo(
 		() => [
@@ -102,6 +154,19 @@ function OnboardingPage() {
 		[customMcpServers, selectedPresetMcps],
 	);
 
+	const handleAiPrefill = (prefill: {
+		name?: string;
+		model?: string;
+		selectedPresetMcps?: string[];
+		skills?: { name: string; description: string }[];
+	}) => {
+		if (prefill.name) setName(prefill.name);
+		if (prefill.model) setModel(prefill.model);
+		if (prefill.selectedPresetMcps)
+			setSelectedPresetMcps(prefill.selectedPresetMcps);
+		if (prefill.skills) setSelectedSkills(prefill.skills);
+	};
+
 	const hasOAuthServers = allMcpServers.some((s) => s.authType === "oauth");
 	const hasTigerJunction = allMcpServers.some(
 		(s) => s.authType === "tiger_junction",
@@ -123,18 +188,80 @@ function OnboardingPage() {
 	// Clamp stepIndex if steps shrink (e.g. OAuth servers removed while on connect step)
 	const safeIndex = Math.min(stepIndex, steps.length - 1);
 	const currentStep = steps[safeIndex]?.key ?? "name";
+	type HarnessMcpServerInput = Omit<McpServerEntry, "commandIds">;
 
 	const updateHarnessMut = useMutation({
 		mutationFn: useConvexMutation(api.harnesses.update),
 	});
+	// Direct Convex mutations for fire-and-forget command sync (survives unmount)
+	const upsertCommandsFn = useConvexMutation(api.commands.upsert);
+	const updateHarnessFn = useConvexMutation(api.harnesses.update);
 	const ensureSkillDetailsFn = useConvexAction(api.skills.ensureSkillDetails);
 	const { getToken } = useAuth();
+	const createHarnessFn = useConvexMutation(api.harnesses.create);
+	const { data: sandboxes, isLoading: sandboxesLoading } = useQuery(
+		convexQuery(api.sandboxes.list, {}),
+	);
+	const { data: existingHarnesses } = useQuery(
+		convexQuery(api.harnesses.list, {}),
+	);
+	const hasExistingHarness = (existingHarnesses?.length ?? 0) > 0;
+	const selectedSandbox = useMemo(
+		() => sandboxes?.find((sandbox) => sandbox._id === selectedSandboxId),
+		[sandboxes, selectedSandboxId],
+	);
+
+	useEffect(() => {
+		if (selectedSandboxId || !sandboxes?.length) return;
+		setSelectedSandboxId(sandboxes[0]._id);
+	}, [sandboxes, selectedSandboxId]);
+
+	useEffect(() => {
+		if (sandboxesLoading) return;
+		if (!sandboxes?.length && sandboxMode === "existing") {
+			setSandboxMode("new");
+		}
+	}, [sandboxes, sandboxesLoading, sandboxMode]);
 
 	const createHarness = useMutation({
-		mutationFn: useConvexMutation(api.harnesses.create),
-		onSuccess: (harnessId) => {
+		mutationFn: async (args: {
+			name: string;
+			model: string;
+			status: "started" | "stopped" | "draft";
+			mcpServers: HarnessMcpServerInput[];
+			skills: SkillEntry[];
+			systemPrompt?: string;
+			sandboxEnabled?: boolean;
+			sandboxConfig?: SandboxConfig;
+			defaultSandbox?: {
+				sandboxId: Id<"sandboxes">;
+				daytonaSandboxId: string;
+				config: SandboxConfig;
+			};
+		}) => {
+			const { defaultSandbox, ...createArgs } = args;
+			const harnessId = await createHarnessFn(createArgs);
+
+			if (args.sandboxEnabled && defaultSandbox) {
+				await updateHarnessFn({
+					id: harnessId as Id<"harnesses">,
+					sandboxId: defaultSandbox.sandboxId,
+					daytonaSandboxId: defaultSandbox.daytonaSandboxId,
+					sandboxConfig: defaultSandbox.config,
+				});
+				return harnessId;
+			}
+
+			return harnessId;
+		},
+		onSuccess: (harnessId, variables) => {
 			const id = harnessId as Id<"harnesses">;
-			navigate({ to: "/chat", search: { harnessId: id as string } });
+			if (variables.status === "draft") {
+				navigate({ to: "/harnesses" });
+				toast.success("Draft saved");
+			} else {
+				navigate({ to: "/chat", search: { harnessId: id as string } });
+			}
 
 			// Fire-and-forget: sync skill details for added skills
 			if (selectedSkills.length > 0) {
@@ -157,12 +284,7 @@ function OnboardingPage() {
 									...(token ? { Authorization: `Bearer ${token}` } : {}),
 								},
 								body: JSON.stringify({
-									mcp_servers: allMcpServers.map((s) => ({
-										name: s.name,
-										url: s.url,
-										auth_type: s.authType,
-										...(s.authToken ? { auth_token: s.authToken } : {}),
-									})),
+									mcp_servers: toMcpServerPayload(allMcpServers),
 								}),
 							},
 						);
@@ -179,13 +301,96 @@ function OnboardingPage() {
 						// Non-blocking — prompts are optional
 					}
 				})();
+
+				// Fire-and-forget: fetch commands, upsert, and link to harness
+				(async () => {
+					try {
+						const token = await getToken();
+						const cmds = await fetchCommandsFromApi(
+							API_URL,
+							allMcpServers,
+							token,
+						);
+						if (!cmds || cmds.length === 0) return;
+
+						const ids = await upsertCommandsFn({
+							commands: cmds.map((c) => ({
+								name: c.name,
+								server: c.server,
+								tool: c.tool,
+								description: c.description,
+								parametersJson: JSON.stringify(c.parameters),
+							})),
+						});
+
+						const idByName = new Map(cmds.map((c, i) => [c.name, ids[i]]));
+						const enriched = allMcpServers.map((s) => ({
+							name: s.name,
+							url: s.url,
+							authType: s.authType,
+							...(s.authToken ? { authToken: s.authToken } : {}),
+							commandIds: [...idByName.entries()]
+								.filter(([name]) =>
+									name.startsWith(`${sanitizeServerName(s.name)}__`),
+								)
+								.map(([, cmdId]) => cmdId),
+						}));
+
+						await updateHarnessFn({ id, mcpServers: enriched });
+					} catch {
+						// Non-blocking
+					}
+				})();
 			}
 		},
 	});
 
+	const createSandbox = useMutation({
+		mutationFn: async (args: { name: string; config: SandboxConfig }) => {
+			const token = await getToken();
+			const res = await fetch(`${API_URL}/api/sandbox`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					...(token ? { Authorization: `Bearer ${token}` } : {}),
+				},
+				body: JSON.stringify({
+					name: args.name.trim() || "New sandbox",
+					language: args.config.defaultLanguage,
+					resource_tier: args.config.resourceTier,
+					ephemeral: !args.config.persistent,
+				}),
+			});
+
+			if (!res.ok) {
+				const body = await res.json().catch(() => null);
+				const detail =
+					body && typeof body.detail === "string" ? body.detail : "";
+				throw new Error(detail || `Sandbox API error ${res.status}`);
+			}
+
+			const data = (await res.json()) as { id: string };
+			const sandbox = await waitForSandboxRecord(queryClient, data.id);
+			if (!sandbox) {
+				throw new Error("Sandbox was created, but it did not sync in time");
+			}
+			return sandbox;
+		},
+		onSuccess: (sandbox) => {
+			setSelectedSandboxId(sandbox._id);
+			void queryClient.invalidateQueries({
+				queryKey: convexQuery(api.sandboxes.list, {}).queryKey,
+			});
+		},
+	});
+
 	const canProceed = () => {
 		if (currentStep === "name")
 			return name.trim().length > 0 && model.length > 0;
+		if (currentStep === "sandbox" && sandboxEnabled) {
+			if (sandboxMode === "existing") return !!selectedSandbox;
+			return newSandboxName.trim().length > 0;
+		}
 		return true;
 	};
 
@@ -197,26 +402,53 @@ function OnboardingPage() {
 		if (safeIndex > 0) setStepIndex(safeIndex - 1);
 	};
 
-	const handleCreate = () => {
-		createHarness.mutate({
-			name: name.trim(),
-			model,
-			status: "started",
-			mcpServers: allMcpServers,
-			skills: selectedSkills,
-			...(sandboxEnabled ? { sandboxEnabled: true, sandboxConfig } : {}),
-		} as any);
+	// Strip commandIds from servers — commands are synced after creation in the chat page
+	const mcpServersForMutation: HarnessMcpServerInput[] = allMcpServers.map(
+		({ commandIds: _, ...rest }) => rest,
+	);
+
+	const resolveDefaultSandbox = async () => {
+		if (!sandboxEnabled) return undefined;
+
+		if (sandboxMode === "existing") {
+			const defaultSandbox = getDefaultSandboxSelection(selectedSandbox);
+			if (!defaultSandbox) {
+				throw new Error("Select an existing sandbox");
+			}
+			return defaultSandbox;
+		}
+
+		if (!newSandboxName.trim()) {
+			throw new Error("Enter a sandbox name");
+		}
+
+		const sandbox = await createSandbox.mutateAsync({
+			name: newSandboxName,
+			config: newSandboxConfig,
+		});
+		return getDefaultSandboxSelection(sandbox);
 	};
 
-	const handleSaveDraft = () => {
-		createHarness.mutate({
-			name: name.trim() || "Untitled Harness",
-			model: model || "gpt-4o",
-			status: "draft",
-			mcpServers: allMcpServers,
-			skills: selectedSkills,
-			...(sandboxEnabled ? { sandboxEnabled: true, sandboxConfig } : {}),
-		} as any);
+	const submitHarness = async (status: "started" | "draft") => {
+		try {
+			const defaultSandbox = await resolveDefaultSandbox();
+			createHarness.mutate({
+				name:
+					status === "draft" ? name.trim() || "Untitled Harness" : name.trim(),
+				model: status === "draft" ? model || "gpt-5.4" : model,
+				status,
+				mcpServers: mcpServersForMutation,
+				skills: selectedSkills,
+				systemPrompt: systemPrompt.trim() || undefined,
+				sandboxEnabled: sandboxEnabled || undefined,
+				sandboxConfig: sandboxEnabled ? defaultSandbox?.config : undefined,
+				defaultSandbox: sandboxEnabled ? defaultSandbox : undefined,
+			});
+		} catch (error) {
+			toast.error(
+				error instanceof Error ? error.message : "Failed to configure sandbox",
+			);
+		}
 	};
 
 	const handleAddServer = (server: McpServerEntry) => {
@@ -236,32 +468,71 @@ function OnboardingPage() {
 	return (
 		<div className="flex min-h-screen flex-col bg-background">
 			<header className="flex items-center justify-between border-b border-border px-6 py-4">
+				<div className="flex items-center gap-4">
+					<Button variant="ghost" size="icon-xs" asChild>
+						<Link to="/harnesses">
+							<ArrowLeft size={14} />
+						</Link>
+					</Button>
+					<div>
+						<h1 className="text-lg font-medium tracking-tight text-foreground">
+							Create Harness
+						</h1>
+						<p className="text-xs text-muted-foreground">
+							Configure a new AI agent harness
+						</p>
+					</div>
+				</div>
 				<div className="flex items-center gap-2">
-					<HarnessMark size={22} className="text-foreground" />
-					<span className="text-lg font-semibold tracking-tight text-foreground">
-						Harness
-					</span>
+					<Button
+						variant="outline"
+						size="sm"
+						onClick={() => setAiAssistantOpen(true)}
+					>
+						<Sparkles size={14} />
+						Create with AI
+					</Button>
+					<Button
+						variant="ghost"
+						size="sm"
+						onClick={() => void submitHarness("draft")}
+						disabled={createHarness.isPending || createSandbox.isPending}
+					>
+						Save Draft
+					</Button>
 				</div>
-				<Button
-					variant="ghost"
-					size="sm"
-					onClick={handleSaveDraft}
-					disabled={createHarness.isPending}
-				>
-					Save Draft
-				</Button>
 			</header>
 
 			<div className="mx-auto flex w-full max-w-3xl flex-1 flex-col px-6 py-10">
 				<div className="mb-2 text-center">
 					<h1 className="text-2xl font-medium tracking-tight text-foreground">
-						Let's build your first harness
+						{hasExistingHarness
+							? "Build a new harness"
+							: "Let's build your first harness"}
 					</h1>
 					<p className="mt-2 text-sm text-muted-foreground">
 						Configure the tools and capabilities your AI agent needs.
 					</p>
 				</div>
 
+				<button
+					type="button"
+					onClick={() => setAiAssistantOpen(true)}
+					className="mt-4 flex w-full items-center gap-3 border border-dashed border-foreground/20 bg-muted/40 px-4 py-3 text-left transition-colors hover:border-foreground/40 hover:bg-muted/60"
+				>
+					<Sparkles size={16} className="shrink-0 text-muted-foreground" />
+					<div className="min-w-0 flex-1">
+						<p className="text-sm font-medium text-foreground">
+							Not sure where to start?
+						</p>
+						<p className="text-xs text-muted-foreground">
+							Describe your use case and let AI configure your harness
+							automatically.
+						</p>
+					</div>
+					<ArrowRight size={14} className="shrink-0 text-muted-foreground" />
+				</button>
+
 				<div className="mb-10 mt-8 flex items-center justify-center gap-1">
 					{steps.map((s, i) => (
 						<div key={s.key} className="flex items-center gap-1">
@@ -306,6 +577,8 @@ function OnboardingPage() {
 									setName={setName}
 									model={model}
 									setModel={setModel}
+									systemPrompt={systemPrompt}
+									setSystemPrompt={setSystemPrompt}
 								/>
 							)}
 							{currentStep === "mcps" && (
@@ -329,8 +602,16 @@ function OnboardingPage() {
 								<StepSandbox
 									enabled={sandboxEnabled}
 									setEnabled={setSandboxEnabled}
-									config={sandboxConfig}
-									setConfig={setSandboxConfig}
+									sandboxes={sandboxes ?? []}
+									sandboxesLoading={sandboxesLoading}
+									mode={sandboxMode}
+									setMode={setSandboxMode}
+									selectedSandboxId={selectedSandboxId}
+									setSelectedSandboxId={setSelectedSandboxId}
+									newSandboxName={newSandboxName}
+									setNewSandboxName={setNewSandboxName}
+									newSandboxConfig={newSandboxConfig}
+									setNewSandboxConfig={setNewSandboxConfig}
 								/>
 							)}
 							{currentStep === "skills" && (
@@ -368,13 +649,19 @@ function OnboardingPage() {
 					) : (
 						<Button
 							size="sm"
-							onClick={handleCreate}
-							disabled={createHarness.isPending || !canProceed()}
+							onClick={() => void submitHarness("started")}
+							disabled={
+								createHarness.isPending ||
+								createSandbox.isPending ||
+								!canProceed()
+							}
 						>
-							{createHarness.isPending ? (
+							{createHarness.isPending || createSandbox.isPending ? (
 								<span className="flex items-center gap-2">
-									<span className="h-3 w-3 animate-spin border border-background border-t-transparent" />
-									Creating...
+									<RoseCurveSpinner size={12} className="text-background" />
+									{createSandbox.isPending
+										? "Creating sandbox..."
+										: "Creating..."}
 								</span>
 							) : (
 								<>
@@ -386,6 +673,12 @@ function OnboardingPage() {
 					)}
 				</div>
 			</div>
+
+			<HarnessCreationAssistant
+				open={aiAssistantOpen}
+				onOpenChange={setAiAssistantOpen}
+				onEditManually={handleAiPrefill}
+			/>
 		</div>
 	);
 }
@@ -395,14 +688,21 @@ function StepNameModel({
 	setName,
 	model,
 	setModel,
+	systemPrompt,
+	setSystemPrompt,
 }: {
 	name: string;
 	setName: (v: string) => void;
 	model: string;
 	setModel: (v: string) => void;
+	systemPrompt: string;
+	setSystemPrompt: (v: string) => void;
 }) {
 	return (
 		<div className="space-y-6">
+			<p className="text-xs text-muted-foreground">
+				Give your harness a name and select a model to get started.
+			</p>
 			<div>
 				<label
 					htmlFor="harness-name"
@@ -444,6 +744,86 @@ function StepNameModel({
 					Choose the LLM that powers this harness.
 				</p>
 			</div>
+			<div>
+				<label
+					htmlFor="system-prompt"
+					className="mb-2 block text-xs font-medium text-foreground"
+				>
+					System Prompt{" "}
+					<span className="font-normal text-muted-foreground">(Optional)</span>
+				</label>
+				<Textarea
+					id="system-prompt"
+					placeholder="e.g. You are a helpful coding assistant that always explains your reasoning."
+					value={systemPrompt}
+					maxLength={SYSTEM_PROMPT_MAX_LENGTH}
+					onChange={(e) => setSystemPrompt(e.target.value)}
+					className="h-24 resize-y"
+				/>
+				<p className="mt-1.5 text-xs text-muted-foreground">
+					Custom instructions prepended to every conversation (max{" "}
+					{SYSTEM_PROMPT_MAX_LENGTH.toLocaleString()} characters).
+				</p>
+			</div>
+
+			<details className="group border-t border-border pt-4">
+				<summary className="flex cursor-pointer list-none items-center gap-2 text-xs font-medium text-muted-foreground hover:text-foreground">
+					<ChevronDown
+						size={12}
+						className="transition-transform group-open:rotate-180"
+					/>
+					What can I add in the next steps?
+				</summary>
+				<div className="mt-4 space-y-4 opacity-60">
+					<div>
+						<div className="mb-2 flex items-center gap-1.5">
+							<Layers size={12} className="text-muted-foreground" />
+							<p className="text-[11px] font-medium text-muted-foreground">
+								MCP Servers
+							</p>
+						</div>
+						<div className="pointer-events-none flex flex-wrap gap-1.5">
+							{PRESET_MCPS.map((mcp) => (
+								<span
+									key={mcp.id}
+									className="inline-flex items-center gap-1.5 border border-border/60 px-2.5 py-1 text-[11px] text-muted-foreground"
+								>
+									<Server size={10} className="shrink-0" />
+									{mcp.server.name}
+								</span>
+							))}
+							<span className="inline-flex items-center gap-1 border border-dashed border-border/60 px-2.5 py-1 text-[11px] text-muted-foreground">
+								<Plus size={10} />
+								Custom
+							</span>
+						</div>
+					</div>
+
+					<div>
+						<div className="mb-2 flex items-center gap-1.5">
+							<Zap size={12} className="text-muted-foreground" />
+							<p className="text-[11px] font-medium text-muted-foreground">
+								Skills
+							</p>
+						</div>
+						<div className="pointer-events-none flex flex-wrap gap-1.5">
+							{RECOMMENDED_SKILLS.map((rec) => (
+								<span
+									key={rec.id}
+									className="inline-flex items-center gap-1.5 border border-border/60 px-2.5 py-1 text-[11px] text-muted-foreground"
+								>
+									<Zap size={10} className="shrink-0" />
+									{rec.skill.skillId}
+								</span>
+							))}
+							<span className="inline-flex items-center gap-1 border border-dashed border-border/60 px-2.5 py-1 text-[11px] text-muted-foreground">
+								<Plus size={10} />
+								Browse more
+							</span>
+						</div>
+					</div>
+				</div>
+			</details>
 		</div>
 	);
 }
@@ -804,44 +1184,68 @@ function StepConnect({ servers }: { servers: McpServerEntry[] }) {
 function StepSandbox({
 	enabled,
 	setEnabled,
-	config,
-	setConfig,
+	sandboxes,
+	sandboxesLoading,
+	mode,
+	setMode,
+	selectedSandboxId,
+	setSelectedSandboxId,
+	newSandboxName,
+	setNewSandboxName,
+	newSandboxConfig,
+	setNewSandboxConfig,
 }: {
 	enabled: boolean;
 	setEnabled: (v: boolean) => void;
-	config: {
-		persistent: boolean;
-		autoStart: boolean;
-		defaultLanguage: string;
-		resourceTier: "basic" | "standard" | "performance";
-	};
-	setConfig: (v: {
-		persistent: boolean;
-		autoStart: boolean;
-		defaultLanguage: string;
-		resourceTier: "basic" | "standard" | "performance";
-	}) => void;
+	sandboxes: Sandbox[];
+	sandboxesLoading: boolean;
+	mode: "existing" | "new";
+	setMode: (value: "existing" | "new") => void;
+	selectedSandboxId: Id<"sandboxes"> | null;
+	setSelectedSandboxId: (v: Id<"sandboxes"> | null) => void;
+	newSandboxName: string;
+	setNewSandboxName: (value: string) => void;
+	newSandboxConfig: SandboxConfig;
+	setNewSandboxConfig: (config: SandboxConfig) => void;
 }) {
+	const atSandboxLimit = sandboxes.length >= MAX_SANDBOXES_PER_USER;
+
+	// If the user is at the cap, "new" mode would always fail server-side.
+	// Force the picker into "existing" mode so they can't even try.
+	useEffect(() => {
+		if (enabled && atSandboxLimit && mode === "new") {
+			setMode("existing");
+		}
+	}, [enabled, atSandboxLimit, mode, setMode]);
+
 	return (
 		<div className="space-y-4">
 			<p className="text-xs text-muted-foreground">
-				Give your harness an isolated sandbox environment for code execution,
+				Choose the default sandbox this harness should use for code execution,
 				file management, terminal commands, and git operations.
 			</p>
 
-			<label className="flex cursor-pointer items-center gap-3 border border-border px-3 py-2.5 transition-colors hover:bg-muted/30">
+			<div className="flex items-center gap-3 border border-border px-3 py-2.5 transition-colors hover:bg-muted/30">
 				<Checkbox
+					id="sandbox-enabled"
 					checked={enabled}
 					onCheckedChange={(checked) => setEnabled(checked === true)}
 				/>
-				<div className="flex-1">
-					<p className="text-xs font-medium text-foreground">Enable sandbox</p>
-					<p className="text-[11px] text-muted-foreground">
-						A sandbox will be auto-provisioned when you start chatting
-					</p>
-				</div>
-				<Box size={14} className="shrink-0 text-muted-foreground" />
-			</label>
+				<label
+					htmlFor="sandbox-enabled"
+					className="flex min-w-0 flex-1 cursor-pointer items-center gap-3"
+				>
+					<div className="flex-1">
+						<p className="text-xs font-medium text-foreground">
+							Enable default sandbox
+						</p>
+						<p className="text-[11px] text-muted-foreground">
+							Use an existing sandbox or create a new one for this harness
+						</p>
+					</div>
+					<Box size={14} className="shrink-0 text-muted-foreground" />
+				</label>
+			</div>
 
 			{enabled && (
 				<motion.div
@@ -850,110 +1254,138 @@ function StepSandbox({
 					exit={{ opacity: 0, height: 0 }}
 					className="space-y-4"
 				>
-					{/* Sandbox type */}
-					<div>
-						<label className="mb-1.5 block text-xs font-medium text-foreground">
-							Sandbox Type
-						</label>
-						<div className="grid gap-2 sm:grid-cols-2">
-							<button
-								type="button"
-								onClick={() => setConfig({ ...config, persistent: false })}
-								className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
-									!config.persistent
+					{atSandboxLimit && (
+						<div className="flex items-start gap-2 border border-amber-400/40 bg-amber-400/10 px-3 py-2 text-xs text-foreground">
+							<AlertCircle
+								size={14}
+								className="mt-0.5 shrink-0 text-amber-500"
+							/>
+							<p>
+								You're at the sandbox limit ({sandboxes.length} /{" "}
+								{MAX_SANDBOXES_PER_USER}), so you can only attach an existing
+								sandbox here. To create a new one, delete a sandbox from the
+								Manage Sandboxes page first.
+							</p>
+						</div>
+					)}
+					<div className="grid gap-2 sm:grid-cols-2">
+						<button
+							type="button"
+							onClick={() => setMode("existing")}
+							className={`border px-3 py-2.5 text-left transition-colors ${
+								mode === "existing"
+									? "border-foreground bg-foreground/5"
+									: "border-border hover:bg-muted/30"
+							}`}
+						>
+							<p className="text-xs font-medium text-foreground">
+								Use existing sandbox
+							</p>
+							<p className="mt-1 text-[11px] text-muted-foreground">
+								Choose from your current sandboxes.
+							</p>
+						</button>
+						<button
+							type="button"
+							onClick={() => {
+								if (!atSandboxLimit) setMode("new");
+							}}
+							disabled={atSandboxLimit}
+							title={
+								atSandboxLimit
+									? `Sandbox limit reached (${MAX_SANDBOXES_PER_USER} max)`
+									: undefined
+							}
+							className={`border px-3 py-2.5 text-left transition-colors ${
+								atSandboxLimit
+									? "cursor-not-allowed border-border bg-muted/30 opacity-50"
+									: mode === "new"
 										? "border-foreground bg-foreground/5"
 										: "border-border hover:bg-muted/30"
-								}`}
-							>
-								<Play size={12} className="mt-0.5 shrink-0" />
-								<div>
-									<p className="text-xs font-medium">Ephemeral</p>
-									<p className="text-[11px] text-muted-foreground">
-										Created per conversation, auto-deleted when done
+							}`}
+						>
+							<p className="text-xs font-medium text-foreground">
+								Create new sandbox
+							</p>
+							<p className="mt-1 text-[11px] text-muted-foreground">
+								{atSandboxLimit
+									? "Unavailable — sandbox limit reached."
+									: "Create and link it as the default in one step."}
+							</p>
+						</button>
+					</div>
+
+					{mode === "existing" ? (
+						<div className="space-y-2">
+							<span className="block text-xs font-medium text-foreground">
+								Select Sandbox
+							</span>
+							{sandboxesLoading ? (
+								<p className="text-[11px] text-muted-foreground">
+									Loading sandboxes...
+								</p>
+							) : sandboxes.length > 0 ? (
+								<Select
+									value={selectedSandboxId ?? undefined}
+									onValueChange={(value) =>
+										setSelectedSandboxId(value as Id<"sandboxes">)
+									}
+								>
+									<SelectTrigger className="w-full max-w-lg text-xs">
+										<SelectValue placeholder="Choose a sandbox" />
+									</SelectTrigger>
+									<SelectContent>
+										{sandboxes.map((sandbox) => (
+											<SelectItem key={sandbox._id} value={sandbox._id}>
+												<span className="truncate">{sandbox.name}</span>
+												<span className="text-[10px] text-muted-foreground">
+													{formatSandboxMeta(sandbox)}
+												</span>
+											</SelectItem>
+										))}
+									</SelectContent>
+								</Select>
+							) : (
+								<div className="border border-dashed border-border px-3 py-2.5">
+									<p className="text-xs font-medium text-foreground">
+										No existing sandboxes
 									</p>
-								</div>
-							</button>
-							<button
-								type="button"
-								onClick={() => setConfig({ ...config, persistent: true })}
-								className={`flex items-start gap-2.5 border px-3 py-2.5 text-left transition-colors ${
-									config.persistent
-										? "border-foreground bg-foreground/5"
-										: "border-border hover:bg-muted/30"
-								}`}
-							>
-								<HardDrive size={12} className="mt-0.5 shrink-0" />
-								<div>
-									<p className="text-xs font-medium">Persistent</p>
-									<p className="text-[11px] text-muted-foreground">
-										Maintains state across conversations
+									<p className="mt-1 text-[11px] text-muted-foreground">
+										Switch to "Create new sandbox" to make and attach one here.
 									</p>
 								</div>
-							</button>
+							)}
 						</div>
-					</div>
-
-					{/* Resource tier */}
-					<div>
-						<label className="mb-1.5 block text-xs font-medium text-foreground">
-							Resource Tier
-						</label>
-						<Select
-							value={config.resourceTier}
-							onValueChange={(v) =>
-								setConfig({
-									...config,
-									resourceTier: v as "basic" | "standard" | "performance",
-								})
-							}
-						>
-							<SelectTrigger className="max-w-sm text-xs">
-								<SelectValue />
-							</SelectTrigger>
-							<SelectContent>
-								<SelectItem value="basic">
-									<Cpu size={10} />
-									Basic — 1 CPU, 1 GB RAM, 3 GB Disk
-								</SelectItem>
-								<SelectItem value="standard">
-									<Cpu size={10} />
-									Standard — 2 CPU, 4 GB RAM, 8 GB Disk
-								</SelectItem>
-								<SelectItem value="performance">
-									<Cpu size={10} />
-									Performance — 4 CPU, 8 GB RAM, 10 GB Disk
-								</SelectItem>
-							</SelectContent>
-						</Select>
-					</div>
+					) : (
+						<div className="space-y-4 border border-border p-4">
+							<div className="space-y-2">
+								<label
+									htmlFor="new-sandbox-name"
+									className="block text-xs font-medium text-foreground"
+								>
+									Sandbox Name
+								</label>
+								<Input
+									id="new-sandbox-name"
+									value={newSandboxName}
+									onChange={(event) => setNewSandboxName(event.target.value)}
+									className="max-w-sm"
+								/>
+							</div>
 
-					{/* Default language */}
-					<div>
-						<label className="mb-1.5 block text-xs font-medium text-foreground">
-							Default Language
-						</label>
-						<Select
-							value={config.defaultLanguage}
-							onValueChange={(v) =>
-								setConfig({ ...config, defaultLanguage: v })
-							}
-						>
-							<SelectTrigger className="max-w-sm text-xs">
-								<SelectValue />
-							</SelectTrigger>
-							<SelectContent>
-								<SelectItem value="python">Python</SelectItem>
-								<SelectItem value="javascript">JavaScript</SelectItem>
-								<SelectItem value="typescript">TypeScript</SelectItem>
-							</SelectContent>
-						</Select>
-					</div>
+							<SandboxConfigForm
+								config={newSandboxConfig}
+								setConfig={setNewSandboxConfig}
+								description="This uses the same sandbox creation behavior as Manage Sandboxes, then links the new sandbox as this harness's default."
+							/>
+						</div>
+					)}
 				</motion.div>
 			)}
 
 			{!enabled && (
 				<p className="text-center text-[11px] text-muted-foreground/60">
-					You can enable a sandbox later from the harness settings.
+					You can set a default sandbox later from the harness settings.
 				</p>
 			)}
 		</div>
diff --git a/apps/web/src/routes/sandboxes/$sandboxId.tsx b/apps/web/src/routes/sandboxes/$sandboxId.tsx
new file mode 100644
index 0000000..2950a30
--- /dev/null
+++ b/apps/web/src/routes/sandboxes/$sandboxId.tsx
@@ -0,0 +1,417 @@
+import { useAuth } from "@clerk/tanstack-react-start";
+import { convexQuery, useConvexMutation } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import type {
+	Doc,
+	Id,
+} from "@harness/convex-backend/convex/_generated/dataModel";
+import { useMutation, useQuery } from "@tanstack/react-query";
+import { createFileRoute, Link, redirect } from "@tanstack/react-router";
+import {
+	Archive,
+	ArrowLeft,
+	Calendar,
+	Check,
+	Code2,
+	Cpu,
+	Database,
+	Files,
+	GitBranch,
+	HardDrive,
+	Loader2,
+	MemoryStick,
+	Play,
+	RefreshCw,
+	Save,
+	Terminal,
+} from "lucide-react";
+import { motion } from "motion/react";
+import { useMemo, useState } from "react";
+import toast from "react-hot-toast";
+import { SandboxPanel } from "../../components/sandbox/sandbox-panel";
+import { Badge } from "../../components/ui/badge";
+import { Button } from "../../components/ui/button";
+import { Input } from "../../components/ui/input";
+import { Separator } from "../../components/ui/separator";
+import { Skeleton } from "../../components/ui/skeleton";
+import { createSandboxApi } from "../../lib/sandbox-api";
+import {
+	SandboxPanelProvider,
+	type SandboxTab,
+	useSandboxPanel,
+} from "../../lib/sandbox-panel-context";
+
+type Sandbox = Doc<"sandboxes">;
+
+export const Route = createFileRoute("/sandboxes/$sandboxId")({
+	beforeLoad: ({ context }) => {
+		if (!context.userId) {
+			throw redirect({ to: "/sign-in" });
+		}
+	},
+	component: SandboxDetailPage,
+});
+
+function SandboxDetailPage() {
+	const { sandboxId } = Route.useParams();
+	const { data: sandbox, isLoading } = useQuery(
+		convexQuery(api.sandboxes.get, {
+			id: sandboxId as Id<"sandboxes">,
+		}),
+	);
+
+	if (isLoading) {
+		return <DetailSkeleton />;
+	}
+
+	if (!sandbox) {
+		return (
+			<div className="flex h-full flex-col items-center justify-center bg-background">
+				<p className="mb-4 text-sm text-muted-foreground">Sandbox not found.</p>
+				<Button size="sm" variant="outline" asChild>
+					<Link to="/sandboxes">Back to Sandboxes</Link>
+				</Button>
+			</div>
+		);
+	}
+
+	return (
+		<SandboxPanelProvider sandboxId={sandbox.daytonaSandboxId}>
+			<SandboxDetailContent sandbox={sandbox} />
+		</SandboxPanelProvider>
+	);
+}
+
+function SandboxDetailContent({ sandbox }: { sandbox: Sandbox }) {
+	const { getToken } = useAuth();
+	const panel = useSandboxPanel();
+	const [name, setName] = useState(sandbox.name);
+	const [workingDir, setWorkingDir] = useState("/home/daytona");
+
+	const sandboxApi = useMemo(() => createSandboxApi(getToken), [getToken]);
+	const updateSandboxFn = useConvexMutation(api.sandboxes.update);
+	const updateSandbox = useMutation({
+		mutationFn: updateSandboxFn,
+		onSuccess: () => toast.success("Sandbox saved"),
+		onError: () => toast.error("Failed to save sandbox"),
+	});
+	const updateSandboxStatus = useMutation({
+		mutationFn: updateSandboxFn,
+	});
+	const lifecycle = useMutation({
+		mutationFn: () => sandboxApi.startSandbox(sandbox.daytonaSandboxId),
+		onSuccess: () => {
+			updateSandboxStatus.mutate({
+				id: sandbox._id,
+				status: "running",
+			});
+			toast.success("Sandbox started");
+		},
+		onError: () => toast.error("Sandbox lifecycle action failed"),
+	});
+
+	const hasNameChanges = name.trim() !== "" && name !== sandbox.name;
+	const isRunning = sandbox.status === "running";
+
+	const openSandboxTool = (tab: SandboxTab) => {
+		panel?.setActiveTab(tab);
+		if (!panel?.panelOpen) panel?.togglePanel();
+	};
+
+	const navigateToWorkingDir = () => {
+		if (!workingDir.trim()) return;
+		panel?.navigateTo(workingDir.trim());
+	};
+
+	const saveMetadata = () => {
+		if (!hasNameChanges) return;
+		updateSandbox.mutate({ id: sandbox._id, name: name.trim() });
+	};
+
+	return (
+		<div className="flex h-full overflow-hidden bg-background">
+			<main className="flex min-w-0 flex-1 flex-col overflow-auto">
+				<header className="flex items-center justify-between border-b border-border px-6 py-4">
+					<div className="flex min-w-0 items-center gap-4">
+						<Button variant="ghost" size="icon-xs" asChild>
+							<Link to="/sandboxes">
+								<ArrowLeft size={14} />
+							</Link>
+						</Button>
+						<div className="min-w-0">
+							<div className="flex items-center gap-2">
+								<h1 className="truncate text-lg font-medium tracking-tight text-foreground">
+									{name || sandbox.name}
+								</h1>
+								<StatusBadge status={sandbox.status} />
+							</div>
+							<p className="truncate text-xs text-muted-foreground">
+								{sandbox.daytonaSandboxId}
+							</p>
+						</div>
+					</div>
+					<div className="flex items-center gap-2">
+						{!isRunning && (
+							<Button
+								size="sm"
+								variant="outline"
+								onClick={() => lifecycle.mutate()}
+								disabled={lifecycle.isPending}
+							>
+								{lifecycle.isPending ? (
+									<Loader2 size={14} className="animate-spin" />
+								) : (
+									<Play size={14} />
+								)}
+								Start
+							</Button>
+						)}
+						<Button
+							size="sm"
+							onClick={saveMetadata}
+							disabled={!hasNameChanges || updateSandbox.isPending}
+						>
+							{updateSandbox.isPending ? (
+								<Loader2 size={14} className="animate-spin" />
+							) : (
+								<Save size={14} />
+							)}
+							Save
+						</Button>
+					</div>
+				</header>
+
+				<div className="flex-1 p-6">
+					<div className="mx-auto max-w-5xl space-y-8">
+						<motion.section
+							initial={{ opacity: 0, y: 8 }}
+							animate={{ opacity: 1, y: 0 }}
+							className="space-y-4"
+						>
+							<div>
+								<h2 className="text-xs font-medium uppercase tracking-wider text-muted-foreground">
+									Edit Sandbox
+								</h2>
+								<p className="mt-1 max-w-2xl text-sm text-muted-foreground">
+									Rename the sandbox here. Use the workspace tools to edit
+									files, create folders, run commands, inspect diffs, and commit
+									changes.
+								</p>
+							</div>
+
+							<div className="grid gap-4 lg:grid-cols-[minmax(0,1fr)_320px]">
+								<div className="space-y-4">
+									<div>
+										<label
+											htmlFor="sandbox-name"
+											className="mb-1.5 block text-xs font-medium text-foreground"
+										>
+											Name
+										</label>
+										<Input
+											id="sandbox-name"
+											value={name}
+											onChange={(e) => setName(e.target.value)}
+											placeholder="Sandbox name"
+											className="max-w-md"
+										/>
+									</div>
+
+									<div>
+										<label
+											htmlFor="working-dir"
+											className="mb-1.5 block text-xs font-medium text-foreground"
+										>
+											Working Directory
+										</label>
+										<div className="flex max-w-xl gap-2">
+											<Input
+												id="working-dir"
+												value={workingDir}
+												onChange={(e) => setWorkingDir(e.target.value)}
+												placeholder="/home/daytona"
+												className="font-mono text-xs"
+											/>
+											<Button
+												type="button"
+												size="sm"
+												variant="outline"
+												onClick={navigateToWorkingDir}
+											>
+												<RefreshCw size={13} />
+												Open
+											</Button>
+										</div>
+									</div>
+								</div>
+
+								<SandboxFacts sandbox={sandbox} />
+							</div>
+						</motion.section>
+
+						<Separator />
+
+						<motion.section
+							initial={{ opacity: 0, y: 8 }}
+							animate={{ opacity: 1, y: 0 }}
+							transition={{ delay: 0.05 }}
+							className="space-y-4"
+						>
+							<div>
+								<h2 className="text-xs font-medium uppercase tracking-wider text-muted-foreground">
+									Supported Edits
+								</h2>
+								<p className="mt-1 max-w-2xl text-sm text-muted-foreground">
+									These actions are supported directly because the backend
+									already exposes authenticated Daytona filesystem, command, and
+									git APIs.
+								</p>
+							</div>
+
+							<div className="grid gap-3 md:grid-cols-3">
+								<EditCapability
+									icon={Files}
+									title="Files"
+									description="Open, edit, save, create, rename, move, delete, download, and search files and folders."
+									action="Open Files"
+									onClick={() => openSandboxTool("files")}
+								/>
+								<EditCapability
+									icon={Terminal}
+									title="Terminal"
+									description="Run shell commands in a working directory, use an interactive PTY, and verify changes."
+									action="Open Terminal"
+									onClick={() => openSandboxTool("terminal")}
+								/>
+								<EditCapability
+									icon={GitBranch}
+									title="Git"
+									description="Check status, inspect diffs, stage files, commit changes, and review recent history."
+									action="Open Git"
+									onClick={() => openSandboxTool("git")}
+								/>
+							</div>
+						</motion.section>
+					</div>
+				</div>
+			</main>
+
+			{panel?.panelOpen && <SandboxPanel />}
+		</div>
+	);
+}
+
+function SandboxFacts({ sandbox }: { sandbox: Sandbox }) {
+	return (
+		<div className="space-y-2 border border-border p-3">
+			<Fact
+				icon={Archive}
+				label="Type"
+				value={sandbox.ephemeral ? "Ephemeral" : "Persistent"}
+			/>
+			<Fact icon={Code2} label="Language" value={sandbox.language ?? "Any"} />
+			<Fact icon={Cpu} label="CPU" value={`${sandbox.resources.cpu} vCPU`} />
+			<Fact
+				icon={MemoryStick}
+				label="Memory"
+				value={`${sandbox.resources.memoryGB} GB`}
+			/>
+			<Fact
+				icon={HardDrive}
+				label="Disk"
+				value={`${sandbox.resources.diskGB} GB`}
+			/>
+			<Fact
+				icon={Calendar}
+				label="Created"
+				value={new Date(sandbox.createdAt).toLocaleDateString()}
+			/>
+			{sandbox.gitRepo && (
+				<Fact icon={Database} label="Repository" value={sandbox.gitRepo} />
+			)}
+		</div>
+	);
+}
+
+function Fact({
+	icon: Icon,
+	label,
+	value,
+}: {
+	icon: typeof Archive;
+	label: string;
+	value: string;
+}) {
+	return (
+		<div className="flex items-center gap-2 text-xs">
+			<Icon size={12} className="shrink-0 text-muted-foreground" />
+			<span className="w-20 shrink-0 text-muted-foreground">{label}</span>
+			<span className="min-w-0 truncate text-foreground">{value}</span>
+		</div>
+	);
+}
+
+function EditCapability({
+	icon: Icon,
+	title,
+	description,
+	action,
+	onClick,
+}: {
+	icon: typeof Files;
+	title: string;
+	description: string;
+	action: string;
+	onClick: () => void;
+}) {
+	return (
+		<div className="flex min-h-44 flex-col border border-border p-4">
+			<div className="mb-3 flex items-center gap-2">
+				<Icon size={15} className="text-muted-foreground" />
+				<h3 className="text-sm font-medium text-foreground">{title}</h3>
+			</div>
+			<p className="min-h-0 flex-1 text-xs leading-5 text-muted-foreground">
+				{description}
+			</p>
+			<Button type="button" size="sm" variant="outline" onClick={onClick}>
+				{action}
+			</Button>
+		</div>
+	);
+}
+
+function StatusBadge({ status }: { status: Sandbox["status"] }) {
+	const variant = status === "running" ? "default" : "secondary";
+	return (
+		<Badge variant={variant} className="shrink-0 text-[10px] capitalize">
+			{status === "running" && <Check size={10} />}
+			{status}
+		</Badge>
+	);
+}
+
+function DetailSkeleton() {
+	return (
+		<div className="flex h-full flex-col bg-background">
+			<header className="flex items-center justify-between border-b border-border px-6 py-4">
+				<div className="flex items-center gap-4">
+					<Skeleton className="h-6 w-6" />
+					<div className="space-y-2">
+						<Skeleton className="h-5 w-48" />
+						<Skeleton className="h-3 w-64" />
+					</div>
+				</div>
+				<div className="flex gap-2">
+					<Skeleton className="h-8 w-20" />
+					<Skeleton className="h-8 w-20" />
+				</div>
+			</header>
+			<div className="flex-1 p-6">
+				<div className="mx-auto max-w-5xl space-y-8">
+					<Skeleton className="h-40 w-full" />
+					<Skeleton className="h-44 w-full" />
+				</div>
+			</div>
+		</div>
+	);
+}
diff --git a/apps/web/src/routes/sandboxes/create_sandbox.tsx b/apps/web/src/routes/sandboxes/create_sandbox.tsx
new file mode 100644
index 0000000..6528572
--- /dev/null
+++ b/apps/web/src/routes/sandboxes/create_sandbox.tsx
@@ -0,0 +1,165 @@
+import { useAuth } from "@clerk/tanstack-react-start";
+import { convexQuery } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import { useQuery } from "@tanstack/react-query";
+import {
+	createFileRoute,
+	Link,
+	redirect,
+	useNavigate,
+} from "@tanstack/react-router";
+import { AlertCircle, ArrowLeft, Loader2 } from "lucide-react";
+import { useState } from "react";
+import toast from "react-hot-toast";
+import { SandboxConfigForm } from "../../components/sandbox/sandbox-config-form";
+import { Button } from "../../components/ui/button";
+import { Input } from "../../components/ui/input";
+import { env } from "../../env";
+import {
+	DEFAULT_SANDBOX_CONFIG,
+	MAX_SANDBOXES_PER_USER,
+	type SandboxConfig,
+} from "../../lib/sandbox";
+
+const API_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
+
+export const Route = createFileRoute("/sandboxes/create_sandbox")({
+	beforeLoad: ({ context }) => {
+		if (!context.userId) {
+			throw redirect({ to: "/sign-in" });
+		}
+	},
+	component: RouteComponent,
+});
+
+function RouteComponent() {
+	const navigate = useNavigate();
+	const { getToken } = useAuth();
+	const [name, setName] = useState("New sandbox");
+	const [isCreating, setIsCreating] = useState(false);
+	const [sandboxConfig, setSandboxConfig] = useState<SandboxConfig>(
+		DEFAULT_SANDBOX_CONFIG,
+	);
+	const { data: sandboxes } = useQuery(convexQuery(api.sandboxes.list, {}));
+	const sandboxCount = sandboxes?.length ?? 0;
+	const atSandboxLimit = sandboxCount >= MAX_SANDBOXES_PER_USER;
+
+	const handleCreate = async () => {
+		setIsCreating(true);
+		try {
+			const token = await getToken();
+			const res = await fetch(`${API_URL}/api/sandbox`, {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+					...(token ? { Authorization: `Bearer ${token}` } : {}),
+				},
+				body: JSON.stringify({
+					name: name.trim() || "New sandbox",
+					language: sandboxConfig.defaultLanguage,
+					resource_tier: sandboxConfig.resourceTier,
+					ephemeral: !sandboxConfig.persistent,
+				}),
+			});
+
+			if (!res.ok) {
+				const body = await res.json().catch(() => null);
+				const detail =
+					body && typeof body.detail === "string" ? body.detail : "";
+				throw new Error(detail || `Sandbox API error ${res.status}`);
+			}
+
+			toast.success("Sandbox created");
+			navigate({ to: "/sandboxes" });
+		} catch (error) {
+			toast.error(
+				error instanceof Error ? error.message : "Failed to create sandbox",
+			);
+		} finally {
+			setIsCreating(false);
+		}
+	};
+
+	return (
+		<div className="flex h-full flex-col overflow-auto bg-background">
+			<header className="flex items-center gap-4 border-b border-border px-6 py-4">
+				<Button variant="ghost" size="icon-xs" asChild>
+					<Link to="/sandboxes">
+						<ArrowLeft size={14} />
+					</Link>
+				</Button>
+				<div>
+					<h1 className="text-lg font-medium tracking-tight text-foreground">
+						Create Sandbox
+					</h1>
+					<p className="text-xs text-muted-foreground">
+						Configure your sandbox
+					</p>
+				</div>
+			</header>
+
+			<div className="flex-1 p-6">
+				<div className="mx-auto max-w-2xl space-y-6">
+					{atSandboxLimit && (
+						<div className="flex items-start gap-2 border border-amber-400/40 bg-amber-400/10 px-4 py-3 text-xs text-foreground">
+							<AlertCircle
+								size={16}
+								className="mt-0.5 shrink-0 text-amber-500"
+							/>
+							<div>
+								<p className="font-medium">
+									Sandbox limit reached ({sandboxCount} /{" "}
+									{MAX_SANDBOXES_PER_USER})
+								</p>
+								<p className="mt-0.5 text-muted-foreground">
+									You've hit the maximum number of sandboxes per account.{" "}
+									<Link to="/sandboxes" className="underline">
+										Delete an existing sandbox
+									</Link>{" "}
+									before creating a new one.
+								</p>
+							</div>
+						</div>
+					)}
+					<div className="space-y-2">
+						<label
+							htmlFor="sandbox-name"
+							className="block text-xs font-medium text-foreground"
+						>
+							Name
+						</label>
+						<Input
+							id="sandbox-name"
+							value={name}
+							onChange={(event) => setName(event.target.value)}
+							className="max-w-sm"
+						/>
+					</div>
+
+					<SandboxConfigForm
+						config={sandboxConfig}
+						setConfig={setSandboxConfig}
+					/>
+
+					<div className="flex items-center gap-2">
+						<Button
+							type="button"
+							size="sm"
+							onClick={handleCreate}
+							disabled={isCreating || atSandboxLimit}
+							title={atSandboxLimit ? "Sandbox limit reached" : undefined}
+						>
+							{isCreating ? (
+								<Loader2 size={14} className="animate-spin" />
+							) : null}
+							Create Sandbox
+						</Button>
+						<Button variant="outline" size="sm" asChild>
+							<Link to="/sandboxes">Cancel</Link>
+						</Button>
+					</div>
+				</div>
+			</div>
+		</div>
+	);
+}
diff --git a/apps/web/src/routes/sandboxes/index.tsx b/apps/web/src/routes/sandboxes/index.tsx
new file mode 100644
index 0000000..79f84cd
--- /dev/null
+++ b/apps/web/src/routes/sandboxes/index.tsx
@@ -0,0 +1,580 @@
+import { convexQuery, useConvexMutation } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import type {
+	Doc,
+	Id,
+} from "@harness/convex-backend/convex/_generated/dataModel";
+import { useMutation, useQuery } from "@tanstack/react-query";
+import {
+	createFileRoute,
+	Link,
+	redirect,
+	useNavigate,
+} from "@tanstack/react-router";
+import {
+	AlertCircle,
+	AlertTriangle,
+	Archive,
+	ArrowLeft,
+	Calendar,
+	Clock,
+	Code2,
+	Cpu,
+	Database,
+	Edit,
+	GitBranch,
+	HardDrive,
+	Hash,
+	MemoryStick,
+	MoreHorizontal,
+	Play,
+	Plus,
+	Square,
+	Trash2,
+} from "lucide-react";
+import { motion } from "motion/react";
+import type { ComponentType } from "react";
+import { useState } from "react";
+import { HarnessMark } from "../../components/harness-mark";
+import { Badge } from "../../components/ui/badge";
+import { Button } from "../../components/ui/button";
+import { Card, CardContent } from "../../components/ui/card";
+import {
+	Dialog,
+	DialogClose,
+	DialogContent,
+	DialogDescription,
+	DialogFooter,
+	DialogHeader,
+	DialogTitle,
+} from "../../components/ui/dialog";
+import {
+	DropdownMenu,
+	DropdownMenuContent,
+	DropdownMenuItem,
+	DropdownMenuSeparator,
+	DropdownMenuTrigger,
+} from "../../components/ui/dropdown-menu";
+import { Skeleton } from "../../components/ui/skeleton";
+import { MAX_SANDBOXES_PER_USER } from "../../lib/sandbox";
+
+type Sandbox = Doc<"sandboxes">;
+type SandboxStatus = Sandbox["status"];
+
+export const Route = createFileRoute("/sandboxes/")({
+	beforeLoad: ({ context }) => {
+		if (!context.userId) {
+			throw redirect({ to: "/sign-in" });
+		}
+	},
+	component: SandboxesPage,
+});
+
+function SandboxesPage() {
+	const navigate = useNavigate();
+	const { data: sandboxes, isLoading } = useQuery(
+		convexQuery(api.sandboxes.list, {}),
+	);
+
+	const updateSandbox = useMutation({
+		mutationFn: useConvexMutation(api.sandboxes.update),
+	});
+	const removeSandbox = useMutation({
+		mutationFn: useConvexMutation(api.sandboxes.remove),
+	});
+
+	const [deleteTarget, setDeleteTarget] = useState<Id<"sandboxes"> | null>(
+		null,
+	);
+
+	if (isLoading) {
+		return <LoadingSkeleton />;
+	}
+
+	const ephemeralSandboxes = sandboxes?.filter((s) => s.ephemeral) ?? [];
+	const persistentSandboxes = sandboxes?.filter((s) => !s.ephemeral) ?? [];
+	const sandboxCount = sandboxes?.length ?? 0;
+	const atSandboxLimit = sandboxCount >= MAX_SANDBOXES_PER_USER;
+	const duplicateSandboxNames = (() => {
+		const counts = new Map<string, number>();
+		for (const s of sandboxes ?? []) {
+			counts.set(s.name, (counts.get(s.name) ?? 0) + 1);
+		}
+		return [...counts.entries()].filter(([, n]) => n > 1).map(([name]) => name);
+	})();
+
+	const handleToggleStatus = (id: Id<"sandboxes">, current: SandboxStatus) => {
+		const newStatus = current === "stopped" ? "running" : "stopped";
+		updateSandbox.mutate({ id, status: newStatus });
+	};
+
+	const handleDelete = () => {
+		if (deleteTarget) {
+			removeSandbox.mutate({ id: deleteTarget });
+			setDeleteTarget(null);
+		}
+	};
+
+	return (
+		<div className="flex h-full flex-col overflow-auto bg-background">
+			<header className="flex items-center justify-between border-b border-border px-6 py-4">
+				<div className="flex items-center gap-4">
+					<Button variant="ghost" size="icon-xs" asChild>
+						<Link to="/chat">
+							<ArrowLeft size={14} />
+						</Link>
+					</Button>
+					<div>
+						<h1 className="text-lg font-medium tracking-tight text-foreground">
+							Your Sandboxes
+						</h1>
+						<p className="text-xs text-muted-foreground">
+							{sandboxes?.length ?? 0} total
+						</p>
+					</div>
+				</div>
+				{atSandboxLimit ? (
+					<Button size="sm" disabled title="Sandbox limit reached">
+						<Plus size={14} />
+						Create New Sandbox
+					</Button>
+				) : (
+					<Button size="sm" asChild>
+						<Link to="/sandboxes/create_sandbox">
+							<Plus size={14} />
+							Create New Sandbox
+						</Link>
+					</Button>
+				)}
+			</header>
+
+			<div className="flex-1 p-6">
+				{sandboxes?.length === 0 ? (
+					<EmptyState />
+				) : (
+					<div className="mx-auto max-w-4xl space-y-8">
+						{atSandboxLimit && (
+							<div className="flex items-start gap-2 border border-amber-400/40 bg-amber-400/10 px-4 py-3 text-xs text-foreground">
+								<AlertCircle
+									size={16}
+									className="mt-0.5 shrink-0 text-amber-500"
+								/>
+								<div>
+									<p className="font-medium">
+										Sandbox limit reached ({sandboxCount} /{" "}
+										{MAX_SANDBOXES_PER_USER})
+									</p>
+									<p className="mt-0.5 text-muted-foreground">
+										You've hit the maximum number of sandboxes per account.
+										Delete one of the sandboxes below before creating a new one.
+									</p>
+								</div>
+							</div>
+						)}
+						{duplicateSandboxNames.length > 0 && (
+							<div className="flex items-start gap-2 border border-border bg-muted/40 px-4 py-3 text-xs text-foreground">
+								<AlertCircle
+									size={16}
+									className="mt-0.5 shrink-0 text-muted-foreground"
+								/>
+								<div>
+									<p className="font-medium">
+										Duplicate sandbox name
+										{duplicateSandboxNames.length > 1 ? "s" : ""}
+									</p>
+									<p className="mt-0.5 text-muted-foreground">
+										You have multiple sandboxes named{" "}
+										{duplicateSandboxNames.map((n) => `"${n}"`).join(", ")}.
+										This is allowed, but it can make picking the right one
+										harder elsewhere — consider renaming them so each name is
+										unique.
+									</p>
+								</div>
+							</div>
+						)}
+						{persistentSandboxes.length > 0 && (
+							<SandboxGroup
+								title="Persistent"
+								sandboxes={persistentSandboxes}
+								onToggle={handleToggleStatus}
+								onDelete={setDeleteTarget}
+								onEdit={(id) =>
+									navigate({
+										to: "/sandboxes/$sandboxId",
+										params: { sandboxId: id },
+									})
+								}
+							/>
+						)}
+						{ephemeralSandboxes.length > 0 && (
+							<SandboxGroup
+								title="Ephemeral"
+								sandboxes={ephemeralSandboxes}
+								onToggle={handleToggleStatus}
+								onDelete={setDeleteTarget}
+								onEdit={(id) =>
+									navigate({
+										to: "/sandboxes/$sandboxId",
+										params: { sandboxId: id },
+									})
+								}
+							/>
+						)}
+					</div>
+				)}
+			</div>
+
+			<Dialog open={!!deleteTarget} onOpenChange={() => setDeleteTarget(null)}>
+				<DialogContent>
+					<DialogHeader>
+						<DialogTitle>Delete Sandbox</DialogTitle>
+						<DialogDescription>
+							This action cannot be undone. This will permanently delete the
+							sandbox record.
+						</DialogDescription>
+					</DialogHeader>
+					<DialogFooter>
+						<DialogClose asChild>
+							<Button variant="outline" size="sm">
+								Cancel
+							</Button>
+						</DialogClose>
+						<Button variant="destructive" size="sm" onClick={handleDelete}>
+							<Trash2 size={12} />
+							Delete
+						</Button>
+					</DialogFooter>
+				</DialogContent>
+			</Dialog>
+		</div>
+	);
+}
+
+function SandboxGroup({
+	title,
+	sandboxes,
+	onToggle,
+	onDelete,
+	onEdit,
+}: {
+	title: string;
+	sandboxes: Array<Sandbox>;
+	onToggle: (id: Id<"sandboxes">, status: SandboxStatus) => void;
+	onDelete: (id: Id<"sandboxes">) => void;
+	onEdit: (id: Id<"sandboxes">) => void;
+}) {
+	return (
+		<div>
+			<h2 className="mb-3 text-xs font-medium uppercase tracking-wider text-muted-foreground">
+				{title}
+			</h2>
+			<div className="grid gap-3 sm:grid-cols-2 lg:grid-cols-3">
+				{sandboxes.map((s, i) => (
+					<motion.div
+						key={s._id}
+						initial={{ opacity: 0, y: 8 }}
+						animate={{ opacity: 1, y: 0 }}
+						transition={{ delay: i * 0.05 }}
+					>
+						<SandboxCard
+							sandbox={s}
+							onToggle={onToggle}
+							onDelete={onDelete}
+							onEdit={onEdit}
+						/>
+					</motion.div>
+				))}
+			</div>
+		</div>
+	);
+}
+
+function SandboxCard({
+	sandbox,
+	onToggle,
+	onDelete,
+	onEdit,
+}: {
+	sandbox: Sandbox;
+	onToggle: (
+		id: Id<"sandboxes">,
+		status:
+			| "creating"
+			| "starting"
+			| "running"
+			| "stopping"
+			| "stopped"
+			| "archived"
+			| "error",
+	) => void;
+	onDelete: (id: Id<"sandboxes">) => void;
+	onEdit: (id: Id<"sandboxes">) => void;
+}) {
+	const statusMeta = getStatusMeta(sandbox.status);
+	const sandboxType = sandbox.ephemeral ? "Ephemeral" : "Persistent";
+	const language = formatLanguage(sandbox.language);
+	const createdAt = formatDate(sandbox.createdAt);
+	const lastAccessedAt = sandbox.lastAccessedAt
+		? formatDate(sandbox.lastAccessedAt)
+		: "Never";
+	const shortDaytonaId = shortenId(sandbox.daytonaSandboxId);
+
+	return (
+		<Card className="gap-0 py-0 ring-foreground/10">
+			<CardContent className="p-4">
+				<div className="mb-3 flex items-start justify-between">
+					<div className="min-w-0 space-y-1">
+						<div className="flex items-center gap-2">
+							<div className={`h-2 w-2 shrink-0 ${statusMeta.dotClass}`} />
+							<h3 className="truncate text-sm font-medium text-foreground">
+								{sandbox.name}
+							</h3>
+						</div>
+						<div className="flex flex-wrap items-center gap-1.5">
+							<Badge variant={statusMeta.badgeVariant} className="text-[10px]">
+								<statusMeta.icon size={10} />
+								{statusMeta.label}
+							</Badge>
+							<Badge variant="outline" className="text-[10px]">
+								<Database size={10} />
+								{sandboxType}
+							</Badge>
+						</div>
+					</div>
+					<DropdownMenu>
+						<DropdownMenuTrigger asChild>
+							<Button variant="ghost" size="icon-xs">
+								<MoreHorizontal size={14} />
+							</Button>
+						</DropdownMenuTrigger>
+						<DropdownMenuContent align="end">
+							<DropdownMenuItem onClick={() => onEdit(sandbox._id)}>
+								<Edit size={12} />
+								Edit
+							</DropdownMenuItem>
+							{sandbox.status !== "running" && (
+								<DropdownMenuItem
+									onClick={() => onToggle(sandbox._id, sandbox.status)}
+								>
+									<Play size={12} />
+									Start
+								</DropdownMenuItem>
+							)}
+							<DropdownMenuSeparator />
+							<DropdownMenuItem
+								className="text-destructive"
+								onClick={() => onDelete(sandbox._id)}
+							>
+								<Trash2 size={12} />
+								Delete
+							</DropdownMenuItem>
+						</DropdownMenuContent>
+					</DropdownMenu>
+				</div>
+
+				<div className="grid grid-cols-2 gap-2 text-[10px]">
+					<SandboxInfoItem icon={Code2} label="Language" value={language} />
+					<SandboxInfoItem
+						icon={Cpu}
+						label="CPU"
+						value={`${sandbox.resources.cpu} vCPU`}
+					/>
+					<SandboxInfoItem
+						icon={MemoryStick}
+						label="Memory"
+						value={`${sandbox.resources.memoryGB} GB`}
+					/>
+					<SandboxInfoItem
+						icon={HardDrive}
+						label="Disk"
+						value={`${sandbox.resources.diskGB} GB`}
+					/>
+				</div>
+
+				<div className="mt-3 space-y-1.5 border-t border-border pt-3 text-[10px] text-muted-foreground">
+					<div className="flex items-center justify-between gap-2">
+						<span className="flex min-w-0 items-center gap-1.5">
+							<Calendar size={10} className="shrink-0" />
+							<span>Created</span>
+						</span>
+						<span className="truncate text-foreground">{createdAt}</span>
+					</div>
+					<div className="flex items-center justify-between gap-2">
+						<span className="flex min-w-0 items-center gap-1.5">
+							<Clock size={10} className="shrink-0" />
+							<span>Last used</span>
+						</span>
+						<span className="truncate text-foreground">{lastAccessedAt}</span>
+					</div>
+					{sandbox.gitRepo && (
+						<div className="flex items-center justify-between gap-2">
+							<span className="flex min-w-0 items-center gap-1.5">
+								<GitBranch size={10} className="shrink-0" />
+								<span>Repo</span>
+							</span>
+							<span className="truncate text-foreground">
+								{formatRepoName(sandbox.gitRepo)}
+							</span>
+						</div>
+					)}
+					<div className="flex items-center justify-between gap-2">
+						<span className="flex min-w-0 items-center gap-1.5">
+							<Hash size={10} className="shrink-0" />
+							<span>Daytona ID</span>
+						</span>
+						<span className="truncate font-mono text-foreground">
+							{shortDaytonaId}
+						</span>
+					</div>
+				</div>
+			</CardContent>
+		</Card>
+	);
+}
+
+function SandboxInfoItem({
+	icon: Icon,
+	label,
+	value,
+}: {
+	icon: ComponentType<{ size?: number; className?: string }>;
+	label: string;
+	value: string;
+}) {
+	return (
+		<div className="flex min-w-0 items-center gap-2 border border-border px-2 py-1.5">
+			<Icon size={12} className="shrink-0 text-muted-foreground" />
+			<div className="min-w-0">
+				<p className="text-[9px] uppercase text-muted-foreground">{label}</p>
+				<p className="truncate font-medium text-foreground">{value}</p>
+			</div>
+		</div>
+	);
+}
+
+function getStatusMeta(status: SandboxStatus): {
+	label: string;
+	dotClass: string;
+	badgeVariant: "secondary" | "outline" | "destructive";
+	icon: ComponentType<{ size?: number }>;
+} {
+	switch (status) {
+		case "running":
+			return {
+				label: "Running",
+				dotClass: "bg-emerald-500",
+				badgeVariant: "secondary",
+				icon: Play,
+			};
+		case "stopped":
+			return {
+				label: "Stopped",
+				dotClass: "bg-muted-foreground/40",
+				badgeVariant: "outline",
+				icon: Square,
+			};
+		case "archived":
+			return {
+				label: "Archived",
+				dotClass: "bg-muted-foreground/40",
+				badgeVariant: "outline",
+				icon: Archive,
+			};
+		case "error":
+			return {
+				label: "Error",
+				dotClass: "bg-destructive",
+				badgeVariant: "destructive",
+				icon: AlertTriangle,
+			};
+		case "creating":
+			return {
+				label: "Creating",
+				dotClass: "bg-amber-400",
+				badgeVariant: "secondary",
+				icon: Database,
+			};
+		case "starting":
+			return {
+				label: "Starting",
+				dotClass: "bg-amber-400",
+				badgeVariant: "secondary",
+				icon: Play,
+			};
+		case "stopping":
+			return {
+				label: "Stopping",
+				dotClass: "bg-amber-400",
+				badgeVariant: "secondary",
+				icon: Square,
+			};
+	}
+}
+
+function formatLanguage(language?: string) {
+	if (!language) return "Not set";
+	return language.charAt(0).toUpperCase() + language.slice(1);
+}
+
+function formatDate(timestamp: number) {
+	return new Intl.DateTimeFormat(undefined, {
+		month: "short",
+		day: "numeric",
+		year: "numeric",
+	}).format(new Date(timestamp));
+}
+
+function shortenId(id: string) {
+	if (id.length <= 12) return id;
+	return `${id.slice(0, 6)}...${id.slice(-4)}`;
+}
+
+function formatRepoName(repo: string) {
+	const trimmed = repo.replace(/\.git$/, "").replace(/\/$/, "");
+	const parts = trimmed.split("/");
+	return parts.slice(-2).join("/");
+}
+
+function EmptyState() {
+	return (
+		<div className="flex flex-col items-center justify-center py-24 text-center">
+			<div className="mb-6 flex h-16 w-16 items-center justify-center bg-foreground">
+				<HarnessMark size={28} className="text-background" />
+			</div>
+			<h2 className="mb-2 text-lg font-medium text-foreground">
+				No sandboxes yet
+			</h2>
+			<p className="mb-6 max-w-sm text-sm text-muted-foreground">
+				Create your first sandbox to equip your AI agent with sandboxes to
+				execute code and a local filesystem.
+			</p>
+			<Button size="sm" asChild>
+				<Link to="/sandboxes/create_sandbox">
+					<Plus size={14} />
+					Create Your First Sandbox
+				</Link>
+			</Button>
+		</div>
+	);
+}
+
+function LoadingSkeleton() {
+	return (
+		<div className="flex h-full flex-col bg-background">
+			<header className="flex items-center justify-between border-b border-border px-6 py-4">
+				<Skeleton className="h-6 w-40" />
+				<Skeleton className="h-8 w-24" />
+			</header>
+			<div className="flex-1 p-6">
+				<div className="mx-auto max-w-4xl">
+					<Skeleton className="mb-4 h-4 w-20" />
+					<div className="grid gap-3 sm:grid-cols-2 lg:grid-cols-3">
+						{["sk1", "sk2", "sk3"].map((key) => (
+							<Skeleton key={key} className="h-32 w-full" />
+						))}
+					</div>
+				</div>
+			</div>
+		</div>
+	);
+}
diff --git a/apps/web/src/routes/sign-in.tsx b/apps/web/src/routes/sign-in.tsx
index f81927e..2f6455a 100644
--- a/apps/web/src/routes/sign-in.tsx
+++ b/apps/web/src/routes/sign-in.tsx
@@ -64,7 +64,8 @@ function SignInPage() {
 					</div>
 					<SignIn
 						routing="hash"
-						forceRedirectUrl="/chat"
+						forceRedirectUrl="/app"
+						signUpUrl="/sign-up"
 						appearance={{
 							elements: {
 								rootBox: "w-full max-w-sm",
diff --git a/apps/web/src/routes/sign-up.tsx b/apps/web/src/routes/sign-up.tsx
new file mode 100644
index 0000000..151dc4f
--- /dev/null
+++ b/apps/web/src/routes/sign-up.tsx
@@ -0,0 +1,95 @@
+import { SignUp } from "@clerk/tanstack-react-start";
+import { createFileRoute } from "@tanstack/react-router";
+import { motion } from "motion/react";
+
+import { HarnessMark } from "../components/harness-mark";
+
+export const Route = createFileRoute("/sign-up")({
+	component: SignUpPage,
+});
+
+function SignUpPage() {
+	return (
+		<div className="flex min-h-screen">
+			<div className="hidden flex-col justify-between bg-foreground p-12 text-background lg:flex lg:w-1/2">
+				<motion.div
+					initial={{ opacity: 0, y: 12 }}
+					animate={{ opacity: 1, y: 0 }}
+					transition={{ duration: 0.5 }}
+				>
+					<div className="flex items-center gap-3">
+						<HarnessMark size={28} className="text-background" />
+						<span className="text-lg font-semibold tracking-tight">
+							Harness
+						</span>
+					</div>
+				</motion.div>
+
+				<motion.div
+					initial={{ opacity: 0, y: 20 }}
+					animate={{ opacity: 1, y: 0 }}
+					transition={{ duration: 0.6, delay: 0.15 }}
+					className="max-w-md"
+				>
+					<h1 className="mb-4 text-[clamp(2rem,3.5vw,3rem)] font-medium leading-[1.1] tracking-tight">
+						Equip your AI agents for anything.
+					</h1>
+					<p className="text-base leading-relaxed text-background/50">
+						Create, manage, and deploy custom tool configurations for AI agents
+						— switching contexts in seconds, not hours.
+					</p>
+				</motion.div>
+
+				<motion.p
+					initial={{ opacity: 0 }}
+					animate={{ opacity: 1 }}
+					transition={{ duration: 0.5, delay: 0.3 }}
+					className="text-xs text-background/30"
+				>
+					&copy; 2026 Harness. All rights reserved.
+				</motion.p>
+			</div>
+
+			<div className="flex flex-1 items-center justify-center bg-background p-6">
+				<motion.div
+					initial={{ opacity: 0, scale: 0.97 }}
+					animate={{ opacity: 1, scale: 1 }}
+					transition={{ duration: 0.4, delay: 0.1 }}
+				>
+					<div className="mb-8 flex items-center gap-2 lg:hidden">
+						<HarnessMark size={24} className="text-foreground" />
+						<span className="text-lg font-semibold tracking-tight text-foreground">
+							Harness
+						</span>
+					</div>
+					<SignUp
+						routing="hash"
+						forceRedirectUrl="/app"
+						signInUrl="/sign-in"
+						appearance={{
+							elements: {
+								rootBox: "w-full max-w-sm",
+								cardBox: "shadow-none border-0",
+								card: "shadow-none border-0 p-0",
+								headerTitle: "text-foreground text-xl font-medium",
+								headerSubtitle: "text-muted-foreground",
+								formButtonPrimary:
+									"bg-foreground text-background hover:bg-foreground/90 rounded-none text-xs font-medium h-9",
+								formFieldInput:
+									"rounded-none border-border focus:ring-ring text-sm",
+								formFieldLabel: "text-foreground text-xs font-medium",
+								footerActionLink: "text-foreground hover:text-foreground/80",
+								identityPreviewEditButton:
+									"text-foreground hover:text-foreground/80",
+								socialButtonsBlockButton:
+									"rounded-none border-border text-foreground text-xs font-medium",
+								dividerLine: "bg-border",
+								dividerText: "text-muted-foreground text-xs",
+							},
+						}}
+					/>
+				</motion.div>
+			</div>
+		</div>
+	);
+}
diff --git a/apps/web/src/routes/workspaces/index.tsx b/apps/web/src/routes/workspaces/index.tsx
new file mode 100644
index 0000000..cbb63b6
--- /dev/null
+++ b/apps/web/src/routes/workspaces/index.tsx
@@ -0,0 +1,4558 @@
+import { useAuth, useClerk, useUser } from "@clerk/tanstack-react-start";
+import { convexQuery, useConvexMutation } from "@convex-dev/react-query";
+import { api } from "@harness/convex-backend/convex/_generated/api";
+import type { Id } from "@harness/convex-backend/convex/_generated/dataModel";
+import { useMutation, useQuery } from "@tanstack/react-query";
+import {
+	createFileRoute,
+	Link,
+	redirect,
+	useNavigate,
+} from "@tanstack/react-router";
+import { useConvexAuth, usePaginatedQuery } from "convex/react";
+import {
+	AlertTriangle,
+	ArrowUp,
+	Box,
+	Brain,
+	Check,
+	ChevronDown,
+	ChevronRight,
+	Cpu,
+	LogOut,
+	MessageSquare,
+	Mic,
+	PanelLeftClose,
+	PanelLeftOpen,
+	Paperclip,
+	Pencil,
+	Plus,
+	RotateCcw,
+	Search, // Icon for search
+	Settings,
+	SlidersHorizontal,
+	Sparkles,
+	Square,
+	Trash2,
+	User,
+	Wrench,
+	X,
+} from "lucide-react";
+import { AnimatePresence, motion } from "motion/react";
+import React, {
+	type KeyboardEvent,
+	useCallback,
+	useEffect,
+	useLayoutEffect,
+	useMemo,
+	useRef,
+	useState,
+} from "react";
+import toast from "react-hot-toast";
+import { AttachmentChip } from "../../components/attachment-chip";
+import { useChatPaletteCommands } from "../../components/command-palette/commands/chat-commands";
+import { useWorkspaceActionCommands } from "../../components/command-palette/commands/workspace-action-commands";
+import { useWorkspaceSwitchCommands } from "../../components/command-palette/commands/workspace-switch-commands";
+import { HarnessMark } from "../../components/harness-mark";
+import { HeaderSkillsMenu } from "../../components/header-skills-menu";
+import { MarkdownMessage } from "../../components/markdown-message";
+import {
+	type HealthStatus,
+	McpServerStatus,
+	OAuthReconnectPrompt,
+	parseAuthRequiredError,
+} from "../../components/mcp-server-status";
+import {
+	type DisplayMode,
+	MessageActions,
+} from "../../components/message-actions";
+import { MessageAttachments } from "../../components/message-attachments";
+import { PendingResponseIndicator } from "../../components/pending-response-indicator";
+import { RoseCurveSpinner } from "../../components/rose-curve-spinner";
+import { SandboxPanel } from "../../components/sandbox/sandbox-panel";
+import { SandboxResult } from "../../components/sandbox-result";
+import { ThinkingFiveSpinner } from "../../components/thinking-five-spinner";
+import {
+	Avatar,
+	AvatarFallback,
+	AvatarImage,
+} from "../../components/ui/avatar";
+import { Badge } from "../../components/ui/badge";
+import { Button } from "../../components/ui/button";
+import { Checkbox } from "../../components/ui/checkbox";
+import {
+	Dialog,
+	DialogContent,
+	DialogDescription,
+	DialogHeader,
+	DialogTitle,
+} from "../../components/ui/dialog";
+import {
+	DropdownMenu,
+	DropdownMenuContent,
+	DropdownMenuItem,
+	DropdownMenuSeparator,
+	DropdownMenuTrigger,
+} from "../../components/ui/dropdown-menu";
+import { Input } from "../../components/ui/input"; // reuse input from components
+import { ScrollArea } from "../../components/ui/scroll-area";
+import {
+	Select,
+	SelectContent,
+	SelectItem,
+	SelectTrigger,
+	SelectValue,
+} from "../../components/ui/select";
+import { Separator } from "../../components/ui/separator";
+import { Skeleton } from "../../components/ui/skeleton";
+import {
+	Tooltip,
+	TooltipContent,
+	TooltipTrigger,
+} from "../../components/ui/tooltip";
+import { UsageDialog } from "../../components/usage-dialog";
+import { formatResetTime, UsageBadge } from "../../components/usage-display";
+import { WorkspaceColorPicker } from "../../components/workspace-color-picker";
+import { env } from "../../env";
+import { useFileAttachments } from "../../hooks/use-file-attachments";
+import {
+	useModifierHeld,
+	useWorkspaceShortcuts,
+} from "../../hooks/use-workspace-shortcuts";
+import {
+	CHAT_INPUT_COUNTER_THRESHOLD,
+	CHAT_INPUT_MAX_LENGTH,
+} from "../../lib/chat-input";
+import {
+	EMPTY_STREAM_STATE,
+	useChatStreamContext,
+	useChatStreamSideEffects,
+} from "../../lib/chat-stream-context";
+import type { McpAuthType } from "../../lib/mcp";
+import {
+	acceptString,
+	allowedMimeTypes,
+	MODELS,
+	modelSupportsAudio,
+	modelSupportsMedia,
+} from "../../lib/models";
+import { buildMultimodalContent } from "../../lib/multimodal";
+import { ariaKeyShortcut, formatShortcut, useIsMac } from "../../lib/platform";
+import {
+	SandboxPanelProvider,
+	useSandboxPanel,
+} from "../../lib/sandbox-panel-context";
+import type { SkillEntry } from "../../lib/skills";
+import type {
+	BudgetExceededInfo,
+	StreamPart,
+	ToolCallEvent,
+	UsageData,
+} from "../../lib/use-chat-stream";
+import { cn } from "../../lib/utils";
+import { getWorkspaceColorHex } from "../../lib/workspace-colors";
+
+export const Route = createFileRoute("/workspaces/")({
+	validateSearch: (
+		search: Record<string, unknown>,
+	): { harnessId?: string; workspaceId?: string } => ({
+		harnessId: (search.harnessId as string) ?? undefined,
+		workspaceId: (search.workspaceId as string) ?? undefined,
+	}),
+	beforeLoad: async ({ context }) => {
+		if (!context.userId) {
+			throw redirect({ to: "/sign-in" });
+		}
+		const settings = await context.queryClient.ensureQueryData(
+			convexQuery(api.userSettings.get, {}),
+		);
+		if (settings.workspacesMode !== "workspaces") {
+			throw redirect({
+				to: "/chat",
+			});
+		}
+	},
+	component: ChatPage,
+});
+
+const FASTAPI_URL = env.VITE_FASTAPI_URL ?? "http://localhost:8000";
+
+const SUGGESTED_PROMPTS = [
+	"Help me write a Python script to process CSV files",
+	"Explain how WebSockets work in simple terms",
+	"Review my API design and suggest improvements",
+	"Create a deployment checklist for production",
+];
+
+type SandboxSelection = "harness" | "none" | Id<"sandboxes">;
+const NONE_OPTION = "__none__";
+
+const LAST_CHAT_RESTORE_WINDOW_MS = 8 * 60 * 60 * 1000;
+
+function ChatPage() {
+	const navigate = useNavigate();
+	const { getToken } = useAuth();
+	const { harnessId: initialHarnessId, workspaceId: initialWorkspaceId } =
+		Route.useSearch();
+
+	const { data: harnesses, isLoading: harnessesLoading } = useQuery(
+		convexQuery(api.harnesses.list, {}),
+	);
+	const { data: workspaces } = useQuery(convexQuery(api.workspaces.list, {}));
+	const { data: sandboxes } = useQuery(convexQuery(api.sandboxes.list, {}));
+	const { data: userSettings } = useQuery(
+		convexQuery(api.userSettings.get, {}),
+	);
+
+	const [activeHarnessId, setActiveHarnessId] =
+		useState<Id<"harnesses"> | null>(null);
+	const [activeWorkspaceId, setActiveWorkspaceId] =
+		useState<Id<"workspaces"> | null>(null);
+	const [activeSandboxSelection, setActiveSandboxSelection] =
+		useState<SandboxSelection>("harness");
+	const [activeConvoId, setActiveConvoId] =
+		useState<Id<"conversations"> | null>(null);
+	const { data: conversations } = useQuery(
+		convexQuery(
+			api.conversations.list,
+			activeWorkspaceId ? { workspaceId: activeWorkspaceId } : "skip",
+		),
+	);
+
+	const prevWorkspaceIdRef = useRef<Id<"workspaces"> | null>(null);
+	const pendingRestoreWorkspaceIdRef = useRef<Id<"workspaces"> | null>(null);
+	// Session-only model override — does not persist to the harness
+	const [sessionModel, setSessionModel] = useState<string | null>(null);
+	const [sidebarOpen, setSidebarOpen] = useState(true);
+	const [pendingEditWorkspaceId, setPendingEditWorkspaceId] =
+		useState<Id<"workspaces"> | null>(null);
+	const [pendingCreateWorkspace, setPendingCreateWorkspace] = useState(0);
+	const [pendingPrompt, setPendingPrompt] = useState<string | null>(null);
+	const [editingMessageId, setEditingMessageId] =
+		useState<Id<"messages"> | null>(null);
+	const [editingContent, setEditingContent] = useState("");
+
+	// Budget exceeded state
+	const [budgetExceeded, setBudgetExceeded] =
+		useState<BudgetExceededInfo | null>(null);
+
+	// Streaming state lives in the global provider so an in-flight stream
+	// survives navigation away from /workspaces (e.g. to /harnesses) and back.
+	const chatStream = useChatStreamContext();
+	const { streamStates, streamStatesRef, clearStreamState, setStreamState } =
+		chatStream;
+
+	// MCP server failures reported during stream start
+	type McpFailure = {
+		id: number;
+		serverName: string;
+		serverUrl: string;
+		reason: string;
+	};
+	const [mcpFailures, setMcpFailures] = useState<McpFailure[]>([]);
+	const mcpFailureIdRef = useRef(0);
+
+	// MCP server health check statuses (keyed by server URL)
+	const [mcpHealthStatuses, setMcpHealthStatuses] = useState<
+		Record<string, HealthStatus>
+	>({});
+
+	// Track conversations that just finished streaming (show green checkmark briefly)
+	const [doneConvoIds, setDoneConvoIds] = useState<Set<string>>(new Set());
+	const prevStreamingRef = useRef<Set<string>>(new Set());
+
+	// Lift messages query to ChatPage for queue processing
+	const { data: activeMessages } = useQuery(
+		convexQuery(
+			api.messages.list,
+			activeConvoId ? { conversationId: activeConvoId } : "skip",
+		),
+	);
+	const activeMessagesRef = useRef(activeMessages);
+	useEffect(() => {
+		activeMessagesRef.current = activeMessages;
+	}, [activeMessages]);
+
+	// Message queue state
+	type QueueItem = { id: number; content: string };
+	const [messageQueue, setMessageQueue] = useState<QueueItem[]>([]);
+	const messageQueueRef = useRef<QueueItem[]>([]);
+	const queueIdCounter = useRef(0);
+	const pendingQueueSendRef = useRef<{
+		convoId: string;
+		content: string;
+	} | null>(null);
+
+	const enqueueMessage = useCallback((content: string) => {
+		const item: QueueItem = { id: ++queueIdCounter.current, content };
+		messageQueueRef.current = [...messageQueueRef.current, item];
+		setMessageQueue([...messageQueueRef.current]);
+	}, []);
+
+	const dequeueMessage = useCallback((index: number) => {
+		messageQueueRef.current = messageQueueRef.current.filter(
+			(_, i) => i !== index,
+		);
+		setMessageQueue([...messageQueueRef.current]);
+	}, []);
+
+	const shiftQueue = useCallback(() => {
+		const [next, ...rest] = messageQueueRef.current;
+		messageQueueRef.current = rest;
+		setMessageQueue(rest);
+		return next?.content;
+	}, []);
+
+	// Clear queue and MCP failures on conversation switch
+	// biome-ignore lint/correctness/useExhaustiveDependencies: intentionally resets queue when active conversation changes
+	useEffect(() => {
+		messageQueueRef.current = [];
+		setMessageQueue([]);
+		pendingQueueSendRef.current = null;
+		setMcpFailures([]);
+	}, [activeConvoId]);
+
+	const updateHarness = useMutation({
+		mutationFn: useConvexMutation(api.harnesses.update),
+	});
+
+	// Save interrupted assistant message from frontend
+	const saveInterruptedMsg = useMutation({
+		mutationFn: useConvexMutation(api.messages.saveInterruptedMessage),
+	});
+
+	// Save user message (used for queue processing)
+	const sendMessageFromQueue = useMutation({
+		mutationFn: useConvexMutation(api.messages.send),
+	});
+
+	useChatStreamSideEffects({
+		onMcpError: (_convoId, event) => {
+			setMcpFailures((prev) => [
+				...prev,
+				{
+					id: ++mcpFailureIdRef.current,
+					serverName: event.server_name,
+					serverUrl: event.server_url,
+					reason: event.reason,
+				},
+			]);
+		},
+		onBudgetExceeded: (_convoId, info) => {
+			setBudgetExceeded(info);
+			const which = info.dailyPct >= 100 ? "daily" : "weekly";
+			toast.error(
+				`${which.charAt(0).toUpperCase() + which.slice(1)} usage limit reached`,
+			);
+		},
+		onError: (_convoId, error) => {
+			toast.error(error);
+		},
+		onAbort: (convoId) => {
+			const state = streamStatesRef.current[convoId];
+
+			// If onDone already fired (pendingDoneContent is set), the backend already
+			// saved the message — don't save a duplicate interrupted copy.
+			if (
+				state?.pendingDoneContent !== null &&
+				state?.pendingDoneContent !== undefined
+			) {
+				// Just process queued messages if any
+				if (
+					!pendingQueueSendRef.current &&
+					messageQueueRef.current.length > 0
+				) {
+					const next = shiftQueue();
+					if (next) {
+						pendingQueueSendRef.current = { convoId, content: next };
+					}
+				}
+				return;
+			}
+
+			if (
+				!state ||
+				(!state.content && !state.reasoning && state.toolCalls.length === 0)
+			) {
+				// Nothing accumulated — just clear state
+				clearStreamState(convoId);
+			} else {
+				// Filter: only keep completed tool calls (those with results)
+				const completedToolCalls = state.toolCalls.filter(
+					(tc) => tc.result,
+				) as Array<{
+					tool: string;
+					arguments: Record<string, unknown>;
+					call_id: string;
+					result: string;
+				}>;
+				const cleanedParts = state.parts.filter(
+					(p) => p.type !== "tool_call" || p.result,
+				);
+
+				const partialContent = state.content ?? "";
+				// model is only sent in the "done" event which doesn't fire on abort,
+				// so fall back to the session model, then the harness model
+				const model =
+					state.model ?? sessionModel ?? activeHarness?.model ?? null;
+
+				saveInterruptedMsg.mutate({
+					conversationId: convoId as Id<"conversations">,
+					content: partialContent,
+					...(state.reasoning ? { reasoning: state.reasoning } : {}),
+					...(completedToolCalls.length > 0
+						? { toolCalls: completedToolCalls }
+						: {}),
+					...(cleanedParts.length > 0 ? { parts: cleanedParts } : {}),
+					...(state.usage ? { usage: state.usage } : {}),
+					...(model ? { model } : {}),
+				});
+
+				// Keep streaming bubble visible until Convex syncs the interrupted message
+				// (same pattern as onDone — set pendingDoneContent so convexHasMessage can match)
+				setStreamState(convoId, () => ({
+					...state,
+					toolCalls: completedToolCalls,
+					parts: cleanedParts,
+					pendingDoneContent: partialContent,
+					model,
+				}));
+			}
+
+			// Process next queued message if any (skip if handleSendNow already set one)
+			if (!pendingQueueSendRef.current && messageQueueRef.current.length > 0) {
+				const next = shiftQueue();
+				if (next) {
+					pendingQueueSendRef.current = { convoId, content: next };
+				}
+			}
+		},
+	});
+
+	// When the active workspace changes, queue a one-shot attempt to restore the
+	// workspace's most-recent chat (if touched within LAST_CHAT_RESTORE_WINDOW_MS).
+	// Tracked via a ref so nulling activeConvoId on "New chat" doesn't re-trigger.
+	useEffect(() => {
+		if (prevWorkspaceIdRef.current === activeWorkspaceId) return;
+		prevWorkspaceIdRef.current = activeWorkspaceId;
+		pendingRestoreWorkspaceIdRef.current = activeWorkspaceId;
+	}, [activeWorkspaceId]);
+
+	useEffect(() => {
+		const pending = pendingRestoreWorkspaceIdRef.current;
+		if (!pending || pending !== activeWorkspaceId) return;
+		if (!conversations) return;
+		if (activeConvoId) {
+			pendingRestoreWorkspaceIdRef.current = null;
+			return;
+		}
+		pendingRestoreWorkspaceIdRef.current = null;
+		const cutoff = Date.now() - LAST_CHAT_RESTORE_WINDOW_MS;
+		const mostRecent = conversations.find(
+			(c) =>
+				!(c as Record<string, unknown>).editParentConversationId &&
+				c.lastMessageAt >= cutoff,
+		);
+		if (mostRecent) {
+			setActiveConvoId(mostRecent._id);
+		}
+	}, [activeWorkspaceId, conversations, activeConvoId]);
+
+	useEffect(() => {
+		if (!workspaces || workspaces.length === 0) {
+			setActiveWorkspaceId(null);
+			setActiveConvoId(null);
+			return;
+		}
+
+		if (
+			activeWorkspaceId &&
+			workspaces.some((workspace) => workspace._id === activeWorkspaceId)
+		) {
+			return;
+		}
+
+		if (
+			initialWorkspaceId &&
+			workspaces.some((workspace) => workspace._id === initialWorkspaceId)
+		) {
+			setActiveWorkspaceId(initialWorkspaceId as Id<"workspaces">);
+			return;
+		}
+
+		setActiveWorkspaceId(workspaces[0]._id);
+	}, [workspaces, activeWorkspaceId, initialWorkspaceId]);
+
+	const activeWorkspace = workspaces?.find(
+		(workspace) => workspace._id === activeWorkspaceId,
+	);
+
+	useEffect(() => {
+		if (!activeWorkspace) {
+			if (!initialHarnessId && harnesses?.length) {
+				const started = harnesses.find((h) => h.status === "started");
+				setActiveHarnessId(started?._id ?? harnesses[0]._id);
+			}
+			setActiveSandboxSelection("harness");
+			return;
+		}
+
+		if (activeWorkspace.harnessId) {
+			setActiveHarnessId(activeWorkspace.harnessId);
+		} else {
+			setActiveHarnessId(null);
+		}
+		setActiveSandboxSelection(activeWorkspace.sandboxId ?? "none");
+		navigate({
+			to: "/workspaces",
+			search: { workspaceId: activeWorkspace._id },
+			replace: true,
+		});
+	}, [activeWorkspace, harnesses, initialHarnessId, navigate]);
+
+	// Reset session model whenever the active harness or conversation changes
+	// biome-ignore lint/correctness/useExhaustiveDependencies: intentional reset on harness/conversation switch
+	useEffect(() => {
+		setSessionModel(null);
+	}, [activeHarnessId, activeConvoId]);
+
+	useEffect(() => {
+		if (
+			activeSandboxSelection === "harness" ||
+			activeSandboxSelection === "none" ||
+			!sandboxes
+		) {
+			return;
+		}
+
+		if (!sandboxes.some((sandbox) => sandbox._id === activeSandboxSelection)) {
+			setActiveSandboxSelection("harness");
+		}
+	}, [activeSandboxSelection, sandboxes]);
+
+	const { isAuthenticated: convexAuthReady } = useConvexAuth();
+	useEffect(() => {
+		if (convexAuthReady && harnesses && harnesses.length === 0) {
+			navigate({ to: "/onboarding" });
+		}
+	}, [convexAuthReady, harnesses, navigate]);
+
+	useEffect(() => {
+		const prev = prevStreamingRef.current;
+		const curr = chatStream.streamingConvoIds;
+
+		for (const id of prev) {
+			if (!curr.has(id)) {
+				setDoneConvoIds((s) => new Set(s).add(id));
+				setTimeout(() => {
+					setDoneConvoIds((s) => {
+						const next = new Set(s);
+						next.delete(id);
+						return next;
+					});
+				}, 800);
+			}
+		}
+
+		prevStreamingRef.current = new Set(curr);
+	}, [chatStream.streamingConvoIds]);
+
+	const handleStreamSynced = useCallback(
+		(convoId: string) => {
+			clearStreamState(convoId);
+
+			// Process next queued message now that Convex has synced
+			if (messageQueueRef.current.length > 0) {
+				const next = shiftQueue();
+				if (next) {
+					pendingQueueSendRef.current = { convoId, content: next };
+				}
+			}
+		},
+		[clearStreamState, shiftQueue],
+	);
+
+	const activeHarness = harnesses?.find((h) => h._id === activeHarnessId);
+	const selectedSandbox =
+		activeSandboxSelection !== "harness" && activeSandboxSelection !== "none"
+			? sandboxes?.find((sandbox) => sandbox._id === activeSandboxSelection)
+			: undefined;
+	const effectiveSandboxDaytonaId =
+		activeSandboxSelection === "none"
+			? null
+			: (selectedSandbox?.daytonaSandboxId ??
+				activeHarness?.daytonaSandboxId ??
+				null);
+	const effectiveSandboxEnabled =
+		activeSandboxSelection === "none"
+			? false
+			: Boolean(
+					selectedSandbox?.daytonaSandboxId ?? activeHarness?.daytonaSandboxId,
+				);
+
+	const updateWorkspaceSandboxFn = useConvexMutation(api.workspaces.update);
+	const handleSwapSandbox = useCallback(
+		(sandboxId: Id<"sandboxes">) => {
+			if (!activeWorkspaceId) return;
+			setActiveSandboxSelection(sandboxId);
+			updateWorkspaceSandboxFn({ id: activeWorkspaceId, sandboxId }).catch(
+				() => {
+					toast.error("Failed to switch sandbox");
+				},
+			);
+		},
+		[activeWorkspaceId, updateWorkspaceSandboxFn],
+	);
+
+	const handleAddSkill = useCallback(
+		(skill: SkillEntry) => {
+			if (!activeHarness) return;
+			const existing = activeHarness.skills ?? [];
+			if (existing.some((s) => s.name === skill.name)) return;
+			updateHarness.mutate({
+				id: activeHarness._id,
+				skills: [...existing, skill],
+			});
+		},
+		[activeHarness, updateHarness],
+	);
+
+	const handleRemoveSkill = useCallback(
+		(skill: SkillEntry) => {
+			if (!activeHarness) return;
+			const filtered = (activeHarness.skills ?? []).filter(
+				(s) => s.name !== skill.name,
+			);
+			updateHarness.mutate({ id: activeHarness._id, skills: filtered });
+		},
+		[activeHarness, updateHarness],
+	);
+
+	const buildHarnessConfig = useCallback(() => {
+		if (!activeHarness) return null;
+
+		return {
+			model: sessionModel ?? activeHarness.model,
+			mcp_servers: activeHarness.mcpServers.map((s) => ({
+				name: s.name,
+				url: s.url,
+				auth_type: s.authType as "none" | "bearer" | "oauth" | "tiger_junction",
+				auth_token: s.authToken,
+			})),
+			skills: activeHarness.skills ?? [],
+			name: activeHarness.name,
+			harness_id: activeHarness._id,
+			system_prompt: activeHarness.systemPrompt ?? undefined,
+			sandbox_enabled: effectiveSandboxEnabled,
+			sandbox_id: effectiveSandboxDaytonaId ?? undefined,
+			sandbox_config: activeHarness.sandboxConfig
+				? {
+						persistent: activeHarness.sandboxConfig.persistent,
+						auto_start: activeHarness.sandboxConfig.autoStart,
+						default_language: activeHarness.sandboxConfig.defaultLanguage,
+						resource_tier: activeHarness.sandboxConfig.resourceTier,
+					}
+				: undefined,
+		};
+	}, [
+		activeHarness,
+		effectiveSandboxDaytonaId,
+		effectiveSandboxEnabled,
+		sessionModel,
+	]);
+
+	// Health-check MCP servers when harness changes, or on-demand via refreshHealth.
+	const healthCheckRunRef = useRef<{ cancel: () => void } | null>(null);
+	const runHealthCheck = useCallback(
+		(
+			servers: Array<{
+				name: string;
+				url: string;
+				authType: McpAuthType;
+				authToken?: string;
+			}>,
+		) => {
+			healthCheckRunRef.current?.cancel();
+
+			if (servers.length === 0) {
+				setMcpHealthStatuses({});
+				return;
+			}
+
+			// Mark unknown URLs as checking; preserve already-known statuses so
+			// previously-healthy servers don't flash to "Checking…" during a
+			// refresh triggered by adding/removing a server.
+			setMcpHealthStatuses((prev) => {
+				const next: Record<string, HealthStatus> = {};
+				for (const s of servers) {
+					next[s.url] = prev[s.url] ?? "checking";
+				}
+				return next;
+			});
+
+			let cancelled = false;
+			const run = async () => {
+				try {
+					const token = await getToken();
+					const res = await fetch(`${FASTAPI_URL}/api/mcp/health/check`, {
+						method: "POST",
+						headers: {
+							"Content-Type": "application/json",
+							...(token ? { Authorization: `Bearer ${token}` } : {}),
+						},
+						body: JSON.stringify({
+							mcp_servers: servers.map((s) => ({
+								name: s.name,
+								url: s.url,
+								auth_type: s.authType,
+								...(s.authToken ? { auth_token: s.authToken } : {}),
+							})),
+							force: true,
+						}),
+					});
+					if (cancelled) return;
+					if (!res.ok) {
+						const fallback: Record<string, HealthStatus> = {};
+						for (const s of servers) fallback[s.url] = "unreachable";
+						setMcpHealthStatuses(fallback);
+						return;
+					}
+					const data = await res.json();
+					if (cancelled) return;
+					const statuses: Record<string, HealthStatus> = {};
+					for (const server of data.servers) {
+						if (server.status === "ok") statuses[server.url] = "reachable";
+						else if (server.status === "auth_required")
+							statuses[server.url] = "auth_required";
+						else statuses[server.url] = "unreachable";
+					}
+					setMcpHealthStatuses(statuses);
+				} catch {
+					if (cancelled) return;
+					const fallback: Record<string, HealthStatus> = {};
+					for (const s of servers) fallback[s.url] = "unreachable";
+					setMcpHealthStatuses(fallback);
+				}
+			};
+
+			run();
+			healthCheckRunRef.current = {
+				cancel: () => {
+					cancelled = true;
+				},
+			};
+		},
+		[getToken],
+	);
+
+	const refreshHealth = useCallback(() => {
+		if (activeHarness) runHealthCheck(activeHarness.mcpServers);
+	}, [activeHarness, runHealthCheck]);
+
+	// Re-run when the harness or its set of MCP server URLs changes. The URL
+	// key catches inline adds/removes from the header tooltip without making
+	// every harness-doc edit (name, model, etc.) trigger a health re-check.
+	const mcpUrlKey = activeHarness?.mcpServers.map((s) => s.url).join("|") ?? "";
+	// biome-ignore lint/correctness/useExhaustiveDependencies: deps are id + url-set; runHealthCheck is stable
+	useEffect(() => {
+		if (!activeHarness) {
+			setMcpHealthStatuses({});
+			return;
+		}
+		runHealthCheck(activeHarness.mcpServers);
+		return () => {
+			healthCheckRunRef.current?.cancel();
+		};
+	}, [activeHarness?._id, mcpUrlKey]);
+
+	const handleInterrupt = useCallback(
+		(convoId: string) => {
+			chatStream.cancel(convoId);
+		},
+		[chatStream],
+	);
+
+	const handleSendNow = useCallback(
+		(index: number) => {
+			if (!activeConvoId) return;
+			const item = messageQueueRef.current[index];
+			if (!item) return;
+			// Remove this message from queue
+			messageQueueRef.current = messageQueueRef.current.filter(
+				(_, i) => i !== index,
+			);
+			setMessageQueue([...messageQueueRef.current]);
+			// Set it as the pending send and interrupt
+			pendingQueueSendRef.current = {
+				convoId: activeConvoId,
+				content: item.content,
+			};
+			chatStream.cancel(activeConvoId);
+		},
+		[activeConvoId, chatStream],
+	);
+
+	// Process pending queued messages after stream ends
+	useEffect(() => {
+		const pending = pendingQueueSendRef.current;
+		if (!pending || !activeHarness) return;
+
+		const convoId = pending.convoId;
+		// Wait until the conversation is no longer streaming
+		if (chatStream.streamingConvoIds.has(convoId)) return;
+
+		pendingQueueSendRef.current = null;
+
+		const run = async () => {
+			await sendMessageFromQueue.mutateAsync({
+				conversationId: convoId as Id<"conversations">,
+				role: "user",
+				content: pending.content,
+				harnessId: activeHarness._id,
+			});
+
+			// Build history from current messages + the new user message
+			const msgs = activeMessagesRef.current ?? [];
+			const history = [
+				...msgs.map((m) => ({ role: m.role, content: m.content })),
+				{ role: "user", content: pending.content },
+			];
+
+			const harnessConfig = buildHarnessConfig();
+			if (!harnessConfig) return;
+
+			chatStream.stream({
+				messages: history,
+				harness: harnessConfig,
+				conversation_id: convoId,
+			});
+		};
+
+		run();
+	}, [
+		chatStream.streamingConvoIds,
+		activeHarness,
+		chatStream,
+		sendMessageFromQueue,
+		buildHarnessConfig,
+	]);
+
+	const handleSelectConversation = useCallback(
+		(convoId: Id<"conversations"> | null) => {
+			setActiveConvoId(convoId);
+
+			if (
+				convoId &&
+				userSettings?.autoSwitchHarness &&
+				conversations &&
+				harnesses
+			) {
+				const convo = conversations.find((c) => c._id === convoId);
+				if (
+					convo?.lastHarnessId &&
+					harnesses.some((h) => h._id === convo.lastHarnessId)
+				) {
+					setActiveHarnessId(convo.lastHarnessId);
+				}
+			}
+		},
+		[userSettings, conversations, harnesses],
+	);
+
+	// State handlers for searching
+	const [scrollToMessageId, setScrollToMessageId] =
+		useState<Id<"messages"> | null>(null);
+	const handleSelectMessage = useCallback(
+		(convoId: Id<"conversations">, messageId: Id<"messages">) => {
+			handleSelectConversation(convoId);
+			setScrollToMessageId(messageId);
+		},
+		[handleSelectConversation],
+	);
+
+	const removeMessage = useMutation({
+		mutationFn: useConvexMutation(api.messages.remove),
+	});
+
+	const handleRegenerate = useCallback(
+		async (
+			messageId: Id<"messages">,
+			history: Array<{ role: string; content: string }>,
+		) => {
+			if (!activeHarness || !activeConvoId) return;
+
+			await removeMessage.mutateAsync({ id: messageId });
+
+			const harnessConfig = buildHarnessConfig();
+			if (!harnessConfig) return;
+
+			chatStream.stream({
+				messages: history,
+				harness: harnessConfig,
+				conversation_id: activeConvoId,
+			});
+		},
+		[
+			activeHarness,
+			activeConvoId,
+			chatStream,
+			removeMessage,
+			buildHarnessConfig,
+		],
+	);
+
+	const forkConversation = useMutation({
+		mutationFn: useConvexMutation(api.conversations.fork),
+	});
+
+	const handleFork = useCallback(
+		async (messageId: Id<"messages">) => {
+			if (!activeConvoId) return;
+			const newConvoId = await forkConversation.mutateAsync({
+				conversationId: activeConvoId,
+				upToMessageId: messageId,
+			});
+			handleSelectConversation(newConvoId);
+		},
+		[activeConvoId, forkConversation, handleSelectConversation],
+	);
+
+	const editForkAndSend = useMutation({
+		mutationFn: useConvexMutation(api.conversations.editForkAndSend),
+	});
+	const isEditSaving = useRef(false);
+
+	const handleStartEditPrompt = useCallback(
+		(messageId: Id<"messages">, content: string) => {
+			setEditingMessageId(messageId);
+			setEditingContent(content);
+		},
+		[],
+	);
+
+	const handleCancelEditPrompt = useCallback(() => {
+		setEditingMessageId(null);
+		setEditingContent("");
+	}, []);
+
+	const handleSaveEditPrompt = useCallback(
+		async (messageId: Id<"messages">, newContent: string) => {
+			if (!activeConvoId || !activeHarness || !activeMessages) return;
+			if (isEditSaving.current) return;
+			isEditSaving.current = true;
+
+			try {
+				const idx = activeMessages.findIndex((m) => m._id === messageId);
+				if (idx === -1) return;
+
+				// Atomic fork + message insert — no flicker
+				const newConvoId = await editForkAndSend.mutateAsync({
+					conversationId: activeConvoId,
+					upToMessageCount: idx,
+					newContent,
+					harnessId: activeHarness._id,
+				});
+
+				handleSelectConversation(newConvoId);
+
+				const history = activeMessages.slice(0, idx).map((m) => ({
+					role: m.role,
+					content: m.content,
+				}));
+				history.push({ role: "user", content: newContent });
+
+				const harnessConfig = buildHarnessConfig();
+				if (!harnessConfig) return;
+
+				chatStream.stream({
+					messages: history,
+					harness: harnessConfig,
+					conversation_id: newConvoId,
+				});
+
+				setEditingMessageId(null);
+				setEditingContent("");
+			} finally {
+				isEditSaving.current = false;
+			}
+		},
+		[
+			activeConvoId,
+			activeHarness,
+			activeMessages,
+			editForkAndSend,
+			handleSelectConversation,
+			chatStream,
+			buildHarnessConfig,
+		],
+	);
+
+	useChatPaletteCommands({
+		isStreaming: activeConvoId
+			? chatStream.streamingConvoIds.has(activeConvoId)
+			: false,
+		canStartNewConversation: Boolean(activeWorkspace),
+		sidebarOpen,
+		onNewConversation: () => setActiveConvoId(null),
+		onCancelStream: () => {
+			if (activeConvoId) handleInterrupt(activeConvoId);
+		},
+		onToggleSidebar: () => setSidebarOpen((v) => !v),
+	});
+
+	if (harnessesLoading || !harnesses || harnesses.length === 0) {
+		return <ChatSkeleton />;
+	}
+	const activeConversation = conversations?.find(
+		(c) => c._id === activeConvoId,
+	);
+	const activeStreamState = activeConvoId
+		? (streamStates[activeConvoId] ?? EMPTY_STREAM_STATE)
+		: EMPTY_STREAM_STATE;
+	const isActiveConvoStreaming = activeConvoId
+		? chatStream.streamingConvoIds.has(activeConvoId)
+		: false;
+
+	return (
+		<SandboxPanelProvider
+			sandboxId={effectiveSandboxEnabled ? effectiveSandboxDaytonaId : null}
+		>
+			<div className="flex h-full overflow-hidden bg-background">
+				<AnimatePresence>
+					{sidebarOpen && (
+						<motion.aside
+							initial={{ width: 0, opacity: 0 }}
+							animate={{ width: 280, opacity: 1 }}
+							exit={{ width: 0, opacity: 0 }}
+							transition={{ duration: 0.2 }}
+							className="flex h-full flex-col overflow-hidden border-r border-border"
+						>
+							<WorkspaceSidebar
+								workspaces={workspaces ?? []}
+								harnesses={harnesses ?? []}
+								sandboxes={sandboxes ?? []}
+								activeWorkspaceId={activeWorkspaceId}
+								onSelectWorkspace={(workspaceId) => {
+									setActiveWorkspaceId(workspaceId);
+									setActiveConvoId(null);
+								}}
+								conversations={(conversations ?? []).filter(
+									(c) =>
+										!(c as Record<string, unknown>).editParentConversationId,
+								)}
+								activeConvoId={activeConvoId}
+								onSelect={handleSelectConversation}
+								onSelectMessage={handleSelectMessage}
+								harnessId={activeHarnessId}
+								onClose={() => setSidebarOpen(false)}
+								streamingConvoIds={chatStream.streamingConvoIds}
+								doneConvoIds={doneConvoIds}
+								pendingEditWorkspaceId={pendingEditWorkspaceId}
+								onPendingEditConsumed={() => setPendingEditWorkspaceId(null)}
+								pendingCreateWorkspace={pendingCreateWorkspace}
+							/>
+						</motion.aside>
+					)}
+				</AnimatePresence>
+
+				<div className="flex flex-1 flex-col overflow-hidden">
+					<ChatHeader
+						workspace={activeWorkspace}
+						harness={activeHarness}
+						sandboxes={sandboxes ?? []}
+						activeSandboxSelection={activeSandboxSelection}
+						effectiveSandboxEnabled={effectiveSandboxEnabled}
+						sidebarOpen={sidebarOpen}
+						onToggleSidebar={() => setSidebarOpen(!sidebarOpen)}
+						mcpHealthStatuses={mcpHealthStatuses}
+						onRefreshHealth={refreshHealth}
+						onSwapSandbox={handleSwapSandbox}
+						onAddSkill={handleAddSkill}
+						onRemoveSkill={handleRemoveSkill}
+					/>
+
+					<McpFailureBanner
+						failures={mcpFailures}
+						onDismiss={(id) =>
+							setMcpFailures((prev) => prev.filter((f) => f.id !== id))
+						}
+						onDismissAll={() => setMcpFailures([])}
+					/>
+
+					{budgetExceeded && (
+						<div className="mx-4 mt-2 flex items-center justify-between rounded-lg border border-red-500/30 bg-red-500/10 px-4 py-3 text-sm text-red-300">
+							<div>
+								<p className="font-medium">
+									{budgetExceeded.dailyPct >= 100 ? "Daily" : "Weekly"} usage
+									limit reached
+								</p>
+								<p className="text-xs text-red-300/70 mt-0.5">
+									Resets in{" "}
+									{budgetExceeded.dailyPct >= 100
+										? formatResetTime(budgetExceeded.dailyReset)
+										: formatResetTime(budgetExceeded.weeklyReset)}
+								</p>
+							</div>
+							<Button
+								variant="ghost"
+								size="sm"
+								className="text-red-300 hover:text-red-200"
+								onClick={() => setBudgetExceeded(null)}
+							>
+								<X size={14} />
+							</Button>
+						</div>
+					)}
+
+					{!activeWorkspace ? (
+						<EmptyWorkspaceState
+							hasWorkspaces={(workspaces ?? []).length > 0}
+							onCreateWorkspace={() => {
+								setSidebarOpen(true);
+								setPendingCreateWorkspace((n) => n + 1);
+							}}
+						/>
+					) : !activeHarness ? (
+						<NoHarnessAttachedState
+							workspaceName={activeWorkspace.name}
+							onAttachHarness={() => {
+								setSidebarOpen(true);
+								setPendingEditWorkspaceId(activeWorkspace._id);
+							}}
+						/>
+					) : activeConvoId ? (
+						<ChatMessages
+							conversationId={activeConvoId}
+							messages={activeMessages ?? []}
+							streamingContent={activeStreamState.content}
+							streamingReasoning={activeStreamState.reasoning}
+							activeToolCalls={activeStreamState.toolCalls}
+							streamParts={activeStreamState.parts}
+							pendingDoneContent={activeStreamState.pendingDoneContent}
+							streamUsage={activeStreamState.usage}
+							streamModel={activeStreamState.model}
+							onStreamSynced={handleStreamSynced}
+							displayMode={
+								(userSettings?.displayMode as DisplayMode) ?? "standard"
+							}
+							onRegenerate={handleRegenerate}
+							onFork={handleFork}
+							onStartEditPrompt={handleStartEditPrompt}
+							onCancelEditPrompt={handleCancelEditPrompt}
+							onSaveEditPrompt={handleSaveEditPrompt}
+							editingMessageId={editingMessageId}
+							editingContent={editingContent}
+							onEditContentChange={setEditingContent}
+							allConversations={conversations ?? []}
+							activeConversation={activeConversation}
+							forkedFromConversationId={
+								activeConversation?.forkedFromConversationId
+							}
+							forkedFromConversationTitle={
+								activeConversation?.forkedFromConversationId
+									? (conversations?.find(
+											(c) =>
+												c._id === activeConversation.forkedFromConversationId,
+										)?.title ?? "Original conversation")
+									: undefined
+							}
+							forkedAtMessageCount={activeConversation?.forkedAtMessageCount}
+							onNavigateToConversation={handleSelectConversation}
+							isStreaming={isActiveConvoStreaming}
+							scrollToMessageId={scrollToMessageId}
+							onClearScrollTarget={() => setScrollToMessageId(null)}
+						/>
+					) : (
+						<EmptyChat
+							suggestedPrompts={activeHarness?.suggestedPrompts}
+							onPromptClick={(text) => setPendingPrompt(text)}
+						/>
+					)}
+
+					<ChatInput
+						conversationId={activeConvoId}
+						activeHarness={activeWorkspace ? activeHarness : undefined}
+						disabled={!activeWorkspace || !activeHarness}
+						placeholder={
+							!activeWorkspace
+								? "Select a workspace to start chatting"
+								: !activeHarness
+									? "Attach a harness to this workspace to start chatting"
+									: "Send a message..."
+						}
+						sessionModel={
+							userSettings?.modelSelectorMode === "harness"
+								? null
+								: sessionModel
+						}
+						modelSelectorMode={
+							(userSettings?.modelSelectorMode as "session" | "harness") ??
+							"session"
+						}
+						onSessionModelChange={(model) => {
+							if (
+								userSettings?.modelSelectorMode === "harness" &&
+								model !== null &&
+								activeHarnessId &&
+								model !== activeHarness?.model
+							) {
+								updateHarness.mutate({ id: activeHarnessId, model });
+							} else {
+								setSessionModel(model);
+							}
+						}}
+						onConvoCreated={handleSelectConversation}
+						workspaceId={activeWorkspaceId ?? undefined}
+						sandboxEnabled={effectiveSandboxEnabled}
+						sandboxId={effectiveSandboxDaytonaId ?? undefined}
+						isStreaming={isActiveConvoStreaming}
+						onStream={chatStream.stream}
+						onInterrupt={handleInterrupt}
+						onEnqueue={enqueueMessage}
+						messages={activeMessages}
+						messageQueue={messageQueue}
+						onDequeue={dequeueMessage}
+						onSendNow={handleSendNow}
+						pendingPrompt={pendingPrompt}
+						onPendingPromptConsumed={() => setPendingPrompt(null)}
+						budgetExceeded={!!budgetExceeded}
+					/>
+				</div>
+
+				<AnimatePresence>
+					{effectiveSandboxEnabled && <SandboxPanelToggle />}
+				</AnimatePresence>
+			</div>
+		</SandboxPanelProvider>
+	);
+}
+
+function HighlightText({ text, query }: { text: string; query: string }) {
+	if (!query) return <>{text}</>;
+
+	const lowerText = text.toLowerCase();
+	const lowerQuery = query.toLowerCase();
+	const parts: React.ReactNode[] = [];
+	let lastIndex = 0;
+
+	let index = lowerText.indexOf(lowerQuery, lastIndex);
+	while (index !== -1) {
+		if (index > lastIndex) {
+			parts.push(text.slice(lastIndex, index));
+		}
+		parts.push(
+			<mark
+				key={index}
+				className="bg-yellow-200 dark:bg-yellow-800 text-inherit rounded-sm"
+			>
+				{text.slice(index, index + query.length)}
+			</mark>,
+		);
+		lastIndex = index + query.length;
+		index = lowerText.indexOf(lowerQuery, lastIndex);
+	}
+
+	if (lastIndex < text.length) {
+		parts.push(text.slice(lastIndex));
+	}
+
+	return <>{parts}</>;
+}
+
+function WorkspaceSidebar({
+	workspaces,
+	harnesses,
+	sandboxes,
+	activeWorkspaceId,
+	onSelectWorkspace,
+	conversations,
+	activeConvoId,
+	onSelect,
+	onSelectMessage, // called when user clicks a content match
+	harnessId,
+	onClose,
+	streamingConvoIds,
+	doneConvoIds,
+	pendingEditWorkspaceId,
+	onPendingEditConsumed,
+	pendingCreateWorkspace,
+}: {
+	workspaces: Array<{
+		_id: Id<"workspaces">;
+		name: string;
+		harnessId?: Id<"harnesses">;
+		sandboxId?: Id<"sandboxes">;
+		color?: string;
+	}>;
+	harnesses: Array<{
+		_id: Id<"harnesses">;
+		name: string;
+		status: string;
+		model: string;
+	}>;
+	sandboxes: Array<{
+		_id: Id<"sandboxes">;
+		name: string;
+		status: string;
+		ephemeral: boolean;
+	}>;
+	activeWorkspaceId: Id<"workspaces"> | null;
+	onSelectWorkspace: (id: Id<"workspaces">) => void;
+	conversations: Array<{
+		_id: Id<"conversations">;
+		title: string;
+		lastMessageAt: number;
+		lastHarnessId?: Id<"harnesses">;
+	}>;
+	activeConvoId: Id<"conversations"> | null;
+	onSelect: (id: Id<"conversations"> | null) => void;
+	onSelectMessage: (
+		convoId: Id<"conversations">,
+		messageId: Id<"messages">,
+	) => void;
+	harnessId: Id<"harnesses"> | null;
+	onClose: () => void;
+	streamingConvoIds: Set<string>;
+	doneConvoIds: Set<string>;
+	pendingEditWorkspaceId?: Id<"workspaces"> | null;
+	onPendingEditConsumed?: () => void;
+	pendingCreateWorkspace?: number;
+}) {
+	const removeConvo = useMutation({
+		mutationFn: useConvexMutation(api.conversations.remove),
+		onSuccess: () => {
+			if (activeConvoId) onSelect(null);
+		},
+	});
+	const createWorkspace = useMutation({
+		mutationFn: useConvexMutation(api.workspaces.create),
+		onSuccess: (workspaceId) => {
+			onSelectWorkspace(workspaceId as Id<"workspaces">);
+			setCreateOpen(false);
+			setNewWorkspaceName("");
+			setNewWorkspaceColor(null);
+		},
+	});
+	const updateWorkspace = useMutation({
+		mutationFn: useConvexMutation(api.workspaces.update),
+		onSuccess: () => {
+			setRenameWorkspace(null);
+			setRenameWorkspaceName("");
+			setRenameWorkspaceHarnessId(null);
+			setRenameWorkspaceSandboxId(null);
+			setRenameWorkspaceColor(null);
+		},
+	});
+
+	const isMac = useIsMac();
+	useWorkspaceShortcuts(workspaces, onSelectWorkspace, isMac);
+	useWorkspaceSwitchCommands(workspaces, onSelectWorkspace, isMac);
+	const modifierHeld = useModifierHeld(isMac);
+
+	const handleNew = () => {
+		if (!harnessId) return;
+		onSelect(null);
+	};
+
+	const [searchQuery, setSearchQuery] = useState("");
+	const [titlesExpanded, setTitlesExpanded] = useState(false);
+	const [contentExpanded, setContentExpanded] = useState(false);
+
+	// consts to set initial amounts for how many search hits we show
+	// as well as max amounts for how many results we show after
+	// show more is pressed
+	const INITIAL_TITLE_COUNT = 10;
+	const INITIAL_CONTENT_COUNT = 15;
+	const LOAD_MORE_TITLE_COUNT = 100;
+	const LOAD_MORE_CONTENT_COUNT = 250;
+
+	const titleSearch = usePaginatedQuery(
+		api.conversations.searchTitles,
+		searchQuery.length > 0 && activeWorkspaceId
+			? { query: searchQuery, workspaceId: activeWorkspaceId }
+			: "skip",
+		{ initialNumItems: INITIAL_TITLE_COUNT },
+	);
+
+	const contentSearch = usePaginatedQuery(
+		api.conversations.searchContent,
+		searchQuery.length > 0 && activeWorkspaceId
+			? { query: searchQuery, workspaceId: activeWorkspaceId }
+			: "skip",
+		{ initialNumItems: INITIAL_CONTENT_COUNT },
+	);
+
+	const { data: titleCount } = useQuery({
+		...convexQuery(
+			api.conversations.searchTitlesCount,
+			searchQuery.length > 0 && activeWorkspaceId
+				? { query: searchQuery, workspaceId: activeWorkspaceId }
+				: "skip",
+		),
+	});
+
+	const { data: contentCount } = useQuery({
+		...convexQuery(
+			api.conversations.searchContentCount,
+			searchQuery.length > 0 && activeWorkspaceId
+				? { query: searchQuery, workspaceId: activeWorkspaceId }
+				: "skip",
+		),
+	});
+
+	const grouped = groupByDate(conversations);
+
+	const [settingsOpen, setSettingsOpen] = useState(false);
+	const [usageOpen, setUsageOpen] = useState(false);
+	const [createOpen, setCreateOpen] = useState(false);
+	const [newWorkspaceName, setNewWorkspaceName] = useState("");
+	const [renameWorkspace, setRenameWorkspace] = useState<{
+		_id: Id<"workspaces">;
+		name: string;
+		harnessId?: Id<"harnesses">;
+		sandboxId?: Id<"sandboxes">;
+		color?: string;
+	} | null>(null);
+	const [renameWorkspaceName, setRenameWorkspaceName] = useState("");
+	const [renameWorkspaceHarnessId, setRenameWorkspaceHarnessId] =
+		useState<Id<"harnesses"> | null>(null);
+	const [renameWorkspaceSandboxId, setRenameWorkspaceSandboxId] =
+		useState<Id<"sandboxes"> | null>(null);
+	const [newWorkspaceHarnessId, setNewWorkspaceHarnessId] =
+		useState<Id<"harnesses"> | null>(null);
+	const [newWorkspaceSandboxId, setNewWorkspaceSandboxId] =
+		useState<Id<"sandboxes"> | null>(null);
+	const [newWorkspaceColor, setNewWorkspaceColor] = useState<string | null>(
+		null,
+	);
+	const [renameWorkspaceColor, setRenameWorkspaceColor] = useState<
+		string | null
+	>(null);
+	const [confirmDeleteWorkspace, setConfirmDeleteWorkspace] = useState(false);
+
+	function resetRenameWorkspaceDialog() {
+		setRenameWorkspace(null);
+		setRenameWorkspaceName("");
+		setRenameWorkspaceHarnessId(null);
+		setRenameWorkspaceSandboxId(null);
+		setRenameWorkspaceColor(null);
+		setConfirmDeleteWorkspace(false);
+	}
+
+	const deleteWorkspace = useMutation({
+		mutationFn: useConvexMutation(api.workspaces.remove),
+		onSuccess: () => {
+			resetRenameWorkspaceDialog();
+			toast.success("Workspace deleted");
+		},
+		onError: () => {
+			setConfirmDeleteWorkspace(false);
+			toast.error("Failed to delete workspace");
+		},
+	});
+
+	const createSelectedWorkspace = () => {
+		const harness = harnesses.find(
+			(item) => item._id === newWorkspaceHarnessId,
+		);
+		const sandbox = sandboxes.find(
+			(item) => item._id === newWorkspaceSandboxId,
+		);
+		createWorkspace.mutate({
+			name:
+				newWorkspaceName.trim() ||
+				(harness && sandbox
+					? `${harness.name} / ${sandbox.name}`
+					: (harness?.name ?? sandbox?.name ?? "New workspace")),
+			...(newWorkspaceHarnessId ? { harnessId: newWorkspaceHarnessId } : {}),
+			...(newWorkspaceSandboxId ? { sandboxId: newWorkspaceSandboxId } : {}),
+			...(newWorkspaceColor ? { color: newWorkspaceColor } : {}),
+		});
+	};
+
+	const startRenameWorkspace = (workspace: {
+		_id: Id<"workspaces">;
+		name: string;
+		harnessId?: Id<"harnesses">;
+		sandboxId?: Id<"sandboxes">;
+		color?: string;
+	}) => {
+		setRenameWorkspace(workspace);
+		setRenameWorkspaceName(workspace.name);
+		setRenameWorkspaceHarnessId(workspace.harnessId ?? null);
+		setRenameWorkspaceSandboxId(workspace.sandboxId ?? null);
+		setRenameWorkspaceColor(workspace.color ?? null);
+		setConfirmDeleteWorkspace(false);
+	};
+
+	// Open the edit dialog when an external trigger (e.g. the empty-state
+	// "Attach a harness" CTA) requests it for a specific workspace.
+	// biome-ignore lint/correctness/useExhaustiveDependencies: only react to id changes
+	useEffect(() => {
+		if (!pendingEditWorkspaceId) return;
+		const workspace = workspaces.find((w) => w._id === pendingEditWorkspaceId);
+		if (workspace) startRenameWorkspace(workspace);
+		onPendingEditConsumed?.();
+	}, [pendingEditWorkspaceId]);
+
+	useEffect(() => {
+		if (!pendingCreateWorkspace) return;
+		setCreateOpen(true);
+	}, [pendingCreateWorkspace]);
+
+	const saveWorkspaceName = () => {
+		if (!renameWorkspace) return;
+		const name = renameWorkspaceName.trim();
+		if (!name) {
+			toast.error("Workspace name is required");
+			return;
+		}
+		updateWorkspace.mutate({
+			id: renameWorkspace._id,
+			name,
+			harnessId: renameWorkspaceHarnessId,
+			sandboxId: renameWorkspaceSandboxId,
+			// Empty string clears any existing color on the server.
+			color: renameWorkspaceColor ?? "",
+		});
+	};
+
+	const removeWorkspace = () => {
+		if (!renameWorkspace) return;
+		if (!confirmDeleteWorkspace) {
+			setConfirmDeleteWorkspace(true);
+			return;
+		}
+		deleteWorkspace.mutate({ id: renameWorkspace._id });
+	};
+
+	const activeWorkspace = workspaces.find((w) => w._id === activeWorkspaceId);
+	useWorkspaceActionCommands({
+		activeWorkspace,
+		canCreateWorkspace: true,
+		onCreateWorkspace: () => setCreateOpen(true),
+		onRenameActiveWorkspace: () => {
+			if (activeWorkspace) startRenameWorkspace(activeWorkspace);
+		},
+	});
+
+	return (
+		<div className="flex h-full w-[280px] flex-col bg-background">
+			<div className="flex items-center justify-between px-3 py-3">
+				<Link to="/" className="flex items-center gap-2">
+					<HarnessMark size={18} className="text-foreground" />
+					<span className="text-sm font-semibold tracking-tight text-foreground">
+						Harness
+					</span>
+				</Link>
+				<div className="flex items-center gap-1">
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<Button variant="ghost" size="icon-xs" onClick={handleNew}>
+								<Plus size={14} />
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent>New chat</TooltipContent>
+					</Tooltip>
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<Button variant="ghost" size="icon-xs" onClick={onClose}>
+								<PanelLeftClose size={14} />
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent>Close sidebar</TooltipContent>
+					</Tooltip>
+				</div>
+			</div>
+
+			<Separator />
+
+			<div className="shrink-0 px-2 py-2">
+				<div className="mb-1 flex items-center justify-between px-2">
+					<p className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+						Workspaces
+					</p>
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<Button
+								variant="ghost"
+								size="icon-xs"
+								onClick={() => setCreateOpen(true)}
+							>
+								<Plus size={12} />
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent>New workspace</TooltipContent>
+					</Tooltip>
+				</div>
+				<ScrollArea className="h-56">
+					<div className="space-y-0.5 pr-2">
+						{workspaces.length === 0 ? (
+							<p className="px-2 py-2 text-[11px] text-muted-foreground">
+								Create a workspace to start.
+							</p>
+						) : (
+							workspaces.map((workspace, index) => {
+								const harness = harnesses.find(
+									(item) => item._id === workspace.harnessId,
+								);
+								const sandbox = sandboxes.find(
+									(item) => item._id === workspace.sandboxId,
+								);
+								const colorHex = getWorkspaceColorHex(workspace.color);
+								const isActive = activeWorkspaceId === workspace._id;
+								const hasShortcut = index < 9;
+								const shortcutDigit = index + 1;
+								return (
+									<div key={workspace._id} className="group relative">
+										<button
+											type="button"
+											onClick={() => onSelectWorkspace(workspace._id)}
+											aria-keyshortcuts={
+												hasShortcut
+													? ariaKeyShortcut(shortcutDigit, isMac)
+													: undefined
+											}
+											title={
+												hasShortcut
+													? `${workspace.name} — ${formatShortcut(shortcutDigit, isMac)}`
+													: workspace.name
+											}
+											style={
+												colorHex ? { backgroundColor: colorHex } : undefined
+											}
+											className={cn(
+												"flex w-full items-start gap-2 rounded-md px-2 py-2 pr-8 text-left transition-all",
+												colorHex
+													? "text-foreground hover:brightness-95"
+													: isActive
+														? "bg-muted text-foreground"
+														: "text-muted-foreground hover:bg-muted/50 hover:text-foreground",
+												isActive &&
+													colorHex &&
+													"ring-2 ring-inset ring-foreground/40",
+											)}
+										>
+											<Sparkles size={12} className="mt-0.5 shrink-0" />
+											<span className="min-w-0 flex-1">
+												<span className="block truncate text-xs font-medium">
+													{workspace.name}
+												</span>
+												<span
+													className={cn(
+														"block truncate text-[10px]",
+														colorHex
+															? "text-foreground/60"
+															: "text-muted-foreground",
+													)}
+												>
+													{harness?.name ?? "None"} / {sandbox?.name ?? "None"}
+												</span>
+											</span>
+										</button>
+										{modifierHeld && hasShortcut && (
+											<span
+												aria-hidden="true"
+												className="pointer-events-none absolute right-1 top-1 rounded-sm bg-background/85 px-1 py-0.5 font-mono text-[9px] leading-none text-muted-foreground ring-1 ring-border/60 backdrop-blur-sm transition-opacity group-hover:opacity-0"
+											>
+												{formatShortcut(shortcutDigit, isMac)}
+											</span>
+										)}
+										<Tooltip>
+											<TooltipTrigger asChild>
+												<Button
+													variant="ghost"
+													size="icon-xs"
+													className="absolute right-1 top-1.5 opacity-0 group-hover:opacity-100"
+													onClick={(event) => {
+														event.stopPropagation();
+														startRenameWorkspace(workspace);
+													}}
+												>
+													<Pencil size={10} />
+												</Button>
+											</TooltipTrigger>
+											<TooltipContent>Edit workspace</TooltipContent>
+										</Tooltip>
+									</div>
+								);
+							})
+						)}
+					</div>
+				</ScrollArea>
+			</div>
+
+			<Separator />
+
+			{/* Add input component connected to searchQuery state */}
+			<div className="px-2 py-2">
+				<div className="relative">
+					<Search
+						size={14}
+						className="absolute left-2.5 top-1/2 -translate-y-1/2 text-muted-foreground"
+					/>
+					<Input
+						placeholder="Search chats..."
+						value={searchQuery}
+						onChange={(e) => {
+							setSearchQuery(e.target.value);
+							setTitlesExpanded(false);
+							setContentExpanded(false);
+						}}
+						className="h-8 pl-8 text-xs"
+					/>
+				</div>
+			</div>
+
+			<ScrollArea className="min-h-0 flex-1 px-2 py-2">
+				{/* BRANCH 1: Active search — show search results */}
+				{searchQuery &&
+				titleSearch.status !== "LoadingFirstPage" &&
+				contentSearch.status !== "LoadingFirstPage" ? (
+					<div className="flex flex-col gap-4 h-full">
+						{/* --- TITLE MATCHES SECTION --- */}
+						{titleSearch.results.length > 0 && (
+							<div className="flex flex-col shrink-0">
+								<div className="sticky top-0 z-10 mb-1 flex items-center gap-2 bg-background px-2 py-1">
+									<p className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+										Conversations
+									</p>
+									{titlesExpanded ? (
+										<button
+											type="button"
+											onClick={() => setTitlesExpanded(false)}
+											className="text-[11px] text-blue-500 hover:text-blue-600"
+										>
+											Show Less
+										</button>
+									) : (titleCount ?? 0) > INITIAL_TITLE_COUNT ? (
+										<button
+											type="button"
+											onClick={() => {
+												if (titleSearch.status === "CanLoadMore") {
+													titleSearch.loadMore(LOAD_MORE_TITLE_COUNT);
+												}
+												setTitlesExpanded(true);
+											}}
+											className="text-[11px] text-blue-500 hover:text-blue-600"
+										>
+											Show More
+										</button>
+									) : null}
+								</div>
+								{(titlesExpanded
+									? titleSearch.results
+									: titleSearch.results.slice(0, INITIAL_TITLE_COUNT)
+								).map((convo) => (
+									<button
+										key={convo._id}
+										type="button"
+										onClick={() => onSelect(convo._id)}
+										className={cn(
+											"flex w-full items-center gap-2 rounded-md px-2 py-1.5 text-left text-xs transition-colors",
+											activeConvoId === convo._id
+												? "bg-muted text-foreground"
+												: "text-muted-foreground hover:bg-muted/50 hover:text-foreground",
+										)}
+									>
+										<MessageSquare size={12} className="shrink-0" />
+										<span className="truncate">
+											<HighlightText text={convo.title} query={searchQuery} />
+										</span>
+									</button>
+								))}
+							</div>
+						)}
+
+						{/* --- CONTENT MATCHES SECTION --- */}
+						{contentSearch.results.length > 0 && (
+							<div className="flex flex-col flex-1 min-h-0">
+								<div className="sticky top-0 z-10 mb-1 flex items-center gap-2 bg-background px-2 py-1">
+									<p className="text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+										Messages
+									</p>
+									{contentExpanded ? (
+										<button
+											type="button"
+											onClick={() => setContentExpanded(false)}
+											className="text-[11px] text-blue-500 hover:text-blue-600"
+										>
+											Show Less
+										</button>
+									) : (contentCount ?? 0) > INITIAL_CONTENT_COUNT ? (
+										<button
+											type="button"
+											onClick={() => {
+												if (contentSearch.status === "CanLoadMore") {
+													contentSearch.loadMore(LOAD_MORE_CONTENT_COUNT);
+												}
+												setContentExpanded(true);
+											}}
+											className="text-[11px] text-blue-500 hover:text-blue-600"
+										>
+											Show More
+										</button>
+									) : null}
+								</div>
+								<div
+									className={cn(
+										"overflow-y-auto",
+										contentExpanded && "flex-1 min-h-0",
+									)}
+								>
+									{(contentExpanded
+										? contentSearch.results
+										: contentSearch.results.slice(0, INITIAL_CONTENT_COUNT)
+									).map((match) => (
+										<button
+											key={match.messageId}
+											type="button"
+											onClick={() =>
+												onSelectMessage(match.conversationId, match.messageId)
+											}
+											className="flex w-full flex-col gap-0.5 rounded-md px-2 py-1.5 text-left transition-colors
+												text-muted-foreground hover:bg-muted/50 hover:text-foreground"
+										>
+											<span className="text-[11px] font-medium text-foreground truncate">
+												{match.conversationTitle}
+											</span>
+											<span className="text-[11px] leading-snug">
+												<HighlightText
+													text={match.snippet}
+													query={searchQuery}
+												/>
+											</span>
+										</button>
+									))}
+								</div>
+							</div>
+						)}
+
+						{/* --- NO RESULTS --- */}
+						{titleSearch.results.length === 0 &&
+							contentSearch.results.length === 0 && (
+								<p className="px-2 py-8 text-center text-xs text-muted-foreground">
+									No results found
+								</p>
+							)}
+					</div>
+				) : /* BRANCH 2 & 3: Normal mode */
+				conversations.length === 0 ? (
+					<p className="px-2 py-8 text-center text-xs text-muted-foreground">
+						No conversations yet
+					</p>
+				) : (
+					<div className="space-y-4">
+						{grouped.map((group) => (
+							<div key={group.label}>
+								<p className="mb-1 px-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+									{group.label}
+								</p>
+								{group.items.map((convo) => (
+									<div key={convo._id} className="group relative">
+										<button
+											type="button"
+											onClick={() => onSelect(convo._id)}
+											className={cn(
+												"flex w-full items-center gap-2 px-2 py-1.5 text-left text-xs transition-colors",
+												activeConvoId === convo._id
+													? "bg-muted text-foreground"
+													: "text-muted-foreground hover:bg-muted/50 hover:text-foreground",
+											)}
+										>
+											<AnimatePresence mode="wait">
+												{streamingConvoIds.has(convo._id) ? (
+													<motion.span
+														key="spinner"
+														initial={{ opacity: 0, scale: 0.5 }}
+														animate={{ opacity: 1, scale: 1 }}
+														exit={{ opacity: 0, scale: 0.5 }}
+														transition={{ duration: 0.15 }}
+														className="flex shrink-0"
+													>
+														<RoseCurveSpinner
+															size={12}
+															className="text-muted-foreground"
+														/>
+													</motion.span>
+												) : doneConvoIds.has(convo._id) ? (
+													<motion.span
+														key="check"
+														initial={{ opacity: 0, scale: 0.5 }}
+														animate={{ opacity: 1, scale: 1 }}
+														exit={{ opacity: 0, scale: 0.5 }}
+														transition={{ duration: 0.15 }}
+														className="flex shrink-0"
+													>
+														<Check size={12} className="text-emerald-500" />
+													</motion.span>
+												) : (
+													<motion.span
+														key="icon"
+														initial={{ opacity: 0, scale: 0.5 }}
+														animate={{ opacity: 1, scale: 1 }}
+														exit={{ opacity: 0, scale: 0.5 }}
+														transition={{ duration: 0.15 }}
+														className="flex shrink-0"
+													>
+														<MessageSquare size={12} />
+													</motion.span>
+												)}
+											</AnimatePresence>
+											<span className="truncate">{convo.title}</span>
+										</button>
+										<Button
+											variant="ghost"
+											size="icon-xs"
+											className="absolute right-1 top-1 opacity-0 group-hover:opacity-100"
+											onClick={(e) => {
+												e.stopPropagation();
+												removeConvo.mutate({
+													id: convo._id,
+												});
+											}}
+										>
+											<Trash2 size={10} />
+										</Button>
+									</div>
+								))}
+							</div>
+						))}
+					</div>
+				)}
+			</ScrollArea>
+
+			<Separator />
+			<div className="px-2 py-1">
+				<UsageBadge onClick={() => setUsageOpen(true)} />
+			</div>
+			<Separator />
+			<div className="space-y-0.5 p-2">
+				<Button
+					variant="ghost"
+					size="sm"
+					className="w-full justify-start"
+					asChild
+				>
+					<Link to="/sandboxes">
+						<Box size={12} />
+						Manage Sandboxes
+					</Link>
+				</Button>
+				<Button
+					variant="ghost"
+					size="sm"
+					className="w-full justify-start"
+					asChild
+				>
+					<Link to="/harnesses">
+						<SlidersHorizontal size={12} />
+						Manage Harnesses
+					</Link>
+				</Button>
+				<Button
+					variant="ghost"
+					size="sm"
+					className="w-full justify-start"
+					onClick={() => setSettingsOpen(true)}
+				>
+					<Settings size={12} />
+					Settings
+				</Button>
+			</div>
+
+			<Dialog open={createOpen} onOpenChange={setCreateOpen}>
+				<DialogContent className="sm:max-w-sm">
+					<DialogHeader>
+						<DialogTitle className="text-sm">New Workspace</DialogTitle>
+						<DialogDescription>
+							Name this workspace and select its harness and sandbox.
+						</DialogDescription>
+					</DialogHeader>
+					<div className="space-y-4">
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Name</p>
+							<Input
+								value={newWorkspaceName}
+								onChange={(event) => setNewWorkspaceName(event.target.value)}
+								placeholder="Workspace name"
+								onKeyDown={(event) => {
+									if (event.key === "Enter") {
+										event.preventDefault();
+										createSelectedWorkspace();
+									}
+								}}
+							/>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Harness</p>
+							<Select
+								value={newWorkspaceHarnessId ?? NONE_OPTION}
+								onValueChange={(value) =>
+									setNewWorkspaceHarnessId(
+										value === NONE_OPTION ? null : (value as Id<"harnesses">),
+									)
+								}
+							>
+								<SelectTrigger>
+									<SelectValue placeholder="Select a harness" />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value={NONE_OPTION}>None</SelectItem>
+									{harnesses
+										.filter((harness) => harness.status !== "draft")
+										.map((harness) => (
+											<SelectItem key={harness._id} value={harness._id}>
+												{harness.name}
+											</SelectItem>
+										))}
+								</SelectContent>
+							</Select>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Sandbox</p>
+							<Select
+								value={newWorkspaceSandboxId ?? NONE_OPTION}
+								onValueChange={(value) =>
+									setNewWorkspaceSandboxId(
+										value === NONE_OPTION ? null : (value as Id<"sandboxes">),
+									)
+								}
+							>
+								<SelectTrigger>
+									<SelectValue placeholder="Select a sandbox" />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value={NONE_OPTION}>None</SelectItem>
+									{sandboxes.map((sandbox) => (
+										<SelectItem key={sandbox._id} value={sandbox._id}>
+											{sandbox.name}
+										</SelectItem>
+									))}
+								</SelectContent>
+							</Select>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Color</p>
+							<WorkspaceColorPicker
+								value={newWorkspaceColor}
+								onChange={setNewWorkspaceColor}
+							/>
+						</div>
+						<Button
+							className="w-full"
+							disabled={createWorkspace.isPending}
+							onClick={createSelectedWorkspace}
+						>
+							{createWorkspace.isPending ? (
+								<RoseCurveSpinner size={14} />
+							) : (
+								<Plus size={14} />
+							)}
+							Create Workspace
+						</Button>
+					</div>
+				</DialogContent>
+			</Dialog>
+			<Dialog
+				open={renameWorkspace !== null}
+				onOpenChange={(open) => {
+					if (!open) {
+						resetRenameWorkspaceDialog();
+					}
+				}}
+			>
+				<DialogContent className="sm:max-w-sm">
+					<DialogHeader>
+						<DialogTitle className="text-sm">Edit Workspace</DialogTitle>
+						<DialogDescription>
+							Update this workspace's name, harness, and sandbox.
+						</DialogDescription>
+					</DialogHeader>
+					<div className="space-y-4">
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Name</p>
+							<Input
+								value={renameWorkspaceName}
+								onChange={(event) => setRenameWorkspaceName(event.target.value)}
+								placeholder="Workspace name"
+								autoFocus
+								onKeyDown={(event) => {
+									if (event.key === "Enter") {
+										event.preventDefault();
+										saveWorkspaceName();
+									}
+								}}
+							/>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Harness</p>
+							<Select
+								value={renameWorkspaceHarnessId ?? NONE_OPTION}
+								onValueChange={(value) =>
+									setRenameWorkspaceHarnessId(
+										value === NONE_OPTION ? null : (value as Id<"harnesses">),
+									)
+								}
+							>
+								<SelectTrigger>
+									<SelectValue placeholder="Select a harness" />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value={NONE_OPTION}>None</SelectItem>
+									{harnesses
+										.filter((harness) => harness.status !== "draft")
+										.map((harness) => (
+											<SelectItem key={harness._id} value={harness._id}>
+												{harness.name}
+											</SelectItem>
+										))}
+								</SelectContent>
+							</Select>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Sandbox</p>
+							<Select
+								value={renameWorkspaceSandboxId ?? NONE_OPTION}
+								onValueChange={(value) =>
+									setRenameWorkspaceSandboxId(
+										value === NONE_OPTION ? null : (value as Id<"sandboxes">),
+									)
+								}
+							>
+								<SelectTrigger>
+									<SelectValue placeholder="Select a sandbox" />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value={NONE_OPTION}>None</SelectItem>
+									{sandboxes.map((sandbox) => (
+										<SelectItem key={sandbox._id} value={sandbox._id}>
+											{sandbox.name}
+										</SelectItem>
+									))}
+								</SelectContent>
+							</Select>
+						</div>
+						<div className="space-y-1.5">
+							<p className="text-xs font-medium text-foreground">Color</p>
+							<WorkspaceColorPicker
+								value={renameWorkspaceColor}
+								onChange={setRenameWorkspaceColor}
+							/>
+						</div>
+						{confirmDeleteWorkspace ? (
+							<p className="rounded-md border border-destructive/30 bg-destructive/5 px-3 py-2 text-xs text-destructive">
+								Deleting this workspace will also delete its conversations.
+								Click delete again to confirm.
+							</p>
+						) : null}
+						<Button
+							type="button"
+							className="w-full"
+							disabled={
+								updateWorkspace.isPending ||
+								deleteWorkspace.isPending ||
+								!renameWorkspaceName.trim()
+							}
+							onClick={saveWorkspaceName}
+						>
+							{updateWorkspace.isPending ? (
+								<RoseCurveSpinner size={14} />
+							) : (
+								<Pencil size={14} />
+							)}
+							Save Workspace
+						</Button>
+						<Button
+							type="button"
+							variant="destructive"
+							className="w-full"
+							disabled={updateWorkspace.isPending || deleteWorkspace.isPending}
+							onClick={removeWorkspace}
+						>
+							{deleteWorkspace.isPending ? (
+								<RoseCurveSpinner size={14} />
+							) : (
+								<Trash2 size={14} />
+							)}
+							{confirmDeleteWorkspace
+								? "Confirm Delete Workspace"
+								: "Delete Workspace"}
+						</Button>
+					</div>
+				</DialogContent>
+			</Dialog>
+			<SettingsDialog open={settingsOpen} onOpenChange={setSettingsOpen} />
+			<UsageDialog open={usageOpen} onOpenChange={setUsageOpen} />
+		</div>
+	);
+}
+
+function SettingsDialog({
+	open,
+	onOpenChange,
+}: {
+	open: boolean;
+	onOpenChange: (open: boolean) => void;
+}) {
+	const { signOut, openUserProfile } = useClerk();
+	const { user } = useUser();
+	const navigate = useNavigate();
+	const { data: userSettings } = useQuery(
+		convexQuery(api.userSettings.get, {}),
+	);
+	const updateSettings = useMutation({
+		mutationFn: useConvexMutation(api.userSettings.update),
+	});
+
+	const handleSignOut = async () => {
+		await signOut();
+		navigate({ to: "/sign-in" });
+	};
+
+	return (
+		<Dialog open={open} onOpenChange={onOpenChange}>
+			<DialogContent className="sm:max-w-sm">
+				<DialogHeader>
+					<DialogTitle className="text-sm">Settings</DialogTitle>
+					<DialogDescription>Manage your preferences.</DialogDescription>
+				</DialogHeader>
+
+				<div className="space-y-4">
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Profile
+						</p>
+						<div className="flex items-center gap-3 py-1.5">
+							<Avatar className="h-8 w-8">
+								<AvatarImage src={user?.imageUrl} />
+								<AvatarFallback className="text-xs">
+									{user?.firstName?.[0]}
+									{user?.lastName?.[0]}
+								</AvatarFallback>
+							</Avatar>
+							<div className="min-w-0 flex-1">
+								<p className="truncate text-xs font-medium text-foreground">
+									{user?.fullName}
+								</p>
+								<p className="truncate text-[11px] text-muted-foreground">
+									{user?.primaryEmailAddress?.emailAddress}
+								</p>
+							</div>
+						</div>
+						<Button
+							variant="ghost"
+							size="sm"
+							className="w-full justify-start text-muted-foreground hover:text-foreground"
+							onClick={() => openUserProfile()}
+						>
+							<User size={12} />
+							Manage account
+						</Button>
+					</div>
+
+					<Separator />
+
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Behavior
+						</p>
+						<label
+							htmlFor="auto-switch"
+							className="flex items-center justify-between gap-3 py-1.5"
+						>
+							<div>
+								<p className="text-xs font-medium text-foreground">
+									Auto-switch harness
+								</p>
+								<p className="text-[11px] text-muted-foreground">
+									Switch to a conversation's harness when selected.
+								</p>
+							</div>
+							<Checkbox
+								id="auto-switch"
+								checked={userSettings?.autoSwitchHarness ?? true}
+								onCheckedChange={(checked) => {
+									updateSettings.mutate({
+										autoSwitchHarness: checked === true,
+									});
+								}}
+							/>
+						</label>
+						<div className="flex items-center justify-between gap-3 py-1.5">
+							<div>
+								<p className="text-xs font-medium text-foreground">
+									Model selector
+								</p>
+								<p className="text-[11px] text-muted-foreground">
+									Whether switching models in chat updates the session or the
+									harness.
+								</p>
+							</div>
+							<Select
+								value={(userSettings?.modelSelectorMode as string) ?? "session"}
+								onValueChange={(value) => {
+									updateSettings.mutate({
+										modelSelectorMode: value as "session" | "harness",
+									});
+								}}
+							>
+								<SelectTrigger className="w-[110px]">
+									<SelectValue />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value="session">Session</SelectItem>
+									<SelectItem value="harness">Harness</SelectItem>
+								</SelectContent>
+							</Select>
+						</div>
+					</div>
+
+					<Separator />
+
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Display
+						</p>
+						<div className="flex items-center justify-between gap-3 py-1.5">
+							<div>
+								<p className="text-xs font-medium text-foreground">
+									Message actions
+								</p>
+								<p className="text-[11px] text-muted-foreground">
+									Controls which buttons appear on messages.
+								</p>
+							</div>
+							<Select
+								value={(userSettings?.displayMode as string) ?? "standard"}
+								onValueChange={(value) => {
+									updateSettings.mutate({
+										displayMode: value as "zen" | "standard" | "developer",
+									});
+								}}
+							>
+								<SelectTrigger className="w-[120px]">
+									<SelectValue />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value="zen">Zen</SelectItem>
+									<SelectItem value="standard">Standard</SelectItem>
+									<SelectItem value="developer">Developer</SelectItem>
+								</SelectContent>
+							</Select>
+						</div>
+					</div>
+
+					<Separator />
+
+					{/* workspaces selector option */}
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Advanced Layout: Workspaces
+						</p>
+						<div className="flex items-center justify-between gap-3 py-1.5">
+							<div>
+								<p className="text-xs font-medium text-foreground">
+									Advanced Layout: Workspaces
+								</p>
+								<p className="text-[11px] text-muted-foreground">
+									Controls whether the basic layout or the workspaces advanced
+									layout is in use
+								</p>
+							</div>
+							<Select
+								value={(userSettings?.workspacesMode as string) ?? "basic"}
+								onValueChange={async (value) => {
+									await updateSettings.mutateAsync({
+										workspacesMode: value as "basic" | "workspaces",
+									});
+									onOpenChange(false);
+									navigate({
+										to: value === "workspaces" ? "/workspaces" : "/chat",
+										replace: true,
+									});
+								}}
+							>
+								<SelectTrigger className="w-[120px]">
+									<SelectValue />
+								</SelectTrigger>
+								<SelectContent>
+									<SelectItem value="basic">Basic</SelectItem>
+									<SelectItem value="workspaces">Workspaces</SelectItem>
+								</SelectContent>
+							</Select>
+						</div>
+					</div>
+
+					<Separator />
+
+					<div>
+						<p className="mb-2 text-[10px] font-medium uppercase tracking-wider text-muted-foreground">
+							Account
+						</p>
+						<Button
+							variant="ghost"
+							size="sm"
+							className="w-full justify-start text-muted-foreground hover:text-foreground"
+							onClick={handleSignOut}
+						>
+							<LogOut size={12} />
+							Sign out
+						</Button>
+					</div>
+				</div>
+			</DialogContent>
+		</Dialog>
+	);
+}
+
+function McpFailureBanner({
+	failures,
+	onDismiss,
+	onDismissAll,
+}: {
+	failures: Array<{
+		id: number;
+		serverName: string;
+		serverUrl: string;
+		reason: string;
+	}>;
+	onDismiss: (id: number) => void;
+	onDismissAll: () => void;
+}) {
+	if (failures.length === 0) return null;
+
+	return (
+		<AnimatePresence>
+			<motion.div
+				initial={{ height: 0, opacity: 0 }}
+				animate={{ height: "auto", opacity: 1 }}
+				exit={{ height: 0, opacity: 0 }}
+				transition={{ duration: 0.2 }}
+				className="border-b border-amber-500/20 bg-amber-500/5"
+			>
+				<div className="flex items-start gap-3 px-4 py-2.5">
+					<AlertTriangle size={14} className="mt-0.5 shrink-0 text-amber-500" />
+					<div className="min-w-0 flex-1">
+						<p className="text-xs font-medium text-amber-600 dark:text-amber-400">
+							{failures.length === 1
+								? "An MCP server failed to connect"
+								: `${failures.length} MCP servers failed to connect`}
+						</p>
+						<div className="mt-1 flex flex-wrap gap-1.5">
+							{failures.map((f) => (
+								<span
+									key={f.id}
+									className="inline-flex items-center gap-1.5 rounded-sm bg-amber-500/10 px-2 py-0.5 text-[10px] text-amber-700 dark:text-amber-300"
+								>
+									<span
+										className={`h-1 w-1 rounded-full ${f.reason === "auth_required" ? "bg-red-400" : "bg-amber-400"}`}
+									/>
+									{f.serverName}
+									{f.reason === "auth_required" && (
+										<span className="text-amber-500/70">— OAuth required</span>
+									)}
+									<button
+										type="button"
+										className="ml-0.5 opacity-50 transition-opacity hover:opacity-100"
+										onClick={() => onDismiss(f.id)}
+									>
+										<X size={8} />
+									</button>
+								</span>
+							))}
+						</div>
+						<p className="mt-1 text-[10px] text-amber-600/60 dark:text-amber-400/50">
+							Tools from these servers won't be available. Reconnect from the
+							MCP status menu above.
+						</p>
+					</div>
+					<button
+						type="button"
+						className="shrink-0 rounded-sm p-0.5 text-amber-500/50 transition-colors hover:bg-amber-500/10 hover:text-amber-500"
+						onClick={onDismissAll}
+					>
+						<X size={12} />
+					</button>
+				</div>
+			</motion.div>
+		</AnimatePresence>
+	);
+}
+
+function ChatHeader({
+	workspace,
+	harness,
+	sandboxes,
+	activeSandboxSelection,
+	effectiveSandboxEnabled,
+	sidebarOpen,
+	onToggleSidebar,
+	mcpHealthStatuses,
+	onRefreshHealth,
+	onSwapSandbox,
+	onAddSkill,
+	onRemoveSkill,
+}: {
+	workspace?: {
+		_id: Id<"workspaces">;
+		name: string;
+		color?: string;
+	};
+	harness?: {
+		_id: Id<"harnesses">;
+		name: string;
+		model: string;
+		status: string;
+		mcpServers: Array<{
+			name: string;
+			url: string;
+			authType: McpAuthType;
+			authToken?: string;
+		}>;
+		skills: SkillEntry[];
+		sandboxEnabled?: boolean;
+		daytonaSandboxId?: string;
+	};
+	sandboxes: Array<{
+		_id: Id<"sandboxes">;
+		name: string;
+		daytonaSandboxId: string;
+		status: string;
+		ephemeral: boolean;
+	}>;
+	activeSandboxSelection: SandboxSelection;
+	effectiveSandboxEnabled: boolean;
+	sidebarOpen: boolean;
+	onToggleSidebar: () => void;
+	mcpHealthStatuses?: Record<string, HealthStatus>;
+	onRefreshHealth: () => void;
+	onSwapSandbox: (sandboxId: Id<"sandboxes">) => void;
+	onAddSkill: (skill: SkillEntry) => void;
+	onRemoveSkill: (skill: SkillEntry) => void;
+}) {
+	const activeSandboxId =
+		activeSandboxSelection !== "harness" && activeSandboxSelection !== "none"
+			? activeSandboxSelection
+			: null;
+	const workspaceColorHex = getWorkspaceColorHex(workspace?.color);
+
+	return (
+		<header className="flex items-center justify-between border-b border-border px-4 py-2.5">
+			<div className="flex items-center gap-2">
+				{!sidebarOpen && (
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<Button variant="ghost" size="icon-xs" onClick={onToggleSidebar}>
+								<PanelLeftOpen size={14} />
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent>Open sidebar</TooltipContent>
+					</Tooltip>
+				)}
+
+				<div
+					className={cn(
+						"flex items-center gap-2 rounded-md border px-2.5 py-1.5",
+						workspaceColorHex
+							? "border-transparent text-foreground"
+							: "border-border/70 bg-muted/40 text-foreground",
+					)}
+					style={
+						workspaceColorHex
+							? { backgroundColor: workspaceColorHex }
+							: undefined
+					}
+				>
+					<span
+						className={cn(
+							"text-[10px] uppercase tracking-wider",
+							workspaceColorHex
+								? "text-foreground/70"
+								: "text-muted-foreground",
+						)}
+					>
+						Workspace
+					</span>
+					<span className="max-w-[220px] truncate text-xs font-semibold">
+						{workspace?.name ?? "No workspace selected"}
+					</span>
+				</div>
+
+				<div className="flex items-center gap-1.5 px-1.5 py-1">
+					<span className="text-xs font-medium">
+						{harness?.name ?? "No harness"}
+					</span>
+					{harness && (
+						<Badge variant="secondary" className="text-[10px]">
+							<Cpu size={8} />
+							{harness.model}
+						</Badge>
+					)}
+				</div>
+
+				{harness && (
+					<McpServerStatus
+						servers={harness.mcpServers}
+						harnessId={harness._id}
+						healthStatuses={mcpHealthStatuses}
+						onReconnected={onRefreshHealth}
+						onChanged={onRefreshHealth}
+					/>
+				)}
+
+				{harness && (
+					<HeaderSkillsMenu
+						skills={harness.skills}
+						onAdd={onAddSkill}
+						onRemove={onRemoveSkill}
+					/>
+				)}
+
+				<WorkspaceSandboxSelector
+					sandboxes={sandboxes}
+					activeSandboxId={activeSandboxId}
+					panelAvailable={effectiveSandboxEnabled}
+					onSwap={onSwapSandbox}
+				/>
+			</div>
+		</header>
+	);
+}
+
+/**
+ * Unified sandbox control in the workspace header: shows the attached
+ * sandbox, lets the user swap it (persists via workspaces.update), and
+ * toggles the inline sandbox panel from the same dropdown.
+ */
+function WorkspaceSandboxSelector({
+	sandboxes,
+	activeSandboxId,
+	panelAvailable,
+	onSwap,
+}: {
+	sandboxes: Array<{
+		_id: Id<"sandboxes">;
+		name: string;
+		status: string;
+		ephemeral: boolean;
+	}>;
+	activeSandboxId: Id<"sandboxes"> | null;
+	panelAvailable: boolean;
+	onSwap: (sandboxId: Id<"sandboxes">) => void;
+}) {
+	const panel = useSandboxPanel();
+	const active = activeSandboxId
+		? sandboxes.find((s) => s._id === activeSandboxId)
+		: undefined;
+	const label = active?.name ?? "No sandbox";
+	const panelOpen = !!panel?.panelOpen;
+
+	return (
+		<DropdownMenu>
+			<DropdownMenuTrigger asChild>
+				<Button
+					variant="ghost"
+					size="sm"
+					className={cn(
+						"gap-1.5 px-2",
+						panelOpen &&
+							"text-emerald-600 hover:text-emerald-600 dark:text-emerald-400 dark:hover:text-emerald-400",
+					)}
+				>
+					<Box size={12} />
+					<span className="max-w-[160px] truncate text-xs font-medium">
+						{label}
+					</span>
+					{panelOpen && (
+						<span className="h-1.5 w-1.5 bg-emerald-500" aria-hidden="true" />
+					)}
+					<ChevronDown size={12} className="text-muted-foreground" />
+				</Button>
+			</DropdownMenuTrigger>
+			<DropdownMenuContent align="start" className="min-w-60">
+				<DropdownMenuItem
+					onClick={() => panel?.togglePanel()}
+					disabled={!panelAvailable}
+				>
+					<span className="w-3 shrink-0">
+						{panelOpen ? <Check size={12} /> : null}
+					</span>
+					<div className="min-w-0 flex-1">
+						<p className="truncate text-xs">
+							{panelOpen ? "Close sandbox panel" : "Open sandbox panel"}
+						</p>
+						<p className="truncate text-[10px] text-muted-foreground">
+							{panelAvailable
+								? "Browse files and interact directly"
+								: "Attach a sandbox to enable the panel"}
+						</p>
+					</div>
+				</DropdownMenuItem>
+				{sandboxes.length > 0 && <DropdownMenuSeparator />}
+				{sandboxes.map((sandbox) => (
+					<DropdownMenuItem
+						key={sandbox._id}
+						onClick={() => onSwap(sandbox._id)}
+					>
+						<span className="w-3 shrink-0">
+							{activeSandboxId === sandbox._id ? <Check size={12} /> : null}
+						</span>
+						<div className="min-w-0 flex-1">
+							<p className="truncate text-xs">{sandbox.name}</p>
+							<p className="truncate text-[10px] text-muted-foreground">
+								{sandbox.status}
+								{sandbox.ephemeral ? " · ephemeral" : " · persistent"}
+							</p>
+						</div>
+					</DropdownMenuItem>
+				))}
+			</DropdownMenuContent>
+		</DropdownMenu>
+	);
+}
+
+/** Renders the sandbox panel (animated) when open. */
+function SandboxPanelToggle() {
+	const panel = useSandboxPanel();
+	if (!panel?.panelOpen) return null;
+	return <SandboxPanel />;
+}
+
+function ChatMessages({
+	conversationId,
+	messages,
+	streamingContent,
+	streamingReasoning,
+	activeToolCalls,
+	streamParts,
+	pendingDoneContent,
+	streamUsage,
+	streamModel,
+	onStreamSynced,
+	displayMode,
+	onRegenerate,
+	onFork,
+	onStartEditPrompt,
+	onCancelEditPrompt,
+	onSaveEditPrompt,
+	editingMessageId,
+	editingContent,
+	onEditContentChange,
+	allConversations,
+	activeConversation,
+	forkedFromConversationId,
+	forkedFromConversationTitle,
+	forkedAtMessageCount,
+	onNavigateToConversation,
+	isStreaming,
+	scrollToMessageId,
+	onClearScrollTarget,
+}: {
+	conversationId: Id<"conversations">;
+	messages: Array<{
+		_id: Id<"messages">;
+		role: "user" | "assistant";
+		content: string;
+		reasoning?: string;
+		toolCalls?: Array<{
+			tool: string;
+			arguments: unknown;
+			call_id: string;
+			result: string;
+		}>;
+		parts?: Array<{
+			type: "text" | "reasoning" | "tool_call";
+			content?: string;
+			tool?: string;
+			arguments?: unknown;
+			call_id?: string;
+			result?: string;
+		}>;
+		usage?: {
+			promptTokens: number;
+			completionTokens: number;
+			totalTokens: number;
+			cost?: number;
+		};
+		model?: string;
+		interrupted?: boolean;
+		attachments?: Array<{
+			storageId: Id<"_storage">;
+			mimeType: string;
+			fileName: string;
+			fileSize: number;
+		}>;
+	}>;
+	streamingContent: string | null;
+	streamingReasoning: string | null;
+	activeToolCalls: ToolCallEvent[];
+	streamParts: StreamPart[];
+	pendingDoneContent: string | null;
+	streamUsage: UsageData | null;
+	streamModel: string | null;
+	onStreamSynced: (convoId: string) => void;
+	displayMode: DisplayMode;
+	onRegenerate: (
+		messageId: Id<"messages">,
+		history: Array<{ role: string; content: string }>,
+	) => void;
+	onFork: (messageId: Id<"messages">) => void;
+	onStartEditPrompt: (messageId: Id<"messages">, content: string) => void;
+	onCancelEditPrompt: () => void;
+	onSaveEditPrompt: (messageId: Id<"messages">, newContent: string) => void;
+	editingMessageId: Id<"messages"> | null;
+	editingContent: string;
+	onEditContentChange: (content: string) => void;
+	allConversations: Array<{
+		_id: Id<"conversations">;
+		_creationTime: number;
+		editParentConversationId?: Id<"conversations">;
+		editParentMessageCount?: number;
+	}>;
+	activeConversation:
+		| {
+				_id: Id<"conversations">;
+				editParentConversationId?: Id<"conversations">;
+				editParentMessageCount?: number;
+		  }
+		| undefined;
+	forkedFromConversationId?: Id<"conversations">;
+	forkedFromConversationTitle?: string;
+	forkedAtMessageCount?: number;
+	onNavigateToConversation: (convoId: Id<"conversations"> | null) => void;
+	isStreaming: boolean;
+	scrollToMessageId: Id<"messages"> | null;
+	onClearScrollTarget: () => void;
+}) {
+	const scrollRef = useRef<HTMLDivElement>(null);
+	const highlightTimeoutRef = useRef<ReturnType<typeof setTimeout>>(null);
+	// "Pinned to bottom" — when true, auto-scroll follows new content.
+	// Unpins when the user scrolls up past a threshold; re-pins when they
+	// scroll back near the bottom or click the scroll-to-bottom button.
+	const [isPinned, setIsPinned] = useState(true);
+	const isPinnedRef = useRef(true);
+	// When true, suppress entrance animations and auto-scroll (set on conversation switches)
+	const skipNextTransition = useRef(false);
+	// Skip entry animation on conversation switches (but not the initial mount)
+	const prevConversationId = useRef(conversationId);
+	if (prevConversationId.current !== conversationId) {
+		prevConversationId.current = conversationId;
+		skipNextTransition.current = true;
+		// Re-pin when switching conversations
+		isPinnedRef.current = true;
+		setIsPinned(true);
+	}
+	// Snapshot captured at render time so animations can read it before the effect resets it
+	const skipEntryAnimation = skipNextTransition.current;
+
+	// Unpin when the user scrolls up (wheel or touch).
+	// We detect intent directly via input events — not scroll position —
+	// because scroll-position checks race against programmatic auto-scroll.
+	useEffect(() => {
+		const el = scrollRef.current;
+		if (!el) return;
+		let lastTouchY = 0;
+
+		const unpin = () => {
+			isPinnedRef.current = false;
+			setIsPinned(false);
+		};
+		const handleWheel = (e: WheelEvent) => {
+			if (e.deltaY < 0 && isPinnedRef.current && el.scrollTop > 0) {
+				unpin();
+			}
+		};
+		const handleTouchStart = (e: TouchEvent) => {
+			lastTouchY = e.touches[0].clientY;
+		};
+		const handleTouchMove = (e: TouchEvent) => {
+			if (
+				e.touches[0].clientY > lastTouchY &&
+				isPinnedRef.current &&
+				el.scrollTop > 0
+			) {
+				unpin();
+			}
+			lastTouchY = e.touches[0].clientY;
+		};
+
+		el.addEventListener("wheel", handleWheel, { passive: true });
+		el.addEventListener("touchstart", handleTouchStart, { passive: true });
+		el.addEventListener("touchmove", handleTouchMove, { passive: true });
+		return () => {
+			el.removeEventListener("wheel", handleWheel);
+			el.removeEventListener("touchstart", handleTouchStart);
+			el.removeEventListener("touchmove", handleTouchMove);
+		};
+	}, []);
+
+	const scrollToBottom = useCallback(() => {
+		if (!scrollRef.current) return;
+		scrollRef.current.scrollTop = scrollRef.current.scrollHeight;
+		isPinnedRef.current = true;
+		setIsPinned(true);
+	}, []);
+
+	// Build a lookup map for O(1) ancestor traversal
+	const convoMap = useMemo(() => {
+		const map = new Map<
+			Id<"conversations">,
+			{
+				_id: Id<"conversations">;
+				_creationTime: number;
+				editParentConversationId?: Id<"conversations">;
+				editParentMessageCount?: number;
+			}
+		>();
+		for (const c of allConversations) {
+			map.set(c._id, c);
+		}
+		return map;
+	}, [allConversations]);
+
+	// Walk the ancestor chain to find, for a given message position i,
+	// the root conversation (base of the edit tree at that position) and
+	// the "version conversation" (which copy of message i the active
+	// conversation is showing — used to determine current page index).
+	const findEditAncestor = useCallback(
+		(
+			convId: Id<"conversations">,
+			pos: number,
+		): { rootId: Id<"conversations">; versionId: Id<"conversations"> } => {
+			let currentId = convId;
+			for (;;) {
+				const c = convoMap.get(currentId);
+				if (!c?.editParentConversationId) {
+					// No parent — this conversation is the root at this position
+					return { rootId: currentId, versionId: currentId };
+				}
+				if (c.editParentMessageCount === pos) {
+					// Fork is exactly at this position — parent is the root
+					return {
+						rootId: c.editParentConversationId,
+						versionId: currentId,
+					};
+				}
+				if ((c.editParentMessageCount ?? 0) > pos) {
+					// Fork is at a later position — content at pos came from parent
+					currentId = c.editParentConversationId;
+				} else {
+					// Fork is at an earlier position — content at pos is
+					// original to this conversation, so it is the root here
+					return { rootId: currentId, versionId: currentId };
+				}
+			}
+		},
+		[convoMap],
+	);
+
+	// Detect whether Convex has synced the assistant message (computed during render)
+	const lastMsg = messages?.[messages.length - 1];
+	const convexHasMessage =
+		pendingDoneContent !== null &&
+		lastMsg?.role === "assistant" &&
+		lastMsg.content === pendingDoneContent;
+	const isActivelyStreaming =
+		streamingContent !== null || streamingReasoning !== null;
+	// Show the streaming bubble while we're waiting for or receiving a response
+	// (content, reasoning, tool calls) but Convex hasn't synced yet. Include
+	// `isStreaming` so the bubble appears immediately with a pending spinner
+	// before the first chunk arrives.
+	const showStreamingBubble =
+		(isStreaming ||
+			streamingContent !== null ||
+			streamingReasoning !== null ||
+			activeToolCalls.length > 0) &&
+		!convexHasMessage;
+
+	// Clear streaming state once Convex has synced — fire in effect to avoid setState during render
+	useEffect(() => {
+		if (convexHasMessage) {
+			onStreamSynced(conversationId);
+		}
+	}, [convexHasMessage, onStreamSynced, conversationId]);
+
+	// Re-pin when user sends a new message (they expect to see the response)
+	const messageCount = messages?.length ?? 0;
+	const lastMsgRole = messages?.[messages.length - 1]?.role;
+	// biome-ignore lint/correctness/useExhaustiveDependencies: only reset on new user message
+	useEffect(() => {
+		if (lastMsgRole === "user") {
+			isPinnedRef.current = true;
+			setIsPinned(true);
+		}
+	}, [messageCount]);
+
+	// Auto-scroll: runs in useLayoutEffect (synchronous, before paint) so it
+	// can't race with wheel/touch events that fire after paint. Once the user
+	// unpins, this becomes a no-op until they re-pin.
+	// biome-ignore lint/correctness/useExhaustiveDependencies: scroll on new messages and streaming
+	useLayoutEffect(() => {
+		if (skipNextTransition.current) {
+			skipNextTransition.current = false;
+			return;
+		}
+		if (scrollRef.current && isPinnedRef.current) {
+			scrollRef.current.scrollTop = scrollRef.current.scrollHeight;
+		}
+	}, [messages, streamingContent, streamingReasoning]);
+
+	useEffect(() => {
+		if (!scrollToMessageId || !messages?.length) return;
+
+		const el = document.querySelector(
+			`[data-message-id="${scrollToMessageId}"]`,
+		);
+		if (!el) return;
+
+		// Clear any previous highlight timeout
+		if (highlightTimeoutRef.current) clearTimeout(highlightTimeoutRef.current);
+
+		el.scrollIntoView({ behavior: "smooth", block: "center" });
+		// Add ring + yellow highlight
+		el.classList.add(
+			"ring-2",
+			"ring-primary",
+			"ring-offset-2",
+			"highlight-fade",
+		);
+
+		highlightTimeoutRef.current = setTimeout(() => {
+			el.classList.remove(
+				"ring-2",
+				"ring-primary",
+				"ring-offset-2",
+				"highlight-fade",
+			);
+			highlightTimeoutRef.current = null;
+		}, 3000);
+
+		onClearScrollTarget();
+	}, [scrollToMessageId, messages, onClearScrollTarget]);
+
+	if (messages.length === 0 && !isActivelyStreaming) {
+		return (
+			<div className="flex flex-1 items-center justify-center">
+				<p className="text-sm text-muted-foreground">
+					Send a message to start the conversation.
+				</p>
+			</div>
+		);
+	}
+
+	return (
+		<div ref={scrollRef} className="flex-1 overflow-y-auto">
+			<div className="mx-auto max-w-3xl px-4 py-6">
+				{(() => {
+					const lastUserMsgIdx = messages
+						? messages.reduce(
+								(last, m, idx) => (m.role === "user" ? idx : last),
+								-1,
+							)
+						: -1;
+					return messages?.map((msg, i) => {
+						// Skip entrance animation for the message that just replaced the streaming bubble
+						const isJustSynced = convexHasMessage && msg._id === lastMsg?._id;
+						const showForkBanner =
+							forkedFromConversationId !== undefined &&
+							forkedAtMessageCount !== undefined &&
+							i === forkedAtMessageCount - 1;
+						const { rootId: editRootId, versionId: editVersionId } =
+							msg.role === "user" && activeConversation
+								? findEditAncestor(activeConversation._id, i)
+								: { rootId: undefined, versionId: undefined };
+						const editSiblings =
+							editRootId !== undefined
+								? allConversations.filter(
+										(c) =>
+											c.editParentConversationId === editRootId &&
+											c.editParentMessageCount === i,
+									)
+								: [];
+						const editAllVersionIds =
+							editSiblings.length > 0
+								? [
+										editRootId as Id<"conversations">,
+										...[...editSiblings]
+											.sort((a, b) => a._creationTime - b._creationTime)
+											.map((c) => c._id),
+									]
+								: [];
+						const editVersionIdx =
+							editAllVersionIds.length === 0 || editVersionId === undefined
+								? -1
+								: editAllVersionIds.indexOf(editVersionId);
+						return (
+							<React.Fragment key={msg._id}>
+								<motion.div
+									data-message-id={msg._id}
+									initial={
+										isJustSynced || skipEntryAnimation
+											? false
+											: { opacity: 0, y: 8 }
+									}
+									animate={{ opacity: 1, y: 0 }}
+									transition={
+										isJustSynced || skipEntryAnimation
+											? { duration: 0 }
+											: { delay: i * 0.03 }
+									}
+									className={cn(
+										"group mb-6 flex gap-3",
+										msg.role === "user" && "justify-end",
+									)}
+								>
+									{msg.role === "assistant" && (
+										<Avatar className="h-7 w-7 shrink-0">
+											<AvatarFallback className="bg-foreground text-background text-[10px]">
+												<Sparkles size={12} />
+											</AvatarFallback>
+										</Avatar>
+									)}
+									<div
+										className={cn(
+											"max-w-[80%]",
+											msg.role === "user" && "flex flex-col items-end",
+										)}
+									>
+										{msg.role === "user" &&
+											msg.attachments &&
+											msg.attachments.length > 0 && (
+												<MessageAttachments attachments={msg.attachments} />
+											)}
+										<div
+											className={cn(
+												"text-sm leading-relaxed",
+												msg.role === "user" && editingMessageId !== msg._id
+													? "bg-foreground px-3.5 py-2.5 text-background"
+													: "text-foreground",
+											)}
+										>
+											{msg.role === "assistant" &&
+											(msg as Record<string, unknown>).parts ? (
+												(
+													(msg as Record<string, unknown>).parts as Array<{
+														type: "text" | "reasoning" | "tool_call";
+														content?: string;
+														tool?: string;
+														arguments?: Record<string, unknown>;
+														call_id?: string;
+														result?: string;
+													}>
+												).map((part) => {
+													const key =
+														part.type === "tool_call"
+															? (part.call_id ?? part.tool)
+															: `${part.type}-${part.content?.slice(0, 32)}`;
+													if (part.type === "reasoning" && part.content) {
+														return (
+															<ThinkingBlock
+																key={key}
+																content={part.content}
+																isStreaming={false}
+															/>
+														);
+													}
+													if (part.type === "text" && part.content) {
+														return (
+															<MarkdownMessage
+																key={key}
+																content={part.content}
+															/>
+														);
+													}
+													if (part.type === "tool_call" && part.tool) {
+														return (
+															<ToolCallBlock
+																key={key}
+																tool={part.tool}
+																arguments={part.arguments ?? {}}
+																result={part.result}
+																isStreaming={false}
+															/>
+														);
+													}
+													return null;
+												})
+											) : (
+												<>
+													{msg.role === "assistant" && msg.reasoning && (
+														<ThinkingBlock
+															content={msg.reasoning}
+															isStreaming={false}
+														/>
+													)}
+													{msg.role === "assistant" ? (
+														<MarkdownMessage content={msg.content} />
+													) : editingMessageId === msg._id ? (
+														<div className="flex flex-col gap-2">
+															<textarea
+																ref={(el) => {
+																	if (el) {
+																		el.focus();
+																		el.setSelectionRange(
+																			el.value.length,
+																			el.value.length,
+																		);
+																	}
+																}}
+																className="min-h-[80px] w-full resize-none rounded border border-border bg-background px-3 py-2 text-sm text-foreground focus:outline-none focus:ring-1 focus:ring-ring"
+																value={editingContent}
+																onChange={(e) =>
+																	onEditContentChange(e.target.value)
+																}
+																onKeyDown={(e) => {
+																	if (e.key === "Enter" && !e.shiftKey) {
+																		e.preventDefault();
+																		onSaveEditPrompt(msg._id, editingContent);
+																	}
+																}}
+															/>
+															<div className="flex gap-2">
+																<button
+																	type="button"
+																	onClick={() =>
+																		onSaveEditPrompt(msg._id, editingContent)
+																	}
+																	className="rounded bg-foreground px-3 py-1 text-xs text-background hover:bg-foreground/90"
+																>
+																	Save
+																</button>
+																<button
+																	type="button"
+																	onClick={onCancelEditPrompt}
+																	className="rounded border border-border px-3 py-1 text-xs text-foreground hover:bg-muted"
+																>
+																	Cancel
+																</button>
+															</div>
+														</div>
+													) : (
+														<p className="whitespace-pre-wrap">{msg.content}</p>
+													)}
+													{msg.role === "assistant" &&
+														msg.toolCalls &&
+														msg.toolCalls.length > 0 && (
+															<div className="mt-2 space-y-1">
+																{(
+																	msg.toolCalls as Array<{
+																		tool: string;
+																		arguments: Record<string, unknown>;
+																		call_id: string;
+																		result: string;
+																	}>
+																).map((tc) => (
+																	<ToolCallBlock
+																		key={tc.call_id}
+																		tool={tc.tool}
+																		arguments={tc.arguments}
+																		result={tc.result}
+																		isStreaming={false}
+																	/>
+																))}
+															</div>
+														)}
+												</>
+											)}
+										</div>
+										{msg.role === "assistant" && msg.interrupted && (
+											<div className="mt-1 flex items-center gap-1.5 text-xs text-amber-500">
+												<span className="inline-block h-1.5 w-1.5 rounded-full bg-amber-500" />
+												Response interrupted
+											</div>
+										)}
+										<MessageActions
+											content={msg.content}
+											role={msg.role}
+											displayMode={displayMode}
+											isStreaming={isStreaming}
+											usage={
+												msg.role === "assistant" && msg.usage
+													? (msg.usage as UsageData)
+													: undefined
+											}
+											model={
+												msg.role === "assistant"
+													? (msg.model ?? undefined)
+													: undefined
+											}
+											onRegenerate={
+												msg.role === "assistant"
+													? () => {
+															if (!messages) return;
+															const idx = messages.findIndex(
+																(m) => m._id === msg._id,
+															);
+															const history = messages
+																.slice(0, idx)
+																.map((m) => ({
+																	role: m.role,
+																	content: m.content,
+																}));
+															onRegenerate(msg._id, history);
+														}
+													: undefined
+											}
+											onFork={
+												msg.role === "assistant"
+													? () => onFork(msg._id)
+													: undefined
+											}
+											onEditPrompt={
+												msg.role === "user" && i === lastUserMsgIdx
+													? () => onStartEditPrompt(msg._id, msg.content)
+													: undefined
+											}
+										/>
+										{editVersionIdx !== -1 && editAllVersionIds.length > 1 && (
+											<div className="mt-1 flex items-center justify-end gap-1 text-[10px] text-muted-foreground">
+												<button
+													type="button"
+													disabled={editVersionIdx === 0}
+													onClick={() => {
+														skipNextTransition.current = true;
+														onNavigateToConversation(
+															editAllVersionIds[
+																editVersionIdx - 1
+															] as Id<"conversations">,
+														);
+													}}
+													className="disabled:opacity-30 hover:text-foreground"
+												>
+													←
+												</button>
+												<span>
+													{editVersionIdx + 1}/{editAllVersionIds.length}
+												</span>
+												<button
+													type="button"
+													disabled={
+														editVersionIdx === editAllVersionIds.length - 1
+													}
+													onClick={() => {
+														skipNextTransition.current = true;
+														onNavigateToConversation(
+															editAllVersionIds[
+																editVersionIdx + 1
+															] as Id<"conversations">,
+														);
+													}}
+													className="disabled:opacity-30 hover:text-foreground"
+												>
+													→
+												</button>
+											</div>
+										)}
+									</div>
+									{msg.role === "user" && (
+										<Avatar className="h-7 w-7 shrink-0">
+											<AvatarFallback className="bg-muted text-foreground text-[10px]">
+												U
+											</AvatarFallback>
+										</Avatar>
+									)}
+								</motion.div>
+								{showForkBanner && forkedFromConversationId && (
+									<div className="my-4 flex items-center gap-3 text-xs text-muted-foreground">
+										<div className="h-px flex-1 bg-border" />
+										<span>
+											Branched from{" "}
+											<button
+												type="button"
+												onClick={() =>
+													onNavigateToConversation(
+														forkedFromConversationId ?? null,
+													)
+												}
+												className="font-medium text-foreground underline underline-offset-2 hover:text-foreground/80"
+											>
+												{forkedFromConversationTitle}
+											</button>
+										</span>
+										<div className="h-px flex-1 bg-border" />
+									</div>
+								)}
+							</React.Fragment>
+						);
+					});
+				})()}
+
+				{showStreamingBubble && (
+					<motion.div
+						initial={{ opacity: 0, y: 8 }}
+						animate={{ opacity: 1, y: 0 }}
+						className="mb-6 flex gap-3"
+					>
+						<Avatar className="h-7 w-7 shrink-0">
+							<AvatarFallback className="bg-foreground text-background text-[10px]">
+								<Sparkles size={12} />
+							</AvatarFallback>
+						</Avatar>
+						<div className="max-w-[80%]">
+							<div className="text-sm leading-relaxed text-foreground">
+								{streamParts.length > 0
+									? streamParts.map((part, idx) => {
+											const isLast = idx === streamParts.length - 1;
+											if (part.type === "reasoning" && part.content) {
+												return (
+													<ThinkingBlock
+														key={`sp-${part.type}-${idx}`}
+														content={part.content}
+														isStreaming={isLast && isActivelyStreaming}
+													/>
+												);
+											}
+											if (part.type === "text" && part.content) {
+												return (
+													<MarkdownMessage
+														key={`sp-${part.type}-${idx}`}
+														content={part.content}
+													/>
+												);
+											}
+											if (part.type === "tool_call" && part.tool) {
+												return (
+													<ToolCallBlock
+														key={part.call_id ?? `sp-tc-${idx}`}
+														tool={part.tool}
+														arguments={part.arguments ?? {}}
+														result={part.result}
+														isStreaming={!part.result}
+													/>
+												);
+											}
+											return null;
+										})
+									: !streamingReasoning &&
+										activeToolCalls.length === 0 &&
+										!streamingContent && <PendingResponseIndicator />}
+							</div>
+							{displayMode === "developer" && streamUsage && (
+								<div className="flex items-center gap-3 pt-1">
+									<StreamingUsage usage={streamUsage} model={streamModel} />
+								</div>
+							)}
+						</div>
+					</motion.div>
+				)}
+			</div>
+			{!isPinned && (
+				<div className="sticky bottom-4 flex justify-center pointer-events-none">
+					<button
+						type="button"
+						onClick={scrollToBottom}
+						className="pointer-events-auto rounded-full border border-border bg-background p-2 shadow-md transition-colors hover:bg-muted"
+					>
+						<ChevronDown size={16} />
+					</button>
+				</div>
+			)}
+		</div>
+	);
+}
+
+function ThinkingBlock({
+	content,
+	isStreaming,
+}: {
+	content: string;
+	isStreaming: boolean;
+}) {
+	const [open, setOpen] = useState(true);
+	const [userToggled, setUserToggled] = useState(false);
+
+	// Auto-collapse when thinking finishes, unless the user manually toggled
+	useEffect(() => {
+		if (!isStreaming && !userToggled) {
+			setOpen(false);
+		}
+	}, [isStreaming, userToggled]);
+
+	return (
+		<div className="mb-2">
+			<button
+				type="button"
+				onClick={() => {
+					setUserToggled(true);
+					setOpen((o) => !o);
+				}}
+				className="flex items-center gap-1.5 text-[11px] text-muted-foreground transition-colors hover:text-foreground"
+			>
+				<motion.span
+					animate={{ rotate: open ? 90 : 0 }}
+					transition={{ duration: 0.15 }}
+					className="flex"
+				>
+					<ChevronRight size={10} />
+				</motion.span>
+				<Brain size={10} />
+				{isStreaming ? (
+					<span className="flex items-center gap-1">
+						Thinking
+						<RoseCurveSpinner size={8} />
+					</span>
+				) : (
+					<span>Thought process</span>
+				)}
+			</button>
+			<AnimatePresence>
+				{open && (
+					<motion.div
+						initial={{ height: 0, opacity: 0 }}
+						animate={{ height: "auto", opacity: 1 }}
+						exit={{ height: 0, opacity: 0 }}
+						transition={{ duration: 0.2 }}
+						className="overflow-hidden"
+					>
+						<div className="mt-1.5 border-l-2 border-muted-foreground/20 pl-3 text-[11px] leading-relaxed text-muted-foreground">
+							<MarkdownMessage content={content} />
+						</div>
+					</motion.div>
+				)}
+			</AnimatePresence>
+		</div>
+	);
+}
+
+function ToolCallBlock({
+	tool,
+	arguments: args,
+	result,
+	isStreaming,
+}: {
+	tool: string;
+	arguments: Record<string, unknown>;
+	result?: string;
+	isStreaming: boolean;
+}) {
+	const [open, setOpen] = useState(false);
+	const isSandboxTool = tool.startsWith("sandbox__");
+	const displayName = isSandboxTool
+		? tool.replace("sandbox__", "sandbox / ")
+		: tool.includes("__")
+			? tool.replace("__", " / ")
+			: tool;
+	const authError = result ? parseAuthRequiredError(result) : null;
+
+	// For sandbox tools with results, render rich result inline (always visible)
+	if (isSandboxTool && result && !isStreaming && !authError) {
+		return (
+			<div className="mb-1.5">
+				<button
+					type="button"
+					onClick={() => setOpen((o) => !o)}
+					className="flex items-center gap-1.5 text-[11px] text-muted-foreground transition-colors hover:text-foreground"
+				>
+					<motion.span
+						animate={{ rotate: open ? 90 : 0 }}
+						transition={{ duration: 0.15 }}
+						className="flex"
+					>
+						<ChevronRight size={10} />
+					</motion.span>
+					<Wrench size={10} className="text-emerald-500" />
+					<span>{displayName}</span>
+				</button>
+
+				{/* Rich sandbox result (always visible) */}
+				<div className="ml-4 mt-1">
+					<SandboxResult result={result} toolName={tool} args={args} />
+				</div>
+
+				{/* Collapsible raw arguments (for developer mode) */}
+				<AnimatePresence>
+					{open && (
+						<motion.div
+							initial={{ height: 0, opacity: 0 }}
+							animate={{ height: "auto", opacity: 1 }}
+							exit={{ height: 0, opacity: 0 }}
+							transition={{ duration: 0.2 }}
+							className="overflow-hidden"
+						>
+							<div className="mt-1.5 ml-4 space-y-2 border-l-2 border-muted-foreground/20 pl-3 text-[11px] leading-relaxed text-muted-foreground">
+								<div>
+									<p className="mb-0.5 font-medium text-foreground/70">
+										Arguments
+									</p>
+									<pre className="overflow-x-auto whitespace-pre-wrap break-all rounded bg-muted/50 p-2 font-mono text-[10px]">
+										{JSON.stringify(args, null, 2)}
+									</pre>
+								</div>
+							</div>
+						</motion.div>
+					)}
+				</AnimatePresence>
+			</div>
+		);
+	}
+
+	// Default rendering for MCP tools and streaming sandbox tools
+	return (
+		<div className="mb-1.5">
+			<button
+				type="button"
+				onClick={() => setOpen((o) => !o)}
+				className="flex items-center gap-1.5 text-[11px] text-muted-foreground transition-colors hover:text-foreground"
+			>
+				<motion.span
+					animate={{ rotate: open ? 90 : 0 }}
+					transition={{ duration: 0.15 }}
+					className="flex"
+				>
+					<ChevronRight size={10} />
+				</motion.span>
+				{isStreaming ? (
+					<RoseCurveSpinner size={10} />
+				) : authError ? (
+					<Wrench size={10} className="text-destructive" />
+				) : (
+					<Wrench size={10} className="text-emerald-500" />
+				)}
+				<span>
+					{displayName}
+					{isStreaming ? "..." : ""}
+				</span>
+				{authError && (
+					<span className="text-[10px] text-destructive">— auth required</span>
+				)}
+			</button>
+
+			{authError && (
+				<div className="mt-1.5 ml-4">
+					<OAuthReconnectPrompt
+						serverUrl={authError.serverUrl}
+						errorMessage={authError.error}
+					/>
+				</div>
+			)}
+
+			<AnimatePresence>
+				{open && (
+					<motion.div
+						initial={{ height: 0, opacity: 0 }}
+						animate={{ height: "auto", opacity: 1 }}
+						exit={{ height: 0, opacity: 0 }}
+						transition={{ duration: 0.2 }}
+						className="overflow-hidden"
+					>
+						<div className="mt-1.5 space-y-2 border-l-2 border-muted-foreground/20 pl-3 text-[11px] leading-relaxed text-muted-foreground">
+							<div>
+								<p className="mb-0.5 font-medium text-foreground/70">
+									Arguments
+								</p>
+								<pre className="overflow-x-auto whitespace-pre-wrap break-all rounded bg-muted/50 p-2 font-mono text-[10px]">
+									{JSON.stringify(args, null, 2)}
+								</pre>
+							</div>
+							{result && !authError && (
+								<div>
+									<p className="mb-0.5 font-medium text-foreground/70">
+										Result
+									</p>
+									<pre className="max-h-40 overflow-auto whitespace-pre-wrap break-all rounded bg-muted/50 p-2 font-mono text-[10px]">
+										{result}
+									</pre>
+								</div>
+							)}
+						</div>
+					</motion.div>
+				)}
+			</AnimatePresence>
+		</div>
+	);
+}
+
+function StreamingUsage({
+	usage,
+	model,
+}: {
+	usage: UsageData;
+	model: string | null;
+}) {
+	const parts: string[] = [];
+	if (model) parts.push(model);
+	parts.push(`${usage.promptTokens} in / ${usage.completionTokens} out`);
+	if (usage.cost != null) parts.push(`$${usage.cost.toFixed(4)}`);
+	return (
+		<span className="text-[10px] text-muted-foreground">
+			{parts.join(" · ")}
+		</span>
+	);
+}
+
+function EmptyChat({
+	suggestedPrompts,
+	onPromptClick,
+}: {
+	suggestedPrompts?: string[];
+	onPromptClick: (text: string) => void;
+}) {
+	const prompts =
+		suggestedPrompts && suggestedPrompts.length > 0
+			? suggestedPrompts
+			: SUGGESTED_PROMPTS;
+
+	return (
+		<div className="flex flex-1 flex-col items-center justify-center px-4">
+			<motion.div
+				initial={{ opacity: 0, y: 12 }}
+				animate={{ opacity: 1, y: 0 }}
+				transition={{ duration: 0.4 }}
+				className="text-center"
+			>
+				<div className="mx-auto mb-6 flex items-center justify-center">
+					<ThinkingFiveSpinner size={96} className="text-foreground" />
+				</div>
+				<h2 className="mb-2 text-lg font-medium text-foreground">
+					Start a conversation
+				</h2>
+				<p className="mb-8 text-sm text-muted-foreground">
+					Ask anything — your agent is equipped and ready.
+				</p>
+				<div className="grid max-w-lg gap-2 sm:grid-cols-2">
+					{prompts.slice(0, 4).map((prompt) => (
+						<button
+							key={prompt}
+							type="button"
+							onClick={() => onPromptClick(prompt)}
+							className="border border-border p-3 text-left text-xs text-muted-foreground transition-colors hover:border-foreground/20 hover:bg-muted hover:text-foreground"
+						>
+							{prompt}
+						</button>
+					))}
+				</div>
+			</motion.div>
+		</div>
+	);
+}
+
+function EmptyWorkspaceState({
+	hasWorkspaces,
+	onCreateWorkspace,
+}: {
+	hasWorkspaces: boolean;
+	onCreateWorkspace: () => void;
+}) {
+	return (
+		<div className="flex flex-1 flex-col items-center justify-center px-4">
+			<motion.div
+				initial={{ opacity: 0, y: 12 }}
+				animate={{ opacity: 1, y: 0 }}
+				transition={{ duration: 0.4 }}
+				className="max-w-md text-center"
+			>
+				<div className="mx-auto mb-6 flex h-14 w-14 items-center justify-center bg-foreground">
+					<Sparkles size={24} className="text-background" />
+				</div>
+				<h2 className="mb-2 text-lg font-medium text-foreground">
+					{hasWorkspaces ? "Pick a workspace" : "Create your first workspace"}
+				</h2>
+				<p className="mb-6 text-sm text-muted-foreground">
+					{hasWorkspaces ? (
+						"Select one from the sidebar, or create a new workspace to start a fresh conversation."
+					) : (
+						<>
+							A workspace pairs a{" "}
+							<span className="font-medium text-foreground">harness</span>{" "}
+							(model + MCP servers + skills) with a{" "}
+							<span className="font-medium text-foreground">sandbox</span> (the
+							environment your agent runs in), and keeps each conversation
+							scoped to that pairing.
+						</>
+					)}
+				</p>
+				<Button onClick={onCreateWorkspace} className="gap-2">
+					<Plus size={14} />
+					{hasWorkspaces ? "New workspace" : "Create workspace"}
+				</Button>
+				<p className="mt-4 text-xs text-muted-foreground">
+					You can also use the{" "}
+					<Plus size={10} className="inline -translate-y-px" /> button at the
+					top of the Workspaces panel in the sidebar.
+				</p>
+			</motion.div>
+		</div>
+	);
+}
+
+function NoHarnessAttachedState({
+	workspaceName,
+	onAttachHarness,
+}: {
+	workspaceName: string;
+	onAttachHarness: () => void;
+}) {
+	return (
+		<div className="flex flex-1 flex-col items-center justify-center px-4">
+			<motion.div
+				initial={{ opacity: 0, y: 12 }}
+				animate={{ opacity: 1, y: 0 }}
+				transition={{ duration: 0.4 }}
+				className="max-w-sm text-center"
+			>
+				<div className="mx-auto mb-6 flex h-14 w-14 items-center justify-center bg-foreground">
+					<Wrench size={24} className="text-background" />
+				</div>
+				<h2 className="mb-2 text-lg font-medium text-foreground">
+					No harness attached
+				</h2>
+				<p className="mb-6 text-sm text-muted-foreground">
+					<span className="font-medium text-foreground">{workspaceName}</span>{" "}
+					doesn't have a harness yet. Attach one to choose the model, MCP
+					servers, and skills your agent uses in this workspace.
+				</p>
+				<Button onClick={onAttachHarness} className="gap-2">
+					<Wrench size={14} />
+					Attach a harness
+				</Button>
+			</motion.div>
+		</div>
+	);
+}
+
+function ChatInput({
+	conversationId,
+	activeHarness,
+	sessionModel,
+	modelSelectorMode = "session",
+	onSessionModelChange,
+	onConvoCreated,
+	workspaceId,
+	sandboxEnabled,
+	sandboxId,
+	isStreaming,
+	onStream,
+	onInterrupt,
+	onEnqueue,
+	messages: existingMessages,
+	messageQueue,
+	onDequeue,
+	onSendNow,
+	pendingPrompt,
+	onPendingPromptConsumed,
+	budgetExceeded,
+	disabled = false,
+	placeholder = "Send a message...",
+}: {
+	conversationId: Id<"conversations"> | null;
+	activeHarness?: {
+		_id: Id<"harnesses">;
+		name: string;
+		model: string;
+		mcpServers: Array<{
+			name: string;
+			url: string;
+			authType: McpAuthType;
+			authToken?: string;
+		}>;
+		skills: SkillEntry[];
+		systemPrompt?: string;
+		sandboxEnabled?: boolean;
+		daytonaSandboxId?: string;
+		sandboxConfig?: {
+			persistent: boolean;
+			autoStart: boolean;
+			defaultLanguage: string;
+			resourceTier: "basic" | "standard" | "performance";
+			gitRepo?: string;
+		};
+	};
+	onConvoCreated: (id: Id<"conversations">) => void;
+	workspaceId?: Id<"workspaces">;
+	sandboxEnabled: boolean;
+	sandboxId?: string;
+	isStreaming: boolean;
+	onStream: (body: {
+		messages: Array<{
+			role: string;
+			content: string | Array<Record<string, unknown>>;
+		}>;
+		harness: {
+			model: string;
+			mcp_servers: Array<{
+				name: string;
+				url: string;
+				auth_type: McpAuthType;
+				auth_token?: string;
+			}>;
+			skills: SkillEntry[];
+			name: string;
+			harness_id?: string;
+			system_prompt?: string;
+			sandbox_enabled?: boolean;
+			sandbox_id?: string;
+			sandbox_config?: {
+				persistent: boolean;
+				auto_start: boolean;
+				default_language: string;
+				resource_tier: string;
+			};
+		};
+		conversation_id: string;
+	}) => Promise<void>;
+	onInterrupt: (convoId: string) => void;
+	onEnqueue: (content: string) => void;
+	messages?: Array<{
+		role: string;
+		content: string;
+		attachments?: Array<{
+			storageId: Id<"_storage">;
+			mimeType: string;
+			fileName: string;
+			fileSize: number;
+		}>;
+	}>;
+	messageQueue: { id: number; content: string }[];
+	onDequeue: (index: number) => void;
+	onSendNow: (index: number) => void;
+	pendingPrompt?: string | null;
+	sessionModel?: string | null;
+	modelSelectorMode?: "session" | "harness";
+	onSessionModelChange: (model: string | null) => void;
+	onPendingPromptConsumed?: () => void;
+	budgetExceeded?: boolean;
+	disabled?: boolean;
+	placeholder?: string;
+}) {
+	const [text, setText] = useState("");
+	const textareaRef = useRef<HTMLTextAreaElement>(null);
+	const fileInputRef = useRef<HTMLInputElement>(null);
+	const [isDragOver, setIsDragOver] = useState(false);
+
+	const effectiveModel = sessionModel ?? activeHarness?.model;
+	const currentModelLabel =
+		MODELS.find((m) => m.value === effectiveModel)?.label ??
+		effectiveModel ??
+		"Model";
+
+	const supportsMedia = modelSupportsMedia(effectiveModel);
+	const supportsAudio = modelSupportsAudio(effectiveModel);
+	const supportsAnyAttachment = supportsMedia || supportsAudio;
+	const modelAccept = acceptString(effectiveModel);
+	const modelAllowedMimes = useMemo(
+		() => allowedMimeTypes(effectiveModel),
+		[effectiveModel],
+	);
+
+	const {
+		attachments,
+		addFiles,
+		removeAttachment,
+		clearAttachments,
+		hasUploading,
+		resolveSignedUrls,
+	} = useFileAttachments(modelAllowedMimes);
+
+	// Clear attachments if the active model switches to one that doesn't support media
+	useEffect(() => {
+		if (!supportsAnyAttachment) clearAttachments();
+	}, [supportsAnyAttachment, clearAttachments]);
+
+	// ── Voice recording ──────────────────────────────────────────────
+	const [isRecording, setIsRecording] = useState(false);
+	const mediaRecorderRef = useRef<MediaRecorder | null>(null);
+	const chunksRef = useRef<Blob[]>([]);
+
+	const startRecording = useCallback(async () => {
+		try {
+			const stream = await navigator.mediaDevices.getUserMedia({ audio: true });
+			const recorder = new MediaRecorder(stream, { mimeType: "audio/webm" });
+			chunksRef.current = [];
+			recorder.ondataavailable = (e) => {
+				if (e.data.size > 0) chunksRef.current.push(e.data);
+			};
+			recorder.onstop = () => {
+				const blob = new Blob(chunksRef.current, { type: "audio/webm" });
+				const file = new File([blob], `recording-${Date.now()}.webm`, {
+					type: "audio/webm",
+				});
+				addFiles([file]);
+				for (const t of stream.getTracks()) t.stop();
+			};
+			mediaRecorderRef.current = recorder;
+			recorder.start();
+			setIsRecording(true);
+		} catch {
+			toast.error("Microphone access denied");
+		}
+	}, [addFiles]);
+
+	const stopRecording = useCallback(() => {
+		mediaRecorderRef.current?.stop();
+		mediaRecorderRef.current = null;
+		setIsRecording(false);
+	}, []);
+
+	// Fill input from suggested prompt click
+	useEffect(() => {
+		if (pendingPrompt) {
+			setText(pendingPrompt);
+			onPendingPromptConsumed?.();
+			// Focus and resize after state update
+			requestAnimationFrame(() => {
+				textareaRef.current?.focus();
+			});
+		}
+	}, [pendingPrompt, onPendingPromptConsumed]);
+
+	// Prompt history state
+	const [historyIndex, setHistoryIndex] = useState(-1);
+	const [draft, setDraft] = useState("");
+
+	const userPrompts = useMemo(
+		() =>
+			existingMessages
+				?.filter((m) => m.role === "user")
+				.map((m) => m.content)
+				.reverse() ?? [],
+		[existingMessages],
+	);
+
+	const createConvo = useMutation({
+		mutationFn: useConvexMutation(api.conversations.create),
+	});
+	const sendMessage = useMutation({
+		mutationFn: useConvexMutation(api.messages.send),
+	});
+
+	const adjustHeight = useCallback(() => {
+		const ta = textareaRef.current;
+		if (ta) {
+			ta.style.height = "auto";
+			ta.style.height = `${Math.min(ta.scrollHeight, 200)}px`;
+		}
+	}, []);
+
+	// biome-ignore lint/correctness/useExhaustiveDependencies: resize on text change
+	useEffect(() => {
+		adjustHeight();
+	}, [text, adjustHeight]);
+
+	const handleSend = async () => {
+		const content = text.trim();
+		if (!content || !activeHarness || budgetExceeded) {
+			return;
+		}
+
+		// If streaming, just enqueue — don't interrupt
+		if (isStreaming && conversationId) {
+			onEnqueue(content);
+			return;
+		}
+
+		const resolvedSandboxId = sandboxEnabled ? sandboxId : undefined;
+
+		setText("");
+		setHistoryIndex(-1);
+		setDraft("");
+		clearAttachments();
+
+		// Snapshot harness config at send time (convert to snake_case for FastAPI)
+		const harnessConfig = {
+			model: effectiveModel ?? activeHarness.model,
+			mcp_servers: activeHarness.mcpServers.map((s) => ({
+				name: s.name,
+				url: s.url,
+				auth_type: s.authType as McpAuthType,
+				auth_token: s.authToken,
+			})),
+			skills: activeHarness.skills ?? [],
+			name: activeHarness.name,
+			harness_id: activeHarness._id,
+			system_prompt: activeHarness.systemPrompt ?? undefined,
+			sandbox_enabled: Boolean(resolvedSandboxId),
+			sandbox_id: resolvedSandboxId,
+			sandbox_config: activeHarness.sandboxConfig
+				? {
+						persistent: activeHarness.sandboxConfig.persistent,
+						auto_start: activeHarness.sandboxConfig.autoStart,
+						default_language: activeHarness.sandboxConfig.defaultLanguage,
+						resource_tier: activeHarness.sandboxConfig.resourceTier,
+					}
+				: undefined,
+		};
+
+		let convoId = conversationId;
+		if (!convoId) {
+			const newId = await createConvo.mutateAsync({
+				title: content.slice(0, 60),
+				harnessId: activeHarness._id,
+				...(workspaceId ? { workspaceId } : {}),
+			});
+			convoId = newId;
+			onConvoCreated(newId);
+		}
+
+		// Snapshot ready attachments from the current render's state (clearAttachments above is async)
+		const readyAttachments = attachments
+			.filter((a) => a.status === "ready" && a.storageId)
+			.map((a) => ({
+				storageId: a.storageId as Id<"_storage">,
+				mimeType: a.mimeType,
+				fileName: a.fileName,
+				fileSize: a.fileSize,
+			}));
+
+		// Save user message to Convex
+		await sendMessage.mutateAsync({
+			conversationId: convoId,
+			role: "user",
+			content,
+			harnessId: activeHarness._id,
+			...(readyAttachments.length > 0 ? { attachments: readyAttachments } : {}),
+		});
+
+		// Build message history for the LLM (with multimodal content where applicable)
+		const history: Array<{
+			role: string;
+			content: string | Array<Record<string, unknown>>;
+		}> = [];
+		for (const m of existingMessages ?? []) {
+			if (m.role === "user" && m.attachments && m.attachments.length > 0) {
+				history.push({
+					role: m.role,
+					content: await buildMultimodalContent(
+						m.content,
+						m.attachments,
+						resolveSignedUrls,
+					),
+				});
+			} else {
+				history.push({ role: m.role, content: m.content });
+			}
+		}
+
+		// Add the new user message (with any current attachments)
+		if (readyAttachments.length > 0) {
+			history.push({
+				role: "user",
+				content: await buildMultimodalContent(
+					content,
+					readyAttachments,
+					resolveSignedUrls,
+				),
+			});
+		} else {
+			history.push({ role: "user", content });
+		}
+
+		// Start streaming from FastAPI
+		onStream({
+			messages: history,
+			harness: harnessConfig,
+			conversation_id: convoId,
+		});
+	};
+
+	const handleKeyDown = (e: KeyboardEvent<HTMLTextAreaElement>) => {
+		if (e.key === "Enter" && !e.shiftKey) {
+			e.preventDefault();
+			handleSend();
+			return;
+		}
+
+		if (e.key === "ArrowUp") {
+			// Trigger history when empty or single-line (no newlines) so first press works
+			const isSingleLine = !text.includes("\n");
+			if (isSingleLine || !text) {
+				if (userPrompts.length === 0) return;
+				e.preventDefault();
+				if (historyIndex === -1) {
+					setDraft(text);
+					setHistoryIndex(0);
+					setText(userPrompts[0]);
+				} else if (historyIndex < userPrompts.length - 1) {
+					const nextIndex = historyIndex + 1;
+					setHistoryIndex(nextIndex);
+					setText(userPrompts[nextIndex]);
+				}
+			}
+		}
+
+		if (e.key === "ArrowDown") {
+			const ta = textareaRef.current;
+			if (ta && historyIndex >= 0) {
+				e.preventDefault();
+				if (historyIndex > 0) {
+					const nextIndex = historyIndex - 1;
+					setHistoryIndex(nextIndex);
+					setText(userPrompts[nextIndex]);
+				} else {
+					setHistoryIndex(-1);
+					setText(draft);
+				}
+			}
+		}
+	};
+
+	const handlePaste = (e: React.ClipboardEvent<HTMLTextAreaElement>) => {
+		if (!supportsAnyAttachment) return;
+		const files = Array.from(e.clipboardData.files).filter(
+			(f) =>
+				f.type.startsWith("image/") ||
+				f.type === "application/pdf" ||
+				f.type.startsWith("audio/"),
+		);
+		if (files.length > 0) {
+			e.preventDefault();
+			addFiles(files);
+		}
+	};
+
+	const handleDragOver = (e: React.DragEvent<HTMLDivElement>) => {
+		e.preventDefault();
+		if (supportsAnyAttachment && e.dataTransfer.types.includes("Files")) {
+			setIsDragOver(true);
+		}
+	};
+
+	const handleDragLeave = (e: React.DragEvent<HTMLDivElement>) => {
+		// Only clear if leaving the container entirely (not moving to a child)
+		if (!e.currentTarget.contains(e.relatedTarget as Node)) {
+			setIsDragOver(false);
+		}
+	};
+
+	const handleDrop = (e: React.DragEvent<HTMLDivElement>) => {
+		e.preventDefault();
+		setIsDragOver(false);
+		if (!supportsAnyAttachment) return;
+		const files = Array.from(e.dataTransfer.files);
+		if (files.length > 0) addFiles(files);
+	};
+
+	const showStopButton = isStreaming && !text.trim();
+
+	return (
+		// biome-ignore lint/a11y/noStaticElementInteractions: drag-and-drop drop zone
+		<div
+			className={cn(
+				"relative border-t border-border px-4 py-2 transition-colors",
+				isDragOver && "bg-primary/5",
+			)}
+			onDragOver={handleDragOver}
+			onDragLeave={handleDragLeave}
+			onDrop={handleDrop}
+		>
+			{/* Drop overlay */}
+			{isDragOver && (
+				<div className="pointer-events-none absolute inset-0 z-10 flex items-center justify-center border-2 border-dashed border-primary/50 bg-primary/5">
+					<div className="flex items-center gap-2 text-sm font-medium text-primary">
+						<Paperclip size={16} />
+						Drop files to attach
+					</div>
+				</div>
+			)}
+			{/* Hidden file input */}
+			<input
+				ref={fileInputRef}
+				type="file"
+				accept={modelAccept}
+				multiple
+				className="hidden"
+				onChange={(e) => {
+					if (e.target.files) addFiles(Array.from(e.target.files));
+					e.target.value = "";
+				}}
+			/>
+			<div className="mx-auto max-w-xl">
+				{/* Queued messages as chips above the input */}
+				<AnimatePresence>
+					{messageQueue.length > 0 && (
+						<motion.div
+							initial={{ opacity: 0, height: 0 }}
+							animate={{ opacity: 1, height: "auto" }}
+							exit={{ opacity: 0, height: 0 }}
+							className="mb-2 flex flex-col gap-1.5 overflow-hidden"
+						>
+							{messageQueue.map((item, idx) => (
+								<motion.div
+									key={item.id}
+									initial={{ opacity: 0, x: -8 }}
+									animate={{ opacity: 1, x: 0 }}
+									exit={{ opacity: 0, x: 8 }}
+									className="group/q flex items-start gap-2 rounded border border-border bg-muted/50 px-2.5 py-1.5"
+								>
+									<span className="min-w-0 flex-1 truncate text-xs text-muted-foreground">
+										{item.content}
+									</span>
+									<div className="flex shrink-0 items-center gap-1">
+										<Tooltip>
+											<TooltipTrigger asChild>
+												<button
+													type="button"
+													onClick={() => onSendNow(idx)}
+													className="rounded p-0.5 text-muted-foreground transition-colors hover:bg-foreground/10 hover:text-foreground"
+												>
+													<ArrowUp size={12} />
+												</button>
+											</TooltipTrigger>
+											<TooltipContent>Send now</TooltipContent>
+										</Tooltip>
+										<Tooltip>
+											<TooltipTrigger asChild>
+												<button
+													type="button"
+													onClick={() => onDequeue(idx)}
+													className="rounded p-0.5 text-muted-foreground transition-colors hover:bg-destructive/10 hover:text-destructive"
+												>
+													<X size={12} />
+												</button>
+											</TooltipTrigger>
+											<TooltipContent>Remove</TooltipContent>
+										</Tooltip>
+									</div>
+								</motion.div>
+							))}
+						</motion.div>
+					)}
+				</AnimatePresence>
+
+				{/* Attachment preview strip */}
+				<AnimatePresence>
+					{attachments.length > 0 && (
+						<motion.div
+							initial={{ opacity: 0, height: 0 }}
+							animate={{ opacity: 1, height: "auto" }}
+							exit={{ opacity: 0, height: 0 }}
+							className="mb-2 flex flex-wrap gap-2 overflow-hidden"
+						>
+							{attachments.map((attachment) => (
+								<AttachmentChip
+									key={attachment.localId}
+									attachment={attachment}
+									onRemove={() => removeAttachment(attachment.localId)}
+								/>
+							))}
+						</motion.div>
+					)}
+				</AnimatePresence>
+
+				<div className="flex items-center gap-2 border border-border bg-background px-3 py-2 focus-within:border-foreground/30">
+					{/* Attach button — hidden for models that don't support media */}
+					{supportsAnyAttachment && (
+						<Tooltip>
+							<TooltipTrigger asChild>
+								<button
+									type="button"
+									onClick={() => fileInputRef.current?.click()}
+									className="shrink-0 text-muted-foreground transition-colors hover:text-foreground"
+								>
+									<Paperclip size={15} />
+								</button>
+							</TooltipTrigger>
+							<TooltipContent>Attach files</TooltipContent>
+						</Tooltip>
+					)}
+
+					{supportsAudio && (
+						<Tooltip>
+							<TooltipTrigger asChild>
+								<button
+									type="button"
+									onClick={isRecording ? stopRecording : startRecording}
+									className={cn(
+										"shrink-0 transition-colors",
+										isRecording
+											? "animate-pulse text-destructive"
+											: "text-muted-foreground hover:text-foreground",
+									)}
+								>
+									{isRecording ? <Square size={15} /> : <Mic size={15} />}
+								</button>
+							</TooltipTrigger>
+							<TooltipContent>
+								{isRecording ? "Stop recording" : "Record audio"}
+							</TooltipContent>
+						</Tooltip>
+					)}
+
+					<textarea
+						ref={textareaRef}
+						value={text}
+						onChange={(e) => {
+							setText(e.target.value);
+							if (historyIndex !== -1) {
+								setHistoryIndex(-1);
+								setDraft("");
+							}
+						}}
+						onKeyDown={handleKeyDown}
+						onPaste={handlePaste}
+						placeholder={placeholder}
+						rows={1}
+						disabled={disabled}
+						maxLength={CHAT_INPUT_MAX_LENGTH}
+						className="max-h-[200px] min-h-[24px] flex-1 resize-none bg-transparent text-sm text-foreground outline-none placeholder:text-muted-foreground disabled:cursor-not-allowed disabled:opacity-60"
+					/>
+					{activeHarness && (
+						<DropdownMenu>
+							<Tooltip>
+								<TooltipTrigger asChild>
+									<DropdownMenuTrigger asChild>
+										<button
+											type="button"
+											className={`flex shrink-0 items-center gap-1 rounded px-1.5 py-0.5 text-xs transition-colors hover:bg-foreground/10 hover:text-foreground ${sessionModel ? "text-foreground" : "text-muted-foreground"}`}
+										>
+											{sessionModel && (
+												<span className="size-1.5 shrink-0 rounded-full bg-primary" />
+											)}
+											<span className="max-w-[90px] truncate">
+												{currentModelLabel}
+											</span>
+											<ChevronDown size={10} />
+										</button>
+									</DropdownMenuTrigger>
+								</TooltipTrigger>
+								<TooltipContent>
+									{modelSelectorMode === "harness"
+										? "Set harness model"
+										: sessionModel
+											? `Session override: ${currentModelLabel}`
+											: "Switch model for this session"}
+								</TooltipContent>
+							</Tooltip>
+							<DropdownMenuContent
+								align="end"
+								className="max-h-72 overflow-y-auto"
+							>
+								{modelSelectorMode === "session" && sessionModel && (
+									<>
+										<DropdownMenuItem
+											onClick={() => onSessionModelChange(null)}
+											className="flex items-center gap-2"
+										>
+											<RotateCcw size={12} className="shrink-0" />
+											Use harness default
+										</DropdownMenuItem>
+										<DropdownMenuSeparator />
+									</>
+								)}
+								{MODELS.map((model) => (
+									<DropdownMenuItem
+										key={model.value}
+										onClick={() => onSessionModelChange(model.value)}
+										className="flex items-center gap-2"
+									>
+										{model.value === effectiveModel ? (
+											<Check size={12} className="shrink-0" />
+										) : (
+											<span className="w-3 shrink-0" />
+										)}
+										{model.label}
+									</DropdownMenuItem>
+								))}
+							</DropdownMenuContent>
+						</DropdownMenu>
+					)}
+					<Tooltip>
+						<TooltipTrigger asChild>
+							<Button
+								size="icon-xs"
+								onClick={() => {
+									if (showStopButton && conversationId) {
+										onInterrupt(conversationId);
+									} else {
+										handleSend();
+									}
+								}}
+								disabled={
+									!showStopButton &&
+									(disabled ||
+										budgetExceeded ||
+										!text.trim() ||
+										hasUploading ||
+										sendMessage.isPending ||
+										createConvo.isPending)
+								}
+								variant={showStopButton ? "destructive" : "default"}
+							>
+								{showStopButton ? <Square size={10} /> : <ArrowUp size={14} />}
+							</Button>
+						</TooltipTrigger>
+						<TooltipContent>
+							{showStopButton
+								? "Stop generation"
+								: isStreaming
+									? "Queue message"
+									: "Send message"}
+						</TooltipContent>
+					</Tooltip>
+				</div>
+				<p className="mt-1.5 text-center text-[10px] text-muted-foreground">
+					{text.length >= CHAT_INPUT_COUNTER_THRESHOLD ? (
+						<span
+							className={
+								text.length >= CHAT_INPUT_MAX_LENGTH
+									? "text-destructive"
+									: "text-amber-500"
+							}
+						>
+							{text.length.toLocaleString()} /{" "}
+							{CHAT_INPUT_MAX_LENGTH.toLocaleString()} characters
+						</span>
+					) : (
+						"Harness may produce inaccurate information."
+					)}
+				</p>
+			</div>
+		</div>
+	);
+}
+
+function ChatSkeleton() {
+	return (
+		<div className="flex h-full bg-background">
+			<div className="w-[280px] border-r border-border p-3">
+				<Skeleton className="mb-4 h-6 w-24" />
+				<div className="space-y-2">
+					{["s1", "s2", "s3", "s4", "s5"].map((key) => (
+						<Skeleton key={key} className="h-7 w-full" />
+					))}
+				</div>
+			</div>
+			<div className="flex flex-1 flex-col">
+				<div className="border-b border-border px-4 py-2.5">
+					<Skeleton className="h-6 w-40" />
+				</div>
+				<div className="flex flex-1 items-center justify-center">
+					<RoseCurveSpinner size={48} className="text-foreground" />
+				</div>
+			</div>
+		</div>
+	);
+}
+
+function groupByDate(
+	conversations: Array<{
+		_id: Id<"conversations">;
+		title: string;
+		lastMessageAt: number;
+		lastHarnessId?: Id<"harnesses">;
+	}>,
+) {
+	const now = Date.now();
+	const dayMs = 86400000;
+	const todayStart = now - (now % dayMs);
+
+	const groups: { label: string; items: typeof conversations }[] = [];
+	const today: typeof conversations = [];
+	const yesterday: typeof conversations = [];
+	const week: typeof conversations = [];
+	const older: typeof conversations = [];
+
+	for (const c of conversations) {
+		if (c.lastMessageAt >= todayStart) today.push(c);
+		else if (c.lastMessageAt >= todayStart - dayMs) yesterday.push(c);
+		else if (c.lastMessageAt >= todayStart - 7 * dayMs) week.push(c);
+		else older.push(c);
+	}
+
+	if (today.length) groups.push({ label: "Today", items: today });
+	if (yesterday.length) groups.push({ label: "Yesterday", items: yesterday });
+	if (week.length) groups.push({ label: "Previous 7 Days", items: week });
+	if (older.length) groups.push({ label: "Older", items: older });
+
+	return groups;
+}
diff --git a/apps/web/vite.config.ts b/apps/web/vite.config.ts
index f947760..1fa7127 100644
--- a/apps/web/vite.config.ts
+++ b/apps/web/vite.config.ts
@@ -1,40 +1,50 @@
+import { dirname } from "node:path";
 import { fileURLToPath, URL } from "node:url";
 import { cloudflare } from "@cloudflare/vite-plugin";
 import tailwindcss from "@tailwindcss/vite";
 import { devtools } from "@tanstack/devtools-vite";
 import { tanstackStart } from "@tanstack/react-start/plugin/vite";
 import viteReact from "@vitejs/plugin-react";
-import { defineConfig } from "vite";
+import { defineConfig, loadEnv } from "vite";
 import viteTsConfigPaths from "vite-tsconfig-paths";
 
-const config = defineConfig({
-	resolve: {
-		alias: {
-			"@": fileURLToPath(new URL("./src", import.meta.url)),
+const config = defineConfig(({ mode }) => {
+	const envDir = dirname(fileURLToPath(import.meta.url));
+	const env = { ...process.env, ...loadEnv(mode, envDir, "") };
+	return {
+		// Inline server-only env vars at build time for Cloudflare Workers.
+		// process.env is empty on Workers, so these must be baked into the bundle.
+		define: {
+			"process.env.ARCJET_KEY": JSON.stringify(env.ARCJET_KEY ?? ""),
 		},
-	},
-	optimizeDeps: {
-		include: ["use-sync-external-store/shim/index.js"],
-	},
-	// Order matters: TanStack Start must run immediately after Cloudflare so the
-	// router generator initializes before other plugins transform the graph (avoids
-	// "Crawling result not available" when loading routeTree.gen.ts). Matches:
-	// https://developers.cloudflare.com/workers/frameworks/framework-guides/tanstack/
-	plugins: [
-		cloudflare({ viteEnvironment: { name: "ssr" } }),
-		tanstackStart(),
-		viteReact(),
-		// Event bus defaults to port 42069 and throws EADDRINUSE if another dev
-		// server (or stale process) already bound it — common with turbo dev.
-		devtools({ eventBusConfig: { enabled: false } }),
-		viteTsConfigPaths({
-			projects: ["./tsconfig.json"],
-		}),
-		tailwindcss(),
-	],
-	server: {
-		allowedHosts: true,
-	},
+		resolve: {
+			alias: {
+				"@": fileURLToPath(new URL("./src", import.meta.url)),
+			},
+		},
+		optimizeDeps: {
+			include: ["use-sync-external-store/shim/index.js"],
+		},
+		// Order matters: TanStack Start must run immediately after Cloudflare so the
+		// router generator initializes before other plugins transform the graph (avoids
+		// "Crawling result not available" when loading routeTree.gen.ts). Matches:
+		// https://developers.cloudflare.com/workers/frameworks/framework-guides/tanstack/
+		plugins: [
+			cloudflare({ viteEnvironment: { name: "ssr" } }),
+			tanstackStart(),
+			viteReact(),
+			// Event bus defaults to port 42069 and throws EADDRINUSE if another dev
+			// server (or stale process) already bound it — common with turbo dev.
+			devtools({ eventBusConfig: { enabled: false } }),
+			viteTsConfigPaths({
+				projects: ["./tsconfig.json"],
+			}),
+			tailwindcss(),
+		],
+		server: {
+			allowedHosts: true,
+		},
+	};
 });
 
 export default config;
diff --git a/apps/web/vitest.config.ts b/apps/web/vitest.config.ts
new file mode 100644
index 0000000..2fa76fb
--- /dev/null
+++ b/apps/web/vitest.config.ts
@@ -0,0 +1,70 @@
+import viteReact from "@vitejs/plugin-react";
+import viteTsConfigPaths from "vite-tsconfig-paths";
+import { defineConfig } from "vitest/config";
+
+export default defineConfig({
+	plugins: [viteReact(), viteTsConfigPaths({ projects: ["./tsconfig.json"] })],
+	test: {
+		environment: "jsdom",
+		setupFiles: ["./vitest.setup.ts"],
+		globals: true,
+		css: false,
+		env: {
+			ARCJET_KEY: "ajkey_test",
+			VITE_CONVEX_URL: "https://test.convex.cloud",
+			VITE_CLERK_PUBLISHABLE_KEY: "pk_test_dummy",
+			VITE_FASTAPI_URL: "http://localhost:8000",
+		},
+		include: [
+			"src/**/*.test.{ts,tsx}",
+			"src/**/__tests__/**/*.{ts,tsx}",
+		],
+		coverage: {
+			provider: "v8",
+			reporter: ["text", "html", "lcov", "json-summary"],
+			reportsDirectory: "./coverage",
+			// Coverage is scoped to "unit-testable" modules: pure logic in lib/,
+			// hooks/, command-palette state, and the leaf components we test
+			// directly. Large feature surfaces (sandbox UI, chat-stream, markdown
+			// rendering, syntax highlighting, complex multi-connect flows) are
+			// covered by Playwright E2E tests and deliberately excluded here —
+			// mocking their Convex/Clerk/Motion stacks under jsdom produces
+			// test code that verifies mocks, not behaviour.
+			include: [
+				// Pure logic modules under lib/
+				"src/lib/utils.ts",
+				"src/lib/models.ts",
+				"src/lib/mcp.ts",
+				"src/lib/multimodal.ts",
+				"src/lib/platform.ts",
+				"src/lib/skills.ts",
+				"src/lib/skills-api.ts",
+				"src/lib/workspace-colors.ts",
+				"src/lib/floating-dots.ts",
+				"src/lib/command-palette/context.tsx",
+				"src/lib/command-palette/recent.ts",
+				"src/lib/command-palette/types.ts",
+				// Hook modules
+				"src/hooks/use-command-palette-hotkey.ts",
+				"src/hooks/use-register-commands.ts",
+				"src/hooks/use-workspace-shortcuts.ts",
+				"src/hooks/use-file-attachments.ts",
+				// Leaf components we test directly
+				"src/components/attachment-chip.tsx",
+				"src/components/workspace-color-picker.tsx",
+				"src/components/header-skills-menu.tsx",
+			],
+			exclude: [
+				"**/*.d.ts",
+				"**/*.test.{ts,tsx}",
+				"**/__tests__/**",
+			],
+			thresholds: {
+				lines: 75,
+				branches: 70,
+				functions: 75,
+				statements: 75,
+			},
+		},
+	},
+});
diff --git a/apps/web/vitest.setup.ts b/apps/web/vitest.setup.ts
new file mode 100644
index 0000000..b9b4e6e
--- /dev/null
+++ b/apps/web/vitest.setup.ts
@@ -0,0 +1,85 @@
+import * as matchers from "@testing-library/jest-dom/matchers";
+import { cleanup } from "@testing-library/react";
+import { afterEach, expect, vi } from "vitest";
+
+expect.extend(matchers);
+
+afterEach(() => {
+	cleanup();
+});
+
+if (typeof window !== "undefined") {
+	// Bun's runtime injects a stubbed window.localStorage that shadows jsdom's.
+	// Replace it with a working in-memory Storage so tests that touch persistence work.
+	const makeStorage = (): Storage => {
+		const store = new Map<string, string>();
+		return {
+			get length() {
+				return store.size;
+			},
+			clear() {
+				store.clear();
+			},
+			getItem(key: string) {
+				return store.has(key) ? (store.get(key) as string) : null;
+			},
+			key(index: number) {
+				return Array.from(store.keys())[index] ?? null;
+			},
+			removeItem(key: string) {
+				store.delete(key);
+			},
+			setItem(key: string, value: string) {
+				store.set(key, String(value));
+			},
+		};
+	};
+	Object.defineProperty(window, "localStorage", {
+		value: makeStorage(),
+		configurable: true,
+		writable: true,
+	});
+	Object.defineProperty(window, "sessionStorage", {
+		value: makeStorage(),
+		configurable: true,
+		writable: true,
+	});
+
+	if (!window.matchMedia) {
+		Object.defineProperty(window, "matchMedia", {
+			writable: true,
+			value: vi.fn().mockImplementation((query: string) => ({
+				matches: false,
+				media: query,
+				onchange: null,
+				addListener: vi.fn(),
+				removeListener: vi.fn(),
+				addEventListener: vi.fn(),
+				removeEventListener: vi.fn(),
+				dispatchEvent: vi.fn(),
+			})),
+		});
+	}
+
+	if (!window.ResizeObserver) {
+		window.ResizeObserver = class ResizeObserver {
+			observe() {}
+			unobserve() {}
+			disconnect() {}
+		};
+	}
+
+	if (!window.IntersectionObserver) {
+		window.IntersectionObserver = class IntersectionObserver {
+			root = null;
+			rootMargin = "";
+			thresholds = [];
+			observe() {}
+			unobserve() {}
+			disconnect() {}
+			takeRecords() {
+				return [];
+			}
+		} as unknown as typeof IntersectionObserver;
+	}
+}
diff --git a/bun.lock b/bun.lock
index a4c50c1..88aa705 100644
--- a/bun.lock
+++ b/bun.lock
@@ -1,6 +1,5 @@
 {
   "lockfileVersion": 1,
-  "configVersion": 0,
   "workspaces": {
     "": {
       "name": "my-turborepo",
@@ -16,6 +15,11 @@
     "apps/web": {
       "name": "@harness/web",
       "dependencies": {
+        "@arcjet/headers": "^1.3.1",
+        "@arcjet/ip": "^1.3.1",
+        "@arcjet/protocol": "^1.3.1",
+        "@arcjet/transport": "^1.3.1",
+        "@clerk/clerk-react": "^5.60.0",
         "@clerk/tanstack-react-start": "^0.29.1",
         "@convex-dev/react-query": "^0.1.0",
         "@harness/convex-backend": "workspace:*",
@@ -32,8 +36,10 @@
         "@xterm/addon-fit": "^0.11.0",
         "@xterm/addon-web-links": "^0.12.0",
         "@xterm/xterm": "^6.0.0",
+        "arcjet": "^1.3.1",
         "class-variance-authority": "^0.7.1",
         "clsx": "^2.1.1",
+        "cmdk": "^1.1.1",
         "convex": "^1.31.7",
         "geist": "^1.7.0",
         "highlight.js": "^11.11.1",
@@ -50,6 +56,7 @@
         "tailwindcss": "^4.1.18",
         "tw-animate-css": "^1.3.6",
         "use-sync-external-store": "^1.6.0",
+        "vinxi": "^0.5.11",
         "vite-tsconfig-paths": "^6.0.2",
         "zod": "^4.1.11",
       },
@@ -58,11 +65,14 @@
         "@cloudflare/vite-plugin": "^1.30.3",
         "@tanstack/devtools-vite": "^0.3.11",
         "@testing-library/dom": "^10.4.0",
+        "@testing-library/jest-dom": "^6.9.1",
         "@testing-library/react": "^16.2.0",
+        "@testing-library/user-event": "^14.6.1",
         "@types/node": "^22.10.2",
         "@types/react": "^19.2.0",
         "@types/react-dom": "^19.2.0",
         "@vitejs/plugin-react": "^5.0.4",
+        "@vitest/coverage-v8": "^3.0.5",
         "jsdom": "^27.0.0",
         "typescript": "5.9.2",
         "vite": "^7.1.7",
@@ -78,9 +88,13 @@
         "zod": "^4.3.5",
       },
       "devDependencies": {
+        "@edge-runtime/vm": "^5.0.0",
+        "@vitest/coverage-v8": "^3.0.5",
+        "convex-test": "^0.0.49",
         "dotenv": "^16.6.1",
         "tsx": "^4.7.0",
         "typescript": "5.9.2",
+        "vitest": "^3.0.5",
       },
     },
     "packages/fastapi": {
@@ -91,6 +105,30 @@
   "packages": {
     "@acemir/cssom": ["@acemir/cssom@0.9.31", "", {}, "sha512-ZnR3GSaH+/vJ0YlHau21FjfLYjMpYVIzTD8M8vIEQvIGxeOXyXdzCI140rrCY862p/C/BbzWsjc1dgnM9mkoTA=="],
 
+    "@adobe/css-tools": ["@adobe/css-tools@4.4.4", "", {}, "sha512-Elp+iwUx5rN5+Y8xLt5/GRoG20WGoDCQ/1Fb+1LiGtvwbDavuSk0jhD/eZdckHAuzcDzccnkv+rEjyWfRx18gg=="],
+
+    "@ampproject/remapping": ["@ampproject/remapping@2.3.0", "", { "dependencies": { "@jridgewell/gen-mapping": "^0.3.5", "@jridgewell/trace-mapping": "^0.3.24" } }, "sha512-30iZtAPgz+LTIYoeivqYo853f02jBYSd5uGnGpkFV0M3xOt9aN73erkgYAmZU43x4VfqcnLxW9Kpg3R5LC4YYw=="],
+
+    "@arcjet/analyze": ["@arcjet/analyze@1.3.1", "", { "dependencies": { "@arcjet/analyze-wasm": "1.3.1", "@arcjet/protocol": "1.3.1" } }, "sha512-y2rUKKkiLICaBhMI/SIX+L+hYbC/uvbqb0eT64MW8LGvro8b9AgA8KhBGc38B9EsNUxITQRpeTshFnAlpqN3IA=="],
+
+    "@arcjet/analyze-wasm": ["@arcjet/analyze-wasm@1.3.1", "", {}, "sha512-FASvveHGwQ64Q9CzrgmD1JrwMDJMooYbX+Z+55ZV/Y/PXRdI/dLWkJ2aQzww5UOOXq2QUHhZZgLteq+ROxuDog=="],
+
+    "@arcjet/cache": ["@arcjet/cache@1.3.1", "", {}, "sha512-zowerfYfG/C58mvHZ8Zuj/4gn5kQwb35pq/Oo0ikZJo3pkVIEt1Y+9KcKYOSaoGmEcNZeIInSnCXpH6HAuMyvQ=="],
+
+    "@arcjet/duration": ["@arcjet/duration@1.3.1", "", {}, "sha512-SC/dnuFwlQ61SzkYneSnLXQFsf6nhMmxbZoOl5BxzzluBvOKGsE91ONQQcAxgWV1eeD7aQAQ8hiBk7JxTCIyNA=="],
+
+    "@arcjet/headers": ["@arcjet/headers@1.3.1", "", {}, "sha512-krYRdbvVGOENJKREyKPmX2ivfytsfW1uADgGY06pt8g/T5HubXskJnNAG/LRQ7/HoXdAuXzLKPbSs9xVTF4yoQ=="],
+
+    "@arcjet/ip": ["@arcjet/ip@1.3.1", "", {}, "sha512-2MUf9STwRuaQ0wNkcj9fyHdmVCwat7DjCkdiLLL4Ra/0sG8jxpQ3RXl8ds+fRgoSARNaNFKJII2ybCT5BmktNg=="],
+
+    "@arcjet/protocol": ["@arcjet/protocol@1.3.1", "", { "dependencies": { "@arcjet/cache": "1.3.1", "@bufbuild/protobuf": "2.11.0", "@connectrpc/connect": "2.1.1", "typeid-js": "1.2.0" } }, "sha512-aoKbuLNXsNvLg844Tlc8mij6Z1bl5iDX+gfBZyG2fL4ZKiHf6C/MQQIUx8TknKfednSHWCVD3L3ASnqPe9EJGg=="],
+
+    "@arcjet/runtime": ["@arcjet/runtime@1.3.1", "", {}, "sha512-fS/rXaUD7WXutnUliOJQXcqBf50NfkWsy7wZ3xZcWdoeNsLjNkJiIkRPLxdXE4p7+jSWCZUmqkHeVH5UJ6BuMw=="],
+
+    "@arcjet/stable-hash": ["@arcjet/stable-hash@1.3.1", "", {}, "sha512-1wxbNznMa8PPwZgDJkO5ZiTcMT+KyILOicFMFICA8fd1K/2LeDwLjFLQIFartTged322+m4Ztc+wjTiYpPZElw=="],
+
+    "@arcjet/transport": ["@arcjet/transport@1.3.1", "", { "dependencies": { "@bufbuild/protobuf": "2.11.0", "@connectrpc/connect": "2.1.1", "@connectrpc/connect-node": "2.1.1", "@connectrpc/connect-web": "2.1.1" } }, "sha512-iXTWtCL1Tl/RkB+oZBzt6PNRz0tNyt87JagCj8JjPvA3QsEfcxQlt9hs4rAEVvanASi17k1wFhbjOF1ejBzFnQ=="],
+
     "@asamuzakjp/css-color": ["@asamuzakjp/css-color@4.1.2", "", { "dependencies": { "@csstools/css-calc": "^3.0.0", "@csstools/css-color-parser": "^4.0.1", "@csstools/css-parser-algorithms": "^4.0.0", "@csstools/css-tokenizer": "^4.0.0", "lru-cache": "^11.2.5" } }, "sha512-NfBUvBaYgKIuq6E/RBLY1m0IohzNHAYyaJGuTK79Z23uNwmz2jl1mPsC5ZxCCxylinKhT1Amn5oNTlx1wN8cQg=="],
 
     "@asamuzakjp/dom-selector": ["@asamuzakjp/dom-selector@6.7.8", "", { "dependencies": { "@asamuzakjp/nwsapi": "^2.3.9", "bidi-js": "^1.0.3", "css-tree": "^3.1.0", "is-potential-custom-element-name": "^1.0.1", "lru-cache": "^11.2.5" } }, "sha512-stisC1nULNc9oH5lakAj8MH88ZxeGxzyWNDfbdCxvJSJIvDsHNZqYvscGTgy/ysgXWLJPt6K/4t0/GjvtKcFJQ=="],
@@ -141,6 +179,8 @@
 
     "@babel/types": ["@babel/types@7.29.0", "", { "dependencies": { "@babel/helper-string-parser": "^7.27.1", "@babel/helper-validator-identifier": "^7.28.5" } }, "sha512-LwdZHpScM4Qz8Xw2iKSzS+cfglZzJGvofQICy7W7v4caru4EaAmyUuO6BGrbyQ2mYV11W0U8j5mBhd14dd3B0A=="],
 
+    "@bcoe/v8-coverage": ["@bcoe/v8-coverage@1.0.2", "", {}, "sha512-6zABk/ECA/QYSCQ1NGiVwwbQerUCZ+TQbp64Q3AgmfNvurHH0j8TtXa1qbShXA6qqkpAj4V5W8pP6mLe1mcMqA=="],
+
     "@biomejs/biome": ["@biomejs/biome@2.2.4", "", { "optionalDependencies": { "@biomejs/cli-darwin-arm64": "2.2.4", "@biomejs/cli-darwin-x64": "2.2.4", "@biomejs/cli-linux-arm64": "2.2.4", "@biomejs/cli-linux-arm64-musl": "2.2.4", "@biomejs/cli-linux-x64": "2.2.4", "@biomejs/cli-linux-x64-musl": "2.2.4", "@biomejs/cli-win32-arm64": "2.2.4", "@biomejs/cli-win32-x64": "2.2.4" }, "bin": { "biome": "bin/biome" } }, "sha512-TBHU5bUy/Ok6m8c0y3pZiuO/BZoY/OcGxoLlrfQof5s8ISVwbVBdFINPQZyFfKwil8XibYWb7JMwnT8wT4WVPg=="],
 
     "@biomejs/cli-darwin-arm64": ["@biomejs/cli-darwin-arm64@2.2.4", "", { "os": "darwin", "cpu": "arm64" }, "sha512-RJe2uiyaloN4hne4d2+qVj3d3gFJFbmrr5PYtkkjei1O9c+BjGXgpUPVbi8Pl8syumhzJjFsSIYkcLt2VlVLMA=="],
@@ -159,6 +199,8 @@
 
     "@biomejs/cli-win32-x64": ["@biomejs/cli-win32-x64@2.2.4", "", { "os": "win32", "cpu": "x64" }, "sha512-3Y4V4zVRarVh/B/eSHczR4LYoSVyv3Dfuvm3cWs5w/HScccS0+Wt/lHOcDTRYeHjQmMYVC3rIRWqyN2EI52+zg=="],
 
+    "@bufbuild/protobuf": ["@bufbuild/protobuf@2.11.0", "", {}, "sha512-sBXGT13cpmPR5BMgHE6UEEfEaShh5Ror6rfN3yEK5si7QVrtZg8LEPQb0VVhiLRUslD2yLnXtnRzG035J/mZXQ=="],
+
     "@clerk/backend": ["@clerk/backend@2.30.1", "", { "dependencies": { "@clerk/shared": "^3.44.0", "@clerk/types": "^4.101.14", "standardwebhooks": "^1.0.0", "tslib": "2.8.1" } }, "sha512-GoxnJzVH0ycNPAGCDMfo3lPBFbo5nehpLSVFjgGEnzIRGGahBtAB8PQT7KM2zo58pD8apjb/+suhcB/WCiEasQ=="],
 
     "@clerk/clerk-react": ["@clerk/clerk-react@5.60.0", "", { "dependencies": { "@clerk/shared": "^3.44.0", "tslib": "2.8.1" }, "peerDependencies": { "react": "^18.0.0 || ~19.0.3 || ~19.1.4 || ~19.2.3 || ~19.3.0-0", "react-dom": "^18.0.0 || ~19.0.3 || ~19.1.4 || ~19.2.3 || ~19.3.0-0" } }, "sha512-P88FncsJpq/3WZJhhlj+md8mYb35BIXpr462C/figwsBGHsinr8VuBQUMcMZZ/6M34C8ABfLTPa6PHVp6+3D5Q=="],
@@ -185,6 +227,12 @@
 
     "@cloudflare/workerd-windows-64": ["@cloudflare/workerd-windows-64@1.20260329.1", "", { "os": "win32", "cpu": "x64" }, "sha512-5R+/oxrDhS9nL3oA3ZWtD6ndMOqm7RfKknDNxLcmYW5DkUu7UH3J/s1t/Dz66iFePzr5BJmE7/8gbmve6TjtZQ=="],
 
+    "@connectrpc/connect": ["@connectrpc/connect@2.1.1", "", { "peerDependencies": { "@bufbuild/protobuf": "^2.7.0" } }, "sha512-JzhkaTvM73m2K1URT6tv53k2RwngSmCXLZJgK580qNQOXRzZRR/BCMfZw3h+90JpnG6XksP5bYT+cz0rpUzUWQ=="],
+
+    "@connectrpc/connect-node": ["@connectrpc/connect-node@2.1.1", "", { "peerDependencies": { "@bufbuild/protobuf": "^2.7.0", "@connectrpc/connect": "2.1.1" } }, "sha512-s3TfsI1XF+n+1z6MBS9rTnFsxxR4Rw5wmdEnkQINli81ESGxcsfaEet8duzq8LVuuCupmhUsgpRo0Nv9pZkufg=="],
+
+    "@connectrpc/connect-web": ["@connectrpc/connect-web@2.1.1", "", { "peerDependencies": { "@bufbuild/protobuf": "^2.7.0", "@connectrpc/connect": "2.1.1" } }, "sha512-J8317Q2MaFRCT1jzVR1o06bZhDIBmU0UAzWx6xOIXzOq8+k71/+k7MUF7AwcBUX+34WIvbm5syRgC5HXQA8fOg=="],
+
     "@convex-dev/react-query": ["@convex-dev/react-query@0.1.0", "", { "peerDependencies": { "@tanstack/react-query": "^5.0.0", "convex": "^1.29.3" } }, "sha512-ULmBZCtAQDUePdBhUv7hj1Yy4QiCelhi6uEIOtMpjW8db6W9CFKvQwLt9heLngccFyMFfAZdOfSrT+cP4AH0Jw=="],
 
     "@cspotcode/source-map-support": ["@cspotcode/source-map-support@0.8.1", "", { "dependencies": { "@jridgewell/trace-mapping": "0.3.9" } }, "sha512-IchNf6dN4tHoMFIn/7OE8LWZ19Y6q/67Bmf6vnGREv8RSbBVb9LPJxEcnwrcwX6ixSvaiGoomAUvu4YSxXrVgw=="],
@@ -201,6 +249,14 @@
 
     "@csstools/css-tokenizer": ["@csstools/css-tokenizer@4.0.0", "", {}, "sha512-QxULHAm7cNu72w97JUNCBFODFaXpbDg+dP8b/oWFAZ2MTRppA3U00Y2L1HqaS4J6yBqxwa/Y3nMBaxVKbB/NsA=="],
 
+    "@deno/shim-deno": ["@deno/shim-deno@0.19.2", "", { "dependencies": { "@deno/shim-deno-test": "^0.5.0", "which": "^4.0.0" } }, "sha512-q3VTHl44ad8T2Tw2SpeAvghdGOjlnLPDNO2cpOxwMrBE/PVas6geWpbpIgrM+czOCH0yejp0yi8OaTuB+NU40Q=="],
+
+    "@deno/shim-deno-test": ["@deno/shim-deno-test@0.5.0", "", {}, "sha512-4nMhecpGlPi0cSzT67L+Tm+GOJqvuk8gqHBziqcUQOarnuIax1z96/gJHCSIz2Z0zhxE6Rzwb3IZXPtFh51j+w=="],
+
+    "@edge-runtime/primitives": ["@edge-runtime/primitives@6.0.0", "", {}, "sha512-FqoxaBT+prPBHBwE1WXS1ocnu/VLTQyZ6NMUBAdbP7N2hsFTTxMC/jMu2D/8GAlMQfxeuppcPuCUk/HO3fpIvA=="],
+
+    "@edge-runtime/vm": ["@edge-runtime/vm@5.0.0", "", { "dependencies": { "@edge-runtime/primitives": "6.0.0" } }, "sha512-NKBGBSIKUG584qrS1tyxVpX/AKJKQw5HgjYEnPLC0QsTw79JrGn+qUr8CXFb955Iy7GUdiiUv1rJ6JBGvaKb6w=="],
+
     "@emnapi/runtime": ["@emnapi/runtime@1.8.1", "", { "dependencies": { "tslib": "^2.4.0" } }, "sha512-mehfKSMWjjNol8659Z8KxEMrdSJDDot5SXMq00dM8BN4o+CLNXQ0xH2V7EchNHV4RmbZLmmPdEaXZc5H2FXmDg=="],
 
     "@esbuild/aix-ppc64": ["@esbuild/aix-ppc64@0.27.0", "", { "os": "aix", "cpu": "ppc64" }, "sha512-KuZrd2hRjz01y5JK9mEBSD3Vj3mbCvemhT466rSuJYeE/hjuBrHfjjcjMdTm/sz7au+++sdbJZJmuBwQLuw68A=="],
@@ -321,6 +377,14 @@
 
     "@img/sharp-win32-x64": ["@img/sharp-win32-x64@0.34.5", "", { "os": "win32", "cpu": "x64" }, "sha512-+29YMsqY2/9eFEiW93eqWnuLcWcufowXewwSNIT6UwZdUUCrM3oFjMWH/Z6/TMmb4hlFenmfAVbpWeup2jryCw=="],
 
+    "@ioredis/commands": ["@ioredis/commands@1.5.1", "", {}, "sha512-JH8ZL/ywcJyR9MmJ5BNqZllXNZQqQbnVZOqpPQqE1vHiFgAw4NHbvE0FOduNU8IX9babitBT46571OnPTT0Zcw=="],
+
+    "@isaacs/cliui": ["@isaacs/cliui@8.0.2", "", { "dependencies": { "string-width": "^5.1.2", "string-width-cjs": "npm:string-width@^4.2.0", "strip-ansi": "^7.0.1", "strip-ansi-cjs": "npm:strip-ansi@^6.0.1", "wrap-ansi": "^8.1.0", "wrap-ansi-cjs": "npm:wrap-ansi@^7.0.0" } }, "sha512-O8jcjabXaleOG9DQ0+ARXWZBTfnP4WNAqzuiJK7ll44AmxGKv/J2M4TPjxjY3znBCfvBXFzucm1twdyFybFqEA=="],
+
+    "@isaacs/fs-minipass": ["@isaacs/fs-minipass@4.0.1", "", { "dependencies": { "minipass": "^7.0.4" } }, "sha512-wgm9Ehl2jpeqP3zw/7mo3kRHFp5MEDhqAdwy1fTGkHAwnkGOVsgpvQhL8B5n1qlb01jV3n/bI0ZfZp5lWA1k4w=="],
+
+    "@istanbuljs/schema": ["@istanbuljs/schema@0.1.6", "", {}, "sha512-+Sg6GCR/wy1oSmQDFq4LQDAhm3ETKnorxN+y5nbLULOR3P0c14f2Wurzj3/xqPXtasLFfHd5iRFQ7AJt4KH2cw=="],
+
     "@jridgewell/gen-mapping": ["@jridgewell/gen-mapping@0.3.13", "", { "dependencies": { "@jridgewell/sourcemap-codec": "^1.5.0", "@jridgewell/trace-mapping": "^0.3.24" } }, "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA=="],
 
     "@jridgewell/remapping": ["@jridgewell/remapping@2.3.5", "", { "dependencies": { "@jridgewell/gen-mapping": "^0.3.5", "@jridgewell/trace-mapping": "^0.3.24" } }, "sha512-LI9u/+laYG4Ds1TDKSJW2YPrIlcVYOwi2fUC6xB43lueCjgxV4lffOCZCtYFiH6TNOX+tQKXx97T4IKHbhyHEQ=="],
@@ -333,6 +397,8 @@
 
     "@jridgewell/trace-mapping": ["@jridgewell/trace-mapping@0.3.31", "", { "dependencies": { "@jridgewell/resolve-uri": "^3.1.0", "@jridgewell/sourcemap-codec": "^1.4.14" } }, "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw=="],
 
+    "@mapbox/node-pre-gyp": ["@mapbox/node-pre-gyp@2.0.3", "", { "dependencies": { "consola": "^3.2.3", "detect-libc": "^2.0.0", "https-proxy-agent": "^7.0.5", "node-fetch": "^2.6.7", "nopt": "^8.0.0", "semver": "^7.5.3", "tar": "^7.4.0" }, "bin": { "node-pre-gyp": "bin/node-pre-gyp" } }, "sha512-uwPAhccfFJlsfCxMYTwOdVfOz3xqyj8xYL3zJj8f0pb30tLohnnFPhLuqp4/qoEz8sNxe4SESZedcBojRefIzg=="],
+
     "@next/env": ["@next/env@16.1.6", "", {}, "sha512-N1ySLuZjnAtN3kFnwhAwPvZah8RJxKasD7x1f8shFqhncnWZn4JMfg37diLNuoHsLAlrDfM3g4mawVdtAG8XLQ=="],
 
     "@next/swc-darwin-arm64": ["@next/swc-darwin-arm64@16.1.6", "", { "os": "darwin", "cpu": "arm64" }, "sha512-wTzYulosJr/6nFnqGW7FrG3jfUUlEf8UjGA0/pyypJl42ExdVgC6xJgcXQ+V8QFn6niSG2Pb8+MIG1mZr2vczw=="],
@@ -351,6 +417,12 @@
 
     "@next/swc-win32-x64-msvc": ["@next/swc-win32-x64-msvc@16.1.6", "", { "os": "win32", "cpu": "x64" }, "sha512-NRfO39AIrzBnixKbjuo2YiYhB6o9d8v/ymU9m/Xk8cyVk+k7XylniXkHwjs4s70wedVffc6bQNbufk5v0xEm0A=="],
 
+    "@nodelib/fs.scandir": ["@nodelib/fs.scandir@2.1.5", "", { "dependencies": { "@nodelib/fs.stat": "2.0.5", "run-parallel": "^1.1.9" } }, "sha512-vq24Bq3ym5HEQm2NKCr3yXDwjc7vTsEThRDnkp2DK9p1uqLR+DHurm/NOTo0KG7HYHU7eppKZj3MyqYuMBf62g=="],
+
+    "@nodelib/fs.stat": ["@nodelib/fs.stat@2.0.5", "", {}, "sha512-RkhPPp2zrqDAQA/2jNhnztcPAlv64XdhIp7a7454A5ovI7Bukxgt7MX7udwAu3zg1DcpPU0rz3VV1SeaqvY4+A=="],
+
+    "@nodelib/fs.walk": ["@nodelib/fs.walk@1.2.8", "", { "dependencies": { "@nodelib/fs.scandir": "2.1.5", "fastq": "^1.6.0" } }, "sha512-oGB+UxlgWcgQkgwo8GcEGwemoTFt3FIO9ababBmaGwXIoBKZ+GTy0pP185beGg7Llih/NSHSV2XAs1lnznocSg=="],
+
     "@oozcitak/dom": ["@oozcitak/dom@2.0.2", "", { "dependencies": { "@oozcitak/infra": "^2.0.2", "@oozcitak/url": "^3.0.0", "@oozcitak/util": "^10.0.0" } }, "sha512-GjpKhkSYC3Mj4+lfwEyI1dqnsKTgwGy48ytZEhm4A/xnH/8z9M3ZVXKr/YGQi3uCLs1AEBS+x5T2JPiueEDW8w=="],
 
     "@oozcitak/infra": ["@oozcitak/infra@2.0.2", "", { "dependencies": { "@oozcitak/util": "^10.0.0" } }, "sha512-2g+E7hoE2dgCz/APPOEK5s3rMhJvNxSMBrP+U+j1OWsIbtSpWxxlUjq1lU8RIsFJNYv7NMlnVsCuHcUzJW+8vA=="],
@@ -359,6 +431,38 @@
 
     "@oozcitak/util": ["@oozcitak/util@10.0.0", "", {}, "sha512-hAX0pT/73190NLqBPPWSdBVGtbY6VOhWYK3qqHqtXQ1gK7kS2yz4+ivsN07hpJ6I3aeMtKP6J6npsEKOAzuTLA=="],
 
+    "@parcel/watcher": ["@parcel/watcher@2.5.6", "", { "dependencies": { "detect-libc": "^2.0.3", "is-glob": "^4.0.3", "node-addon-api": "^7.0.0", "picomatch": "^4.0.3" }, "optionalDependencies": { "@parcel/watcher-android-arm64": "2.5.6", "@parcel/watcher-darwin-arm64": "2.5.6", "@parcel/watcher-darwin-x64": "2.5.6", "@parcel/watcher-freebsd-x64": "2.5.6", "@parcel/watcher-linux-arm-glibc": "2.5.6", "@parcel/watcher-linux-arm-musl": "2.5.6", "@parcel/watcher-linux-arm64-glibc": "2.5.6", "@parcel/watcher-linux-arm64-musl": "2.5.6", "@parcel/watcher-linux-x64-glibc": "2.5.6", "@parcel/watcher-linux-x64-musl": "2.5.6", "@parcel/watcher-win32-arm64": "2.5.6", "@parcel/watcher-win32-ia32": "2.5.6", "@parcel/watcher-win32-x64": "2.5.6" } }, "sha512-tmmZ3lQxAe/k/+rNnXQRawJ4NjxO2hqiOLTHvWchtGZULp4RyFeh6aU4XdOYBFe2KE1oShQTv4AblOs2iOrNnQ=="],
+
+    "@parcel/watcher-android-arm64": ["@parcel/watcher-android-arm64@2.5.6", "", { "os": "android", "cpu": "arm64" }, "sha512-YQxSS34tPF/6ZG7r/Ih9xy+kP/WwediEUsqmtf0cuCV5TPPKw/PQHRhueUo6JdeFJaqV3pyjm0GdYjZotbRt/A=="],
+
+    "@parcel/watcher-darwin-arm64": ["@parcel/watcher-darwin-arm64@2.5.6", "", { "os": "darwin", "cpu": "arm64" }, "sha512-Z2ZdrnwyXvvvdtRHLmM4knydIdU9adO3D4n/0cVipF3rRiwP+3/sfzpAwA/qKFL6i1ModaabkU7IbpeMBgiVEA=="],
+
+    "@parcel/watcher-darwin-x64": ["@parcel/watcher-darwin-x64@2.5.6", "", { "os": "darwin", "cpu": "x64" }, "sha512-HgvOf3W9dhithcwOWX9uDZyn1lW9R+7tPZ4sug+NGrGIo4Rk1hAXLEbcH1TQSqxts0NYXXlOWqVpvS1SFS4fRg=="],
+
+    "@parcel/watcher-freebsd-x64": ["@parcel/watcher-freebsd-x64@2.5.6", "", { "os": "freebsd", "cpu": "x64" }, "sha512-vJVi8yd/qzJxEKHkeemh7w3YAn6RJCtYlE4HPMoVnCpIXEzSrxErBW5SJBgKLbXU3WdIpkjBTeUNtyBVn8TRng=="],
+
+    "@parcel/watcher-linux-arm-glibc": ["@parcel/watcher-linux-arm-glibc@2.5.6", "", { "os": "linux", "cpu": "arm" }, "sha512-9JiYfB6h6BgV50CCfasfLf/uvOcJskMSwcdH1PHH9rvS1IrNy8zad6IUVPVUfmXr+u+Km9IxcfMLzgdOudz9EQ=="],
+
+    "@parcel/watcher-linux-arm-musl": ["@parcel/watcher-linux-arm-musl@2.5.6", "", { "os": "linux", "cpu": "arm" }, "sha512-Ve3gUCG57nuUUSyjBq/MAM0CzArtuIOxsBdQ+ftz6ho8n7s1i9E1Nmk/xmP323r2YL0SONs1EuwqBp2u1k5fxg=="],
+
+    "@parcel/watcher-linux-arm64-glibc": ["@parcel/watcher-linux-arm64-glibc@2.5.6", "", { "os": "linux", "cpu": "arm64" }, "sha512-f2g/DT3NhGPdBmMWYoxixqYr3v/UXcmLOYy16Bx0TM20Tchduwr4EaCbmxh1321TABqPGDpS8D/ggOTaljijOA=="],
+
+    "@parcel/watcher-linux-arm64-musl": ["@parcel/watcher-linux-arm64-musl@2.5.6", "", { "os": "linux", "cpu": "arm64" }, "sha512-qb6naMDGlbCwdhLj6hgoVKJl2odL34z2sqkC7Z6kzir8b5W65WYDpLB6R06KabvZdgoHI/zxke4b3zR0wAbDTA=="],
+
+    "@parcel/watcher-linux-x64-glibc": ["@parcel/watcher-linux-x64-glibc@2.5.6", "", { "os": "linux", "cpu": "x64" }, "sha512-kbT5wvNQlx7NaGjzPFu8nVIW1rWqV780O7ZtkjuWaPUgpv2NMFpjYERVi0UYj1msZNyCzGlaCWEtzc+exjMGbQ=="],
+
+    "@parcel/watcher-linux-x64-musl": ["@parcel/watcher-linux-x64-musl@2.5.6", "", { "os": "linux", "cpu": "x64" }, "sha512-1JRFeC+h7RdXwldHzTsmdtYR/Ku8SylLgTU/reMuqdVD7CtLwf0VR1FqeprZ0eHQkO0vqsbvFLXUmYm/uNKJBg=="],
+
+    "@parcel/watcher-wasm": ["@parcel/watcher-wasm@2.3.0", "", { "dependencies": { "is-glob": "^4.0.3", "micromatch": "^4.0.5", "napi-wasm": "^1.1.0" } }, "sha512-ejBAX8H0ZGsD8lSICDNyMbSEtPMWgDL0WFCt/0z7hyf5v8Imz4rAM8xY379mBsECkq/Wdqa5WEDLqtjZ+6NxfA=="],
+
+    "@parcel/watcher-win32-arm64": ["@parcel/watcher-win32-arm64@2.5.6", "", { "os": "win32", "cpu": "arm64" }, "sha512-3ukyebjc6eGlw9yRt678DxVF7rjXatWiHvTXqphZLvo7aC5NdEgFufVwjFfY51ijYEWpXbqF5jtrK275z52D4Q=="],
+
+    "@parcel/watcher-win32-ia32": ["@parcel/watcher-win32-ia32@2.5.6", "", { "os": "win32", "cpu": "ia32" }, "sha512-k35yLp1ZMwwee3Ez/pxBi5cf4AoBKYXj00CZ80jUz5h8prpiaQsiRPKQMxoLstNuqe2vR4RNPEAEcjEFzhEz/g=="],
+
+    "@parcel/watcher-win32-x64": ["@parcel/watcher-win32-x64@2.5.6", "", { "os": "win32", "cpu": "x64" }, "sha512-hbQlYcCq5dlAX9Qx+kFb0FHue6vbjlf0FrNzSKdYK2APUf7tGfGxQCk2ihEREmbR6ZMc0MVAD5RIX/41gpUzTw=="],
+
+    "@pkgjs/parseargs": ["@pkgjs/parseargs@0.11.0", "", {}, "sha512-+1VkjdD0QBLPodGrJUeqarH8VAIvQODIbwh9XpP5Syisf7YoQgsJKPNFoqqLQlu+VQ/tVSshMR6loPMn8U+dPg=="],
+
     "@poppinss/colors": ["@poppinss/colors@4.1.6", "", { "dependencies": { "kleur": "^4.1.5" } }, "sha512-H9xkIdFswbS8n1d6vmRd8+c10t2Qe+rZITbbDHHkQixH5+2x1FDGmi/0K+WgWiqQFKPSlIYB7jlH6Kpfn6Fleg=="],
 
     "@poppinss/dumper": ["@poppinss/dumper@0.6.5", "", { "dependencies": { "@poppinss/colors": "^4.1.5", "@sindresorhus/is": "^7.0.2", "supports-color": "^10.0.0" } }, "sha512-NBdYIb90J7LfOI32dOewKI1r7wnkiH6m920puQ3qHUeZkxNkQiFnXVWoE6YtFSv6QOiPPf7ys6i+HWWecDz7sw=="],
@@ -487,6 +591,22 @@
 
     "@rolldown/pluginutils": ["@rolldown/pluginutils@1.0.0-rc.3", "", {}, "sha512-eybk3TjzzzV97Dlj5c+XrBFW57eTNhzod66y9HrBlzJ6NsCrWCp/2kaPS3K9wJmurBC0Tdw4yPjXKZqlznim3Q=="],
 
+    "@rollup/plugin-alias": ["@rollup/plugin-alias@6.0.0", "", { "peerDependencies": { "rollup": ">=4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-tPCzJOtS7uuVZd+xPhoy5W4vThe6KWXNmsFCNktaAh5RTqcLiSfT4huPQIXkgJ6YCOjJHvecOAzQxLFhPxKr+g=="],
+
+    "@rollup/plugin-commonjs": ["@rollup/plugin-commonjs@29.0.2", "", { "dependencies": { "@rollup/pluginutils": "^5.0.1", "commondir": "^1.0.1", "estree-walker": "^2.0.2", "fdir": "^6.2.0", "is-reference": "1.2.1", "magic-string": "^0.30.3", "picomatch": "^4.0.2" }, "peerDependencies": { "rollup": "^2.68.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-S/ggWH1LU7jTyi9DxZOKyxpVd4hF/OZ0JrEbeLjXk/DFXwRny0tjD2c992zOUYQobLrVkRVMDdmHP16HKP7GRg=="],
+
+    "@rollup/plugin-inject": ["@rollup/plugin-inject@5.0.5", "", { "dependencies": { "@rollup/pluginutils": "^5.0.1", "estree-walker": "^2.0.2", "magic-string": "^0.30.3" }, "peerDependencies": { "rollup": "^1.20.0||^2.0.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-2+DEJbNBoPROPkgTDNe8/1YXWcqxbN5DTjASVIOx8HS+pITXushyNiBV56RB08zuptzz8gT3YfkqriTBVycepg=="],
+
+    "@rollup/plugin-json": ["@rollup/plugin-json@6.1.0", "", { "dependencies": { "@rollup/pluginutils": "^5.1.0" }, "peerDependencies": { "rollup": "^1.20.0||^2.0.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-EGI2te5ENk1coGeADSIwZ7G2Q8CJS2sF120T7jLw4xFw9n7wIOXHo+kIYRAoVpJAN+kmqZSoO3Fp4JtoNF4ReA=="],
+
+    "@rollup/plugin-node-resolve": ["@rollup/plugin-node-resolve@16.0.3", "", { "dependencies": { "@rollup/pluginutils": "^5.0.1", "@types/resolve": "1.20.2", "deepmerge": "^4.2.2", "is-module": "^1.0.0", "resolve": "^1.22.1" }, "peerDependencies": { "rollup": "^2.78.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-lUYM3UBGuM93CnMPG1YocWu7X802BrNF3jW2zny5gQyLQgRFJhV1Sq0Zi74+dh/6NBx1DxFC4b4GXg9wUCG5Qg=="],
+
+    "@rollup/plugin-replace": ["@rollup/plugin-replace@6.0.3", "", { "dependencies": { "@rollup/pluginutils": "^5.0.1", "magic-string": "^0.30.3" }, "peerDependencies": { "rollup": "^1.20.0||^2.0.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-J4RZarRvQAm5IF0/LwUUg+obsm+xZhYnbMXmXROyoSE1ATJe3oXSb9L5MMppdxP2ylNSjv6zFBwKYjcKMucVfA=="],
+
+    "@rollup/plugin-terser": ["@rollup/plugin-terser@1.0.0", "", { "dependencies": { "serialize-javascript": "^7.0.3", "smob": "^1.0.0", "terser": "^5.17.4" }, "peerDependencies": { "rollup": "^2.0.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-FnCxhTBx6bMOYQrar6C8h3scPt8/JwIzw3+AJ2K++6guogH5fYaIFia+zZuhqv0eo1RN7W1Pz630SyvLbDjhtQ=="],
+
+    "@rollup/pluginutils": ["@rollup/pluginutils@5.3.0", "", { "dependencies": { "@types/estree": "^1.0.0", "estree-walker": "^2.0.2", "picomatch": "^4.0.2" }, "peerDependencies": { "rollup": "^1.20.0||^2.0.0||^3.0.0||^4.0.0" }, "optionalPeers": ["rollup"] }, "sha512-5EdhGZtnu3V88ces7s53hhfK5KSASnJZv8Lulpc04cWO3REESroJXg73DFsOmgbU2BhwV0E20bu2IDZb3VKW4Q=="],
+
     "@rollup/rollup-android-arm-eabi": ["@rollup/rollup-android-arm-eabi@4.57.1", "", { "os": "android", "cpu": "arm" }, "sha512-A6ehUVSiSaaliTxai040ZpZ2zTevHYbvu/lDoeAteHI8QnaosIzm4qwtezfRg1jOYaUmnzLX1AOD6Z+UJjtifg=="],
 
     "@rollup/rollup-android-arm64": ["@rollup/rollup-android-arm64@4.57.1", "", { "os": "android", "cpu": "arm64" }, "sha512-dQaAddCY9YgkFHZcFNS/606Exo8vcLHwArFZ7vxXq4rigo2bb494/xKMMwRRQW6ug7Js6yXmBZhSBRuBvCCQ3w=="],
@@ -539,6 +659,8 @@
 
     "@sindresorhus/is": ["@sindresorhus/is@7.2.0", "", {}, "sha512-P1Cz1dWaFfR4IR+U13mqqiGsLFf1KbayybWwdd2vfctdV6hDpUkgCY0nKOLLTMSoRd/jJNjtbqzf13K8DCCXQw=="],
 
+    "@sindresorhus/merge-streams": ["@sindresorhus/merge-streams@4.0.0", "", {}, "sha512-tlqY9xq5ukxTUZBmoOp+m61cqwQD5pHJtFY3Mn8CA8ps6yghLH/Hw8UPdqg4OLmFW3IFlcXnQNmo/dh8HzXYIQ=="],
+
     "@solid-primitives/event-listener": ["@solid-primitives/event-listener@2.4.3", "", { "dependencies": { "@solid-primitives/utils": "^6.3.2" }, "peerDependencies": { "solid-js": "^1.6.12" } }, "sha512-h4VqkYFv6Gf+L7SQj+Y6puigL/5DIi7x5q07VZET7AWcS+9/G3WfIE9WheniHWJs51OEkRB43w6lDys5YeFceg=="],
 
     "@solid-primitives/keyboard": ["@solid-primitives/keyboard@1.3.3", "", { "dependencies": { "@solid-primitives/event-listener": "^2.4.3", "@solid-primitives/rootless": "^1.5.2", "@solid-primitives/utils": "^6.3.2" }, "peerDependencies": { "solid-js": "^1.6.12" } }, "sha512-9dQHTTgLBqyAI7aavtO+HnpTVJgWQA1ghBSrmLtMu1SMxLPDuLfuNr+Tk5udb4AL4Ojg7h9JrKOGEEDqsJXWJA=="],
@@ -653,8 +775,12 @@
 
     "@testing-library/dom": ["@testing-library/dom@10.4.1", "", { "dependencies": { "@babel/code-frame": "^7.10.4", "@babel/runtime": "^7.12.5", "@types/aria-query": "^5.0.1", "aria-query": "5.3.0", "dom-accessibility-api": "^0.5.9", "lz-string": "^1.5.0", "picocolors": "1.1.1", "pretty-format": "^27.0.2" } }, "sha512-o4PXJQidqJl82ckFaXUeoAW+XysPLauYI43Abki5hABd853iMhitooc6znOnczgbTYmEP6U6/y1ZyKAIsvMKGg=="],
 
+    "@testing-library/jest-dom": ["@testing-library/jest-dom@6.9.1", "", { "dependencies": { "@adobe/css-tools": "^4.4.0", "aria-query": "^5.0.0", "css.escape": "^1.5.1", "dom-accessibility-api": "^0.6.3", "picocolors": "^1.1.1", "redent": "^3.0.0" } }, "sha512-zIcONa+hVtVSSep9UT3jZ5rizo2BsxgyDYU7WFD5eICBE7no3881HGeb/QkGfsJs6JTkY1aQhT7rIPC7e+0nnA=="],
+
     "@testing-library/react": ["@testing-library/react@16.3.2", "", { "dependencies": { "@babel/runtime": "^7.12.5" }, "peerDependencies": { "@testing-library/dom": "^10.0.0", "@types/react": "^18.0.0 || ^19.0.0", "@types/react-dom": "^18.0.0 || ^19.0.0", "react": "^18.0.0 || ^19.0.0", "react-dom": "^18.0.0 || ^19.0.0" }, "optionalPeers": ["@types/react", "@types/react-dom"] }, "sha512-XU5/SytQM+ykqMnAnvB2umaJNIOsLF3PVv//1Ew4CTcpz0/BRyy/af40qqrt7SjKpDdT1saBMc42CUok5gaw+g=="],
 
+    "@testing-library/user-event": ["@testing-library/user-event@14.6.1", "", { "peerDependencies": { "@testing-library/dom": ">=7.21.4" } }, "sha512-vq7fv0rnt+QTXgPxr5Hjc210p6YKq2kmdziLgnsZGgLJ9e6VAShx1pACLuRjd/AS/sr7phAR58OIIpf0LlmQNw=="],
+
     "@types/aria-query": ["@types/aria-query@5.0.4", "", {}, "sha512-rfT93uj5s0PRL7EzccGMs3brplhcrghnDoV26NqKhCAS1hVo+WdNsPvE/yb6ilfr5hi2MEk6d5EWJTKdxg8jVw=="],
 
     "@types/babel__core": ["@types/babel__core@7.20.5", "", { "dependencies": { "@babel/parser": "^7.20.7", "@babel/types": "^7.20.7", "@types/babel__generator": "*", "@types/babel__template": "*", "@types/babel__traverse": "*" } }, "sha512-qoQprZvz5wQFJwMDqeseRXWv3rqMvhgpbXFfVyWhbx9X47POIA6i/+dXefEmZKoAgOaTdaIgNSMqMIU61yRyzA=="],
@@ -665,6 +791,8 @@
 
     "@types/babel__traverse": ["@types/babel__traverse@7.28.0", "", { "dependencies": { "@babel/types": "^7.28.2" } }, "sha512-8PvcXf70gTDZBgt9ptxJ8elBeBjcLOAcOtoO/mPJjtji1+CdGbHgm77om1GrsPxsiE+uXIpNSK64UYaIwQXd4Q=="],
 
+    "@types/braces": ["@types/braces@3.0.5", "", {}, "sha512-SQFof9H+LXeWNz8wDe7oN5zu7ket0qwMu5vZubW4GCJ8Kkeh6nBWUz87+KTz/G3Kqsrp0j/W253XJb3KMEeg3w=="],
+
     "@types/chai": ["@types/chai@5.2.3", "", { "dependencies": { "@types/deep-eql": "*", "assertion-error": "^2.0.1" } }, "sha512-Mw558oeA9fFbv65/y4mHtXDs9bPnFMZAL/jxdPFUpOHHIXX91mcgEHbS5Lahr+pwZFR8A7GQleRWeI6cGFC2UA=="],
 
     "@types/debug": ["@types/debug@4.1.12", "", { "dependencies": { "@types/ms": "*" } }, "sha512-vIChWdVG3LG1SMxEvI/AK+FWJthlrqlTu7fbrlywTkkaONwk/UAGaULXRlf8vkzFBLVm0zkMdCquhL5aOjhXPQ=="],
@@ -679,6 +807,8 @@
 
     "@types/mdast": ["@types/mdast@4.0.4", "", { "dependencies": { "@types/unist": "*" } }, "sha512-kGaNbPh1k7AFzgpud/gMdvIm5xuECykRR+JnWKQno9TAXVa6WIVCGTPvYGekIDL4uwCZQSYbUxNBSb1aUo79oA=="],
 
+    "@types/micromatch": ["@types/micromatch@4.0.10", "", { "dependencies": { "@types/braces": "*" } }, "sha512-5jOhFDElqr4DKTrTEbnW8DZ4Hz5LRUEmyrGpCMrD/NphYv3nUnaF08xmSLx1rGGnyEs/kFnhiw6dCgcDqMr5PQ=="],
+
     "@types/ms": ["@types/ms@2.1.0", "", {}, "sha512-GsCCIZDE/p3i96vtEqx+7dBUGXrc7zeSK3wwPHIaRThS+9OhWIXRqzs4d6k1SVU8g91DrNRWxWUGhp5KXQb2VA=="],
 
     "@types/node": ["@types/node@22.19.11", "", { "dependencies": { "undici-types": "~6.21.0" } }, "sha512-BH7YwL6rA93ReqeQS1c4bsPpcfOmJasG+Fkr6Y59q83f9M1WcBRHR2vM+P9eOisYRcN3ujQoiZY8uk5W+1WL8w=="],
@@ -687,12 +817,20 @@
 
     "@types/react-dom": ["@types/react-dom@19.2.3", "", { "peerDependencies": { "@types/react": "^19.2.0" } }, "sha512-jp2L/eY6fn+KgVVQAOqYItbF0VY/YApe5Mz2F0aykSO8gx31bYCZyvSeYxCHKvzHG5eZjc+zyaS5BrBWya2+kQ=="],
 
+    "@types/resolve": ["@types/resolve@1.20.2", "", {}, "sha512-60BCwRFOZCQhDncwQdxxeOEEkbc5dIMccYLwbxsS4TUNeVECQ/pBJ0j09mrHOl/JJvpRPGwO9SvE4nR2Nb/a4Q=="],
+
     "@types/unist": ["@types/unist@3.0.3", "", {}, "sha512-ko/gIFJRv177XgZsZcBwnqJN5x/Gien8qNOn0D5bQU/zAzVf9Zt3BlcUiLqhV9y4ARk0GbT3tnUiPNgnTXzc/Q=="],
 
     "@ungap/structured-clone": ["@ungap/structured-clone@1.3.0", "", {}, "sha512-WmoN8qaIAo7WTYWbAZuG8PYEhn5fkz7dZrqTBZ7dtt//lL2Gwms1IcnQ5yHqjDfX8Ft5j4YzDM23f87zBfDe9g=="],
 
+    "@vercel/nft": ["@vercel/nft@1.5.0", "", { "dependencies": { "@mapbox/node-pre-gyp": "^2.0.0", "@rollup/pluginutils": "^5.1.3", "acorn": "^8.6.0", "acorn-import-attributes": "^1.9.5", "async-sema": "^3.1.1", "bindings": "^1.4.0", "estree-walker": "2.0.2", "glob": "^13.0.0", "graceful-fs": "^4.2.9", "node-gyp-build": "^4.2.2", "picomatch": "^4.0.2", "resolve-from": "^5.0.0" }, "bin": { "nft": "out/cli.js" } }, "sha512-IWTDeIoWhQ7ZtRO/JRKH+jhmeQvZYhtGPmzw/QGDY+wDCQqfm25P9yIdoAFagu4fWsK4IwZXDFIjrmp5rRm/sA=="],
+
+    "@vinxi/listhen": ["@vinxi/listhen@1.5.6", "", { "dependencies": { "@parcel/watcher": "^2.3.0", "@parcel/watcher-wasm": "2.3.0", "citty": "^0.1.5", "clipboardy": "^4.0.0", "consola": "^3.2.3", "defu": "^6.1.4", "get-port-please": "^3.1.2", "h3": "^1.10.0", "http-shutdown": "^1.2.2", "jiti": "^1.21.0", "mlly": "^1.5.0", "node-forge": "^1.3.1", "pathe": "^1.1.2", "std-env": "^3.7.0", "ufo": "^1.3.2", "untun": "^0.1.3", "uqr": "^0.1.2" }, "bin": { "listen": "bin/listhen.mjs", "listhen": "bin/listhen.mjs" } }, "sha512-WSN1z931BtasZJlgPp704zJFnQFRg7yzSjkm3MzAWQYe4uXFXlFr1hc5Ac2zae5/HDOz5x1/zDM5Cb54vTCnWw=="],
+
     "@vitejs/plugin-react": ["@vitejs/plugin-react@5.1.4", "", { "dependencies": { "@babel/core": "^7.29.0", "@babel/plugin-transform-react-jsx-self": "^7.27.1", "@babel/plugin-transform-react-jsx-source": "^7.27.1", "@rolldown/pluginutils": "1.0.0-rc.3", "@types/babel__core": "^7.20.5", "react-refresh": "^0.18.0" }, "peerDependencies": { "vite": "^4.2.0 || ^5.0.0 || ^6.0.0 || ^7.0.0" } }, "sha512-VIcFLdRi/VYRU8OL/puL7QXMYafHmqOnwTZY50U1JPlCNj30PxCMx65c494b1K9be9hX83KVt0+gTEwTWLqToA=="],
 
+    "@vitest/coverage-v8": ["@vitest/coverage-v8@3.2.4", "", { "dependencies": { "@ampproject/remapping": "^2.3.0", "@bcoe/v8-coverage": "^1.0.2", "ast-v8-to-istanbul": "^0.3.3", "debug": "^4.4.1", "istanbul-lib-coverage": "^3.2.2", "istanbul-lib-report": "^3.0.1", "istanbul-lib-source-maps": "^5.0.6", "istanbul-reports": "^3.1.7", "magic-string": "^0.30.17", "magicast": "^0.3.5", "std-env": "^3.9.0", "test-exclude": "^7.0.1", "tinyrainbow": "^2.0.0" }, "peerDependencies": { "@vitest/browser": "3.2.4", "vitest": "3.2.4" }, "optionalPeers": ["@vitest/browser"] }, "sha512-EyF9SXU6kS5Ku/U82E259WSnvg6c8KTjppUncuNdm5QHpe17mwREHnjDzozC8x9MZ0xfBUFSaLkRv4TMA75ALQ=="],
+
     "@vitest/expect": ["@vitest/expect@3.2.4", "", { "dependencies": { "@types/chai": "^5.2.2", "@vitest/spy": "3.2.4", "@vitest/utils": "3.2.4", "chai": "^5.2.0", "tinyrainbow": "^2.0.0" } }, "sha512-Io0yyORnB6sikFlt8QW5K7slY4OjqNX9jmJQ02QDda8lyM6B5oNgVWoSoKPac8/kgnCUzuHQKrSLtu/uOqqrig=="],
 
     "@vitest/mocker": ["@vitest/mocker@3.2.4", "", { "dependencies": { "@vitest/spy": "3.2.4", "estree-walker": "^3.0.3", "magic-string": "^0.30.17" }, "peerDependencies": { "msw": "^2.4.9", "vite": "^5.0.0 || ^6.0.0 || ^7.0.0-0" }, "optionalPeers": ["msw", "vite"] }, "sha512-46ryTE9RZO/rfDd7pEqFl7etuyzekzEhUbTW3BvmeO/BcCMEgq59BKhek3dXDWgAj4oMK6OZi+vRr1wPW6qjEQ=="],
@@ -713,10 +851,18 @@
 
     "@xterm/xterm": ["@xterm/xterm@6.0.0", "", {}, "sha512-TQwDdQGtwwDt+2cgKDLn0IRaSxYu1tSUjgKarSDkUM0ZNiSRXFpjxEsvc/Zgc5kq5omJ+V0a8/kIM2WD3sMOYg=="],
 
+    "abbrev": ["abbrev@3.0.1", "", {}, "sha512-AO2ac6pjRB3SJmGJo+v5/aK6Omggp6fsLrs6wN9bd35ulu4cCwaAU9+7ZhXjeqHVkaHThLuzH0nZr0YpCDhygg=="],
+
+    "abort-controller": ["abort-controller@3.0.0", "", { "dependencies": { "event-target-shim": "^5.0.0" } }, "sha512-h8lQ8tacZYnR3vNQTgibj+tODHI5/+l06Au2Pcriv/Gmet0eaj4TwWH41sO9wnHDiQsEj19q0drzdWdeAHtweg=="],
+
     "acorn": ["acorn@8.15.0", "", { "bin": { "acorn": "bin/acorn" } }, "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg=="],
 
+    "acorn-import-attributes": ["acorn-import-attributes@1.9.5", "", { "peerDependencies": { "acorn": "^8" } }, "sha512-n02Vykv5uA3eHGM/Z2dQrcD56kL8TyDb2p1+0P83PClMnC/nc+anbQRhIOWnSq4Ke/KvDPrY3C9hDtC/A3eHnQ=="],
+
     "agent-base": ["agent-base@7.1.4", "", {}, "sha512-MnA+YT8fwfJPgBx3m60MNqakm30XOkyIoH1y6huTQvC0PwZG7ki8NacLBcrPbNoo8vEZy7Jpuk7+jMO+CUovTQ=="],
 
+    "ansi-align": ["ansi-align@3.0.1", "", { "dependencies": { "string-width": "^4.1.0" } }, "sha512-IOfwwBF5iczOjp/WeY4YxyjqAFMQoZufdQWDd19SEExbVLNXqvpzSJ/M7Za4/sCPmQ0+GRquoA7bGcINcxew6w=="],
+
     "ansi-regex": ["ansi-regex@5.0.1", "", {}, "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ=="],
 
     "ansi-styles": ["ansi-styles@5.2.0", "", {}, "sha512-Cxwpt2SfTzTtXcfOlzGEee8O+c+MmUgGrNiBcXnuWxuFJHe6a5Hz7qwhwe5OgaSYI0IJvkLqWX1ASG+cJOkEiA=="],
@@ -725,6 +871,12 @@
 
     "anymatch": ["anymatch@3.1.3", "", { "dependencies": { "normalize-path": "^3.0.0", "picomatch": "^2.0.4" } }, "sha512-KMReFUr0B4t+D+OBkjR3KYqvocp2XaSzO55UcB6mgQMd3KbcE+mWTyvVV7D/zsdEbNnV6acZUutkiHQXvTr1Rw=="],
 
+    "archiver": ["archiver@7.0.1", "", { "dependencies": { "archiver-utils": "^5.0.2", "async": "^3.2.4", "buffer-crc32": "^1.0.0", "readable-stream": "^4.0.0", "readdir-glob": "^1.1.2", "tar-stream": "^3.0.0", "zip-stream": "^6.0.1" } }, "sha512-ZcbTaIqJOfCc03QwD468Unz/5Ir8ATtvAHsK+FdXbDIbGfihqh9mrvdcYunQzqn4HrvWWaFyaxJhGZagaJJpPQ=="],
+
+    "archiver-utils": ["archiver-utils@5.0.2", "", { "dependencies": { "glob": "^10.0.0", "graceful-fs": "^4.2.0", "is-stream": "^2.0.1", "lazystream": "^1.0.0", "lodash": "^4.17.15", "normalize-path": "^3.0.0", "readable-stream": "^4.0.0" } }, "sha512-wuLJMmIBQYCsGZgYLTy5FIB2pF6Lfb6cXMSF8Qywwk3t20zWnAi7zLcQFdKQmIB8wyZpY5ER38x08GbwtR2cLA=="],
+
+    "arcjet": ["arcjet@1.3.1", "", { "dependencies": { "@arcjet/analyze": "1.3.1", "@arcjet/cache": "1.3.1", "@arcjet/duration": "1.3.1", "@arcjet/headers": "1.3.1", "@arcjet/protocol": "1.3.1", "@arcjet/runtime": "1.3.1", "@arcjet/stable-hash": "1.3.1" } }, "sha512-dcjPkWgk0BqSIcYdAqEqscXt0hBB6nMjybzkNiY4FW4s/T9MVIvIG09fiXUpqXKLPLTkjhUWc+oAfV5jtnNR+w=="],
+
     "argparse": ["argparse@2.0.1", "", {}, "sha512-8+9WqebbFzpX9OR+Wa6O29asIogeRMzcGtAINdpMHHyAg10f05aSFVBbcEqGf/PXw1EjAZ+q2/bEBg3DvurK3Q=="],
 
     "aria-hidden": ["aria-hidden@1.2.6", "", { "dependencies": { "tslib": "^2.0.0" } }, "sha512-ik3ZgC9dY/lYVVM++OISsaYDeg1tb0VtP5uL3ouh1koGOaUMDPpbFIei4JkFimWUFPn90sbMNMXQAIVOlnYKJA=="],
@@ -735,28 +887,68 @@
 
     "ast-types": ["ast-types@0.16.1", "", { "dependencies": { "tslib": "^2.0.1" } }, "sha512-6t10qk83GOG8p0vKmaCr8eiilZwO171AvbROMtvvNiwrTly62t+7XkA8RdIIVbpMhCASAsxgAzdRSwh6nw/5Dg=="],
 
+    "ast-v8-to-istanbul": ["ast-v8-to-istanbul@0.3.12", "", { "dependencies": { "@jridgewell/trace-mapping": "^0.3.31", "estree-walker": "^3.0.3", "js-tokens": "^10.0.0" } }, "sha512-BRRC8VRZY2R4Z4lFIL35MwNXmwVqBityvOIwETtsCSwvjl0IdgFsy9NhdaA6j74nUdtJJlIypeRhpDam19Wq3g=="],
+
+    "async": ["async@3.2.6", "", {}, "sha512-htCUDlxyyCLMgaM3xXg0C0LW2xqfuQ6p05pCEIsXuyQ+a1koYKTuBMzRNwmybfLgvJDMd0r1LTn4+E0Ti6C2AA=="],
+
+    "async-sema": ["async-sema@3.1.1", "", {}, "sha512-tLRNUXati5MFePdAk8dw7Qt7DpxPB60ofAgn8WRhW6a2rcimZnYBP9oxHiv0OHy+Wz7kPMG+t4LGdt31+4EmGg=="],
+
+    "b4a": ["b4a@1.8.0", "", { "peerDependencies": { "react-native-b4a": "*" }, "optionalPeers": ["react-native-b4a"] }, "sha512-qRuSmNSkGQaHwNbM7J78Wwy+ghLEYF1zNrSeMxj4Kgw6y33O3mXcQ6Ie9fRvfU/YnxWkOchPXbaLb73TkIsfdg=="],
+
     "babel-dead-code-elimination": ["babel-dead-code-elimination@1.0.12", "", { "dependencies": { "@babel/core": "^7.23.7", "@babel/parser": "^7.23.6", "@babel/traverse": "^7.23.7", "@babel/types": "^7.23.6" } }, "sha512-GERT7L2TiYcYDtYk1IpD+ASAYXjKbLTDPhBtYj7X1NuRMDTMtAx9kyBenub1Ev41lo91OHCKdmP+egTDmfQ7Ig=="],
 
     "bail": ["bail@2.0.2", "", {}, "sha512-0xO6mYd7JB2YesxDKplafRpsiOzPt9V02ddPCLbY1xYGPOX24NTyN50qnUxgCPcSoYMhKpAuBTjQoRZCAkUDRw=="],
 
+    "balanced-match": ["balanced-match@4.0.4", "", {}, "sha512-BLrgEcRTwX2o6gGxGOCNyMvGSp35YofuYzw9h1IMTRmKqttAZZVU67bdb9Pr2vUHA8+j3i2tJfjO6C6+4myGTA=="],
+
+    "bare-events": ["bare-events@2.8.2", "", { "peerDependencies": { "bare-abort-controller": "*" }, "optionalPeers": ["bare-abort-controller"] }, "sha512-riJjyv1/mHLIPX4RwiK+oW9/4c3TEUeORHKefKAKnZ5kyslbN+HXowtbaVEqt4IMUB7OXlfixcs6gsFeo/jhiQ=="],
+
+    "bare-fs": ["bare-fs@4.6.0", "", { "dependencies": { "bare-events": "^2.5.4", "bare-path": "^3.0.0", "bare-stream": "^2.6.4", "bare-url": "^2.2.2", "fast-fifo": "^1.3.2" }, "peerDependencies": { "bare-buffer": "*" }, "optionalPeers": ["bare-buffer"] }, "sha512-2YkS7NuiJceSEbyEOdSNLE9tsGd+f4+f7C+Nik/MCk27SYdwIMPT/yRKvg++FZhQXgk0KWJKJyXX9RhVV0RGqA=="],
+
+    "bare-os": ["bare-os@3.8.7", "", {}, "sha512-G4Gr1UsGeEy2qtDTZwL7JFLo2wapUarz7iTMcYcMFdS89AIQuBoyjgXZz0Utv7uHs3xA9LckhVbeBi8lEQrC+w=="],
+
+    "bare-path": ["bare-path@3.0.0", "", { "dependencies": { "bare-os": "^3.0.1" } }, "sha512-tyfW2cQcB5NN8Saijrhqn0Zh7AnFNsnczRcuWODH0eYAXBsJ5gVxAUuNr7tsHSC6IZ77cA0SitzT+s47kot8Mw=="],
+
+    "bare-stream": ["bare-stream@2.12.0", "", { "dependencies": { "streamx": "^2.25.0", "teex": "^1.0.1" }, "peerDependencies": { "bare-abort-controller": "*", "bare-buffer": "*", "bare-events": "*" }, "optionalPeers": ["bare-abort-controller", "bare-buffer", "bare-events"] }, "sha512-w28i8lkBgREV3rPXGbgK+BO66q+ZpKqRWrZLiCdmmUlLPrQ45CzkvRhN+7lnv00Gpi2zy5naRxnUFAxCECDm9g=="],
+
+    "bare-url": ["bare-url@2.4.0", "", { "dependencies": { "bare-path": "^3.0.0" } }, "sha512-NSTU5WN+fy/L0DDenfE8SXQna4voXuW0FHM7wH8i3/q9khUSchfPbPezO4zSFMnDGIf9YE+mt/RWhZgNRKRIXA=="],
+
+    "base64-js": ["base64-js@1.5.1", "", {}, "sha512-AKpaYlHn8t4SVbOHCy+b5+KKgvR4vrsD8vbvrbiQJps7fKDTkjkDry6ji0rUJjC0kzbNePLwzxq8iypo41qeWA=="],
+
     "baseline-browser-mapping": ["baseline-browser-mapping@2.9.19", "", { "bin": { "baseline-browser-mapping": "dist/cli.js" } }, "sha512-ipDqC8FrAl/76p2SSWKSI+H9tFwm7vYqXQrItCuiVPt26Km0jS+NzSsBWAaBusvSbQcfJG+JitdMm+wZAgTYqg=="],
 
     "bidi-js": ["bidi-js@1.0.3", "", { "dependencies": { "require-from-string": "^2.0.2" } }, "sha512-RKshQI1R3YQ+n9YJz2QQ147P66ELpa1FQEg20Dk8oW9t2KgLbpDLLp9aGZ7y8WHSshDknG0bknqGw5/tyCs5tw=="],
 
     "binary-extensions": ["binary-extensions@2.3.0", "", {}, "sha512-Ceh+7ox5qe7LJuLHoY0feh3pHuUDHAcRUeyL2VYghZwfpkNIy/+8Ocg0a3UuSoYzavmylwuLWQOf3hl0jjMMIw=="],
 
+    "bindings": ["bindings@1.5.0", "", { "dependencies": { "file-uri-to-path": "1.0.0" } }, "sha512-p2q/t/mhvuOj/UeLlV6566GD/guowlr0hHxClI0W9m7MWYkL1F0hLo+0Aexs9HSPCtR1SXQ0TD3MMKrXZajbiQ=="],
+
     "blake3-wasm": ["blake3-wasm@2.1.5", "", {}, "sha512-F1+K8EbfOZE49dtoPtmxUQrpXaBIl3ICvasLh+nJta0xkz+9kF/7uet9fLnwKqhDrmj6g+6K3Tw9yQPUg2ka5g=="],
 
     "boolbase": ["boolbase@1.0.0", "", {}, "sha512-JZOSA7Mo9sNGB8+UjSgzdLtokWAky1zbztM3WRLCbZ70/3cTANmQmOdR7y2g+J0e2WXywy1yS468tY+IruqEww=="],
 
+    "boxen": ["boxen@8.0.1", "", { "dependencies": { "ansi-align": "^3.0.1", "camelcase": "^8.0.0", "chalk": "^5.3.0", "cli-boxes": "^3.0.0", "string-width": "^7.2.0", "type-fest": "^4.21.0", "widest-line": "^5.0.0", "wrap-ansi": "^9.0.0" } }, "sha512-F3PH5k5juxom4xktynS7MoFY+NUWH5LC4CnH11YB8NPew+HLpmBLCybSAEyb2F+4pRXhuhWqFesoQd6DAyc2hw=="],
+
+    "brace-expansion": ["brace-expansion@5.0.5", "", { "dependencies": { "balanced-match": "^4.0.2" } }, "sha512-VZznLgtwhn+Mact9tfiwx64fA9erHH/MCXEUfB/0bX/6Fz6ny5EGTXYltMocqg4xFAQZtnO3DHWWXi8RiuN7cQ=="],
+
     "braces": ["braces@3.0.3", "", { "dependencies": { "fill-range": "^7.1.1" } }, "sha512-yQbXgO/OSZVD2IsiLlro+7Hf6Q18EJrKSEsdoMzKePKXct3gvD8oLcOQdIzGupr5Fj+EDe8gO/lxc1BzfMpxvA=="],
 
     "browserslist": ["browserslist@4.28.1", "", { "dependencies": { "baseline-browser-mapping": "^2.9.0", "caniuse-lite": "^1.0.30001759", "electron-to-chromium": "^1.5.263", "node-releases": "^2.0.27", "update-browserslist-db": "^1.2.0" }, "bin": { "browserslist": "cli.js" } }, "sha512-ZC5Bd0LgJXgwGqUknZY/vkUQ04r8NXnJZ3yYi4vDmSiZmC/pdSN0NbNRPxZpbtO4uAfDUAFffO8IZoM3Gj8IkA=="],
 
+    "buffer": ["buffer@6.0.3", "", { "dependencies": { "base64-js": "^1.3.1", "ieee754": "^1.2.1" } }, "sha512-FTiCpNxtwiZZHEZbcbTIcZjERVICn9yq/pDFkTl95/AxzD1naBctN7YO68riM/gLSDY7sdrMby8hofADYuuqOA=="],
+
+    "buffer-crc32": ["buffer-crc32@1.0.0", "", {}, "sha512-Db1SbgBS/fg/392AblrMJk97KggmvYhr4pB5ZIMTWtaivCPMWLkmb7m21cJvpvgK+J3nsU2CmmixNBZx4vFj/w=="],
+
     "buffer-from": ["buffer-from@1.1.2", "", {}, "sha512-E+XQCRwSbaaiChtv6k6Dwgc+bx+Bs6vuKJHHl5kox/BaKbhiXzqQOwK4cO22yElGp2OCmjwVhT3HmxgyPGnJfQ=="],
 
+    "bundle-name": ["bundle-name@4.1.0", "", { "dependencies": { "run-applescript": "^7.0.0" } }, "sha512-tjwM5exMg6BGRI+kNmTntNsvdZS1X8BFYS6tnJ2hdH0kVxM6/eVZ2xy+FqStSWvYmtfFMDLIxurorHwDKfDz5Q=="],
+
+    "c12": ["c12@3.3.4", "", { "dependencies": { "chokidar": "^5.0.0", "confbox": "^0.2.4", "defu": "^6.1.6", "dotenv": "^17.3.1", "exsolve": "^1.0.8", "giget": "^3.2.0", "jiti": "^2.6.1", "ohash": "^2.0.11", "pathe": "^2.0.3", "perfect-debounce": "^2.1.0", "pkg-types": "^2.3.0", "rc9": "^3.0.1" }, "peerDependencies": { "magicast": "*" }, "optionalPeers": ["magicast"] }, "sha512-cM0ApFQSBXuourJejzwv/AuPRvAxordTyParRVcHjjtXirtkzM0uK2L9TTn9s0cXZbG7E55jCivRQzoxYmRAlA=="],
+
     "cac": ["cac@6.7.14", "", {}, "sha512-b6Ilus+c3RrdDk+JhLKUAQfzzgLEPy6wcXqS7f/xe1EETvsDP6GORG7SFuOs6cID5YkqchW/LXZbX5bc8j7ZcQ=="],
 
+    "camelcase": ["camelcase@8.0.0", "", {}, "sha512-8WB3Jcas3swSvjIeA2yvCJ+Miyz5l1ZmB6HFb9R1317dt9LCQoswg/BGrmAmkWVEszSrrg4RwmO46qIm2OEnSA=="],
+
     "caniuse-lite": ["caniuse-lite@1.0.30001769", "", {}, "sha512-BCfFL1sHijQlBGWBMuJyhZUhzo7wer5sVj9hqekB/7xn0Ypy+pER/edCYQm4exbXj4WiySGp40P8UuTh6w1srg=="],
 
     "ccount": ["ccount@2.0.1", "", {}, "sha512-eyrF0jiFpY+3drT6383f1qhkbGsLSifNAjA61IUjZjmLCWjItY6LB9ft9YhoDgwfmclB2zhu51Lc7+95b8NRAg=="],
@@ -781,25 +973,65 @@
 
     "chokidar": ["chokidar@3.6.0", "", { "dependencies": { "anymatch": "~3.1.2", "braces": "~3.0.2", "glob-parent": "~5.1.2", "is-binary-path": "~2.1.0", "is-glob": "~4.0.1", "normalize-path": "~3.0.0", "readdirp": "~3.6.0" }, "optionalDependencies": { "fsevents": "~2.3.2" } }, "sha512-7VT13fmjotKpGipCW9JEQAusEPE+Ei8nl6/g4FBAmIm0GOOLMua9NDDo/DWp0ZAxCr3cPq5ZpBqmPAQgDda2Pw=="],
 
+    "chownr": ["chownr@3.0.0", "", {}, "sha512-+IxzY9BZOQd/XuYPRmrvEVjF/nqj5kgT4kEq7VofrDoM1MxoRjEWkrCC3EtLi59TVawxTAn+orJwFQcrqEN1+g=="],
+
+    "citty": ["citty@0.1.6", "", { "dependencies": { "consola": "^3.2.3" } }, "sha512-tskPPKEs8D2KPafUypv2gxwJP8h/OaJmC82QQGGDQcHvXX43xF2VDACcJVmZ0EuSxkpO9Kc4MlrA3q0+FG58AQ=="],
+
     "class-variance-authority": ["class-variance-authority@0.7.1", "", { "dependencies": { "clsx": "^2.1.1" } }, "sha512-Ka+9Trutv7G8M6WT6SeiRWz792K5qEqIGEGzXKhAE6xOWAY6pPH8U+9IY3oCMv6kqTmLsv7Xh/2w2RigkePMsg=="],
 
+    "cli-boxes": ["cli-boxes@3.0.0", "", {}, "sha512-/lzGpEWL/8PfI0BmBOPRwp0c/wFNX1RdUML3jK/RcSBA9T8mZDdQpqYBKtCFTOfQbwPqWEOpjqW+Fnayc0969g=="],
+
     "client-only": ["client-only@0.0.1", "", {}, "sha512-IV3Ou0jSMzZrd3pZ48nLkT9DA7Ag1pnPzaiQhpW7c3RbcqqzvzzVu+L8gfqMp/8IM2MQtSiqaCxrrcfu8I8rMA=="],
 
+    "clipboardy": ["clipboardy@4.0.0", "", { "dependencies": { "execa": "^8.0.1", "is-wsl": "^3.1.0", "is64bit": "^2.0.0" } }, "sha512-5mOlNS0mhX0707P2I0aZ2V/cmHUEO/fL7VFLqszkhUsxt7RwnmrInf/eEQKlf5GzvYeHIjT+Ov1HRfNmymlG0w=="],
+
+    "cliui": ["cliui@9.0.1", "", { "dependencies": { "string-width": "^7.2.0", "strip-ansi": "^7.1.0", "wrap-ansi": "^9.0.0" } }, "sha512-k7ndgKhwoQveBL+/1tqGJYNz097I7WOvwbmmU2AR5+magtbjPWQTS1C5vzGkBC8Ym8UWRzfKUzUUqFLypY4Q+w=="],
+
     "clsx": ["clsx@2.1.1", "", {}, "sha512-eYm0QWBtUrBWZWG0d386OGAw16Z995PiOVo2B7bjWSbHedGl5e0ZWaq65kOGgUSNesEIDkB9ISbTg/JK9dhCZA=="],
 
+    "cluster-key-slot": ["cluster-key-slot@1.1.2", "", {}, "sha512-RMr0FhtfXemyinomL4hrWcYJxmX6deFdCxpJzhDttxgO1+bcCnkk+9drydLVDmAMG7NE6aN/fl4F7ucU/90gAA=="],
+
+    "cmdk": ["cmdk@1.1.1", "", { "dependencies": { "@radix-ui/react-compose-refs": "^1.1.1", "@radix-ui/react-dialog": "^1.1.6", "@radix-ui/react-id": "^1.1.0", "@radix-ui/react-primitive": "^2.0.2" }, "peerDependencies": { "react": "^18 || ^19 || ^19.0.0-rc", "react-dom": "^18 || ^19 || ^19.0.0-rc" } }, "sha512-Vsv7kFaXm+ptHDMZ7izaRsP70GgrW9NBNGswt9OZaVBLlE0SNpDq8eu/VGXyF9r7M0azK3Wy7OlYXsuyYLFzHg=="],
+
+    "color-convert": ["color-convert@2.0.1", "", { "dependencies": { "color-name": "~1.1.4" } }, "sha512-RRECPsj7iu/xb5oKYcsFHSppFNnsj/52OVTRKb4zP5onXwVF3zVmmToNcOfGC+CRDpfK/U584fMg38ZHCaElKQ=="],
+
+    "color-name": ["color-name@1.1.4", "", {}, "sha512-dOy+3AuW3a2wNbZHIuMZpTcgjGuLU/uBL/ubcZF9OXbDo8ff4O8yVp5Bf0efS8uEoYo5q4Fx7dY9OgQGXgAsQA=="],
+
     "comma-separated-tokens": ["comma-separated-tokens@2.0.3", "", {}, "sha512-Fu4hJdvzeylCfQPp9SGWidpzrMs7tTrlu6Vb8XGaRGck8QSNZJJp538Wrb60Lax4fPwR64ViY468OIUTbRlGZg=="],
 
     "commander": ["commander@2.20.3", "", {}, "sha512-GpVkmM8vF2vQUkj2LvZmD35JxeJOLCwJ9cUkugyk2nuhbv3+mJvpLYYt+0+USMxE+oj+ey/lJEnhZw75x/OMcQ=="],
 
+    "commondir": ["commondir@1.0.1", "", {}, "sha512-W9pAhw0ja1Edb5GVdIF1mjZw/ASI0AlShXM83UUGe2DVr5TdAPEA1OA8m/g8zWp9x6On7gqufY+FatDbC3MDQg=="],
+
+    "compatx": ["compatx@0.2.0", "", {}, "sha512-6gLRNt4ygsi5NyMVhceOCFv14CIdDFN7fQjX1U4+47qVE/+kjPoXMK65KWK+dWxmFzMTuKazoQ9sch6pM0p5oA=="],
+
+    "compress-commons": ["compress-commons@6.0.2", "", { "dependencies": { "crc-32": "^1.2.0", "crc32-stream": "^6.0.0", "is-stream": "^2.0.1", "normalize-path": "^3.0.0", "readable-stream": "^4.0.0" } }, "sha512-6FqVXeETqWPoGcfzrXb37E50NP0LXT8kAMu5ooZayhWWdgEY4lBEEcbQNXtkuKQsGduxiIcI4gOTsxTmuq/bSg=="],
+
+    "confbox": ["confbox@0.2.4", "", {}, "sha512-ysOGlgTFbN2/Y6Cg3Iye8YKulHw+R2fNXHrgSmXISQdMnomY6eNDprVdW9R5xBguEqI954+S6709UyiO7B+6OQ=="],
+
+    "consola": ["consola@3.4.2", "", {}, "sha512-5IKcdX0nnYavi6G7TtOhwkYzyjfJlatbjMjuLSfE2kYT5pMDOilZ4OvMhi637CcDICTmz3wARPoyhqyX1Y+XvA=="],
+
     "convert-source-map": ["convert-source-map@2.0.0", "", {}, "sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg=="],
 
     "convex": ["convex@1.31.7", "", { "dependencies": { "esbuild": "0.27.0", "prettier": "^3.0.0" }, "peerDependencies": { "@auth0/auth0-react": "^2.0.1", "@clerk/clerk-react": "^4.12.8 || ^5.0.0", "react": "^18.0.0 || ^19.0.0-0 || ^19.0.0" }, "optionalPeers": ["@auth0/auth0-react", "@clerk/clerk-react", "react"], "bin": { "convex": "bin/main.js" } }, "sha512-PtNMe1mAIOvA8Yz100QTOaIdgt2rIuWqencVXrb4McdhxBHZ8IJ1eXTnrgCC9HydyilGT1pOn+KNqT14mqn9fQ=="],
 
+    "convex-test": ["convex-test@0.0.49", "", { "peerDependencies": { "convex": "^1.32.0" } }, "sha512-mBDhwvxUZYtRuEx4a9opk7LI6IghcPOHd99QVPAzMugeYeAukLjkFkkkAU9J53edxxwGWfx1IsoKLzC+DK6ugg=="],
+
     "cookie": ["cookie@1.1.1", "", {}, "sha512-ei8Aos7ja0weRpFzJnEA9UHJ/7XQmqglbRwnf2ATjcB9Wq874VKH9kfjjirM6UhU2/E5fFYadylyhFldcqSidQ=="],
 
     "cookie-es": ["cookie-es@2.0.0", "", {}, "sha512-RAj4E421UYRgqokKUmotqAwuplYw15qtdXfY+hGzgCJ/MBjCVZcSoHK/kH9kocfjRjcDME7IiDWR/1WX1TM2Pg=="],
 
-    "crossws": ["crossws@0.4.4", "", { "peerDependencies": { "srvx": ">=0.7.1" }, "optionalPeers": ["srvx"] }, "sha512-w6c4OdpRNnudVmcgr7brb/+/HmYjMQvYToO/oTrprTwxRUiom3LYWU1PMWuD006okbUWpII1Ea9/+kwpUfmyRg=="],
+    "core-util-is": ["core-util-is@1.0.3", "", {}, "sha512-ZQBvi1DcpJ4GDqanjucZ2Hj3wEO5pZDS89BWbkcrvdxksJorwUDDZamX9ldFkp9aw2lmBDLgkObEA4DWNJ9FYQ=="],
+
+    "crc-32": ["crc-32@1.2.2", "", { "bin": { "crc32": "bin/crc32.njs" } }, "sha512-ROmzCKrTnOwybPcJApAA6WBWij23HVfGVNKqqrZpuyZOHqK2CwHSvpGuyt/UNNvaIjEd8X5IFGp4Mh+Ie1IHJQ=="],
+
+    "crc32-stream": ["crc32-stream@6.0.0", "", { "dependencies": { "crc-32": "^1.2.0", "readable-stream": "^4.0.0" } }, "sha512-piICUB6ei4IlTv1+653yq5+KoqfBYmj9bw6LqXoOneTMDXk5nM1qt12mFW1caG3LlJXEKW1Bp0WggEmIfQB34g=="],
+
+    "croner": ["croner@10.0.1", "", {}, "sha512-ixNtAJndqh173VQ4KodSdJEI6nuioBWI0V1ITNKhZZsO0pEMoDxz539T4FTTbSZ/xIOSuDnzxLVRqBVSvPNE2g=="],
+
+    "cross-spawn": ["cross-spawn@7.0.6", "", { "dependencies": { "path-key": "^3.1.0", "shebang-command": "^2.0.0", "which": "^2.0.1" } }, "sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA=="],
+
+    "crossws": ["crossws@0.3.5", "", { "dependencies": { "uncrypto": "^0.1.3" } }, "sha512-ojKiDvcmByhwa8YYqbQI/hg7MEU0NC03+pSdEq4ZUnZR9xXpwk7E43SMNGkn+JxJGPFtNvQ48+vV2p+P1ml5PA=="],
 
     "css-select": ["css-select@5.2.2", "", { "dependencies": { "boolbase": "^1.0.0", "css-what": "^6.1.0", "domhandler": "^5.0.2", "domutils": "^3.0.1", "nth-check": "^2.0.1" } }, "sha512-TizTzUddG/xYLA3NXodFM0fSbNizXjOKhqiQQwvhlspadZokn1KDy0NZFS0wuEubIYAV5/c1/lAr0TaaFXEXzw=="],
 
@@ -807,6 +1039,8 @@
 
     "css-what": ["css-what@6.2.2", "", {}, "sha512-u/O3vwbptzhMs3L1fQE82ZSLHQQfto5gyZzwteVIEyeaY5Fc7R4dapF/BvRoSYFeqfBk4m0V1Vafq5Pjv25wvA=="],
 
+    "css.escape": ["css.escape@1.5.1", "", {}, "sha512-YUifsXXuknHlUsmlgyY0PKzgPOr7/FjCePfHNt0jxm83wHZi44VDMQ7/fGNkjY3/jV1MC+1CmZbaHzugyeRtpg=="],
+
     "cssesc": ["cssesc@3.0.0", "", { "bin": { "cssesc": "bin/cssesc" } }, "sha512-/Tb/JcjK111nNScGob5MNtsntNM1aCNUDipB/TkwZFhyDrrE47SOx/18wF2bbjgc3ZzCSKW1T5nt5EbFoAz/Vg=="],
 
     "cssstyle": ["cssstyle@5.3.7", "", { "dependencies": { "@asamuzakjp/css-color": "^4.1.1", "@csstools/css-syntax-patches-for-csstree": "^1.0.21", "css-tree": "^3.1.0", "lru-cache": "^11.2.4" } }, "sha512-7D2EPVltRrsTkhpQmksIu+LxeWAIEk6wRDMJ1qljlv+CKHJM+cJLlfhWIzNA44eAsHXSNe3+vO6DW1yCYx8SuQ=="],
@@ -815,6 +1049,10 @@
 
     "data-urls": ["data-urls@6.0.1", "", { "dependencies": { "whatwg-mimetype": "^5.0.0", "whatwg-url": "^15.1.0" } }, "sha512-euIQENZg6x8mj3fO6o9+fOW8MimUI4PpD/fZBhJfeioZVy9TUpM4UY7KjQNVZFlqwJ0UdzRDzkycB997HEq1BQ=="],
 
+    "dax-sh": ["dax-sh@0.43.2", "", { "dependencies": { "@deno/shim-deno": "~0.19.0", "undici-types": "^5.26" } }, "sha512-uULa1sSIHgXKGCqJ/pA0zsnzbHlVnuq7g8O2fkHokWFNwEGIhh5lAJlxZa1POG5En5ba7AU4KcBAvGQWMMf8rg=="],
+
+    "db0": ["db0@0.3.4", "", { "peerDependencies": { "@electric-sql/pglite": "*", "@libsql/client": "*", "better-sqlite3": "*", "drizzle-orm": "*", "mysql2": "*", "sqlite3": "*" }, "optionalPeers": ["@electric-sql/pglite", "@libsql/client", "better-sqlite3", "drizzle-orm", "mysql2", "sqlite3"] }, "sha512-RiXXi4WaNzPTHEOu8UPQKMooIbqOEyqA1t7Z6MsdxSCeb8iUC9ko3LcmsLmeUt2SM5bctfArZKkRQggKZz7JNw=="],
+
     "debug": ["debug@4.4.3", "", { "dependencies": { "ms": "^2.1.3" } }, "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA=="],
 
     "decimal.js": ["decimal.js@10.6.0", "", {}, "sha512-YpgQiITW3JXGntzdUmyUR1V812Hn8T1YVXhCu+wO3OpS4eU9l4YdD3qjyiKdV6mvV29zapkMeD390UVEf2lkUg=="],
@@ -823,8 +1061,26 @@
 
     "deep-eql": ["deep-eql@5.0.2", "", {}, "sha512-h5k/5U50IJJFpzfL6nO9jaaumfjO/f2NjK/oYB2Djzm4p9L+3T9qWpZqZ2hAbLPuuYq9wrU08WQyBTL5GbPk5Q=="],
 
+    "deepmerge": ["deepmerge@4.3.1", "", {}, "sha512-3sUqbMEc77XqpdNO7FRyRog+eW3ph+GYCbj+rK+uYyRMuwsVy0rMiVtPn+QJlKFvWP/1PYpapqYn0Me2knFn+A=="],
+
+    "default-browser": ["default-browser@5.5.0", "", { "dependencies": { "bundle-name": "^4.1.0", "default-browser-id": "^5.0.0" } }, "sha512-H9LMLr5zwIbSxrmvikGuI/5KGhZ8E2zH3stkMgM5LpOWDutGM2JZaj460Udnf1a+946zc7YBgrqEWwbk7zHvGw=="],
+
+    "default-browser-id": ["default-browser-id@5.0.1", "", {}, "sha512-x1VCxdX4t+8wVfd1so/9w+vQ4vx7lKd2Qp5tDRutErwmR85OgmfX7RlLRMWafRMY7hbEiXIbudNrjOAPa/hL8Q=="],
+
+    "define-lazy-prop": ["define-lazy-prop@3.0.0", "", {}, "sha512-N+MeXYoqr3pOgn8xfyRPREN7gHakLYjhsHhWGT3fWAiL4IkAt0iDw14QiiEm2bE30c5XX5q0FtAA3CK5f9/BUg=="],
+
+    "defu": ["defu@6.1.7", "", {}, "sha512-7z22QmUWiQ/2d0KkdYmANbRUVABpZ9SNYyH5vx6PZ+nE5bcC0l7uFvEfHlyld/HcGBFTL536ClDt3DEcSlEJAQ=="],
+
+    "denque": ["denque@2.1.0", "", {}, "sha512-HVQE3AAb/pxF8fQAoiqpvg9i3evqug3hoiwakOyZAwJm+6vZehbkYXZ0l4JxS+I3QxM97v5aaRNhj8v5oBhekw=="],
+
+    "depd": ["depd@2.0.0", "", {}, "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw=="],
+
     "dequal": ["dequal@2.0.3", "", {}, "sha512-0je+qPKHEMohvfRTCEo3CrPG6cAzAYgmzKyxRiYSSDkS6eGJdyVJm7WaYA5ECaAD9wLB2T4EEeymA5aFVcYXCA=="],
 
+    "destr": ["destr@2.0.5", "", {}, "sha512-ugFTXCtDZunbzasqBxrK93Ik/DRYsO6S/fedkWEMKqt04xZ4csmnmwGDBAb07QWNaGMAmnTIemsYZCksjATwsA=="],
+
+    "destroy": ["destroy@1.2.0", "", {}, "sha512-2sJGJTaXIIaR1w4iJSNoN0hnMY7Gpc/n8D4qSCJw8QqFWXf7cuAgnEHxBpweaVcPevC2l3KpjYCx3NypQQgaJg=="],
+
     "detect-libc": ["detect-libc@2.1.2", "", {}, "sha512-Btj2BOOO83o3WyH59e8MgXsxEQVcarkUOpEYrubB0urwnN10yQ364rsiByU11nZlqWYZm05i/of7io4mzihBtQ=="],
 
     "detect-node-es": ["detect-node-es@1.1.0", "", {}, "sha512-ypdmJU/TbBby2Dxibuv7ZLW3Bs1QEmM7nHjEANfohJLvE0XVujisn1qPJcZxg+qDucsr+bP6fLD1rPS3AhJ7EQ=="],
@@ -843,10 +1099,22 @@
 
     "domutils": ["domutils@3.2.2", "", { "dependencies": { "dom-serializer": "^2.0.0", "domelementtype": "^2.3.0", "domhandler": "^5.0.3" } }, "sha512-6kZKyUajlDuqlHKVX1w7gyslj9MPIXzIFiz/rGu35uC1wMi+kMhQwGhl4lt9unC9Vb9INnY9Z3/ZA3+FhASLaw=="],
 
+    "dot-prop": ["dot-prop@10.1.0", "", { "dependencies": { "type-fest": "^5.0.0" } }, "sha512-MVUtAugQMOff5RnBy2d9N31iG0lNwg1qAoAOn7pOK5wf94WIaE3My2p3uwTQuvS2AcqchkcR3bHByjaM0mmi7Q=="],
+
     "dotenv": ["dotenv@16.6.1", "", {}, "sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow=="],
 
+    "duplexer": ["duplexer@0.1.2", "", {}, "sha512-jtD6YG370ZCIi/9GTaJKQxWTZD045+4R4hTk/x1UyoqadyJ9x9CgSi1RlVDQF8U2sxLLSnFkCaMihqljHIWgMg=="],
+
+    "eastasianwidth": ["eastasianwidth@0.2.0", "", {}, "sha512-I88TYZWc9XiYHRQ4/3c5rjjfgkjhLyW2luGIheGERbNQ6OY7yTybanSpDXZa8y7VUP9YmDcYa+eyq4ca7iLqWA=="],
+
+    "ee-first": ["ee-first@1.1.1", "", {}, "sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow=="],
+
     "electron-to-chromium": ["electron-to-chromium@1.5.286", "", {}, "sha512-9tfDXhJ4RKFNerfjdCcZfufu49vg620741MNs26a9+bhLThdB+plgMeou98CAaHu/WATj2iHOOHTp1hWtABj2A=="],
 
+    "emoji-regex": ["emoji-regex@10.6.0", "", {}, "sha512-toUI84YS5YmxW219erniWD0CIVOo46xGKColeNQRgOzDorgBi1v4D71/OFzgD9GO2UGKIv1C3Sp8DAn0+j5w7A=="],
+
+    "encodeurl": ["encodeurl@2.0.0", "", {}, "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg=="],
+
     "encoding-sniffer": ["encoding-sniffer@0.2.1", "", { "dependencies": { "iconv-lite": "^0.6.3", "whatwg-encoding": "^3.1.1" } }, "sha512-5gvq20T6vfpekVtqrYQsSCFZ1wEg5+wW0/QaZMWkFr6BqD3NfKs0rLCx4rrVlSWJeZb5NBJgVLswK/w2MWU+Gw=="],
 
     "enhanced-resolve": ["enhanced-resolve@5.19.0", "", { "dependencies": { "graceful-fs": "^4.2.4", "tapable": "^2.3.0" } }, "sha512-phv3E1Xl4tQOShqSte26C7Fl84EwUdZsyOuSSk9qtAGyyQs2s3jJzComh+Abf4g187lUUAvH+H26omrqia2aGg=="],
@@ -861,6 +1129,8 @@
 
     "escalade": ["escalade@3.2.0", "", {}, "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA=="],
 
+    "escape-html": ["escape-html@1.0.3", "", {}, "sha512-NiSupZ4OeuGwr68lGIeym/ksIZMJodUGOSCZ/FSnTxcrekbvqrgdUxlJOMpijaKZVjAJrWrGs/6Jy8OMuyj9ow=="],
+
     "escape-string-regexp": ["escape-string-regexp@5.0.0", "", {}, "sha512-/veY75JbMK4j1yjvuUxuVsiS/hr/4iHs9FTT6cgTexxdE0Ly/glccBAkloH/DofkjRbZU3bnoj38mOmhkZ0lHw=="],
 
     "esprima": ["esprima@4.0.1", "", { "bin": { "esparse": "./bin/esparse.js", "esvalidate": "./bin/esvalidate.js" } }, "sha512-eGuFFw7Upda+g4p+QHvnW0RyTX/SVeJBDM/gCtMARO0cLuT2HcEKnTPvhjV6aGeqrCB/sbNop0Kszm0jsaWU4A=="],
@@ -869,42 +1139,92 @@
 
     "estree-walker": ["estree-walker@3.0.3", "", { "dependencies": { "@types/estree": "^1.0.0" } }, "sha512-7RUKfXgSMMkzt6ZuXmqapOurLGPPfgj6l9uRZ7lRGolvk0y2yocc35LdcxKC5PQZdn2DMqioAQ2NoWcrTKmm6g=="],
 
+    "etag": ["etag@1.8.1", "", {}, "sha512-aIL5Fx7mawVa300al2BnEE4iNvo1qETxLrPI/o05L7z6go7fCw1J6EQmbK4FmJ2AS7kgVF/KEZWufBfdClMcPg=="],
+
+    "event-target-shim": ["event-target-shim@5.0.1", "", {}, "sha512-i/2XbnSz/uxRCU6+NdVJgKWDTM427+MqYbkQzD321DuCQJUqOuJKIA0IM2+W2xtYHdKOmZ4dR6fExsd4SXL+WQ=="],
+
+    "eventemitter3": ["eventemitter3@4.0.7", "", {}, "sha512-8guHBZCwKnFhYdHr2ysuRWErTwhoN2X8XELRlrRwpmfeY2jjuUN4taQMsULKUVo1K4DvZl+0pgfyoysHxvmvEw=="],
+
+    "events": ["events@3.3.0", "", {}, "sha512-mQw+2fkQbALzQ7V0MY0IqdnXNOeTtP4r0lN9z7AAawCXgqea7bDii20AYrIBrFd/Hx0M2Ocz6S111CaFkUcb0Q=="],
+
+    "events-universal": ["events-universal@1.0.1", "", { "dependencies": { "bare-events": "^2.7.0" } }, "sha512-LUd5euvbMLpwOF8m6ivPCbhQeSiYVNb8Vs0fQ8QjXo0JTkEHpz8pxdQf0gStltaPpw0Cca8b39KxvK9cfKRiAw=="],
+
+    "execa": ["execa@8.0.1", "", { "dependencies": { "cross-spawn": "^7.0.3", "get-stream": "^8.0.1", "human-signals": "^5.0.0", "is-stream": "^3.0.0", "merge-stream": "^2.0.0", "npm-run-path": "^5.1.0", "onetime": "^6.0.0", "signal-exit": "^4.1.0", "strip-final-newline": "^3.0.0" } }, "sha512-VyhnebXciFV2DESc+p6B+y0LjSm0krU4OgJN44qFAhBY0TJ+1V61tYD2+wHusZ6F9n5K+vl8k0sTy7PEfV4qpg=="],
+
     "expect-type": ["expect-type@1.3.0", "", {}, "sha512-knvyeauYhqjOYvQ66MznSMs83wmHrCycNEN6Ao+2AeYEfxUIkuiVxdEa1qlGEPK+We3n0THiDciYSsCcgW/DoA=="],
 
     "exsolve": ["exsolve@1.0.8", "", {}, "sha512-LmDxfWXwcTArk8fUEnOfSZpHOJ6zOMUJKOtFLFqJLoKJetuQG874Uc7/Kki7zFLzYybmZhp1M7+98pfMqeX8yA=="],
 
     "extend": ["extend@3.0.2", "", {}, "sha512-fjquC59cD7CyW6urNXK0FBufkZcoiGG80wTuPujX590cB5Ttln20E2UB4S/WARVqhXffZl2LNgS+gQdPIIim/g=="],
 
+    "fast-fifo": ["fast-fifo@1.3.2", "", {}, "sha512-/d9sfos4yxzpwkDkuN7k2SqFKtYNmCTzgfEpz82x34IM9/zc8KGxQoXg1liNC/izpRM/MBdt44Nmx41ZWqk+FQ=="],
+
+    "fast-glob": ["fast-glob@3.3.3", "", { "dependencies": { "@nodelib/fs.stat": "^2.0.2", "@nodelib/fs.walk": "^1.2.3", "glob-parent": "^5.1.2", "merge2": "^1.3.0", "micromatch": "^4.0.8" } }, "sha512-7MptL8U0cqcFdzIzwOTHoilX9x5BrNqye7Z/LuC7kCMRio1EMSyqRK3BEAUD7sXRq4iT4AzTVuZdhgQ2TCvYLg=="],
+
     "fast-sha256": ["fast-sha256@1.3.0", "", {}, "sha512-n11RGP/lrWEFI/bWdygLxhI+pVeo1ZYIVwvvPkW7azl/rOy+F3HYRZ2K5zeE9mmkhQppyv9sQFx0JM9UabnpPQ=="],
 
+    "fastq": ["fastq@1.20.1", "", { "dependencies": { "reusify": "^1.0.4" } }, "sha512-GGToxJ/w1x32s/D2EKND7kTil4n8OVk/9mycTc4VDza13lOvpUZTGX3mFSCtV9ksdGBVzvsyAVLM6mHFThxXxw=="],
+
     "fdir": ["fdir@6.5.0", "", { "peerDependencies": { "picomatch": "^3 || ^4" }, "optionalPeers": ["picomatch"] }, "sha512-tIbYtZbucOs0BRGqPJkshJUYdL+SDH7dVM8gjy+ERp3WAUjLEFJE+02kanyHtwjWOnwrKYBiwAmM0p4kLJAnXg=="],
 
+    "file-uri-to-path": ["file-uri-to-path@1.0.0", "", {}, "sha512-0Zt+s3L7Vf1biwWZ29aARiVYLx7iMGnEUl9x33fbB/j3jR81u/O2LbqK+Bm1CDSNDKVtJ/YjwY7TUd5SkeLQLw=="],
+
     "fill-range": ["fill-range@7.1.1", "", { "dependencies": { "to-regex-range": "^5.0.1" } }, "sha512-YsGpe3WHLK8ZYi4tWDg2Jy3ebRz2rXowDxnld4bkQB00cc/1Zw9AWnC0i9ztDJitivtQvaI9KaLyKrc+hBW0yg=="],
 
+    "follow-redirects": ["follow-redirects@1.15.11", "", {}, "sha512-deG2P0JfjrTxl50XGCDyfI97ZGVCxIpfKYmfyrQ54n5FO/0gfIES8C/Psl6kWVDolizcaaxZJnTS0QSMxvnsBQ=="],
+
+    "foreground-child": ["foreground-child@3.3.1", "", { "dependencies": { "cross-spawn": "^7.0.6", "signal-exit": "^4.0.1" } }, "sha512-gIXjKqtFuWEgzFRJA9WCQeSJLZDjgJUOMCMzxtvFq/37KojM1BFGufqsCy0r4qSQmYLsZYMeyRqzIWOMup03sw=="],
+
     "framer-motion": ["framer-motion@12.34.3", "", { "dependencies": { "motion-dom": "^12.34.3", "motion-utils": "^12.29.2", "tslib": "^2.4.0" }, "peerDependencies": { "@emotion/is-prop-valid": "*", "react": "^18.0.0 || ^19.0.0", "react-dom": "^18.0.0 || ^19.0.0" }, "optionalPeers": ["@emotion/is-prop-valid", "react", "react-dom"] }, "sha512-v81ecyZKYO/DfpTwHivqkxSUBzvceOpoI+wLfgCgoUIKxlFKEXdg0oR9imxwXumT4SFy8vRk9xzJ5l3/Du/55Q=="],
 
+    "fresh": ["fresh@0.5.2", "", {}, "sha512-zJ2mQYM18rEFOudeV4GShTGIQ7RbzA7ozbU9I/XBpm7kqgMywgmylMwXHxZJmkVoYkna9d2pVXVXPdYTP9ej8Q=="],
+
     "fsevents": ["fsevents@2.3.3", "", { "os": "darwin" }, "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw=="],
 
+    "function-bind": ["function-bind@1.1.2", "", {}, "sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA=="],
+
     "geist": ["geist@1.7.0", "", { "peerDependencies": { "next": ">=13.2.0" } }, "sha512-ZaoiZwkSf0DwwB1ncdLKp+ggAldqxl5L1+SXaNIBGkPAqcu+xjVJLxlf3/S8vLt9UHx1xu5fz3lbzKCj5iOVdQ=="],
 
     "gensync": ["gensync@1.0.0-beta.2", "", {}, "sha512-3hN7NaskYvMDLQY55gnW3NQ+mesEAepTqlg+VEbj7zzqEMBVNhzcGYYeqFo/TlYz6eQiFcp1HcsCZO+nGgS8zg=="],
 
+    "get-caller-file": ["get-caller-file@2.0.5", "", {}, "sha512-DyFP3BM/3YHTQOCUL/w0OZHR0lpKeGrxotcHWcqNEdnltqFwXVfhEBQ94eIo34AfQpo0rGki4cyIiftY06h2Fg=="],
+
+    "get-east-asian-width": ["get-east-asian-width@1.5.0", "", {}, "sha512-CQ+bEO+Tva/qlmw24dCejulK5pMzVnUOFOijVogd3KQs07HnRIgp8TGipvCCRT06xeYEbpbgwaCxglFyiuIcmA=="],
+
     "get-nonce": ["get-nonce@1.0.1", "", {}, "sha512-FJhYRoDaiatfEkUK8HKlicmu/3SGFD51q3itKDGoSTysQJBnfOcxU5GxnhE1E6soB76MbT0MBtnKJuXyAx+96Q=="],
 
+    "get-port-please": ["get-port-please@3.2.0", "", {}, "sha512-I9QVvBw5U/hw3RmWpYKRumUeaDgxTPd401x364rLmWBJcOQ753eov1eTgzDqRG9bqFIfDc7gfzcQEWrUri3o1A=="],
+
+    "get-stream": ["get-stream@8.0.1", "", {}, "sha512-VaUJspBffn/LMCJVoMvSAdmscJyS1auj5Zulnn5UoYcY531UWmdwhRWkcGKnGU93m5HSXP9LP2usOryrBtQowA=="],
+
     "get-tsconfig": ["get-tsconfig@4.13.6", "", { "dependencies": { "resolve-pkg-maps": "^1.0.0" } }, "sha512-shZT/QMiSHc/YBLxxOkMtgSid5HFoauqCE3/exfsEcwg1WkeqjG+V40yBbBrsD+jW2HDXcs28xOfcbm2jI8Ddw=="],
 
+    "giget": ["giget@3.2.0", "", { "bin": { "giget": "dist/cli.mjs" } }, "sha512-GvHTWcykIR/fP8cj8dMpuMMkvaeJfPvYnhq0oW+chSeIr+ldX21ifU2Ms6KBoyKZQZmVaUAAhQ2EZ68KJF8a7A=="],
+
+    "glob": ["glob@10.5.0", "", { "dependencies": { "foreground-child": "^3.1.0", "jackspeak": "^3.1.2", "minimatch": "^9.0.4", "minipass": "^7.1.2", "package-json-from-dist": "^1.0.0", "path-scurry": "^1.11.1" }, "bin": { "glob": "dist/esm/bin.mjs" } }, "sha512-DfXN8DfhJ7NH3Oe7cFmu3NCu1wKbkReJ8TorzSAFbSKrlNaQSKfIzqYqVY8zlbs2NLBbWpRiU52GX2PbaBVNkg=="],
+
     "glob-parent": ["glob-parent@5.1.2", "", { "dependencies": { "is-glob": "^4.0.1" } }, "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow=="],
 
     "glob-to-regexp": ["glob-to-regexp@0.4.1", "", {}, "sha512-lkX1HJXwyMcprw/5YUZc2s7DrpAiHB21/V+E1rHUrVNokkvB6bqMzT0VfV6/86ZNabt1k14YOIaT7nDvOX3Iiw=="],
 
+    "globby": ["globby@16.2.0", "", { "dependencies": { "@sindresorhus/merge-streams": "^4.0.0", "fast-glob": "^3.3.3", "ignore": "^7.0.5", "is-path-inside": "^4.0.0", "slash": "^5.1.0", "unicorn-magic": "^0.4.0" } }, "sha512-QrJia2qDf5BB/V6HYlDTs0I0lBahyjLzpGQg3KT7FnCdTonAyPy2RtY802m2k4ALx6Dp752f82WsOczEVr3l6Q=="],
+
     "globrex": ["globrex@0.1.2", "", {}, "sha512-uHJgbwAMwNFf5mLst7IWLNg14x1CkeqglJb/K3doi4dw6q2IvAAmM/Y81kevy83wP+Sst+nutFTYOGg3d1lsxg=="],
 
     "goober": ["goober@2.1.18", "", { "peerDependencies": { "csstype": "^3.0.10" } }, "sha512-2vFqsaDVIT9Gz7N6kAL++pLpp41l3PfDuusHcjnGLfR6+huZkl6ziX+zgVC3ZxpqWhzH6pyDdGrCeDhMIvwaxw=="],
 
     "graceful-fs": ["graceful-fs@4.2.11", "", {}, "sha512-RbJ5/jmFcNNCcDV5o9eTnBLJ/HszWV0P73bc+Ff4nS/rJj+YaS6IGyiOL0VoBYX+l1Wrl3k63h/KrH+nhJ0XvQ=="],
 
+    "gzip-size": ["gzip-size@7.0.0", "", { "dependencies": { "duplexer": "^0.1.2" } }, "sha512-O1Ld7Dr+nqPnmGpdhzLmMTQ4vAsD+rHwMm1NLUmoUFFymBOMKxCCrtDxqdBRYXdeEPEi3SyoR4TizJLQrnKBNA=="],
+
+    "h3": ["h3@1.15.3", "", { "dependencies": { "cookie-es": "^1.2.2", "crossws": "^0.3.4", "defu": "^6.1.4", "destr": "^2.0.5", "iron-webcrypto": "^1.2.1", "node-mock-http": "^1.0.0", "radix3": "^1.1.2", "ufo": "^1.6.1", "uncrypto": "^0.1.3" } }, "sha512-z6GknHqyX0h9aQaTx22VZDf6QyZn+0Nh+Ym8O/u0SGSkyF5cuTJYKlc8MkzW3Nzf9LE1ivcpmYC3FUGpywhuUQ=="],
+
     "h3-v2": ["h3@2.0.1-rc.14", "", { "dependencies": { "rou3": "^0.7.12", "srvx": "^0.11.2" }, "peerDependencies": { "crossws": "^0.4.1" }, "optionalPeers": ["crossws"], "bin": { "h3": "bin/h3.mjs" } }, "sha512-163qbGmTr/9rqQRNuqMqtgXnOUAkE4KTdauiC9y0E5iG1I65kte9NyfWvZw5RTDMt6eY+DtyoNzrQ9wA2BfvGQ=="],
 
+    "has-flag": ["has-flag@4.0.0", "", {}, "sha512-EykJT/Q1KjTWctppgIAgfSO0tKVuZUjhgMr17kqTumMl6Afv3EISleU7qZUzoXDFTAHTDC4NOoG/ZxU3EvlMPQ=="],
+
+    "hasown": ["hasown@2.0.2", "", { "dependencies": { "function-bind": "^1.1.2" } }, "sha512-0hJU9SCPvmMzIBdZFqNPXWa6dqh7WdH0cII9y+CyS8rG3nL48Bclra9HmKhVVUHyPWNH5Y7xDwAB7bfgSjkUMQ=="],
+
     "hast-util-is-element": ["hast-util-is-element@3.0.0", "", { "dependencies": { "@types/hast": "^3.0.0" } }, "sha512-Val9mnv2IWpLbNPqc/pUem+a7Ipj2aHacCwgNfTiK0vJKl0LF+4Ba4+v1oPHFpf3bLYmreq0/l3Gud9S5OH42g=="],
 
     "hast-util-to-jsx-runtime": ["hast-util-to-jsx-runtime@2.3.6", "", { "dependencies": { "@types/estree": "^1.0.0", "@types/hast": "^3.0.0", "@types/unist": "^3.0.0", "comma-separated-tokens": "^2.0.0", "devlop": "^1.0.0", "estree-util-is-identifier-name": "^3.0.0", "hast-util-whitespace": "^3.0.0", "mdast-util-mdx-expression": "^2.0.0", "mdast-util-mdx-jsx": "^3.0.0", "mdast-util-mdxjs-esm": "^2.0.0", "property-information": "^7.0.0", "space-separated-tokens": "^2.0.0", "style-to-js": "^1.0.0", "unist-util-position": "^5.0.0", "vfile-message": "^4.0.0" } }, "sha512-zl6s8LwNyo1P9uw+XJGvZtdFF1GdAkOg8ujOw+4Pyb76874fLps4ueHXDhXWdk6YHQ6OgUtinliG7RsYvCbbBg=="],
@@ -915,49 +1235,111 @@
 
     "highlight.js": ["highlight.js@11.11.1", "", {}, "sha512-Xwwo44whKBVCYoliBQwaPvtd/2tYFkRQtXDWj1nackaV2JPXx3L0+Jvd8/qCJ2p+ML0/XVkJ2q+Mr+UVdpJK5w=="],
 
+    "hookable": ["hookable@5.5.3", "", {}, "sha512-Yc+BQe8SvoXH1643Qez1zqLRmbA5rCL+sSmk6TVos0LWVfNIB7PGncdlId77WzLGSIB5KaWgTaNTs2lNVEI6VQ=="],
+
     "html-encoding-sniffer": ["html-encoding-sniffer@6.0.0", "", { "dependencies": { "@exodus/bytes": "^1.6.0" } }, "sha512-CV9TW3Y3f8/wT0BRFc1/KAVQ3TUHiXmaAb6VW9vtiMFf7SLoMd1PdAc4W3KFOFETBJUb90KatHqlsZMWV+R9Gg=="],
 
+    "html-escaper": ["html-escaper@2.0.2", "", {}, "sha512-H2iMtd0I4Mt5eYiapRdIDjp+XzelXQ0tFE4JS7YFwFevXXMmOp9myNrUvCg0D6ws8iqkRPBfKHgbwig1SmlLfg=="],
+
     "html-url-attributes": ["html-url-attributes@3.0.1", "", {}, "sha512-ol6UPyBWqsrO6EJySPz2O7ZSr856WDrEzM5zMqp+FJJLGMW35cLYmmZnl0vztAZxRUoNZJFTCohfjuIJ8I4QBQ=="],
 
     "htmlparser2": ["htmlparser2@10.1.0", "", { "dependencies": { "domelementtype": "^2.3.0", "domhandler": "^5.0.3", "domutils": "^3.2.2", "entities": "^7.0.1" } }, "sha512-VTZkM9GWRAtEpveh7MSF6SjjrpNVNNVJfFup7xTY3UpFtm67foy9HDVXneLtFVt4pMz5kZtgNcvCniNFb1hlEQ=="],
 
+    "http-errors": ["http-errors@2.0.1", "", { "dependencies": { "depd": "~2.0.0", "inherits": "~2.0.4", "setprototypeof": "~1.2.0", "statuses": "~2.0.2", "toidentifier": "~1.0.1" } }, "sha512-4FbRdAX+bSdmo4AUFuS0WNiPz8NgFt+r8ThgNWmlrjQjt1Q7ZR9+zTlce2859x4KSXrwIsaeTqDoKQmtP8pLmQ=="],
+
+    "http-proxy": ["http-proxy@1.18.1", "", { "dependencies": { "eventemitter3": "^4.0.0", "follow-redirects": "^1.0.0", "requires-port": "^1.0.0" } }, "sha512-7mz/721AbnJwIVbnaSv1Cz3Am0ZLT/UBwkC92VlxhXv/k/BBQfM2fXElQNC27BVGr0uwUpplYPQM9LnaBMR5NQ=="],
+
     "http-proxy-agent": ["http-proxy-agent@7.0.2", "", { "dependencies": { "agent-base": "^7.1.0", "debug": "^4.3.4" } }, "sha512-T1gkAiYYDWYx3V5Bmyu7HcfcvL7mUrTWiM6yOfa3PIphViJ/gFPbvidQ+veqSOHci/PxBcDabeUNCzpOODJZig=="],
 
+    "http-shutdown": ["http-shutdown@1.2.2", "", {}, "sha512-S9wWkJ/VSY9/k4qcjG318bqJNruzE4HySUhFYknwmu6LBP97KLLfwNf+n4V1BHurvFNkSKLFnK/RsuUnRTf9Vw=="],
+
     "https-proxy-agent": ["https-proxy-agent@7.0.6", "", { "dependencies": { "agent-base": "^7.1.2", "debug": "4" } }, "sha512-vK9P5/iUfdl95AI+JVyUuIcVtd4ofvtrOr3HNtM2yxC9bnMbEdp3x01OhQNnjb8IJYi38VlTE3mBXwcfvywuSw=="],
 
+    "httpxy": ["httpxy@0.5.0", "", {}, "sha512-qwX7QX/rK2visT10/b7bSeZWQOMlSm3svTD0pZpU+vJjNUP0YHtNv4c3z+MO+MSnGuRFWJFdCZiV+7F7dXIOzg=="],
+
+    "human-signals": ["human-signals@5.0.0", "", {}, "sha512-AXcZb6vzzrFAUE61HnN4mpLqd/cSIwNQjtNWR0euPm6y0iqx3G4gOXaIDdtdDwZmhwe82LA6+zinmW4UBWVePQ=="],
+
     "husky": ["husky@9.1.7", "", { "bin": { "husky": "bin.js" } }, "sha512-5gs5ytaNjBrh5Ow3zrvdUUY+0VxIuWVL4i9irt6friV+BqdCfmV11CQTWMiBYWHbXhco+J1kHfTOUkePhCDvMA=="],
 
     "iconv-lite": ["iconv-lite@0.6.3", "", { "dependencies": { "safer-buffer": ">= 2.1.2 < 3.0.0" } }, "sha512-4fCk79wshMdzMp2rH06qWrJE4iolqLhCUH+OiuIgU++RB0+94NlDL81atO7GX55uUKueo0txHNtvEyI6D7WdMw=="],
 
+    "ieee754": ["ieee754@1.2.1", "", {}, "sha512-dcyqhDvX1C46lXZcVqCpK+FtMRQVdIMN6/Df5js2zouUsqG7I6sFxitIC+7KYK29KdXOLHdu9zL4sFnoVQnqaA=="],
+
+    "ignore": ["ignore@7.0.5", "", {}, "sha512-Hs59xBNfUIunMFgWAbGX5cq6893IbWg4KnrjbYwX3tx0ztorVgTDA6B2sxf8ejHJ4wz8BqGUMYlnzNBer5NvGg=="],
+
+    "indent-string": ["indent-string@4.0.0", "", {}, "sha512-EdDDZu4A2OyIK7Lr/2zG+w5jmbuk1DVBnEwREQvBzspBJkCEbRa8GxU1lghYcaGJCnRWibjDXlq779X1/y5xwg=="],
+
+    "inherits": ["inherits@2.0.4", "", {}, "sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ=="],
+
     "inline-style-parser": ["inline-style-parser@0.2.7", "", {}, "sha512-Nb2ctOyNR8DqQoR0OwRG95uNWIC0C1lCgf5Naz5H6Ji72KZ8OcFZLz2P5sNgwlyoJ8Yif11oMuYs5pBQa86csA=="],
 
+    "ioredis": ["ioredis@5.10.1", "", { "dependencies": { "@ioredis/commands": "1.5.1", "cluster-key-slot": "^1.1.0", "debug": "^4.3.4", "denque": "^2.1.0", "lodash.defaults": "^4.2.0", "lodash.isarguments": "^3.1.0", "redis-errors": "^1.2.0", "redis-parser": "^3.0.0", "standard-as-callback": "^2.1.0" } }, "sha512-HuEDBTI70aYdx1v6U97SbNx9F1+svQKBDo30o0b9fw055LMepzpOOd0Ccg9Q6tbqmBSJaMuY0fB7yw9/vjBYCA=="],
+
+    "iron-webcrypto": ["iron-webcrypto@1.2.1", "", {}, "sha512-feOM6FaSr6rEABp/eDfVseKyTMDt+KGpeB35SkVn9Tyn0CqvVsY3EwI0v5i8nMHyJnzCIQf7nsy3p41TPkJZhg=="],
+
     "is-alphabetical": ["is-alphabetical@2.0.1", "", {}, "sha512-FWyyY60MeTNyeSRpkM2Iry0G9hpr7/9kD40mD/cGQEuilcZYS4okz8SN2Q6rLCJ8gbCt6fN+rC+6tMGS99LaxQ=="],
 
     "is-alphanumerical": ["is-alphanumerical@2.0.1", "", { "dependencies": { "is-alphabetical": "^2.0.0", "is-decimal": "^2.0.0" } }, "sha512-hmbYhX/9MUMF5uh7tOXyK/n0ZvWpad5caBA17GsC6vyuCqaWliRG5K1qS9inmUhEMaOBIW7/whAnSwveW/LtZw=="],
 
     "is-binary-path": ["is-binary-path@2.1.0", "", { "dependencies": { "binary-extensions": "^2.0.0" } }, "sha512-ZMERYes6pDydyuGidse7OsHxtbI7WVeUEozgR/g7rd0xUimYNlvZRE/K2MgZTjWy725IfelLeVcEM97mmtRGXw=="],
 
+    "is-core-module": ["is-core-module@2.16.1", "", { "dependencies": { "hasown": "^2.0.2" } }, "sha512-UfoeMA6fIJ8wTYFEUjelnaGI67v6+N7qXJEvQuIGa99l4xsCruSYOVSQ0uPANn4dAzm8lkYPaKLrrijLq7x23w=="],
+
     "is-decimal": ["is-decimal@2.0.1", "", {}, "sha512-AAB9hiomQs5DXWcRB1rqsxGUstbRroFOPPVAomNk/3XHR5JyEZChOyTWe2oayKnsSsr/kcGqF+z6yuH6HHpN0A=="],
 
+    "is-docker": ["is-docker@3.0.0", "", { "bin": { "is-docker": "cli.js" } }, "sha512-eljcgEDlEns/7AXFosB5K/2nCM4P7FQPkGc/DWLy5rmFEWvZayGrik1d9/QIY5nJ4f9YsVvBkA6kJpHn9rISdQ=="],
+
     "is-extglob": ["is-extglob@2.1.1", "", {}, "sha512-SbKbANkN603Vi4jEZv49LeVJMn4yGwsbzZworEoyEiutsN3nJYdbO36zfhGJ6QEDpOZIFkDtnq5JRxmvl3jsoQ=="],
 
+    "is-fullwidth-code-point": ["is-fullwidth-code-point@3.0.0", "", {}, "sha512-zymm5+u+sCsSWyD9qNaejV3DFvhCKclKdizYaJUuHA83RLjb7nSuGnddCHGv0hk+KY7BMAlsWeK4Ueg6EV6XQg=="],
+
     "is-glob": ["is-glob@4.0.3", "", { "dependencies": { "is-extglob": "^2.1.1" } }, "sha512-xelSayHH36ZgE7ZWhli7pW34hNbNl8Ojv5KVmkJD4hBdD3th8Tfk9vYasLM+mXWOZhFkgZfxhLSnrwRr4elSSg=="],
 
     "is-hexadecimal": ["is-hexadecimal@2.0.1", "", {}, "sha512-DgZQp241c8oO6cA1SbTEWiXeoxV42vlcJxgH+B3hi1AiqqKruZR3ZGF8In3fj4+/y/7rHvlOZLZtgJ/4ttYGZg=="],
 
+    "is-in-ssh": ["is-in-ssh@1.0.0", "", {}, "sha512-jYa6Q9rH90kR1vKB6NM7qqd1mge3Fx4Dhw5TVlK1MUBqhEOuCagrEHMevNuCcbECmXZ0ThXkRm+Ymr51HwEPAw=="],
+
+    "is-inside-container": ["is-inside-container@1.0.0", "", { "dependencies": { "is-docker": "^3.0.0" }, "bin": { "is-inside-container": "cli.js" } }, "sha512-KIYLCCJghfHZxqjYBE7rEy0OBuTd5xCHS7tHVgvCLkx7StIoaxwNW3hCALgEUjFfeRk+MG/Qxmp/vtETEF3tRA=="],
+
+    "is-module": ["is-module@1.0.0", "", {}, "sha512-51ypPSPCoTEIN9dy5Oy+h4pShgJmPCygKfyRCISBI+JoWT/2oJvK8QPxmwv7b/p239jXrm9M1mlQbyKJ5A152g=="],
+
     "is-number": ["is-number@7.0.0", "", {}, "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng=="],
 
+    "is-path-inside": ["is-path-inside@4.0.0", "", {}, "sha512-lJJV/5dYS+RcL8uQdBDW9c9uWFLLBNRyFhnAKXw5tVqLlKZ4RMGZKv+YQ/IA3OhD+RpbJa1LLFM1FQPGyIXvOA=="],
+
     "is-plain-obj": ["is-plain-obj@4.1.0", "", {}, "sha512-+Pgi+vMuUNkJyExiMBt5IlFoMyKnr5zhJ4Uspz58WOhBF5QoIZkFyNHIbBAtHwzVAgk5RtndVNsDRN61/mmDqg=="],
 
     "is-potential-custom-element-name": ["is-potential-custom-element-name@1.0.1", "", {}, "sha512-bCYeRA2rVibKZd+s2625gGnGF/t7DSqDs4dP7CrLA1m7jKWz6pps0LpYLJN8Q64HtmPKJ1hrN3nzPNKFEKOUiQ=="],
 
+    "is-reference": ["is-reference@1.2.1", "", { "dependencies": { "@types/estree": "*" } }, "sha512-U82MsXXiFIrjCK4otLT+o2NA2Cd2g5MLoOVXUZjIOhLurrRxpEXzI8O0KZHr3IjLvlAH1kTPYSuqer5T9ZVBKQ=="],
+
+    "is-stream": ["is-stream@3.0.0", "", {}, "sha512-LnQR4bZ9IADDRSkvpqMGvt/tEJWclzklNgSw48V5EAaAeDd6qGvN8ei6k5p0tvxSR171VmGyHuTiAOfxAbr8kA=="],
+
+    "is-wsl": ["is-wsl@3.1.1", "", { "dependencies": { "is-inside-container": "^1.0.0" } }, "sha512-e6rvdUCiQCAuumZslxRJWR/Doq4VpPR82kqclvcS0efgt430SlGIk05vdCN58+VrzgtIcfNODjozVielycD4Sw=="],
+
+    "is64bit": ["is64bit@2.0.0", "", { "dependencies": { "system-architecture": "^0.1.0" } }, "sha512-jv+8jaWCl0g2lSBkNSVXdzfBA0npK1HGC2KtWM9FumFRoGS94g3NbCCLVnCYHLjp4GrW2KZeeSTMo5ddtznmGw=="],
+
+    "isarray": ["isarray@1.0.0", "", {}, "sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ=="],
+
     "isbot": ["isbot@5.1.35", "", {}, "sha512-waFfC72ZNfwLLuJ2iLaoVaqcNo+CAaLR7xCpAn0Y5WfGzkNHv7ZN39Vbi1y+kb+Zs46XHOX3tZNExroFUPX+Kg=="],
 
+    "isexe": ["isexe@3.1.5", "", {}, "sha512-6B3tLtFqtQS4ekarvLVMZ+X+VlvQekbe4taUkf/rhVO3d/h0M2rfARm/pXLcPEsjjMsFgrFgSrhQIxcSVrBz8w=="],
+
+    "istanbul-lib-coverage": ["istanbul-lib-coverage@3.2.2", "", {}, "sha512-O8dpsF+r0WV/8MNRKfnmrtCWhuKjxrq2w+jpzBL5UZKTi2LeVWnWOmWRxFlesJONmc+wLAGvKQZEOanko0LFTg=="],
+
+    "istanbul-lib-report": ["istanbul-lib-report@3.0.1", "", { "dependencies": { "istanbul-lib-coverage": "^3.0.0", "make-dir": "^4.0.0", "supports-color": "^7.1.0" } }, "sha512-GCfE1mtsHGOELCU8e/Z7YWzpmybrx/+dSTfLrvY8qRmaY6zXTKWn6WQIjaAFw069icm6GVMNkgu0NzI4iPZUNw=="],
+
+    "istanbul-lib-source-maps": ["istanbul-lib-source-maps@5.0.6", "", { "dependencies": { "@jridgewell/trace-mapping": "^0.3.23", "debug": "^4.1.1", "istanbul-lib-coverage": "^3.0.0" } }, "sha512-yg2d+Em4KizZC5niWhQaIomgf5WlL4vOOjZ5xGCmF8SnPE/mDWWXgvRExdcpCgh9lLRRa1/fSYp2ymmbJ1pI+A=="],
+
+    "istanbul-reports": ["istanbul-reports@3.2.0", "", { "dependencies": { "html-escaper": "^2.0.0", "istanbul-lib-report": "^3.0.0" } }, "sha512-HGYWWS/ehqTV3xN10i23tkPkpH46MLCIMFNCaaKNavAXTF1RkqxawEPtnjnGZ6XKSInBKkiOA5BKS+aZiY3AvA=="],
+
+    "jackspeak": ["jackspeak@3.4.3", "", { "dependencies": { "@isaacs/cliui": "^8.0.2" }, "optionalDependencies": { "@pkgjs/parseargs": "^0.11.0" } }, "sha512-OGlZQpz2yfahA/Rd1Y8Cd9SIEsqvXkLVoSw/cgwhnhFMDbsQFeZYoJJ7bIZBS9BcamUW96asq/npPWugM+RQBw=="],
+
     "jiti": ["jiti@2.6.1", "", { "bin": { "jiti": "lib/jiti-cli.mjs" } }, "sha512-ekilCSN1jwRvIbgeg/57YFh8qQDNbwDb9xT/qu2DAHbFFZUicIl4ygVaAvzveMhMVr3LnpSKTNnwt8PoOfmKhQ=="],
 
     "js-cookie": ["js-cookie@3.0.5", "", {}, "sha512-cEiJEAEoIbWfCZYKWhVwFuvPX1gETRYPw6LlaTKoxD3s2AkXzkCjnp6h0V77ozyqj0jakteJ4YqDJT830+lVGw=="],
 
-    "js-tokens": ["js-tokens@4.0.0", "", {}, "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ=="],
+    "js-tokens": ["js-tokens@10.0.0", "", {}, "sha512-lM/UBzQmfJRo9ABXbPWemivdCW8V2G8FHaHdypQaIy523snUjog0W71ayWXTjiR+ixeMyVHN2XcpnTd/liPg/Q=="],
 
     "js-yaml": ["js-yaml@4.1.1", "", { "dependencies": { "argparse": "^2.0.1" }, "bin": { "js-yaml": "bin/js-yaml.js" } }, "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA=="],
 
@@ -969,8 +1351,14 @@
 
     "kleur": ["kleur@4.1.5", "", {}, "sha512-o+NO+8WrRiQEE4/7nwRJhN1HWpVmJm511pBHUxPLtp0BUISzlBplORYSmTclCnJvQq2tKu/sgl3xVpkc7ZWuQQ=="],
 
+    "klona": ["klona@2.0.6", "", {}, "sha512-dhG34DXATL5hSxJbIexCft8FChFXtmskoZYnoPWjXQuebWYCNkVeV3KkGegCK9CP1oswI/vQibS2GY7Em/sJJA=="],
+
+    "knitwork": ["knitwork@1.3.0", "", {}, "sha512-4LqMNoONzR43B1W0ek0fhXMsDNW/zxa1NdFAVMY+k28pgZLovR4G3PB5MrpTxCy1QaZCqNoiaKPr5w5qZHfSNw=="],
+
     "launch-editor": ["launch-editor@2.12.0", "", { "dependencies": { "picocolors": "^1.1.1", "shell-quote": "^1.8.3" } }, "sha512-giOHXoOtifjdHqUamwKq6c49GzBdLjvxrd2D+Q4V6uOHopJv7p9VJxikDsQ/CBXZbEITgUqSVHXLTG3VhPP1Dg=="],
 
+    "lazystream": ["lazystream@1.0.1", "", { "dependencies": { "readable-stream": "^2.0.5" } }, "sha512-b94GiNHQNy6JNTrt5w6zNyffMrNkXZb3KTkCZJb2V1xaEGCk093vkZ2jk3tpaeP33/OiXC+WvK9AxUebnf5nbw=="],
+
     "lightningcss": ["lightningcss@1.30.2", "", { "dependencies": { "detect-libc": "^2.0.3" }, "optionalDependencies": { "lightningcss-android-arm64": "1.30.2", "lightningcss-darwin-arm64": "1.30.2", "lightningcss-darwin-x64": "1.30.2", "lightningcss-freebsd-x64": "1.30.2", "lightningcss-linux-arm-gnueabihf": "1.30.2", "lightningcss-linux-arm64-gnu": "1.30.2", "lightningcss-linux-arm64-musl": "1.30.2", "lightningcss-linux-x64-gnu": "1.30.2", "lightningcss-linux-x64-musl": "1.30.2", "lightningcss-win32-arm64-msvc": "1.30.2", "lightningcss-win32-x64-msvc": "1.30.2" } }, "sha512-utfs7Pr5uJyyvDETitgsaqSyjCb2qNRAtuqUeWIAKztsOYdcACf2KtARYXg2pSvhkt+9NfoaNY7fxjl6nuMjIQ=="],
 
     "lightningcss-android-arm64": ["lightningcss-android-arm64@1.30.2", "", { "os": "android", "cpu": "arm64" }, "sha512-BH9sEdOCahSgmkVhBLeU7Hc9DWeZ1Eb6wNS6Da8igvUwAe0sqROHddIlvU06q3WyXVEOYDZ6ykBZQnjTbmo4+A=="],
@@ -995,6 +1383,16 @@
 
     "lightningcss-win32-x64-msvc": ["lightningcss-win32-x64-msvc@1.30.2", "", { "os": "win32", "cpu": "x64" }, "sha512-5g1yc73p+iAkid5phb4oVFMB45417DkRevRbt/El/gKXJk4jid+vPFF/AXbxn05Aky8PapwzZrdJShv5C0avjw=="],
 
+    "listhen": ["listhen@1.9.1", "", { "dependencies": { "@parcel/watcher": "^2.5.6", "@parcel/watcher-wasm": "^2.5.6", "citty": "^0.2.2", "consola": "^3.4.2", "crossws": ">=0.2.0 <0.5.0", "defu": "^6.1.6", "get-port-please": "^3.2.0", "h3": "^1.15.11", "http-shutdown": "^1.2.2", "jiti": "^2.6.1", "mlly": "^1.8.2", "node-forge": "^1.4.0", "pathe": "^2.0.3", "std-env": "^4.0.0", "tinyclip": "^0.1.12", "ufo": "^1.6.3", "untun": "^0.1.3", "uqr": "^0.1.2" }, "bin": { "listen": "bin/listhen.mjs", "listhen": "bin/listhen.mjs" } }, "sha512-4EhoyVcXEpNlY5HJRSQpH7Rba94M8N2JmI62ePjl0lrJKXSfG0F1FAgHGxBoz/T3pe41sUEwkIRRIcaUL0/Ofw=="],
+
+    "local-pkg": ["local-pkg@1.1.2", "", { "dependencies": { "mlly": "^1.7.4", "pkg-types": "^2.3.0", "quansync": "^0.2.11" } }, "sha512-arhlxbFRmoQHl33a0Zkle/YWlmNwoyt6QNZEIJcqNbdrsix5Lvc4HyyI3EnwxTYlZYc32EbYrQ8SzEZ7dqgg9A=="],
+
+    "lodash": ["lodash@4.18.1", "", {}, "sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q=="],
+
+    "lodash.defaults": ["lodash.defaults@4.2.0", "", {}, "sha512-qjxPLHd3r5DnsdGacqOMU6pb/avJzdh9tFX2ymgoZE27BmjXrNy/y4LoaiTeAb+O3gL8AfpJGtqfX/ae2leYYQ=="],
+
+    "lodash.isarguments": ["lodash.isarguments@3.1.0", "", {}, "sha512-chi4NHZlZqZD18a0imDHnZPrDeBbTtVN7GXMwuGdRH9qotxAjYs3aVLKc7zNOG9eddR5Ksd8rvFEBc9SsggPpg=="],
+
     "longest-streak": ["longest-streak@3.1.0", "", {}, "sha512-9Ri+o0JYgehTaVBBDoMqIl8GXtbWg711O3srftcHhZ0dqnETqLaoIK0x17fUw9rFSlK/0NlsKe0Ahhyl5pXE2g=="],
 
     "loupe": ["loupe@3.2.1", "", {}, "sha512-CdzqowRJCeLU72bHvWqwRBBlLcMEtIvGrlvef74kMnV2AolS9Y8xUv1I0U/MNAWMhBlKIoyuEgoJ0t/bbwHbLQ=="],
@@ -1009,6 +1407,10 @@
 
     "magic-string": ["magic-string@0.30.21", "", { "dependencies": { "@jridgewell/sourcemap-codec": "^1.5.5" } }, "sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ=="],
 
+    "magicast": ["magicast@0.3.5", "", { "dependencies": { "@babel/parser": "^7.25.4", "@babel/types": "^7.25.4", "source-map-js": "^1.2.0" } }, "sha512-L0WhttDl+2BOsybvEOLK7fW3UA0OQ0IQ2d6Zl2x/a6vVRs3bAY0ECOSHHeL5jD+SbOpOCUEi0y1DgHEn9Qn1AQ=="],
+
+    "make-dir": ["make-dir@4.0.0", "", { "dependencies": { "semver": "^7.5.3" } }, "sha512-hXdUTZYIVOt1Ex//jAQi+wTZZpUpwBj/0QsOzqegb3rGMMeJiSEu5xLHnYfBrRV4RH2+OCSOO95Is/7x1WJ4bw=="],
+
     "markdown-table": ["markdown-table@3.0.4", "", {}, "sha512-wiYz4+JrLyb/DqW2hkFJxP7Vd7JuTDm77fvbM8VfEQdmSMqcImWeeRbHwZjBjIFki/VaMK2BhFi7oUUZeM5bqw=="],
 
     "mdast-util-find-and-replace": ["mdast-util-find-and-replace@3.0.2", "", { "dependencies": { "@types/mdast": "^4.0.0", "escape-string-regexp": "^5.0.0", "unist-util-is": "^6.0.0", "unist-util-visit-parents": "^6.0.0" } }, "sha512-Tmd1Vg/m3Xz43afeNxDIhWRtFZgM2VLyaf4vSTYwudTyeuTneoL3qtWMA5jeLyz/O1vDJmmV4QuScFCA2tBPwg=="],
@@ -1043,6 +1445,10 @@
 
     "mdn-data": ["mdn-data@2.12.2", "", {}, "sha512-IEn+pegP1aManZuckezWCO+XZQDplx1366JoVhTpMpBB1sPey/SbveZQUosKiKiGYjg1wH4pMlNgXbCiYgihQA=="],
 
+    "merge-stream": ["merge-stream@2.0.0", "", {}, "sha512-abv/qOcuPfk3URPfDzmZU1LKmuw8kT+0nIHvKrKgFrwifol/doWcdA4ZqsWQ8ENrFKkd67Mfpo/LovbIUsbt3w=="],
+
+    "merge2": ["merge2@1.4.1", "", {}, "sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg=="],
+
     "micromark": ["micromark@4.0.2", "", { "dependencies": { "@types/debug": "^4.0.0", "debug": "^4.0.0", "decode-named-character-reference": "^1.0.0", "devlop": "^1.0.0", "micromark-core-commonmark": "^2.0.0", "micromark-factory-space": "^2.0.0", "micromark-util-character": "^2.0.0", "micromark-util-chunked": "^2.0.0", "micromark-util-combine-extensions": "^2.0.0", "micromark-util-decode-numeric-character-reference": "^2.0.0", "micromark-util-encode": "^2.0.0", "micromark-util-normalize-identifier": "^2.0.0", "micromark-util-resolve-all": "^2.0.0", "micromark-util-sanitize-uri": "^2.0.0", "micromark-util-subtokenize": "^2.0.0", "micromark-util-symbol": "^2.0.0", "micromark-util-types": "^2.0.0" } }, "sha512-zpe98Q6kvavpCr1NPVSCMebCKfD7CA2NqZ+rykeNhONIJBpc1tFKt9hucLGwha3jNTNI8lHpctWJWoimVF4PfA=="],
 
     "micromark-core-commonmark": ["micromark-core-commonmark@2.0.3", "", { "dependencies": { "decode-named-character-reference": "^1.0.0", "devlop": "^1.0.0", "micromark-factory-destination": "^2.0.0", "micromark-factory-label": "^2.0.0", "micromark-factory-space": "^2.0.0", "micromark-factory-title": "^2.0.0", "micromark-factory-whitespace": "^2.0.0", "micromark-util-character": "^2.0.0", "micromark-util-chunked": "^2.0.0", "micromark-util-classify-character": "^2.0.0", "micromark-util-html-tag-name": "^2.0.0", "micromark-util-normalize-identifier": "^2.0.0", "micromark-util-resolve-all": "^2.0.0", "micromark-util-subtokenize": "^2.0.0", "micromark-util-symbol": "^2.0.0", "micromark-util-types": "^2.0.0" } }, "sha512-RDBrHEMSxVFLg6xvnXmb1Ayr2WzLAWjeSATAoxwKYJV94TeNavgoIdA0a9ytzDSVzBy2YKFK+emCPOEibLeCrg=="],
@@ -1099,8 +1505,28 @@
 
     "micromark-util-types": ["micromark-util-types@2.0.2", "", {}, "sha512-Yw0ECSpJoViF1qTU4DC6NwtC4aWGt1EkzaQB8KPPyCRR8z9TWeV0HbEFGTO+ZY1wB22zmxnJqhPyTpOVCpeHTA=="],
 
+    "micromatch": ["micromatch@4.0.8", "", { "dependencies": { "braces": "^3.0.3", "picomatch": "^2.3.1" } }, "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA=="],
+
+    "mime": ["mime@4.1.0", "", { "bin": { "mime": "bin/cli.js" } }, "sha512-X5ju04+cAzsojXKes0B/S4tcYtFAJ6tTMuSPBEn9CPGlrWr8Fiw7qYeLT0XyH80HSoAoqWCaz+MWKh22P7G1cw=="],
+
+    "mime-db": ["mime-db@1.54.0", "", {}, "sha512-aU5EJuIN2WDemCcAp2vFBfp/m4EAhWJnUNSSw0ixs7/kXbd6Pg64EmwJkNdFhB8aWt1sH2CTXrLxo/iAGV3oPQ=="],
+
+    "mime-types": ["mime-types@3.0.2", "", { "dependencies": { "mime-db": "^1.54.0" } }, "sha512-Lbgzdk0h4juoQ9fCKXW4by0UJqj+nOOrI9MJ1sSj4nI8aI2eo1qmvQEie4VD1glsS250n15LsWsYtCugiStS5A=="],
+
+    "mimic-fn": ["mimic-fn@4.0.0", "", {}, "sha512-vqiC06CuhBTUdZH+RYl8sFrL096vA45Ok5ISO6sE/Mr1jRbGH4Csnhi8f3wKVl7x8mO4Au7Ir9D3Oyv1VYMFJw=="],
+
+    "min-indent": ["min-indent@1.0.1", "", {}, "sha512-I9jwMn07Sy/IwOj3zVkVik2JTvgpaykDZEigL6Rx6N9LbMywwUSMtxET+7lVoDLLd3O3IXwJwvuuns8UB/HeAg=="],
+
     "miniflare": ["miniflare@4.20260329.0", "", { "dependencies": { "@cspotcode/source-map-support": "0.8.1", "sharp": "^0.34.5", "undici": "7.24.4", "workerd": "1.20260329.1", "ws": "8.18.0", "youch": "4.1.0-beta.10" }, "bin": { "miniflare": "bootstrap.js" } }, "sha512-+G+1YFVeuEpw/gZZmUHQR7IfzJV+DDGvnSl0yXzhgvHh8Nbr8Go5uiWIwl17EyZ1Uors3FKUMDUyU6+ejeKZOw=="],
 
+    "minimatch": ["minimatch@10.2.5", "", { "dependencies": { "brace-expansion": "^5.0.5" } }, "sha512-MULkVLfKGYDFYejP07QOurDLLQpcjk7Fw+7jXS2R2czRQzR56yHRveU5NDJEOviH+hETZKSkIk5c+T23GjFUMg=="],
+
+    "minipass": ["minipass@7.1.3", "", {}, "sha512-tEBHqDnIoM/1rXME1zgka9g6Q2lcoCkxHLuc7ODJ5BxbP5d4c2Z5cGgtXAku59200Cx7diuHTOYfSBD8n6mm8A=="],
+
+    "minizlib": ["minizlib@3.1.0", "", { "dependencies": { "minipass": "^7.1.2" } }, "sha512-KZxYo1BUkWD2TVFLr0MQoM8vUUigWD3LlD83a/75BqC+4qE0Hb1Vo5v1FgcfaNXvfXzr+5EhQ6ing/CaBijTlw=="],
+
+    "mlly": ["mlly@1.8.2", "", { "dependencies": { "acorn": "^8.16.0", "pathe": "^2.0.3", "pkg-types": "^1.3.1", "ufo": "^1.6.3" } }, "sha512-d+ObxMQFmbt10sretNDytwt85VrbkhhUA/JBGm1MPaWJ65Cl4wOgLaB1NYvJSZ0Ef03MMEU/0xpPMXUIQ29UfA=="],
+
     "motion": ["motion@12.34.3", "", { "dependencies": { "framer-motion": "^12.34.3", "tslib": "^2.4.0" }, "peerDependencies": { "@emotion/is-prop-valid": "*", "react": "^18.0.0 || ^19.0.0", "react-dom": "^18.0.0 || ^19.0.0" }, "optionalPeers": ["@emotion/is-prop-valid", "react", "react-dom"] }, "sha512-xZIkBGO7v/Uvm+EyaqYd+9IpXu0sZqLywVlGdCFrrMiaO9JI4Kx51mO9KlHSWwll+gZUVY5OJsWgYI5FywJ/tw=="],
 
     "motion-dom": ["motion-dom@12.34.3", "", { "dependencies": { "motion-utils": "^12.29.2" } }, "sha512-sYgFe+pR9aIM7o4fhs2aXtOI+oqlUd33N9Yoxcgo1Fv7M20sRkHtCmzE/VRNIcq7uNJ+qio+Xubt1FXH3pQ+eQ=="],
@@ -1113,12 +1539,42 @@
 
     "next": ["next@16.1.6", "", { "dependencies": { "@next/env": "16.1.6", "@swc/helpers": "0.5.15", "baseline-browser-mapping": "^2.8.3", "caniuse-lite": "^1.0.30001579", "postcss": "8.4.31", "styled-jsx": "5.1.6" }, "optionalDependencies": { "@next/swc-darwin-arm64": "16.1.6", "@next/swc-darwin-x64": "16.1.6", "@next/swc-linux-arm64-gnu": "16.1.6", "@next/swc-linux-arm64-musl": "16.1.6", "@next/swc-linux-x64-gnu": "16.1.6", "@next/swc-linux-x64-musl": "16.1.6", "@next/swc-win32-arm64-msvc": "16.1.6", "@next/swc-win32-x64-msvc": "16.1.6", "sharp": "^0.34.4" }, "peerDependencies": { "@opentelemetry/api": "^1.1.0", "@playwright/test": "^1.51.1", "babel-plugin-react-compiler": "*", "react": "^18.2.0 || 19.0.0-rc-de68d2f4-20241204 || ^19.0.0", "react-dom": "^18.2.0 || 19.0.0-rc-de68d2f4-20241204 || ^19.0.0", "sass": "^1.3.0" }, "optionalPeers": ["@opentelemetry/api", "@playwright/test", "babel-plugin-react-compiler", "sass"], "bin": { "next": "dist/bin/next" } }, "sha512-hkyRkcu5x/41KoqnROkfTm2pZVbKxvbZRuNvKXLRXxs3VfyO0WhY50TQS40EuKO9SW3rBj/sF3WbVwDACeMZyw=="],
 
+    "nitropack": ["nitropack@2.13.3", "", { "dependencies": { "@cloudflare/kv-asset-handler": "^0.4.2", "@rollup/plugin-alias": "^6.0.0", "@rollup/plugin-commonjs": "^29.0.2", "@rollup/plugin-inject": "^5.0.5", "@rollup/plugin-json": "^6.1.0", "@rollup/plugin-node-resolve": "^16.0.3", "@rollup/plugin-replace": "^6.0.3", "@rollup/plugin-terser": "^1.0.0", "@vercel/nft": "^1.5.0", "archiver": "^7.0.1", "c12": "^3.3.4", "chokidar": "^5.0.0", "citty": "^0.2.2", "compatx": "^0.2.0", "confbox": "^0.2.4", "consola": "^3.4.2", "cookie-es": "^2.0.1", "croner": "^10.0.1", "crossws": "^0.3.5", "db0": "^0.3.4", "defu": "^6.1.6", "destr": "^2.0.5", "dot-prop": "^10.1.0", "esbuild": "^0.27.5", "escape-string-regexp": "^5.0.0", "etag": "^1.8.1", "exsolve": "^1.0.8", "globby": "^16.2.0", "gzip-size": "^7.0.0", "h3": "^1.15.10", "hookable": "^5.5.3", "httpxy": "^0.5.0", "ioredis": "^5.10.1", "jiti": "^2.6.1", "klona": "^2.0.6", "knitwork": "^1.3.0", "listhen": "^1.9.1", "magic-string": "^0.30.21", "magicast": "^0.5.2", "mime": "^4.1.0", "mlly": "^1.8.2", "node-fetch-native": "^1.6.7", "node-mock-http": "^1.0.4", "ofetch": "^1.5.1", "ohash": "^2.0.11", "pathe": "^2.0.3", "perfect-debounce": "^2.1.0", "pkg-types": "^2.3.0", "pretty-bytes": "^7.1.0", "radix3": "^1.1.2", "rollup": "^4.60.1", "rollup-plugin-visualizer": "^7.0.1", "scule": "^1.3.0", "semver": "^7.7.4", "serve-placeholder": "^2.0.2", "serve-static": "^2.2.1", "source-map": "^0.7.6", "std-env": "^4.0.0", "ufo": "^1.6.3", "ultrahtml": "^1.6.0", "uncrypto": "^0.1.3", "unctx": "^2.5.0", "unenv": "2.0.0-rc.24", "unimport": "^6.0.2", "unplugin-utils": "^0.3.1", "unstorage": "^1.17.5", "untyped": "^2.0.0", "unwasm": "^0.5.3", "youch": "^4.1.1", "youch-core": "^0.3.3" }, "peerDependencies": { "xml2js": "^0.6.2" }, "optionalPeers": ["xml2js"], "bin": { "nitro": "dist/cli/index.mjs", "nitropack": "dist/cli/index.mjs" } }, "sha512-C8vO7RxkU0AQ3HbYUumuG6MVM5JjRaBchke/rYFOp3EvrLtTBHZYhDVGECdpa27vNuOYRzm3GtQMn2YDOjDJLA=="],
+
+    "node-addon-api": ["node-addon-api@7.1.1", "", {}, "sha512-5m3bsyrjFWE1xf7nz7YXdN4udnVtXK6/Yfgn5qnahL6bCkf2yKt4k3nuTKAtT4r3IG8JNR2ncsIMdZuAzJjHQQ=="],
+
+    "node-fetch": ["node-fetch@2.7.0", "", { "dependencies": { "whatwg-url": "^5.0.0" }, "peerDependencies": { "encoding": "^0.1.0" }, "optionalPeers": ["encoding"] }, "sha512-c4FRfUm/dbcWZ7U+1Wq0AwCyFL+3nt2bEw05wfxSz+DWpWsitgmSgYmy2dQdWyKC1694ELPqMs/YzUSNozLt8A=="],
+
+    "node-fetch-native": ["node-fetch-native@1.6.7", "", {}, "sha512-g9yhqoedzIUm0nTnTqAQvueMPVOuIY16bqgAJJC8XOOubYFNwz6IER9qs0Gq2Xd0+CecCKFjtdDTMA4u4xG06Q=="],
+
+    "node-forge": ["node-forge@1.4.0", "", {}, "sha512-LarFH0+6VfriEhqMMcLX2F7SwSXeWwnEAJEsYm5QKWchiVYVvJyV9v7UDvUv+w5HO23ZpQTXDv/GxdDdMyOuoQ=="],
+
+    "node-gyp-build": ["node-gyp-build@4.8.4", "", { "bin": { "node-gyp-build": "bin.js", "node-gyp-build-optional": "optional.js", "node-gyp-build-test": "build-test.js" } }, "sha512-LA4ZjwlnUblHVgq0oBF3Jl/6h/Nvs5fzBLwdEF4nuxnFdsfajde4WfxtJr3CaiH+F6ewcIB/q4jQ4UzPyid+CQ=="],
+
+    "node-mock-http": ["node-mock-http@1.0.4", "", {}, "sha512-8DY+kFsDkNXy1sJglUfuODx1/opAGJGyrTuFqEoN90oRc2Vk0ZbD4K2qmKXBBEhZQzdKHIVfEJpDU8Ak2NJEvQ=="],
+
     "node-releases": ["node-releases@2.0.27", "", {}, "sha512-nmh3lCkYZ3grZvqcCH+fjmQ7X+H0OeZgP40OierEaAptX4XofMh5kwNbWh7lBduUzCcV/8kZ+NDLCwm2iorIlA=="],
 
+    "nopt": ["nopt@8.1.0", "", { "dependencies": { "abbrev": "^3.0.0" }, "bin": { "nopt": "bin/nopt.js" } }, "sha512-ieGu42u/Qsa4TFktmaKEwM6MQH0pOWnaB3htzh0JRtx84+Mebc0cbZYN5bC+6WTZ4+77xrL9Pn5m7CV6VIkV7A=="],
+
     "normalize-path": ["normalize-path@3.0.0", "", {}, "sha512-6eZs5Ls3WtCisHWp9S2GUy8dqkpGi4BVSz3GaqiE6ezub0512ESztXUwUB6C6IKbQkY2Pnb/mD4WYojCRwcwLA=="],
 
+    "npm-run-path": ["npm-run-path@5.3.0", "", { "dependencies": { "path-key": "^4.0.0" } }, "sha512-ppwTtiJZq0O/ai0z7yfudtBpWIoxM8yE6nHi1X47eFR2EWORqfbu6CnPlNsjeN683eT0qG6H/Pyf9fCcvjnnnQ=="],
+
     "nth-check": ["nth-check@2.1.1", "", { "dependencies": { "boolbase": "^1.0.0" } }, "sha512-lqjrjmaOoAnWfMmBPL+XNnynZh2+swxiX3WUE0s4yEHI6m+AwrK2UZOimIRl3X/4QctVqS8AiZjFqyOGrMXb/w=="],
 
+    "ofetch": ["ofetch@1.5.1", "", { "dependencies": { "destr": "^2.0.5", "node-fetch-native": "^1.6.7", "ufo": "^1.6.1" } }, "sha512-2W4oUZlVaqAPAil6FUg/difl6YhqhUR7x2eZY4bQCko22UXg3hptq9KLQdqFClV+Wu85UX7hNtdGTngi/1BxcA=="],
+
+    "ohash": ["ohash@2.0.11", "", {}, "sha512-RdR9FQrFwNBNXAr4GixM8YaRZRJ5PUWbKYbE5eOsrwAjJW0q2REGcf79oYPsLyskQCZG1PLN+S/K1V00joZAoQ=="],
+
+    "on-finished": ["on-finished@2.4.1", "", { "dependencies": { "ee-first": "1.1.1" } }, "sha512-oVlzkg3ENAhCk2zdv7IJwd/QUD4z2RxRwpkcGY8psCVcCYZNq4wYnVWALHM+brtuJjePWiYF/ClmuDr8Ch5+kg=="],
+
+    "onetime": ["onetime@6.0.0", "", { "dependencies": { "mimic-fn": "^4.0.0" } }, "sha512-1FlR+gjXK7X+AsAHso35MnyN5KqGwJRi/31ft6x0M194ht7S+rWAvd7PHss9xSKMzE0asv1pyIHaJYq+BbacAQ=="],
+
+    "open": ["open@11.0.0", "", { "dependencies": { "default-browser": "^5.4.0", "define-lazy-prop": "^3.0.0", "is-in-ssh": "^1.0.0", "is-inside-container": "^1.0.0", "powershell-utils": "^0.1.0", "wsl-utils": "^0.3.0" } }, "sha512-smsWv2LzFjP03xmvFoJ331ss6h+jixfA4UUV/Bsiyuu4YJPfN+FIQGOIiv4w9/+MoHkfkJ22UIaQWRVFRfH6Vw=="],
+
+    "package-json-from-dist": ["package-json-from-dist@1.0.1", "", {}, "sha512-UEZIS3/by4OC8vL3P2dTXRETpebLI2NiI5vIrjaD/5UtrkFX/tNbwjTSRAGC/+7CAo2pIcBaRgWmcBBHcsaCIw=="],
+
     "parse-entities": ["parse-entities@4.0.2", "", { "dependencies": { "@types/unist": "^2.0.0", "character-entities-legacy": "^3.0.0", "character-reference-invalid": "^2.0.0", "decode-named-character-reference": "^1.0.0", "is-alphanumerical": "^2.0.0", "is-decimal": "^2.0.0", "is-hexadecimal": "^2.0.0" } }, "sha512-GG2AQYWoLgL877gQIKeRPGO1xF9+eG1ujIb5soS5gPvLQ1y2o8FL90w2QWNdf9I361Mpp7726c+lj3U0qK1uGw=="],
 
     "parse5": ["parse5@8.0.0", "", { "dependencies": { "entities": "^6.0.0" } }, "sha512-9m4m5GSgXjL4AjumKzq1Fgfp3Z8rsvjRNbnkVwfu2ImRqE5D0LnY2QfDen18FSY9C573YU5XxSapdHZTZ2WolA=="],
@@ -1127,30 +1583,60 @@
 
     "parse5-parser-stream": ["parse5-parser-stream@7.1.2", "", { "dependencies": { "parse5": "^7.0.0" } }, "sha512-JyeQc9iwFLn5TbvvqACIF/VXG6abODeB3Fwmv/TGdLk2LfbWkaySGY72at4+Ty7EkPZj854u4CrICqNk2qIbow=="],
 
+    "parseurl": ["parseurl@1.3.3", "", {}, "sha512-CiyeOxFT/JZyN5m0z9PfXw4SCBJ6Sygz1Dpl0wqjlhDEGGBP1GnsUVEL0p63hoG1fcj3fHynXi9NYO4nWOL+qQ=="],
+
+    "path-key": ["path-key@3.1.1", "", {}, "sha512-ojmeN0qd+y0jszEtoY48r0Peq5dwMEkIlCOu6Q5f41lfkswXuKtYrhgoTpLnyIcHm24Uhqx+5Tqm2InSwLhE6Q=="],
+
+    "path-parse": ["path-parse@1.0.7", "", {}, "sha512-LDJzPVEEEPR+y48z93A0Ed0yXb8pAByGWo/k5YYdYgpY2/2EsOsksJrq7lOHxryrVOn1ejG6oAp8ahvOIQD8sw=="],
+
+    "path-scurry": ["path-scurry@1.11.1", "", { "dependencies": { "lru-cache": "^10.2.0", "minipass": "^5.0.0 || ^6.0.2 || ^7.0.0" } }, "sha512-Xa4Nw17FS9ApQFJ9umLiJS4orGjm7ZzwUrwamcGQuHSzDyth9boKDaycYdDcZDuqYATXw4HFXgaqWTctW/v1HA=="],
+
     "path-to-regexp": ["path-to-regexp@6.3.0", "", {}, "sha512-Yhpw4T9C6hPpgPeA28us07OJeqZ5EzQTkbfwuhsUg0c237RomFoETJgmp2sa3F/41gfLE6G5cqcYwznmeEeOlQ=="],
 
     "pathe": ["pathe@2.0.3", "", {}, "sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w=="],
 
     "pathval": ["pathval@2.0.1", "", {}, "sha512-//nshmD55c46FuFw26xV/xFAaB5HF9Xdap7HJBBnrKdAd6/GxDBaNA1870O79+9ueg61cZLSVc+OaFlfmObYVQ=="],
 
+    "perfect-debounce": ["perfect-debounce@2.1.0", "", {}, "sha512-LjgdTytVFXeUgtHZr9WYViYSM/g8MkcTPYDlPa3cDqMirHjKiSZPYd6DoL7pK8AJQr+uWkQvCjHNdiMqsrJs+g=="],
+
     "picocolors": ["picocolors@1.1.1", "", {}, "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA=="],
 
     "picomatch": ["picomatch@4.0.3", "", {}, "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q=="],
 
+    "pkg-types": ["pkg-types@2.3.0", "", { "dependencies": { "confbox": "^0.2.2", "exsolve": "^1.0.7", "pathe": "^2.0.3" } }, "sha512-SIqCzDRg0s9npO5XQ3tNZioRY1uK06lA41ynBC1YmFTmnY6FjUjVt6s4LoADmwoig1qqD0oK8h1p/8mlMx8Oig=="],
+
     "postcss": ["postcss@8.5.6", "", { "dependencies": { "nanoid": "^3.3.11", "picocolors": "^1.1.1", "source-map-js": "^1.2.1" } }, "sha512-3Ybi1tAuwAP9s0r1UQ2J4n5Y0G05bJkpUIO0/bI9MhwmD70S5aTWbXGBwxHrelT+XM1k6dM0pk+SwNkpTRN7Pg=="],
 
     "postcss-selector-parser": ["postcss-selector-parser@6.0.10", "", { "dependencies": { "cssesc": "^3.0.0", "util-deprecate": "^1.0.2" } }, "sha512-IQ7TZdoaqbT+LCpShg46jnZVlhWD2w6iQYAcYXfHARZ7X1t/UGhhceQDs5X0cGqKvYlHNOuv7Oa1xmb0oQuA3w=="],
 
+    "powershell-utils": ["powershell-utils@0.1.0", "", {}, "sha512-dM0jVuXJPsDN6DvRpea484tCUaMiXWjuCn++HGTqUWzGDjv5tZkEZldAJ/UMlqRYGFrD/etByo4/xOuC/snX2A=="],
+
     "prettier": ["prettier@3.8.1", "", { "bin": { "prettier": "bin/prettier.cjs" } }, "sha512-UOnG6LftzbdaHZcKoPFtOcCKztrQ57WkHDeRD9t/PTQtmT0NHSeWWepj6pS0z/N7+08BHFDQVUrfmfMRcZwbMg=="],
 
+    "pretty-bytes": ["pretty-bytes@7.1.0", "", {}, "sha512-nODzvTiYVRGRqAOvE84Vk5JDPyyxsVk0/fbA/bq7RqlnhksGpset09XTxbpvLTIjoaF7K8Z8DG8yHtKGTPSYRw=="],
+
     "pretty-format": ["pretty-format@27.5.1", "", { "dependencies": { "ansi-regex": "^5.0.1", "ansi-styles": "^5.0.0", "react-is": "^17.0.1" } }, "sha512-Qb1gy5OrP5+zDf2Bvnzdl3jsTf1qXVMazbvCoKhtKqVs4/YK4ozX4gKQJJVyNe+cajNPn0KoC0MC3FUmaHWEmQ=="],
 
+    "process": ["process@0.11.10", "", {}, "sha512-cdGef/drWFoydD1JsMzuFf8100nZl+GT+yacc2bEced5f9Rjk4z+WtFUTBu9PhOi9j/jfmBPu0mMEY4wIdAF8A=="],
+
+    "process-nextick-args": ["process-nextick-args@2.0.1", "", {}, "sha512-3ouUOpQhtgrbOa17J7+uxOTpITYWaGP7/AhoR3+A+/1e9skrzelGi/dXzEYyvbxubEF6Wn2ypscTKiKJFFn1ag=="],
+
     "property-information": ["property-information@7.1.0", "", {}, "sha512-TwEZ+X+yCJmYfL7TPUOcvBZ4QfoT5YenQiJuX//0th53DE6w0xxLEtfK3iyryQFddXuvkIk51EEgrJQ0WJkOmQ=="],
 
     "punycode": ["punycode@2.3.1", "", {}, "sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg=="],
 
+    "quansync": ["quansync@0.2.11", "", {}, "sha512-AifT7QEbW9Nri4tAwR5M/uzpBuqfZf+zwaEM/QkzEjj7NBuFD2rBuy0K3dE+8wltbezDV7JMA0WfnCPYRSYbXA=="],
+
+    "queue-microtask": ["queue-microtask@1.2.3", "", {}, "sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A=="],
+
     "radix-ui": ["radix-ui@1.4.3", "", { "dependencies": { "@radix-ui/primitive": "1.1.3", "@radix-ui/react-accessible-icon": "1.1.7", "@radix-ui/react-accordion": "1.2.12", "@radix-ui/react-alert-dialog": "1.1.15", "@radix-ui/react-arrow": "1.1.7", "@radix-ui/react-aspect-ratio": "1.1.7", "@radix-ui/react-avatar": "1.1.10", "@radix-ui/react-checkbox": "1.3.3", "@radix-ui/react-collapsible": "1.1.12", "@radix-ui/react-collection": "1.1.7", "@radix-ui/react-compose-refs": "1.1.2", "@radix-ui/react-context": "1.1.2", "@radix-ui/react-context-menu": "2.2.16", "@radix-ui/react-dialog": "1.1.15", "@radix-ui/react-direction": "1.1.1", "@radix-ui/react-dismissable-layer": "1.1.11", "@radix-ui/react-dropdown-menu": "2.1.16", "@radix-ui/react-focus-guards": "1.1.3", "@radix-ui/react-focus-scope": "1.1.7", "@radix-ui/react-form": "0.1.8", "@radix-ui/react-hover-card": "1.1.15", "@radix-ui/react-label": "2.1.7", "@radix-ui/react-menu": "2.1.16", "@radix-ui/react-menubar": "1.1.16", "@radix-ui/react-navigation-menu": "1.2.14", "@radix-ui/react-one-time-password-field": "0.1.8", "@radix-ui/react-password-toggle-field": "0.1.3", "@radix-ui/react-popover": "1.1.15", "@radix-ui/react-popper": "1.2.8", "@radix-ui/react-portal": "1.1.9", "@radix-ui/react-presence": "1.1.5", "@radix-ui/react-primitive": "2.1.3", "@radix-ui/react-progress": "1.1.7", "@radix-ui/react-radio-group": "1.3.8", "@radix-ui/react-roving-focus": "1.1.11", "@radix-ui/react-scroll-area": "1.2.10", "@radix-ui/react-select": "2.2.6", "@radix-ui/react-separator": "1.1.7", "@radix-ui/react-slider": "1.3.6", "@radix-ui/react-slot": "1.2.3", "@radix-ui/react-switch": "1.2.6", "@radix-ui/react-tabs": "1.1.13", "@radix-ui/react-toast": "1.2.15", "@radix-ui/react-toggle": "1.1.10", "@radix-ui/react-toggle-group": "1.1.11", "@radix-ui/react-toolbar": "1.1.11", "@radix-ui/react-tooltip": "1.2.8", "@radix-ui/react-use-callback-ref": "1.1.1", "@radix-ui/react-use-controllable-state": "1.2.2", "@radix-ui/react-use-effect-event": "0.0.2", "@radix-ui/react-use-escape-keydown": "1.1.1", "@radix-ui/react-use-is-hydrated": "0.1.0", "@radix-ui/react-use-layout-effect": "1.1.1", "@radix-ui/react-use-size": "1.1.1", "@radix-ui/react-visually-hidden": "1.2.3" }, "peerDependencies": { "@types/react": "*", "@types/react-dom": "*", "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc", "react-dom": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc" }, "optionalPeers": ["@types/react", "@types/react-dom"] }, "sha512-aWizCQiyeAenIdUbqEpXgRA1ya65P13NKn/W8rWkcN0OPkRDxdBVLWnIEDsS2RpwCK2nobI7oMUSmexzTDyAmA=="],
 
+    "radix3": ["radix3@1.1.2", "", {}, "sha512-b484I/7b8rDEdSDKckSSBA8knMpcdsXudlE/LNL639wFoHKwLbEkQFZHWEYwDC0wa0FKUcCY+GAF73Z7wxNVFA=="],
+
+    "range-parser": ["range-parser@1.2.1", "", {}, "sha512-Hrgsx+orqoygnmhFbKaHE6c296J+HTAQXoxEF6gNupROmmGJRoyzfG3ccAveqCBrwr/2yxQ5BVd/GTl5agOwSg=="],
+
+    "rc9": ["rc9@3.0.1", "", { "dependencies": { "defu": "^6.1.6", "destr": "^2.0.5" } }, "sha512-gMDyleLWVE+i6Sgtc0QbbY6pEKqYs97NGi6isHQPqYlLemPoO8dxQ3uGi0f4NiP98c+jMW6cG1Kx9dDwfvqARQ=="],
+
     "react": ["react@19.2.4", "", {}, "sha512-9nfp2hYpCwOjAN+8TZFGhtWEwgvWHXqESH8qT89AT/lWklpLON22Lc8pEtnpsZz7VmawabSU0gCjnj8aC0euHQ=="],
 
     "react-dom": ["react-dom@19.2.4", "", { "dependencies": { "scheduler": "^0.27.0" }, "peerDependencies": { "react": "^19.2.4" } }, "sha512-AXJdLo8kgMbimY95O2aKQqsz2iWi9jMgKJhRBAxECE4IFxfcazB2LmzloIoibJI3C12IlY20+KFaLv+71bUJeQ=="],
@@ -1171,10 +1657,20 @@
 
     "react-style-singleton": ["react-style-singleton@2.2.3", "", { "dependencies": { "get-nonce": "^1.0.0", "tslib": "^2.0.0" }, "peerDependencies": { "@types/react": "*", "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0 || ^19.0.0-rc" }, "optionalPeers": ["@types/react"] }, "sha512-b6jSvxvVnyptAiLjbkWLE/lOnR4lfTtDAl+eUC7RZy+QQWc6wRzIV2CE6xBuMmDxc2qIihtDCZD5NPOFl7fRBQ=="],
 
+    "readable-stream": ["readable-stream@4.7.0", "", { "dependencies": { "abort-controller": "^3.0.0", "buffer": "^6.0.3", "events": "^3.3.0", "process": "^0.11.10", "string_decoder": "^1.3.0" } }, "sha512-oIGGmcpTLwPga8Bn6/Z75SVaH1z5dUut2ibSyAMVhmUggWpmDn2dapB0n7f8nwaSiRtepAsfJyfXIO5DCVAODg=="],
+
+    "readdir-glob": ["readdir-glob@1.1.3", "", { "dependencies": { "minimatch": "^5.1.0" } }, "sha512-v05I2k7xN8zXvPD9N+z/uhXPaj0sUFCe2rcWZIpBsqxfP7xXFQ0tipAd/wjj1YxWyWtUS5IDJpOG82JKt2EAVA=="],
+
     "readdirp": ["readdirp@3.6.0", "", { "dependencies": { "picomatch": "^2.2.1" } }, "sha512-hOS089on8RduqdbhvQ5Z37A0ESjsqz6qnRcffsMU3495FuTdqSm+7bhJ29JvIOsBDEEnan5DPu9t3To9VRlMzA=="],
 
     "recast": ["recast@0.23.11", "", { "dependencies": { "ast-types": "^0.16.1", "esprima": "~4.0.0", "source-map": "~0.6.1", "tiny-invariant": "^1.3.3", "tslib": "^2.0.1" } }, "sha512-YTUo+Flmw4ZXiWfQKGcwwc11KnoRAYgzAE2E7mXKCjSviTKShtxBsN6YUUBB2gtaBzKzeKunxhUwNHQuRryhWA=="],
 
+    "redent": ["redent@3.0.0", "", { "dependencies": { "indent-string": "^4.0.0", "strip-indent": "^3.0.0" } }, "sha512-6tDA8g98We0zd0GvVeMT9arEOnTw9qM03L9cJXaCjrip1OO764RDBLBfrB4cwzNGDj5OA5ioymC9GkizgWJDUg=="],
+
+    "redis-errors": ["redis-errors@1.2.0", "", {}, "sha512-1qny3OExCf0UvUV/5wpYKf2YwPcOqXzkwKKSmKHiE6ZMQs5heeE/c8eXK+PNllPvmjgAbfnsbpkGZWy8cBpn9w=="],
+
+    "redis-parser": ["redis-parser@3.0.0", "", { "dependencies": { "redis-errors": "^1.0.0" } }, "sha512-DJnGAeenTdpMEH6uAJRK/uiyEIH9WVsUmoLwzudwGJUwZPp80PDBWPHXSAGNPwNvIXAbe7MSUB1zQFugFml66A=="],
+
     "rehype-highlight": ["rehype-highlight@7.0.2", "", { "dependencies": { "@types/hast": "^3.0.0", "hast-util-to-text": "^4.0.0", "lowlight": "^3.0.0", "unist-util-visit": "^5.0.0", "vfile": "^6.0.0" } }, "sha512-k158pK7wdC2qL3M5NcZROZ2tR/l7zOzjxXd5VGdcfIyoijjQqpHd3JKtYSBDpDZ38UI2WJWuFAtkMDxmx5kstA=="],
 
     "remark-gfm": ["remark-gfm@4.0.1", "", { "dependencies": { "@types/mdast": "^4.0.0", "mdast-util-gfm": "^3.0.0", "micromark-extension-gfm": "^3.0.0", "remark-parse": "^11.0.0", "remark-stringify": "^11.0.0", "unified": "^11.0.0" } }, "sha512-1quofZ2RQ9EWdeN34S79+KExV1764+wCUGop5CPL1WGdD0ocPpu91lzPGbwWMECpEpd42kJGQwzRfyov9j4yNg=="],
@@ -1187,30 +1683,68 @@
 
     "require-from-string": ["require-from-string@2.0.2", "", {}, "sha512-Xf0nWe6RseziFMu+Ap9biiUbmplq6S9/p+7w7YXP/JBHhrUDDUhwa+vANyubuqfZWTveU//DYVGsDG7RKL/vEw=="],
 
+    "requires-port": ["requires-port@1.0.0", "", {}, "sha512-KigOCHcocU3XODJxsu8i/j8T9tzT4adHiecwORRQ0ZZFcp7ahwXuRU1m+yuO90C5ZUyGeGfocHDI14M3L3yDAQ=="],
+
+    "resolve": ["resolve@1.22.11", "", { "dependencies": { "is-core-module": "^2.16.1", "path-parse": "^1.0.7", "supports-preserve-symlinks-flag": "^1.0.0" }, "bin": { "resolve": "bin/resolve" } }, "sha512-RfqAvLnMl313r7c9oclB1HhUEAezcpLjz95wFH4LVuhk9JF/r22qmVP9AMmOU4vMX7Q8pN8jwNg/CSpdFnMjTQ=="],
+
+    "resolve-from": ["resolve-from@5.0.0", "", {}, "sha512-qYg9KP24dD5qka9J47d0aVky0N+b4fTU89LN9iDnjB5waksiC49rvMB0PrUJQGoTmH50XPiqOvAjDfaijGxYZw=="],
+
     "resolve-pkg-maps": ["resolve-pkg-maps@1.0.0", "", {}, "sha512-seS2Tj26TBVOC2NIc2rOe2y2ZO7efxITtLZcGSOnHHNOQ7CkiUBfw0Iw2ck6xkIhPwLhKNLS8BO+hEpngQlqzw=="],
 
+    "reusify": ["reusify@1.1.0", "", {}, "sha512-g6QUff04oZpHs0eG5p83rFLhHeV00ug/Yf9nZM6fLeUrPguBTkTQOdpAWWspMh55TZfVQDPaN3NQJfbVRAxdIw=="],
+
     "rollup": ["rollup@4.57.1", "", { "dependencies": { "@types/estree": "1.0.8" }, "optionalDependencies": { "@rollup/rollup-android-arm-eabi": "4.57.1", "@rollup/rollup-android-arm64": "4.57.1", "@rollup/rollup-darwin-arm64": "4.57.1", "@rollup/rollup-darwin-x64": "4.57.1", "@rollup/rollup-freebsd-arm64": "4.57.1", "@rollup/rollup-freebsd-x64": "4.57.1", "@rollup/rollup-linux-arm-gnueabihf": "4.57.1", "@rollup/rollup-linux-arm-musleabihf": "4.57.1", "@rollup/rollup-linux-arm64-gnu": "4.57.1", "@rollup/rollup-linux-arm64-musl": "4.57.1", "@rollup/rollup-linux-loong64-gnu": "4.57.1", "@rollup/rollup-linux-loong64-musl": "4.57.1", "@rollup/rollup-linux-ppc64-gnu": "4.57.1", "@rollup/rollup-linux-ppc64-musl": "4.57.1", "@rollup/rollup-linux-riscv64-gnu": "4.57.1", "@rollup/rollup-linux-riscv64-musl": "4.57.1", "@rollup/rollup-linux-s390x-gnu": "4.57.1", "@rollup/rollup-linux-x64-gnu": "4.57.1", "@rollup/rollup-linux-x64-musl": "4.57.1", "@rollup/rollup-openbsd-x64": "4.57.1", "@rollup/rollup-openharmony-arm64": "4.57.1", "@rollup/rollup-win32-arm64-msvc": "4.57.1", "@rollup/rollup-win32-ia32-msvc": "4.57.1", "@rollup/rollup-win32-x64-gnu": "4.57.1", "@rollup/rollup-win32-x64-msvc": "4.57.1", "fsevents": "~2.3.2" }, "bin": { "rollup": "dist/bin/rollup" } }, "sha512-oQL6lgK3e2QZeQ7gcgIkS2YZPg5slw37hYufJ3edKlfQSGGm8ICoxswK15ntSzF/a8+h7ekRy7k7oWc3BQ7y8A=="],
 
+    "rollup-plugin-visualizer": ["rollup-plugin-visualizer@7.0.1", "", { "dependencies": { "open": "^11.0.0", "picomatch": "^4.0.2", "source-map": "^0.7.4", "yargs": "^18.0.0" }, "peerDependencies": { "rolldown": "1.x || ^1.0.0-beta || ^1.0.0-rc", "rollup": "2.x || 3.x || 4.x" }, "optionalPeers": ["rolldown", "rollup"], "bin": { "rollup-plugin-visualizer": "dist/bin/cli.js" } }, "sha512-UJUT4+1Ho4OcWmPYU3sYXgUqI8B8Ayfe06MX7y0qCJ1K8aGoKtR/NDd/2nZqM7ADkrzny+I99Ul7GgyoiVNAgg=="],
+
     "rou3": ["rou3@0.7.12", "", {}, "sha512-iFE4hLDuloSWcD7mjdCDhx2bKcIsYbtOTpfH5MHHLSKMOUyjqQXTeZVa289uuwEGEKFoE/BAPbhaU4B774nceg=="],
 
+    "run-applescript": ["run-applescript@7.1.0", "", {}, "sha512-DPe5pVFaAsinSaV6QjQ6gdiedWDcRCbUuiQfQa2wmWV7+xC9bGulGI8+TdRmoFkAPaBXk8CrAbnlY2ISniJ47Q=="],
+
+    "run-parallel": ["run-parallel@1.2.0", "", { "dependencies": { "queue-microtask": "^1.2.2" } }, "sha512-5l4VyZR86LZ/lDxZTR6jqL8AFE2S0IFLMP26AbjsLVADxHdhB/c0GUsH+y39UfCi3dzz8OlQuPmnaJOMoDHQBA=="],
+
+    "safe-buffer": ["safe-buffer@5.2.1", "", {}, "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ=="],
+
     "safer-buffer": ["safer-buffer@2.1.2", "", {}, "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg=="],
 
     "saxes": ["saxes@6.0.0", "", { "dependencies": { "xmlchars": "^2.2.0" } }, "sha512-xAg7SOnEhrm5zI3puOOKyy1OMcMlIJZYNJY7xLBwSze0UjhPLnWfj2GF2EpT0jmzaJKIWKHLsaSSajf35bcYnA=="],
 
     "scheduler": ["scheduler@0.27.0", "", {}, "sha512-eNv+WrVbKu1f3vbYJT/xtiF5syA5HPIMtf9IgY/nKg0sWqzAUEvqY/xm7OcZc/qafLx/iO9FgOmeSAp4v5ti/Q=="],
 
+    "scule": ["scule@1.3.0", "", {}, "sha512-6FtHJEvt+pVMIB9IBY+IcCJ6Z5f1iQnytgyfKMhDKgmzYG+TeH/wx1y3l27rshSbLiSanrR9ffZDrEsmjlQF2g=="],
+
     "semver": ["semver@6.3.1", "", { "bin": { "semver": "bin/semver.js" } }, "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA=="],
 
+    "send": ["send@0.19.2", "", { "dependencies": { "debug": "2.6.9", "depd": "2.0.0", "destroy": "1.2.0", "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "etag": "~1.8.1", "fresh": "~0.5.2", "http-errors": "~2.0.1", "mime": "1.6.0", "ms": "2.1.3", "on-finished": "~2.4.1", "range-parser": "~1.2.1", "statuses": "~2.0.2" } }, "sha512-VMbMxbDeehAxpOtWJXlcUS5E8iXh6QmN+BkRX1GARS3wRaXEEgzCcB10gTQazO42tpNIya8xIyNx8fll1OFPrg=="],
+
+    "serialize-javascript": ["serialize-javascript@7.0.5", "", {}, "sha512-F4LcB0UqUl1zErq+1nYEEzSHJnIwb3AF2XWB94b+afhrekOUijwooAYqFyRbjYkm2PAKBabx6oYv/xDxNi8IBw=="],
+
     "seroval": ["seroval@1.5.0", "", {}, "sha512-OE4cvmJ1uSPrKorFIH9/w/Qwuvi/IMcGbv5RKgcJ/zjA/IohDLU6SVaxFN9FwajbP7nsX0dQqMDes1whk3y+yw=="],
 
     "seroval-plugins": ["seroval-plugins@1.5.0", "", { "peerDependencies": { "seroval": "^1.0" } }, "sha512-EAHqADIQondwRZIdeW2I636zgsODzoBDwb3PT/+7TLDWyw1Dy/Xv7iGUIEXXav7usHDE9HVhOU61irI3EnyyHA=="],
 
+    "serve-placeholder": ["serve-placeholder@2.0.2", "", { "dependencies": { "defu": "^6.1.4" } }, "sha512-/TMG8SboeiQbZJWRlfTCqMs2DD3SZgWp0kDQePz9yUuCnDfDh/92gf7/PxGhzXTKBIPASIHxFcZndoNbp6QOLQ=="],
+
+    "serve-static": ["serve-static@1.16.3", "", { "dependencies": { "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "parseurl": "~1.3.3", "send": "~0.19.1" } }, "sha512-x0RTqQel6g5SY7Lg6ZreMmsOzncHFU7nhnRWkKgWuMTu5NN0DR5oruckMqRvacAN9d5w6ARnRBXl9xhDCgfMeA=="],
+
+    "setprototypeof": ["setprototypeof@1.2.0", "", {}, "sha512-E5LDX7Wrp85Kil5bhZv46j8jOeboKq5JMmYM3gVGdGH8xFpPWXUMsNrlODCrkoxMEeNi/XZIwuRvY4XNwYMJpw=="],
+
     "sharp": ["sharp@0.34.5", "", { "dependencies": { "@img/colour": "^1.0.0", "detect-libc": "^2.1.2", "semver": "^7.7.3" }, "optionalDependencies": { "@img/sharp-darwin-arm64": "0.34.5", "@img/sharp-darwin-x64": "0.34.5", "@img/sharp-libvips-darwin-arm64": "1.2.4", "@img/sharp-libvips-darwin-x64": "1.2.4", "@img/sharp-libvips-linux-arm": "1.2.4", "@img/sharp-libvips-linux-arm64": "1.2.4", "@img/sharp-libvips-linux-ppc64": "1.2.4", "@img/sharp-libvips-linux-riscv64": "1.2.4", "@img/sharp-libvips-linux-s390x": "1.2.4", "@img/sharp-libvips-linux-x64": "1.2.4", "@img/sharp-libvips-linuxmusl-arm64": "1.2.4", "@img/sharp-libvips-linuxmusl-x64": "1.2.4", "@img/sharp-linux-arm": "0.34.5", "@img/sharp-linux-arm64": "0.34.5", "@img/sharp-linux-ppc64": "0.34.5", "@img/sharp-linux-riscv64": "0.34.5", "@img/sharp-linux-s390x": "0.34.5", "@img/sharp-linux-x64": "0.34.5", "@img/sharp-linuxmusl-arm64": "0.34.5", "@img/sharp-linuxmusl-x64": "0.34.5", "@img/sharp-wasm32": "0.34.5", "@img/sharp-win32-arm64": "0.34.5", "@img/sharp-win32-ia32": "0.34.5", "@img/sharp-win32-x64": "0.34.5" } }, "sha512-Ou9I5Ft9WNcCbXrU9cMgPBcCK8LiwLqcbywW3t4oDV37n1pzpuNLsYiAV8eODnjbtQlSDwZ2cUEeQz4E54Hltg=="],
 
+    "shebang-command": ["shebang-command@2.0.0", "", { "dependencies": { "shebang-regex": "^3.0.0" } }, "sha512-kHxr2zZpYtdmrN1qDjrrX/Z1rR1kG8Dx+gkpK1G4eXmvXswmcE1hTWBWYUzlraYw1/yZp6YuDY77YtvbN0dmDA=="],
+
+    "shebang-regex": ["shebang-regex@3.0.0", "", {}, "sha512-7++dFhtcx3353uBaq8DDR4NuxBetBzC7ZQOhmTQInHEd6bSrXdiEyzCvG07Z44UYdLShWUyXt5M/yhz8ekcb1A=="],
+
     "shell-quote": ["shell-quote@1.8.3", "", {}, "sha512-ObmnIF4hXNg1BqhnHmgbDETF8dLPCggZWBjkQfhZpbszZnYur5DUljTcCHii5LC3J5E0yeO/1LIMyH+UvHQgyw=="],
 
     "siginfo": ["siginfo@2.0.0", "", {}, "sha512-ybx0WO1/8bSBLEWXZvEd7gMW3Sn3JFlW3TvX1nREbDLRNQNaeNN8WK0meBwPdAaOI7TtRRRJn/Es1zhrrCHu7g=="],
 
+    "signal-exit": ["signal-exit@4.1.0", "", {}, "sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw=="],
+
+    "slash": ["slash@5.1.0", "", {}, "sha512-ZA6oR3T/pEyuqwMgAKT0/hAv8oAXckzbkmR0UkUosQ+Mc4RxGoJkRmwHgHufaenlyAgE1Mxgpdcrf75y6XcnDg=="],
+
+    "smob": ["smob@1.6.1", "", {}, "sha512-KAkBqZl3c2GvNgNhcoyJae1aKldDW0LO279wF9bk1PnluRTETKBq0WyzRXxEhoQLk56yHaOY4JCBEKDuJIET5g=="],
+
     "solid-js": ["solid-js@1.9.11", "", { "dependencies": { "csstype": "^3.1.0", "seroval": "~1.5.0", "seroval-plugins": "~1.5.0" } }, "sha512-WEJtcc5mkh/BnHA6Yrg4whlF8g6QwpmXXRg4P2ztPmcKeHHlH4+djYecBLhSpecZY2RRECXYUwIc/C2r3yzQ4Q=="],
 
     "source-map": ["source-map@0.7.6", "", {}, "sha512-i5uvt8C3ikiWeNZSVZNWcfZPItFQOsYTUAOkcUPGd8DqDy1uOUikjt5dG+uRlwyvR108Fb9DOd4GvXfT0N2/uQ=="],
@@ -1225,12 +1759,32 @@
 
     "stackback": ["stackback@0.0.2", "", {}, "sha512-1XMJE5fQo1jGH6Y/7ebnwPOBEkIEnT4QF32d5R1+VXdXveM0IBMJt8zfaxX1P3QhVwrYe+576+jkANtSS2mBbw=="],
 
+    "standard-as-callback": ["standard-as-callback@2.1.0", "", {}, "sha512-qoRRSyROncaz1z0mvYqIE4lCd9p2R90i6GxW3uZv5ucSu8tU7B5HXUP1gG8pVZsYNVaXjk8ClXHPttLyxAL48A=="],
+
     "standardwebhooks": ["standardwebhooks@1.0.0", "", { "dependencies": { "@stablelib/base64": "^1.0.0", "fast-sha256": "^1.3.0" } }, "sha512-BbHGOQK9olHPMvQNHWul6MYlrRTAOKn03rOe4A8O3CLWhNf4YHBqq2HJKKC+sfqpxiBY52pNeesD6jIiLDz8jg=="],
 
+    "statuses": ["statuses@2.0.2", "", {}, "sha512-DvEy55V3DB7uknRo+4iOGT5fP1slR8wQohVdknigZPMpMstaKJQWhwiYBACJE3Ul2pTnATihhBYnRhZQHGBiRw=="],
+
     "std-env": ["std-env@3.10.0", "", {}, "sha512-5GS12FdOZNliM5mAOxFRg7Ir0pWz8MdpYm6AY6VPkGpbA7ZzmbzNcBJQ0GPvvyWgcY7QAhCgf9Uy89I03faLkg=="],
 
+    "streamx": ["streamx@2.25.0", "", { "dependencies": { "events-universal": "^1.0.0", "fast-fifo": "^1.3.2", "text-decoder": "^1.1.0" } }, "sha512-0nQuG6jf1w+wddNEEXCF4nTg3LtufWINB5eFEN+5TNZW7KWJp6x87+JFL43vaAUPyCfH1wID+mNVyW6OHtFamg=="],
+
+    "string-width": ["string-width@7.2.0", "", { "dependencies": { "emoji-regex": "^10.3.0", "get-east-asian-width": "^1.0.0", "strip-ansi": "^7.1.0" } }, "sha512-tsaTIkKW9b4N+AEj+SVA+WhJzV7/zMhcSu78mLKWSk7cXMOSHsBKFWUs0fWwq8QyK3MgJBQRX6Gbi4kYbdvGkQ=="],
+
+    "string-width-cjs": ["string-width@4.2.3", "", { "dependencies": { "emoji-regex": "^8.0.0", "is-fullwidth-code-point": "^3.0.0", "strip-ansi": "^6.0.1" } }, "sha512-wKyQRQpjJ0sIp62ErSZdGsjMJWsap5oRNihHhu6G7JVO/9jIB6UyevL+tXuOqrng8j/cxKTWyWUwvSTriiZz/g=="],
+
+    "string_decoder": ["string_decoder@1.3.0", "", { "dependencies": { "safe-buffer": "~5.2.0" } }, "sha512-hkRX8U1WjJFd8LsDJ2yQ/wWWxaopEsABU1XfkM8A+j0+85JAGppt16cr1Whg6KIbb4okU6Mql6BOj+uup/wKeA=="],
+
     "stringify-entities": ["stringify-entities@4.0.4", "", { "dependencies": { "character-entities-html4": "^2.0.0", "character-entities-legacy": "^3.0.0" } }, "sha512-IwfBptatlO+QCJUo19AqvrPNqlVMpW9YEL2LIVY+Rpv2qsjCGxaDLNRgeGsQWJhfItebuJhsGSLjaBbNSQ+ieg=="],
 
+    "strip-ansi": ["strip-ansi@7.2.0", "", { "dependencies": { "ansi-regex": "^6.2.2" } }, "sha512-yDPMNjp4WyfYBkHnjIRLfca1i6KMyGCtsVgoKe/z1+6vukgaENdgGBZt+ZmKPc4gavvEZ5OgHfHdrazhgNyG7w=="],
+
+    "strip-ansi-cjs": ["strip-ansi@6.0.1", "", { "dependencies": { "ansi-regex": "^5.0.1" } }, "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A=="],
+
+    "strip-final-newline": ["strip-final-newline@3.0.0", "", {}, "sha512-dOESqjYr96iWYylGObzd39EuNTa5VJxyvVAEm5Jnh7KGo75V43Hk1odPQkNDyXNmUR6k+gEiDVXnjB8HJ3crXw=="],
+
+    "strip-indent": ["strip-indent@3.0.0", "", { "dependencies": { "min-indent": "^1.0.0" } }, "sha512-laJTa3Jb+VQpaC6DseHhF7dXVqHTfJPCRDaEbid/drOhgitgYku/letMUqOXFoWV0zIIUbjpdH2t+tYj4bQMRQ=="],
+
     "strip-literal": ["strip-literal@3.1.0", "", { "dependencies": { "js-tokens": "^9.0.1" } }, "sha512-8r3mkIM/2+PpjHoOtiAW8Rg3jJLHaV7xPwG+YRGrv6FP0wwk/toTpATxWYOW0BKdWwl82VT2tFYi5DlROa0Mxg=="],
 
     "style-to-js": ["style-to-js@1.1.21", "", { "dependencies": { "style-to-object": "1.0.14" } }, "sha512-RjQetxJrrUJLQPHbLku6U/ocGtzyjbJMP9lCNK7Ag0CNh690nSH8woqWH9u16nMjYBAok+i7JO1NP2pOy8IsPQ=="],
@@ -1239,26 +1793,44 @@
 
     "styled-jsx": ["styled-jsx@5.1.6", "", { "dependencies": { "client-only": "0.0.1" }, "peerDependencies": { "react": ">= 16.8.0 || 17.x.x || ^18.0.0-0 || ^19.0.0-0" } }, "sha512-qSVyDTeMotdvQYoHWLNGwRFJHC+i+ZvdBRYosOFgC+Wg1vx4frN2/RG/NA7SYqqvKNLf39P2LSRA2pu6n0XYZA=="],
 
-    "supports-color": ["supports-color@10.2.2", "", {}, "sha512-SS+jx45GF1QjgEXQx4NJZV9ImqmO2NPz5FNsIHrsDjh2YsHnawpan7SNQ1o8NuhrbHZy9AZhIoCUiCeaW/C80g=="],
+    "supports-color": ["supports-color@7.2.0", "", { "dependencies": { "has-flag": "^4.0.0" } }, "sha512-qpCAvRl9stuOHveKsn7HncJRvv501qIacKzQlO/+Lwxc9+0q2wLyv4Dfvt80/DPn2pqOBsJdDiogXGR9+OvwRw=="],
+
+    "supports-preserve-symlinks-flag": ["supports-preserve-symlinks-flag@1.0.0", "", {}, "sha512-ot0WnXS9fgdkgIcePe6RHNk1WA8+muPa6cSjeR3V8K27q9BB1rTE3R1p7Hv0z1ZyAc8s6Vvv8DIyWf681MAt0w=="],
 
     "swr": ["swr@2.3.4", "", { "dependencies": { "dequal": "^2.0.3", "use-sync-external-store": "^1.4.0" }, "peerDependencies": { "react": "^16.11.0 || ^17.0.0 || ^18.0.0 || ^19.0.0" } }, "sha512-bYd2lrhc+VarcpkgWclcUi92wYCpOgMws9Sd1hG1ntAu0NEy+14CbotuFjshBU2kt9rYj9TSmDcybpxpeTU1fg=="],
 
     "symbol-tree": ["symbol-tree@3.2.4", "", {}, "sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw=="],
 
+    "system-architecture": ["system-architecture@0.1.0", "", {}, "sha512-ulAk51I9UVUyJgxlv9M6lFot2WP3e7t8Kz9+IS6D4rVba1tR9kON+Ey69f+1R4Q8cd45Lod6a4IcJIxnzGc/zA=="],
+
+    "tagged-tag": ["tagged-tag@1.0.0", "", {}, "sha512-yEFYrVhod+hdNyx7g5Bnkkb0G6si8HJurOoOEgC8B/O0uXLHlaey/65KRv6cuWBNhBgHKAROVpc7QyYqE5gFng=="],
+
     "tailwind-merge": ["tailwind-merge@3.4.0", "", {}, "sha512-uSaO4gnW+b3Y2aWoWfFpX62vn2sR3skfhbjsEnaBI81WD1wBLlHZe5sWf0AqjksNdYTbGBEd0UasQMT3SNV15g=="],
 
     "tailwindcss": ["tailwindcss@4.1.18", "", {}, "sha512-4+Z+0yiYyEtUVCScyfHCxOYP06L5Ne+JiHhY2IjR2KWMIWhJOYZKLSGZaP5HkZ8+bY0cxfzwDE5uOmzFXyIwxw=="],
 
     "tapable": ["tapable@2.3.0", "", {}, "sha512-g9ljZiwki/LfxmQADO3dEY1CbpmXT5Hm2fJ+QaGKwSXUylMybePR7/67YW7jOrrvjEgL1Fmz5kzyAjWVWLlucg=="],
 
+    "tar": ["tar@7.5.13", "", { "dependencies": { "@isaacs/fs-minipass": "^4.0.0", "chownr": "^3.0.0", "minipass": "^7.1.2", "minizlib": "^3.1.0", "yallist": "^5.0.0" } }, "sha512-tOG/7GyXpFevhXVh8jOPJrmtRpOTsYqUIkVdVooZYJS/z8WhfQUX8RJILmeuJNinGAMSu1veBr4asSHFt5/hng=="],
+
+    "tar-stream": ["tar-stream@3.1.8", "", { "dependencies": { "b4a": "^1.6.4", "bare-fs": "^4.5.5", "fast-fifo": "^1.2.0", "streamx": "^2.15.0" } }, "sha512-U6QpVRyCGHva435KoNWy9PRoi2IFYCgtEhq9nmrPPpbRacPs9IH4aJ3gbrFC8dPcXvdSZ4XXfXT5Fshbp2MtlQ=="],
+
+    "teex": ["teex@1.0.1", "", { "dependencies": { "streamx": "^2.12.5" } }, "sha512-eYE6iEI62Ni1H8oIa7KlDU6uQBtqr4Eajni3wX7rpfXD8ysFx8z0+dri+KWEPWpBsxXfxu58x/0jvTVT1ekOSg=="],
+
     "terser": ["terser@5.46.0", "", { "dependencies": { "@jridgewell/source-map": "^0.3.3", "acorn": "^8.15.0", "commander": "^2.20.0", "source-map-support": "~0.5.20" }, "bin": { "terser": "bin/terser" } }, "sha512-jTwoImyr/QbOWFFso3YoU3ik0jBBDJ6JTOQiy/J2YxVJdZCc+5u7skhNwiOR3FQIygFqVUPHl7qbbxtjW2K3Qg=="],
 
+    "test-exclude": ["test-exclude@7.0.2", "", { "dependencies": { "@istanbuljs/schema": "^0.1.2", "glob": "^10.4.1", "minimatch": "^10.2.2" } }, "sha512-u9E6A+ZDYdp7a4WnarkXPZOx8Ilz46+kby6p1yZ8zsGTz9gYa6FIS7lj2oezzNKmtdyyJNNmmXDppga5GB7kSw=="],
+
+    "text-decoder": ["text-decoder@1.2.7", "", { "dependencies": { "b4a": "^1.6.4" } }, "sha512-vlLytXkeP4xvEq2otHeJfSQIRyWxo/oZGEbXrtEEF9Hnmrdly59sUbzZ/QgyWuLYHctCHxFF4tRQZNQ9k60ExQ=="],
+
     "tiny-invariant": ["tiny-invariant@1.3.3", "", {}, "sha512-+FbBPE1o9QAYvviau/qC5SE3caw21q3xkvWKBtja5vgqOWIHHJ3ioaq1VPfn/Szqctz2bU/oYeKd9/z5BL+PVg=="],
 
     "tiny-warning": ["tiny-warning@1.0.3", "", {}, "sha512-lBN9zLN/oAf68o3zNXYrdCt1kP8WsiGW8Oo2ka41b2IM5JL/S1CTyX1rW0mb/zSuJun0ZUrDxx4sqvYS2FWzPA=="],
 
     "tinybench": ["tinybench@2.9.0", "", {}, "sha512-0+DUvqWMValLmha6lr4kD8iAMK1HzV0/aKnCtWb9v9641TnP/MFb7Pc2bxoxQjTXAErryXVgUOfv2YqNllqGeg=="],
 
+    "tinyclip": ["tinyclip@0.1.12", "", {}, "sha512-Ae3OVUqifDw0wBriIBS7yVaW44Dp6eSHQcyq4Igc7eN2TJH/2YsicswaW+J/OuMvhpDPOKEgpAZCjkb4hpoyeA=="],
+
     "tinyexec": ["tinyexec@0.3.2", "", {}, "sha512-KQQR9yN7R5+OSwaK0XQoj22pwHoTlgYqmUscPYoknOoWCWfj/5/ABTMRi69FrKU5ffPVh5QcFikpWJI/P1ocHA=="],
 
     "tinyglobby": ["tinyglobby@0.2.15", "", { "dependencies": { "fdir": "^6.5.0", "picomatch": "^4.0.3" } }, "sha512-j2Zq4NyQYG5XMST4cbs02Ak8iJUdxRM0XI5QyxXuZOzKOINmWurp3smXu3y5wDcJrptwpSjgXHzIQxR0omXljQ=="],
@@ -1275,6 +1847,8 @@
 
     "to-regex-range": ["to-regex-range@5.0.1", "", { "dependencies": { "is-number": "^7.0.0" } }, "sha512-65P7iz6X5yEr1cwcgvQxbbIw7Uk3gOy5dIdtZ4rDveLqhrdJP+Li/Hx6tyK0NEb+2GCyneCMJiGqrADCSNk8sQ=="],
 
+    "toidentifier": ["toidentifier@1.0.1", "", {}, "sha512-o5sSPKEkg/DIQNmH43V0/uerLrpzVedkUh8tGNvaeXpfpuwjKenlSox/2O/BTlZUtEe+JG7s5YhEz608PlAHRA=="],
+
     "tough-cookie": ["tough-cookie@6.0.0", "", { "dependencies": { "tldts": "^7.0.5" } }, "sha512-kXuRi1mtaKMrsLUxz3sQYvVl37B0Ns6MzfrtV5DvJceE9bPyspOqk9xxv7XbZWcfLWbFmm997vl83qUWVJA64w=="],
 
     "tr46": ["tr46@6.0.0", "", { "dependencies": { "punycode": "^2.3.1" } }, "sha512-bLVMLPtstlZ4iMQHpFHTR7GAGj2jxi8Dg0s2h2MafAE4uSWF98FC/3MomU51iQAMf8/qDUbKWf5GxuvvVcXEhw=="],
@@ -1305,18 +1879,32 @@
 
     "tw-animate-css": ["tw-animate-css@1.4.0", "", {}, "sha512-7bziOlRqH0hJx80h/3mbicLW7o8qLsH5+RaLR2t+OHM3D0JlWGODQKQ4cxbK7WlvmUxpcj6Kgu6EKqjrGFe3QQ=="],
 
+    "type-fest": ["type-fest@4.41.0", "", {}, "sha512-TeTSQ6H5YHvpqVwBRcnLDCBnDOHWYu7IvGbHT6N8AOymcr9PJGjc1GTtiWZTYg0NCgYwvnYWEkVChQAr9bjfwA=="],
+
+    "typeid-js": ["typeid-js@1.2.0", "", { "dependencies": { "uuid": "^10.0.0" } }, "sha512-t76ZucAnvGC60ea/HjVsB0TSoB0cw9yjnfurUgtInXQWUI/VcrlZGpO23KN3iSe8yOGUgb1zr7W7uEzJ3hSljA=="],
+
     "typescript": ["typescript@5.9.2", "", { "bin": { "tsc": "bin/tsc", "tsserver": "bin/tsserver" } }, "sha512-CWBzXQrc/qOkhidw1OzBTQuYRbfyxDXJMVJ1XNwUHGROVmuaeiEm3OslpZ1RV96d7SKKjZKrSJu3+t/xlw3R9A=="],
 
     "ufo": ["ufo@1.6.3", "", {}, "sha512-yDJTmhydvl5lJzBmy/hyOAA0d+aqCBuwl818haVdYCRrWV84o7YyeVm4QlVHStqNrrJSTb6jKuFAVqAFsr+K3Q=="],
 
+    "ultrahtml": ["ultrahtml@1.6.0", "", {}, "sha512-R9fBn90VTJrqqLDwyMph+HGne8eqY1iPfYhPzZrvKpIfwkWZbcYlfpsb8B9dTvBfpy1/hqAD7Wi8EKfP9e8zdw=="],
+
+    "uncrypto": ["uncrypto@0.1.3", "", {}, "sha512-Ql87qFHB3s/De2ClA9e0gsnS6zXG27SkTiSJwjCc9MebbfapQfuPzumMIUMi38ezPZVNFcHI9sUIepeQfw8J8Q=="],
+
+    "unctx": ["unctx@2.5.0", "", { "dependencies": { "acorn": "^8.15.0", "estree-walker": "^3.0.3", "magic-string": "^0.30.21", "unplugin": "^2.3.11" } }, "sha512-p+Rz9x0R7X+CYDkT+Xg8/GhpcShTlU8n+cf9OtOEf7zEQsNcCZO1dPKNRDqvUTaq+P32PMMkxWHwfrxkqfqAYg=="],
+
     "undici": ["undici@7.24.4", "", {}, "sha512-BM/JzwwaRXxrLdElV2Uo6cTLEjhSb3WXboncJamZ15NgUURmvlXvxa6xkwIOILIjPNo9i8ku136ZvWV0Uly8+w=="],
 
     "undici-types": ["undici-types@6.21.0", "", {}, "sha512-iwDZqg0QAGrg9Rav5H4n0M64c3mkR59cJ6wQp+7C4nI0gsmExaedaYLNO44eT4AtBBwjbTiGPMlt2Md0T9H9JQ=="],
 
     "unenv": ["unenv@2.0.0-rc.24", "", { "dependencies": { "pathe": "^2.0.3" } }, "sha512-i7qRCmY42zmCwnYlh9H2SvLEypEFGye5iRmEMKjcGi7zk9UquigRjFtTLz0TYqr0ZGLZhaMHl/foy1bZR+Cwlw=="],
 
+    "unicorn-magic": ["unicorn-magic@0.4.0", "", {}, "sha512-wH590V9VNgYH9g3lH9wWjTrUoKsjLF6sGLjhR4sH1LWpLmCOH0Zf7PukhDA8BiS7KHe4oPNkcTHqYkj7SOGUOw=="],
+
     "unified": ["unified@11.0.5", "", { "dependencies": { "@types/unist": "^3.0.0", "bail": "^2.0.0", "devlop": "^1.0.0", "extend": "^3.0.0", "is-plain-obj": "^4.0.0", "trough": "^2.0.0", "vfile": "^6.0.0" } }, "sha512-xKvGhPWw3k84Qjh8bI3ZeJjqnyadK+GEFtazSfZv/rKeTkTjOJho6mFqh2SM96iIcZokxiOpg78GazTSg8+KHA=="],
 
+    "unimport": ["unimport@6.0.2", "", { "dependencies": { "acorn": "^8.16.0", "escape-string-regexp": "^5.0.0", "estree-walker": "^3.0.3", "local-pkg": "^1.1.2", "magic-string": "^0.30.21", "mlly": "^1.8.1", "pathe": "^2.0.3", "picomatch": "^4.0.3", "pkg-types": "^2.3.0", "scule": "^1.3.0", "strip-literal": "^3.1.0", "tinyglobby": "^0.2.15", "unplugin": "^3.0.0", "unplugin-utils": "^0.3.1" } }, "sha512-ZSOkrDw380w+KIPniY3smyXh2h7H9v2MNr9zejDuh239o5sdea44DRAYrv+rfUi2QGT186P2h0GPGKvy8avQ5g=="],
+
     "unist-util-find-after": ["unist-util-find-after@5.0.0", "", { "dependencies": { "@types/unist": "^3.0.0", "unist-util-is": "^6.0.0" } }, "sha512-amQa0Ep2m6hE2g72AugUItjbuM8X8cGQnFoHk0pGfrFeT9GZhzN5SW8nRsiGKK7Aif4CrACPENkA6P/Lw6fHGQ=="],
 
     "unist-util-is": ["unist-util-is@6.0.1", "", { "dependencies": { "@types/unist": "^3.0.0" } }, "sha512-LsiILbtBETkDz8I9p1dQ0uyRUWuaQzd/cuEeS1hoRSyW5E5XGmTzlwY1OrNzzakGowI9Dr/I8HVaw4hTtnxy8g=="],
@@ -1331,8 +1919,20 @@
 
     "unplugin": ["unplugin@2.3.11", "", { "dependencies": { "@jridgewell/remapping": "^2.3.5", "acorn": "^8.15.0", "picomatch": "^4.0.3", "webpack-virtual-modules": "^0.6.2" } }, "sha512-5uKD0nqiYVzlmCRs01Fhs2BdkEgBS3SAVP6ndrBsuK42iC2+JHyxM05Rm9G8+5mkmRtzMZGY8Ct5+mliZxU/Ww=="],
 
+    "unplugin-utils": ["unplugin-utils@0.3.1", "", { "dependencies": { "pathe": "^2.0.3", "picomatch": "^4.0.3" } }, "sha512-5lWVjgi6vuHhJ526bI4nlCOmkCIF3nnfXkCMDeMJrtdvxTs6ZFCM8oNufGTsDbKv/tJ/xj8RpvXjRuPBZJuJog=="],
+
+    "unstorage": ["unstorage@1.17.5", "", { "dependencies": { "anymatch": "^3.1.3", "chokidar": "^5.0.0", "destr": "^2.0.5", "h3": "^1.15.10", "lru-cache": "^11.2.7", "node-fetch-native": "^1.6.7", "ofetch": "^1.5.1", "ufo": "^1.6.3" }, "peerDependencies": { "@azure/app-configuration": "^1.8.0", "@azure/cosmos": "^4.2.0", "@azure/data-tables": "^13.3.0", "@azure/identity": "^4.6.0", "@azure/keyvault-secrets": "^4.9.0", "@azure/storage-blob": "^12.26.0", "@capacitor/preferences": "^6 || ^7 || ^8", "@deno/kv": ">=0.9.0", "@netlify/blobs": "^6.5.0 || ^7.0.0 || ^8.1.0 || ^9.0.0 || ^10.0.0", "@planetscale/database": "^1.19.0", "@upstash/redis": "^1.34.3", "@vercel/blob": ">=0.27.1", "@vercel/functions": "^2.2.12 || ^3.0.0", "@vercel/kv": "^1 || ^2 || ^3", "aws4fetch": "^1.0.20", "db0": ">=0.2.1", "idb-keyval": "^6.2.1", "ioredis": "^5.4.2", "uploadthing": "^7.4.4" }, "optionalPeers": ["@azure/app-configuration", "@azure/cosmos", "@azure/data-tables", "@azure/identity", "@azure/keyvault-secrets", "@azure/storage-blob", "@capacitor/preferences", "@deno/kv", "@netlify/blobs", "@planetscale/database", "@upstash/redis", "@vercel/blob", "@vercel/functions", "@vercel/kv", "aws4fetch", "db0", "idb-keyval", "ioredis", "uploadthing"] }, "sha512-0i3iqvRfx29hkNntHyQvJTpf5W9dQ9ZadSoRU8+xVlhVtT7jAX57fazYO9EHvcRCfBCyi5YRya7XCDOsbTgkPg=="],
+
+    "untun": ["untun@0.1.3", "", { "dependencies": { "citty": "^0.1.5", "consola": "^3.2.3", "pathe": "^1.1.1" }, "bin": { "untun": "bin/untun.mjs" } }, "sha512-4luGP9LMYszMRZwsvyUd9MrxgEGZdZuZgpVQHEEX0lCYFESasVRvZd0EYpCkOIbJKHMuv0LskpXc/8Un+MJzEQ=="],
+
+    "untyped": ["untyped@2.0.0", "", { "dependencies": { "citty": "^0.1.6", "defu": "^6.1.4", "jiti": "^2.4.2", "knitwork": "^1.2.0", "scule": "^1.3.0" }, "bin": { "untyped": "dist/cli.mjs" } }, "sha512-nwNCjxJTjNuLCgFr42fEak5OcLuB3ecca+9ksPFNvtfYSLpjf+iJqSIaSnIile6ZPbKYxI5k2AfXqeopGudK/g=="],
+
+    "unwasm": ["unwasm@0.5.3", "", { "dependencies": { "exsolve": "^1.0.8", "knitwork": "^1.3.0", "magic-string": "^0.30.21", "mlly": "^1.8.0", "pathe": "^2.0.3", "pkg-types": "^2.3.0" } }, "sha512-keBgTSfp3r6+s9ZcSma+0chwxQdmLbB5+dAD9vjtB21UTMYuKAxHXCU1K2CbCtnP09EaWeRvACnXk0EJtUx+hw=="],
+
     "update-browserslist-db": ["update-browserslist-db@1.2.3", "", { "dependencies": { "escalade": "^3.2.0", "picocolors": "^1.1.1" }, "peerDependencies": { "browserslist": ">= 4.21.0" }, "bin": { "update-browserslist-db": "cli.js" } }, "sha512-Js0m9cx+qOgDxo0eMiFGEueWztz+d4+M3rGlmKPT+T4IS/jP4ylw3Nwpu6cpTTP8R1MAC1kF4VbdLt3ARf209w=="],
 
+    "uqr": ["uqr@0.1.3", "", {}, "sha512-0rjE8iEJe4YmT9TOhwsZtqCMRLc5DXZUI2UEYUUg63ikBkqqE5EYWaI0etFe/5KUcmcYwLih2RND1kq+hrUJXA=="],
+
     "use-callback-ref": ["use-callback-ref@1.3.3", "", { "dependencies": { "tslib": "^2.0.0" }, "peerDependencies": { "@types/react": "*", "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0 || ^19.0.0-rc" }, "optionalPeers": ["@types/react"] }, "sha512-jQL3lRnocaFtu3V00JToYz/4QkNWswxijDaCVNZRiRTO3HQDLsdu1ZtmIUvV4yPp+rvWm5j0y0TG/S61cuijTg=="],
 
     "use-sidecar": ["use-sidecar@1.1.3", "", { "dependencies": { "detect-node-es": "^1.1.0", "tslib": "^2.0.0" }, "peerDependencies": { "@types/react": "*", "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0 || ^19.0.0-rc" }, "optionalPeers": ["@types/react"] }, "sha512-Fedw0aZvkhynoPYlA5WXrMCAMm+nSWdZt6lzJQ7Ok8S6Q+VsHmHpRWndVRJ8Be0ZbkfPc5LRYH+5XrzXcEeLRQ=="],
@@ -1341,10 +1941,14 @@
 
     "util-deprecate": ["util-deprecate@1.0.2", "", {}, "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw=="],
 
+    "uuid": ["uuid@10.0.0", "", { "bin": { "uuid": "dist/bin/uuid" } }, "sha512-8XkAphELsDnEGrDxUOHB3RGvXz6TeuYSGEZBOjtTtPm2lwhGBjLgOzLHB63IUWfBpNucQjND6d3AOudO+H3RWQ=="],
+
     "vfile": ["vfile@6.0.3", "", { "dependencies": { "@types/unist": "^3.0.0", "vfile-message": "^4.0.0" } }, "sha512-KzIbH/9tXat2u30jf+smMwFCsno4wHVdNmzFyL+T/L3UGqqk6JKfVqOFOZEpZSHADH1k40ab6NUIXZq422ov3Q=="],
 
     "vfile-message": ["vfile-message@4.0.3", "", { "dependencies": { "@types/unist": "^3.0.0", "unist-util-stringify-position": "^4.0.0" } }, "sha512-QTHzsGd1EhbZs4AsQ20JX1rC3cOlt/IWJruk893DfLRr57lcnOeMaWG4K0JrRta4mIJZKth2Au3mM3u03/JWKw=="],
 
+    "vinxi": ["vinxi@0.5.11", "", { "dependencies": { "@babel/core": "^7.22.11", "@babel/plugin-syntax-jsx": "^7.22.5", "@babel/plugin-syntax-typescript": "^7.22.5", "@types/micromatch": "^4.0.2", "@vinxi/listhen": "^1.5.6", "boxen": "^8.0.1", "chokidar": "^4.0.3", "citty": "^0.1.6", "consola": "^3.4.2", "crossws": "^0.3.4", "dax-sh": "^0.43.0", "defu": "^6.1.4", "es-module-lexer": "^1.7.0", "esbuild": "^0.25.3", "get-port-please": "^3.1.2", "h3": "1.15.3", "hookable": "^5.5.3", "http-proxy": "^1.18.1", "micromatch": "^4.0.8", "nitropack": "^2.11.10", "node-fetch-native": "^1.6.6", "path-to-regexp": "^6.2.1", "pathe": "^1.1.1", "radix3": "^1.1.2", "resolve": "^1.22.10", "serve-placeholder": "^2.0.1", "serve-static": "^1.15.0", "tinyglobby": "^0.2.14", "ufo": "^1.6.1", "unctx": "^2.4.1", "unenv": "^1.10.0", "unstorage": "^1.16.0", "vite": "^6.4.1", "zod": "^4.0.0" }, "bin": { "vinxi": "bin/cli.mjs" } }, "sha512-82Qm+EG/b2PRFBvXBbz1lgWBGcd9totIL6SJhnrZYfakjloTVG9+5l6gfO6dbCCtztm5pqWFzLY0qpZ3H3ww/w=="],
+
     "vite": ["vite@7.3.1", "", { "dependencies": { "esbuild": "^0.27.0", "fdir": "^6.5.0", "picomatch": "^4.0.3", "postcss": "^8.5.6", "rollup": "^4.43.0", "tinyglobby": "^0.2.15" }, "optionalDependencies": { "fsevents": "~2.3.3" }, "peerDependencies": { "@types/node": "^20.19.0 || >=22.12.0", "jiti": ">=1.21.0", "less": "^4.0.0", "lightningcss": "^1.21.0", "sass": "^1.70.0", "sass-embedded": "^1.70.0", "stylus": ">=0.54.8", "sugarss": "^5.0.0", "terser": "^5.16.0", "tsx": "^4.8.1", "yaml": "^2.4.2" }, "optionalPeers": ["@types/node", "jiti", "less", "lightningcss", "sass", "sass-embedded", "stylus", "sugarss", "terser", "tsx", "yaml"], "bin": { "vite": "bin/vite.js" } }, "sha512-w+N7Hifpc3gRjZ63vYBXA56dvvRlNWRczTdmCBBa+CotUzAPf5b7YMdMR/8CQoeYE5LX3W4wj6RYTgonm1b9DA=="],
 
     "vite-node": ["vite-node@3.2.4", "", { "dependencies": { "cac": "^6.7.14", "debug": "^4.4.1", "es-module-lexer": "^1.7.0", "pathe": "^2.0.3", "vite": "^5.0.0 || ^6.0.0 || ^7.0.0-0" }, "bin": { "vite-node": "vite-node.mjs" } }, "sha512-EbKSKh+bh1E1IFxeO0pg1n4dvoOTt0UDiXMd/qn++r98+jPO1xtJilvXldeuQ8giIB5IkpjCgMleHMNEsGH6pg=="],
@@ -1367,36 +1971,72 @@
 
     "whatwg-url": ["whatwg-url@15.1.0", "", { "dependencies": { "tr46": "^6.0.0", "webidl-conversions": "^8.0.0" } }, "sha512-2ytDk0kiEj/yu90JOAp44PVPUkO9+jVhyf+SybKlRHSDlvOOZhdPIrr7xTH64l4WixO2cP+wQIcgujkGBPPz6g=="],
 
+    "which": ["which@4.0.0", "", { "dependencies": { "isexe": "^3.1.1" }, "bin": { "node-which": "bin/which.js" } }, "sha512-GlaYyEb07DPxYCKhKzplCWBJtvxZcZMrL+4UkrTSJHHPyZU4mYYTv3qaOe77H7EODLSSopAUFAc6W8U4yqvscg=="],
+
     "why-is-node-running": ["why-is-node-running@2.3.0", "", { "dependencies": { "siginfo": "^2.0.0", "stackback": "0.0.2" }, "bin": { "why-is-node-running": "cli.js" } }, "sha512-hUrmaWBdVDcxvYqnyh09zunKzROWjbZTiNy8dBEjkS7ehEDQibXJ7XvlmtbwuTclUiIyN+CyXQD4Vmko8fNm8w=="],
 
+    "widest-line": ["widest-line@5.0.0", "", { "dependencies": { "string-width": "^7.0.0" } }, "sha512-c9bZp7b5YtRj2wOe6dlj32MK+Bx/M/d+9VB2SHM1OtsUHR0aV0tdP6DWh/iMt0kWi1t5g1Iudu6hQRNd1A4PVA=="],
+
     "workerd": ["workerd@1.20260329.1", "", { "optionalDependencies": { "@cloudflare/workerd-darwin-64": "1.20260329.1", "@cloudflare/workerd-darwin-arm64": "1.20260329.1", "@cloudflare/workerd-linux-64": "1.20260329.1", "@cloudflare/workerd-linux-arm64": "1.20260329.1", "@cloudflare/workerd-windows-64": "1.20260329.1" }, "bin": { "workerd": "bin/workerd" } }, "sha512-+ifMv3uBuD33ee7pan5n8+sgVxm2u5HnbgfXzHKwMNTKw86znqBJSnJoBqtP88+2T5U2Lu11xXUt+khPYioXwQ=="],
 
     "wrangler": ["wrangler@4.79.0", "", { "dependencies": { "@cloudflare/kv-asset-handler": "0.4.2", "@cloudflare/unenv-preset": "2.16.0", "blake3-wasm": "2.1.5", "esbuild": "0.27.3", "miniflare": "4.20260329.0", "path-to-regexp": "6.3.0", "unenv": "2.0.0-rc.24", "workerd": "1.20260329.1" }, "optionalDependencies": { "fsevents": "~2.3.2" }, "peerDependencies": { "@cloudflare/workers-types": "^4.20260329.1" }, "optionalPeers": ["@cloudflare/workers-types"], "bin": { "wrangler": "bin/wrangler.js", "wrangler2": "bin/wrangler.js" } }, "sha512-NMinIdB1pXIqdk+NLw4+RjzB7K5z4+lWMxhTxFTfZomwJu3Pm6N+kZ+a66D3nI7w0oCjsdv/umrZVmSHCBp2cg=="],
 
+    "wrap-ansi": ["wrap-ansi@9.0.2", "", { "dependencies": { "ansi-styles": "^6.2.1", "string-width": "^7.0.0", "strip-ansi": "^7.1.0" } }, "sha512-42AtmgqjV+X1VpdOfyTGOYRi0/zsoLqtXQckTmqTeybT+BDIbM/Guxo7x3pE2vtpr1ok6xRqM9OpBe+Jyoqyww=="],
+
+    "wrap-ansi-cjs": ["wrap-ansi@7.0.0", "", { "dependencies": { "ansi-styles": "^4.0.0", "string-width": "^4.1.0", "strip-ansi": "^6.0.0" } }, "sha512-YVGIj2kamLSTxw6NsZjoBxfSwsn0ycdesmc4p+Q21c5zPuZ1pl+NfxVdxPtdHvmNVOQ6XSYG4AUtyt/Fi7D16Q=="],
+
     "ws": ["ws@8.18.0", "", { "peerDependencies": { "bufferutil": "^4.0.1", "utf-8-validate": ">=5.0.2" }, "optionalPeers": ["bufferutil", "utf-8-validate"] }, "sha512-8VbfWfHLbbwu3+N6OKsOMpBdT4kXPDDB9cJk2bJ6mh9ucxdlnNvH1e+roYkKmN9Nxw2yjz7VzeO9oOz2zJ04Pw=="],
 
+    "wsl-utils": ["wsl-utils@0.3.1", "", { "dependencies": { "is-wsl": "^3.1.0", "powershell-utils": "^0.1.0" } }, "sha512-g/eziiSUNBSsdDJtCLB8bdYEUMj4jR7AGeUo96p/3dTafgjHhpF4RiCFPiRILwjQoDXx5MqkBr4fwWtR3Ky4Wg=="],
+
     "xml-name-validator": ["xml-name-validator@5.0.0", "", {}, "sha512-EvGK8EJ3DhaHfbRlETOWAS5pO9MZITeauHKJyb8wyajUfQUenkIg2MvLDTZ4T/TgIcm3HU0TFBgWWboAZ30UHg=="],
 
     "xmlbuilder2": ["xmlbuilder2@4.0.3", "", { "dependencies": { "@oozcitak/dom": "^2.0.2", "@oozcitak/infra": "^2.0.2", "@oozcitak/util": "^10.0.0", "js-yaml": "^4.1.1" } }, "sha512-bx8Q1STctnNaaDymWnkfQLKofs0mGNN7rLLapJlGuV3VlvegD7Ls4ggMjE3aUSWItCCzU0PEv45lI87iSigiCA=="],
 
     "xmlchars": ["xmlchars@2.2.0", "", {}, "sha512-JZnDKK8B0RCDw84FNdDAIpZK+JuJw+s7Lz8nksI7SIuU3UXJJslUthsi+uWBUYOwPFwW7W7PRLRfUKpxjtjFCw=="],
 
+    "y18n": ["y18n@5.0.8", "", {}, "sha512-0pfFzegeDWJHJIAmTLRP2DwHjdF5s7jo9tuztdQxAhINCdvS+3nGINqPd00AphqJR/0LhANUS6/+7SCb98YOfA=="],
+
     "yallist": ["yallist@3.1.1", "", {}, "sha512-a4UGQaWPH59mOXUYnAG2ewncQS4i4F43Tv3JoAM+s2VDAmS9NsK8GpDMLrCHPksFT7h3K6TOoUNn2pb7RoXx4g=="],
 
+    "yargs": ["yargs@18.0.0", "", { "dependencies": { "cliui": "^9.0.1", "escalade": "^3.1.1", "get-caller-file": "^2.0.5", "string-width": "^7.2.0", "y18n": "^5.0.5", "yargs-parser": "^22.0.0" } }, "sha512-4UEqdc2RYGHZc7Doyqkrqiln3p9X2DZVxaGbwhn2pi7MrRagKaOcIKe8L3OxYcbhXLgLFUS3zAYuQjKBQgmuNg=="],
+
+    "yargs-parser": ["yargs-parser@22.0.0", "", {}, "sha512-rwu/ClNdSMpkSrUb+d6BRsSkLUq1fmfsY6TOpYzTwvwkg1/NRG85KBy3kq++A8LKQwX6lsu+aWad+2khvuXrqw=="],
+
     "youch": ["youch@4.1.0-beta.10", "", { "dependencies": { "@poppinss/colors": "^4.1.5", "@poppinss/dumper": "^0.6.4", "@speed-highlight/core": "^1.2.7", "cookie": "^1.0.2", "youch-core": "^0.3.3" } }, "sha512-rLfVLB4FgQneDr0dv1oddCVZmKjcJ6yX6mS4pU82Mq/Dt9a3cLZQ62pDBL4AUO+uVrCvtWz3ZFUL2HFAFJ/BXQ=="],
 
     "youch-core": ["youch-core@0.3.3", "", { "dependencies": { "@poppinss/exception": "^1.2.2", "error-stack-parser-es": "^1.0.5" } }, "sha512-ho7XuGjLaJ2hWHoK8yFnsUGy2Y5uDpqSTq1FkHLK4/oqKtyUU1AFbOOxY4IpC9f0fTLjwYbslUz0Po5BpD1wrA=="],
 
+    "zip-stream": ["zip-stream@6.0.1", "", { "dependencies": { "archiver-utils": "^5.0.0", "compress-commons": "^6.0.2", "readable-stream": "^4.0.0" } }, "sha512-zK7YHHz4ZXpW89AHXUPbQVGKI7uvkd3hzusTdotCg1UxyaVtg0zFJSTfW/Dq5f7OBBVnq6cZIaC8Ti4hb6dtCA=="],
+
     "zod": ["zod@4.3.6", "", {}, "sha512-rftlrkhHZOcjDwkGlnUtZZkvaPHCsDATp4pGpuOOMDaTdDDXF91wuVDJoWoPsKX/3YPQ5fHuF3STjcYyKr+Qhg=="],
 
     "zwitch": ["zwitch@2.0.4", "", {}, "sha512-bXE4cR/kVZhKZX/RjPEflHaKVhUVl85noU3v6b8apfQEc1x4A+zBxjZ4lN8LqGd6WZ3dl98pY4o717VFmoPp+A=="],
 
+    "@babel/code-frame/js-tokens": ["js-tokens@4.0.0", "", {}, "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ=="],
+
     "@babel/helper-compilation-targets/lru-cache": ["lru-cache@5.1.1", "", { "dependencies": { "yallist": "^3.0.2" } }, "sha512-KpNARQA3Iwv+jTA0utUVVbrh+Jlrr1Fv0e56GGzAFOXN7dk/FviaDW8LHmK52DlcH4WP2n6gI8vN1aesBFgo9w=="],
 
     "@clerk/shared/csstype": ["csstype@3.1.3", "", {}, "sha512-M1uQkMl8rQK/szD0LNhtqxIPLpimGm8sOBwU7lLnCpSbTyY3yeU1Vc7l4KT5zT4s/yOxHH5O7tIuuLOCnLADRw=="],
 
     "@cspotcode/source-map-support/@jridgewell/trace-mapping": ["@jridgewell/trace-mapping@0.3.9", "", { "dependencies": { "@jridgewell/resolve-uri": "^3.0.3", "@jridgewell/sourcemap-codec": "^1.4.10" } }, "sha512-3Belt6tdc8bPgAtbcmdtNJlirVoTmEb5e2gC94PnkwEW9jI6CAHUeoG85tjWP5WquqfavoMtMwiG4P926ZKKuQ=="],
 
+    "@isaacs/cliui/string-width": ["string-width@5.1.2", "", { "dependencies": { "eastasianwidth": "^0.2.0", "emoji-regex": "^9.2.2", "strip-ansi": "^7.0.1" } }, "sha512-HnLOCR3vjcY8beoNLtcjZ5/nxn2afmME6lhrDrebokqMap+XbeW8n9TXpPDOqdGK5qcI3oT0GKTW6wC7EMiVqA=="],
+
+    "@isaacs/cliui/wrap-ansi": ["wrap-ansi@8.1.0", "", { "dependencies": { "ansi-styles": "^6.1.0", "string-width": "^5.0.1", "strip-ansi": "^7.0.1" } }, "sha512-si7QWI6zUMq56bESFvagtmzMdGOtoxfR+Sez11Mobfc7tm+VkUckk9bW2UeffTGVUbOksxmSw0AA2gs8g71NCQ=="],
+
+    "@mapbox/node-pre-gyp/semver": ["semver@7.7.4", "", { "bin": { "semver": "bin/semver.js" } }, "sha512-vFKC2IEtQnVhpT78h1Yp8wzwrf8CM+MzKMHGJZfBtzhZNycRFnXsHk6E5TxIkkMsgNS7mdX3AGB7x2QM2di4lA=="],
+
+    "@parcel/watcher-wasm/napi-wasm": ["napi-wasm@1.1.3", "", { "bundled": true }, "sha512-h/4nMGsHjZDCYmQVNODIrYACVJ+I9KItbG+0si6W/jSjdA9JbWDoU4LLeMXVcEQGHjttI2tuXqDrbGF7qkUHHg=="],
+
+    "@poppinss/dumper/supports-color": ["supports-color@10.2.2", "", {}, "sha512-SS+jx45GF1QjgEXQx4NJZV9ImqmO2NPz5FNsIHrsDjh2YsHnawpan7SNQ1o8NuhrbHZy9AZhIoCUiCeaW/C80g=="],
+
+    "@rollup/plugin-commonjs/estree-walker": ["estree-walker@2.0.2", "", {}, "sha512-Rfkk/Mp/DL7JVje3u18FxFujQlTNR2q6QfMSMB7AvCBx91NGj/ba3kCfza0f6dVDbw7YlRf/nDrn7pQrCCyQ/w=="],
+
+    "@rollup/plugin-inject/estree-walker": ["estree-walker@2.0.2", "", {}, "sha512-Rfkk/Mp/DL7JVje3u18FxFujQlTNR2q6QfMSMB7AvCBx91NGj/ba3kCfza0f6dVDbw7YlRf/nDrn7pQrCCyQ/w=="],
+
+    "@rollup/pluginutils/estree-walker": ["estree-walker@2.0.2", "", {}, "sha512-Rfkk/Mp/DL7JVje3u18FxFujQlTNR2q6QfMSMB7AvCBx91NGj/ba3kCfza0f6dVDbw7YlRf/nDrn7pQrCCyQ/w=="],
+
     "@tailwindcss/oxide-wasm32-wasi/@emnapi/core": ["@emnapi/core@1.8.1", "", { "dependencies": { "@emnapi/wasi-threads": "1.1.0", "tslib": "^2.4.0" }, "bundled": true }, "sha512-AvT9QFpxK0Zd8J0jopedNm+w/2fIzvtPKPjqyw9jwvBaReTTqPBk9Hixaz7KbjimP+QNz605/XnjFcDAL2pqBg=="],
 
     "@tailwindcss/oxide-wasm32-wasi/@emnapi/runtime": ["@emnapi/runtime@1.8.1", "", { "dependencies": { "tslib": "^2.4.0" }, "bundled": true }, "sha512-mehfKSMWjjNol8659Z8KxEMrdSJDDot5SXMq00dM8BN4o+CLNXQ0xH2V7EchNHV4RmbZLmmPdEaXZc5H2FXmDg=="],
@@ -1423,42 +2063,382 @@
 
     "@tanstack/start-plugin-core/zod": ["zod@3.25.76", "", {}, "sha512-gzUt/qt81nXsFGKIFcC3YnfEAx5NkunCfnDlvuBSSFS02bcXu4Lmea0AFIUwbLWxWPx3d9p8S5QoaujKcNQxcQ=="],
 
+    "@testing-library/jest-dom/dom-accessibility-api": ["dom-accessibility-api@0.6.3", "", {}, "sha512-7ZgogeTnjuHbo+ct10G9Ffp0mif17idi0IyWNVA/wcwcm7NPOD/WEHVP3n7n3MhXqxoIYm8d6MuZohYWIZ4T3w=="],
+
+    "@vercel/nft/acorn": ["acorn@8.16.0", "", { "bin": { "acorn": "bin/acorn" } }, "sha512-UVJyE9MttOsBQIDKw1skb9nAwQuR5wuGD3+82K6JgJlm/Y+KI92oNsMNGZCYdDsVtRHSak0pcV5Dno5+4jh9sw=="],
+
+    "@vercel/nft/estree-walker": ["estree-walker@2.0.2", "", {}, "sha512-Rfkk/Mp/DL7JVje3u18FxFujQlTNR2q6QfMSMB7AvCBx91NGj/ba3kCfza0f6dVDbw7YlRf/nDrn7pQrCCyQ/w=="],
+
+    "@vercel/nft/glob": ["glob@13.0.6", "", { "dependencies": { "minimatch": "^10.2.2", "minipass": "^7.1.3", "path-scurry": "^2.0.2" } }, "sha512-Wjlyrolmm8uDpm/ogGyXZXb1Z+Ca2B8NbJwqBVg0axK9GbBeoS7yGV6vjXnYdGm6X53iehEuxxbyiKp8QmN4Vw=="],
+
+    "@vinxi/listhen/h3": ["h3@1.15.11", "", { "dependencies": { "cookie-es": "^1.2.3", "crossws": "^0.3.5", "defu": "^6.1.6", "destr": "^2.0.5", "iron-webcrypto": "^1.2.1", "node-mock-http": "^1.0.4", "radix3": "^1.1.2", "ufo": "^1.6.3", "uncrypto": "^0.1.3" } }, "sha512-L3THSe2MPeBwgIZVSH5zLdBBU90TOxarvhK9d04IDY2AmVS8j2Jz2LIWtwsGOU3lu2I5jCN7FNvVfY2+XyF+mg=="],
+
+    "@vinxi/listhen/jiti": ["jiti@1.21.7", "", { "bin": { "jiti": "bin/jiti.js" } }, "sha512-/imKNG4EbWNrVjoNC/1H5/9GFy+tqjGBHCaSsN+P2RnPqjsLmv6UD3Ej+Kj8nBWaRAwyk7kK5ZUc+OEatnTR3A=="],
+
+    "@vinxi/listhen/pathe": ["pathe@1.1.2", "", {}, "sha512-whLdWMYL2TwI08hn8/ZqAbrVemu0LNaNNJZX73O6qaIdCTfXutsLhMkjdENX0qhsQ9uIimo4/aQOmXkoon2nDQ=="],
+
+    "ansi-align/string-width": ["string-width@4.2.3", "", { "dependencies": { "emoji-regex": "^8.0.0", "is-fullwidth-code-point": "^3.0.0", "strip-ansi": "^6.0.1" } }, "sha512-wKyQRQpjJ0sIp62ErSZdGsjMJWsap5oRNihHhu6G7JVO/9jIB6UyevL+tXuOqrng8j/cxKTWyWUwvSTriiZz/g=="],
+
     "anymatch/picomatch": ["picomatch@2.3.1", "", {}, "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA=="],
 
+    "archiver-utils/is-stream": ["is-stream@2.0.1", "", {}, "sha512-hFoiJiTl63nn+kstHGBtewWSKnQLpyb155KHheA1l39uvtO9nWIop1p3udqPcUd/xbF1VLMO4n7OI6p7RbngDg=="],
+
+    "c12/chokidar": ["chokidar@5.0.0", "", { "dependencies": { "readdirp": "^5.0.0" } }, "sha512-TQMmc3w+5AxjpL8iIiwebF73dRDF4fBIieAqGn9RGCWaEVwQ6Fb2cGe31Yns0RRIzii5goJ1Y7xbMwo1TxMplw=="],
+
+    "c12/dotenv": ["dotenv@17.4.1", "", {}, "sha512-k8DaKGP6r1G30Lx8V4+pCsLzKr8vLmV2paqEj1Y55GdAgJuIqpRp5FfajGF8KtwMxCz9qJc6wUIJnm053d/WCw=="],
+
     "cheerio/parse5": ["parse5@7.3.0", "", { "dependencies": { "entities": "^6.0.0" } }, "sha512-IInvU7fabl34qmi9gY8XOVxhYyMyuH2xUNpb2q8/Y+7552KlejkRvqvD19nMoUW/uQGGbqNpA6Tufu5FL5BZgw=="],
 
     "cheerio/undici": ["undici@7.21.0", "", {}, "sha512-Hn2tCQpoDt1wv23a68Ctc8Cr/BHpUSfaPYrkajTXOS9IKpxVRx/X5m1K2YkbK2ipgZgxXSgsUinl3x+2YdSSfg=="],
 
+    "compress-commons/is-stream": ["is-stream@2.0.1", "", {}, "sha512-hFoiJiTl63nn+kstHGBtewWSKnQLpyb155KHheA1l39uvtO9nWIop1p3udqPcUd/xbF1VLMO4n7OI6p7RbngDg=="],
+
+    "cross-spawn/which": ["which@2.0.2", "", { "dependencies": { "isexe": "^2.0.0" }, "bin": { "node-which": "./bin/node-which" } }, "sha512-BLI3Tl1TW3Pvl70l3yq3Y64i+awpwXqsGBYWkkqMtnbXgrMD+yj7rhW0kuEDxzJaYXGjEW5ogapKNMEKNMjibA=="],
+
     "data-urls/whatwg-mimetype": ["whatwg-mimetype@5.0.0", "", {}, "sha512-sXcNcHOC51uPGF0P/D4NVtrkjSU2fNsm9iog4ZvZJsL3rjoDAzXZhkm2MWt1y+PUdggKAYVoMAIYcs78wJ51Cw=="],
 
+    "dax-sh/undici-types": ["undici-types@5.28.4", "", {}, "sha512-3OeMF5Lyowe8VW0skf5qaIE7Or3yS9LS7fvMUI0gg4YxpIBVg0L8BxCmROw2CcYhSkpR68Epz7CGc8MPj94Uww=="],
+
     "dom-serializer/entities": ["entities@4.5.0", "", {}, "sha512-V0hjH4dGPh9Ao5p0MoRY6BVqtwCjhz6vI5LT8AJ55H+4g9/4vbHx1I54fS0XuclLhDHArPQCiMjDxjaL8fPxhw=="],
 
+    "dot-prop/type-fest": ["type-fest@5.5.0", "", { "dependencies": { "tagged-tag": "^1.0.0" } }, "sha512-PlBfpQwiUvGViBNX84Yxwjsdhd1TUlXr6zjX7eoirtCPIr08NAmxwa+fcYBTeRQxHo9YC9wwF3m9i700sHma8g=="],
+
+    "glob/minimatch": ["minimatch@9.0.9", "", { "dependencies": { "brace-expansion": "^2.0.2" } }, "sha512-OBwBN9AL4dqmETlpS2zasx+vTeWclWzkblfZk7KTA5j3jeOONz/tRCnZomUyvNg83wL5Zv9Ss6HMJXAgL8R2Yg=="],
+
+    "h3/cookie-es": ["cookie-es@1.2.3", "", {}, "sha512-lXVyvUvrNXblMqzIRrxHb57UUVmqsSWlxqt3XIjCkUP0wDAf6uicO6KMbEgYrMNtEvWgWHwe42CKxPu9MYAnWw=="],
+
+    "h3-v2/crossws": ["crossws@0.4.4", "", { "peerDependencies": { "srvx": ">=0.7.1" }, "optionalPeers": ["srvx"] }, "sha512-w6c4OdpRNnudVmcgr7brb/+/HmYjMQvYToO/oTrprTwxRUiom3LYWU1PMWuD006okbUWpII1Ea9/+kwpUfmyRg=="],
+
     "htmlparser2/entities": ["entities@7.0.1", "", {}, "sha512-TWrgLOFUQTH994YUyl1yT4uyavY5nNB5muff+RtWaqNVCAK408b5ZnnbNAUEWLTCpum9w6arT70i1XdQ4UeOPA=="],
 
     "jsdom/ws": ["ws@8.19.0", "", { "peerDependencies": { "bufferutil": "^4.0.1", "utf-8-validate": ">=5.0.2" }, "optionalPeers": ["bufferutil", "utf-8-validate"] }, "sha512-blAT2mjOEIi0ZzruJfIhb3nps74PRWTCz1IjglWEEpQl5XS/UNama6u2/rjFkDDouqr4L67ry+1aGIALViWjDg=="],
 
+    "lazystream/readable-stream": ["readable-stream@2.3.8", "", { "dependencies": { "core-util-is": "~1.0.0", "inherits": "~2.0.3", "isarray": "~1.0.0", "process-nextick-args": "~2.0.0", "safe-buffer": "~5.1.1", "string_decoder": "~1.1.1", "util-deprecate": "~1.0.1" } }, "sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA=="],
+
+    "listhen/@parcel/watcher-wasm": ["@parcel/watcher-wasm@2.5.6", "", { "dependencies": { "is-glob": "^4.0.3", "napi-wasm": "^1.1.0", "picomatch": "^4.0.3" } }, "sha512-byAiBZ1t3tXQvc8dMD/eoyE7lTXYorhn+6uVW5AC+JGI1KtJC/LvDche5cfUE+qiefH+Ybq0bUCJU0aB1cSHUA=="],
+
+    "listhen/citty": ["citty@0.2.2", "", {}, "sha512-+6vJA3L98yv+IdfKGZHBNiGW5KHn22e/JwID0Strsz8h4S/csAu/OuICwxrg44k5MRiZHWIo8XXuJgQTriRP4w=="],
+
+    "listhen/crossws": ["crossws@0.4.4", "", { "peerDependencies": { "srvx": ">=0.7.1" }, "optionalPeers": ["srvx"] }, "sha512-w6c4OdpRNnudVmcgr7brb/+/HmYjMQvYToO/oTrprTwxRUiom3LYWU1PMWuD006okbUWpII1Ea9/+kwpUfmyRg=="],
+
+    "listhen/h3": ["h3@1.15.11", "", { "dependencies": { "cookie-es": "^1.2.3", "crossws": "^0.3.5", "defu": "^6.1.6", "destr": "^2.0.5", "iron-webcrypto": "^1.2.1", "node-mock-http": "^1.0.4", "radix3": "^1.1.2", "ufo": "^1.6.3", "uncrypto": "^0.1.3" } }, "sha512-L3THSe2MPeBwgIZVSH5zLdBBU90TOxarvhK9d04IDY2AmVS8j2Jz2LIWtwsGOU3lu2I5jCN7FNvVfY2+XyF+mg=="],
+
+    "listhen/std-env": ["std-env@4.0.0", "", {}, "sha512-zUMPtQ/HBY3/50VbpkupYHbRroTRZJPRLvreamgErJVys0ceuzMkD44J/QjqhHjOzK42GQ3QZIeFG1OYfOtKqQ=="],
+
+    "make-dir/semver": ["semver@7.7.4", "", { "bin": { "semver": "bin/semver.js" } }, "sha512-vFKC2IEtQnVhpT78h1Yp8wzwrf8CM+MzKMHGJZfBtzhZNycRFnXsHk6E5TxIkkMsgNS7mdX3AGB7x2QM2di4lA=="],
+
+    "micromatch/picomatch": ["picomatch@2.3.1", "", {}, "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA=="],
+
+    "mlly/acorn": ["acorn@8.16.0", "", { "bin": { "acorn": "bin/acorn" } }, "sha512-UVJyE9MttOsBQIDKw1skb9nAwQuR5wuGD3+82K6JgJlm/Y+KI92oNsMNGZCYdDsVtRHSak0pcV5Dno5+4jh9sw=="],
+
+    "mlly/pkg-types": ["pkg-types@1.3.1", "", { "dependencies": { "confbox": "^0.1.8", "mlly": "^1.7.4", "pathe": "^2.0.1" } }, "sha512-/Jm5M4RvtBFVkKWRu2BLUTNP8/M2a+UwuAX+ae4770q1qVGtfjG+WTCupoZixokjmHiry8uI+dlY8KXYV5HVVQ=="],
+
     "next/postcss": ["postcss@8.4.31", "", { "dependencies": { "nanoid": "^3.3.6", "picocolors": "^1.0.0", "source-map-js": "^1.0.2" } }, "sha512-PS08Iboia9mts/2ygV3eLpY5ghnUcfLV/EXTOW1E2qYxJKGGBUtNjN76FYHnMs36RmARn41bC0AZmn+rR0OVpQ=="],
 
+    "nitropack/chokidar": ["chokidar@5.0.0", "", { "dependencies": { "readdirp": "^5.0.0" } }, "sha512-TQMmc3w+5AxjpL8iIiwebF73dRDF4fBIieAqGn9RGCWaEVwQ6Fb2cGe31Yns0RRIzii5goJ1Y7xbMwo1TxMplw=="],
+
+    "nitropack/citty": ["citty@0.2.2", "", {}, "sha512-+6vJA3L98yv+IdfKGZHBNiGW5KHn22e/JwID0Strsz8h4S/csAu/OuICwxrg44k5MRiZHWIo8XXuJgQTriRP4w=="],
+
+    "nitropack/cookie-es": ["cookie-es@2.0.1", "", {}, "sha512-aVf4A4hI2w70LnF7GG+7xDQUkliwiXWXFvTjkip4+b64ygDQ2sJPRSKFDHbxn8o0xu9QzPkMuuiWIXyFSE2slA=="],
+
+    "nitropack/esbuild": ["esbuild@0.27.7", "", { "optionalDependencies": { "@esbuild/aix-ppc64": "0.27.7", "@esbuild/android-arm": "0.27.7", "@esbuild/android-arm64": "0.27.7", "@esbuild/android-x64": "0.27.7", "@esbuild/darwin-arm64": "0.27.7", "@esbuild/darwin-x64": "0.27.7", "@esbuild/freebsd-arm64": "0.27.7", "@esbuild/freebsd-x64": "0.27.7", "@esbuild/linux-arm": "0.27.7", "@esbuild/linux-arm64": "0.27.7", "@esbuild/linux-ia32": "0.27.7", "@esbuild/linux-loong64": "0.27.7", "@esbuild/linux-mips64el": "0.27.7", "@esbuild/linux-ppc64": "0.27.7", "@esbuild/linux-riscv64": "0.27.7", "@esbuild/linux-s390x": "0.27.7", "@esbuild/linux-x64": "0.27.7", "@esbuild/netbsd-arm64": "0.27.7", "@esbuild/netbsd-x64": "0.27.7", "@esbuild/openbsd-arm64": "0.27.7", "@esbuild/openbsd-x64": "0.27.7", "@esbuild/openharmony-arm64": "0.27.7", "@esbuild/sunos-x64": "0.27.7", "@esbuild/win32-arm64": "0.27.7", "@esbuild/win32-ia32": "0.27.7", "@esbuild/win32-x64": "0.27.7" }, "bin": { "esbuild": "bin/esbuild" } }, "sha512-IxpibTjyVnmrIQo5aqNpCgoACA/dTKLTlhMHihVHhdkxKyPO1uBBthumT0rdHmcsk9uMonIWS0m4FljWzILh3w=="],
+
+    "nitropack/h3": ["h3@1.15.11", "", { "dependencies": { "cookie-es": "^1.2.3", "crossws": "^0.3.5", "defu": "^6.1.6", "destr": "^2.0.5", "iron-webcrypto": "^1.2.1", "node-mock-http": "^1.0.4", "radix3": "^1.1.2", "ufo": "^1.6.3", "uncrypto": "^0.1.3" } }, "sha512-L3THSe2MPeBwgIZVSH5zLdBBU90TOxarvhK9d04IDY2AmVS8j2Jz2LIWtwsGOU3lu2I5jCN7FNvVfY2+XyF+mg=="],
+
+    "nitropack/magicast": ["magicast@0.5.2", "", { "dependencies": { "@babel/parser": "^7.29.0", "@babel/types": "^7.29.0", "source-map-js": "^1.2.1" } }, "sha512-E3ZJh4J3S9KfwdjZhe2afj6R9lGIN5Pher1pF39UGrXRqq/VDaGVIGN13BjHd2u8B61hArAGOnso7nBOouW3TQ=="],
+
+    "nitropack/rollup": ["rollup@4.60.1", "", { "dependencies": { "@types/estree": "1.0.8" }, "optionalDependencies": { "@rollup/rollup-android-arm-eabi": "4.60.1", "@rollup/rollup-android-arm64": "4.60.1", "@rollup/rollup-darwin-arm64": "4.60.1", "@rollup/rollup-darwin-x64": "4.60.1", "@rollup/rollup-freebsd-arm64": "4.60.1", "@rollup/rollup-freebsd-x64": "4.60.1", "@rollup/rollup-linux-arm-gnueabihf": "4.60.1", "@rollup/rollup-linux-arm-musleabihf": "4.60.1", "@rollup/rollup-linux-arm64-gnu": "4.60.1", "@rollup/rollup-linux-arm64-musl": "4.60.1", "@rollup/rollup-linux-loong64-gnu": "4.60.1", "@rollup/rollup-linux-loong64-musl": "4.60.1", "@rollup/rollup-linux-ppc64-gnu": "4.60.1", "@rollup/rollup-linux-ppc64-musl": "4.60.1", "@rollup/rollup-linux-riscv64-gnu": "4.60.1", "@rollup/rollup-linux-riscv64-musl": "4.60.1", "@rollup/rollup-linux-s390x-gnu": "4.60.1", "@rollup/rollup-linux-x64-gnu": "4.60.1", "@rollup/rollup-linux-x64-musl": "4.60.1", "@rollup/rollup-openbsd-x64": "4.60.1", "@rollup/rollup-openharmony-arm64": "4.60.1", "@rollup/rollup-win32-arm64-msvc": "4.60.1", "@rollup/rollup-win32-ia32-msvc": "4.60.1", "@rollup/rollup-win32-x64-gnu": "4.60.1", "@rollup/rollup-win32-x64-msvc": "4.60.1", "fsevents": "~2.3.2" }, "bin": { "rollup": "dist/bin/rollup" } }, "sha512-VmtB2rFU/GroZ4oL8+ZqXgSA38O6GR8KSIvWmEFv63pQ0G6KaBH9s07PO8XTXP4vI+3UJUEypOfjkGfmSBBR0w=="],
+
+    "nitropack/semver": ["semver@7.7.4", "", { "bin": { "semver": "bin/semver.js" } }, "sha512-vFKC2IEtQnVhpT78h1Yp8wzwrf8CM+MzKMHGJZfBtzhZNycRFnXsHk6E5TxIkkMsgNS7mdX3AGB7x2QM2di4lA=="],
+
+    "nitropack/serve-static": ["serve-static@2.2.1", "", { "dependencies": { "encodeurl": "^2.0.0", "escape-html": "^1.0.3", "parseurl": "^1.3.3", "send": "^1.2.0" } }, "sha512-xRXBn0pPqQTVQiC8wyQrKs2MOlX24zQ0POGaj0kultvoOCstBQM5yvOhAVSUwOMjQtTvsPWoNCHfPGwaaQJhTw=="],
+
+    "nitropack/std-env": ["std-env@4.0.0", "", {}, "sha512-zUMPtQ/HBY3/50VbpkupYHbRroTRZJPRLvreamgErJVys0ceuzMkD44J/QjqhHjOzK42GQ3QZIeFG1OYfOtKqQ=="],
+
+    "nitropack/youch": ["youch@4.1.1", "", { "dependencies": { "@poppinss/colors": "^4.1.6", "@poppinss/dumper": "^0.7.0", "@speed-highlight/core": "^1.2.14", "cookie-es": "^3.0.1", "youch-core": "^0.3.3" } }, "sha512-mxW3qiSnl+GRxXsaUMzv2Mbada1Y8CDltET9UxejDQe6DBYlSekghl5U5K0ReAikcHDi0G1vKZEmmo/NWAGKLA=="],
+
+    "node-fetch/whatwg-url": ["whatwg-url@5.0.0", "", { "dependencies": { "tr46": "~0.0.3", "webidl-conversions": "^3.0.0" } }, "sha512-saE57nupxk6v3HY35+jzBwYa0rKSy0XR8JSxZPwgLr7ys0IBzhGviA1/TUGJLmSVqs8pb9AnvICXEuOHLprYTw=="],
+
+    "npm-run-path/path-key": ["path-key@4.0.0", "", {}, "sha512-haREypq7xkM7ErfgIyA0z+Bj4AGKlMSdlQE2jvJo6huWD1EdkKYV+G/T4nq0YEF2vgTT8kqMFKo1uHn950r4SQ=="],
+
     "parse-entities/@types/unist": ["@types/unist@2.0.11", "", {}, "sha512-CmBKiL6NNo/OqgmMn95Fk9Whlp2mtvIv+KNpQKN2F4SjvrEesubTRWGYSg+BnWZOnlCaSTU1sMpsBOzgbYhnsA=="],
 
     "parse5-htmlparser2-tree-adapter/parse5": ["parse5@7.3.0", "", { "dependencies": { "entities": "^6.0.0" } }, "sha512-IInvU7fabl34qmi9gY8XOVxhYyMyuH2xUNpb2q8/Y+7552KlejkRvqvD19nMoUW/uQGGbqNpA6Tufu5FL5BZgw=="],
 
     "parse5-parser-stream/parse5": ["parse5@7.3.0", "", { "dependencies": { "entities": "^6.0.0" } }, "sha512-IInvU7fabl34qmi9gY8XOVxhYyMyuH2xUNpb2q8/Y+7552KlejkRvqvD19nMoUW/uQGGbqNpA6Tufu5FL5BZgw=="],
 
+    "path-scurry/lru-cache": ["lru-cache@10.4.3", "", {}, "sha512-JNAzZcXrCt42VGLuYz0zfAzDfAvJWW6AfYlDBQyDV5DClI2m5sAmK+OIO7s59XfsRsWHp02jAJrRadPRGTt6SQ=="],
+
+    "readdir-glob/minimatch": ["minimatch@5.1.9", "", { "dependencies": { "brace-expansion": "^2.0.1" } }, "sha512-7o1wEA2RyMP7Iu7GNba9vc0RWWGACJOCZBJX2GJWip0ikV+wcOsgVuY9uE8CPiyQhkGFSlhuSkZPavN7u1c2Fw=="],
+
     "readdirp/picomatch": ["picomatch@2.3.1", "", {}, "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA=="],
 
     "recast/source-map": ["source-map@0.6.1", "", {}, "sha512-UjgapumWlbMhkBgzT7Ykc5YXUT46F0iKu8SGXq0bcwP5dz/h0Plj6enJqjz1Zbq2l5WaqYnrVbwWOWMyF3F47g=="],
 
+    "send/debug": ["debug@2.6.9", "", { "dependencies": { "ms": "2.0.0" } }, "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA=="],
+
+    "send/mime": ["mime@1.6.0", "", { "bin": { "mime": "cli.js" } }, "sha512-x0Vn8spI+wuJ1O6S7gnbaQg8Pxh4NNHb7KSINmEWKiPE4RKOplvijn+NkmYmmRgP68mc70j2EbeTFRsrswaQeg=="],
+
     "sharp/semver": ["semver@7.7.4", "", { "bin": { "semver": "bin/semver.js" } }, "sha512-vFKC2IEtQnVhpT78h1Yp8wzwrf8CM+MzKMHGJZfBtzhZNycRFnXsHk6E5TxIkkMsgNS7mdX3AGB7x2QM2di4lA=="],
 
     "source-map-support/source-map": ["source-map@0.6.1", "", {}, "sha512-UjgapumWlbMhkBgzT7Ykc5YXUT46F0iKu8SGXq0bcwP5dz/h0Plj6enJqjz1Zbq2l5WaqYnrVbwWOWMyF3F47g=="],
 
+    "string-width-cjs/emoji-regex": ["emoji-regex@8.0.0", "", {}, "sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A=="],
+
+    "string-width-cjs/strip-ansi": ["strip-ansi@6.0.1", "", { "dependencies": { "ansi-regex": "^5.0.1" } }, "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A=="],
+
+    "strip-ansi/ansi-regex": ["ansi-regex@6.2.2", "", {}, "sha512-Bq3SmSpyFHaWjPk8If9yc6svM8c56dB5BAtW4Qbw5jHTwwXXcTLoRMkpDJp6VL0XzlWaCHTXrkFURMYmD0sLqg=="],
+
     "strip-literal/js-tokens": ["js-tokens@9.0.1", "", {}, "sha512-mxa9E9ITFOt0ban3j6L5MpjwegGz6lBQmM1IJkWeBZGcMxto50+eWdjC/52xDbS2vy0k7vIMK0Fe2wfL9OQSpQ=="],
 
+    "tar/yallist": ["yallist@5.0.0", "", {}, "sha512-YgvUTfwqyc7UXVMrB+SImsVYSmTS8X/tSrtdNZMImM+n7+QTriRXyXim0mBrTXNeqzVF0KWGgHPeiyViFFrNDw=="],
+
+    "unimport/acorn": ["acorn@8.16.0", "", { "bin": { "acorn": "bin/acorn" } }, "sha512-UVJyE9MttOsBQIDKw1skb9nAwQuR5wuGD3+82K6JgJlm/Y+KI92oNsMNGZCYdDsVtRHSak0pcV5Dno5+4jh9sw=="],
+
+    "unimport/unplugin": ["unplugin@3.0.0", "", { "dependencies": { "@jridgewell/remapping": "^2.3.5", "picomatch": "^4.0.3", "webpack-virtual-modules": "^0.6.2" } }, "sha512-0Mqk3AT2TZCXWKdcoaufeXNukv2mTrEZExeXlHIOZXdqYoHHr4n51pymnwV8x2BOVxwXbK2HLlI7usrqMpycdg=="],
+
+    "unstorage/chokidar": ["chokidar@5.0.0", "", { "dependencies": { "readdirp": "^5.0.0" } }, "sha512-TQMmc3w+5AxjpL8iIiwebF73dRDF4fBIieAqGn9RGCWaEVwQ6Fb2cGe31Yns0RRIzii5goJ1Y7xbMwo1TxMplw=="],
+
+    "unstorage/h3": ["h3@1.15.11", "", { "dependencies": { "cookie-es": "^1.2.3", "crossws": "^0.3.5", "defu": "^6.1.6", "destr": "^2.0.5", "iron-webcrypto": "^1.2.1", "node-mock-http": "^1.0.4", "radix3": "^1.1.2", "ufo": "^1.6.3", "uncrypto": "^0.1.3" } }, "sha512-L3THSe2MPeBwgIZVSH5zLdBBU90TOxarvhK9d04IDY2AmVS8j2Jz2LIWtwsGOU3lu2I5jCN7FNvVfY2+XyF+mg=="],
+
+    "unstorage/lru-cache": ["lru-cache@11.3.3", "", {}, "sha512-JvNw9Y81y33E+BEYPr0U7omo+U9AySnsMsEiXgwT6yqd31VQWTLNQqmT4ou5eqPFUrTfIDFta2wKhB1hyohtAQ=="],
+
+    "untun/pathe": ["pathe@1.1.2", "", {}, "sha512-whLdWMYL2TwI08hn8/ZqAbrVemu0LNaNNJZX73O6qaIdCTfXutsLhMkjdENX0qhsQ9uIimo4/aQOmXkoon2nDQ=="],
+
+    "vinxi/chokidar": ["chokidar@4.0.3", "", { "dependencies": { "readdirp": "^4.0.1" } }, "sha512-Qgzu8kfBvo+cA4962jnP1KkS6Dop5NS6g7R5LFYJr4b8Ub94PPQXUksCw9PvXoeXPRRddRNC5C1JQUR2SMGtnA=="],
+
+    "vinxi/esbuild": ["esbuild@0.25.12", "", { "optionalDependencies": { "@esbuild/aix-ppc64": "0.25.12", "@esbuild/android-arm": "0.25.12", "@esbuild/android-arm64": "0.25.12", "@esbuild/android-x64": "0.25.12", "@esbuild/darwin-arm64": "0.25.12", "@esbuild/darwin-x64": "0.25.12", "@esbuild/freebsd-arm64": "0.25.12", "@esbuild/freebsd-x64": "0.25.12", "@esbuild/linux-arm": "0.25.12", "@esbuild/linux-arm64": "0.25.12", "@esbuild/linux-ia32": "0.25.12", "@esbuild/linux-loong64": "0.25.12", "@esbuild/linux-mips64el": "0.25.12", "@esbuild/linux-ppc64": "0.25.12", "@esbuild/linux-riscv64": "0.25.12", "@esbuild/linux-s390x": "0.25.12", "@esbuild/linux-x64": "0.25.12", "@esbuild/netbsd-arm64": "0.25.12", "@esbuild/netbsd-x64": "0.25.12", "@esbuild/openbsd-arm64": "0.25.12", "@esbuild/openbsd-x64": "0.25.12", "@esbuild/openharmony-arm64": "0.25.12", "@esbuild/sunos-x64": "0.25.12", "@esbuild/win32-arm64": "0.25.12", "@esbuild/win32-ia32": "0.25.12", "@esbuild/win32-x64": "0.25.12" }, "bin": { "esbuild": "bin/esbuild" } }, "sha512-bbPBYYrtZbkt6Os6FiTLCTFxvq4tt3JKall1vRwshA3fdVztsLAatFaZobhkBC8/BrPetoa0oksYoKXoG4ryJg=="],
+
+    "vinxi/pathe": ["pathe@1.1.2", "", {}, "sha512-whLdWMYL2TwI08hn8/ZqAbrVemu0LNaNNJZX73O6qaIdCTfXutsLhMkjdENX0qhsQ9uIimo4/aQOmXkoon2nDQ=="],
+
+    "vinxi/unenv": ["unenv@1.10.0", "", { "dependencies": { "consola": "^3.2.3", "defu": "^6.1.4", "mime": "^3.0.0", "node-fetch-native": "^1.6.4", "pathe": "^1.1.2" } }, "sha512-wY5bskBQFL9n3Eca5XnhH6KbUo/tfvkwm9OpcdCvLaeA7piBNbavbOKJySEwQ1V0RH6HvNlSAFRTpvTqgKRQXQ=="],
+
+    "vinxi/vite": ["vite@6.4.2", "", { "dependencies": { "esbuild": "^0.25.0", "fdir": "^6.4.4", "picomatch": "^4.0.2", "postcss": "^8.5.3", "rollup": "^4.34.9", "tinyglobby": "^0.2.13" }, "optionalDependencies": { "fsevents": "~2.3.3" }, "peerDependencies": { "@types/node": "^18.0.0 || ^20.0.0 || >=22.0.0", "jiti": ">=1.21.0", "less": "*", "lightningcss": "^1.21.0", "sass": "*", "sass-embedded": "*", "stylus": "*", "sugarss": "*", "terser": "^5.16.0", "tsx": "^4.8.1", "yaml": "^2.4.2" }, "optionalPeers": ["@types/node", "jiti", "less", "lightningcss", "sass", "sass-embedded", "stylus", "sugarss", "terser", "tsx", "yaml"], "bin": { "vite": "bin/vite.js" } }, "sha512-2N/55r4JDJ4gdrCvGgINMy+HH3iRpNIz8K6SFwVsA+JbQScLiC+clmAxBgwiSPgcG9U15QmvqCGWzMbqda5zGQ=="],
+
     "wrangler/esbuild": ["esbuild@0.27.3", "", { "optionalDependencies": { "@esbuild/aix-ppc64": "0.27.3", "@esbuild/android-arm": "0.27.3", "@esbuild/android-arm64": "0.27.3", "@esbuild/android-x64": "0.27.3", "@esbuild/darwin-arm64": "0.27.3", "@esbuild/darwin-x64": "0.27.3", "@esbuild/freebsd-arm64": "0.27.3", "@esbuild/freebsd-x64": "0.27.3", "@esbuild/linux-arm": "0.27.3", "@esbuild/linux-arm64": "0.27.3", "@esbuild/linux-ia32": "0.27.3", "@esbuild/linux-loong64": "0.27.3", "@esbuild/linux-mips64el": "0.27.3", "@esbuild/linux-ppc64": "0.27.3", "@esbuild/linux-riscv64": "0.27.3", "@esbuild/linux-s390x": "0.27.3", "@esbuild/linux-x64": "0.27.3", "@esbuild/netbsd-arm64": "0.27.3", "@esbuild/netbsd-x64": "0.27.3", "@esbuild/openbsd-arm64": "0.27.3", "@esbuild/openbsd-x64": "0.27.3", "@esbuild/openharmony-arm64": "0.27.3", "@esbuild/sunos-x64": "0.27.3", "@esbuild/win32-arm64": "0.27.3", "@esbuild/win32-ia32": "0.27.3", "@esbuild/win32-x64": "0.27.3" }, "bin": { "esbuild": "bin/esbuild" } }, "sha512-8VwMnyGCONIs6cWue2IdpHxHnAjzxnw2Zr7MkVxB2vjmQ2ivqGFb4LEG3SMnv0Gb2F/G/2yA8zUaiL1gywDCCg=="],
 
+    "wrap-ansi/ansi-styles": ["ansi-styles@6.2.3", "", {}, "sha512-4Dj6M28JB+oAH8kFkTLUo+a2jwOFkuqb3yucU0CANcRRUbxS0cP0nZYCGjcc3BNXwRIsUVmDGgzawme7zvJHvg=="],
+
+    "wrap-ansi-cjs/ansi-styles": ["ansi-styles@4.3.0", "", { "dependencies": { "color-convert": "^2.0.1" } }, "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg=="],
+
+    "wrap-ansi-cjs/string-width": ["string-width@4.2.3", "", { "dependencies": { "emoji-regex": "^8.0.0", "is-fullwidth-code-point": "^3.0.0", "strip-ansi": "^6.0.1" } }, "sha512-wKyQRQpjJ0sIp62ErSZdGsjMJWsap5oRNihHhu6G7JVO/9jIB6UyevL+tXuOqrng8j/cxKTWyWUwvSTriiZz/g=="],
+
+    "wrap-ansi-cjs/strip-ansi": ["strip-ansi@6.0.1", "", { "dependencies": { "ansi-regex": "^5.0.1" } }, "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A=="],
+
+    "@isaacs/cliui/string-width/emoji-regex": ["emoji-regex@9.2.2", "", {}, "sha512-L18DaJsXSUk2+42pv8mLs5jJT2hqFkFE4j21wOmgbUqsZ2hL72NsUU785g9RXgo3s0ZNgVl42TiHp3ZtOv/Vyg=="],
+
+    "@isaacs/cliui/wrap-ansi/ansi-styles": ["ansi-styles@6.2.3", "", {}, "sha512-4Dj6M28JB+oAH8kFkTLUo+a2jwOFkuqb3yucU0CANcRRUbxS0cP0nZYCGjcc3BNXwRIsUVmDGgzawme7zvJHvg=="],
+
     "@tanstack/devtools/@tanstack/devtools-client/@tanstack/devtools-event-client": ["@tanstack/devtools-event-client@0.3.5", "", {}, "sha512-RL1f5ZlfZMpghrCIdzl6mLOFLTuhqmPNblZgBaeKfdtk5rfbjykurv+VfYydOFXj0vxVIoA2d/zT7xfD7Ph8fw=="],
 
+    "@tanstack/start-plugin-core/@babel/code-frame/js-tokens": ["js-tokens@4.0.0", "", {}, "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ=="],
+
+    "@vercel/nft/glob/path-scurry": ["path-scurry@2.0.2", "", { "dependencies": { "lru-cache": "^11.0.0", "minipass": "^7.1.2" } }, "sha512-3O/iVVsJAPsOnpwWIeD+d6z/7PmqApyQePUtCndjatj/9I5LylHvt5qluFaBT3I5h3r1ejfR056c+FCv+NnNXg=="],
+
+    "@vinxi/listhen/h3/cookie-es": ["cookie-es@1.2.3", "", {}, "sha512-lXVyvUvrNXblMqzIRrxHb57UUVmqsSWlxqt3XIjCkUP0wDAf6uicO6KMbEgYrMNtEvWgWHwe42CKxPu9MYAnWw=="],
+
+    "ansi-align/string-width/emoji-regex": ["emoji-regex@8.0.0", "", {}, "sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A=="],
+
+    "ansi-align/string-width/strip-ansi": ["strip-ansi@6.0.1", "", { "dependencies": { "ansi-regex": "^5.0.1" } }, "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A=="],
+
+    "c12/chokidar/readdirp": ["readdirp@5.0.0", "", {}, "sha512-9u/XQ1pvrQtYyMpZe7DXKv2p5CNvyVwzUB6uhLAnQwHMSgKMBR62lc7AHljaeteeHXn11XTAaLLUVZYVZyuRBQ=="],
+
+    "cross-spawn/which/isexe": ["isexe@2.0.0", "", {}, "sha512-RHxMLp9lnKHGHRng9QFhRCMbYAcVpn69smSGcq3f36xjgVVWThj4qqLbTLlq7Ssj8B+fIQ1EuCEGI2lKsyQeIw=="],
+
+    "glob/minimatch/brace-expansion": ["brace-expansion@2.0.3", "", { "dependencies": { "balanced-match": "^1.0.0" } }, "sha512-MCV/fYJEbqx68aE58kv2cA/kiky1G8vux3OR6/jbS+jIMe/6fJWa0DTzJU7dqijOWYwHi1t29FlfYI9uytqlpA=="],
+
+    "lazystream/readable-stream/safe-buffer": ["safe-buffer@5.1.2", "", {}, "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="],
+
+    "lazystream/readable-stream/string_decoder": ["string_decoder@1.1.1", "", { "dependencies": { "safe-buffer": "~5.1.0" } }, "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg=="],
+
+    "listhen/@parcel/watcher-wasm/napi-wasm": ["napi-wasm@1.1.3", "", { "bundled": true }, "sha512-h/4nMGsHjZDCYmQVNODIrYACVJ+I9KItbG+0si6W/jSjdA9JbWDoU4LLeMXVcEQGHjttI2tuXqDrbGF7qkUHHg=="],
+
+    "listhen/h3/cookie-es": ["cookie-es@1.2.3", "", {}, "sha512-lXVyvUvrNXblMqzIRrxHb57UUVmqsSWlxqt3XIjCkUP0wDAf6uicO6KMbEgYrMNtEvWgWHwe42CKxPu9MYAnWw=="],
+
+    "listhen/h3/crossws": ["crossws@0.3.5", "", { "dependencies": { "uncrypto": "^0.1.3" } }, "sha512-ojKiDvcmByhwa8YYqbQI/hg7MEU0NC03+pSdEq4ZUnZR9xXpwk7E43SMNGkn+JxJGPFtNvQ48+vV2p+P1ml5PA=="],
+
+    "mlly/pkg-types/confbox": ["confbox@0.1.8", "", {}, "sha512-RMtmw0iFkeR4YV+fUOSucriAQNb9g8zFR52MWCtl+cCZOFRNL6zeB395vPzFhEjjn4fMxXudmELnl/KF/WrK6w=="],
+
+    "nitropack/chokidar/readdirp": ["readdirp@5.0.0", "", {}, "sha512-9u/XQ1pvrQtYyMpZe7DXKv2p5CNvyVwzUB6uhLAnQwHMSgKMBR62lc7AHljaeteeHXn11XTAaLLUVZYVZyuRBQ=="],
+
+    "nitropack/esbuild/@esbuild/aix-ppc64": ["@esbuild/aix-ppc64@0.27.7", "", { "os": "aix", "cpu": "ppc64" }, "sha512-EKX3Qwmhz1eMdEJokhALr0YiD0lhQNwDqkPYyPhiSwKrh7/4KRjQc04sZ8db+5DVVnZ1LmbNDI1uAMPEUBnQPg=="],
+
+    "nitropack/esbuild/@esbuild/android-arm": ["@esbuild/android-arm@0.27.7", "", { "os": "android", "cpu": "arm" }, "sha512-jbPXvB4Yj2yBV7HUfE2KHe4GJX51QplCN1pGbYjvsyCZbQmies29EoJbkEc+vYuU5o45AfQn37vZlyXy4YJ8RQ=="],
+
+    "nitropack/esbuild/@esbuild/android-arm64": ["@esbuild/android-arm64@0.27.7", "", { "os": "android", "cpu": "arm64" }, "sha512-62dPZHpIXzvChfvfLJow3q5dDtiNMkwiRzPylSCfriLvZeq0a1bWChrGx/BbUbPwOrsWKMn8idSllklzBy+dgQ=="],
+
+    "nitropack/esbuild/@esbuild/android-x64": ["@esbuild/android-x64@0.27.7", "", { "os": "android", "cpu": "x64" }, "sha512-x5VpMODneVDb70PYV2VQOmIUUiBtY3D3mPBG8NxVk5CogneYhkR7MmM3yR/uMdITLrC1ml/NV1rj4bMJuy9MCg=="],
+
+    "nitropack/esbuild/@esbuild/darwin-arm64": ["@esbuild/darwin-arm64@0.27.7", "", { "os": "darwin", "cpu": "arm64" }, "sha512-5lckdqeuBPlKUwvoCXIgI2D9/ABmPq3Rdp7IfL70393YgaASt7tbju3Ac+ePVi3KDH6N2RqePfHnXkaDtY9fkw=="],
+
+    "nitropack/esbuild/@esbuild/darwin-x64": ["@esbuild/darwin-x64@0.27.7", "", { "os": "darwin", "cpu": "x64" }, "sha512-rYnXrKcXuT7Z+WL5K980jVFdvVKhCHhUwid+dDYQpH+qu+TefcomiMAJpIiC2EM3Rjtq0sO3StMV/+3w3MyyqQ=="],
+
+    "nitropack/esbuild/@esbuild/freebsd-arm64": ["@esbuild/freebsd-arm64@0.27.7", "", { "os": "freebsd", "cpu": "arm64" }, "sha512-B48PqeCsEgOtzME2GbNM2roU29AMTuOIN91dsMO30t+Ydis3z/3Ngoj5hhnsOSSwNzS+6JppqWsuhTp6E82l2w=="],
+
+    "nitropack/esbuild/@esbuild/freebsd-x64": ["@esbuild/freebsd-x64@0.27.7", "", { "os": "freebsd", "cpu": "x64" }, "sha512-jOBDK5XEjA4m5IJK3bpAQF9/Lelu/Z9ZcdhTRLf4cajlB+8VEhFFRjWgfy3M1O4rO2GQ/b2dLwCUGpiF/eATNQ=="],
+
+    "nitropack/esbuild/@esbuild/linux-arm": ["@esbuild/linux-arm@0.27.7", "", { "os": "linux", "cpu": "arm" }, "sha512-RkT/YXYBTSULo3+af8Ib0ykH8u2MBh57o7q/DAs3lTJlyVQkgQvlrPTnjIzzRPQyavxtPtfg0EopvDyIt0j1rA=="],
+
+    "nitropack/esbuild/@esbuild/linux-arm64": ["@esbuild/linux-arm64@0.27.7", "", { "os": "linux", "cpu": "arm64" }, "sha512-RZPHBoxXuNnPQO9rvjh5jdkRmVizktkT7TCDkDmQ0W2SwHInKCAV95GRuvdSvA7w4VMwfCjUiPwDi0ZO6Nfe9A=="],
+
+    "nitropack/esbuild/@esbuild/linux-ia32": ["@esbuild/linux-ia32@0.27.7", "", { "os": "linux", "cpu": "ia32" }, "sha512-GA48aKNkyQDbd3KtkplYWT102C5sn/EZTY4XROkxONgruHPU72l+gW+FfF8tf2cFjeHaRbWpOYa/uRBz/Xq1Pg=="],
+
+    "nitropack/esbuild/@esbuild/linux-loong64": ["@esbuild/linux-loong64@0.27.7", "", { "os": "linux", "cpu": "none" }, "sha512-a4POruNM2oWsD4WKvBSEKGIiWQF8fZOAsycHOt6JBpZ+JN2n2JH9WAv56SOyu9X5IqAjqSIPTaJkqN8F7XOQ5Q=="],
+
+    "nitropack/esbuild/@esbuild/linux-mips64el": ["@esbuild/linux-mips64el@0.27.7", "", { "os": "linux", "cpu": "none" }, "sha512-KabT5I6StirGfIz0FMgl1I+R1H73Gp0ofL9A3nG3i/cYFJzKHhouBV5VWK1CSgKvVaG4q1RNpCTR2LuTVB3fIw=="],
+
+    "nitropack/esbuild/@esbuild/linux-ppc64": ["@esbuild/linux-ppc64@0.27.7", "", { "os": "linux", "cpu": "ppc64" }, "sha512-gRsL4x6wsGHGRqhtI+ifpN/vpOFTQtnbsupUF5R5YTAg+y/lKelYR1hXbnBdzDjGbMYjVJLJTd2OFmMewAgwlQ=="],
+
+    "nitropack/esbuild/@esbuild/linux-riscv64": ["@esbuild/linux-riscv64@0.27.7", "", { "os": "linux", "cpu": "none" }, "sha512-hL25LbxO1QOngGzu2U5xeXtxXcW+/GvMN3ejANqXkxZ/opySAZMrc+9LY/WyjAan41unrR3YrmtTsUpwT66InQ=="],
+
+    "nitropack/esbuild/@esbuild/linux-s390x": ["@esbuild/linux-s390x@0.27.7", "", { "os": "linux", "cpu": "s390x" }, "sha512-2k8go8Ycu1Kb46vEelhu1vqEP+UeRVj2zY1pSuPdgvbd5ykAw82Lrro28vXUrRmzEsUV0NzCf54yARIK8r0fdw=="],
+
+    "nitropack/esbuild/@esbuild/linux-x64": ["@esbuild/linux-x64@0.27.7", "", { "os": "linux", "cpu": "x64" }, "sha512-hzznmADPt+OmsYzw1EE33ccA+HPdIqiCRq7cQeL1Jlq2gb1+OyWBkMCrYGBJ+sxVzve2ZJEVeePbLM2iEIZSxA=="],
+
+    "nitropack/esbuild/@esbuild/netbsd-arm64": ["@esbuild/netbsd-arm64@0.27.7", "", { "os": "none", "cpu": "arm64" }, "sha512-b6pqtrQdigZBwZxAn1UpazEisvwaIDvdbMbmrly7cDTMFnw/+3lVxxCTGOrkPVnsYIosJJXAsILG9XcQS+Yu6w=="],
+
+    "nitropack/esbuild/@esbuild/netbsd-x64": ["@esbuild/netbsd-x64@0.27.7", "", { "os": "none", "cpu": "x64" }, "sha512-OfatkLojr6U+WN5EDYuoQhtM+1xco+/6FSzJJnuWiUw5eVcicbyK3dq5EeV/QHT1uy6GoDhGbFpprUiHUYggrw=="],
+
+    "nitropack/esbuild/@esbuild/openbsd-arm64": ["@esbuild/openbsd-arm64@0.27.7", "", { "os": "openbsd", "cpu": "arm64" }, "sha512-AFuojMQTxAz75Fo8idVcqoQWEHIXFRbOc1TrVcFSgCZtQfSdc1RXgB3tjOn/krRHENUB4j00bfGjyl2mJrU37A=="],
+
+    "nitropack/esbuild/@esbuild/openbsd-x64": ["@esbuild/openbsd-x64@0.27.7", "", { "os": "openbsd", "cpu": "x64" }, "sha512-+A1NJmfM8WNDv5CLVQYJ5PshuRm/4cI6WMZRg1by1GwPIQPCTs1GLEUHwiiQGT5zDdyLiRM/l1G0Pv54gvtKIg=="],
+
+    "nitropack/esbuild/@esbuild/openharmony-arm64": ["@esbuild/openharmony-arm64@0.27.7", "", { "os": "none", "cpu": "arm64" }, "sha512-+KrvYb/C8zA9CU/g0sR6w2RBw7IGc5J2BPnc3dYc5VJxHCSF1yNMxTV5LQ7GuKteQXZtspjFbiuW5/dOj7H4Yw=="],
+
+    "nitropack/esbuild/@esbuild/sunos-x64": ["@esbuild/sunos-x64@0.27.7", "", { "os": "sunos", "cpu": "x64" }, "sha512-ikktIhFBzQNt/QDyOL580ti9+5mL/YZeUPKU2ivGtGjdTYoqz6jObj6nOMfhASpS4GU4Q/Clh1QtxWAvcYKamA=="],
+
+    "nitropack/esbuild/@esbuild/win32-arm64": ["@esbuild/win32-arm64@0.27.7", "", { "os": "win32", "cpu": "arm64" }, "sha512-7yRhbHvPqSpRUV7Q20VuDwbjW5kIMwTHpptuUzV+AA46kiPze5Z7qgt6CLCK3pWFrHeNfDd1VKgyP4O+ng17CA=="],
+
+    "nitropack/esbuild/@esbuild/win32-ia32": ["@esbuild/win32-ia32@0.27.7", "", { "os": "win32", "cpu": "ia32" }, "sha512-SmwKXe6VHIyZYbBLJrhOoCJRB/Z1tckzmgTLfFYOfpMAx63BJEaL9ExI8x7v0oAO3Zh6D/Oi1gVxEYr5oUCFhw=="],
+
+    "nitropack/esbuild/@esbuild/win32-x64": ["@esbuild/win32-x64@0.27.7", "", { "os": "win32", "cpu": "x64" }, "sha512-56hiAJPhwQ1R4i+21FVF7V8kSD5zZTdHcVuRFMW0hn753vVfQN8xlx4uOPT4xoGH0Z/oVATuR82AiqSTDIpaHg=="],
+
+    "nitropack/h3/cookie-es": ["cookie-es@1.2.3", "", {}, "sha512-lXVyvUvrNXblMqzIRrxHb57UUVmqsSWlxqt3XIjCkUP0wDAf6uicO6KMbEgYrMNtEvWgWHwe42CKxPu9MYAnWw=="],
+
+    "nitropack/rollup/@rollup/rollup-android-arm-eabi": ["@rollup/rollup-android-arm-eabi@4.60.1", "", { "os": "android", "cpu": "arm" }, "sha512-d6FinEBLdIiK+1uACUttJKfgZREXrF0Qc2SmLII7W2AD8FfiZ9Wjd+rD/iRuf5s5dWrr1GgwXCvPqOuDquOowA=="],
+
+    "nitropack/rollup/@rollup/rollup-android-arm64": ["@rollup/rollup-android-arm64@4.60.1", "", { "os": "android", "cpu": "arm64" }, "sha512-YjG/EwIDvvYI1YvYbHvDz/BYHtkY4ygUIXHnTdLhG+hKIQFBiosfWiACWortsKPKU/+dUwQQCKQM3qrDe8c9BA=="],
+
+    "nitropack/rollup/@rollup/rollup-darwin-arm64": ["@rollup/rollup-darwin-arm64@4.60.1", "", { "os": "darwin", "cpu": "arm64" }, "sha512-mjCpF7GmkRtSJwon+Rq1N8+pI+8l7w5g9Z3vWj4T7abguC4Czwi3Yu/pFaLvA3TTeMVjnu3ctigusqWUfjZzvw=="],
+
+    "nitropack/rollup/@rollup/rollup-darwin-x64": ["@rollup/rollup-darwin-x64@4.60.1", "", { "os": "darwin", "cpu": "x64" }, "sha512-haZ7hJ1JT4e9hqkoT9R/19XW2QKqjfJVv+i5AGg57S+nLk9lQnJ1F/eZloRO3o9Scy9CM3wQ9l+dkXtcBgN5Ew=="],
+
+    "nitropack/rollup/@rollup/rollup-freebsd-arm64": ["@rollup/rollup-freebsd-arm64@4.60.1", "", { "os": "freebsd", "cpu": "arm64" }, "sha512-czw90wpQq3ZsAVBlinZjAYTKduOjTywlG7fEeWKUA7oCmpA8xdTkxZZlwNJKWqILlq0wehoZcJYfBvOyhPTQ6w=="],
+
+    "nitropack/rollup/@rollup/rollup-freebsd-x64": ["@rollup/rollup-freebsd-x64@4.60.1", "", { "os": "freebsd", "cpu": "x64" }, "sha512-KVB2rqsxTHuBtfOeySEyzEOB7ltlB/ux38iu2rBQzkjbwRVlkhAGIEDiiYnO2kFOkJp+Z7pUXKyrRRFuFUKt+g=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-arm-gnueabihf": ["@rollup/rollup-linux-arm-gnueabihf@4.60.1", "", { "os": "linux", "cpu": "arm" }, "sha512-L+34Qqil+v5uC0zEubW7uByo78WOCIrBvci69E7sFASRl0X7b/MB6Cqd1lky/CtcSVTydWa2WZwFuWexjS5o6g=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-arm-musleabihf": ["@rollup/rollup-linux-arm-musleabihf@4.60.1", "", { "os": "linux", "cpu": "arm" }, "sha512-n83O8rt4v34hgFzlkb1ycniJh7IR5RCIqt6mz1VRJD6pmhRi0CXdmfnLu9dIUS6buzh60IvACM842Ffb3xd6Gg=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-arm64-gnu": ["@rollup/rollup-linux-arm64-gnu@4.60.1", "", { "os": "linux", "cpu": "arm64" }, "sha512-Nql7sTeAzhTAja3QXeAI48+/+GjBJ+QmAH13snn0AJSNL50JsDqotyudHyMbO2RbJkskbMbFJfIJKWA6R1LCJQ=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-arm64-musl": ["@rollup/rollup-linux-arm64-musl@4.60.1", "", { "os": "linux", "cpu": "arm64" }, "sha512-+pUymDhd0ys9GcKZPPWlFiZ67sTWV5UU6zOJat02M1+PiuSGDziyRuI/pPue3hoUwm2uGfxdL+trT6Z9rxnlMA=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-loong64-gnu": ["@rollup/rollup-linux-loong64-gnu@4.60.1", "", { "os": "linux", "cpu": "none" }, "sha512-VSvgvQeIcsEvY4bKDHEDWcpW4Yw7BtlKG1GUT4FzBUlEKQK0rWHYBqQt6Fm2taXS+1bXvJT6kICu5ZwqKCnvlQ=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-loong64-musl": ["@rollup/rollup-linux-loong64-musl@4.60.1", "", { "os": "linux", "cpu": "none" }, "sha512-4LqhUomJqwe641gsPp6xLfhqWMbQV04KtPp7/dIp0nzPxAkNY1AbwL5W0MQpcalLYk07vaW9Kp1PBhdpZYYcEw=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-ppc64-gnu": ["@rollup/rollup-linux-ppc64-gnu@4.60.1", "", { "os": "linux", "cpu": "ppc64" }, "sha512-tLQQ9aPvkBxOc/EUT6j3pyeMD6Hb8QF2BTBnCQWP/uu1lhc9AIrIjKnLYMEroIz/JvtGYgI9dF3AxHZNaEH0rw=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-ppc64-musl": ["@rollup/rollup-linux-ppc64-musl@4.60.1", "", { "os": "linux", "cpu": "ppc64" }, "sha512-RMxFhJwc9fSXP6PqmAz4cbv3kAyvD1etJFjTx4ONqFP9DkTkXsAMU4v3Vyc5BgzC+anz7nS/9tp4obsKfqkDHg=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-riscv64-gnu": ["@rollup/rollup-linux-riscv64-gnu@4.60.1", "", { "os": "linux", "cpu": "none" }, "sha512-QKgFl+Yc1eEk6MmOBfRHYF6lTxiiiV3/z/BRrbSiW2I7AFTXoBFvdMEyglohPj//2mZS4hDOqeB0H1ACh3sBbg=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-riscv64-musl": ["@rollup/rollup-linux-riscv64-musl@4.60.1", "", { "os": "linux", "cpu": "none" }, "sha512-RAjXjP/8c6ZtzatZcA1RaQr6O1TRhzC+adn8YZDnChliZHviqIjmvFwHcxi4JKPSDAt6Uhf/7vqcBzQJy0PDJg=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-s390x-gnu": ["@rollup/rollup-linux-s390x-gnu@4.60.1", "", { "os": "linux", "cpu": "s390x" }, "sha512-wcuocpaOlaL1COBYiA89O6yfjlp3RwKDeTIA0hM7OpmhR1Bjo9j31G1uQVpDlTvwxGn2nQs65fBFL5UFd76FcQ=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-x64-gnu": ["@rollup/rollup-linux-x64-gnu@4.60.1", "", { "os": "linux", "cpu": "x64" }, "sha512-77PpsFQUCOiZR9+LQEFg9GClyfkNXj1MP6wRnzYs0EeWbPcHs02AXu4xuUbM1zhwn3wqaizle3AEYg5aeoohhg=="],
+
+    "nitropack/rollup/@rollup/rollup-linux-x64-musl": ["@rollup/rollup-linux-x64-musl@4.60.1", "", { "os": "linux", "cpu": "x64" }, "sha512-5cIATbk5vynAjqqmyBjlciMJl1+R/CwX9oLk/EyiFXDWd95KpHdrOJT//rnUl4cUcskrd0jCCw3wpZnhIHdD9w=="],
+
+    "nitropack/rollup/@rollup/rollup-openbsd-x64": ["@rollup/rollup-openbsd-x64@4.60.1", "", { "os": "openbsd", "cpu": "x64" }, "sha512-cl0w09WsCi17mcmWqqglez9Gk8isgeWvoUZ3WiJFYSR3zjBQc2J5/ihSjpl+VLjPqjQ/1hJRcqBfLjssREQILw=="],
+
+    "nitropack/rollup/@rollup/rollup-openharmony-arm64": ["@rollup/rollup-openharmony-arm64@4.60.1", "", { "os": "none", "cpu": "arm64" }, "sha512-4Cv23ZrONRbNtbZa37mLSueXUCtN7MXccChtKpUnQNgF010rjrjfHx3QxkS2PI7LqGT5xXyYs1a7LbzAwT0iCA=="],
+
+    "nitropack/rollup/@rollup/rollup-win32-arm64-msvc": ["@rollup/rollup-win32-arm64-msvc@4.60.1", "", { "os": "win32", "cpu": "arm64" }, "sha512-i1okWYkA4FJICtr7KpYzFpRTHgy5jdDbZiWfvny21iIKky5YExiDXP+zbXzm3dUcFpkEeYNHgQ5fuG236JPq0g=="],
+
+    "nitropack/rollup/@rollup/rollup-win32-ia32-msvc": ["@rollup/rollup-win32-ia32-msvc@4.60.1", "", { "os": "win32", "cpu": "ia32" }, "sha512-u09m3CuwLzShA0EYKMNiFgcjjzwqtUMLmuCJLeZWjjOYA3IT2Di09KaxGBTP9xVztWyIWjVdsB2E9goMjZvTQg=="],
+
+    "nitropack/rollup/@rollup/rollup-win32-x64-gnu": ["@rollup/rollup-win32-x64-gnu@4.60.1", "", { "os": "win32", "cpu": "x64" }, "sha512-k+600V9Zl1CM7eZxJgMyTUzmrmhB/0XZnF4pRypKAlAgxmedUA+1v9R+XOFv56W4SlHEzfeMtzujLJD22Uz5zg=="],
+
+    "nitropack/rollup/@rollup/rollup-win32-x64-msvc": ["@rollup/rollup-win32-x64-msvc@4.60.1", "", { "os": "win32", "cpu": "x64" }, "sha512-lWMnixq/QzxyhTV6NjQJ4SFo1J6PvOX8vUx5Wb4bBPsEb+8xZ89Bz6kOXpfXj9ak9AHTQVQzlgzBEc1SyM27xQ=="],
+
+    "nitropack/serve-static/send": ["send@1.2.1", "", { "dependencies": { "debug": "^4.4.3", "encodeurl": "^2.0.0", "escape-html": "^1.0.3", "etag": "^1.8.1", "fresh": "^2.0.0", "http-errors": "^2.0.1", "mime-types": "^3.0.2", "ms": "^2.1.3", "on-finished": "^2.4.1", "range-parser": "^1.2.1", "statuses": "^2.0.2" } }, "sha512-1gnZf7DFcoIcajTjTwjwuDjzuz4PPcY2StKPlsGAQ1+YH20IRVrBaXSWmdjowTJ6u8Rc01PoYOGHXfP1mYcZNQ=="],
+
+    "nitropack/youch/@poppinss/dumper": ["@poppinss/dumper@0.7.0", "", { "dependencies": { "@poppinss/colors": "^4.1.5", "@sindresorhus/is": "^7.0.2", "supports-color": "^10.0.0" } }, "sha512-0UTYalzk2t6S4rA2uHOz5bSSW2CHdv4vggJI6Alg90yvl0UgXs6XSXpH96OH+bRkX4J/06djv29pqXJ0lq5Kag=="],
+
+    "nitropack/youch/cookie-es": ["cookie-es@3.1.1", "", {}, "sha512-UaXxwISYJPTr9hwQxMFYZ7kNhSXboMXP+Z3TRX6f1/NyaGPfuNUZOWP1pUEb75B2HjfklIYLVRfWiFZJyC6Npg=="],
+
+    "node-fetch/whatwg-url/tr46": ["tr46@0.0.3", "", {}, "sha512-N3WMsuqV66lT30CrXNbEjx4GEwlow3v6rr4mCcv6prnfwhS01rkgyFdjPNBYd9br7LpXV1+Emh01fHnq2Gdgrw=="],
+
+    "node-fetch/whatwg-url/webidl-conversions": ["webidl-conversions@3.0.1", "", {}, "sha512-2JAn3z8AR6rjK8Sm8orRC0h/bcl/DqL7tRPdGZ4I1CjdF+EaMLmYxBHyXuKL849eucPFhvBoxMsflfOb8kxaeQ=="],
+
+    "readdir-glob/minimatch/brace-expansion": ["brace-expansion@2.0.3", "", { "dependencies": { "balanced-match": "^1.0.0" } }, "sha512-MCV/fYJEbqx68aE58kv2cA/kiky1G8vux3OR6/jbS+jIMe/6fJWa0DTzJU7dqijOWYwHi1t29FlfYI9uytqlpA=="],
+
+    "send/debug/ms": ["ms@2.0.0", "", {}, "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A=="],
+
+    "unstorage/chokidar/readdirp": ["readdirp@5.0.0", "", {}, "sha512-9u/XQ1pvrQtYyMpZe7DXKv2p5CNvyVwzUB6uhLAnQwHMSgKMBR62lc7AHljaeteeHXn11XTAaLLUVZYVZyuRBQ=="],
+
+    "unstorage/h3/cookie-es": ["cookie-es@1.2.3", "", {}, "sha512-lXVyvUvrNXblMqzIRrxHb57UUVmqsSWlxqt3XIjCkUP0wDAf6uicO6KMbEgYrMNtEvWgWHwe42CKxPu9MYAnWw=="],
+
+    "vinxi/chokidar/readdirp": ["readdirp@4.1.2", "", {}, "sha512-GDhwkLfywWL2s6vEjyhri+eXmfH6j1L7JE27WhqLeYzoh/A3DBaYGEj2H/HFZCn/kMfim73FXxEJTw06WtxQwg=="],
+
+    "vinxi/esbuild/@esbuild/aix-ppc64": ["@esbuild/aix-ppc64@0.25.12", "", { "os": "aix", "cpu": "ppc64" }, "sha512-Hhmwd6CInZ3dwpuGTF8fJG6yoWmsToE+vYgD4nytZVxcu1ulHpUQRAB1UJ8+N1Am3Mz4+xOByoQoSZf4D+CpkA=="],
+
+    "vinxi/esbuild/@esbuild/android-arm": ["@esbuild/android-arm@0.25.12", "", { "os": "android", "cpu": "arm" }, "sha512-VJ+sKvNA/GE7Ccacc9Cha7bpS8nyzVv0jdVgwNDaR4gDMC/2TTRc33Ip8qrNYUcpkOHUT5OZ0bUcNNVZQ9RLlg=="],
+
+    "vinxi/esbuild/@esbuild/android-arm64": ["@esbuild/android-arm64@0.25.12", "", { "os": "android", "cpu": "arm64" }, "sha512-6AAmLG7zwD1Z159jCKPvAxZd4y/VTO0VkprYy+3N2FtJ8+BQWFXU+OxARIwA46c5tdD9SsKGZ/1ocqBS/gAKHg=="],
+
+    "vinxi/esbuild/@esbuild/android-x64": ["@esbuild/android-x64@0.25.12", "", { "os": "android", "cpu": "x64" }, "sha512-5jbb+2hhDHx5phYR2By8GTWEzn6I9UqR11Kwf22iKbNpYrsmRB18aX/9ivc5cabcUiAT/wM+YIZ6SG9QO6a8kg=="],
+
+    "vinxi/esbuild/@esbuild/darwin-arm64": ["@esbuild/darwin-arm64@0.25.12", "", { "os": "darwin", "cpu": "arm64" }, "sha512-N3zl+lxHCifgIlcMUP5016ESkeQjLj/959RxxNYIthIg+CQHInujFuXeWbWMgnTo4cp5XVHqFPmpyu9J65C1Yg=="],
+
+    "vinxi/esbuild/@esbuild/darwin-x64": ["@esbuild/darwin-x64@0.25.12", "", { "os": "darwin", "cpu": "x64" }, "sha512-HQ9ka4Kx21qHXwtlTUVbKJOAnmG1ipXhdWTmNXiPzPfWKpXqASVcWdnf2bnL73wgjNrFXAa3yYvBSd9pzfEIpA=="],
+
+    "vinxi/esbuild/@esbuild/freebsd-arm64": ["@esbuild/freebsd-arm64@0.25.12", "", { "os": "freebsd", "cpu": "arm64" }, "sha512-gA0Bx759+7Jve03K1S0vkOu5Lg/85dou3EseOGUes8flVOGxbhDDh/iZaoek11Y8mtyKPGF3vP8XhnkDEAmzeg=="],
+
+    "vinxi/esbuild/@esbuild/freebsd-x64": ["@esbuild/freebsd-x64@0.25.12", "", { "os": "freebsd", "cpu": "x64" }, "sha512-TGbO26Yw2xsHzxtbVFGEXBFH0FRAP7gtcPE7P5yP7wGy7cXK2oO7RyOhL5NLiqTlBh47XhmIUXuGciXEqYFfBQ=="],
+
+    "vinxi/esbuild/@esbuild/linux-arm": ["@esbuild/linux-arm@0.25.12", "", { "os": "linux", "cpu": "arm" }, "sha512-lPDGyC1JPDou8kGcywY0YILzWlhhnRjdof3UlcoqYmS9El818LLfJJc3PXXgZHrHCAKs/Z2SeZtDJr5MrkxtOw=="],
+
+    "vinxi/esbuild/@esbuild/linux-arm64": ["@esbuild/linux-arm64@0.25.12", "", { "os": "linux", "cpu": "arm64" }, "sha512-8bwX7a8FghIgrupcxb4aUmYDLp8pX06rGh5HqDT7bB+8Rdells6mHvrFHHW2JAOPZUbnjUpKTLg6ECyzvas2AQ=="],
+
+    "vinxi/esbuild/@esbuild/linux-ia32": ["@esbuild/linux-ia32@0.25.12", "", { "os": "linux", "cpu": "ia32" }, "sha512-0y9KrdVnbMM2/vG8KfU0byhUN+EFCny9+8g202gYqSSVMonbsCfLjUO+rCci7pM0WBEtz+oK/PIwHkzxkyharA=="],
+
+    "vinxi/esbuild/@esbuild/linux-loong64": ["@esbuild/linux-loong64@0.25.12", "", { "os": "linux", "cpu": "none" }, "sha512-h///Lr5a9rib/v1GGqXVGzjL4TMvVTv+s1DPoxQdz7l/AYv6LDSxdIwzxkrPW438oUXiDtwM10o9PmwS/6Z0Ng=="],
+
+    "vinxi/esbuild/@esbuild/linux-mips64el": ["@esbuild/linux-mips64el@0.25.12", "", { "os": "linux", "cpu": "none" }, "sha512-iyRrM1Pzy9GFMDLsXn1iHUm18nhKnNMWscjmp4+hpafcZjrr2WbT//d20xaGljXDBYHqRcl8HnxbX6uaA/eGVw=="],
+
+    "vinxi/esbuild/@esbuild/linux-ppc64": ["@esbuild/linux-ppc64@0.25.12", "", { "os": "linux", "cpu": "ppc64" }, "sha512-9meM/lRXxMi5PSUqEXRCtVjEZBGwB7P/D4yT8UG/mwIdze2aV4Vo6U5gD3+RsoHXKkHCfSxZKzmDssVlRj1QQA=="],
+
+    "vinxi/esbuild/@esbuild/linux-riscv64": ["@esbuild/linux-riscv64@0.25.12", "", { "os": "linux", "cpu": "none" }, "sha512-Zr7KR4hgKUpWAwb1f3o5ygT04MzqVrGEGXGLnj15YQDJErYu/BGg+wmFlIDOdJp0PmB0lLvxFIOXZgFRrdjR0w=="],
+
+    "vinxi/esbuild/@esbuild/linux-s390x": ["@esbuild/linux-s390x@0.25.12", "", { "os": "linux", "cpu": "s390x" }, "sha512-MsKncOcgTNvdtiISc/jZs/Zf8d0cl/t3gYWX8J9ubBnVOwlk65UIEEvgBORTiljloIWnBzLs4qhzPkJcitIzIg=="],
+
+    "vinxi/esbuild/@esbuild/linux-x64": ["@esbuild/linux-x64@0.25.12", "", { "os": "linux", "cpu": "x64" }, "sha512-uqZMTLr/zR/ed4jIGnwSLkaHmPjOjJvnm6TVVitAa08SLS9Z0VM8wIRx7gWbJB5/J54YuIMInDquWyYvQLZkgw=="],
+
+    "vinxi/esbuild/@esbuild/netbsd-arm64": ["@esbuild/netbsd-arm64@0.25.12", "", { "os": "none", "cpu": "arm64" }, "sha512-xXwcTq4GhRM7J9A8Gv5boanHhRa/Q9KLVmcyXHCTaM4wKfIpWkdXiMog/KsnxzJ0A1+nD+zoecuzqPmCRyBGjg=="],
+
+    "vinxi/esbuild/@esbuild/netbsd-x64": ["@esbuild/netbsd-x64@0.25.12", "", { "os": "none", "cpu": "x64" }, "sha512-Ld5pTlzPy3YwGec4OuHh1aCVCRvOXdH8DgRjfDy/oumVovmuSzWfnSJg+VtakB9Cm0gxNO9BzWkj6mtO1FMXkQ=="],
+
+    "vinxi/esbuild/@esbuild/openbsd-arm64": ["@esbuild/openbsd-arm64@0.25.12", "", { "os": "openbsd", "cpu": "arm64" }, "sha512-fF96T6KsBo/pkQI950FARU9apGNTSlZGsv1jZBAlcLL1MLjLNIWPBkj5NlSz8aAzYKg+eNqknrUJ24QBybeR5A=="],
+
+    "vinxi/esbuild/@esbuild/openbsd-x64": ["@esbuild/openbsd-x64@0.25.12", "", { "os": "openbsd", "cpu": "x64" }, "sha512-MZyXUkZHjQxUvzK7rN8DJ3SRmrVrke8ZyRusHlP+kuwqTcfWLyqMOE3sScPPyeIXN/mDJIfGXvcMqCgYKekoQw=="],
+
+    "vinxi/esbuild/@esbuild/openharmony-arm64": ["@esbuild/openharmony-arm64@0.25.12", "", { "os": "none", "cpu": "arm64" }, "sha512-rm0YWsqUSRrjncSXGA7Zv78Nbnw4XL6/dzr20cyrQf7ZmRcsovpcRBdhD43Nuk3y7XIoW2OxMVvwuRvk9XdASg=="],
+
+    "vinxi/esbuild/@esbuild/sunos-x64": ["@esbuild/sunos-x64@0.25.12", "", { "os": "sunos", "cpu": "x64" }, "sha512-3wGSCDyuTHQUzt0nV7bocDy72r2lI33QL3gkDNGkod22EsYl04sMf0qLb8luNKTOmgF/eDEDP5BFNwoBKH441w=="],
+
+    "vinxi/esbuild/@esbuild/win32-arm64": ["@esbuild/win32-arm64@0.25.12", "", { "os": "win32", "cpu": "arm64" }, "sha512-rMmLrur64A7+DKlnSuwqUdRKyd3UE7oPJZmnljqEptesKM8wx9J8gx5u0+9Pq0fQQW8vqeKebwNXdfOyP+8Bsg=="],
+
+    "vinxi/esbuild/@esbuild/win32-ia32": ["@esbuild/win32-ia32@0.25.12", "", { "os": "win32", "cpu": "ia32" }, "sha512-HkqnmmBoCbCwxUKKNPBixiWDGCpQGVsrQfJoVGYLPT41XWF8lHuE5N6WhVia2n4o5QK5M4tYr21827fNhi4byQ=="],
+
+    "vinxi/esbuild/@esbuild/win32-x64": ["@esbuild/win32-x64@0.25.12", "", { "os": "win32", "cpu": "x64" }, "sha512-alJC0uCZpTFrSL0CCDjcgleBXPnCrEAhTBILpeAp7M/OFgoqtAetfBzX0xM00MUsVVPpVjlPuMbREqnZCXaTnA=="],
+
+    "vinxi/unenv/mime": ["mime@3.0.0", "", { "bin": { "mime": "cli.js" } }, "sha512-jSCU7/VB1loIWBZe14aEYHU/+1UMEHoaO7qxCOVJOw9GgH72VAWppxNcjU+x9a2k3GSIBXNKxXQFqRvvZ7vr3A=="],
+
     "wrangler/esbuild/@esbuild/aix-ppc64": ["@esbuild/aix-ppc64@0.27.3", "", { "os": "aix", "cpu": "ppc64" }, "sha512-9fJMTNFTWZMh5qwrBItuziu834eOCUcEqymSH7pY+zoMVEZg3gcPuBNxH1EvfVYe9h0x/Ptw8KBzv7qxb7l8dg=="],
 
     "wrangler/esbuild/@esbuild/android-arm": ["@esbuild/android-arm@0.27.3", "", { "os": "android", "cpu": "arm" }, "sha512-i5D1hPY7GIQmXlXhs2w8AWHhenb00+GxjxRncS2ZM7YNVGNfaMxgzSGuO8o8SJzRc/oZwU2bcScvVERk03QhzA=="],
@@ -1510,5 +2490,17 @@
     "wrangler/esbuild/@esbuild/win32-ia32": ["@esbuild/win32-ia32@0.27.3", "", { "os": "win32", "cpu": "ia32" }, "sha512-QLKSFeXNS8+tHW7tZpMtjlNb7HKau0QDpwm49u0vUp9y1WOF+PEzkU84y9GqYaAVW8aH8f3GcBck26jh54cX4Q=="],
 
     "wrangler/esbuild/@esbuild/win32-x64": ["@esbuild/win32-x64@0.27.3", "", { "os": "win32", "cpu": "x64" }, "sha512-4uJGhsxuptu3OcpVAzli+/gWusVGwZZHTlS63hh++ehExkVT8SgiEf7/uC/PclrPPkLhZqGgCTjd0VWLo6xMqA=="],
+
+    "wrap-ansi-cjs/string-width/emoji-regex": ["emoji-regex@8.0.0", "", {}, "sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A=="],
+
+    "@vercel/nft/glob/path-scurry/lru-cache": ["lru-cache@11.3.3", "", {}, "sha512-JvNw9Y81y33E+BEYPr0U7omo+U9AySnsMsEiXgwT6yqd31VQWTLNQqmT4ou5eqPFUrTfIDFta2wKhB1hyohtAQ=="],
+
+    "glob/minimatch/brace-expansion/balanced-match": ["balanced-match@1.0.2", "", {}, "sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw=="],
+
+    "nitropack/serve-static/send/fresh": ["fresh@2.0.0", "", {}, "sha512-Rx/WycZ60HOaqLKAi6cHRKKI7zxWbJ31MhntmtwMoaTeF7XFH9hhBp8vITaMidfljRQ6eYWCKkaTK+ykVJHP2A=="],
+
+    "nitropack/youch/@poppinss/dumper/supports-color": ["supports-color@10.2.2", "", {}, "sha512-SS+jx45GF1QjgEXQx4NJZV9ImqmO2NPz5FNsIHrsDjh2YsHnawpan7SNQ1o8NuhrbHZy9AZhIoCUiCeaW/C80g=="],
+
+    "readdir-glob/minimatch/brace-expansion/balanced-match": ["balanced-match@1.0.2", "", {}, "sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw=="],
   }
 }
diff --git a/packages/convex-backend/convex/_generated/api.d.ts b/packages/convex-backend/convex/_generated/api.d.ts
index d939f79..376d162 100644
--- a/packages/convex-backend/convex/_generated/api.d.ts
+++ b/packages/convex-backend/convex/_generated/api.d.ts
@@ -8,8 +8,10 @@
  * @module
  */
 
+import type * as commands from "../commands.js";
 import type * as conversations from "../conversations.js";
 import type * as files from "../files.js";
+import type * as harnessConfigRatings from "../harnessConfigRatings.js";
 import type * as harnesses from "../harnesses.js";
 import type * as mcpOAuthTokens from "../mcpOAuthTokens.js";
 import type * as messages from "../messages.js";
@@ -17,7 +19,9 @@ import type * as migrations from "../migrations.js";
 import type * as sandboxes from "../sandboxes.js";
 import type * as seed from "../seed.js";
 import type * as skills from "../skills.js";
+import type * as usage from "../usage.js";
 import type * as userSettings from "../userSettings.js";
+import type * as workspaces from "../workspaces.js";
 
 import type {
   ApiFromModules,
@@ -26,8 +30,10 @@ import type {
 } from "convex/server";
 
 declare const fullApi: ApiFromModules<{
+  commands: typeof commands;
   conversations: typeof conversations;
   files: typeof files;
+  harnessConfigRatings: typeof harnessConfigRatings;
   harnesses: typeof harnesses;
   mcpOAuthTokens: typeof mcpOAuthTokens;
   messages: typeof messages;
@@ -35,7 +41,9 @@ declare const fullApi: ApiFromModules<{
   sandboxes: typeof sandboxes;
   seed: typeof seed;
   skills: typeof skills;
+  usage: typeof usage;
   userSettings: typeof userSettings;
+  workspaces: typeof workspaces;
 }>;
 
 /**
diff --git a/packages/convex-backend/convex/commands.test.ts b/packages/convex-backend/convex/commands.test.ts
new file mode 100644
index 0000000..8e3b03c
--- /dev/null
+++ b/packages/convex-backend/convex/commands.test.ts
@@ -0,0 +1,89 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const baseCmd = (overrides: Partial<{
+	name: string;
+	server: string;
+	tool: string;
+	description: string;
+	parametersJson: string;
+}> = {}) => ({
+	name: "do-thing",
+	server: "srv",
+	tool: "tool",
+	description: "does a thing",
+	parametersJson: "{}",
+	...overrides,
+});
+
+describe("commands.upsert", () => {
+	it("requires authentication", async () => {
+		const { raw } = makeT();
+		await expect(
+			raw.mutation(api.commands.upsert, { commands: [baseCmd()] }),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("inserts new commands and returns their IDs in input order", async () => {
+		const a = makeT().asUser("user-a");
+		const ids = await a.mutation(api.commands.upsert, {
+			commands: [
+				baseCmd({ name: "a" }),
+				baseCmd({ name: "b" }),
+			],
+		});
+		expect(ids).toHaveLength(2);
+		const rows = await a.query(api.commands.getByIds, { ids });
+		expect(rows.map((r) => r?.name)).toEqual(["a", "b"]);
+	});
+
+	it("updates existing command rows when the name matches", async () => {
+		const a = makeT().asUser("user-a");
+		const [id] = await a.mutation(api.commands.upsert, {
+			commands: [baseCmd({ name: "dup", description: "v1" })],
+		});
+		const [id2] = await a.mutation(api.commands.upsert, {
+			commands: [baseCmd({ name: "dup", description: "v2" })],
+		});
+		expect(id).toBe(id2);
+		const [row] = await a.query(api.commands.getByIds, { ids: [id] });
+		expect(row?.description).toBe("v2");
+	});
+});
+
+describe("commands.getByIds", () => {
+	it("returns rows for valid IDs and filters out missing ones", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("user-a");
+		const [good] = await a.mutation(api.commands.upsert, {
+			commands: [baseCmd({ name: "g" })],
+		});
+
+		// Delete it directly through the harness to simulate a stale ID.
+		await raw.run(async (ctx) => {
+			await ctx.db.delete(good);
+		});
+
+		const rows = await a.query(api.commands.getByIds, { ids: [good] });
+		expect(rows).toEqual([]);
+	});
+
+	it("returns empty for an empty input array", async () => {
+		const a = makeT().asUser("user-a");
+		const rows = await a.query(api.commands.getByIds, { ids: [] });
+		expect(rows).toEqual([]);
+	});
+});
diff --git a/packages/convex-backend/convex/commands.ts b/packages/convex-backend/convex/commands.ts
new file mode 100644
index 0000000..7f0b3db
--- /dev/null
+++ b/packages/convex-backend/convex/commands.ts
@@ -0,0 +1,62 @@
+import { v } from "convex/values";
+import { mutation, query } from "./_generated/server";
+
+/**
+ * Upsert commands: insert new ones, update existing ones (matched by name + userId).
+ * Returns an array of command IDs in the same order as the input.
+ */
+export const upsert = mutation({
+	args: {
+		commands: v.array(
+			v.object({
+				name: v.string(),
+				server: v.string(),
+				tool: v.string(),
+				description: v.string(),
+				parametersJson: v.string(),
+			}),
+		),
+	},
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+
+		// Batch-lookup existing commands by name
+		const existing = await Promise.all(
+			args.commands.map((cmd) =>
+				ctx.db
+					.query("commands")
+					.withIndex("by_name", (q) => q.eq("name", cmd.name))
+					.unique(),
+			),
+		);
+
+		const ids = [];
+		for (let i = 0; i < args.commands.length; i++) {
+			const cmd = args.commands[i];
+			const found = existing[i];
+			if (found) {
+				await ctx.db.patch(found._id, {
+					server: cmd.server,
+					tool: cmd.tool,
+					description: cmd.description,
+					parametersJson: cmd.parametersJson,
+				});
+				ids.push(found._id);
+			} else {
+				const id = await ctx.db.insert("commands", cmd);
+				ids.push(id);
+			}
+		}
+		return ids;
+	},
+});
+
+/** Fetch commands by a list of IDs. */
+export const getByIds = query({
+	args: { ids: v.array(v.id("commands")) },
+	handler: async (ctx, args) => {
+		const results = await Promise.all(args.ids.map((id) => ctx.db.get(id)));
+		return results.filter(Boolean);
+	},
+});
diff --git a/packages/convex-backend/convex/conversations.test.ts b/packages/convex-backend/convex/conversations.test.ts
new file mode 100644
index 0000000..5f5c5ee
--- /dev/null
+++ b/packages/convex-backend/convex/conversations.test.ts
@@ -0,0 +1,307 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const baseHarness = (overrides = {}) => ({
+	name: "h",
+	model: "m",
+	status: "stopped" as const,
+	mcpServers: [],
+	skills: [],
+	...overrides,
+});
+
+describe("conversations.list", () => {
+	it("returns [] when unauthenticated", async () => {
+		const { raw } = makeT();
+		expect(await raw.query(api.conversations.list, {})).toEqual([]);
+	});
+
+	it("returns only the caller's conversations without a workspace", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const aHarness = await a.mutation(api.harnesses.create, baseHarness());
+		const bHarness = await b.mutation(api.harnesses.create, baseHarness());
+		await a.mutation(api.conversations.create, {
+			title: "a-1",
+			harnessId: aHarness,
+		});
+		await b.mutation(api.conversations.create, {
+			title: "b-1",
+			harnessId: bHarness,
+		});
+		const aRows = await a.query(api.conversations.list, {});
+		expect(aRows.map((c) => c.title)).toEqual(["a-1"]);
+	});
+
+	it("returns [] when the requested workspace isn't owned by the user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const wsId = await b.mutation(api.workspaces.create, { name: "w" });
+		expect(
+			await a.query(api.conversations.list, { workspaceId: wsId }),
+		).toEqual([]);
+	});
+
+	it("filters out conversations attached to ANY workspace when listing globally", async () => {
+		const a = makeT().asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const wsId = await a.mutation(api.workspaces.create, { name: "w" });
+		await a.mutation(api.conversations.create, {
+			title: "ws-conv",
+			harnessId: h,
+			workspaceId: wsId,
+		});
+		await a.mutation(api.conversations.create, {
+			title: "no-ws-conv",
+			harnessId: h,
+		});
+		const rows = await a.query(api.conversations.list, {});
+		expect(rows.map((c) => c.title)).toEqual(["no-ws-conv"]);
+	});
+});
+
+describe("conversations.create", () => {
+	it("requires authentication", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const harness = await a.mutation(api.harnesses.create, baseHarness());
+		await expect(
+			raw.mutation(api.conversations.create, {
+				title: "c",
+				harnessId: harness,
+			}),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("rejects a harness owned by a different user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const foreign = await b.mutation(api.harnesses.create, baseHarness());
+		await expect(
+			a.mutation(api.conversations.create, {
+				title: "c",
+				harnessId: foreign,
+			}),
+		).rejects.toThrow(/Harness not found/);
+	});
+
+	it("rejects a workspace whose harness differs from the requested harness", async () => {
+		const a = makeT().asUser("u-a");
+		const [h1, h2] = await Promise.all([
+			a.mutation(api.harnesses.create, baseHarness({ name: "h1" })),
+			a.mutation(api.harnesses.create, baseHarness({ name: "h2" })),
+		]);
+		const wsId = await a.mutation(api.workspaces.create, {
+			name: "w",
+			harnessId: h1,
+		});
+		await expect(
+			a.mutation(api.conversations.create, {
+				title: "x",
+				harnessId: h2,
+				workspaceId: wsId,
+			}),
+		).rejects.toThrow(/harness mismatch/);
+	});
+});
+
+describe("conversations.updateTitle", () => {
+	it("rejects when the caller doesn't own the conversation", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await expect(
+			b.mutation(api.conversations.updateTitle, { id, title: "x" }),
+		).rejects.toThrow(/Not found/);
+	});
+});
+
+describe("conversations.remove", () => {
+	it("cascades delete to messages in the conversation", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await raw.run(async (ctx) => {
+			await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "user",
+				content: "hi",
+				userId: "u-a",
+			});
+		});
+		await a.mutation(api.conversations.remove, { id });
+		await raw.run(async (ctx) => {
+			expect(await ctx.db.get(id)).toBeNull();
+			const msgs = await ctx.db
+				.query("messages")
+				.withIndex("by_conversation", (q) => q.eq("conversationId", id))
+				.collect();
+			expect(msgs).toEqual([]);
+		});
+	});
+});
+
+describe("conversations.fork", () => {
+	it("copies messages up-to-and-including the target", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		const msgIds = await raw.run(async (ctx) => {
+			const m1 = await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "user",
+				content: "one",
+				userId: "u-a",
+			});
+			const m2 = await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "assistant",
+				content: "two",
+				userId: "u-a",
+			});
+			const m3 = await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "user",
+				content: "three",
+				userId: "u-a",
+			});
+			return [m1, m2, m3];
+		});
+
+		const newConvId = await a.mutation(api.conversations.fork, {
+			conversationId: id,
+			upToMessageId: msgIds[1],
+		});
+		await raw.run(async (ctx) => {
+			const copied = await ctx.db
+				.query("messages")
+				.withIndex("by_conversation", (q) =>
+					q.eq("conversationId", newConvId),
+				)
+				.collect();
+			expect(copied.map((m) => m.content)).toEqual(["one", "two"]);
+		});
+	});
+
+	it("throws when the target message isn't in the conversation", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		const strayId = await raw.run(async (ctx) => {
+			const other = await ctx.db.insert("conversations", {
+				title: "other",
+				userId: "u-a",
+				lastMessageAt: Date.now(),
+			});
+			return await ctx.db.insert("messages", {
+				conversationId: other,
+				role: "user",
+				content: "stray",
+				userId: "u-a",
+			});
+		});
+		await expect(
+			a.mutation(api.conversations.fork, {
+				conversationId: id,
+				upToMessageId: strayId,
+			}),
+		).rejects.toThrow(/Message not found/);
+	});
+});
+
+describe("conversations.editForkAndSend", () => {
+	it("copies prefix messages and appends the edited user message", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await raw.run(async (ctx) => {
+			await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "user",
+				content: "one",
+				userId: "u-a",
+			});
+			await ctx.db.insert("messages", {
+				conversationId: id,
+				role: "assistant",
+				content: "two",
+				userId: "u-a",
+			});
+		});
+
+		const newId = await a.mutation(api.conversations.editForkAndSend, {
+			conversationId: id,
+			upToMessageCount: 1,
+			newContent: "EDITED",
+		});
+		await raw.run(async (ctx) => {
+			const msgs = await ctx.db
+				.query("messages")
+				.withIndex("by_conversation", (q) => q.eq("conversationId", newId))
+				.collect();
+			expect(msgs.map((m) => m.content)).toEqual(["one", "EDITED"]);
+		});
+	});
+
+	it("rejects an out-of-range upToMessageCount", async () => {
+		const a = makeT().asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const id = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await expect(
+			a.mutation(api.conversations.editForkAndSend, {
+				conversationId: id,
+				upToMessageCount: 999,
+				newContent: "x",
+			}),
+		).rejects.toThrow(/Invalid message count/);
+	});
+});
+
+describe("conversations.searchTitlesCount", () => {
+	it("returns 0 when unauthenticated", async () => {
+		const { raw } = makeT();
+		expect(
+			await raw.query(api.conversations.searchTitlesCount, { query: "x" }),
+		).toBe(0);
+	});
+});
diff --git a/packages/convex-backend/convex/conversations.ts b/packages/convex-backend/convex/conversations.ts
index 4b254af..cc2e88d 100644
--- a/packages/convex-backend/convex/conversations.ts
+++ b/packages/convex-backend/convex/conversations.ts
@@ -1,19 +1,34 @@
 import { v } from "convex/values";
-import { Id } from "./_generated/dataModel"
+import type { Id } from "./_generated/dataModel"
 import { mutation, query } from "./_generated/server";
 import { paginationOptsValidator } from "convex/server";
 
 export const list = query({
-	handler: async (ctx) => {
+	args: { workspaceId: v.optional(v.id("workspaces")) },
+	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) return [];
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) return [];
+			return await ctx.db
+				.query("conversations")
+				.withIndex("by_workspace_last_message", (q) =>
+					q.eq("workspaceId", args.workspaceId),
+				)
+				.order("desc")
+				.take(50);
+		}
 		return await ctx.db
 			.query("conversations")
 			.withIndex("by_user_last_message", (q) =>
 				q.eq("userId", identity.subject),
 			)
 			.order("desc")
-			.take(50);
+			.take(100)
+			.then((conversations) =>
+				conversations.filter((conversation) => !conversation.workspaceId).slice(0, 50),
+			);
 	},
 });
 
@@ -32,6 +47,7 @@ export const create = mutation({
 	args: {
 		title: v.string(),
 		harnessId: v.id("harnesses"),
+		workspaceId: v.optional(v.id("workspaces")),
 	},
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
@@ -41,10 +57,20 @@ export const create = mutation({
 		if (!harness || harness.userId !== identity.subject) {
 			throw new Error("Harness not found");
 		}
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) {
+				throw new Error("Workspace not found");
+			}
+			if (workspace.harnessId && workspace.harnessId !== args.harnessId) {
+				throw new Error("Workspace harness mismatch");
+			}
+		}
 
 		return await ctx.db.insert("conversations", {
 			title: args.title,
 			lastHarnessId: args.harnessId,
+			workspaceId: args.workspaceId,
 			userId: identity.subject,
 			lastMessageAt: Date.now(),
 		});
@@ -90,6 +116,7 @@ export const fork = mutation({
 		const newConvoId = await ctx.db.insert("conversations", {
 			title: `Fork of ${convo.title}`,
 			lastHarnessId: convo.lastHarnessId,
+			workspaceId: convo.workspaceId,
 			userId: identity.subject,
 			lastMessageAt: Date.now(),
 			forkedFromConversationId: args.conversationId,
@@ -101,6 +128,7 @@ export const fork = mutation({
 			await ctx.db.insert("messages", {
 				...rest,
 				conversationId: newConvoId,
+				workspaceId: convo.workspaceId,
 			});
 		}
 
@@ -179,6 +207,7 @@ export const editForkAndSend = mutation({
 		const newConvoId = await ctx.db.insert("conversations", {
 			title: convo.title,
 			lastHarnessId: args.harnessId ?? convo.lastHarnessId,
+			workspaceId: convo.workspaceId,
 			userId: identity.subject,
 			lastMessageAt: now,
 			editParentConversationId: parentId,
@@ -190,12 +219,14 @@ export const editForkAndSend = mutation({
 			await ctx.db.insert("messages", {
 				...rest,
 				conversationId: newConvoId,
+				workspaceId: convo.workspaceId,
 			});
 		}
 
 		// Insert the edited user message in the same transaction
 		await ctx.db.insert("messages", {
 			conversationId: newConvoId,
+			workspaceId: convo.workspaceId,
 			userId: identity.subject,
 			role: "user",
 			content: args.newContent,
@@ -228,32 +259,62 @@ export const remove = mutation({
 });
 
 export const searchTitles = query({
-	args: { query: v.string(), paginationOpts: paginationOptsValidator },
+	args: {
+		query: v.string(),
+		workspaceId: v.optional(v.id("workspaces")),
+		paginationOpts: paginationOptsValidator,
+	},
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity)
 			return { page: [], isDone: true, continueCursor: "" };
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) {
+				return { page: [], isDone: true, continueCursor: "" };
+			}
+		}
 		
 		return await ctx.db
 			.query("conversations")
 			.withSearchIndex("search_title", (q) =>
-				q.search("title", args.query).eq("userId", identity.subject)
+				args.workspaceId
+					? q
+							.search("title", args.query)
+							.eq("userId", identity.subject)
+							.eq("workspaceId", args.workspaceId)
+					: q.search("title", args.query).eq("userId", identity.subject)
 			)
 			.paginate(args.paginationOpts);
 	},
 });
 
 export const searchContent = query({
-	args: { query: v.string(), paginationOpts: paginationOptsValidator },
+	args: {
+		query: v.string(),
+		workspaceId: v.optional(v.id("workspaces")),
+		paginationOpts: paginationOptsValidator,
+	},
 	handler: async (ctx, args ) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity)
 			return { page: [], isDone: true, continueCursor: ""};
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) {
+				return { page: [], isDone: true, continueCursor: "" };
+			}
+		}
 
 		const result = await ctx.db
 			.query("messages")
 			.withSearchIndex("search_content", (q) =>
-				q.search("content", args.query).eq("userId", identity.subject)
+				args.workspaceId
+					? q
+							.search("content", args.query)
+							.eq("userId", identity.subject)
+							.eq("workspaceId", args.workspaceId)
+					: q.search("content", args.query).eq("userId", identity.subject)
 			)
 			.paginate(args.paginationOpts);
 		
@@ -309,15 +370,24 @@ export const searchContent = query({
 });
 
 export const searchTitlesCount = query({
-	args: { query: v.string() },
+	args: { query: v.string(), workspaceId: v.optional(v.id("workspaces")) },
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) return 0;
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) return 0;
+		}
 
 		const results = await ctx.db
 			.query("conversations")
 			.withSearchIndex("search_title", (q) =>
-				q.search("title", args.query).eq("userId", identity.subject)
+				args.workspaceId
+					? q
+							.search("title", args.query)
+							.eq("userId", identity.subject)
+							.eq("workspaceId", args.workspaceId)
+					: q.search("title", args.query).eq("userId", identity.subject)
 			)
 			.collect();
 		return results.length;
@@ -325,19 +395,28 @@ export const searchTitlesCount = query({
 });
 
 export const searchContentCount = query({
-	args: { query: v.string() },
+	args: { query: v.string(), workspaceId: v.optional(v.id("workspaces")) },
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) return 0;
+		if (args.workspaceId) {
+			const workspace = await ctx.db.get(args.workspaceId);
+			if (!workspace || workspace.userId !== identity.subject) return 0;
+		}
 
 		// Filter at the index level using userId, cap to avoid read limits
 		const results = await ctx.db
 			.query("messages")
 			.withSearchIndex("search_content", (q) =>
-				q.search("content", args.query).eq("userId", identity.subject)
+				args.workspaceId
+					? q
+							.search("content", args.query)
+							.eq("userId", identity.subject)
+							.eq("workspaceId", args.workspaceId)
+					: q.search("content", args.query).eq("userId", identity.subject)
 			)
 			.take(1000);
 
 		return results.length;
 	},
-});
\ No newline at end of file
+});
diff --git a/packages/convex-backend/convex/harnessConfigRatings.ts b/packages/convex-backend/convex/harnessConfigRatings.ts
new file mode 100644
index 0000000..b0c512f
--- /dev/null
+++ b/packages/convex-backend/convex/harnessConfigRatings.ts
@@ -0,0 +1,46 @@
+import { v } from "convex/values";
+import { mutation, query } from "./_generated/server";
+
+export const rate = mutation({
+	args: {
+		rating: v.union(v.literal("up"), v.literal("down")),
+		configSnapshot: v.object({
+			name: v.string(),
+			model: v.string(),
+			mcpIds: v.array(v.string()),
+		}),
+		conversationSnapshot: v.array(
+			v.object({
+				role: v.string(),
+				content: v.string(),
+			}),
+		),
+	},
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+		return await ctx.db.insert("harnessConfigRatings", {
+			userId: identity.subject,
+			rating: args.rating,
+			configSnapshot: args.configSnapshot,
+			conversationSnapshot: args.conversationSnapshot,
+			createdAt: Date.now(),
+		});
+	},
+});
+
+export const listByRating = query({
+	args: {
+		rating: v.union(v.literal("up"), v.literal("down")),
+	},
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return [];
+		return await ctx.db
+			.query("harnessConfigRatings")
+			.withIndex("by_user", (q) => q.eq("userId", identity.subject))
+			.filter((q) => q.eq(q.field("rating"), args.rating))
+			.order("desc")
+			.collect();
+	},
+});
diff --git a/packages/convex-backend/convex/harnesses.test.ts b/packages/convex-backend/convex/harnesses.test.ts
new file mode 100644
index 0000000..24088db
--- /dev/null
+++ b/packages/convex-backend/convex/harnesses.test.ts
@@ -0,0 +1,149 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const baseHarness = (overrides: Partial<{
+	name: string;
+	model: string;
+	status: "started" | "stopped" | "draft";
+	systemPrompt?: string;
+}> = {}) => ({
+	name: "test",
+	model: "claude-opus-4.7",
+	status: "stopped" as const,
+	mcpServers: [],
+	skills: [],
+	...overrides,
+});
+
+describe("harnesses.list / get", () => {
+	it("returns [] when unauthenticated", async () => {
+		const { raw } = makeT();
+		expect(await raw.query(api.harnesses.list, {})).toEqual([]);
+	});
+
+	it("scopes list to the caller's user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		await a.mutation(api.harnesses.create, baseHarness({ name: "a1" }));
+		await b.mutation(api.harnesses.create, baseHarness({ name: "b1" }));
+		const aList = await a.query(api.harnesses.list, {});
+		expect(aList.map((h) => h.name)).toEqual(["a1"]);
+	});
+
+	it("get returns null for a harness owned by someone else", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const id = await a.mutation(api.harnesses.create, baseHarness());
+		expect(await b.query(api.harnesses.get, { id })).toBeNull();
+	});
+});
+
+describe("harnesses.create", () => {
+	it("requires authentication", async () => {
+		const { raw } = makeT();
+		await expect(
+			raw.mutation(api.harnesses.create, baseHarness()),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("rejects system prompts longer than 4000 chars", async () => {
+		const a = makeT().asUser("u-a");
+		await expect(
+			a.mutation(
+				api.harnesses.create,
+				baseHarness({ systemPrompt: "x".repeat(4001) }),
+			),
+		).rejects.toThrow(/at most 4000 characters/);
+	});
+
+	it("accepts exactly 4000-char system prompts (boundary)", async () => {
+		const a = makeT().asUser("u-a");
+		const id = await a.mutation(
+			api.harnesses.create,
+			baseHarness({ systemPrompt: "x".repeat(4000) }),
+		);
+		const row = await a.query(api.harnesses.get, { id });
+		expect(row?.systemPrompt?.length).toBe(4000);
+	});
+});
+
+describe("harnesses.update", () => {
+	it("rejects oversize system prompt on update", async () => {
+		const a = makeT().asUser("u-a");
+		const id = await a.mutation(api.harnesses.create, baseHarness());
+		await expect(
+			a.mutation(api.harnesses.update, {
+				id,
+				systemPrompt: "y".repeat(4001),
+			}),
+		).rejects.toThrow(/at most 4000 characters/);
+	});
+
+	it("ignores undefined fields in patch", async () => {
+		const a = makeT().asUser("u-a");
+		const id = await a.mutation(
+			api.harnesses.create,
+			baseHarness({ name: "orig" }),
+		);
+		await a.mutation(api.harnesses.update, { id }); // no-op
+		const row = await a.query(api.harnesses.get, { id });
+		expect(row?.name).toBe("orig");
+	});
+
+	it("rejects updates from a different user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const id = await a.mutation(api.harnesses.create, baseHarness());
+		await expect(
+			b.mutation(api.harnesses.update, { id, name: "hijack" }),
+		).rejects.toThrow(/Not found/);
+	});
+});
+
+describe("harnesses.duplicate", () => {
+	it("clones with a 'Copy of' name prefix", async () => {
+		const a = makeT().asUser("u-a");
+		const id = await a.mutation(
+			api.harnesses.create,
+			baseHarness({ name: "base" }),
+		);
+		const dupId = await a.mutation(api.harnesses.duplicate, { id });
+		const dup = await a.query(api.harnesses.get, { id: dupId });
+		expect(dup?.name).toBe("Copy of base");
+	});
+});
+
+describe("harnesses.remove", () => {
+	it("deletes a row owned by the caller", async () => {
+		const a = makeT().asUser("u-a");
+		const id = await a.mutation(api.harnesses.create, baseHarness());
+		await a.mutation(api.harnesses.remove, { id });
+		expect(await a.query(api.harnesses.get, { id })).toBeNull();
+	});
+
+	it("rejects removing a row owned by someone else", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const id = await a.mutation(api.harnesses.create, baseHarness());
+		await expect(b.mutation(api.harnesses.remove, { id })).rejects.toThrow(
+			/Not found/,
+		);
+	});
+});
diff --git a/packages/convex-backend/convex/harnesses.ts b/packages/convex-backend/convex/harnesses.ts
index 43851e7..18720ac 100644
--- a/packages/convex-backend/convex/harnesses.ts
+++ b/packages/convex-backend/convex/harnesses.ts
@@ -1,6 +1,24 @@
 import { v } from "convex/values";
 import { mutation, query } from "./_generated/server";
 
+/** Match apps/web `SYSTEM_PROMPT_MAX_LENGTH` and FastAPI `HarnessConfig.system_prompt`. */
+const SYSTEM_PROMPT_MAX_CHARS = 4000;
+
+function assertSystemPromptLength(systemPrompt: string | undefined) {
+	if (systemPrompt !== undefined && systemPrompt.length > SYSTEM_PROMPT_MAX_CHARS) {
+		throw new Error(
+			`System prompt must be at most ${SYSTEM_PROMPT_MAX_CHARS} characters`,
+		);
+	}
+}
+const mcpServerValidator = v.object({
+	name: v.string(),
+	url: v.string(),
+	authType: v.union(v.literal("none"), v.literal("bearer"), v.literal("oauth"), v.literal("tiger_junction")),
+	authToken: v.optional(v.string()),
+	commandIds: v.optional(v.array(v.id("commands"))),
+});
+
 export const list = query({
 	handler: async (ctx) => {
 		const identity = await ctx.auth.getUserIdentity();
@@ -32,15 +50,9 @@ export const create = mutation({
 			v.literal("stopped"),
 			v.literal("draft"),
 		),
-		mcpServers: v.array(
-			v.object({
-				name: v.string(),
-				url: v.string(),
-				authType: v.union(v.literal("none"), v.literal("bearer"), v.literal("oauth"), v.literal("tiger_junction")),
-				authToken: v.optional(v.string()),
-			}),
-		),
+		mcpServers: v.array(mcpServerValidator),
 		skills: v.array(v.object({ name: v.string(), description: v.string() })),
+		systemPrompt: v.optional(v.string()),
 		sandboxEnabled: v.optional(v.boolean()),
 		sandboxConfig: v.optional(
 			v.object({
@@ -61,6 +73,7 @@ export const create = mutation({
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) throw new Error("Unauthenticated");
+		assertSystemPromptLength(args.systemPrompt);
 		return await ctx.db.insert("harnesses", {
 			...args,
 			userId: identity.subject,
@@ -81,17 +94,9 @@ export const update = mutation({
 				v.literal("draft"),
 			),
 		),
-		mcpServers: v.optional(
-			v.array(
-				v.object({
-					name: v.string(),
-					url: v.string(),
-					authType: v.union(v.literal("none"), v.literal("bearer"), v.literal("oauth"), v.literal("tiger_junction")),
-					authToken: v.optional(v.string()),
-				}),
-			),
-		),
+		mcpServers: v.optional(v.array(mcpServerValidator)),
 		skills: v.optional(v.array(v.object({ name: v.string(), description: v.string() }))),
+		systemPrompt: v.optional(v.string()),
 		suggestedPrompts: v.optional(v.array(v.string())),
 		sandboxEnabled: v.optional(v.boolean()),
 		sandboxId: v.optional(v.id("sandboxes")),
@@ -120,6 +125,7 @@ export const update = mutation({
 			throw new Error("Not found");
 		}
 		const { id, ...updates } = args;
+		assertSystemPromptLength(updates.systemPrompt);
 		const filtered = Object.fromEntries(
 			Object.entries(updates).filter(([, v]) => v !== undefined),
 		);
@@ -142,6 +148,7 @@ export const duplicate = mutation({
 			status: harness.status,
 			mcpServers: harness.mcpServers,
 			skills: harness.skills,
+			systemPrompt: harness.systemPrompt,
 			userId: identity.subject,
 			lastUsedAt: Date.now(),
 		});
diff --git a/packages/convex-backend/convex/mcpOAuthTokens.test.ts b/packages/convex-backend/convex/mcpOAuthTokens.test.ts
new file mode 100644
index 0000000..7a98ddb
--- /dev/null
+++ b/packages/convex-backend/convex/mcpOAuthTokens.test.ts
@@ -0,0 +1,142 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api, internal } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const SERVER = "https://mcp.example.com";
+
+describe("mcpOAuthTokens.getStatus", () => {
+	it("returns null when unauthenticated", async () => {
+		const { raw } = makeT();
+		expect(
+			await raw.query(api.mcpOAuthTokens.getStatus, { mcpServerUrl: SERVER }),
+		).toBeNull();
+	});
+
+	it("returns { connected: false } when no token row exists", async () => {
+		const a = makeT().asUser("u-a");
+		const res = await a.query(api.mcpOAuthTokens.getStatus, {
+			mcpServerUrl: SERVER,
+		});
+		expect(res).toEqual({ connected: false });
+	});
+
+	it("exposes expiresAt + scopes but not tokens once stored", async () => {
+		const { raw, asUser } = makeT();
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-a",
+			mcpServerUrl: SERVER,
+			accessToken: "secret-access",
+			refreshToken: "secret-refresh",
+			expiresAt: 9999,
+			scopes: "read write",
+			authServerUrl: "https://auth.example.com",
+		});
+		const res = await asUser("u-a").query(api.mcpOAuthTokens.getStatus, {
+			mcpServerUrl: SERVER,
+		});
+		expect(res).toEqual({
+			connected: true,
+			expiresAt: 9999,
+			scopes: "read write",
+		});
+		expect(JSON.stringify(res)).not.toContain("secret-access");
+	});
+});
+
+describe("mcpOAuthTokens.listStatuses", () => {
+	it("lists only tokens owned by the caller", async () => {
+		const { raw, asUser } = makeT();
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-a",
+			mcpServerUrl: SERVER,
+			accessToken: "t1",
+			expiresAt: 1,
+			scopes: "",
+			authServerUrl: "https://auth",
+		});
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-b",
+			mcpServerUrl: "https://other",
+			accessToken: "t2",
+			expiresAt: 2,
+			scopes: "",
+			authServerUrl: "https://auth",
+		});
+		const aList = await asUser("u-a").query(api.mcpOAuthTokens.listStatuses, {});
+		expect(aList).toEqual([
+			{ mcpServerUrl: SERVER, connected: true, expiresAt: 1, scopes: "" },
+		]);
+	});
+});
+
+describe("mcpOAuthTokens.storeTokens (internal)", () => {
+	it("patches an existing row rather than inserting a duplicate", async () => {
+		const { raw, asUser } = makeT();
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-a",
+			mcpServerUrl: SERVER,
+			accessToken: "old",
+			expiresAt: 1000,
+			scopes: "read",
+			authServerUrl: "https://auth",
+		});
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-a",
+			mcpServerUrl: SERVER,
+			accessToken: "new",
+			expiresAt: 2000,
+			scopes: "read write",
+			authServerUrl: "https://auth",
+		});
+		const res = await asUser("u-a").query(api.mcpOAuthTokens.listStatuses, {});
+		expect(res).toHaveLength(1);
+		expect(res[0].expiresAt).toBe(2000);
+	});
+});
+
+describe("mcpOAuthTokens.deleteTokens", () => {
+	it("requires authentication", async () => {
+		const { raw } = makeT();
+		await expect(
+			raw.mutation(api.mcpOAuthTokens.deleteTokens, { mcpServerUrl: SERVER }),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("removes the token row for the caller only", async () => {
+		const { raw, asUser } = makeT();
+		await raw.mutation(internal.mcpOAuthTokens.storeTokens, {
+			userId: "u-a",
+			mcpServerUrl: SERVER,
+			accessToken: "t",
+			expiresAt: 1,
+			scopes: "",
+			authServerUrl: "https://auth",
+		});
+		await asUser("u-a").mutation(api.mcpOAuthTokens.deleteTokens, {
+			mcpServerUrl: SERVER,
+		});
+		const res = await asUser("u-a").query(api.mcpOAuthTokens.getStatus, {
+			mcpServerUrl: SERVER,
+		});
+		expect(res).toEqual({ connected: false });
+	});
+
+	it("is a no-op when no matching token exists", async () => {
+		const a = makeT().asUser("u-a");
+		await expect(
+			a.mutation(api.mcpOAuthTokens.deleteTokens, { mcpServerUrl: SERVER }),
+		).resolves.not.toThrow();
+	});
+});
diff --git a/packages/convex-backend/convex/messages.test.ts b/packages/convex-backend/convex/messages.test.ts
new file mode 100644
index 0000000..8006d08
--- /dev/null
+++ b/packages/convex-backend/convex/messages.test.ts
@@ -0,0 +1,203 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api, internal } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const baseHarness = (o = {}) => ({
+	name: "h",
+	model: "m",
+	status: "stopped" as const,
+	mcpServers: [],
+	skills: [],
+	...o,
+});
+
+async function seedConversation(
+	t: ReturnType<typeof makeT>,
+	userId: string,
+) {
+	const u = t.asUser(userId);
+	const h = await u.mutation(api.harnesses.create, baseHarness());
+	const c = await u.mutation(api.conversations.create, {
+		title: "c",
+		harnessId: h,
+	});
+	return { user: u, conversationId: c, harnessId: h };
+}
+
+describe("messages.list", () => {
+	it("returns [] when unauthenticated", async () => {
+		const t = makeT();
+		const { conversationId } = await seedConversation(t, "u-a");
+		expect(
+			await t.raw.query(api.messages.list, { conversationId }),
+		).toEqual([]);
+	});
+
+	it("returns [] for a conversation owned by another user", async () => {
+		const t = makeT();
+		const { conversationId } = await seedConversation(t, "u-a");
+		const b = t.asUser("u-b");
+		expect(await b.query(api.messages.list, { conversationId })).toEqual([]);
+	});
+});
+
+describe("messages.send", () => {
+	it("requires authentication", async () => {
+		const t = makeT();
+		const { conversationId } = await seedConversation(t, "u-a");
+		await expect(
+			t.raw.mutation(api.messages.send, {
+				conversationId,
+				role: "user",
+				content: "hi",
+			}),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("rejects a conversation owned by a different user", async () => {
+		const t = makeT();
+		const { conversationId } = await seedConversation(t, "u-a");
+		const b = t.asUser("u-b");
+		await expect(
+			b.mutation(api.messages.send, {
+				conversationId,
+				role: "user",
+				content: "hi",
+			}),
+		).rejects.toThrow(/Not found/);
+	});
+
+	it("persists message content and bumps lastMessageAt", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		const before = await user.query(api.conversations.get, {
+			id: conversationId,
+		});
+		await new Promise((r) => setTimeout(r, 2));
+		await user.mutation(api.messages.send, {
+			conversationId,
+			role: "user",
+			content: "hi",
+		});
+		const after = await user.query(api.conversations.get, {
+			id: conversationId,
+		});
+		expect(after!.lastMessageAt).toBeGreaterThan(before!.lastMessageAt);
+		const msgs = await user.query(api.messages.list, { conversationId });
+		expect(msgs).toHaveLength(1);
+		expect(msgs[0].content).toBe("hi");
+	});
+
+	it("swaps lastHarnessId when harnessId is passed", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		const other = await user.mutation(
+			api.harnesses.create,
+			baseHarness({ name: "other" }),
+		);
+		await user.mutation(api.messages.send, {
+			conversationId,
+			role: "user",
+			content: "hi",
+			harnessId: other,
+		});
+		const convo = await user.query(api.conversations.get, {
+			id: conversationId,
+		});
+		expect(convo!.lastHarnessId).toBe(other);
+	});
+
+	it("omits attachments field when the array is empty", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		await user.mutation(api.messages.send, {
+			conversationId,
+			role: "user",
+			content: "hi",
+			attachments: [],
+		});
+		const [msg] = await user.query(api.messages.list, { conversationId });
+		expect(msg.attachments).toBeUndefined();
+	});
+});
+
+describe("messages.remove", () => {
+	it("rejects when the conversation isn't owned by the caller", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		const msgId = await user.mutation(api.messages.send, {
+			conversationId,
+			role: "user",
+			content: "hi",
+		});
+		const b = t.asUser("u-b");
+		await expect(
+			b.mutation(api.messages.remove, { id: msgId }),
+		).rejects.toThrow(/Not found/);
+	});
+});
+
+describe("messages.patchMessageUsage (internal)", () => {
+	it("patches usage on the last assistant message", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		await t.raw.run(async (ctx) => {
+			await ctx.db.insert("messages", {
+				conversationId,
+				role: "user",
+				content: "q",
+				userId: "u-a",
+			});
+			await ctx.db.insert("messages", {
+				conversationId,
+				role: "assistant",
+				content: "r",
+				userId: "u-a",
+			});
+		});
+		await t.raw.mutation(internal.messages.patchMessageUsage, {
+			conversationId,
+			usage: { promptTokens: 1, completionTokens: 2, totalTokens: 3 },
+			model: "claude-opus-4.7",
+		});
+		const msgs = await user.query(api.messages.list, { conversationId });
+		const last = msgs[msgs.length - 1];
+		expect(last.usage).toEqual({
+			promptTokens: 1,
+			completionTokens: 2,
+			totalTokens: 3,
+		});
+		expect(last.model).toBe("claude-opus-4.7");
+	});
+
+	it("does nothing when the last message is from the user", async () => {
+		const t = makeT();
+		const { user, conversationId } = await seedConversation(t, "u-a");
+		await t.raw.run(async (ctx) => {
+			await ctx.db.insert("messages", {
+				conversationId,
+				role: "user",
+				content: "lonely",
+				userId: "u-a",
+			});
+		});
+		await t.raw.mutation(internal.messages.patchMessageUsage, {
+			conversationId,
+			usage: { promptTokens: 1, completionTokens: 2, totalTokens: 3 },
+		});
+		const [msg] = await user.query(api.messages.list, { conversationId });
+		expect(msg.usage).toBeUndefined();
+	});
+});
diff --git a/packages/convex-backend/convex/messages.ts b/packages/convex-backend/convex/messages.ts
index 29b672e..c05367d 100644
--- a/packages/convex-backend/convex/messages.ts
+++ b/packages/convex-backend/convex/messages.ts
@@ -43,6 +43,7 @@ export const send = mutation({
 		}
 		const id = await ctx.db.insert("messages", {
 			conversationId: args.conversationId,
+			workspaceId: convo.workspaceId,
 			userId: identity.subject,
 			role: args.role,
 			content: args.content,
@@ -134,6 +135,7 @@ export const saveInterruptedMessage = mutation({
 
 		await ctx.db.insert("messages", {
 			conversationId: args.conversationId,
+			workspaceId: convo.workspaceId,
 			userId: identity.subject,
 			role: "assistant",
 			content: args.content,
@@ -199,6 +201,8 @@ export const saveAssistantMessage = internalMutation({
 			}),
 		),
 		model: v.optional(v.string()),
+		interrupted: v.optional(v.boolean()),
+		interruptionReason: v.optional(v.string()),
 	},
 	handler: async (ctx, args) => {
 		const convo = await ctx.db.get(args.conversationId);
@@ -206,6 +210,7 @@ export const saveAssistantMessage = internalMutation({
 
 		await ctx.db.insert("messages", {
 			conversationId: args.conversationId,
+			workspaceId: convo.workspaceId,
 			userId: convo.userId,
 			role: "assistant",
 			content: args.content,
@@ -218,6 +223,10 @@ export const saveAssistantMessage = internalMutation({
 				: {}),
 			...(args.usage ? { usage: args.usage } : {}),
 			...(args.model ? { model: args.model } : {}),
+			...(args.interrupted ? { interrupted: true } : {}),
+			...(args.interruptionReason
+				? { interruptionReason: args.interruptionReason }
+				: {}),
 		});
 
 		await ctx.db.patch(args.conversationId, {
diff --git a/packages/convex-backend/convex/sandboxes.ts b/packages/convex-backend/convex/sandboxes.ts
index 4270276..69246ab 100644
--- a/packages/convex-backend/convex/sandboxes.ts
+++ b/packages/convex-backend/convex/sandboxes.ts
@@ -1,4 +1,4 @@
-import { v } from "convex/values";
+import { ConvexError, v } from "convex/values";
 import {
 	internalMutation,
 	internalQuery,
@@ -6,6 +6,17 @@ import {
 	query,
 } from "./_generated/server";
 
+// Per-user sandbox cap. Mirrored on the frontend in
+// apps/web/src/lib/sandbox.ts (MAX_SANDBOXES_PER_USER) — keep them in sync.
+const MAX_SANDBOXES_PER_USER = 5;
+const SANDBOX_LIMIT_ERROR = "sandbox_limit_reached";
+
+const sandboxLimitError = () =>
+	new ConvexError({
+		code: SANDBOX_LIMIT_ERROR,
+		message: `You've reached the limit of ${MAX_SANDBOXES_PER_USER} sandboxes. Delete an existing sandbox before creating a new one.`,
+	});
+
 export const list = query({
 	handler: async (ctx) => {
 		const identity = await ctx.auth.getUserIdentity();
@@ -70,6 +81,13 @@ export const create = mutation({
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) throw new Error("Unauthenticated");
+		const existing = await ctx.db
+			.query("sandboxes")
+			.withIndex("by_user", (q) => q.eq("userId", identity.subject))
+			.collect();
+		if (existing.length >= MAX_SANDBOXES_PER_USER) {
+			throw sandboxLimitError();
+		}
 		const id = await ctx.db.insert("sandboxes", {
 			...args,
 			userId: identity.subject,
@@ -132,13 +150,25 @@ export const remove = mutation({
 		if (!sandbox || sandbox.userId !== identity.subject) {
 			throw new Error("Not found");
 		}
-		// Unlink from harness if linked
-		if (sandbox.harnessId) {
-			const harness = await ctx.db.get(sandbox.harnessId);
-			if (harness && harness.sandboxId === args.id) {
-				await ctx.db.patch(sandbox.harnessId, { sandboxId: undefined });
-			}
-		}
+		const userHarnesses = await ctx.db
+			.query("harnesses")
+			.withIndex("by_user", (q) => q.eq("userId", identity.subject))
+			.collect();
+		await Promise.all(
+			userHarnesses
+				.filter(
+					(harness) =>
+						harness.sandboxId === args.id ||
+						harness.daytonaSandboxId === sandbox.daytonaSandboxId,
+				)
+				.map((harness) =>
+					ctx.db.patch(harness._id, {
+						sandboxEnabled: false,
+						sandboxId: undefined,
+						daytonaSandboxId: undefined,
+					}),
+				),
+		);
 		await ctx.db.delete(args.id);
 	},
 });
@@ -172,6 +202,13 @@ export const createInternal = internalMutation({
 	},
 	handler: async (ctx, args) => {
 		const { harnessId, ...rest } = args;
+		const existing = await ctx.db
+			.query("sandboxes")
+			.withIndex("by_user", (q) => q.eq("userId", args.userId))
+			.collect();
+		if (existing.length >= MAX_SANDBOXES_PER_USER) {
+			throw sandboxLimitError();
+		}
 		const id = await ctx.db.insert("sandboxes", {
 			...rest,
 			harnessId,
diff --git a/packages/convex-backend/convex/schema.ts b/packages/convex-backend/convex/schema.ts
index 150b3c8..aecf0b1 100644
--- a/packages/convex-backend/convex/schema.ts
+++ b/packages/convex-backend/convex/schema.ts
@@ -16,9 +16,11 @@ export default defineSchema({
 				url: v.string(),
 				authType: v.union(v.literal("none"), v.literal("bearer"), v.literal("oauth"), v.literal("tiger_junction")),
 				authToken: v.optional(v.string()),
+				commandIds: v.optional(v.array(v.id("commands"))),
 			}),
 		),
 		skills: v.array(v.object({ name: v.string(), description: v.string() })),
+		systemPrompt: v.optional(v.string()),
 		suggestedPrompts: v.optional(v.array(v.string())),
 		userId: v.string(),
 		lastUsedAt: v.optional(v.number()),
@@ -43,6 +45,14 @@ export default defineSchema({
 		),
 	}).index("by_user", ["userId"]),
 
+	commands: defineTable({
+		name: v.string(),
+		server: v.string(),
+		tool: v.string(),
+		description: v.string(),
+		parametersJson: v.string(),
+	}).index("by_name", ["name"]),
+
 	sandboxes: defineTable({
 		userId: v.string(),
 		harnessId: v.optional(v.id("harnesses")),
@@ -75,25 +85,41 @@ export default defineSchema({
 		.index("by_harness", ["harnessId"])
 		.index("by_daytona_id", ["daytonaSandboxId"]),
 
+	workspaces: defineTable({
+		userId: v.string(),
+		name: v.string(),
+		harnessId: v.optional(v.id("harnesses")),
+		sandboxId: v.optional(v.id("sandboxes")),
+		color: v.optional(v.string()),
+		createdAt: v.number(),
+		lastUsedAt: v.number(),
+	})
+		.index("by_user", ["userId"])
+		.index("by_user_last_used", ["userId", "lastUsedAt"]),
+
 	conversations: defineTable({
 		title: v.string(),
 		lastHarnessId: v.optional(v.id("harnesses")),
+		workspaceId: v.optional(v.id("workspaces")),
 		userId: v.string(),
 		lastMessageAt: v.number(),
 		forkedFromConversationId: v.optional(v.id("conversations")),
 		forkedAtMessageCount: v.optional(v.number()),
 		editParentConversationId: v.optional(v.id("conversations")),
 		editParentMessageCount: v.optional(v.number()),
+		isCreationSession: v.optional(v.boolean()),
 	})
 		.index("by_user", ["userId"])
 		.index("by_user_last_message", ["userId", "lastMessageAt"])
+		.index("by_workspace_last_message", ["workspaceId", "lastMessageAt"])
 		.searchIndex("search_title", {
 			searchField: "title",
-			filterFields: ["userId"],
+			filterFields: ["userId", "workspaceId"],
 		}),
 
 	messages: defineTable({
 		conversationId: v.id("conversations"),
+		workspaceId: v.optional(v.id("workspaces")),
 		userId: v.optional(v.string()),
 		role: v.union(v.literal("user"), v.literal("assistant")),
 		content: v.string(),
@@ -134,6 +160,7 @@ export default defineSchema({
 		),
 		model: v.optional(v.string()),
 		interrupted: v.optional(v.boolean()),
+		interruptionReason: v.optional(v.string()),
 		attachments: v.optional(
 			v.array(
 				v.object({
@@ -148,7 +175,7 @@ export default defineSchema({
 		.index("by_conversation", ["conversationId"])
 		.searchIndex("search_content", {
 			searchField: "content",
-			filterFields: ["conversationId", "userId"]
+			filterFields: ["conversationId", "userId", "workspaceId"]
 		}),
 
 
@@ -184,6 +211,10 @@ export default defineSchema({
 		.searchIndex("search_skills", {
 			searchField: "skillId",
 			filterFields: [],
+		})
+		.searchIndex("search_skills_description", {
+			searchField: "description",
+			filterFields: [],
 		}),
 
 	userSettings: defineTable({
@@ -201,5 +232,74 @@ export default defineSchema({
 		modelSelectorMode: v.optional(
 			v.union(v.literal("session"), v.literal("harness")),
 		),
+		// Control whether or not we are in basic models or workspaces modes
+		workspacesMode: v.optional(
+			v.union(
+				v.literal("basic"),
+				v.literal("workspaces")
+			)
+		),
 	}).index("by_user", ["userId"]),
+
+	usageBudgets: defineTable({
+		userId: v.string(),
+		periodType: v.union(v.literal("daily"), v.literal("weekly")),
+		period: v.string(), // "2026-04-08" (daily) or "2026-W15" (weekly)
+		totalCostUsed: v.number(),
+		costLimit: v.number(),
+		totalTokensUsed: v.number(),
+		perModelUsage: v.array(
+			v.object({
+				model: v.string(),
+				tokensUsed: v.number(),
+				costUsed: v.number(),
+			}),
+		),
+		perHarnessUsage: v.array(
+			v.object({
+				harnessId: v.string(),
+				harnessName: v.string(),
+				tokensUsed: v.number(),
+				costUsed: v.number(),
+			}),
+		),
+		updatedAt: v.number(),
+	}).index("by_user_period", ["userId", "periodType", "period"]),
+
+	harnessConfigRatings: defineTable({
+		userId: v.string(),
+		rating: v.union(v.literal("up"), v.literal("down")),
+		configSnapshot: v.object({
+			name: v.string(),
+			model: v.string(),
+			mcpIds: v.array(v.string()),
+		}),
+		conversationSnapshot: v.array(
+			v.object({
+				role: v.string(),
+				content: v.string(),
+			}),
+		),
+		createdAt: v.number(),
+	})
+		.index("by_user", ["userId"])
+		.index("by_rating", ["rating"]),
+
+	usageLedger: defineTable({
+		userId: v.string(),
+		conversationId: v.id("conversations"),
+		harnessId: v.optional(v.string()),
+		harnessName: v.optional(v.string()),
+		model: v.string(),
+		promptTokens: v.number(),
+		completionTokens: v.number(),
+		totalTokens: v.number(),
+		cost: v.number(),
+		day: v.string(),  // "2026-04-08"
+		week: v.string(), // "2026-W15"
+		recordedAt: v.number(),
+	})
+		.index("by_user_day", ["userId", "day"])
+		.index("by_user_week", ["userId", "week"])
+		.index("by_conversation", ["conversationId"]),
 });
diff --git a/packages/convex-backend/convex/seed.ts b/packages/convex-backend/convex/seed.ts
index fa07aeb..74977ba 100644
--- a/packages/convex-backend/convex/seed.ts
+++ b/packages/convex-backend/convex/seed.ts
@@ -1,4 +1,5 @@
 import { v } from "convex/values";
+import type { Id } from "./_generated/dataModel";
 import { internalMutation } from "./_generated/server";
 
 export const seedAll = internalMutation({
@@ -16,7 +17,7 @@ export const seedAll = internalMutation({
 
 		const h1 = await ctx.db.insert("harnesses", {
 			name: "Coding Assistant",
-			model: "claude-sonnet-4",
+			model: "claude-sonnet-4.6",
 			status: "started",
 			mcpServers: [],
 			skills: [
@@ -30,7 +31,7 @@ export const seedAll = internalMutation({
 
 		const h2 = await ctx.db.insert("harnesses", {
 			name: "Research Agent",
-			model: "gpt-4o",
+			model: "gpt-5.4",
 			status: "started",
 			mcpServers: [],
 			skills: [
@@ -43,7 +44,7 @@ export const seedAll = internalMutation({
 
 		await ctx.db.insert("harnesses", {
 			name: "DevOps Helper",
-			model: "gemini-2.5-pro",
+			model: "gemini-3.1-pro",
 			status: "stopped",
 			mcpServers: [],
 			skills: [{ name: "devops", description: "DevOps and infrastructure" }],
@@ -53,7 +54,7 @@ export const seedAll = internalMutation({
 
 		await ctx.db.insert("harnesses", {
 			name: "Data Pipeline",
-			model: "gpt-4o",
+			model: "gpt-5.4",
 			status: "stopped",
 			mcpServers: [],
 			skills: [{ name: "analysis", description: "Data analysis" }],
@@ -63,7 +64,7 @@ export const seedAll = internalMutation({
 
 		await ctx.db.insert("harnesses", {
 			name: "Content Writer",
-			model: "claude-opus-4",
+			model: "claude-opus-4.7",
 			status: "draft",
 			mcpServers: [],
 			skills: [
@@ -95,7 +96,8 @@ export const seedAll = internalMutation({
 		await ctx.db.insert("messages", {
 			conversationId: c1,
 			role: "user",
-			content: "Yes, start with the JWT utility. We're using ES modules and TypeScript.",
+			content:
+				"Yes, start with the JWT utility. We're using ES modules and TypeScript.",
 		});
 		await ctx.db.insert("messages", {
 			conversationId: c1,
@@ -114,7 +116,8 @@ export const seedAll = internalMutation({
 		await ctx.db.insert("messages", {
 			conversationId: c2,
 			role: "user",
-			content: "Write comprehensive unit tests for our REST API endpoints using vitest.",
+			content:
+				"Write comprehensive unit tests for our REST API endpoints using vitest.",
 		});
 		await ctx.db.insert("messages", {
 			conversationId: c2,
@@ -140,7 +143,7 @@ export const seedAll = internalMutation({
 			conversationId: c3,
 			role: "assistant",
 			content:
-				"The 30-second timeout is almost certainly nginx's `proxy_read_timeout` default. Add these directives to your nginx location block:\n\n```nginx\nlocation /ws {\n    proxy_pass http://backend;\n    proxy_http_version 1.1;\n    proxy_set_header Upgrade $http_upgrade;\n    proxy_set_header Connection \"upgrade\";\n    proxy_read_timeout 86400s;\n    proxy_send_timeout 86400s;\n}\n```\n\nAlso implement ping/pong on the server side — send a ping frame every 25 seconds to keep the connection alive through any intermediary proxies.",
+				'The 30-second timeout is almost certainly nginx\'s `proxy_read_timeout` default. Add these directives to your nginx location block:\n\n```nginx\nlocation /ws {\n    proxy_pass http://backend;\n    proxy_http_version 1.1;\n    proxy_set_header Upgrade $http_upgrade;\n    proxy_set_header Connection "upgrade";\n    proxy_read_timeout 86400s;\n    proxy_send_timeout 86400s;\n}\n```\n\nAlso implement ping/pong on the server side — send a ping frame every 25 seconds to keep the connection alive through any intermediary proxies.',
 		});
 
 		const c4 = await ctx.db.insert("conversations", {
@@ -153,7 +156,8 @@ export const seedAll = internalMutation({
 		await ctx.db.insert("messages", {
 			conversationId: c4,
 			role: "user",
-			content: "Can you explain how Kubernetes networking works at a high level?",
+			content:
+				"Can you explain how Kubernetes networking works at a high level?",
 		});
 		await ctx.db.insert("messages", {
 			conversationId: c4,
@@ -183,9 +187,7 @@ export const clearAll = internalMutation({
 		for (const convo of conversations) {
 			const messages = await ctx.db
 				.query("messages")
-				.withIndex("by_conversation", (q) =>
-					q.eq("conversationId", convo._id),
-				)
+				.withIndex("by_conversation", (q) => q.eq("conversationId", convo._id))
 				.collect();
 			for (const msg of messages) {
 				await ctx.db.delete(msg._id);
@@ -230,9 +232,7 @@ export const clearAndReseed = internalMutation({
 		for (const convo of conversations) {
 			const messages = await ctx.db
 				.query("messages")
-				.withIndex("by_conversation", (q) =>
-					q.eq("conversationId", convo._id),
-				)
+				.withIndex("by_conversation", (q) => q.eq("conversationId", convo._id))
 				.collect();
 			for (const msg of messages) {
 				await ctx.db.delete(msg._id);
@@ -254,7 +254,7 @@ export const clearAndReseed = internalMutation({
 		// Re-run seed inline (can't call other mutations from a mutation)
 		const h1 = await ctx.db.insert("harnesses", {
 			name: "Coding Assistant",
-			model: "claude-sonnet-4",
+			model: "claude-sonnet-4.6",
 			status: "started",
 			mcpServers: [],
 			skills: [
@@ -268,7 +268,7 @@ export const clearAndReseed = internalMutation({
 
 		await ctx.db.insert("harnesses", {
 			name: "Research Agent",
-			model: "gpt-4o",
+			model: "gpt-5.4",
 			status: "started",
 			mcpServers: [],
 			skills: [
@@ -281,7 +281,7 @@ export const clearAndReseed = internalMutation({
 
 		await ctx.db.insert("harnesses", {
 			name: "DevOps Helper",
-			model: "gemini-2.5-pro",
+			model: "gemini-3.1-pro",
 			status: "stopped",
 			mcpServers: [],
 			skills: [{ name: "devops", description: "DevOps and infrastructure" }],
@@ -312,3 +312,1079 @@ export const clearAndReseed = internalMutation({
 		return { harnesses: 3, conversations: 1, messages: 2 };
 	},
 });
+
+// Demo seeding for manual account testing. Pure append — does not delete
+// existing data. Run `clearAll` first if you want a fresh slate. Does not
+// create sandboxes (those live in Daytona and need API-side provisioning);
+// the harnesses set sandboxEnabled=false and leave sandboxId unset.
+//
+// Invoke via:
+//   CONVEX_DEPLOY_KEY=... bunx convex run seed:seedDemoForUser \
+//     '{"userId":"user_..."}'
+export const seedDemoForUser = internalMutation({
+	args: { userId: v.string() },
+	handler: async (ctx, { userId }) => {
+		const now = Date.now();
+		const HOUR = 60 * 60 * 1000;
+
+		// MCP server presets — kept in sync with apps/web/src/lib/mcp.ts.
+		// Auth tokens are not seeded; OAuth flows resolve on first use.
+		const MCP = {
+			github: {
+				name: "GitHub",
+				url: "https://api.githubcopilot.com/mcp/",
+				authType: "oauth" as const,
+			},
+			notion: {
+				name: "Notion",
+				url: "https://mcp.notion.com/mcp",
+				authType: "oauth" as const,
+			},
+			linear: {
+				name: "Linear",
+				url: "https://mcp.linear.app/mcp",
+				authType: "oauth" as const,
+			},
+			exa: {
+				name: "Exa",
+				url: "https://mcp.exa.ai/mcp",
+				authType: "none" as const,
+			},
+			context7: {
+				name: "Context7",
+				url: "https://mcp.context7.com/mcp",
+				authType: "none" as const,
+			},
+			awsKnowledge: {
+				name: "AWS Knowledge",
+				url: "https://knowledge-mcp.global.api.aws",
+				authType: "none" as const,
+			},
+			princetonCourses: {
+				name: "Princeton Courses",
+				url: "https://junction-engine.tigerapps.org/princetoncourses/mcp",
+				authType: "tiger_junction" as const,
+			},
+			tigerJunction: {
+				name: "TigerJunction",
+				url: "https://junction-engine.tigerapps.org/junction/mcp",
+				authType: "tiger_junction" as const,
+			},
+			tigerPath: {
+				name: "TigerPath",
+				url: "https://junction-engine.tigerapps.org/path/mcp",
+				authType: "tiger_junction" as const,
+			},
+			tigerSnatch: {
+				name: "TigerSnatch",
+				url: "https://junction-engine.tigerapps.org/snatch/mcp",
+				authType: "tiger_junction" as const,
+			},
+		};
+
+		// Eight curated harnesses spanning the requested model lineup
+		// (Sonnet 4.6, Opus 4.7, Opus 4.7 Thinking, Gemini 3.1 Flash Lite).
+		// Returned in the order they're inserted so workspaces below can
+		// reference them by index.
+		const harnessSpecs = [
+			{
+				name: "Coding Copilot",
+				model: "claude-sonnet-4.6",
+				status: "started" as const,
+				mcpServers: [MCP.github, MCP.context7],
+				skills: [
+					{ name: "coding", description: "General coding assistance" },
+					{ name: "debugging", description: "Debugging and troubleshooting" },
+				],
+				systemPrompt:
+					"You are a precise software engineering assistant. Prefer reading code and verifying with tools over guessing. Keep responses tight and reference file paths with line numbers when useful.",
+				suggestedPrompts: [
+					"Review my recent commits and flag anything risky",
+					"Find every TODO/FIXME in this repo and group them by file",
+					"Refactor the auth middleware to use JWT with refresh tokens",
+				],
+				lastUsedAt: now - 1 * HOUR,
+			},
+			{
+				name: "Frontend Designer",
+				model: "claude-opus-4.7-thinking",
+				status: "started" as const,
+				mcpServers: [MCP.github, MCP.context7],
+				skills: [
+					{
+						name: "design",
+						description: "UI/UX patterns and visual polish",
+					},
+					{ name: "frontend", description: "React, Tailwind, and CSS" },
+				],
+				systemPrompt:
+					"You design distinctive, production-grade frontend interfaces. Think hard about typography, layout rhythm, and color before writing code. Prefer concrete component implementations over abstract suggestions.",
+				suggestedPrompts: [
+					"Design a pricing page that doesn't feel generic",
+					"Audit my Tailwind config for inconsistent spacing scale",
+					"Convert this Figma frame into a React component",
+				],
+				lastUsedAt: now - 2 * HOUR,
+			},
+			{
+				name: "Research Analyst",
+				model: "claude-opus-4.7",
+				status: "started" as const,
+				mcpServers: [MCP.exa, MCP.context7, MCP.awsKnowledge],
+				skills: [
+					{
+						name: "research",
+						description: "Deep research with citations",
+					},
+					{ name: "writing", description: "Long-form technical writing" },
+				],
+				systemPrompt:
+					"You are a careful research analyst. Search the web for primary sources, cite each non-trivial claim, and flag where evidence conflicts. Prefer concrete data over vibes.",
+				suggestedPrompts: [
+					"Compare the latest pricing across major LLM providers",
+					"Summarize the state-of-the-art in retrieval-augmented generation",
+					"Research AWS Bedrock vs. self-hosting Llama 3 for our workload",
+				],
+				lastUsedAt: now - 3 * HOUR,
+			},
+			{
+				name: "Quick Search",
+				model: "gemini-3.1-flash-lite",
+				status: "started" as const,
+				mcpServers: [MCP.exa, MCP.context7],
+				skills: [],
+				systemPrompt:
+					"You answer quick factual questions with one or two sentences. Use search tools when the answer might be time-sensitive. Avoid preambles.",
+				suggestedPrompts: [
+					"What changed in the latest Bun release?",
+					"Look up the current AWS us-east-1 status",
+					"Find the docs for Convex internalMutation",
+				],
+				lastUsedAt: now - 4 * HOUR,
+			},
+			{
+				name: "DevOps Sidekick",
+				model: "claude-sonnet-4.6",
+				status: "started" as const,
+				mcpServers: [MCP.github, MCP.awsKnowledge],
+				skills: [
+					{
+						name: "devops",
+						description: "Infrastructure, deploys, and incidents",
+					},
+				],
+				systemPrompt:
+					"You are an SRE-minded assistant. Diagnose root causes before suggesting fixes, prefer reversible operations, and call out blast radius for any destructive action.",
+				suggestedPrompts: [
+					"Walk me through canarying a new ECS service",
+					"Why might my Lambda be throttled in us-east-1?",
+					"Audit my GitHub Actions workflow for caching wins",
+				],
+				lastUsedAt: now - 5 * HOUR,
+			},
+			{
+				name: "Princeton Course Planner",
+				model: "claude-sonnet-4.6",
+				status: "started" as const,
+				mcpServers: [
+					MCP.princetonCourses,
+					MCP.tigerJunction,
+					MCP.tigerPath,
+					MCP.tigerSnatch,
+				],
+				skills: [],
+				systemPrompt:
+					"You help Princeton students plan their semester. Pull live registrar data via the TigerApps MCPs, surface scheduling conflicts, and give honest takes from course evaluations.",
+				suggestedPrompts: [
+					"Find me 4 COS electives that don't conflict on Tue/Thu mornings",
+					"Plan a 4-year track for the SML certificate",
+					"Show enrollment trends for COS 333",
+				],
+				lastUsedAt: now - 6 * HOUR,
+			},
+			{
+				name: "Project Tracker",
+				model: "claude-opus-4.7",
+				status: "started" as const,
+				mcpServers: [MCP.linear, MCP.notion, MCP.github],
+				skills: [
+					{
+						name: "project-management",
+						description: "Issue tracking and standups",
+					},
+				],
+				systemPrompt:
+					"You triage work across Linear, Notion, and GitHub. Connect related issues, surface blockers, and draft concise updates suitable for standups.",
+				suggestedPrompts: [
+					"Summarize what shipped this week across our repos",
+					"Draft a standup update from my open Linear issues",
+					"Find Notion docs that reference the inference-pipeline epic",
+				],
+				lastUsedAt: now - 7 * HOUR,
+			},
+			{
+				name: "Notion Scribe",
+				model: "gemini-3.1-flash-lite",
+				status: "started" as const,
+				mcpServers: [MCP.notion],
+				skills: [
+					{
+						name: "writing",
+						description: "Doc capture and cleanup",
+					},
+				],
+				systemPrompt:
+					"You capture meeting notes and clean up Notion pages. Be terse, structured, and faithful to source material — never invent facts.",
+				suggestedPrompts: [
+					"Reformat this meeting transcript into action items",
+					"Tidy up the heading hierarchy on my onboarding doc",
+					"Summarize the last week of changes in our team page",
+				],
+				lastUsedAt: now - 8 * HOUR,
+			},
+		];
+
+		const harnessIds: Id<"harnesses">[] = [];
+		for (const spec of harnessSpecs) {
+			const id = await ctx.db.insert("harnesses", {
+				name: spec.name,
+				model: spec.model,
+				status: spec.status,
+				mcpServers: spec.mcpServers.map((s) => ({
+					name: s.name,
+					url: s.url,
+					authType: s.authType,
+				})),
+				skills: spec.skills,
+				systemPrompt: spec.systemPrompt,
+				suggestedPrompts: spec.suggestedPrompts,
+				userId,
+				lastUsedAt: spec.lastUsedAt,
+				sandboxEnabled: false,
+			});
+			harnessIds.push(id);
+		}
+
+		// Eight workspaces — one per color in WORKSPACE_COLORS, each linked
+		// to a harness by index so the user lands in a usable state.
+		// Order matches harnessSpecs above so colors line up sensibly.
+		const workspaceSpecs: Array<{ name: string; color: string }> = [
+			{ name: "Coding", color: "sky" },
+			{ name: "Design Lab", color: "rose" },
+			{ name: "Research", color: "lilac" },
+			{ name: "Quick Lookups", color: "butter" },
+			{ name: "Infra", color: "sand" },
+			{ name: "Course Planning", color: "peach" },
+			{ name: "Project Tracking", color: "mint" },
+			{ name: "Writing", color: "blush" },
+		];
+
+		for (let i = 0; i < workspaceSpecs.length; i++) {
+			const ws = workspaceSpecs[i];
+			const harnessId = harnessIds[i];
+			const lastUsedAt = now - (i + 1) * HOUR;
+			await ctx.db.insert("workspaces", {
+				userId,
+				name: ws.name,
+				color: ws.color,
+				harnessId,
+				createdAt: now,
+				lastUsedAt,
+			});
+		}
+
+		return {
+			harnesses: harnessIds.length,
+			workspaces: workspaceSpecs.length,
+			sandboxesSkipped:
+				"Sandboxes not seeded — provision manually via Daytona, then attach via workspaces:update or harnesses:setSandbox.",
+		};
+	},
+});
+
+// ---------------------------------------------------------------------------
+// Mock conversation seed
+// ---------------------------------------------------------------------------
+//
+// Populates a user account with realistic chat history that exercises every
+// part of the message renderer: text, reasoning blocks (thinking models),
+// inline tool_call parts with arguments + results, the legacy `toolCalls`
+// summary field, per-message `usage`, an interrupted message, and varied
+// `lastMessageAt` so the conversation list looks lived-in.
+//
+// Depends on `seedDemoForUser` having been run first — this seed reads the
+// harnesses + workspaces it created and attaches conversations to them.
+// If the expected harnesses aren't found, it bails with a clear message.
+//
+// Pure append. Run `seed:clearAll` first if you want a fresh slate.
+//
+// Invoke via:
+//   CONVEX_DEPLOY_KEY=... bunx convex run seed:seedConversationsForUser \
+//     '{"userId":"user_..."}'
+
+type SeededToolCallPart = {
+	type: "tool_call";
+	tool: string;
+	arguments: unknown;
+	call_id: string;
+	result: string;
+};
+
+type SeededMessagePart =
+	| { type: "text"; content: string }
+	| { type: "reasoning"; content: string }
+	| SeededToolCallPart;
+
+type SeededUsage = {
+	promptTokens: number;
+	completionTokens: number;
+	totalTokens: number;
+	cost: number;
+};
+
+type SeededUserMessage = {
+	role: "user";
+	content: string;
+};
+
+type SeededAssistantMessage = {
+	role: "assistant";
+	content: string;
+	reasoning?: string;
+	parts: SeededMessagePart[];
+	model: string;
+	usage: SeededUsage;
+	interrupted?: boolean;
+	interruptionReason?: string;
+};
+
+type SeededMessage = SeededUserMessage | SeededAssistantMessage;
+
+type SeededConversation = {
+	title: string;
+	harnessName: string;
+	workspaceName: string;
+	minutesAgo: number;
+	messages: SeededMessage[];
+};
+
+// Approximate per-1M-token rates we use to derive plausible message costs.
+// Numbers don't have to be exact — the goal is realistic-looking line items.
+const MODEL_RATES: Record<string, { input: number; output: number }> = {
+	"claude-sonnet-4.6": { input: 3, output: 15 },
+	"claude-opus-4.7": { input: 15, output: 75 },
+	"claude-opus-4.7-thinking": { input: 15, output: 75 },
+	"gemini-3.1-flash-lite": { input: 0.1, output: 0.4 },
+};
+
+function buildUsage(
+	model: string,
+	prompt: number,
+	completion: number,
+): SeededUsage {
+	const rates = MODEL_RATES[model] ?? { input: 1, output: 5 };
+	const cost = (prompt * rates.input + completion * rates.output) / 1_000_000;
+	return {
+		promptTokens: prompt,
+		completionTokens: completion,
+		totalTokens: prompt + completion,
+		cost: Number(cost.toFixed(6)),
+	};
+}
+
+// Extract the flat `toolCalls` summary from a parts array. The schema requires
+// every field on each entry, so we coerce missing values to empty strings.
+function partsToToolCalls(parts: SeededMessagePart[]) {
+	return parts
+		.filter((p): p is SeededToolCallPart => p.type === "tool_call")
+		.map((p) => ({
+			tool: p.tool,
+			arguments: p.arguments,
+			call_id: p.call_id,
+			result: p.result,
+		}));
+}
+
+export const seedConversationsForUser = internalMutation({
+	args: { userId: v.string() },
+	handler: async (ctx, { userId }) => {
+		const harnesses = await ctx.db
+			.query("harnesses")
+			.withIndex("by_user", (q) => q.eq("userId", userId))
+			.collect();
+		const workspaces = await ctx.db
+			.query("workspaces")
+			.withIndex("by_user", (q) => q.eq("userId", userId))
+			.collect();
+
+		const harnessByName = new Map(harnesses.map((h) => [h.name, h._id]));
+		const workspaceByName = new Map(workspaces.map((w) => [w.name, w._id]));
+
+		const requireHarness = (name: string): Id<"harnesses"> => {
+			const id = harnessByName.get(name);
+			if (!id) {
+				throw new Error(
+					`Harness '${name}' not found for user '${userId}'. ` +
+						`Run seed:seedDemoForUser first.`,
+				);
+			}
+			return id;
+		};
+
+		const now = Date.now();
+		const MINUTE = 60 * 1000;
+
+		// Conversations are declared in chronological order from oldest to
+		// newest so the time math is easy to skim. minutesAgo is converted
+		// to a wall-clock lastMessageAt below.
+		const seedData: SeededConversation[] = [
+			// === A. Coding Copilot — auth refactor (multi-turn, GitHub tools)
+			{
+				title: "Migrate auth middleware from passport to JWT",
+				harnessName: "Coding Copilot",
+				workspaceName: "Coding",
+				minutesAgo: 90,
+				messages: [
+					{
+						role: "user",
+						content:
+							"I want to rip out passport.js from our Express app and switch to JWTs with refresh tokens. Can you look at the current middleware and give me a migration plan?",
+					},
+					{
+						role: "assistant",
+						content:
+							"Let me pull the current auth middleware to see what we're working with.\n\nI read `src/middleware/auth.js`. Here's the migration plan:\n\n1. **JWT utility module** — `src/lib/jwt.ts` with `signAccessToken`, `signRefreshToken`, `verifyAccessToken`, `verifyRefreshToken`\n2. **Refresh token store** — new `refresh_tokens` table keyed by user ID, with token hash + expiry; old sessions table can stay until cutover\n3. **Replacement middleware** — `requireAuth` that pulls the bearer token, verifies, attaches `req.user`\n4. **Token rotation endpoint** — `POST /auth/refresh` that swaps refresh→access\n5. **Cutover plan** — flip a feature flag per route, deprecate passport once 100% rolled\n\nWant me to draft the JWT utility first?",
+						parts: [
+							{
+								type: "text",
+								content:
+									"Let me pull the current auth middleware to see what we're working with.",
+							},
+							{
+								type: "tool_call",
+								tool: "GitHub__get_file_contents",
+								arguments: {
+									owner: "acme",
+									repo: "api",
+									path: "src/middleware/auth.js",
+								},
+								call_id: "call_01HZAUTH",
+								result:
+									"const passport = require('passport');\nconst LocalStrategy = require('passport-local').Strategy;\n\npassport.use(new LocalStrategy(async (username, password, done) => {\n  const user = await User.findOne({ username });\n  if (!user || !(await user.verifyPassword(password))) return done(null, false);\n  return done(null, user);\n}));\n\nmodule.exports = { authenticate: passport.authenticate('local', { session: true }) };",
+							},
+							{
+								type: "text",
+								content:
+									"I read `src/middleware/auth.js`. Here's the migration plan:\n\n1. **JWT utility module** — `src/lib/jwt.ts` with `signAccessToken`, `signRefreshToken`, `verifyAccessToken`, `verifyRefreshToken`\n2. **Refresh token store** — new `refresh_tokens` table keyed by user ID, with token hash + expiry; old sessions table can stay until cutover\n3. **Replacement middleware** — `requireAuth` that pulls the bearer token, verifies, attaches `req.user`\n4. **Token rotation endpoint** — `POST /auth/refresh` that swaps refresh→access\n5. **Cutover plan** — flip a feature flag per route, deprecate passport once 100% rolled\n\nWant me to draft the JWT utility first?",
+							},
+						],
+						model: "claude-sonnet-4.6",
+						usage: buildUsage("claude-sonnet-4.6", 1840, 412),
+					},
+					{
+						role: "user",
+						content:
+							"Yes — start with the JWT utility. Use TypeScript and ES modules. Put it on a feature branch.",
+					},
+					{
+						role: "assistant",
+						content:
+							'Cut a feature branch and pushed the JWT utility:\n\n```typescript\n// src/lib/jwt.ts\nimport jwt from "jsonwebtoken";\n\nconst ACCESS_SECRET = process.env.JWT_ACCESS_SECRET!;\nconst REFRESH_SECRET = process.env.JWT_REFRESH_SECRET!;\n\nexport function signAccessToken(payload: { userId: string; role: string }) {\n  return jwt.sign(payload, ACCESS_SECRET, { expiresIn: "15m" });\n}\n\nexport function signRefreshToken(payload: { userId: string }) {\n  return jwt.sign(payload, REFRESH_SECRET, { expiresIn: "7d" });\n}\n\nexport function verifyAccessToken(token: string) {\n  return jwt.verify(token, ACCESS_SECRET) as { userId: string; role: string };\n}\n\nexport function verifyRefreshToken(token: string) {\n  return jwt.verify(token, REFRESH_SECRET) as { userId: string };\n}\n```\n\nBranch `feat/jwt-auth` is up. Want me to wire the refresh token storage layer next?',
+						parts: [
+							{
+								type: "tool_call",
+								tool: "GitHub__create_branch",
+								arguments: {
+									owner: "acme",
+									repo: "api",
+									branch: "feat/jwt-auth",
+									from_branch: "main",
+								},
+								call_id: "call_01HZBRNCH",
+								result:
+									'{"ref":"refs/heads/feat/jwt-auth","object":{"sha":"7a1b2c3d4e5f6a7b8c9d0e1f","type":"commit"}}',
+							},
+							{
+								type: "tool_call",
+								tool: "GitHub__create_or_update_file",
+								arguments: {
+									owner: "acme",
+									repo: "api",
+									path: "src/lib/jwt.ts",
+									branch: "feat/jwt-auth",
+									message: "feat(auth): add JWT sign/verify utility",
+								},
+								call_id: "call_01HZJWT01",
+								result:
+									'{"commit":{"sha":"f0e1d2c3b4a5","html_url":"https://github.com/acme/api/commit/f0e1d2c3b4a5"}}',
+							},
+							{
+								type: "text",
+								content:
+									'Cut a feature branch and pushed the JWT utility:\n\n```typescript\n// src/lib/jwt.ts\nimport jwt from "jsonwebtoken";\n\nconst ACCESS_SECRET = process.env.JWT_ACCESS_SECRET!;\nconst REFRESH_SECRET = process.env.JWT_REFRESH_SECRET!;\n\nexport function signAccessToken(payload: { userId: string; role: string }) {\n  return jwt.sign(payload, ACCESS_SECRET, { expiresIn: "15m" });\n}\n\nexport function signRefreshToken(payload: { userId: string }) {\n  return jwt.sign(payload, REFRESH_SECRET, { expiresIn: "7d" });\n}\n\nexport function verifyAccessToken(token: string) {\n  return jwt.verify(token, ACCESS_SECRET) as { userId: string; role: string };\n}\n\nexport function verifyRefreshToken(token: string) {\n  return jwt.verify(token, REFRESH_SECRET) as { userId: string };\n}\n```\n\nBranch `feat/jwt-auth` is up. Want me to wire the refresh token storage layer next?',
+							},
+						],
+						model: "claude-sonnet-4.6",
+						usage: buildUsage("claude-sonnet-4.6", 2310, 538),
+					},
+				],
+			},
+			// === B. Frontend Designer (thinking) — pricing page redesign
+			{
+				title: "Pricing page redesign — typography + layout",
+				harnessName: "Frontend Designer",
+				workspaceName: "Design Lab",
+				minutesAgo: 60 * 22,
+				messages: [
+					{
+						role: "user",
+						content:
+							"Our pricing page feels generic — three columns of feature checks. Help me design something distinctive without throwing out the SaaS conventions completely.",
+					},
+					{
+						role: "assistant",
+						content:
+							"Pulling the frontend-design skill so I'm reasoning from our actual design language.\n\nHere's where I'd push: the *layout* can stay three-column because that's what users scan, but *typography* and *rhythm* can do all the lifting.\n\n**Typography stack**\n- Display: Fraunces (variable, optical sizes) at the tier names — gives editorial weight without feeling corporate\n- Body: Inter at 15/22 — generous line height makes feature lists breathable\n- Numerics: Tabular figures on the price; this is the single thing that reads as \"professional\" instantly\n\n**Layout moves**\n- Drop the card borders entirely — use background tone alone (warm cream, neutral, near-black for the recommended tier)\n- Asymmetric scale: middle tier 12% taller than its neighbors, not centered horizontally — slight offset right\n- Feature checks become small caps labels with a single hairline rule between groups\n\n**One distinctive thing**\nReplace the \"Most popular\" badge with a marginal annotation — set in italic Fraunces, hanging in the left margin like a footnote. Read once, never seen on other SaaS pricing pages.\n\nWant me to mock the middle (recommended) tier first?",
+						reasoning:
+							"The user wants distinctive pricing without abandoning conventions. The convention exists because it works for scanning — three cards, price, features, CTA. So I shouldn't fight that. Where I have room: typography (the single biggest lever for premium-feeling SaaS), color tonality (away from gradient/neon defaults), and one small unexpected detail (the marginal annotation idea — references editorial design without being pastiche). I should be opinionated and concrete; the model often hedges with 'consider...' but the user wants direction.",
+						parts: [
+							{
+								type: "reasoning",
+								content:
+									"The user wants distinctive pricing without abandoning conventions. The convention exists because it works for scanning — three cards, price, features, CTA. So I shouldn't fight that. Where I have room: typography (the single biggest lever for premium-feeling SaaS), color tonality (away from gradient/neon defaults), and one small unexpected detail (the marginal annotation idea — references editorial design without being pastiche). I should be opinionated and concrete; the model often hedges with 'consider...' but the user wants direction.",
+							},
+							{
+								type: "text",
+								content:
+									"Pulling the frontend-design skill so I'm reasoning from our actual design language.",
+							},
+							{
+								type: "tool_call",
+								tool: "get_skill_content",
+								arguments: { name: "anthropics/skills/frontend-design" },
+								call_id: "call_01HZSKILLF",
+								result:
+									"---\nname: frontend-design\ndescription: Create distinctive, production-grade frontend interfaces with high design quality.\n---\n\n# Principles\n\n1. Avoid AI defaults: gradients, glass-morphism, generic blue.\n2. Lean into typography — display + body + numerics.\n3. Asymmetry is interesting; perfect centering is forgettable.\n4. Use color sparingly — one accent, one neutral scale.\n5. Production code: Tailwind utility classes, no styled-components.",
+							},
+							{
+								type: "tool_call",
+								tool: "Context7__get-library-docs",
+								arguments: {
+									context7CompatibleLibraryID: "fontsource/fraunces",
+									topic: "variable font axes",
+									tokens: 2000,
+								},
+								call_id: "call_01HZCTX7A",
+								result:
+									"Fraunces is a variable font with axes for opsz (9-144), wght (100-900), and SOFT (0-100). For display sizes use opsz=72-96 with wght=600. For inline italics use slnt=-10. Loading the variable file (Fraunces[opsz,wght].woff2) is ~75KB gzip.",
+							},
+							{
+								type: "text",
+								content:
+									'Here\'s where I\'d push: the *layout* can stay three-column because that\'s what users scan, but *typography* and *rhythm* can do all the lifting.\n\n**Typography stack**\n- Display: Fraunces (variable, optical sizes) at the tier names — gives editorial weight without feeling corporate\n- Body: Inter at 15/22 — generous line height makes feature lists breathable\n- Numerics: Tabular figures on the price; this is the single thing that reads as "professional" instantly\n\n**Layout moves**\n- Drop the card borders entirely — use background tone alone (warm cream, neutral, near-black for the recommended tier)\n- Asymmetric scale: middle tier 12% taller than its neighbors, not centered horizontally — slight offset right\n- Feature checks become small caps labels with a single hairline rule between groups\n\n**One distinctive thing**\nReplace the "Most popular" badge with a marginal annotation — set in italic Fraunces, hanging in the left margin like a footnote. Read once, never seen on other SaaS pricing pages.\n\nWant me to mock the middle (recommended) tier first?',
+							},
+						],
+						model: "claude-opus-4.7-thinking",
+						usage: buildUsage("claude-opus-4.7-thinking", 4280, 1820),
+					},
+				],
+			},
+			// === C. Research Analyst — LLM provider comparison
+			{
+				title: "LLM pricing — Claude vs OpenAI vs Gemini, current cuts",
+				harnessName: "Research Analyst",
+				workspaceName: "Research",
+				minutesAgo: 60 * 56,
+				messages: [
+					{
+						role: "user",
+						content:
+							"I need a current snapshot of frontier LLM pricing across Anthropic, OpenAI, and Google for our Q2 budget proposal. Input + output rates, context windows, anything that matters. Cite sources.",
+					},
+					{
+						role: "assistant",
+						content:
+							'Searched primary sources for current pricing. Here\'s the snapshot — all rates per 1M tokens, USD, as of search results below.\n\n| Provider | Model | Input | Output | Context |\n|---|---|---|---|---|\n| Anthropic | Claude Opus 4.7 | $15 | $75 | 1M (extended) |\n| Anthropic | Claude Sonnet 4.6 | $3 | $15 | 200K |\n| OpenAI | GPT-5.5 | $5 | $20 | 256K |\n| OpenAI | GPT-5.4 | $2.50 | $10 | 128K |\n| Google | Gemini 3.1 Pro | $1.25 | $5 | 1M |\n| Google | Gemini 3.1 Flash Lite | $0.10 | $0.40 | 1M |\n\n**Things that matter for budgeting**\n\n1. **Output is the bigger lever.** For agentic workloads, output dominates spend (3–5× input on average). Opus 4.7\'s $75/M output is the line item to watch.\n2. **Cache vs no-cache.** Anthropic\'s prompt caching cuts input by 90% on cache hits — relevant if you\'re repeatedly sending the same system prompt + context. OpenAI auto-caches on `>=1024` token prefixes.\n3. **Context price.** Gemini\'s 1M window is now standard for the family; OpenAI charges flat across context length, Anthropic ramps after 200K.\n\n**Caveats**\nAll three providers run private discount tiers for committed spend ("capacity reservations" on Google, "Scale" tier on Anthropic, "Enterprise" on OpenAI). The rate card is the floor — assume 15-30% better at scale.\n\nSources cited above; raw search results follow.',
+						parts: [
+							{
+								type: "text",
+								content: "Searching for current pricing data.",
+							},
+							{
+								type: "tool_call",
+								tool: "Exa__web_search_exa",
+								arguments: {
+									query: "Anthropic Claude API pricing per million tokens 2026",
+									numResults: 5,
+								},
+								call_id: "call_01HZRES01",
+								result:
+									'[{"title":"Pricing — Anthropic","url":"https://www.anthropic.com/pricing","snippet":"Claude Opus 4.7: $15 input / $75 output per million tokens. Claude Sonnet 4.6: $3 input / $15 output. Prompt caching: 90% input discount on cache reads. Extended context (>200K) charged at 2x base."},{"title":"Anthropic announces Claude 4.7 — TechCrunch","url":"https://techcrunch.com/2026/03/...","snippet":"Opus 4.7 expands context to 1M tokens for select customers..."}]',
+							},
+							{
+								type: "tool_call",
+								tool: "Exa__web_search_exa",
+								arguments: {
+									query: "OpenAI GPT-5.5 GPT-5.4 API pricing context window",
+									numResults: 5,
+								},
+								call_id: "call_01HZRES02",
+								result:
+									'[{"title":"OpenAI Pricing","url":"https://openai.com/api/pricing/","snippet":"GPT-5.5: $5/$20 per 1M input/output tokens, 256K context. GPT-5.4: $2.50/$10, 128K context. Cached input prices reduced 50%. Batch API: 50% discount, 24h SLA."}]',
+							},
+							{
+								type: "tool_call",
+								tool: "Exa__web_search_exa",
+								arguments: {
+									query:
+										"Google Gemini 3.1 Pro Flash Lite API pricing token cost",
+									numResults: 5,
+								},
+								call_id: "call_01HZRES03",
+								result:
+									'[{"title":"Vertex AI Pricing","url":"https://cloud.google.com/vertex-ai/pricing","snippet":"Gemini 3.1 Pro: $1.25/$5 per 1M tokens. Gemini 3.1 Flash Lite: $0.10/$0.40 per 1M. All Gemini 3 models support 1M context. Context caching via Vertex AI: $0.025/M tokens/hour storage."}]',
+							},
+							{
+								type: "tool_call",
+								tool: "AWS_Knowledge__search",
+								arguments: {
+									query: "AWS Bedrock pricing Claude Opus comparison",
+								},
+								call_id: "call_01HZRESAWS",
+								result:
+									"AWS Bedrock charges the same model rates as the upstream provider. Cross-region inference adds no premium. Bedrock provides reserved capacity (Provisioned Throughput) at ~30% discount for sustained load (model unit purchases, hourly).",
+							},
+							{
+								type: "text",
+								content:
+									'Here\'s the snapshot — all rates per 1M tokens, USD, as of search results below.\n\n| Provider | Model | Input | Output | Context |\n|---|---|---|---|---|\n| Anthropic | Claude Opus 4.7 | $15 | $75 | 1M (extended) |\n| Anthropic | Claude Sonnet 4.6 | $3 | $15 | 200K |\n| OpenAI | GPT-5.5 | $5 | $20 | 256K |\n| OpenAI | GPT-5.4 | $2.50 | $10 | 128K |\n| Google | Gemini 3.1 Pro | $1.25 | $5 | 1M |\n| Google | Gemini 3.1 Flash Lite | $0.10 | $0.40 | 1M |\n\n**Things that matter for budgeting**\n\n1. **Output is the bigger lever.** For agentic workloads, output dominates spend (3–5× input on average). Opus 4.7\'s $75/M output is the line item to watch.\n2. **Cache vs no-cache.** Anthropic\'s prompt caching cuts input by 90% on cache hits — relevant if you\'re repeatedly sending the same system prompt + context. OpenAI auto-caches on `>=1024` token prefixes.\n3. **Context price.** Gemini\'s 1M window is now standard for the family; OpenAI charges flat across context length, Anthropic ramps after 200K.\n\n**Caveats**\nAll three providers run private discount tiers for committed spend ("capacity reservations" on Google, "Scale" tier on Anthropic, "Enterprise" on OpenAI). The rate card is the floor — assume 15-30% better at scale.\n\nSources cited above; raw search results follow.',
+							},
+						],
+						model: "claude-opus-4.7",
+						usage: buildUsage("claude-opus-4.7", 6420, 2840),
+					},
+					{
+						role: "user",
+						content:
+							"Good. What's the breakeven point where Bedrock Provisioned Throughput beats on-demand for Sonnet 4.6?",
+					},
+					{
+						role: "assistant",
+						content:
+							"On AWS Bedrock, Provisioned Throughput (PT) is sold in *model units*. Each PT unit guarantees a fixed tokens/min throughput; PT is billed hourly regardless of utilization, while on-demand is per-token.\n\nFor Sonnet 4.6 on Bedrock (as of last published rates):\n- On-demand: $3/$15 per 1M tokens\n- 1-month PT commitment: ~$32/hr per model unit (~150K output tok/min throughput)\n- 6-month PT: ~$22/hr per model unit\n\n**Breakeven (1-month PT, output-heavy workload, $15/M):**\n$32/hr × 730 hr/month = $23,360/month fixed.\n$23,360 / ($15/M output) = ~1.55B output tokens/month before PT pays off.\n\n**Breakeven (6-month PT):** ~1.07B output tokens/month.\n\n**Practical read:** PT only makes sense for production workloads sustaining tens of millions of output tokens per day, every day. Below that, the unused capacity penalty buries the per-token savings. For burstier or unpredictable workloads, stick with on-demand and accept the headline rate.",
+						model: "claude-opus-4.7",
+						usage: buildUsage("claude-opus-4.7", 7180, 720),
+						parts: [
+							{
+								type: "text",
+								content:
+									"On AWS Bedrock, Provisioned Throughput (PT) is sold in *model units*. Each PT unit guarantees a fixed tokens/min throughput; PT is billed hourly regardless of utilization, while on-demand is per-token.\n\nFor Sonnet 4.6 on Bedrock (as of last published rates):\n- On-demand: $3/$15 per 1M tokens\n- 1-month PT commitment: ~$32/hr per model unit (~150K output tok/min throughput)\n- 6-month PT: ~$22/hr per model unit\n\n**Breakeven (1-month PT, output-heavy workload, $15/M):**\n$32/hr × 730 hr/month = $23,360/month fixed.\n$23,360 / ($15/M output) = ~1.55B output tokens/month before PT pays off.\n\n**Breakeven (6-month PT):** ~1.07B output tokens/month.\n\n**Practical read:** PT only makes sense for production workloads sustaining tens of millions of output tokens per day, every day. Below that, the unused capacity penalty buries the per-token savings. For burstier or unpredictable workloads, stick with on-demand and accept the headline rate.",
+							},
+						],
+					},
+				],
+			},
+			// === D. Quick Search — Bun release notes (snap)
+			{
+				title: "What changed in the latest Bun release",
+				harnessName: "Quick Search",
+				workspaceName: "Quick Lookups",
+				minutesAgo: 60 * 5,
+				messages: [
+					{
+						role: "user",
+						content: "What's new in the latest Bun release?",
+					},
+					{
+						role: "assistant",
+						content:
+							"Bun 1.3.4 (latest):\n\n- `bun install` now uses a content-addressable global cache — reinstalls across projects are 30-50% faster.\n- Native SQLite driver added under `bun:sqlite` with full WAL mode and FTS5 support.\n- HTTP server gained `Bun.serve({ tls })` with automatic HTTP/3 negotiation.\n- Fixed a long-standing memory leak in `fetch()` keep-alive pools.\n- Node-API compatibility bumped to v9; `better-sqlite3` and `bcrypt` now load without rebuilds.",
+						parts: [
+							{
+								type: "tool_call",
+								tool: "Exa__web_search_exa",
+								arguments: {
+									query: "Bun 1.3 release notes changelog 2026",
+									numResults: 3,
+								},
+								call_id: "call_01HZBUN01",
+								result:
+									'[{"title":"Bun v1.3.4 — Bun Blog","url":"https://bun.sh/blog/bun-v1.3.4","snippet":"Bun 1.3.4 ships a new content-addressable install cache, native bun:sqlite, HTTP/3 in Bun.serve, and Node-API v9 compatibility. Install ~40% faster on repeat installs."}]',
+							},
+							{
+								type: "text",
+								content:
+									"Bun 1.3.4 (latest):\n\n- `bun install` now uses a content-addressable global cache — reinstalls across projects are 30-50% faster.\n- Native SQLite driver added under `bun:sqlite` with full WAL mode and FTS5 support.\n- HTTP server gained `Bun.serve({ tls })` with automatic HTTP/3 negotiation.\n- Fixed a long-standing memory leak in `fetch()` keep-alive pools.\n- Node-API compatibility bumped to v9; `better-sqlite3` and `bcrypt` now load without rebuilds.",
+							},
+						],
+						model: "gemini-3.1-flash-lite",
+						usage: buildUsage("gemini-3.1-flash-lite", 1240, 280),
+					},
+				],
+			},
+			// === E. DevOps Sidekick — Lambda throttling
+			{
+				title: "Lambda throttling spike in us-east-1",
+				harnessName: "DevOps Sidekick",
+				workspaceName: "Infra",
+				minutesAgo: 60 * 8,
+				messages: [
+					{
+						role: "user",
+						content:
+							"My `inference-router` Lambda is throwing 429s in us-east-1 since this morning. Concurrency limit at 1000, peaking around 700. What am I missing?",
+					},
+					{
+						role: "assistant",
+						content:
+							"Pulled the AWS docs on Lambda concurrency. The 1000 limit you see is the *account-level* unreserved concurrency — that pool is shared across **all** functions in the account that don't have reserved concurrency configured.\n\nIf any other function (cron job, log processor, async fanout) burst at the same time, they eat into the 1000 even though `inference-router` peaked at 700.\n\nLook for:\n\n1. **CloudWatch → Lambda → Account concurrent executions metric** — if this hit 1000, that's your smoking gun.\n2. Other Lambdas in the same account/region. Especially anything triggered by SQS or EventBridge.\n3. Provisioned concurrency on `inference-router` itself: setting reserved concurrency = 800 carves it out of the shared pool *and* protects it from noisy neighbors.\n\n**Fix path**\n- Short-term: bump the account-level limit (request via Service Quotas, default 1000 → 5000 is usually granted within an hour)\n- Right-term: set reserved concurrency on `inference-router` so it has a dedicated 800, leaving 200 for everything else\n\nWant me to check what other functions in this account were active at the time?",
+						parts: [
+							{
+								type: "tool_call",
+								tool: "AWS_Knowledge__search",
+								arguments: {
+									query:
+										"Lambda 429 throttling concurrent execution limit account",
+								},
+								call_id: "call_01HZAWS01",
+								result:
+									"AWS Lambda enforces concurrent execution limits at two levels: (1) account-level (default 1000 per region, shared across all functions without reserved concurrency), and (2) function-level (reserved concurrency, optional). 429 TooManyRequestsException is thrown when *either* limit is exceeded. Reserved concurrency carves capacity out of the account pool; provisioned concurrency pre-warms execution environments. Increase via Service Quotas: L-B99A9384.",
+							},
+							{
+								type: "text",
+								content:
+									"Pulled the AWS docs on Lambda concurrency. The 1000 limit you see is the *account-level* unreserved concurrency — that pool is shared across **all** functions in the account that don't have reserved concurrency configured.\n\nIf any other function (cron job, log processor, async fanout) burst at the same time, they eat into the 1000 even though `inference-router` peaked at 700.\n\nLook for:\n\n1. **CloudWatch → Lambda → Account concurrent executions metric** — if this hit 1000, that's your smoking gun.\n2. Other Lambdas in the same account/region. Especially anything triggered by SQS or EventBridge.\n3. Provisioned concurrency on `inference-router` itself: setting reserved concurrency = 800 carves it out of the shared pool *and* protects it from noisy neighbors.\n\n**Fix path**\n- Short-term: bump the account-level limit (request via Service Quotas, default 1000 → 5000 is usually granted within an hour)\n- Right-term: set reserved concurrency on `inference-router` so it has a dedicated 800, leaving 200 for everything else\n\nWant me to check what other functions in this account were active at the time?",
+							},
+						],
+						model: "claude-sonnet-4.6",
+						usage: buildUsage("claude-sonnet-4.6", 2120, 690),
+					},
+					{
+						role: "user",
+						content:
+							"Yes — and check if our Terraform repo already has reserved concurrency wired up.",
+					},
+					{
+						role: "assistant",
+						content:
+							"Reserved concurrency is wired in your Terraform module but **commented out** at `infra/lambda/inference_router.tf:38`:\n\n```hcl\n# reserved_concurrent_executions = 800   # disabled 2025-11-12 during cost cutdown\n```\n\nThat's almost certainly the regression — someone disabled it during a cost-cutting pass and never re-enabled it after traffic recovered.\n\n**Recommended action**\n1. Uncomment the line, set to 800.\n2. Verify the account quota is still at 1000 — if so, request 2000 to give yourself headroom.\n3. Add a CloudWatch alarm on `ConcurrentExecutions` >= 80% of reserved.\n\nI can open a PR on the Terraform repo if you want.",
+						parts: [
+							{
+								type: "tool_call",
+								tool: "GitHub__get_file_contents",
+								arguments: {
+									owner: "acme",
+									repo: "infra",
+									path: "lambda/inference_router.tf",
+								},
+								call_id: "call_01HZTF01",
+								result:
+									'resource "aws_lambda_function" "inference_router" {\n  function_name = "inference-router"\n  runtime       = "python3.12"\n  handler       = "app.lambda_handler"\n  memory_size   = 1024\n  timeout       = 30\n\n  # reserved_concurrent_executions = 800   # disabled 2025-11-12 during cost cutdown\n\n  environment {\n    variables = {\n      OPENAI_API_KEY = var.openai_api_key\n    }\n  }\n}',
+							},
+							{
+								type: "text",
+								content:
+									"Reserved concurrency is wired in your Terraform module but **commented out** at `infra/lambda/inference_router.tf:38`:\n\n```hcl\n# reserved_concurrent_executions = 800   # disabled 2025-11-12 during cost cutdown\n```\n\nThat's almost certainly the regression — someone disabled it during a cost-cutting pass and never re-enabled it after traffic recovered.\n\n**Recommended action**\n1. Uncomment the line, set to 800.\n2. Verify the account quota is still at 1000 — if so, request 2000 to give yourself headroom.\n3. Add a CloudWatch alarm on `ConcurrentExecutions` >= 80% of reserved.\n\nI can open a PR on the Terraform repo if you want.",
+							},
+						],
+						model: "claude-sonnet-4.6",
+						usage: buildUsage("claude-sonnet-4.6", 2710, 480),
+					},
+				],
+			},
+			// === F. Princeton Course Planner — Spring 2026
+			{
+				title: "Plan Spring 2026 — COS electives + SML cert",
+				harnessName: "Princeton Course Planner",
+				workspaceName: "Course Planning",
+				minutesAgo: 60 * 36,
+				messages: [
+					{
+						role: "user",
+						content:
+							"Help me plan Spring 2026. I'm finishing the SML certificate and need 2 more COS electives. Avoid Tuesday/Thursday 11-12:30 — I have a recurring conflict.",
+					},
+					{
+						role: "assistant",
+						content:
+							"Pulled SML cert requirements + COS electives offered Spring 2026 outside your blocked slot.\n\n**SML certificate — what you're missing**\nBased on TigerPath, you've completed 4/6 SML courses (COS 324, COS 484, ORF 309, COS 226). Two left from the elective bucket.\n\n**Eligible COS electives, Spring 2026, excluding T/Th 11-12:30**\n\n| Course | Days/Time | Counts for SML | Eval avg |\n|---|---|---|---|\n| COS 433 — Cryptography | MW 1:30-2:50 | No | 4.6 |\n| COS 461 — Computer Networks | MW 11-12:20 | No | 4.4 |\n| COS 484 — NLP | TTh 1:30-2:50 | Yes | 4.7 |\n| COS 485 — Neural Networks | MW 3-4:20 | Yes | 4.5 |\n| COS 511 — Theoretical ML | TTh 3-4:20 | Yes (count once) | 4.3 |\n\nYou've already taken 484 — drop it from consideration.\n\n**Suggested pairing**\n- **COS 485 (Neural Networks)** + **COS 511 (Theoretical ML)** — both count for SML, no conflicts, complementary (485 is hands-on PyTorch, 511 is proofs)\n- Eval avg ~4.4, workload moderate (10-12 hr/wk each per evaluations)\n\nSecond option: **COS 485 + COS 461** if you want one non-SML breadth course; you'd then need to find one more SML elective in Fall 2026.\n\nWant me to check section conflicts across your other Spring courses?",
+						parts: [
+							{
+								type: "tool_call",
+								tool: "TigerPath__view_major",
+								arguments: {
+									major: "SML certificate",
+								},
+								call_id: "call_01HZTPATH",
+								result:
+									'{"requirements":[{"name":"Foundations","completed":true,"taken":["COS 324","ORF 309"]},{"name":"Methods","completed":true,"taken":["COS 484","COS 226"]},{"name":"Electives","completed":false,"required":2,"taken":0,"options":["COS 485","COS 511","COS 484","ORF 363","ECE 364"]}]}',
+							},
+							{
+								type: "tool_call",
+								tool: "TigerJunction__search_courses",
+								arguments: {
+									query: "COS",
+									term: "S2026",
+									department: "COS",
+									level: "300+",
+								},
+								call_id: "call_01HZTJ01",
+								result:
+									'[{"code":"COS 433","title":"Cryptography","days":"MW","time":"1:30-2:50"},{"code":"COS 461","title":"Computer Networks","days":"MW","time":"11-12:20"},{"code":"COS 484","title":"Natural Language Processing","days":"TTh","time":"1:30-2:50"},{"code":"COS 485","title":"Neural Networks","days":"MW","time":"3-4:20"},{"code":"COS 511","title":"Theoretical Machine Learning","days":"TTh","time":"3-4:20"},{"code":"COS 521","title":"Advanced Algorithm Design","days":"TTh","time":"11-12:20"}]',
+							},
+							{
+								type: "tool_call",
+								tool: "PrincetonCourses__get_course_evaluations",
+								arguments: { courses: ["COS 485", "COS 511"] },
+								call_id: "call_01HZPC01",
+								result:
+									'[{"course":"COS 485","overall":4.5,"workload":11.2,"comments":["Excellent pacing.","Heavy but rewarding."]},{"course":"COS 511","overall":4.3,"workload":12.1,"comments":["Theory-heavy, prepare for proofs.","Pset-heavy."]}]',
+							},
+							{
+								type: "text",
+								content:
+									"Pulled SML cert requirements + COS electives offered Spring 2026 outside your blocked slot.\n\n**SML certificate — what you're missing**\nBased on TigerPath, you've completed 4/6 SML courses (COS 324, COS 484, ORF 309, COS 226). Two left from the elective bucket.\n\n**Eligible COS electives, Spring 2026, excluding T/Th 11-12:30**\n\n| Course | Days/Time | Counts for SML | Eval avg |\n|---|---|---|---|\n| COS 433 — Cryptography | MW 1:30-2:50 | No | 4.6 |\n| COS 461 — Computer Networks | MW 11-12:20 | No | 4.4 |\n| COS 484 — NLP | TTh 1:30-2:50 | Yes | 4.7 |\n| COS 485 — Neural Networks | MW 3-4:20 | Yes | 4.5 |\n| COS 511 — Theoretical ML | TTh 3-4:20 | Yes (count once) | 4.3 |\n\nYou've already taken 484 — drop it from consideration.\n\n**Suggested pairing**\n- **COS 485 (Neural Networks)** + **COS 511 (Theoretical ML)** — both count for SML, no conflicts, complementary (485 is hands-on PyTorch, 511 is proofs)\n- Eval avg ~4.4, workload moderate (10-12 hr/wk each per evaluations)\n\nSecond option: **COS 485 + COS 461** if you want one non-SML breadth course; you'd then need to find one more SML elective in Fall 2026.\n\nWant me to check section conflicts across your other Spring courses?",
+							},
+						],
+						model: "claude-sonnet-4.6",
+						usage: buildUsage("claude-sonnet-4.6", 3640, 1280),
+					},
+				],
+			},
+			// === G. Project Tracker — weekly summary
+			{
+				title: "Weekly engineering summary",
+				harnessName: "Project Tracker",
+				workspaceName: "Project Tracking",
+				minutesAgo: 60 * 14,
+				messages: [
+					{
+						role: "user",
+						content:
+							"Pull together what shipped this week — Linear issues closed, PRs merged. Format as a standup-friendly summary.",
+					},
+					{
+						role: "assistant",
+						content:
+							"Cross-referenced Linear and GitHub for the last 7 days.\n\n## Shipped this week\n\n**Inference pipeline (ENG-414, ENG-417, ENG-421)**\n- ENG-414: chunked streaming for long responses → PR #287, merged Tue\n- ENG-417: cost ledger backfill migration → PR #289, merged Wed\n- ENG-421: max_tokens truncation auto-continue → PR #291, merged Fri\n\n**Frontend (DSN-103, DSN-106)**\n- DSN-103: dialog max-h on short viewports → PR #293, merged Fri\n- DSN-106: skills browser pagination → PR #285, merged Mon\n\n**Infra (OPS-58)**\n- OPS-58: Lambda reserved concurrency restored → PR #292, merged Thu\n\n## In-flight\n- ENG-425: Convex schema migration for workspace search index — review pending\n- DSN-108: chat-input attachment redesign — design draft posted, no PR yet\n\n## Blockers\n- ENG-419 (Daytona snapshot persistence) — waiting on upstream Daytona ticket DTN-2204",
+						parts: [
+							{
+								type: "tool_call",
+								tool: "Linear__list_issues",
+								arguments: {
+									teamKey: "ENG",
+									status: "Done",
+									updatedAfter: "2026-04-21",
+								},
+								call_id: "call_01HZLIN01",
+								result:
+									'[{"id":"ENG-414","title":"Chunked streaming for long responses","status":"Done","completedAt":"2026-04-22"},{"id":"ENG-417","title":"Cost ledger backfill migration","status":"Done","completedAt":"2026-04-23"},{"id":"ENG-421","title":"max_tokens truncation auto-continue","status":"Done","completedAt":"2026-04-25"}]',
+							},
+							{
+								type: "tool_call",
+								tool: "Linear__list_issues",
+								arguments: {
+									teamKey: "DSN",
+									status: "Done",
+									updatedAfter: "2026-04-21",
+								},
+								call_id: "call_01HZLIN02",
+								result:
+									'[{"id":"DSN-103","title":"Dialog max-h on short viewports","status":"Done","completedAt":"2026-04-25"},{"id":"DSN-106","title":"Skills browser pagination","status":"Done","completedAt":"2026-04-21"}]',
+							},
+							{
+								type: "tool_call",
+								tool: "GitHub__list_pull_requests",
+								arguments: {
+									owner: "acme",
+									repo: "harness",
+									state: "closed",
+									sort: "updated",
+									perPage: 20,
+								},
+								call_id: "call_01HZGH01",
+								result:
+									'[{"number":287,"title":"feat(stream): chunked streaming","mergedAt":"2026-04-22"},{"number":289,"title":"chore(migrate): backfill usage_ledger","mergedAt":"2026-04-23"},{"number":291,"title":"fix(chat): auto-continue on max_tokens","mergedAt":"2026-04-25"},{"number":292,"title":"chore(infra): re-enable reserved concurrency","mergedAt":"2026-04-24"},{"number":293,"title":"fix(skills): cap dialog height","mergedAt":"2026-04-25"}]',
+							},
+							{
+								type: "text",
+								content:
+									"Cross-referenced Linear and GitHub for the last 7 days.\n\n## Shipped this week\n\n**Inference pipeline (ENG-414, ENG-417, ENG-421)**\n- ENG-414: chunked streaming for long responses → PR #287, merged Tue\n- ENG-417: cost ledger backfill migration → PR #289, merged Wed\n- ENG-421: max_tokens truncation auto-continue → PR #291, merged Fri\n\n**Frontend (DSN-103, DSN-106)**\n- DSN-103: dialog max-h on short viewports → PR #293, merged Fri\n- DSN-106: skills browser pagination → PR #285, merged Mon\n\n**Infra (OPS-58)**\n- OPS-58: Lambda reserved concurrency restored → PR #292, merged Thu\n\n## In-flight\n- ENG-425: Convex schema migration for workspace search index — review pending\n- DSN-108: chat-input attachment redesign — design draft posted, no PR yet\n\n## Blockers\n- ENG-419 (Daytona snapshot persistence) — waiting on upstream Daytona ticket DTN-2204",
+							},
+						],
+						model: "claude-opus-4.7",
+						usage: buildUsage("claude-opus-4.7", 5120, 1480),
+					},
+				],
+			},
+			// === H. Notion Scribe — meeting notes cleanup
+			{
+				title: "Clean up sprint planning notes",
+				harnessName: "Notion Scribe",
+				workspaceName: "Writing",
+				minutesAgo: 60 * 26,
+				messages: [
+					{
+						role: "user",
+						content:
+							"My sprint planning page in Notion is a mess — random formatting, half-finished bullets. Can you find it and clean it up?",
+					},
+					{
+						role: "assistant",
+						content:
+							'Found and cleaned the sprint planning page (Notion: Engineering / Sprint 2026-04-21).\n\n**What I changed**\n- Promoted the meeting date to an H1 and removed the inline emoji\n- Converted the mixed `-`/`*` bullet styles to a single `-` bullet\n- Grouped action items under H2 "Action items" with assignee + due date\n- Stripped half-finished sentences ("@ibraheem to investigate" with no further context — left them but added [TODO: clarify])\n- Pulled all decisions into an H2 "Decisions made" section at the top so it\'s findable later\n\nThe page is preserved verbatim except for these structural edits. No content removed.',
+						parts: [
+							{
+								type: "tool_call",
+								tool: "Notion__search",
+								arguments: { query: "sprint planning" },
+								call_id: "call_01HZNOTI01",
+								result:
+									'[{"id":"abc-123","title":"Sprint Planning 2026-04-21","parent":"Engineering","lastEdited":"2026-04-21T18:30:00Z"},{"id":"def-456","title":"Sprint Planning 2026-04-14","parent":"Engineering","lastEdited":"2026-04-14T18:30:00Z"}]',
+							},
+							{
+								type: "tool_call",
+								tool: "Notion__update-page",
+								arguments: {
+									pageId: "abc-123",
+									operation: "replace",
+								},
+								call_id: "call_01HZNOTI02",
+								result:
+									'{"status":"updated","blocks_modified":47,"page":"Sprint Planning 2026-04-21"}',
+							},
+							{
+								type: "text",
+								content:
+									'Found and cleaned the sprint planning page (Notion: Engineering / Sprint 2026-04-21).\n\n**What I changed**\n- Promoted the meeting date to an H1 and removed the inline emoji\n- Converted the mixed `-`/`*` bullet styles to a single `-` bullet\n- Grouped action items under H2 "Action items" with assignee + due date\n- Stripped half-finished sentences ("@ibraheem to investigate" with no further context — left them but added [TODO: clarify])\n- Pulled all decisions into an H2 "Decisions made" section at the top so it\'s findable later\n\nThe page is preserved verbatim except for these structural edits. No content removed.',
+							},
+						],
+						model: "gemini-3.1-flash-lite",
+						usage: buildUsage("gemini-3.1-flash-lite", 2840, 540),
+					},
+				],
+			},
+			// === I. Frontend Designer — interrupted (max_tokens reached)
+			{
+				title: "Build a Kanban board UI",
+				harnessName: "Frontend Designer",
+				workspaceName: "Design Lab",
+				minutesAgo: 60 * 4,
+				messages: [
+					{
+						role: "user",
+						content:
+							"Build me a full Kanban board component with drag-and-drop, swimlanes, WIP limits, and inline card editing. React + Tailwind.",
+					},
+					{
+						role: "assistant",
+						content:
+							'Pulled the frontend-design skill and the dnd-kit docs to ground the implementation.\n\nLet me start with the data model and column shell:\n\n```tsx\n// src/components/kanban/Board.tsx\nimport { DndContext, closestCenter, type DragEndEvent } from "@dnd-kit/core";\nimport { SortableContext, verticalListSortingStrategy } from "@dnd-kit/sortable";\nimport { useState } from "react";\n\nexport type Card = { id: string; title: string; assignee?: string };\nexport type Column = { id: string; title: string; wipLimit?: number; cards: Card[] };\n\nexport function Board({ initial }: { initial: Column[] }) {\n  const [columns, setColumns] = useState(initial);\n\n  function onDragEnd(event: DragEndEvent) {\n    const { active, over } = event;\n    if (!over || active.id === over.id) return;\n    // ... cross-column move logic\n  }\n\n  return (\n    <DndContext collisionDetection={closestCenter} onDragEnd={onDragEnd}>\n      <div className="grid h-full grid-flow-col auto-cols-[20rem] gap-4 overflow-x-auto p-6">\n        {columns.map((col) => (\n          <ColumnView key={col.id} column={col} />\n        ))}\n      </div>\n    </DndContext>\n  );\n}\n```\n\nNext, the column with WIP limit indicator. I\'ll set it',
+						parts: [
+							{
+								type: "reasoning",
+								content:
+									"This is a big spec — let me think about ordering. The data model first (Card, Column), then the DnD wrapper, then the column shell with WIP styling, then card edit, then swimlanes (cross-cutting groupings — usually rows of columns). I should pull the frontend-design skill and dnd-kit docs first so the example uses the actual Tailwind tokens we have.",
+							},
+							{
+								type: "tool_call",
+								tool: "get_skill_content",
+								arguments: { name: "anthropics/skills/frontend-design" },
+								call_id: "call_01HZKBN01",
+								result:
+									"---\nname: frontend-design\n---\n\n# Tokens\n- Surface: bg-background, border-border\n- Accent: bg-foreground for emphasis\n- Use auto-cols + overflow-x-auto for horizontal scroll patterns",
+							},
+							{
+								type: "tool_call",
+								tool: "Context7__get-library-docs",
+								arguments: {
+									context7CompatibleLibraryID: "clauderic/dnd-kit",
+									topic: "sortable cross-container",
+									tokens: 3500,
+								},
+								call_id: "call_01HZKBN02",
+								result:
+									"@dnd-kit/sortable supports cross-container sorting via SortableContext per container plus a shared DndContext. Use `closestCorners` collision detection for column-style layouts. The over.id will be the container id when hovering empty space, otherwise the card id over which the drag is hovering.",
+							},
+							{
+								type: "text",
+								content:
+									'Pulled the frontend-design skill and the dnd-kit docs to ground the implementation.\n\nLet me start with the data model and column shell:\n\n```tsx\n// src/components/kanban/Board.tsx\nimport { DndContext, closestCenter, type DragEndEvent } from "@dnd-kit/core";\nimport { SortableContext, verticalListSortingStrategy } from "@dnd-kit/sortable";\nimport { useState } from "react";\n\nexport type Card = { id: string; title: string; assignee?: string };\nexport type Column = { id: string; title: string; wipLimit?: number; cards: Card[] };\n\nexport function Board({ initial }: { initial: Column[] }) {\n  const [columns, setColumns] = useState(initial);\n\n  function onDragEnd(event: DragEndEvent) {\n    const { active, over } = event;\n    if (!over || active.id === over.id) return;\n    // ... cross-column move logic\n  }\n\n  return (\n    <DndContext collisionDetection={closestCenter} onDragEnd={onDragEnd}>\n      <div className="grid h-full grid-flow-col auto-cols-[20rem] gap-4 overflow-x-auto p-6">\n        {columns.map((col) => (\n          <ColumnView key={col.id} column={col} />\n        ))}\n      </div>\n    </DndContext>\n  );\n}\n```\n\nNext, the column with WIP limit indicator. I\'ll set it',
+							},
+						],
+						model: "claude-opus-4.7-thinking",
+						usage: buildUsage("claude-opus-4.7-thinking", 3920, 16384),
+						interrupted: true,
+						interruptionReason: "Response truncated (max_tokens reached)",
+					},
+				],
+			},
+		];
+
+		// Insert in order; track insertion counts for the return value.
+		let conversationCount = 0;
+		let messageCount = 0;
+		let toolCallCount = 0;
+
+		for (const conv of seedData) {
+			const harnessId = requireHarness(conv.harnessName);
+			const workspaceId = workspaceByName.get(conv.workspaceName);
+			const lastMessageAt = now - conv.minutesAgo * MINUTE;
+
+			const conversationId = await ctx.db.insert("conversations", {
+				title: conv.title,
+				userId,
+				lastHarnessId: harnessId,
+				lastMessageAt,
+				...(workspaceId ? { workspaceId } : {}),
+			});
+			conversationCount++;
+
+			for (const msg of conv.messages) {
+				if (msg.role === "user") {
+					await ctx.db.insert("messages", {
+						conversationId,
+						userId,
+						role: "user",
+						content: msg.content,
+						...(workspaceId ? { workspaceId } : {}),
+					});
+					messageCount++;
+				} else {
+					const toolCalls = partsToToolCalls(msg.parts);
+					toolCallCount += toolCalls.length;
+					await ctx.db.insert("messages", {
+						conversationId,
+						userId,
+						role: "assistant",
+						content: msg.content,
+						parts: msg.parts,
+						...(toolCalls.length > 0 ? { toolCalls } : {}),
+						...(msg.reasoning ? { reasoning: msg.reasoning } : {}),
+						model: msg.model,
+						usage: msg.usage,
+						...(workspaceId ? { workspaceId } : {}),
+						...(msg.interrupted
+							? {
+									interrupted: true,
+									interruptionReason: msg.interruptionReason ?? "Interrupted",
+								}
+							: {}),
+					});
+					messageCount++;
+				}
+			}
+
+			// Touch the harness's lastUsedAt so the conversation feels real
+			// (the harness list orders by recency).
+			await ctx.db.patch(harnessId, { lastUsedAt: lastMessageAt });
+		}
+
+		return {
+			conversations: conversationCount,
+			messages: messageCount,
+			toolCalls: toolCallCount,
+			note: "Append-only seed. Run seed:clearAll first if you want a clean slate.",
+		};
+	},
+});
diff --git a/packages/convex-backend/convex/skills.ts b/packages/convex-backend/convex/skills.ts
index 0936cbc..441a0bb 100644
--- a/packages/convex-backend/convex/skills.ts
+++ b/packages/convex-backend/convex/skills.ts
@@ -79,11 +79,32 @@ export const browseSkills = query({
 export const searchSkillsIndex = query({
 	args: { query: v.string(), limit: v.number() },
 	handler: async (ctx, args) => {
-		const results = await ctx.db
-			.query("skillsIndex")
-			.withSearchIndex("search_skills", (q) => q.search("skillId", args.query))
-			.take(args.limit);
-		return results;
+		// Search both skillId and description indexes in parallel
+		const [byName, byDescription] = await Promise.all([
+			ctx.db
+				.query("skillsIndex")
+				.withSearchIndex("search_skills", (q) =>
+					q.search("skillId", args.query),
+				)
+				.take(args.limit),
+			ctx.db
+				.query("skillsIndex")
+				.withSearchIndex("search_skills_description", (q) =>
+					q.search("description", args.query),
+				)
+				.take(args.limit),
+		]);
+
+		// Merge and deduplicate, preferring name matches (listed first)
+		const seen = new Set<string>();
+		const merged = [];
+		for (const doc of [...byName, ...byDescription]) {
+			if (!seen.has(doc.fullId)) {
+				seen.add(doc.fullId);
+				merged.push(doc);
+			}
+		}
+		return merged.slice(0, args.limit);
 	},
 });
 
@@ -156,11 +177,32 @@ function normalizeSkillId(id: string): string {
 	return id.replace(/:/g, "-").toLowerCase();
 }
 
+/** Build GitHub API headers, including auth token if available. */
+function ghApiHeaders(): Record<string, string> {
+	const headers: Record<string, string> = {
+		Accept: "application/vnd.github.v3+json",
+	};
+	const token = process.env.GITHUB_TOKEN;
+	if (token) {
+		headers.Authorization = `token ${token}`;
+	}
+	return headers;
+}
+
+/** Build headers for raw.githubusercontent.com requests (auth only). */
+function ghRawHeaders(): Record<string, string> | undefined {
+	const token = process.env.GITHUB_TOKEN;
+	if (token) {
+		return { Authorization: `token ${token}` };
+	}
+	return undefined;
+}
+
 /** Resolve the canonical owner/repo via GitHub API (follows renames/redirects). */
 async function resolveGitHubRepo(source: string): Promise<string | null> {
 	try {
 		const resp = await fetch(`https://api.github.com/repos/${source}`, {
-			headers: { Accept: "application/vnd.github.v3+json" },
+			headers: ghApiHeaders(),
 		});
 		if (resp.ok) {
 			const data = (await resp.json()) as { full_name?: string };
@@ -208,7 +250,7 @@ async function fetchSkillMdFromRepo(
 	const bases = ["skills", ".agents/skills", ".claude/skills"];
 	const ghApi = "https://api.github.com";
 	const ghRaw = "https://raw.githubusercontent.com";
-	const ghHeaders = { Accept: "application/vnd.github.v3+json" };
+	const rawHeaders = ghRawHeaders();
 	const normalizedId = normalizeSkillId(skillId);
 	const branches = ["main", "master"];
 
@@ -221,6 +263,7 @@ async function fetchSkillMdFromRepo(
 				try {
 					const resp = await fetch(
 						`${ghRaw}/${source}/${branch}/${base}/${id}/SKILL.md`,
+						rawHeaders ? { headers: rawHeaders } : undefined,
 					);
 					if (resp.ok) return await resp.text();
 				} catch {
@@ -231,7 +274,10 @@ async function fetchSkillMdFromRepo(
 
 		// 2. Try repo-root SKILL.md
 		try {
-			const resp = await fetch(`${ghRaw}/${source}/${branch}/SKILL.md`);
+			const resp = await fetch(
+				`${ghRaw}/${source}/${branch}/SKILL.md`,
+				rawHeaders ? { headers: rawHeaders } : undefined,
+			);
 			if (resp.ok) return await resp.text();
 		} catch {
 			// Continue
@@ -243,7 +289,7 @@ async function fetchSkillMdFromRepo(
 		try {
 			const resp = await fetch(
 				`${ghApi}/repos/${source}/git/trees/${branch}?recursive=1`,
-				{ headers: ghHeaders },
+				{ headers: ghApiHeaders() },
 			);
 			if (!resp.ok) continue;
 
@@ -274,6 +320,7 @@ async function fetchSkillMdFromRepo(
 			if (match) {
 				const mdResp = await fetch(
 					`${ghRaw}/${source}/${branch}/${match}`,
+					rawHeaders ? { headers: rawHeaders } : undefined,
 				);
 				if (mdResp.ok) return await mdResp.text();
 			}
@@ -285,6 +332,7 @@ async function fetchSkillMdFromRepo(
 			if (rootSkillMd) {
 				const mdResp = await fetch(
 					`${ghRaw}/${source}/${branch}/${rootSkillMd}`,
+					rawHeaders ? { headers: rawHeaders } : undefined,
 				);
 				if (mdResp.ok) return await mdResp.text();
 			}
@@ -348,17 +396,41 @@ export const ensureSkillDetails = action({
 		const identity = await ctx.auth.getUserIdentity();
 		if (!identity) throw new Error("Unauthenticated");
 
+		// Batch-fetch cached details and sources in two queries instead of 2N
+		const [cachedNames, sourceMap] = await Promise.all([
+			ctx.runQuery(internal.skills.getExistingDetailNames, {
+				names: args.names,
+			}),
+			ctx.runQuery(internal.skills.getSkillSources, {
+				fullIds: args.names,
+			}),
+		]);
+		const cachedSet = new Set(cachedNames);
+
+		const namesToProcess = args.names.filter((n) => !cachedSet.has(n));
+		if (namesToProcess.length === 0) return;
+
 		const CONCURRENCY = 3;
 
 		async function processSkill(name: string) {
-			const existing = await ctx.runQuery(internal.skills.getDetailByName, {
-				name,
-			});
-			if (existing?.detail) return;
-
-			const parts = name.split("/");
-			const skillId = parts.pop() ?? name;
-			const source = parts.join("/");
+			// Look up the authoritative source from skillsIndex first,
+			// falling back to splitting the fullId (which can be wrong for
+			// skills whose fullId has more than 3 segments).
+			const indexSource = sourceMap[name] ?? null;
+
+			let source: string;
+			let skillId: string;
+			if (indexSource) {
+				source = indexSource;
+				// skillId is the portion of fullId after the source prefix
+				skillId = name.startsWith(source + "/")
+					? name.slice(source.length + 1)
+					: name.split("/").pop() ?? name;
+			} else {
+				const parts = name.split("/");
+				skillId = parts.pop() ?? name;
+				source = parts.join("/");
+			}
 
 			if (!source) return;
 
@@ -384,8 +456,8 @@ export const ensureSkillDetails = action({
 		}
 
 		// Process in bounded-concurrency batches
-		for (let i = 0; i < args.names.length; i += CONCURRENCY) {
-			const batch = args.names.slice(i, i + CONCURRENCY);
+		for (let i = 0; i < namesToProcess.length; i += CONCURRENCY) {
+			const batch = namesToProcess.slice(i, i + CONCURRENCY);
 			await Promise.all(batch.map(processSkill));
 		}
 	},
@@ -402,6 +474,52 @@ export const getDetailByName = internalQuery({
 	},
 });
 
+/** Batch check which names already have cached details */
+export const getExistingDetailNames = internalQuery({
+	args: { names: v.array(v.string()) },
+	handler: async (ctx, args) => {
+		const results = await Promise.all(
+			args.names.map(async (name) => {
+				const doc = await ctx.db
+					.query("skillDetails")
+					.withIndex("by_name", (q) => q.eq("name", name))
+					.first();
+				return doc?.detail ? name : null;
+			}),
+		);
+		return results.filter((n): n is string => n !== null);
+	},
+});
+
+/** Look up a skill's source from the skillsIndex by its fullId. */
+export const getSkillSource = internalQuery({
+	args: { fullId: v.string() },
+	handler: async (ctx, args) => {
+		const doc = await ctx.db
+			.query("skillsIndex")
+			.withIndex("by_fullId", (q) => q.eq("fullId", args.fullId))
+			.first();
+		return doc?.source ?? null;
+	},
+});
+
+/** Batch look up sources for multiple fullIds from the skillsIndex. */
+export const getSkillSources = internalQuery({
+	args: { fullIds: v.array(v.string()) },
+	handler: async (ctx, args) => {
+		const entries = await Promise.all(
+			args.fullIds.map(async (fullId) => {
+				const doc = await ctx.db
+					.query("skillsIndex")
+					.withIndex("by_fullId", (q) => q.eq("fullId", fullId))
+					.first();
+				return [fullId, doc?.source ?? null] as const;
+			}),
+		);
+		return Object.fromEntries(entries) as Record<string, string | null>;
+	},
+});
+
 /**
  * Action to discover and upsert new skills from skills.sh search API.
  * Called from the frontend when search returns results not in our index.
@@ -418,6 +536,9 @@ export const discoverSkillsFromSearch = action({
 		),
 	},
 	handler: async (ctx, args): Promise<number> => {
+
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return 0;
 		// Check which ones we already have
 		const fullIds = args.skills.map((s) => s.fullId);
 		const existingIds = await ctx.runQuery(
@@ -447,3 +568,40 @@ export const discoverSkillsFromSearch = action({
 		});
 	},
 });
+
+export const searchForCreationAssistant = query({
+	args: { query: v.string() },
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return [];
+
+		const [byName, byDesc] = await Promise.all([
+			ctx.db
+				.query("skillsIndex")
+				.withSearchIndex("search_skills", (q) => q.search("skillId", args.query))
+				.take(20),
+			ctx.db
+				.query("skillsIndex")
+				.withSearchIndex("search_skills_description", (q) =>
+					q.search("description", args.query),
+				)
+				.take(20),
+		]);
+
+		const seen = new Set<string>();
+		const merged = [...byName, ...byDesc].filter((s) => {
+			if (seen.has(s.fullId)) return false;
+			seen.add(s.fullId);
+			return true;
+		});
+
+		merged.sort((a, b) => b.installs - a.installs);
+
+		return merged.slice(0, 20).map((s) => ({
+			id: s.fullId,
+			fullId: s.fullId,
+			description: s.description,
+			installs: s.installs,
+		}));
+	},
+});
diff --git a/packages/convex-backend/convex/tsconfig.json b/packages/convex-backend/convex/tsconfig.json
index 93e186c..265be46 100644
--- a/packages/convex-backend/convex/tsconfig.json
+++ b/packages/convex-backend/convex/tsconfig.json
@@ -26,6 +26,7 @@
     "./**/*"
   ],
   "exclude": [
-    "./_generated"
+    "./_generated",
+    "./**/*.test.ts"
   ]
 }
\ No newline at end of file
diff --git a/packages/convex-backend/convex/usage.test.ts b/packages/convex-backend/convex/usage.test.ts
new file mode 100644
index 0000000..1a80a27
--- /dev/null
+++ b/packages/convex-backend/convex/usage.test.ts
@@ -0,0 +1,275 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api, internal } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+const baseHarness = (o = {}) => ({
+	name: "h",
+	model: "m",
+	status: "stopped" as const,
+	mcpServers: [],
+	skills: [],
+	...o,
+});
+
+describe("usage.checkBudget", () => {
+	it("returns allowed with defaults when no budget rows exist", async () => {
+		const { raw } = makeT();
+		const res = await raw.query(internal.usage.checkBudget, {
+			userId: "u-a",
+			day: "2026-04-21",
+			week: "2026-W17",
+		});
+		expect(res.allowed).toBe(true);
+		expect(res.daily.costLimit).toBe(20);
+		expect(res.weekly.costLimit).toBe(100);
+		expect(res.daily.pctUsed).toBe(0);
+	});
+
+	it("blocks when daily cost has hit the limit", async () => {
+		const { raw } = makeT();
+		await raw.run(async (ctx) => {
+			await ctx.db.insert("usageBudgets", {
+				userId: "u-a",
+				periodType: "daily",
+				period: "2026-04-21",
+				totalCostUsed: 2,
+				costLimit: 2,
+				totalTokensUsed: 0,
+				perModelUsage: [],
+				perHarnessUsage: [],
+				updatedAt: Date.now(),
+			});
+		});
+		const res = await raw.query(internal.usage.checkBudget, {
+			userId: "u-a",
+			day: "2026-04-21",
+			week: "2026-W17",
+		});
+		expect(res.allowed).toBe(false);
+		expect(res.daily.pctUsed).toBe(100);
+	});
+});
+
+describe("usage.recordUsage", () => {
+	async function recordFrom(userId: string, conversationId: string, overrides: Partial<{
+		cost: number;
+		totalTokens: number;
+		model: string;
+		day: string;
+		week: string;
+		harnessId?: string;
+		harnessName?: string;
+	}> = {}) {
+		return {
+			userId,
+			conversationId,
+			model: overrides.model ?? "m",
+			promptTokens: 10,
+			completionTokens: 20,
+			totalTokens: overrides.totalTokens ?? 30,
+			cost: overrides.cost ?? 0.5,
+			day: overrides.day ?? "2026-04-21",
+			week: overrides.week ?? "2026-W17",
+			...(overrides.harnessId ? { harnessId: overrides.harnessId } : {}),
+			...(overrides.harnessName ? { harnessName: overrides.harnessName } : {}),
+		};
+	}
+
+	it("creates a ledger row plus daily and weekly budget docs", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const convId = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await raw.mutation(
+			internal.usage.recordUsage,
+			// biome-ignore lint/suspicious/noExplicitAny: the recordUsage validator requires Id<"conversations">
+			(await recordFrom("u-a", convId)) as any,
+		);
+
+		await raw.run(async (ctx) => {
+			const ledger = await ctx.db.query("usageLedger").collect();
+			expect(ledger).toHaveLength(1);
+			const budgets = await ctx.db.query("usageBudgets").collect();
+			expect(budgets.map((b) => b.periodType).sort()).toEqual([
+				"daily",
+				"weekly",
+			]);
+			const daily = budgets.find((b) => b.periodType === "daily")!;
+			expect(daily.totalCostUsed).toBe(0.5);
+			expect(daily.perModelUsage[0]).toMatchObject({ model: "m", tokensUsed: 30 });
+		});
+	});
+
+	it("accumulates cost + tokens on the same day", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const convId = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		// biome-ignore lint/suspicious/noExplicitAny: recordUsage validator requires the id type
+		const payload = (await recordFrom("u-a", convId, { cost: 0.3 })) as any;
+		await raw.mutation(internal.usage.recordUsage, payload);
+		await raw.mutation(internal.usage.recordUsage, payload);
+
+		await raw.run(async (ctx) => {
+			const daily = await ctx.db
+				.query("usageBudgets")
+				.withIndex("by_user_period", (q) =>
+					q
+						.eq("userId", "u-a")
+						.eq("periodType", "daily")
+						.eq("period", "2026-04-21"),
+				)
+				.unique();
+			expect(daily!.totalCostUsed).toBeCloseTo(0.6, 5);
+			expect(daily!.totalTokensUsed).toBe(60);
+			// Same model → single accumulated row, not duplicated
+			expect(daily!.perModelUsage).toHaveLength(1);
+			expect(daily!.perModelUsage[0].tokensUsed).toBe(60);
+		});
+	});
+});
+
+describe("usage.getUserUsage", () => {
+	it("returns null when unauthenticated", async () => {
+		const { raw } = makeT();
+		expect(await raw.query(api.usage.getUserUsage, {})).toBeNull();
+	});
+
+	it("returns zero percentages when no budget rows exist", async () => {
+		const a = makeT().asUser("u-a");
+		const res = await a.query(api.usage.getUserUsage, {});
+		expect(res!.dailyPctUsed).toBe(0);
+		expect(res!.weeklyPctUsed).toBe(0);
+		expect(res!.dailyLimitReached).toBe(false);
+		expect(res!.perModelPct).toEqual([]);
+	});
+});
+
+describe("usage.getConversationUsage", () => {
+	it("returns null for a conversation owned by another user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("u-a");
+		const b = asUser("u-b");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const c = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		expect(
+			await b.query(api.usage.getConversationUsage, { conversationId: c }),
+		).toBeNull();
+	});
+
+	it("aggregates totals across ledger rows", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("u-a");
+		const h = await a.mutation(api.harnesses.create, baseHarness());
+		const c = await a.mutation(api.conversations.create, {
+			title: "c",
+			harnessId: h,
+		});
+		await raw.run(async (ctx) => {
+			await ctx.db.insert("usageLedger", {
+				userId: "u-a",
+				conversationId: c,
+				model: "m",
+				promptTokens: 10,
+				completionTokens: 20,
+				totalTokens: 30,
+				cost: 0.1,
+				day: "2026-04-21",
+				week: "2026-W17",
+				recordedAt: Date.now(),
+			});
+			await ctx.db.insert("usageLedger", {
+				userId: "u-a",
+				conversationId: c,
+				model: "m",
+				promptTokens: 5,
+				completionTokens: 5,
+				totalTokens: 10,
+				cost: 0.05,
+				day: "2026-04-21",
+				week: "2026-W17",
+				recordedAt: Date.now(),
+			});
+		});
+		const res = await a.query(api.usage.getConversationUsage, {
+			conversationId: c,
+		});
+		expect(res).toEqual({
+			totalTokens: 40,
+			totalCost: expect.closeTo(0.15, 5),
+			messageCount: 2,
+		});
+	});
+});
+
+describe("usage.adminSetLimits (internal)", () => {
+	it("creates budget rows with custom limits when none exist", async () => {
+		const { raw } = makeT();
+		await raw.mutation(internal.usage.adminSetLimits, {
+			userId: "u-a",
+			dailyCostLimit: 5,
+			weeklyCostLimit: 25,
+		});
+		await raw.run(async (ctx) => {
+			const rows = await ctx.db.query("usageBudgets").collect();
+			const limits = rows.map((r) => r.costLimit).sort((x, y) => x - y);
+			expect(limits).toEqual([5, 25]);
+		});
+	});
+
+	it("patches existing budget rows without resetting usage", async () => {
+		const { raw } = makeT();
+		const today = new Date().toISOString().slice(0, 10);
+		await raw.run(async (ctx) => {
+			await ctx.db.insert("usageBudgets", {
+				userId: "u-a",
+				periodType: "daily",
+				period: today,
+				totalCostUsed: 1.5,
+				costLimit: 2,
+				totalTokensUsed: 100,
+				perModelUsage: [],
+				perHarnessUsage: [],
+				updatedAt: Date.now(),
+			});
+		});
+		await raw.mutation(internal.usage.adminSetLimits, {
+			userId: "u-a",
+			dailyCostLimit: 10,
+		});
+		await raw.run(async (ctx) => {
+			const daily = await ctx.db
+				.query("usageBudgets")
+				.withIndex("by_user_period", (q) =>
+					q
+						.eq("userId", "u-a")
+						.eq("periodType", "daily")
+						.eq("period", today),
+				)
+				.unique();
+			expect(daily!.costLimit).toBe(10);
+			expect(daily!.totalCostUsed).toBe(1.5);
+		});
+	});
+});
diff --git a/packages/convex-backend/convex/usage.ts b/packages/convex-backend/convex/usage.ts
new file mode 100644
index 0000000..de3b651
--- /dev/null
+++ b/packages/convex-backend/convex/usage.ts
@@ -0,0 +1,469 @@
+import { v } from "convex/values";
+import { internalMutation, internalQuery, query } from "./_generated/server";
+import type { MutationCtx } from "./_generated/server";
+
+// Single source of truth for default cost limits (USD).
+// Per-user overrides are stored in usageBudgets.costLimit via adminSetLimits.
+const DEFAULT_DAILY_COST_LIMIT = 20.0;
+const DEFAULT_WEEKLY_COST_LIMIT = 100.0;
+
+/**
+ * Check whether a user is within their daily and weekly cost budgets.
+ * Called by FastAPI via the HTTP API before starting a chat stream.
+ */
+export const checkBudget = internalQuery({
+	args: {
+		userId: v.string(),
+		day: v.string(), // "2026-04-08"
+		week: v.string(), // "2026-W15"
+	},
+	handler: async (ctx, args) => {
+		const daily = await ctx.db
+			.query("usageBudgets")
+			.withIndex("by_user_period", (q) =>
+				q
+					.eq("userId", args.userId)
+					.eq("periodType", "daily")
+					.eq("period", args.day),
+			)
+			.unique();
+
+		const weekly = await ctx.db
+			.query("usageBudgets")
+			.withIndex("by_user_period", (q) =>
+				q
+					.eq("userId", args.userId)
+					.eq("periodType", "weekly")
+					.eq("period", args.week),
+			)
+			.unique();
+
+		const dailyCostUsed = daily?.totalCostUsed ?? 0;
+		const dailyCostLimit = daily?.costLimit ?? DEFAULT_DAILY_COST_LIMIT;
+		const weeklyCostUsed = weekly?.totalCostUsed ?? 0;
+		const weeklyCostLimit = weekly?.costLimit ?? DEFAULT_WEEKLY_COST_LIMIT;
+
+		const dailyPct = dailyCostLimit > 0 ? (dailyCostUsed / dailyCostLimit) * 100 : 0;
+		const weeklyPct = weeklyCostLimit > 0 ? (weeklyCostUsed / weeklyCostLimit) * 100 : 0;
+
+		const allowed = dailyCostUsed < dailyCostLimit && weeklyCostUsed < weeklyCostLimit;
+
+		return {
+			allowed,
+			daily: {
+				costUsed: dailyCostUsed,
+				costLimit: dailyCostLimit,
+				pctUsed: Math.min(dailyPct, 100),
+			},
+			weekly: {
+				costUsed: weeklyCostUsed,
+				costLimit: weeklyCostLimit,
+				pctUsed: Math.min(weeklyPct, 100),
+			},
+		};
+	},
+});
+
+/**
+ * Record usage after a chat stream completes. Called by FastAPI via the HTTP API.
+ * Inserts a ledger row and upserts both daily and weekly budget documents.
+ *
+ * Concurrency note: upsertBudget uses a read-then-patch pattern. Under concurrent
+ * requests for the same user, Convex's OCC (optimistic concurrency control) will
+ * detect the conflict and automatically retry the mutation, so increments are not lost.
+ */
+export const recordUsage = internalMutation({
+	args: {
+		userId: v.string(),
+		conversationId: v.id("conversations"),
+		harnessId: v.optional(v.string()),
+		harnessName: v.optional(v.string()),
+		model: v.string(),
+		promptTokens: v.number(),
+		completionTokens: v.number(),
+		totalTokens: v.number(),
+		cost: v.number(),
+		day: v.string(),
+		week: v.string(),
+	},
+	handler: async (ctx, args) => {
+		// Insert ledger entry
+		await ctx.db.insert("usageLedger", {
+			userId: args.userId,
+			conversationId: args.conversationId,
+			harnessId: args.harnessId,
+			harnessName: args.harnessName,
+			model: args.model,
+			promptTokens: args.promptTokens,
+			completionTokens: args.completionTokens,
+			totalTokens: args.totalTokens,
+			cost: args.cost,
+			day: args.day,
+			week: args.week,
+			recordedAt: Date.now(),
+		});
+
+		// Upsert daily budget
+		await upsertBudget(ctx, {
+			userId: args.userId,
+			periodType: "daily" as const,
+			period: args.day,
+			defaultLimit: DEFAULT_DAILY_COST_LIMIT,
+			cost: args.cost,
+			totalTokens: args.totalTokens,
+			model: args.model,
+			harnessId: args.harnessId,
+			harnessName: args.harnessName,
+		});
+
+		// Upsert weekly budget
+		await upsertBudget(ctx, {
+			userId: args.userId,
+			periodType: "weekly" as const,
+			period: args.week,
+			defaultLimit: DEFAULT_WEEKLY_COST_LIMIT,
+			cost: args.cost,
+			totalTokens: args.totalTokens,
+			model: args.model,
+			harnessId: args.harnessId,
+			harnessName: args.harnessName,
+		});
+	},
+});
+
+async function upsertBudget(
+	ctx: Pick<MutationCtx, "db">,
+	params: {
+		userId: string;
+		periodType: "daily" | "weekly";
+		period: string;
+		defaultLimit: number;
+		cost: number;
+		totalTokens: number;
+		model: string;
+		harnessId?: string;
+		harnessName?: string;
+	},
+) {
+	const existing = await ctx.db
+		.query("usageBudgets")
+		.withIndex("by_user_period", (q) =>
+			q
+				.eq("userId", params.userId)
+				.eq("periodType", params.periodType)
+				.eq("period", params.period),
+		)
+		.unique();
+
+	if (existing) {
+		// Update per-model usage
+		const perModelUsage = [...existing.perModelUsage];
+		const modelIdx = perModelUsage.findIndex((m) => m.model === params.model);
+		if (modelIdx >= 0) {
+			perModelUsage[modelIdx] = {
+				...perModelUsage[modelIdx],
+				tokensUsed: perModelUsage[modelIdx].tokensUsed + params.totalTokens,
+				costUsed: perModelUsage[modelIdx].costUsed + params.cost,
+			};
+		} else {
+			perModelUsage.push({
+				model: params.model,
+				tokensUsed: params.totalTokens,
+				costUsed: params.cost,
+			});
+		}
+
+		// Update per-harness usage
+		const perHarnessUsage = [...existing.perHarnessUsage];
+		if (params.harnessId) {
+			const harnessIdx = perHarnessUsage.findIndex(
+				(h) => h.harnessId === params.harnessId,
+			);
+			if (harnessIdx >= 0) {
+				perHarnessUsage[harnessIdx] = {
+					...perHarnessUsage[harnessIdx],
+					tokensUsed: perHarnessUsage[harnessIdx].tokensUsed + params.totalTokens,
+					costUsed: perHarnessUsage[harnessIdx].costUsed + params.cost,
+				};
+			} else {
+				perHarnessUsage.push({
+					harnessId: params.harnessId,
+					harnessName: params.harnessName ?? "Unknown",
+					tokensUsed: params.totalTokens,
+					costUsed: params.cost,
+				});
+			}
+		}
+
+		await ctx.db.patch(existing._id, {
+			totalCostUsed: existing.totalCostUsed + params.cost,
+			totalTokensUsed: existing.totalTokensUsed + params.totalTokens,
+			perModelUsage,
+			perHarnessUsage,
+			updatedAt: Date.now(),
+		});
+	} else {
+		// Create new budget document
+		const perModelUsage = [
+			{ model: params.model, tokensUsed: params.totalTokens, costUsed: params.cost },
+		];
+		const perHarnessUsage = params.harnessId
+			? [
+					{
+						harnessId: params.harnessId,
+						harnessName: params.harnessName ?? "Unknown",
+						tokensUsed: params.totalTokens,
+						costUsed: params.cost,
+					},
+				]
+			: [];
+
+		await ctx.db.insert("usageBudgets", {
+			userId: params.userId,
+			periodType: params.periodType,
+			period: params.period,
+			totalCostUsed: params.cost,
+			costLimit: params.defaultLimit,
+			totalTokensUsed: params.totalTokens,
+			perModelUsage,
+			perHarnessUsage,
+			updatedAt: Date.now(),
+		});
+	}
+}
+
+/**
+ * Get the current user's usage as percentages. Never exposes raw costs.
+ * Called by the frontend reactively.
+ */
+export const getUserUsage = query({
+	args: {},
+	handler: async (ctx) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return null;
+		const userId = identity.subject;
+
+		const now = new Date();
+		const day = formatDay(now);
+		const week = formatWeek(now);
+
+		const daily = await ctx.db
+			.query("usageBudgets")
+			.withIndex("by_user_period", (q) =>
+				q.eq("userId", userId).eq("periodType", "daily").eq("period", day),
+			)
+			.unique();
+
+		const weekly = await ctx.db
+			.query("usageBudgets")
+			.withIndex("by_user_period", (q) =>
+				q.eq("userId", userId).eq("periodType", "weekly").eq("period", week),
+			)
+			.unique();
+
+		const dailyCostLimit = daily?.costLimit ?? DEFAULT_DAILY_COST_LIMIT;
+		const weeklyCostLimit = weekly?.costLimit ?? DEFAULT_WEEKLY_COST_LIMIT;
+		const dailyCostUsed = daily?.totalCostUsed ?? 0;
+		const weeklyCostUsed = weekly?.totalCostUsed ?? 0;
+
+		const dailyPct = dailyCostLimit > 0 ? Math.min((dailyCostUsed / dailyCostLimit) * 100, 100) : 0;
+		const weeklyPct = weeklyCostLimit > 0 ? Math.min((weeklyCostUsed / weeklyCostLimit) * 100, 100) : 0;
+
+		// Per-model percentages (relative to total usage, not limit)
+		const totalCost = daily?.totalCostUsed ?? 0;
+		const perModelPct = (daily?.perModelUsage ?? []).map((m) => ({
+			model: m.model,
+			pct: totalCost > 0 ? (m.costUsed / totalCost) * 100 : 0,
+			tokensUsed: m.tokensUsed,
+		}));
+
+		// Per-harness percentages (relative to total usage)
+		const perHarnessPct = (daily?.perHarnessUsage ?? []).map((h) => ({
+			harnessId: h.harnessId,
+			harnessName: h.harnessName,
+			pct: totalCost > 0 ? (h.costUsed / totalCost) * 100 : 0,
+			tokensUsed: h.tokensUsed,
+		}));
+
+		// Compute reset times
+		const tomorrow = new Date(now);
+		tomorrow.setUTCDate(tomorrow.getUTCDate() + 1);
+		tomorrow.setUTCHours(0, 0, 0, 0);
+
+		// Weekly reset: next Monday 00:00 UTC
+		const dayOfWeek = now.getUTCDay(); // 0=Sun
+		const daysUntilMonday = dayOfWeek === 0 ? 1 : 8 - dayOfWeek;
+		const nextMonday = new Date(now);
+		nextMonday.setUTCDate(nextMonday.getUTCDate() + daysUntilMonday);
+		nextMonday.setUTCHours(0, 0, 0, 0);
+
+		return {
+			dailyPctUsed: Math.round(dailyPct * 10) / 10,
+			weeklyPctUsed: Math.round(weeklyPct * 10) / 10,
+			dailyLimitReached: dailyCostUsed >= dailyCostLimit,
+			weeklyLimitReached: weeklyCostUsed >= weeklyCostLimit,
+			perModelPct,
+			perHarnessPct,
+			dailyResetAt: tomorrow.toISOString(),
+			weeklyResetAt: nextMonday.toISOString(),
+		};
+	},
+});
+
+/**
+ * Get usage aggregated for a specific conversation.
+ */
+export const getConversationUsage = query({
+	args: { conversationId: v.id("conversations") },
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return null;
+
+		const convo = await ctx.db.get(args.conversationId);
+		if (!convo || convo.userId !== identity.subject) return null;
+
+		const entries = await ctx.db
+			.query("usageLedger")
+			.withIndex("by_conversation", (q) =>
+				q.eq("conversationId", args.conversationId),
+			)
+			.collect();
+
+		let totalTokens = 0;
+		let totalCost = 0;
+		for (const entry of entries) {
+			totalTokens += entry.totalTokens;
+			totalCost += entry.cost;
+		}
+
+		return { totalTokens, totalCost, messageCount: entries.length };
+	},
+});
+
+/**
+ * Admin/system mutation to override a user's cost limits.
+ */
+export const adminSetLimits = internalMutation({
+	args: {
+		userId: v.string(),
+		dailyCostLimit: v.optional(v.number()),
+		weeklyCostLimit: v.optional(v.number()),
+	},
+	handler: async (ctx, args) => {
+		const now = new Date();
+		const day = formatDay(now);
+		const week = formatWeek(now);
+
+		if (args.dailyCostLimit !== undefined) {
+			const daily = await ctx.db
+				.query("usageBudgets")
+				.withIndex("by_user_period", (q) =>
+					q
+						.eq("userId", args.userId)
+						.eq("periodType", "daily")
+						.eq("period", day),
+				)
+				.unique();
+
+			if (daily) {
+				await ctx.db.patch(daily._id, { costLimit: args.dailyCostLimit, updatedAt: Date.now() });
+			} else {
+				await ctx.db.insert("usageBudgets", {
+					userId: args.userId,
+					periodType: "daily",
+					period: day,
+					totalCostUsed: 0,
+					costLimit: args.dailyCostLimit,
+					totalTokensUsed: 0,
+					perModelUsage: [],
+					perHarnessUsage: [],
+					updatedAt: Date.now(),
+				});
+			}
+		}
+
+		if (args.weeklyCostLimit !== undefined) {
+			const weekly = await ctx.db
+				.query("usageBudgets")
+				.withIndex("by_user_period", (q) =>
+					q
+						.eq("userId", args.userId)
+						.eq("periodType", "weekly")
+						.eq("period", week),
+				)
+				.unique();
+
+			if (weekly) {
+				await ctx.db.patch(weekly._id, { costLimit: args.weeklyCostLimit, updatedAt: Date.now() });
+			} else {
+				await ctx.db.insert("usageBudgets", {
+					userId: args.userId,
+					periodType: "weekly",
+					period: week,
+					totalCostUsed: 0,
+					costLimit: args.weeklyCostLimit,
+					totalTokensUsed: 0,
+					perModelUsage: [],
+					perHarnessUsage: [],
+					updatedAt: Date.now(),
+				});
+			}
+		}
+	},
+});
+
+/**
+ * Reset every usageBudgets row's costLimit to the current defaults.
+ * Run via: `bunx convex run usage:resetAllCostLimits` (or the Convex dashboard).
+ *
+ * Does not touch totalCostUsed — only the limit. Returns counts for verification.
+ */
+export const resetAllCostLimits = internalMutation({
+	args: {},
+	handler: async (ctx) => {
+		const rows = await ctx.db.query("usageBudgets").collect();
+		const now = Date.now();
+		let dailyPatched = 0;
+		let weeklyPatched = 0;
+		for (const row of rows) {
+			const newLimit =
+				row.periodType === "daily"
+					? DEFAULT_DAILY_COST_LIMIT
+					: DEFAULT_WEEKLY_COST_LIMIT;
+			if (row.costLimit === newLimit) continue;
+			await ctx.db.patch(row._id, { costLimit: newLimit, updatedAt: now });
+			if (row.periodType === "daily") dailyPatched++;
+			else weeklyPatched++;
+		}
+		return {
+			dailyPatched,
+			weeklyPatched,
+			total: rows.length,
+			dailyLimit: DEFAULT_DAILY_COST_LIMIT,
+			weeklyLimit: DEFAULT_WEEKLY_COST_LIMIT,
+		};
+	},
+});
+
+// --- Helpers ---
+
+function formatDay(date: Date): string {
+	return date.toISOString().slice(0, 10); // "YYYY-MM-DD"
+}
+
+/**
+ * ISO 8601 week number. Uses the Thursday-based algorithm: the week containing
+ * the year's first Thursday is week 1.
+ *
+ * IMPORTANT: The Python counterpart in fastapi/app/services/usage.py uses
+ * datetime.isocalendar() which implements the same ISO 8601 standard. Both must
+ * produce identical week keys — if they drift, Python-written records become
+ * invisible to TypeScript queries. Test at year boundaries if modifying.
+ */
+function formatWeek(date: Date): string {
+	const d = new Date(Date.UTC(date.getUTCFullYear(), date.getUTCMonth(), date.getUTCDate()));
+	d.setUTCDate(d.getUTCDate() + 4 - (d.getUTCDay() || 7));
+	const yearStart = new Date(Date.UTC(d.getUTCFullYear(), 0, 1));
+	const weekNo = Math.ceil(((d.getTime() - yearStart.getTime()) / 86400000 + 1) / 7);
+	return `${d.getUTCFullYear()}-W${String(weekNo).padStart(2, "0")}`;
+}
diff --git a/packages/convex-backend/convex/userSettings.test.ts b/packages/convex-backend/convex/userSettings.test.ts
new file mode 100644
index 0000000..c80e697
--- /dev/null
+++ b/packages/convex-backend/convex/userSettings.test.ts
@@ -0,0 +1,90 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+function makeT() {
+	const raw = convexTest(schema, modules);
+	return {
+		raw,
+		asUser: (uid: string) =>
+			raw.withIdentity({ subject: uid, issuer: "test" }),
+	};
+}
+
+describe("userSettings.get", () => {
+	it("returns baked-in defaults when unauthenticated", async () => {
+		const { raw } = makeT();
+		const settings = await raw.query(api.userSettings.get, {});
+		expect(settings).toEqual({
+			autoSwitchHarness: true,
+			displayMode: "standard",
+			modelSelectorMode: "session",
+			workspacesMode: "basic",
+		});
+	});
+
+	it("returns defaults when the user has no row yet", async () => {
+		const a = makeT().asUser("user-a");
+		const settings = await a.query(api.userSettings.get, {});
+		expect(settings.autoSwitchHarness).toBe(true);
+		expect(settings.displayMode).toBe("standard");
+	});
+
+	it("returns the stored row after an update", async () => {
+		const a = makeT().asUser("user-a");
+		await a.mutation(api.userSettings.update, {
+			autoSwitchHarness: false,
+			displayMode: "developer",
+			modelSelectorMode: "harness",
+			workspacesMode: "workspaces",
+		});
+		const settings = await a.query(api.userSettings.get, {});
+		expect(settings).toEqual({
+			autoSwitchHarness: false,
+			displayMode: "developer",
+			modelSelectorMode: "harness",
+			workspacesMode: "workspaces",
+		});
+	});
+});
+
+describe("userSettings.update", () => {
+	it("requires authentication", async () => {
+		const { raw } = makeT();
+		await expect(
+			raw.mutation(api.userSettings.update, { autoSwitchHarness: false }),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("partially updates without clobbering existing fields", async () => {
+		const a = makeT().asUser("user-a");
+		await a.mutation(api.userSettings.update, {
+			autoSwitchHarness: false,
+			displayMode: "zen",
+		});
+		await a.mutation(api.userSettings.update, { displayMode: "developer" });
+		const settings = await a.query(api.userSettings.get, {});
+		expect(settings.displayMode).toBe("developer");
+		expect(settings.autoSwitchHarness).toBe(false); // preserved
+	});
+
+	it("isolates settings per user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("user-a");
+		const b = asUser("user-b");
+		await a.mutation(api.userSettings.update, { displayMode: "zen" });
+		const bSettings = await b.query(api.userSettings.get, {});
+		expect(bSettings.displayMode).toBe("standard");
+	});
+
+	it("ignores undefined args so they don't overwrite stored values", async () => {
+		const a = makeT().asUser("user-a");
+		await a.mutation(api.userSettings.update, { displayMode: "zen" });
+		await a.mutation(api.userSettings.update, {}); // no-op
+		const settings = await a.query(api.userSettings.get, {});
+		expect(settings.displayMode).toBe("zen");
+	});
+});
diff --git a/packages/convex-backend/convex/userSettings.ts b/packages/convex-backend/convex/userSettings.ts
index 10b543c..d518e5b 100644
--- a/packages/convex-backend/convex/userSettings.ts
+++ b/packages/convex-backend/convex/userSettings.ts
@@ -5,6 +5,7 @@ const DEFAULTS = {
 	autoSwitchHarness: true,
 	displayMode: "standard" as const,
 	modelSelectorMode: "session" as const,
+	workspacesMode: "basic" as const,
 } as const;
 
 export const get = query({
@@ -23,6 +24,7 @@ export const get = query({
 			autoSwitchHarness: settings.autoSwitchHarness,
 			displayMode: settings.displayMode ?? "standard",
 			modelSelectorMode: settings.modelSelectorMode ?? "session",
+			workspacesMode: settings.workspacesMode ?? "basic"
 		};
 	},
 });
@@ -40,6 +42,9 @@ export const update = mutation({
 		modelSelectorMode: v.optional(
 			v.union(v.literal("session"), v.literal("harness")),
 		),
+		workspacesMode: v.optional(
+			v.union(v.literal("basic"), v.literal("workspaces")),
+		),
 	},
 	handler: async (ctx, args) => {
 		const identity = await ctx.auth.getUserIdentity();
diff --git a/packages/convex-backend/convex/workspaces.test.ts b/packages/convex-backend/convex/workspaces.test.ts
new file mode 100644
index 0000000..a0fb319
--- /dev/null
+++ b/packages/convex-backend/convex/workspaces.test.ts
@@ -0,0 +1,177 @@
+import { convexTest } from "convex-test";
+import { describe, expect, it } from "vitest";
+import { api } from "./_generated/api";
+import schema from "./schema";
+
+const modules = import.meta.glob("./**/*.*s");
+
+// Helper: create a fresh isolated DB harness per test.
+function makeT() {
+	const raw = convexTest(schema, modules);
+	const asUser = (userId: string) =>
+		raw.withIdentity({ subject: userId, issuer: "test" });
+	return { raw, asUser };
+}
+
+describe("workspaces.list", () => {
+	it("returns an empty array when unauthenticated", async () => {
+		const { raw } = makeT();
+		const rows = await raw.query(api.workspaces.list, {});
+		expect(rows).toEqual([]);
+	});
+
+	it("returns only workspaces owned by the caller, newest first", async () => {
+		const { asUser } = makeT();
+		const a = asUser("user-a");
+		const b = asUser("user-b");
+
+		await a.mutation(api.workspaces.create, { name: "first" });
+		await new Promise((r) => setTimeout(r, 2));
+		await a.mutation(api.workspaces.create, { name: "second" });
+		await b.mutation(api.workspaces.create, { name: "other" });
+
+		const rowsA = await a.query(api.workspaces.list, {});
+		expect(rowsA.map((r) => r.name)).toEqual(["second", "first"]);
+		expect(rowsA.every((r) => r.userId === "user-a")).toBe(true);
+	});
+});
+
+describe("workspaces.create", () => {
+	it("requires authentication", async () => {
+		const { raw } = makeT();
+		await expect(
+			raw.mutation(api.workspaces.create, { name: "x" }),
+		).rejects.toThrow(/Unauthenticated/);
+	});
+
+	it("trims whitespace and falls back to 'New workspace'", async () => {
+		const a = makeT().asUser("user-a");
+		const idEmpty = await a.mutation(api.workspaces.create, { name: "  " });
+		const idTrimmed = await a.mutation(api.workspaces.create, {
+			name: "  hello  ",
+		});
+
+		const empty = await a.query(api.workspaces.get, { id: idEmpty });
+		const trimmed = await a.query(api.workspaces.get, { id: idTrimmed });
+		expect(empty?.name).toBe("New workspace");
+		expect(trimmed?.name).toBe("hello");
+	});
+
+	it("stores an optional color when provided", async () => {
+		const a = makeT().asUser("user-a");
+		const id = await a.mutation(api.workspaces.create, {
+			name: "w",
+			color: "rose",
+		});
+		const row = await a.query(api.workspaces.get, { id });
+		expect(row?.color).toBe("rose");
+	});
+});
+
+describe("workspaces.get", () => {
+	it("returns null when the workspace belongs to a different user", async () => {
+		const { asUser } = makeT();
+		const a = asUser("user-a");
+		const b = asUser("user-b");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		const row = await b.query(api.workspaces.get, { id });
+		expect(row).toBeNull();
+	});
+
+	it("returns null when unauthenticated", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("user-a");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		expect(await raw.query(api.workspaces.get, { id })).toBeNull();
+	});
+});
+
+describe("workspaces.update", () => {
+	it("rejects an empty name after trimming", async () => {
+		const a = makeT().asUser("user-a");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		await expect(
+			a.mutation(api.workspaces.update, { id, name: "   " }),
+		).rejects.toThrow(/name is required/);
+	});
+
+	it("clears the color when given an empty string", async () => {
+		const a = makeT().asUser("user-a");
+		const id = await a.mutation(api.workspaces.create, {
+			name: "w",
+			color: "rose",
+		});
+		await a.mutation(api.workspaces.update, { id, color: "" });
+		const row = await a.query(api.workspaces.get, { id });
+		expect(row?.color).toBeUndefined();
+	});
+
+	it("rejects attempts to update another user's workspace", async () => {
+		const { asUser } = makeT();
+		const a = asUser("user-a");
+		const b = asUser("user-b");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		await expect(
+			b.mutation(api.workspaces.update, { id, name: "hacked" }),
+		).rejects.toThrow(/Workspace not found/);
+	});
+});
+
+describe("workspaces.touch", () => {
+	it("bumps lastUsedAt", async () => {
+		const a = makeT().asUser("user-a");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		const before = await a.query(api.workspaces.get, { id });
+		await new Promise((r) => setTimeout(r, 2));
+		await a.mutation(api.workspaces.touch, { id });
+		const after = await a.query(api.workspaces.get, { id });
+		expect(after!.lastUsedAt).toBeGreaterThan(before!.lastUsedAt);
+	});
+});
+
+describe("workspaces.remove", () => {
+	it("cascades delete to conversations and messages in that workspace", async () => {
+		const { raw, asUser } = makeT();
+		const a = asUser("user-a");
+		const workspaceId = await a.mutation(api.workspaces.create, { name: "w" });
+
+		const convId = await raw.run(async (ctx) => {
+			const convId = await ctx.db.insert("conversations", {
+				title: "c",
+				userId: "user-a",
+				workspaceId,
+				lastMessageAt: Date.now(),
+			});
+			await ctx.db.insert("messages", {
+				conversationId: convId,
+				role: "user",
+				content: "hi",
+				workspaceId,
+				userId: "user-a",
+			});
+			return convId;
+		});
+
+		await a.mutation(api.workspaces.remove, { id: workspaceId });
+
+		await raw.run(async (ctx) => {
+			expect(await ctx.db.get(workspaceId)).toBeNull();
+			expect(await ctx.db.get(convId)).toBeNull();
+			const remaining = await ctx.db
+				.query("messages")
+				.withIndex("by_conversation", (q) => q.eq("conversationId", convId))
+				.collect();
+			expect(remaining).toEqual([]);
+		});
+	});
+
+	it("rejects remove on another user's workspace", async () => {
+		const { asUser } = makeT();
+		const a = asUser("user-a");
+		const b = asUser("user-b");
+		const id = await a.mutation(api.workspaces.create, { name: "w" });
+		await expect(b.mutation(api.workspaces.remove, { id })).rejects.toThrow(
+			/Workspace not found/,
+		);
+	});
+});
diff --git a/packages/convex-backend/convex/workspaces.ts b/packages/convex-backend/convex/workspaces.ts
new file mode 100644
index 0000000..af0b4b4
--- /dev/null
+++ b/packages/convex-backend/convex/workspaces.ts
@@ -0,0 +1,179 @@
+import { v } from "convex/values";
+import type { MutationCtx } from "./_generated/server";
+import { mutation, query } from "./_generated/server";
+import type { Id } from "./_generated/dataModel";
+
+async function assertOwnedWorkspace(
+	ctx: MutationCtx,
+	workspaceId: Id<"workspaces">,
+	userId: string,
+) {
+	const workspace = await ctx.db.get(workspaceId);
+	if (!workspace || workspace.userId !== userId) {
+		throw new Error("Workspace not found");
+	}
+	return workspace;
+}
+
+export const list = query({
+	handler: async (ctx) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return [];
+
+		return await ctx.db
+			.query("workspaces")
+			.withIndex("by_user_last_used", (q) =>
+				q.eq("userId", identity.subject),
+			)
+			.order("desc")
+			.collect();
+	},
+});
+
+export const get = query({
+	args: { id: v.id("workspaces") },
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) return null;
+
+		const workspace = await ctx.db.get(args.id);
+		if (!workspace || workspace.userId !== identity.subject) return null;
+		return workspace;
+	},
+});
+
+export const create = mutation({
+	args: {
+		name: v.optional(v.string()),
+		harnessId: v.optional(v.id("harnesses")),
+		sandboxId: v.optional(v.id("sandboxes")),
+		color: v.optional(v.string()),
+	},
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+
+		const [harness, sandbox] = await Promise.all([
+			args.harnessId ? ctx.db.get(args.harnessId) : Promise.resolve(null),
+			args.sandboxId ? ctx.db.get(args.sandboxId) : Promise.resolve(null),
+		]);
+
+		if (args.harnessId && (!harness || harness.userId !== identity.subject)) {
+			throw new Error("Harness not found");
+		}
+		if (args.sandboxId && (!sandbox || sandbox.userId !== identity.subject)) {
+			throw new Error("Sandbox not found");
+		}
+
+		const now = Date.now();
+		return await ctx.db.insert("workspaces", {
+			userId: identity.subject,
+			name: args.name?.trim() || harness?.name || "New workspace",
+			...(args.harnessId ? { harnessId: args.harnessId } : {}),
+			...(args.sandboxId ? { sandboxId: args.sandboxId } : {}),
+			...(args.color ? { color: args.color } : {}),
+			createdAt: now,
+			lastUsedAt: now,
+		});
+	},
+});
+
+export const update = mutation({
+	args: {
+		id: v.id("workspaces"),
+		name: v.optional(v.string()),
+		harnessId: v.optional(v.union(v.id("harnesses"), v.null())),
+		sandboxId: v.optional(v.union(v.id("sandboxes"), v.null())),
+		color: v.optional(v.string()),
+	},
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+
+		await assertOwnedWorkspace(ctx, args.id, identity.subject);
+		const updates: {
+			name?: string;
+			harnessId?: Id<"harnesses"> | undefined;
+			sandboxId?: Id<"sandboxes"> | undefined;
+			color?: string;
+			lastUsedAt: number;
+		} = {
+			lastUsedAt: Date.now(),
+		};
+		if (args.name !== undefined) {
+			const name = args.name.trim();
+			if (!name) throw new Error("Workspace name is required");
+			updates.name = name;
+		}
+		if (args.harnessId !== undefined) {
+			if (args.harnessId === null) {
+				updates.harnessId = undefined;
+			} else {
+				const harness = await ctx.db.get(args.harnessId);
+				if (!harness || harness.userId !== identity.subject) {
+					throw new Error("Harness not found");
+				}
+				updates.harnessId = args.harnessId;
+			}
+		}
+		if (args.sandboxId !== undefined) {
+			if (args.sandboxId === null) {
+				updates.sandboxId = undefined;
+			} else {
+				const sandbox = await ctx.db.get(args.sandboxId);
+				if (!sandbox || sandbox.userId !== identity.subject) {
+					throw new Error("Sandbox not found");
+				}
+				updates.sandboxId = args.sandboxId;
+			}
+		}
+		if (args.color !== undefined) {
+			// Empty string clears the color field (patch with undefined deletes it).
+			updates.color = args.color || undefined;
+		}
+		await ctx.db.patch(args.id, updates);
+	},
+});
+
+export const touch = mutation({
+	args: { id: v.id("workspaces") },
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+
+		await assertOwnedWorkspace(ctx, args.id, identity.subject);
+		await ctx.db.patch(args.id, { lastUsedAt: Date.now() });
+	},
+});
+
+export const remove = mutation({
+	args: { id: v.id("workspaces") },
+	handler: async (ctx, args) => {
+		const identity = await ctx.auth.getUserIdentity();
+		if (!identity) throw new Error("Unauthenticated");
+
+		await assertOwnedWorkspace(ctx, args.id, identity.subject);
+
+		const conversations = await ctx.db
+			.query("conversations")
+			.withIndex("by_workspace_last_message", (q) =>
+				q.eq("workspaceId", args.id),
+			)
+			.collect();
+
+		for (const conversation of conversations) {
+			const messages = await ctx.db
+				.query("messages")
+				.withIndex("by_conversation", (q) =>
+					q.eq("conversationId", conversation._id),
+				)
+				.collect();
+
+			await Promise.all(messages.map((m) => ctx.db.delete(m._id)));
+
+			await ctx.db.delete(conversation._id);
+		}
+
+		await ctx.db.delete(args.id);
+	},
+});
diff --git a/packages/convex-backend/package.json b/packages/convex-backend/package.json
index 16b3a71..c5b6a19 100644
--- a/packages/convex-backend/package.json
+++ b/packages/convex-backend/package.json
@@ -8,15 +8,22 @@
         "setup": "convex dev --until-success",
         "codegen": "convex codegen",
         "deploy": "convex deploy",
-        "check-types": "tsc --noEmit -p convex"
+        "check-types": "tsc --noEmit -p convex",
+        "test": "vitest run",
+        "test:watch": "vitest",
+        "test:coverage": "vitest run --coverage"
     },
     "dependencies": {
         "convex": "^1.31.7",
         "zod": "^4.3.5"
     },
     "devDependencies": {
+        "@edge-runtime/vm": "^5.0.0",
+        "@vitest/coverage-v8": "^3.0.5",
+        "convex-test": "^0.0.49",
         "dotenv": "^16.6.1",
         "tsx": "^4.7.0",
-        "typescript": "5.9.2"
+        "typescript": "5.9.2",
+        "vitest": "^3.0.5"
     }
 }
\ No newline at end of file
diff --git a/packages/convex-backend/vitest.config.ts b/packages/convex-backend/vitest.config.ts
new file mode 100644
index 0000000..c663d63
--- /dev/null
+++ b/packages/convex-backend/vitest.config.ts
@@ -0,0 +1,45 @@
+import { defineConfig } from "vitest/config";
+
+export default defineConfig({
+	test: {
+		// convex-test requires the Edge Runtime environment to simulate the
+		// Convex function runtime (V8 isolate with web APIs).
+		environment: "edge-runtime",
+		server: { deps: { inline: ["convex-test"] } },
+		include: ["convex/**/*.test.ts"],
+		coverage: {
+			provider: "v8",
+			reporter: ["text", "html", "lcov", "json-summary"],
+			reportsDirectory: "./coverage",
+			// Coverage scoped to handler modules we can exercise in-process via
+			// convex-test. Modules that wrap external services (file storage,
+			// Daytona sandboxes, skills.sh registry) live in integration-only
+			// coverage — they're out of scope here because mocking their HTTP
+			// surfaces would test our mocks instead of production behaviour.
+			include: [
+				"convex/harnesses.ts",
+				"convex/workspaces.ts",
+				"convex/conversations.ts",
+				"convex/messages.ts",
+				"convex/usage.ts",
+				"convex/userSettings.ts",
+				"convex/commands.ts",
+				"convex/mcpOAuthTokens.ts",
+			],
+			exclude: [
+				"convex/_generated/**",
+				"convex/**/*.test.ts",
+				"convex/schema.ts",
+				"convex/auth.config.ts",
+				"convex/seed.ts",
+				"convex/migrations.ts",
+			],
+			thresholds: {
+				lines: 70,
+				branches: 65,
+				functions: 70,
+				statements: 70,
+			},
+		},
+	},
+});
diff --git a/packages/fastapi/.gitignore b/packages/fastapi/.gitignore
index c68a733..4662eca 100644
--- a/packages/fastapi/.gitignore
+++ b/packages/fastapi/.gitignore
@@ -8,3 +8,6 @@ venv/
 dist/
 build/
 .pytest_cache/
+.coverage
+coverage.xml
+htmlcov/
diff --git a/packages/fastapi/app/config.py b/packages/fastapi/app/config.py
index 4681980..35aca7f 100644
--- a/packages/fastapi/app/config.py
+++ b/packages/fastapi/app/config.py
@@ -22,14 +22,12 @@ class Settings(BaseSettings):
     daytona_api_url: str = "https://app.daytona.io/api"
     daytona_target: str = "us"
 
-    # Pre-registered Slack OAuth App credentials (for Slack MCP server).
-    # Create one at https://api.slack.com/apps
-    slack_oauth_client_id: str = ""
-    slack_oauth_client_secret: str = ""
-
     # Tiger Junction engine shared bearer token (MCP_ACCESS_TOKEN on the engine side)
     tiger_junction_mcp_token: str = ""
 
+    # Clerk secret key for Backend API calls (e.g. resolving Princeton netid from verified emails).
+    clerk_secret_key: str = ""
+
     # Clerk JWT verification — pinned issuer prevents attacker-controlled JWKS.
     clerk_issuer: str = ""
 
@@ -45,6 +43,10 @@ def validate_startup(self) -> None:
             logger.warning(
                 "CONVEX_DEPLOY_KEY is not set — backend cannot save messages to Convex"
             )
+        if not self.clerk_secret_key:
+            raise RuntimeError(
+                "CLERK_SECRET_KEY is required — Princeton netid resolution needs the Clerk Backend API key"
+            )
         if not self.clerk_issuer:
             raise RuntimeError(
                 "CLERK_ISSUER is required — JWT verification cannot pin the issuer without it"
@@ -55,44 +57,36 @@ def validate_startup(self) -> None:
 
 
 AVAILABLE_MODELS = [
-    {"id": "openai/gpt-4o", "name": "GPT-4o"},
-    {"id": "openai/gpt-4.1", "name": "GPT-4.1"},
-    {"id": "openai/gpt-4.1-mini", "name": "GPT-4.1 Mini"},
-    {"id": "anthropic/claude-sonnet-4", "name": "Claude Sonnet 4"},
-    {"id": "anthropic/claude-sonnet-4", "name": "Claude Sonnet 4 (Thinking)"},
-    {"id": "anthropic/claude-opus-4", "name": "Claude Opus 4"},
-    {"id": "anthropic/claude-opus-4", "name": "Claude Opus 4 (Thinking)"},
-    {"id": "google/gemini-2.5-pro-preview-06-05", "name": "Gemini 2.5 Pro"},
-    {"id": "google/gemini-2.5-flash", "name": "Gemini 2.5 Flash"},
-    {"id": "deepseek/deepseek-r1", "name": "DeepSeek R1"},
-    {"id": "deepseek/deepseek-chat", "name": "DeepSeek V3"},
-    {"id": "x-ai/grok-3", "name": "Grok 3"},
-    {"id": "x-ai/grok-3-mini", "name": "Grok 3 Mini"},
+    {"id": "openai/gpt-5.5", "name": "GPT-5.5"},
+    {"id": "openai/gpt-5.4", "name": "GPT-5.4"},
+    {"id": "anthropic/claude-sonnet-4.6", "name": "Claude Sonnet 4.6"},
+    {"id": "anthropic/claude-sonnet-4.6", "name": "Claude Sonnet 4.6 (Thinking)"},
+    {"id": "anthropic/claude-opus-4.6-fast", "name": "Claude Opus 4.6 (Fast)"},
+    {"id": "anthropic/claude-opus-4.7", "name": "Claude Opus 4.7"},
+    {"id": "anthropic/claude-opus-4.7", "name": "Claude Opus 4.7 (Thinking)"},
+    {"id": "google/gemini-3.1-pro-preview", "name": "Gemini 3.1 Pro Preview"},
+    {"id": "google/gemini-3-flash-preview", "name": "Gemini 3 Flash Preview"},
+    {"id": "google/gemini-3.1-flash-lite-preview", "name": "Gemini 3.1 Flash Lite Preview"},
 ]
 
 # Maps short model names (stored in harness.model) to full OpenRouter model IDs.
 # Thinking variants use the same provider model but trigger the reasoning parameter.
 MODEL_MAP = {
-    "gpt-4o": "openai/gpt-4o",
-    "gpt-4.1": "openai/gpt-4.1",
-    "gpt-4.1-mini": "openai/gpt-4.1-mini",
-    "claude-sonnet-4": "anthropic/claude-sonnet-4",
-    "claude-sonnet-4-thinking": "anthropic/claude-sonnet-4",
-    "claude-opus-4": "anthropic/claude-opus-4",
-    "claude-opus-4-thinking": "anthropic/claude-opus-4",
-    "gemini-2.5-pro": "google/gemini-2.5-pro-preview-06-05",
-    "gemini-2.5-flash": "google/gemini-2.5-flash",
-    "deepseek-r1": "deepseek/deepseek-r1",
-    "deepseek-v3": "deepseek/deepseek-chat",
-    "grok-3": "x-ai/grok-3",
-    "grok-3-mini": "x-ai/grok-3-mini",
-    "kimi-k2": "moonshotai/kimi-k2",
+    "gpt-5.5": "openai/gpt-5.5",
+    "gpt-5.4": "openai/gpt-5.4",
+    "claude-sonnet-4.6": "anthropic/claude-sonnet-4.6",
+    "claude-sonnet-4.6-thinking": "anthropic/claude-sonnet-4.6",
+    "claude-opus-4.6-fast": "anthropic/claude-opus-4.6-fast",
+    "claude-opus-4.7": "anthropic/claude-opus-4.7",
+    "claude-opus-4.7-thinking": "anthropic/claude-opus-4.7",
+    "gemini-3.1-pro": "google/gemini-3.1-pro-preview",
+    "gemini-3-flash": "google/gemini-3-flash-preview",
+    "gemini-3.1-flash-lite": "google/gemini-3.1-flash-lite-preview",
 }
 
 # Short model names that should send the `reasoning` parameter to OpenRouter.
 # The base Claude/Opus variants do NOT send reasoning — use the -thinking suffix.
 THINKING_MODELS: set[str] = {
-    "claude-sonnet-4-thinking",
-    "claude-opus-4-thinking",
-    "deepseek-r1",
+    "claude-sonnet-4.6-thinking",
+    "claude-opus-4.7-thinking",
 }
diff --git a/packages/fastapi/app/main.py b/packages/fastapi/app/main.py
index 3af1aca..8401704 100644
--- a/packages/fastapi/app/main.py
+++ b/packages/fastapi/app/main.py
@@ -6,7 +6,7 @@
 from fastapi.middleware.cors import CORSMiddleware
 
 from app.config import settings
-from app.routes import chat, health, mcp_health, mcp_oauth, sandbox, terminal
+from app.routes import chat, commands, harness_suggest, health, mcp_health, mcp_oauth, sandbox, terminal
 
 logging.basicConfig(
     level=logging.INFO,
@@ -42,14 +42,17 @@ async def lifespan(app: FastAPI):
     lifespan=lifespan,
 )
 
+_local_dev_origins = [
+    f"http://{host}:{port}"
+    for host in ("localhost", "127.0.0.1")
+    for port in range(3000, 3021)
+]
+
 app.add_middleware(
     CORSMiddleware,
     allow_origins=[
         settings.frontend_url,
-        "http://localhost:3000",
-        "http://localhost:3001",
-        "http://127.0.0.1:3000",
-        "http://127.0.0.1:3001",
+        *_local_dev_origins,
         "http://127.0.0.1:57177",
         "https://harness.nz",
         "https://staging.harness.nz",
@@ -65,5 +68,7 @@ async def lifespan(app: FastAPI):
 app.include_router(chat.router, prefix="/api/chat", tags=["chat"])
 app.include_router(mcp_oauth.router, prefix="/api/mcp/oauth", tags=["mcp-oauth"])
 app.include_router(mcp_health.router, prefix="/api/mcp/health", tags=["mcp-health"])
+app.include_router(commands.router, prefix="/api/commands", tags=["commands"])
 app.include_router(sandbox.router, prefix="/api/sandbox", tags=["sandbox"])
 app.include_router(terminal.router, prefix="/api/sandbox", tags=["terminal"])
+app.include_router(harness_suggest.router, prefix="/api/harness/suggest", tags=["harness-suggest"])
diff --git a/packages/fastapi/app/models.py b/packages/fastapi/app/models.py
index a788848..d711e96 100644
--- a/packages/fastapi/app/models.py
+++ b/packages/fastapi/app/models.py
@@ -31,6 +31,7 @@ class HarnessConfig(BaseModel):
     skills: list[SkillRef] = []
     name: str
     harness_id: str | None = None
+    system_prompt: str | None = Field(default=None, max_length=4000)
     sandbox_enabled: bool = False
     sandbox_id: str | None = None
     sandbox_config: SandboxConfig | None = None
@@ -45,6 +46,7 @@ class ChatRequest(BaseModel):
     messages: list[MessagePayload]
     harness: HarnessConfig
     conversation_id: str
+    forced_tool: str | None = None
 
 
 class SandboxCreateRequest(BaseModel):
@@ -90,3 +92,9 @@ class GitAddRequest(BaseModel):
 class GitCommitRequest(BaseModel):
     path: str = "/home/daytona"
     message: str
+
+
+class CommandListRequest(BaseModel):
+    mcp_servers: list[McpServer] = []
+
+
diff --git a/packages/fastapi/app/routes/chat.py b/packages/fastapi/app/routes/chat.py
index 7163491..7831933 100644
--- a/packages/fastapi/app/routes/chat.py
+++ b/packages/fastapi/app/routes/chat.py
@@ -1,7 +1,6 @@
 import asyncio
 import json
 import logging
-import re
 
 import httpx
 from fastapi import APIRouter, Depends, Request
@@ -9,24 +8,33 @@
 from app.config import settings
 from app.dependencies import get_current_user, get_http_client
 from app.models import ChatRequest
-from app.services.convex import query_convex, save_assistant_message, patch_message_usage, create_sandbox_record
+from app.services.convex import query_convex, save_assistant_message, patch_message_usage
 from app.services.mcp_client import UserContext, call_tool, resolve_princeton_netid, list_tools
 from app.services.mcp_oauth import get_valid_token, GITHUB_STANDALONE_URL
-from app.services.openrouter import stream_chat
+from app.services.openrouter import stream_chat, get_max_tokens
+from app.services.usage import check_user_budget, record_usage
 from app.services.sandbox_tools import (
     SANDBOX_TOOL_DEFINITIONS,
     SANDBOX_TOOL_NAMES,
     execute_sandbox_tool,
 )
-from app.services.daytona_service import (
-    get_daytona_service,
-    RESOURCE_TIERS,
-)
+from app.services.daytona_service import get_daytona_service
 
 router = APIRouter()
 logger = logging.getLogger(__name__)
 
-MAX_TOOL_ITERATIONS = 50
+# Hard cap on a single user message's text length. Mirrors the frontend
+# textarea's maxLength (apps/web/src/lib/chat-input.ts) so users cannot
+# bypass it by calling the API directly.
+USER_MESSAGE_MAX_LENGTH = 16000
+
+MAX_TOOL_ITERATIONS = 120
+
+# Cap on consecutive truncations (response hits max_tokens with no usable
+# tool calls). Each retry costs a full output budget worth of tokens, so
+# we bail out after a few rather than burning $30+ per chat in a pathological
+# loop. Reset whenever the model produces tool calls or finishes normally.
+MAX_CONSECUTIVE_TRUNCATIONS = 20
 
 SKILL_TOOL_NAME = "get_skill_content"
 
@@ -66,9 +74,9 @@ def _extract_summary(detail: str, max_chars: int = 300) -> str:
     text = re.sub(r"^---\s*\n[\s\S]*?\n---\s*\n?", "", text).strip()
     # Collect non-heading, non-empty lines
     lines = [
-        l.strip()
-        for l in text.split("\n")
-        if l.strip() and not l.strip().startswith("#")
+        line.strip()
+        for line in text.split("\n")
+        if line.strip() and not line.strip().startswith("#")
     ]
     summary = " ".join(lines)
     if len(summary) > max_chars:
@@ -344,6 +352,54 @@ async def chat_stream(
     )
 
     async def event_generator():
+        # Reject overlong user messages before doing any work. Counts text
+        # parts only — image/audio attachment bytes don't contribute.
+        latest_user_msg = next(
+            (m for m in reversed(body.messages) if m.role == "user"), None
+        )
+        if latest_user_msg is not None:
+            content = latest_user_msg.content
+            if isinstance(content, str):
+                text_len = len(content)
+            elif isinstance(content, list):
+                text_len = sum(
+                    len(part.get("text", ""))
+                    for part in content
+                    if isinstance(part, dict) and part.get("type") == "text"
+                )
+            else:
+                text_len = 0
+            if text_len > USER_MESSAGE_MAX_LENGTH:
+                yield {
+                    "event": "error",
+                    "data": json.dumps({
+                        "message": (
+                            f"Message too long ({text_len:,} characters). "
+                            f"Maximum is {USER_MESSAGE_MAX_LENGTH:,}."
+                        ),
+                        "code": "MESSAGE_TOO_LONG",
+                    }),
+                }
+                return
+
+        # Check cost budget before processing
+        budget = await check_user_budget(http_client, user_id)
+        if not budget.allowed:
+            yield {
+                "event": "error",
+                "data": json.dumps({
+                    "message": "Usage limit reached",
+                    "code": "BUDGET_EXCEEDED",
+                    "usage": {
+                        "dailyPct": budget.daily_pct,
+                        "weeklyPct": budget.weekly_pct,
+                        "dailyReset": budget.daily_reset,
+                        "weeklyReset": budget.weekly_reset,
+                    },
+                }),
+            }
+            return
+
         # Fetch available MCP tools for this harness
         tools: list[dict] | None = None
         if body.harness.mcp_servers:
@@ -410,62 +466,11 @@ async def event_generator():
                 # Existing sandbox — use it directly
                 sandbox_id = body.harness.sandbox_id
             else:
-                # Auto-provision a new sandbox on first chat message
-                yield {
-                    "event": "sandbox_status",
-                    "data": json.dumps({"sandbox_id": "", "status": "creating"}),
-                }
-                try:
-                    sandbox_config = body.harness.sandbox_config
-                    resource_tier = sandbox_config.resource_tier if sandbox_config else "basic"
-                    language = sandbox_config.default_language if sandbox_config else "python"
-                    ephemeral = not (sandbox_config and sandbox_config.persistent)
-
-                    sandbox = await asyncio.get_running_loop().run_in_executor(
-                        None,
-                        lambda: daytona_service.create_sandbox(
-                            user_id=user_id,
-                            harness_id=None,
-                            language=language,
-                            resource_tier=resource_tier,
-                            ephemeral=ephemeral,
-                        ),
-                    )
-                    sandbox_id = sandbox.id
-                    logger.info(
-                        "Auto-provisioned sandbox '%s' for harness '%s'",
-                        sandbox_id, body.harness.name,
-                    )
-
-                    # Persist sandbox record to Convex and link to harness
-                    tier = RESOURCE_TIERS.get(
-                        resource_tier, RESOURCE_TIERS["basic"],
-                    )
-                    await create_sandbox_record(
-                        http_client,
-                        user_id=user_id,
-                        harness_id=body.harness.harness_id,
-                        daytona_sandbox_id=sandbox_id,
-                        name=f"{body.harness.name} sandbox",
-                        language=language,
-                        ephemeral=ephemeral,
-                        resources={
-                            "cpu": tier["cpu"],
-                            "memoryGB": tier["memory"],
-                            "diskGB": tier["disk"],
-                        },
-                    )
-                except Exception:
-                    logger.exception(
-                        "Failed to auto-provision sandbox for harness '%s'",
-                        body.harness.name,
-                    )
-                    yield {
-                        "event": "sandbox_status",
-                        "data": json.dumps({"sandbox_id": "", "status": "error"}),
-                    }
-                    # Continue without sandbox — MCP tools still work
-                    daytona_service = None
+                logger.info(
+                    "Sandbox enabled for harness '%s' without a default sandbox; continuing without sandbox tools",
+                    body.harness.name,
+                )
+                daytona_service = None
 
             if sandbox_id and daytona_service:
                 if tools is None:
@@ -527,6 +532,10 @@ async def event_generator():
             skills_block = _build_skills_system_block(skill_manifest)
             messages.insert(0, {"role": "system", "content": skills_block})
 
+        # Prepend the user's custom system prompt (before skills so it appears first)
+        if body.harness.system_prompt:
+            messages.insert(0, {"role": "system", "content": body.harness.system_prompt})
+
         # Accumulate across all iterations so reasoning/tool history isn't lost
         all_reasoning = ""
         all_tool_calls_history: list[dict] = []  # [{tool, arguments, call_id, result}]
@@ -536,21 +545,42 @@ async def event_generator():
         collected_usage: dict | None = None
         collected_model: str | None = None
 
+        # The output cap we send to OpenRouter for this harness model.
+        # Used below to detect truncation by usage rather than relying on
+        # finish_reason — Anthropic via OpenRouter sometimes reports "stop"
+        # even when extended-thinking exhausted the budget.
+        requested_max_tokens = get_max_tokens(body.harness.model)
+        consecutive_truncations = 0
+
         # Agentic loop: stream response, handle tool calls, repeat
         for iteration in range(MAX_TOOL_ITERATIONS):
             collected_content = ""
             collected_reasoning = ""
             collected_tool_calls: list[dict] = []
             finish_reason: str | None = None
+            # Per-iteration usage so we can compare this turn's
+            # completion_tokens against the cap (collected_usage may carry
+            # stale values from a prior iteration if the current stream
+            # disconnects before sending its usage chunk).
+            iter_usage: dict | None = None
 
             client_disconnected = False
 
+            # Force a specific tool on the first iteration when forced_tool is set
+            tool_choice: dict | str | None = None
+            if body.forced_tool and iteration == 0 and tools:
+                tool_choice = {
+                    "type": "function",
+                    "function": {"name": body.forced_tool},
+                }
+
             try:
                 async for chunk in stream_chat(
                     http_client,
                     messages,
                     body.harness.model,
                     tools,
+                    tool_choice=tool_choice,
                 ):
                     if not client_disconnected and await request.is_disconnected():
                         logger.info(
@@ -567,6 +597,7 @@ async def event_generator():
                         collected_model = chunk["model"]
                     if chunk.get("usage"):
                         collected_usage = chunk["usage"]
+                        iter_usage = chunk["usage"]
 
                     # After disconnect, just drain chunks without yielding
                     if client_disconnected:
@@ -650,6 +681,16 @@ async def event_generator():
                             usage_for_update,
                             collected_model,
                         )
+                        # Record usage for budget tracking even on disconnect
+                        await record_usage(
+                            http_client,
+                            user_id=user_id,
+                            conversation_id=body.conversation_id,
+                            harness_id=body.harness.harness_id,
+                            harness_name=body.harness.name,
+                            model=collected_model or body.harness.model,
+                            usage_data=collected_usage,
+                        )
                     return
 
             except httpx.HTTPStatusError as e:
@@ -658,6 +699,18 @@ async def event_generator():
                     "OpenRouter HTTP error: %s",
                     e.response.status_code,
                 )
+                await _save_interrupted(
+                    http_client,
+                    body,
+                    user_id,
+                    collected_content,
+                    all_reasoning,
+                    all_tool_calls_history,
+                    all_parts,
+                    collected_usage,
+                    collected_model,
+                    f"Upstream service error ({e.response.status_code})",
+                )
                 yield {
                     "event": "error",
                     "data": json.dumps(
@@ -669,6 +722,18 @@ async def event_generator():
                 return
             except httpx.HTTPError as e:
                 logger.error("HTTP error during chat stream: %s", e)
+                await _save_interrupted(
+                    http_client,
+                    body,
+                    user_id,
+                    collected_content,
+                    all_reasoning,
+                    all_tool_calls_history,
+                    all_parts,
+                    collected_usage,
+                    collected_model,
+                    "Service unavailable",
+                )
                 yield {
                     "event": "error",
                     "data": json.dumps({"message": "Service unavailable"}),
@@ -679,6 +744,18 @@ async def event_generator():
                     "Unexpected error in chat stream for conversation '%s'",
                     body.conversation_id,
                 )
+                await _save_interrupted(
+                    http_client,
+                    body,
+                    user_id,
+                    collected_content,
+                    all_reasoning,
+                    all_tool_calls_history,
+                    all_parts,
+                    collected_usage,
+                    collected_model,
+                    "Internal server error",
+                )
                 yield {
                     "event": "error",
                     "data": json.dumps({"message": "Internal server error"}),
@@ -701,6 +778,71 @@ async def event_generator():
             if collected_content:
                 all_parts.append({"type": "text", "content": collected_content})
 
+            # Truncation detection. Anthropic via OpenRouter has been observed
+            # returning finish_reason="stop" even when extended-thinking
+            # exhausted the entire output budget, so finish_reason alone isn't
+            # reliable — we also flag truncation when reported completion
+            # tokens reach the cap we requested.
+            iter_completion_tokens = (
+                iter_usage.get("completion_tokens", 0) if iter_usage else 0
+            )
+            hit_cap = iter_completion_tokens >= requested_max_tokens
+            truncated = finish_reason == "length" or hit_cap
+
+            if truncated and not collected_tool_calls:
+                consecutive_truncations += 1
+                logger.warning(
+                    "Response truncated for conversation '%s' "
+                    "(finish_reason=%s, completion_tokens=%d, cap=%d, "
+                    "content_len=%d, consecutive=%d)",
+                    body.conversation_id,
+                    finish_reason,
+                    iter_completion_tokens,
+                    requested_max_tokens,
+                    len(collected_content),
+                    consecutive_truncations,
+                )
+
+                if consecutive_truncations >= MAX_CONSECUTIVE_TRUNCATIONS:
+                    logger.error(
+                        "Aborting conversation '%s' after %d consecutive "
+                        "truncations with no tool calls",
+                        body.conversation_id,
+                        consecutive_truncations,
+                    )
+                    await _save_interrupted(
+                        http_client,
+                        body,
+                        user_id,
+                        collected_content,
+                        all_reasoning,
+                        all_tool_calls_history,
+                        all_parts,
+                        collected_usage,
+                        collected_model,
+                        f"Response repeatedly hit max_tokens "
+                        f"({MAX_CONSECUTIVE_TRUNCATIONS}× in a row) without "
+                        f"making progress",
+                    )
+                    yield {
+                        "event": "error",
+                        "data": json.dumps(
+                            {"message": "Response repeatedly truncated"}
+                        ),
+                    }
+                    return
+
+                # Prefill the partial output so the model resumes coherently
+                # rather than restarting from scratch on the next iteration.
+                if collected_content:
+                    messages.append(
+                        {"role": "assistant", "content": collected_content}
+                    )
+                continue
+
+            # Forward progress was made — reset the truncation counter.
+            consecutive_truncations = 0
+
             # If no tool calls, we're done
             if finish_reason != "tool_calls" or not collected_tool_calls:
                 # Remap usage keys from snake_case to camelCase for Convex
@@ -727,6 +869,18 @@ async def event_generator():
                     model=collected_model,
                 )
 
+                # Record usage for budget tracking
+                if collected_usage:
+                    await record_usage(
+                        http_client,
+                        user_id=user_id,
+                        conversation_id=body.conversation_id,
+                        harness_id=body.harness.harness_id,
+                        harness_name=body.harness.name,
+                        model=collected_model or body.harness.model,
+                        usage_data=collected_usage,
+                    )
+
                 done_data: dict = {"content": collected_content}
                 if usage_for_convex:
                     done_data["usage"] = usage_for_convex
@@ -905,15 +1059,89 @@ async def _execute_tool(tool_info: dict) -> tuple[dict, str]:
                 body.conversation_id,
             )
 
-        # Max iterations reached
+        # Max iterations reached — persist everything we have so the user can
+        # see the partial trace instead of it silently vanishing.
         logger.warning(
             "Max tool iterations (%d) reached for conversation '%s'",
             MAX_TOOL_ITERATIONS,
             body.conversation_id,
         )
+        await _save_interrupted(
+            http_client,
+            body,
+            user_id,
+            "",
+            all_reasoning,
+            all_tool_calls_history,
+            all_parts,
+            collected_usage,
+            collected_model,
+            f"Max tool call iterations ({MAX_TOOL_ITERATIONS}) reached",
+        )
         yield {
             "event": "error",
             "data": json.dumps({"message": "Max tool call iterations reached"}),
         }
 
     return EventSourceResponse(event_generator())
+
+
+async def _save_interrupted(
+    http_client: httpx.AsyncClient,
+    body: "ChatRequest",
+    user_id: str,
+    content: str,
+    reasoning: str,
+    tool_calls_history: list[dict],
+    parts: list[dict],
+    collected_usage: dict | None,
+    collected_model: str | None,
+    reason: str,
+) -> None:
+    """Persist partial assistant state when the stream ends before a normal finish."""
+    usage_for_convex: dict | None = None
+    if collected_usage:
+        usage_for_convex = {
+            "promptTokens": collected_usage.get("prompt_tokens", 0),
+            "completionTokens": collected_usage.get("completion_tokens", 0),
+            "totalTokens": collected_usage.get("total_tokens", 0),
+        }
+        cost = collected_usage.get("cost")
+        if cost is not None:
+            usage_for_convex["cost"] = cost
+
+    try:
+        await save_assistant_message(
+            http_client,
+            body.conversation_id,
+            content,
+            reasoning=reasoning or None,
+            tool_calls=tool_calls_history or None,
+            parts=parts or None,
+            usage=usage_for_convex,
+            model=collected_model,
+            interrupted=True,
+            interruption_reason=reason,
+        )
+    except Exception:
+        logger.exception(
+            "Failed to persist interrupted message for conversation '%s'",
+            body.conversation_id,
+        )
+
+    if collected_usage:
+        try:
+            await record_usage(
+                http_client,
+                user_id=user_id,
+                conversation_id=body.conversation_id,
+                harness_id=body.harness.harness_id,
+                harness_name=body.harness.name,
+                model=collected_model or body.harness.model,
+                usage_data=collected_usage,
+            )
+        except Exception:
+            logger.exception(
+                "Failed to record usage for interrupted conversation '%s'",
+                body.conversation_id,
+            )
diff --git a/packages/fastapi/app/routes/commands.py b/packages/fastapi/app/routes/commands.py
new file mode 100644
index 0000000..15c0894
--- /dev/null
+++ b/packages/fastapi/app/routes/commands.py
@@ -0,0 +1,47 @@
+import logging
+
+import httpx
+from fastapi import APIRouter, Depends
+
+from app.dependencies import get_current_user, get_http_client
+from app.models import CommandListRequest
+from app.services.mcp_client import UserContext, list_tools, resolve_princeton_netid
+
+router = APIRouter()
+logger = logging.getLogger(__name__)
+
+
+@router.post("/list")
+async def command_list(
+    body: CommandListRequest,
+    http_client: httpx.AsyncClient = Depends(get_http_client),
+    user: dict = Depends(get_current_user),
+):
+    """Return available MCP tools as slash commands."""
+    user_id = user.get("sub")
+    netid = await resolve_princeton_netid(http_client, user)
+    user_ctx = UserContext(user_id=user_id, princeton_netid=netid)
+
+    tools, failures = await list_tools(http_client, body.mcp_servers, user_ctx=user_ctx)
+
+    commands = []
+    for tool in tools:
+        fn = tool["function"]
+        parts = fn["name"].split("__", 1)
+        server = parts[0] if len(parts) == 2 else ""
+        tool_name = parts[1] if len(parts) == 2 else fn["name"]
+        commands.append({
+            "name": fn["name"],
+            "server": server,
+            "tool": tool_name,
+            "description": fn.get("description", ""),
+            "parameters": fn.get("parameters", {}),
+        })
+
+    return {
+        "commands": commands,
+        "failures": [
+            {"server_name": f.server_name, "server_url": f.server_url, "reason": f.reason}
+            for f in failures
+        ],
+    }
diff --git a/packages/fastapi/app/routes/harness_suggest.py b/packages/fastapi/app/routes/harness_suggest.py
new file mode 100644
index 0000000..a8daeaf
--- /dev/null
+++ b/packages/fastapi/app/routes/harness_suggest.py
@@ -0,0 +1,700 @@
+import json
+import logging
+
+import httpx
+from fastapi import APIRouter, Depends, Request
+from typing import Annotated, Literal
+
+from pydantic import BaseModel, Field, field_validator
+from sse_starlette.sse import EventSourceResponse
+
+from app.config import MODEL_MAP
+from app.dependencies import get_current_user, get_http_client
+from app.services.openrouter import stream_chat
+
+router = APIRouter()
+logger = logging.getLogger(__name__)
+
+# When adding/removing MCPs, also update apps/web/src/lib/mcp.ts (PRESET_MCPS).
+_PRESET_MCP_CATALOG: list[dict] = [
+    {"id": "princetoncourses", "name": "Princeton Courses", "auth": "tiger_junction",
+     "description": "Search Princeton courses, read evaluations, and explore instructors with live registrar data."},
+    {"id": "tigerjunction", "name": "TigerJunction", "auth": "tiger_junction",
+     "description": "Manage your course schedules — create, edit, verify conflicts, and find courses that fit."},
+    {"id": "tigersnatch", "name": "TigerSnatch", "auth": "tiger_junction",
+     "description": "Track course demand and subscribe to enrollment notifications for closed classes."},
+    {"id": "tigerpath", "name": "TigerPath", "auth": "tiger_junction",
+     "description": "Plan your 4-year course schedule, explore major requirements, and see when students typically take courses."},
+    {"id": "github", "name": "GitHub", "auth": "oauth",
+     "description": "Browse repos, manage issues and pull requests, and search code."},
+    {"id": "notion", "name": "Notion", "auth": "oauth",
+     "description": "Read and write pages, databases, and blocks in your workspace."},
+    {"id": "linear", "name": "Linear", "auth": "oauth",
+     "description": "Create and track issues, manage projects, and streamline engineering workflows."},
+    {"id": "awsknowledge", "name": "AWS Knowledge", "auth": "none",
+     "description": "Search AWS documentation and knowledge bases for services and best practices."},
+    {"id": "exa", "name": "Exa", "auth": "none",
+     "description": "AI-powered semantic web search and content retrieval."},
+    {"id": "context7", "name": "Context7", "auth": "none",
+     "description": "Fetch up-to-date library docs and code examples for any framework."},
+]
+
+_AVAILABLE_MODELS = list(MODEL_MAP.keys())
+
+_CREATION_SYSTEM_PROMPT = None
+
+
+def _get_system_prompt() -> str:
+    global _CREATION_SYSTEM_PROMPT
+    if _CREATION_SYSTEM_PROMPT is not None:
+        return _CREATION_SYSTEM_PROMPT
+
+    models_text = "\n".join(f"  - {m}" for m in _AVAILABLE_MODELS)
+
+    mcps_lines = []
+    for mcp in _PRESET_MCP_CATALOG:
+        auth_note = f" [requires {mcp['auth']} sign-in after creation]" if mcp["auth"] != "none" else ""
+        mcps_lines.append(f"  - id={mcp['id']!r}, name={mcp['name']!r}: {mcp['description']}{auth_note}")
+    mcps_text = "\n".join(mcps_lines)
+
+    _CREATION_SYSTEM_PROMPT = f"""You are a friendly, expert assistant that helps users design,
+validate, and refine an AI "Harness" — a named AI agent profile consisting of a model,
+optional MCP tool integrations, optional skills, and usage policies. Your job is to ask the right questions, make informed recommendations, and
+produce a complete, well-reasoned configuration.
+
+Keep responses short and conversational unless the user asks for detail.
+Adapt your language, depth, and defaults to the user's apparent experience level
+before doing anything else.
+
+---
+
+## Step 0 — Infer the user's experience level
+
+Before recommending anything, classify the user as NOVICE, INTERMEDIATE, or ADVANCED
+based on their opening message. Update this classification silently as the conversation
+progresses; never announce it to the user.
+
+### Signals that suggest NOVICE
+
+Language and vocabulary:
+- Uses everyday words rather than technical terms ("make it smarter", "connect to
+  my stuff", "I just want it to help me with X")
+- Asks what something is rather than how to configure it
+- Describes the outcome they want without naming any tools or models
+- Uses phrases like "I'm not sure", "I don't really know", "is that possible?"
+- No mention of APIs, schemas, auth flows, latency, or permissions
+
+Goals and specificity:
+- Describes a vague or broad goal ("help me be more productive")
+- Cannot name a specific model, MCP, or integration by name
+- Asks for a recommendation rather than expressing a preference
+- Goal is personal or student-oriented rather than engineering-oriented
+- No mention of team, organisation, or production environment
+
+Context document (if provided):
+- Written in plain prose, not structured specs or technical requirements
+- No JSON, YAML, or code snippets
+- Focused on a personal workflow rather than a system design
+
+Default assumption: if there is no clear signal, assume NOVICE. It is better
+to over-explain to an advanced user (they will correct you) than to confuse
+a novice with unexplained jargon.
+
+---
+
+### Signals that suggest INTERMEDIATE
+
+- Names at least one tool, integration, or model by name
+- Understands what an API or integration is but may not know implementation details
+- Has a specific use case in mind but is open to suggestions on the best approach
+- May ask about tradeoffs ("is X better than Y for this?")
+- Comfortable with the idea of connecting accounts via OAuth
+- Goal is semi-technical: automating a workflow, building a personal assistant,
+  managing a project with tools
+
+---
+
+### Signals that suggest ADVANCED
+
+Language and vocabulary:
+- Uses precise technical terms: "context window", "token budget", "latency",
+  "auth flow", "tool schema", "permissions scope", "execution environment"
+- Mentions specific models, versions, or providers by name
+- Asks about failure handling, rate limits, or cost optimisation
+- References system prompts, agent architectures, or multi-tool orchestration
+- Writes in structured or terse language; may use bullet points or pseudocode
+
+Goals and specificity:
+- Has a well-defined system in mind: knows which integrations, which model tier,
+  and why
+- May be building for a team, production system, or automated pipeline
+- Asks for the config directly or says "just give me the config"
+- Wants to understand and control every field in the output
+
+Context document (if provided):
+- Contains technical specifications, architecture diagrams, or code
+- References APIs, permissions, schemas, or environment variables
+- Written in structured or semi-structured format
+
+---
+
+## Adaptation rules by experience level
+
+### NOVICE mode — reduce cognitive load
+
+**Tone:** warm, encouraging, plain English. Use analogies. Never assume prior
+knowledge. Think of yourself as a helpful guide, not a technical configurator.
+
+**Terminology translations — always use these for novice users:**
+- Model → "the AI brain powering your assistant"
+- MCP server → "a connector that gives your assistant access to a specific tool
+  or data source, like GitHub or Notion"
+- Skill → "a reusable capability that teaches your assistant how to do a
+  specific task, like reviewing code or summarising documents"
+- OAuth → "a sign-in step that lets your assistant access your account
+  on a platform like GitHub or Notion"
+- Token / context window → avoid; if cost comes up, say "more complex tasks
+  cost more to run"
+- Config → "your assistant's profile" or "your harness settings"
+
+**Defaults for novice users:**
+- Recommend exactly one model, not a list. State why in one plain-English sentence.
+- Recommend at most two MCPs. If more seem relevant, pick the most impactful two
+  and mention the others as "you can add these later."
+- Default to "claude-sonnet-4.6" unless a clear signal points elsewhere.
+- Do not mention skillIds unless the available skills list contains a very obvious
+  match; if you include a skill, explain what it does in plain English.
+
+**Explanation format for novice users:**
+When you present your recommendation, briefly explain what each included
+component does in one plain-English sentence. Structure it like this:
+
+  "Here's what I'm setting up for you:
+   - Model: [plain name] — [one sentence: what this brain is good at]
+   - [MCP name]: [one sentence: what this connector lets your assistant do]"
+
+Then present the config card. Do not show the raw JSON to novice users in your
+explanation — the UI handles that.
+
+**Questions for novice users:**
+Ask in plain English, with examples. Instead of "What integrations do you need?",
+ask "Do you want your assistant to be able to access any tools or accounts —
+for example, GitHub, Notion, or your course schedule?"
+
+Never ask a novice user to choose between specific model IDs. Ask about their
+goal and infer the model yourself.
+
+**What to avoid for novice users:**
+- Never mention "context window", "tokens", "latency", "schema", "OAuth scope",
+  or "execution environment" without an explanation.
+- Never present a list of five or more options and ask the user to choose.
+- Do not use abbreviations (MCP, SSE, API) without explaining them first.
+- Avoid conditional or hedged language ("it depends", "you might want to consider")
+  — novice users need a clear recommendation, not a decision tree.
+
+---
+
+### INTERMEDIATE mode — balance depth and accessibility
+
+**Tone:** friendly and informative. Use standard terminology but define anything
+that is specific to this platform. Surface one or two tradeoffs per decision.
+
+**Defaults for intermediate users:**
+- Present the recommended option and briefly name one alternative.
+- Explain tradeoffs in one sentence ("Sonnet 4 is faster and cheaper than Opus 4,
+  which is better if you need deeper reasoning").
+- You can mention up to four MCPs; briefly note any auth requirements.
+- You can mention skills if they seem useful; name them without a full explanation.
+
+**Questions for intermediate users:**
+You can use standard terminology ("Which integrations are you connecting?",
+"Do you have a model preference?"). Still avoid asking for raw config fields —
+let the UI handle that.
+
+---
+
+### ADVANCED mode — compact, technical, direct
+
+**Tone:** terse and precise. Skip all basic definitions. Treat the user as a
+peer who knows what an MCP server, token budget, auth scope, and execution
+environment are. Get to the config quickly.
+
+**Defaults for advanced users:**
+- Skip explanations of what each component does unless the user asks.
+- Surface tradeoffs directly and concisely ("Opus 4-thinking: max reasoning,
+  ~10× cost of Sonnet 4. Sonnet 4-thinking: strong reasoning, 3× cost. Pick
+  based on your latency and budget tolerance.").
+- You can suggest the full range of MCPs and skills that fit.
+- If the user's message implies they already know what they want, produce the
+  config immediately with a single-line rationale.
+- If they ask a tradeoff question, answer it technically before producing the config.
+
+**What advanced users care about:**
+- Model: latency, cost per token, context window, reasoning capability
+- MCPs: auth scope, what operations are exposed, latency of tool calls
+- Skills: what the prompt template does, whether it overlaps with model defaults
+- Config correctness: they will notice if an ID is wrong or a field is missing
+
+**Failure handling and edge cases for advanced users:**
+If the user asks about failure scenarios, rate limits, or error handling,
+give a direct answer:
+- MCP tool call failures are surfaced to the model as tool errors; the model
+  can retry or explain the failure to the user.
+- OAuth tokens expire; the user will be prompted to re-authenticate.
+- Rate limits depend on the model provider and are not configurable per harness.
+
+---
+
+## Two-layer output format
+
+Every config recommendation has two layers: an explanation layer and a
+technical configuration layer. Adjust their order and depth based on experience level.
+
+### For NOVICE users
+Lead with the explanation layer. Keep it short (3–5 plain-English sentences
+covering what was chosen and why). Let the config card in the UI handle the
+technical layer — do not paste raw JSON in your message.
+
+Format:
+  [Plain-English summary of what the harness does]
+  [One sentence per component: model, MCPs]
+  [One sentence on what to expect after creation — e.g. "You'll be asked to
+   sign in to GitHub once before your assistant can access your repos."]
+  <harness-config>...</harness-config>
+
+### For INTERMEDIATE users
+Lead with a brief summary (1–2 sentences), then the config. Mention auth
+requirements if any OAuth MCPs are included.
+
+Format:
+  [1–2 sentence summary with model rationale]
+  [Auth note if needed: "GitHub and Notion will each need a one-time OAuth sign-in."]
+  <harness-config>...</harness-config>
+
+### For ADVANCED users
+Lead with the config. Add a compact rationale line only if the choices are
+non-obvious. Skip auth notes unless the user asks.
+
+Format:
+  [One-line rationale if non-obvious, otherwise omit]
+  <harness-config>...</harness-config>
+
+---
+
+## Progressive disclosure rules
+
+Start at the inferred experience level. Update the level silently as new
+signals appear.
+
+**Upgrade from NOVICE to INTERMEDIATE** if the user:
+- Correctly names a model, MCP, or integration in a follow-up message
+- Asks a tradeoff question ("is X better than Y?")
+- Shows they understood your explanation and want more detail
+- Says something like "I'm actually familiar with this, just need help choosing"
+
+**Upgrade from INTERMEDIATE to ADVANCED** if the user:
+- Uses technical terms like "context window", "token budget", "tool schema",
+  "latency", or "auth scope" correctly
+- Asks about failure handling or rate limits
+- Requests control over a specific config field directly
+- Says "just give me the config" or similar
+
+**Downgrade from ADVANCED to INTERMEDIATE** if the user:
+- Seems confused by a technical explanation
+- Asks what a term means
+- Responds with "I don't understand" or equivalent
+
+**Downgrade from INTERMEDIATE to NOVICE** if the user:
+- Is consistently confused despite intermediate-level explanations
+- Cannot identify what tools they want to connect
+- Needs an analogy to understand the recommendation
+
+When you upgrade a user's level mid-conversation, do not announce it.
+Simply apply the new mode's rules to your next response.
+
+When you downgrade a user's level, you may optionally say "Let me explain
+that more simply:" before the re-explanation, but do not say anything like
+"you seem confused" or "let me try again for a beginner."
+
+---
+
+## How many questions to ask
+
+Adapt to how clearly the user has expressed their needs:
+- If the user provided a context document, extract the use case from it directly
+  and produce a config immediately or with at most one clarifying question.
+- If their first message already tells you the task, speed requirements, and
+  relevant tools → produce a config immediately with a one-line explanation.
+- If you have most of what you need but one important thing is unclear →
+  ask exactly one follow-up question.
+- If the use case is genuinely vague → ask up to two focused questions,
+  then produce a config. Never ask more than two follow-up questions total.
+
+Batch multiple unknowns into a single message rather than asking one-by-one.
+
+---
+
+## Understanding user intent
+
+Users often describe their goal at a high level rather than listing specific tools.
+Read intent carefully:
+
+- "Help me stay on top of my projects" → likely wants Linear + Notion
+- "I want to write better code" → likely wants code-review skills
+- "Research assistant for my thesis" → Exa for web search
+- "Automate my workflow" → depends heavily on which workflow; ask one question
+- "Help me with Princeton courses" → Princeton Courses + TigerJunction + TigerPath
+- "I want something fast and cheap" → prioritise mini/flash models, minimal tools
+
+When the use case implies a well-known workflow, infer the full config rather than
+asking the user to list every component. Offer your reasoning in one sentence so
+the user can correct you if needed.
+
+Signals to watch for:
+- Mentions of a specific platform (GitHub, Notion, etc.) → add the matching MCP
+- Mentions of "write", "draft", "summarise" → heavier model
+- Mentions of "quick" or "fast" → lighter model
+- Mentions of "thorough", "deep", "comprehensive" → heavier or thinking model
+
+---
+
+## Choosing a model
+
+Pick the model that best fits the user's needs across three dimensions:
+speed, depth, and cost.
+
+{models_text}
+
+### Model selection guidelines
+
+**Speed and volume** (quick lookups, short answers, many requests per day):
+  → "gemini-3-flash" or "gemini-3.1-flash-lite"
+  → Use when the user mentions high frequency, quick turnaround, or cost sensitivity
+
+**General-purpose, balanced** (most everyday tasks):
+  → "claude-sonnet-4.6" (best default) or "gpt-5.4"
+  → Use when no strong signal points toward a specialised model
+
+**Deep reasoning and multi-step tasks** (planning, complex analysis, hard problems):
+  → "claude-sonnet-4.6-thinking", "claude-opus-4.7-thinking"
+  → Use when the user describes tasks requiring careful step-by-step reasoning,
+    mathematical work, long-horizon planning, or nuanced judgment
+
+**Long context — documents, codebases, large files**:
+  → "gemini-3.1-pro" (highest context, strong multimodal) or "gemini-3-flash"
+  → Use when the user needs to process entire codebases, lengthy PDFs, or
+    large datasets in a single context window
+
+**Cost-sensitive** (user mentions budget or high volume):
+  → "gemini-3.1-flash-lite" (very low cost, strong quality)
+
+**Maximum capability** (accuracy matters most, cost secondary):
+  → "claude-opus-4.7" or "claude-opus-4.7-thinking"
+  → Use when the user says quality is critical and cost is not a concern
+
+Always explain your model choice in one short sentence so the user understands
+the tradeoff (e.g. "Sonnet 4 gives you a strong balance of quality and speed
+without the cost of Opus.").
+
+### Natural language adjustment shortcuts
+
+If the user asks to adjust the config using informal language,
+apply these mappings immediately without asking follow-up questions:
+- "cheaper", "low cost", "budget", "affordable"
+  → switch to "gemini-3.1-flash-lite"
+- "faster", "quicker", "snappier", "lightweight"
+  → switch to a flash variant ("gemini-3-flash", "gemini-3.1-flash-lite")
+- "more powerful", "best quality", "no cost concern", "most capable"
+  → switch to "claude-opus-4.7" or "claude-opus-4.7-thinking"
+- "smarter", "better reasoning", "more thoughtful"
+  → switch to a thinking variant ("claude-sonnet-4.6-thinking", "claude-opus-4.7-thinking")
+- "simpler", "no tools", "just chat"
+  → clear mcpIds to []
+- "add [tool]" or "include [tool]"
+  → add the relevant MCP if it exists in the catalog
+- "remove [tool]" or "without [tool]"
+  → remove the relevant MCP
+
+---
+
+## MCP integrations — selection and validation
+
+{mcps_text}
+
+### When to suggest MCPs
+
+Be proactive: if an MCP is clearly relevant to the user's use case, suggest it
+and briefly explain what it enables in one phrase. Only suggest MCPs that
+genuinely fit — don't list everything. Leave mcpIds as [] if no tools are needed.
+
+If you're unsure whether the user wants a particular integration, mention it as
+an option and let them decide.
+
+### MCP selection guidance by domain
+
+**Software development workflows:**
+  - GitHub: branch/PR management, code review, issue tracking
+  - Linear: sprint planning, issue tracking for engineering teams
+  - Context7: fetching accurate, up-to-date library docs while coding
+  - Combine GitHub + Linear for teams running agile engineering
+
+**Research and knowledge work:**
+  - Exa: semantic web search, finding recent papers or articles
+  - AWS Knowledge: infrastructure and cloud architecture questions
+  - Context7: framework documentation lookups
+  - Avoid adding productivity MCPs (Notion) unless explicitly requested
+
+**Princeton student workflows:**
+  - Princeton Courses: searching for courses, reading evaluations
+  - TigerJunction: building and managing a course schedule
+  - TigerSnatch: monitoring enrollment for closed courses
+  - TigerPath: four-year planning and major requirement exploration
+  - Combine all four for a comprehensive academic planning harness
+  - These all require tiger_junction sign-in — flag this to the user
+
+**Project and team management:**
+  - Notion: personal knowledge bases, project wikis, meeting notes
+  - Linear: software project tracking
+
+**MCP compatibility notes:**
+  - Princeton MCPs (princetoncourses, tigerjunction, tigersnatch, tigerpath)
+    all require the same tiger_junction auth — bundling them adds no extra
+    sign-in friction
+  - Exa and AWS Knowledge are auth-free — safe to add without user friction
+  - OAuth MCPs (GitHub, Notion, Linear) each require a separate
+    sign-in after creation; avoid bundling too many if the user seems unfamiliar
+    with OAuth flows
+
+---
+
+## Skills — selection and validation
+
+Skills are reusable prompt-based capabilities that extend what the harness can do.
+If an available skills list is provided, suggest skills that clearly match the
+use case. Leave skillIds as [] if none are relevant or if no list was provided.
+
+### When skills add value
+
+Skills are most useful when:
+- The user has a recurring, well-defined subtask (code review, summarisation,
+  test generation, data cleaning, etc.)
+- The task benefits from a consistent prompt structure applied repeatedly
+- The user is building a harness for a specific technical workflow
+
+Skills are less useful (or unnecessary) when:
+- The harness is for general chat or open-ended research
+- The model's built-in capability already handles the task well without prompting
+- The use case changes too frequently for a fixed skill to apply
+
+### Skill validation
+
+Only suggest skill IDs from the provided available list. Never invent skill IDs.
+If the user mentions a capability (e.g. "I want it to review my code") and a
+relevant skill exists in the list, suggest it. If no matching skill exists,
+note that the harness can still handle the task through conversation — skills
+are an enhancement, not a requirement.
+
+---
+
+## Permissions and appropriate use
+
+When designing a harness, consider the following:
+
+**Principle of least privilege for MCPs:**
+Only include MCPs the harness actually needs for its primary use case.
+Adding unnecessary integrations increases the agent's attack surface, exposes
+more OAuth permissions to the model, and clutters the tool list. A focused
+harness with 1–2 MCPs outperforms a cluttered one with 6.
+
+**Sensitive MCPs:**
+- GitHub with write access can push code — flag this if the user seems
+  unaware of the scope
+- Notion can modify all pages in a workspace — mention this if the user
+  is connecting a shared team workspace
+
+**Appropriate use cases:**
+Harnesses are designed for legitimate productivity, research, and development
+workflows. If the user describes a use case that seems designed to automate
+spam, scrape data without permission, bypass access controls, or perform
+bulk operations against services' terms of use, decline to recommend
+relevant MCPs and note the concern.
+
+---
+
+## Usage and cost considerations
+
+Help the user make an informed cost decision:
+
+**Token usage signals:**
+- Long system prompts + many MCPs = more tokens per turn = higher cost
+- Thinking models use significantly more tokens than standard variants
+- Gemini Pro's large context window is billed per token even when unused
+
+**Cost tiers (approximate, high to low):**
+  1. claude-opus-4.7-thinking / claude-opus-4.7 (highest)
+  2. gpt-5.5 / claude-sonnet-4.6-thinking
+  3. claude-sonnet-4.6 / gpt-5.4 / gemini-3.1-pro
+  4. gemini-3-flash
+  5. gemini-3.1-flash-lite (very low cost)
+
+If the user seems cost-conscious, proactively note the model's cost tier
+and offer a cheaper alternative that still meets their needs.
+
+**High-volume harnesses** (used many times per day, e.g. a quick lookup tool):
+  → Strongly recommend mini/flash variants
+  → Avoid thinking models
+  → Keep MCPs to a minimum to reduce context size
+
+---
+
+## Config validation checklist
+
+Before outputting the final config, verify:
+- [ ] Model ID is exact and exists in the available list
+- [ ] All mcpIds are exact IDs from the catalog
+- [ ] All skillIds are exact IDs from the provided skills list (if any)
+- [ ] The harness name is 2–4 words and describes the use case clearly
+- [ ] OAuth MCPs are only included if the user is likely willing to sign in
+
+---
+
+## When refining an existing config
+
+If the conversation already contains a config block and the user is asking to
+change something, lead your response with a single short line summarising exactly
+what changed (e.g. "Switched to Linear only, removed GitHub." or "Downgraded to
+gemini-3.1-flash-lite to reduce cost."), then immediately output the updated config block.
+Do not re-explain the full config or re-ask questions that were already answered.
+
+---
+
+## When you have gathered enough information
+
+Output a brief summary (1–2 sentences max, including your model rationale),
+then immediately output the harness config block — no other text after the block:
+
+<harness-config>
+{{
+  "name": "Short Harness Name",
+  "model": "exact-model-id",
+  "mcpIds": ["id1", "id2"],
+  "skillIds": []
+}}
+</harness-config>
+
+Rules:
+- Use only exact model IDs from the list above.
+- Use only exact MCP ids from the list above.
+- Use only exact skill IDs from the available skills list (if provided).
+  Leave skillIds as [] if none were provided or none are relevant.
+- Keep the name to 2–4 words.
+- Do not include trailing text after the closing </harness-config> tag."""
+
+    return _CREATION_SYSTEM_PROMPT
+
+
+class _Message(BaseModel):
+    role: Literal["user", "assistant"]
+    content: str
+
+
+class _Skill(BaseModel):
+    id: str
+    description: str
+    installs: int = 0
+
+    @field_validator("id", "description")
+    @classmethod
+    def no_newlines(cls, v: str) -> str:
+        return v.replace("\n", " ").replace("\r", " ")[:500]
+
+
+MAX_CONTEXT_CHARS = 10_000
+
+
+class SuggestRequest(BaseModel):
+    messages: list[_Message]
+    context: str | None = None
+    available_skills: Annotated[list[_Skill], Field(max_length=50)] | None = None
+
+
+@router.post("/stream")
+async def suggest_harness_stream(
+    request: Request,
+    body: SuggestRequest,
+    http_client: httpx.AsyncClient = Depends(get_http_client),
+    user: dict = Depends(get_current_user),
+):
+    async def event_generator():
+        system_prompt = _get_system_prompt()
+
+        if body.available_skills:
+            skills_lines = "\n".join(
+                f"  - id={s.id!r}: {s.description!r}"
+                for s in body.available_skills
+            )
+            system_prompt += (
+                "\n\n## Available skills for this request\n"
+                f"{skills_lines}\n\n"
+                "Suggest relevant skills by including their exact IDs in the "
+                "skillIds field of the config block. Only suggest skills that "
+                "clearly fit the use case. Leave skillIds as [] if none apply.\n"
+                "The <harness-config> block must now include skillIds:\n"
+                '<harness-config>\n'
+                '{\n'
+                '  "name": "Short Harness Name",\n'
+                '  "model": "exact-model-id",\n'
+                '  "mcpIds": ["id1"],\n'
+                '  "skillIds": ["skill-id1"]\n'
+                '}\n'
+                '</harness-config>'
+            )
+
+        messages = [{"role": "system", "content": system_prompt}]
+
+        context = (
+            body.context[:MAX_CONTEXT_CHARS]
+            if body.context and len(body.context) > MAX_CONTEXT_CHARS
+            else body.context
+        )
+        if context:
+            messages.append({
+                "role": "user",
+                "content": f"Here is some context about my use case — use it to infer what I need without asking redundant questions:\n\n{context}",
+            })
+            messages.append({
+                "role": "assistant",
+                "content": "Thanks, I've read through your context. What would you like your harness to help with?",
+            })
+        messages.extend({"role": m.role, "content": m.content} for m in body.messages)
+
+        collected_content = ""
+
+        try:
+            async for chunk in stream_chat(http_client, messages, "claude-sonnet-4.6"):
+                if await request.is_disconnected():
+                    return
+
+                if chunk.get("type") == "done":
+                    break
+
+                choices = chunk.get("choices", [])
+                if not choices:
+                    continue
+
+                delta = choices[0].get("delta", {})
+                if delta.get("content"):
+                    collected_content += delta["content"]
+                    yield {
+                        "event": "token",
+                        "data": json.dumps({"content": delta["content"]}),
+                    }
+
+        except Exception:
+            logger.exception("Error in harness suggestion stream")
+            yield {"event": "error", "data": json.dumps({"message": "Internal server error"})}
+            return
+
+        yield {"event": "done", "data": json.dumps({"content": collected_content})}
+
+    return EventSourceResponse(event_generator())
diff --git a/packages/fastapi/app/routes/mcp_health.py b/packages/fastapi/app/routes/mcp_health.py
index 43a70e0..d7392e0 100644
--- a/packages/fastapi/app/routes/mcp_health.py
+++ b/packages/fastapi/app/routes/mcp_health.py
@@ -15,6 +15,7 @@
     check_server_health,
     evict_session_cache,
     list_tools,
+    resolve_princeton_netid,
 )
 from app.services.openrouter import complete_chat
 
@@ -52,6 +53,8 @@ async def _check_one(
             return ServerHealth(name=server.name, url=server.url, reachable=True, status="ok")
         return ServerHealth(name=server.name, url=server.url, reachable=False, status="error")
     except McpAuthRequiredError:
+        # Either an OAuth 401 or a Princeton MCP requested without a verified
+        # netid — both surface to the user as "needs verification / reconnect".
         return ServerHealth(name=server.name, url=server.url, reachable=False, status="auth_required")
     except Exception as e:
         logger.warning("Health check failed for '%s' at %s: %s", server.name, server.url, e)
@@ -64,7 +67,8 @@ async def check_health(
     http_client: httpx.AsyncClient = Depends(get_http_client),
     user: dict = Depends(get_current_user),
 ):
-    user_ctx = UserContext(user_id=user.get("sub"))
+    netid = await resolve_princeton_netid(http_client, user)
+    user_ctx = UserContext(user_id=user.get("sub"), princeton_netid=netid)
 
     results = await asyncio.gather(
         *[_check_one(http_client, s, user_ctx, body.force) for s in body.mcp_servers],
@@ -96,7 +100,8 @@ async def generate_prompts(
     http_client: httpx.AsyncClient = Depends(get_http_client),
     user: dict = Depends(get_current_user),
 ):
-    user_ctx = UserContext(user_id=user.get("sub"))
+    netid = await resolve_princeton_netid(http_client, user)
+    user_ctx = UserContext(user_id=user.get("sub"), princeton_netid=netid)
 
     if not body.mcp_servers:
         return GeneratePromptsResponse(prompts=[])
diff --git a/packages/fastapi/app/routes/sandbox.py b/packages/fastapi/app/routes/sandbox.py
index 5a6d40c..52e5817 100644
--- a/packages/fastapi/app/routes/sandbox.py
+++ b/packages/fastapi/app/routes/sandbox.py
@@ -11,6 +11,7 @@
 import mimetypes
 import shlex
 
+import httpx
 from fastapi import APIRouter, Depends, HTTPException, Query
 from fastapi.responses import Response
 from app.dependencies import get_current_user
@@ -24,8 +25,16 @@
     GitAddRequest,
     GitCommitRequest,
 )
-from app.services.convex import verify_sandbox_owner
-from app.services.daytona_service import get_daytona_service, DaytonaService
+from app.services.convex import (
+    SandboxRecordError,
+    create_sandbox_record,
+    verify_sandbox_owner,
+)
+from app.services.daytona_service import (
+    RESOURCE_TIERS,
+    DaytonaService,
+    get_daytona_service,
+)
 
 router = APIRouter()
 logger = logging.getLogger(__name__)
@@ -49,7 +58,12 @@ async def create_sandbox(
     body: SandboxCreateRequest,
     user: dict = Depends(get_current_user),
 ):
-    """Create a new Daytona sandbox."""
+    """Create a new Daytona sandbox.
+
+    The per-user sandbox cap is enforced inside Convex's `sandboxes.createInternal`
+    mutation. If Convex rejects the record after Daytona has provisioned the
+    sandbox, we roll back the Daytona sandbox so we don't leak resources.
+    """
     user_id = user.get("sub")
     service = _get_service()
     try:
@@ -61,16 +75,48 @@ async def create_sandbox(
             ephemeral=body.ephemeral,
             git_repo=body.git_repo,
         )
-        return {
-            "id": sandbox.id,
-            "status": "running",
-            "language": body.language,
-            "resource_tier": body.resource_tier,
-        }
     except Exception as e:
         logger.error("Failed to create sandbox: %s", e)
         raise HTTPException(status_code=500, detail=str(e))
 
+    tier = RESOURCE_TIERS.get(body.resource_tier, RESOURCE_TIERS["basic"])
+    try:
+        async with httpx.AsyncClient() as http_client:
+            await create_sandbox_record(
+                http_client,
+                user_id=user_id,
+                harness_id=body.harness_id,
+                daytona_sandbox_id=sandbox.id,
+                name=body.name,
+                language=body.language,
+                ephemeral=body.ephemeral,
+                resources={
+                    "cpu": tier["cpu"],
+                    "memoryGB": tier["memory"],
+                    "diskGB": tier["disk"],
+                },
+            )
+    except SandboxRecordError as e:
+        # Convex rejected the record (e.g. sandbox cap hit). Clean up the
+        # Daytona sandbox we just provisioned so we don't orphan it.
+        try:
+            service.delete_sandbox(sandbox.id)
+        except Exception:
+            logger.exception(
+                "Failed to roll back Daytona sandbox '%s' after Convex rejection",
+                sandbox.id,
+            )
+        status = 400 if e.code == "sandbox_limit_reached" else 502
+        raise HTTPException(status_code=status, detail=str(e))
+
+    return {
+        "id": sandbox.id,
+        "status": "running",
+        "language": body.language,
+        "resource_tier": body.resource_tier,
+        "ephemeral": body.ephemeral,
+    }
+
 
 @router.get("/{sandbox_id}")
 async def get_sandbox(
diff --git a/packages/fastapi/app/services/convex.py b/packages/fastapi/app/services/convex.py
index 0847132..72435f3 100644
--- a/packages/fastapi/app/services/convex.py
+++ b/packages/fastapi/app/services/convex.py
@@ -47,6 +47,8 @@ async def save_assistant_message(
     parts: list[dict] | None = None,
     usage: dict | None = None,
     model: str | None = None,
+    interrupted: bool = False,
+    interruption_reason: str | None = None,
 ) -> None:
     """Save an assistant message to Convex via the HTTP API.
 
@@ -72,6 +74,10 @@ async def save_assistant_message(
         args["usage"] = usage
     if model:
         args["model"] = model
+    if interrupted:
+        args["interrupted"] = True
+    if interruption_reason:
+        args["interruptionReason"] = interruption_reason
 
     try:
         resp = await http_client.post(
@@ -195,6 +201,18 @@ async def verify_sandbox_owner(
         return False
 
 
+class SandboxRecordError(Exception):
+    """Raised when Convex rejects a sandbox record creation.
+
+    `code` mirrors the `errorData.code` from a Convex `ConvexError` payload
+    (e.g. "sandbox_limit_reached") so callers can branch on the cause.
+    """
+
+    def __init__(self, message: str, code: str | None = None) -> None:
+        super().__init__(message)
+        self.code = code
+
+
 async def create_sandbox_record(
     http_client: httpx.AsyncClient,
     user_id: str,
@@ -207,7 +225,10 @@ async def create_sandbox_record(
 ) -> str | None:
     """Create a sandbox record in Convex and link it to the harness.
 
-    Returns the Convex sandbox document ID, or None on failure.
+    Returns the Convex sandbox document ID. Returns None when Convex is not
+    configured. Raises SandboxRecordError if the mutation fails (HTTP error)
+    or Convex rejects the record (e.g. sandbox cap hit), in which case the
+    exception's `code` mirrors the ConvexError `errorData.code`.
     """
     if not settings.convex_url or not settings.convex_deploy_key:
         logger.warning("Convex not configured — skipping sandbox record creation")
@@ -240,15 +261,32 @@ async def create_sandbox_record(
         )
         resp.raise_for_status()
         result = resp.json()
-        sandbox_doc_id = result.get("value")
-        logger.info(
-            "Created sandbox record '%s' (daytona_id=%s) for harness '%s'",
-            sandbox_doc_id, daytona_sandbox_id, harness_id,
-        )
-        return sandbox_doc_id
-    except Exception:
+    except Exception as e:
         logger.exception(
             "Failed to create sandbox record for daytona_id '%s'",
             daytona_sandbox_id,
         )
-        return None
+        raise SandboxRecordError(str(e)) from e
+
+    # Convex returns 200 with `{"status": "error", "errorMessage": ...,
+    # "errorData": ...}` for ConvexError throws inside the mutation.
+    if result.get("status") == "error":
+        error_data = result.get("errorData") or {}
+        code = error_data.get("code") if isinstance(error_data, dict) else None
+        message = (
+            (error_data.get("message") if isinstance(error_data, dict) else None)
+            or result.get("errorMessage")
+            or "Convex sandbox creation failed"
+        )
+        logger.warning(
+            "Convex rejected sandbox creation for daytona_id '%s' (code=%s): %s",
+            daytona_sandbox_id, code, message,
+        )
+        raise SandboxRecordError(message, code=code)
+
+    sandbox_doc_id = result.get("value")
+    logger.info(
+        "Created sandbox record '%s' (daytona_id=%s) for harness '%s'",
+        sandbox_doc_id, daytona_sandbox_id, harness_id,
+    )
+    return sandbox_doc_id
diff --git a/packages/fastapi/app/services/daytona_service.py b/packages/fastapi/app/services/daytona_service.py
index 749d74b..f85e882 100644
--- a/packages/fastapi/app/services/daytona_service.py
+++ b/packages/fastapi/app/services/daytona_service.py
@@ -118,7 +118,7 @@ def create_sandbox(
             language=language,
             auto_stop_interval=15,
             labels=sandbox_labels,
-            ephemeral=ephemeral,
+            ephemeral=False,
         )
 
         logger.info(
diff --git a/packages/fastapi/app/services/mcp_client.py b/packages/fastapi/app/services/mcp_client.py
index c8887a3..8d4ed3e 100644
--- a/packages/fastapi/app/services/mcp_client.py
+++ b/packages/fastapi/app/services/mcp_client.py
@@ -36,10 +36,26 @@ class UserContext:
     princeton_netid: str | None = None
 
 
+def _requires_princeton_auth(
+    server: McpServer, user_ctx: UserContext | None
+) -> bool:
+    """True when this is a Princeton MCP and we lack a verified netid.
+
+    All `tiger_junction` MCPs (Princeton Courses, TigerSnatch, TigerPath,
+    TigerJunction) require a verified @princeton.edu email on the user's
+    account. Some upstream servers don't enforce this on their end, so we
+    enforce it here for a consistent experience and to prevent unauthorized
+    use of Princeton-only data.
+    """
+    if server.auth_type != "tiger_junction":
+        return False
+    return user_ctx is None or not user_ctx.princeton_netid
+
+
 # Cache: Clerk user_id → (netid or empty string, timestamp).
 # TTL of 5 minutes so email changes propagate without a restart.
 _netid_cache: dict[str, tuple[str, float]] = {}
-_NETID_CACHE_TTL = 300.0  # seconds
+_NETID_CACHE_TTL = 60.0  # seconds
 
 
 async def resolve_princeton_netid(
@@ -70,8 +86,7 @@ async def resolve_princeton_netid(
             return value or None  # empty string means "looked up, not found"
 
     # Fetch full user profile from Clerk Backend API
-    import os
-    clerk_secret = os.environ.get("CLERK_SECRET_KEY")
+    clerk_secret = settings.clerk_secret_key
 
     if not clerk_secret:
         _netid_cache[user_id] = ("", time.monotonic())
@@ -85,13 +100,23 @@ async def resolve_princeton_netid(
         )
         if resp.status_code == 200:
             data = resp.json()
+            # Check verified email addresses
             for email_obj in data.get("email_addresses", []):
                 addr = email_obj.get("email_address", "")
                 verification = email_obj.get("verification", {})
                 if addr.endswith("@princeton.edu") and verification.get("status") == "verified":
                     netid = addr.split("@")[0]
                     _netid_cache[user_id] = (netid, time.monotonic())
-                    logger.info("Resolved Princeton netid '%s' for user '%s' via Clerk API", netid, user_id)
+                    logger.info("Resolved Princeton netid '%s' for user '%s' via Clerk API (email)", netid, user_id)
+                    return netid
+            # Check verified external accounts (Google, Microsoft Entra ID, etc.)
+            for ext in data.get("external_accounts", []):
+                addr = ext.get("email_address", "")
+                verification = ext.get("verification", {})
+                if addr.endswith("@princeton.edu") and verification.get("status") == "verified":
+                    netid = addr.split("@")[0]
+                    _netid_cache[user_id] = (netid, time.monotonic())
+                    logger.info("Resolved Princeton netid '%s' for user '%s' via Clerk API (external account)", netid, user_id)
                     return netid
         else:
             logger.warning("Clerk API returned %d for user '%s'", resp.status_code, user_id)
@@ -369,6 +394,9 @@ async def _list_tools_for_server(
 
     Results are cached per server URL for up to _TOOLS_CACHE_TTL seconds.
     """
+    if _requires_princeton_auth(server, user_ctx):
+        raise McpAuthRequiredError(server.name, server.url, reason="princeton")
+
     cached = _tools_cache.get(server.url)
     if cached:
         tools, ts = cached
@@ -425,7 +453,11 @@ async def list_tools(
     failures: list[McpServerFailure] = []
     for server, result in zip(mcp_servers, results):
         if isinstance(result, McpAuthRequiredError):
-            logger.warning("OAuth re-auth required for MCP '%s'", server.name)
+            logger.warning(
+                "Auth required for MCP '%s' (reason=%s)",
+                server.name,
+                result.reason,
+            )
             failures.append(McpServerFailure(server.name, server.url, "auth_required"))
             continue
         if isinstance(result, BaseException):
@@ -474,6 +506,21 @@ async def call_tool(
         logger.error("No MCP server found with name: %s", server_name)
         return json.dumps({"error": f"Unknown MCP server: {server_name}"})
 
+    if _requires_princeton_auth(server, user_ctx):
+        logger.warning(
+            "Blocked tool call '%s' on Princeton MCP '%s' — no verified netid",
+            actual_tool,
+            server.name,
+        )
+        return json.dumps({
+            "error": (
+                f"{server.name} requires a verified @princeton.edu email on your "
+                "account. Add and verify a Princeton email in your profile settings, "
+                "then retry."
+            ),
+            "princeton_auth_required": True,
+        })
+
     try:
         key = _session_key(server, user_ctx)
         session_id = _session_cache.get(key)
@@ -522,12 +569,18 @@ async def call_tool(
 
 
 class McpAuthRequiredError(Exception):
-    """Raised when an OAuth-protected MCP server returns 401."""
+    """Raised when an MCP server cannot be reached without further auth.
 
-    def __init__(self, server_name: str, server_url: str):
+    Used for two cases:
+      - OAuth-protected server returns 401.
+      - Princeton (tiger_junction) server is requested without a verified netid.
+    """
+
+    def __init__(self, server_name: str, server_url: str, reason: str = "auth"):
         self.server_name = server_name
         self.server_url = server_url
-        super().__init__(f"OAuth re-auth required for {server_name} at {server_url}")
+        self.reason = reason
+        super().__init__(f"Auth required for {server_name} at {server_url} ({reason})")
 
 
 def evict_session_cache(server_url: str) -> None:
@@ -545,11 +598,15 @@ async def check_server_health(
     """Check if an MCP server is reachable by attempting initialization.
 
     Returns True if reachable (HTTP 2xx), False otherwise.
-    Raises McpAuthRequiredError for OAuth 401.
+    Raises McpAuthRequiredError for OAuth 401 or for Princeton MCPs lacking
+    a verified netid.
 
     Unlike _initialize_session, this treats a successful response without a
     session ID as reachable (some servers like Context7 don't use sessions).
     """
+    if _requires_princeton_auth(server, user_ctx):
+        raise McpAuthRequiredError(server.name, server.url, reason="princeton")
+
     headers = await _build_headers(client, server, user_ctx=user_ctx)
     payload = {
         "jsonrpc": "2.0",
diff --git a/packages/fastapi/app/services/mcp_oauth.py b/packages/fastapi/app/services/mcp_oauth.py
index 1b55b58..71f1dd6 100644
--- a/packages/fastapi/app/services/mcp_oauth.py
+++ b/packages/fastapi/app/services/mcp_oauth.py
@@ -764,13 +764,7 @@ def _get_preregistered_client(
             client_id=settings.github_oauth_client_id,
             client_secret=settings.github_oauth_client_secret or None,
         )
-    # Slack OAuth
-    if "slack.com" in issuer and settings.slack_oauth_client_id:
-        return RegisteredClient(
-            client_id=settings.slack_oauth_client_id,
-            client_secret=settings.slack_oauth_client_secret or None,
-        )
-  
+
     return None
 
 
diff --git a/packages/fastapi/app/services/openrouter.py b/packages/fastapi/app/services/openrouter.py
index 45014e8..2788b36 100644
--- a/packages/fastapi/app/services/openrouter.py
+++ b/packages/fastapi/app/services/openrouter.py
@@ -10,20 +10,38 @@
 
 OPENROUTER_URL = "https://openrouter.ai/api/v1/chat/completions"
 
+# Per-request output cap. Thinking models include reasoning tokens in this
+# budget, so they need a generous allowance — Opus 4.7 routinely spends
+# 8k+ tokens on thinking before producing visible content.
+MAX_TOKENS_THINKING = 16384
+MAX_TOKENS_DEFAULT = 32768
+
+
+def get_max_tokens(model: str) -> int:
+    """Return the max_tokens we send to OpenRouter for a short model name.
+
+    Exposed so callers (e.g. the chat agentic loop) can detect when a
+    response was truncated by comparing reported completion_tokens to the
+    cap that was actually requested.
+    """
+    return MAX_TOKENS_THINKING if model in THINKING_MODELS else MAX_TOKENS_DEFAULT
+
 
 async def stream_chat(
     client: httpx.AsyncClient,
     messages: list[dict],
     model: str,
     tools: list[dict] | None = None,
+    tool_choice: dict | str | None = None,
 ) -> AsyncGenerator[dict, None]:
     """Stream chat completion from OpenRouter. Yields parsed SSE chunks.
 
     Args:
         client: Shared httpx.AsyncClient (from app.state).
         messages: OpenAI-format message list.
-        model: Short model name (e.g. "claude-sonnet-4") or full OpenRouter ID.
+        model: Short model name (e.g. "claude-sonnet-4.6") or full OpenRouter ID.
         tools: Optional OpenAI-format tool definitions.
+        tool_choice: Optional tool_choice override (e.g. to force a specific tool).
     """
     resolved_model = MODEL_MAP.get(model, model)
     logger.debug(
@@ -36,16 +54,13 @@ async def stream_chat(
         "messages": messages,
         "stream": True,
         "stream_options": {"include_usage": True},
+        "max_tokens": get_max_tokens(model),
     }
-    if is_thinking:
-        payload["max_tokens"] = 4096
-    else:
-        payload["max_tokens"] = 16384
     if is_thinking:
         payload["reasoning"] = {"effort": "high"}
     if tools:
         payload["tools"] = tools
-        payload["tool_choice"] = "auto"
+        payload["tool_choice"] = tool_choice or "auto"
 
     headers = {
         "Authorization": f"Bearer {settings.openrouter_api_key}",
@@ -105,7 +120,7 @@ async def stream_chat(
 async def complete_chat(
     client: httpx.AsyncClient,
     messages: list[dict],
-    model: str = "gpt-4.1-mini",
+    model: str = "gpt-5.4",
     max_tokens: int = 512,
 ) -> str:
     """Non-streaming chat completion for lightweight tasks like prompt generation.
diff --git a/packages/fastapi/app/services/usage.py b/packages/fastapi/app/services/usage.py
new file mode 100644
index 0000000..a4f2871
--- /dev/null
+++ b/packages/fastapi/app/services/usage.py
@@ -0,0 +1,184 @@
+"""Usage budget checking and recording via Convex HTTP API."""
+
+import logging
+from dataclasses import dataclass
+from datetime import datetime, timedelta, timezone
+
+import httpx
+
+from app.config import settings
+
+logger = logging.getLogger(__name__)
+
+
+@dataclass
+class BudgetCheckResult:
+    allowed: bool
+    daily_pct: float
+    weekly_pct: float
+    daily_reset: str  # ISO date of next day
+    weekly_reset: str  # ISO date of next Monday
+
+
+def _current_day() -> str:
+    """Return current UTC date as 'YYYY-MM-DD'."""
+    return datetime.now(timezone.utc).strftime("%Y-%m-%d")
+
+
+def _current_week() -> str:
+    """Return current ISO week as 'YYYY-WNN'."""
+    now = datetime.now(timezone.utc)
+    iso_year, iso_week, _ = now.isocalendar()
+    return f"{iso_year}-W{iso_week:02d}"
+
+
+def _next_daily_reset() -> str:
+    """Return ISO string for next midnight UTC."""
+    now = datetime.now(timezone.utc)
+    tomorrow = (now + timedelta(days=1)).replace(
+        hour=0, minute=0, second=0, microsecond=0
+    )
+    return tomorrow.isoformat()
+
+
+def _next_weekly_reset() -> str:
+    """Return ISO string for next Monday 00:00 UTC."""
+    now = datetime.now(timezone.utc)
+    days_until_monday = (7 - now.weekday()) % 7
+    if days_until_monday == 0:
+        days_until_monday = 7
+    next_monday = (now + timedelta(days=days_until_monday)).replace(
+        hour=0, minute=0, second=0, microsecond=0
+    )
+    return next_monday.isoformat()
+
+
+async def check_user_budget(
+    http_client: httpx.AsyncClient,
+    user_id: str,
+) -> BudgetCheckResult:
+    """Check whether a user is within their daily and weekly cost budgets.
+
+    Calls the Convex `usage:checkBudget` internal query.
+    Fails open on errors (allows the request, logs a warning).
+    """
+    if not settings.convex_url or not settings.convex_deploy_key:
+        logger.warning("Convex not configured — skipping budget check")
+        return BudgetCheckResult(
+            allowed=True,
+            daily_pct=0,
+            weekly_pct=0,
+            daily_reset=_next_daily_reset(),
+            weekly_reset=_next_weekly_reset(),
+        )
+
+    try:
+        resp = await http_client.post(
+            f"{settings.convex_url}/api/query",
+            headers={"Authorization": f"Convex {settings.convex_deploy_key}"},
+            json={
+                "path": "usage:checkBudget",
+                "args": {
+                    "userId": user_id,
+                    "day": _current_day(),
+                    "week": _current_week(),
+                },
+                "format": "json",
+            },
+            timeout=5.0,
+        )
+        resp.raise_for_status()
+        data = resp.json()
+        value = data.get("value")
+        if value is None:
+            logger.warning("checkBudget returned null — allowing request")
+            return BudgetCheckResult(
+                allowed=True,
+                daily_pct=0,
+                weekly_pct=0,
+                daily_reset=_next_daily_reset(),
+                weekly_reset=_next_weekly_reset(),
+            )
+
+        return BudgetCheckResult(
+            allowed=value["allowed"],
+            daily_pct=value["daily"]["pctUsed"],
+            weekly_pct=value["weekly"]["pctUsed"],
+            daily_reset=_next_daily_reset(),
+            weekly_reset=_next_weekly_reset(),
+        )
+    except Exception:
+        logger.exception("Failed to check user budget — allowing request (fail-open)")
+        return BudgetCheckResult(
+            allowed=True,
+            daily_pct=0,
+            weekly_pct=0,
+            daily_reset=_next_daily_reset(),
+            weekly_reset=_next_weekly_reset(),
+        )
+
+
+async def record_usage(
+    http_client: httpx.AsyncClient,
+    user_id: str,
+    conversation_id: str,
+    harness_id: str | None,
+    harness_name: str | None,
+    model: str,
+    usage_data: dict,
+) -> None:
+    """Record usage after a chat stream completes.
+
+    Calls the Convex `usage:recordUsage` internal mutation.
+    Fire-and-forget: logs errors but does not block.
+    Only records if cost is present in usage_data.
+    """
+    cost = usage_data.get("cost")
+    if cost is None:
+        logger.debug("No cost in usage data — skipping usage recording")
+        return
+
+    if not settings.convex_url or not settings.convex_deploy_key:
+        logger.warning("Convex not configured — skipping usage recording")
+        return
+
+    args: dict = {
+        "userId": user_id,
+        "conversationId": conversation_id,
+        "model": model,
+        "promptTokens": usage_data.get("prompt_tokens", 0),
+        "completionTokens": usage_data.get("completion_tokens", 0),
+        "totalTokens": usage_data.get("total_tokens", 0),
+        "cost": cost,
+        "day": _current_day(),
+        "week": _current_week(),
+    }
+    if harness_id:
+        args["harnessId"] = harness_id
+    if harness_name:
+        args["harnessName"] = harness_name
+
+    try:
+        resp = await http_client.post(
+            f"{settings.convex_url}/api/mutation",
+            headers={"Authorization": f"Convex {settings.convex_deploy_key}"},
+            json={
+                "path": "usage:recordUsage",
+                "args": args,
+                "format": "json",
+            },
+            timeout=10.0,
+        )
+        resp.raise_for_status()
+        logger.info(
+            "Recorded usage for user '%s': cost=$%.6f, model=%s",
+            user_id,
+            cost,
+            model,
+        )
+    except Exception:
+        logger.exception(
+            "Failed to record usage for user '%s' conversation '%s'",
+            user_id,
+            conversation_id,
+        )
diff --git a/packages/fastapi/pyproject.toml b/packages/fastapi/pyproject.toml
new file mode 100644
index 0000000..7a0e8e3
--- /dev/null
+++ b/packages/fastapi/pyproject.toml
@@ -0,0 +1,34 @@
+[tool.pytest.ini_options]
+asyncio_mode = "auto"
+testpaths = ["tests"]
+pythonpath = ["."]
+filterwarnings = [
+    "ignore::DeprecationWarning",
+    "ignore::PendingDeprecationWarning",
+]
+
+[tool.coverage.run]
+source = ["app"]
+omit = [
+    "app/main.py",
+    "app/routes/chat.py",
+    "app/routes/sandbox.py",
+    "app/routes/terminal.py",
+    "app/services/openrouter.py",
+    "app/services/mcp_client.py",
+    "app/services/mcp_oauth.py",
+    "app/services/daytona_service.py",
+    "app/services/sandbox_tools.py",
+]
+
+[tool.coverage.report]
+precision = 2
+exclude_lines = [
+    "pragma: no cover",
+    "if TYPE_CHECKING:",
+    "raise NotImplementedError",
+    "except Exception:",
+]
+show_missing = true
+skip_covered = false
+fail_under = 70
diff --git a/packages/fastapi/requirements-dev.txt b/packages/fastapi/requirements-dev.txt
new file mode 100644
index 0000000..8a9d6e3
--- /dev/null
+++ b/packages/fastapi/requirements-dev.txt
@@ -0,0 +1,5 @@
+-r requirements.txt
+pytest>=8.0
+pytest-asyncio>=0.23
+pytest-cov>=5.0
+respx>=0.21
diff --git a/packages/fastapi/tests/__init__.py b/packages/fastapi/tests/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/packages/fastapi/tests/conftest.py b/packages/fastapi/tests/conftest.py
new file mode 100644
index 0000000..70bbd3b
--- /dev/null
+++ b/packages/fastapi/tests/conftest.py
@@ -0,0 +1,11 @@
+"""Test configuration — populates env vars the Pydantic Settings loader needs."""
+import os
+
+# Must run before app modules import `settings`.
+os.environ.setdefault("OPENROUTER_API_KEY", "sk-test")
+os.environ.setdefault("CONVEX_URL", "https://test.convex.cloud")
+os.environ.setdefault("CONVEX_DEPLOY_KEY", "deploy-test")
+os.environ.setdefault("CLERK_SECRET_KEY", "sk_test_clerk")
+os.environ.setdefault("CLERK_ISSUER", "https://test.clerk.accounts.dev")
+os.environ.setdefault("FRONTEND_URL", "http://localhost:3000")
+os.environ.setdefault("FASTAPI_BASE_URL", "http://localhost:8000")
diff --git a/packages/fastapi/tests/test_auth.py b/packages/fastapi/tests/test_auth.py
new file mode 100644
index 0000000..14298ba
--- /dev/null
+++ b/packages/fastapi/tests/test_auth.py
@@ -0,0 +1,216 @@
+"""JWT verification — Clerk token parsing against a mocked JWKS endpoint."""
+import time
+from typing import Any
+
+import httpx
+import jwt
+import pytest
+import respx
+from cryptography.hazmat.primitives import serialization
+from cryptography.hazmat.primitives.asymmetric import rsa
+from fastapi import HTTPException, Request
+
+from app import auth as auth_module
+
+
+@pytest.fixture(autouse=True)
+def clear_jwks_cache():
+    auth_module._jwks_cache = None
+    yield
+    auth_module._jwks_cache = None
+
+
+@pytest.fixture
+def rsa_keypair():
+    """Generate a fresh RSA keypair and matching JWK for each test."""
+    key = rsa.generate_private_key(public_exponent=65537, key_size=2048)
+    private_pem = key.private_bytes(
+        encoding=serialization.Encoding.PEM,
+        format=serialization.PrivateFormat.PKCS8,
+        encryption_algorithm=serialization.NoEncryption(),
+    )
+    public_key = key.public_key()
+    jwk = jwt.algorithms.RSAAlgorithm.to_jwk(public_key, as_dict=True)
+    jwk["kid"] = "test-kid-1"
+    jwk["alg"] = "RS256"
+    jwk["use"] = "sig"
+    return private_pem, jwk
+
+
+def _make_token(private_pem: bytes, kid: str, issuer: str, **claims: Any) -> str:
+    payload = {
+        "iss": issuer,
+        "sub": "user_abc",
+        "iat": int(time.time()),
+        "exp": int(time.time()) + 3600,
+        **claims,
+    }
+    return jwt.encode(payload, private_pem, algorithm="RS256", headers={"kid": kid})
+
+
+def _fake_request(token: str | None, http_client: httpx.AsyncClient) -> Request:
+    """Build a minimal FastAPI Request with headers and app.state.http_client."""
+    headers = []
+    if token is not None:
+        headers.append((b"authorization", f"Bearer {token}".encode()))
+
+    class _App:
+        class state:
+            pass
+
+    _App.state.http_client = http_client
+
+    scope = {
+        "type": "http",
+        "headers": headers,
+        "app": _App,
+    }
+    return Request(scope)
+
+
+async def test_missing_auth_header_raises_401():
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(None, client)
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+
+
+async def test_bearer_prefix_required():
+    async with httpx.AsyncClient() as client:
+        # Simulate a non-bearer scheme
+        req = _fake_request(None, client)
+        # Manually set a non-bearer header
+        req.scope["headers"] = [(b"authorization", b"Basic abcdef")]
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+
+
+async def test_token_without_kid_rejected():
+    # Token has no 'kid' header → rejected before JWKS lookup.
+    token = jwt.encode({"sub": "x"}, "secret", algorithm="HS256")
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+
+
+@respx.mock
+async def test_valid_token_passes(rsa_keypair, monkeypatch):
+    private_pem, jwk = rsa_keypair
+    issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", issuer)
+
+    respx.get(f"{issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": [jwk]})
+    )
+
+    token = _make_token(private_pem, "test-kid-1", issuer)
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        payload = await auth_module.verify_token(req)
+    assert payload["sub"] == "user_abc"
+    assert payload["iss"] == issuer
+
+
+@respx.mock
+async def test_unknown_kid_triggers_refresh_and_passes(rsa_keypair, monkeypatch):
+    """First JWKS fetch returns no matching key → cache cleared → second fetch finds it."""
+    private_pem, jwk = rsa_keypair
+    issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", issuer)
+
+    # Prime the cache with an empty keyset so the first lookup misses.
+    auth_module._jwks_cache = {"keys": []}
+
+    respx.get(f"{issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": [jwk]})
+    )
+
+    token = _make_token(private_pem, "test-kid-1", issuer)
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        payload = await auth_module.verify_token(req)
+    assert payload["sub"] == "user_abc"
+
+
+@respx.mock
+async def test_kid_not_in_jwks_raises_401(rsa_keypair, monkeypatch):
+    """After the refresh retry, if the kid is still missing, reject."""
+    private_pem, _ = rsa_keypair
+    issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", issuer)
+
+    respx.get(f"{issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": []})
+    )
+
+    token = _make_token(private_pem, "missing-kid", issuer)
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+
+
+@respx.mock
+async def test_expired_token_rejected(rsa_keypair, monkeypatch):
+    private_pem, jwk = rsa_keypair
+    issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", issuer)
+
+    respx.get(f"{issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": [jwk]})
+    )
+
+    token = _make_token(
+        private_pem, "test-kid-1", issuer,
+        exp=int(time.time()) - 10,
+    )
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+    assert "expired" in exc.value.detail.lower()
+
+
+@respx.mock
+async def test_wrong_issuer_rejected(rsa_keypair, monkeypatch):
+    private_pem, jwk = rsa_keypair
+    expected_issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", expected_issuer)
+
+    respx.get(f"{expected_issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": [jwk]})
+    )
+
+    # Token signed with *our* key but claims a different issuer — must still be rejected.
+    token = _make_token(
+        private_pem, "test-kid-1", "https://attacker.example.com",
+    )
+    async with httpx.AsyncClient() as client:
+        req = _fake_request(token, client)
+        with pytest.raises(HTTPException) as exc:
+            await auth_module.verify_token(req)
+    assert exc.value.status_code == 401
+
+
+@respx.mock
+async def test_jwks_is_cached_across_calls(rsa_keypair, monkeypatch):
+    private_pem, jwk = rsa_keypair
+    issuer = "https://test.clerk.accounts.dev"
+    monkeypatch.setattr(auth_module.settings, "clerk_issuer", issuer)
+
+    route = respx.get(f"{issuer}/.well-known/jwks.json").mock(
+        return_value=httpx.Response(200, json={"keys": [jwk]})
+    )
+
+    token = _make_token(private_pem, "test-kid-1", issuer)
+    async with httpx.AsyncClient() as client:
+        for _ in range(3):
+            req = _fake_request(token, client)
+            await auth_module.verify_token(req)
+    assert route.call_count == 1
diff --git a/packages/fastapi/tests/test_config.py b/packages/fastapi/tests/test_config.py
new file mode 100644
index 0000000..2be1ee9
--- /dev/null
+++ b/packages/fastapi/tests/test_config.py
@@ -0,0 +1,49 @@
+"""Config module — model maps and startup validation."""
+import pytest
+
+from app.config import AVAILABLE_MODELS, MODEL_MAP, THINKING_MODELS, Settings
+
+
+def test_model_map_covers_thinking_models():
+    # Every thinking model must be resolvable via MODEL_MAP.
+    for m in THINKING_MODELS:
+        assert m in MODEL_MAP
+
+
+def test_thinking_variants_alias_base():
+    # -thinking variants map to the same provider ID as their base.
+    assert MODEL_MAP["claude-sonnet-4.6"] == MODEL_MAP["claude-sonnet-4.6-thinking"]
+    assert MODEL_MAP["claude-opus-4.7"] == MODEL_MAP["claude-opus-4.7-thinking"]
+
+
+def test_available_models_have_required_fields():
+    for m in AVAILABLE_MODELS:
+        assert "id" in m and "name" in m
+        assert m["id"]  # non-empty
+
+
+def test_validate_startup_requires_openrouter_key():
+    # min_length=1 on the field rejects empty at construction, so skip field
+    # validation to exercise the validate_startup branch directly.
+    s = Settings.model_construct(
+        openrouter_api_key="", clerk_secret_key="sk", clerk_issuer="i"
+    )
+    with pytest.raises(RuntimeError, match="OPENROUTER_API_KEY"):
+        s.validate_startup()
+
+
+def test_validate_startup_requires_clerk_secret():
+    s = Settings(openrouter_api_key="k", clerk_secret_key="", clerk_issuer="i")
+    with pytest.raises(RuntimeError, match="CLERK_SECRET_KEY"):
+        s.validate_startup()
+
+
+def test_validate_startup_requires_clerk_issuer():
+    s = Settings(openrouter_api_key="k", clerk_secret_key="sk", clerk_issuer="")
+    with pytest.raises(RuntimeError, match="CLERK_ISSUER"):
+        s.validate_startup()
+
+
+def test_validate_startup_passes_with_minimum_config():
+    s = Settings(openrouter_api_key="k", clerk_secret_key="sk", clerk_issuer="i")
+    s.validate_startup()  # should not raise
diff --git a/packages/fastapi/tests/test_convex_service.py b/packages/fastapi/tests/test_convex_service.py
new file mode 100644
index 0000000..6acf530
--- /dev/null
+++ b/packages/fastapi/tests/test_convex_service.py
@@ -0,0 +1,286 @@
+"""Convex HTTP helper functions."""
+import json
+
+import httpx
+import pytest
+import respx
+
+from app.services.convex import (
+    SandboxRecordError,
+    create_sandbox_record,
+    patch_message_usage,
+    query_convex,
+    save_assistant_message,
+    verify_sandbox_owner,
+)
+
+CONVEX_URL = "https://test.convex.cloud"
+
+
+@pytest.fixture
+def convex_settings(monkeypatch):
+    from app.config import settings
+    monkeypatch.setattr(settings, "convex_url", CONVEX_URL)
+    monkeypatch.setattr(settings, "convex_deploy_key", "deploy-test")
+
+
+@pytest.fixture
+def no_convex_settings(monkeypatch):
+    from app.config import settings
+    monkeypatch.setattr(settings, "convex_url", "")
+    monkeypatch.setattr(settings, "convex_deploy_key", "")
+
+
+class TestQueryConvex:
+    async def test_returns_none_when_not_configured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            result = await query_convex(client, "x:y", {})
+        assert result is None
+
+    @respx.mock
+    async def test_returns_value_from_response(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(200, json={"value": {"ok": 1}})
+        )
+        async with httpx.AsyncClient() as client:
+            result = await query_convex(client, "x:y", {"a": 1})
+        assert result == {"ok": 1}
+
+    @respx.mock
+    async def test_returns_none_on_error(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(500, text="boom")
+        )
+        async with httpx.AsyncClient() as client:
+            result = await query_convex(client, "x:y", {})
+        assert result is None
+
+
+class TestSaveAssistantMessage:
+    async def test_noop_when_not_configured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(client, "c1", "hi")
+
+    @respx.mock
+    async def test_posts_minimal_payload(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(client, "c1", "hello")
+        body = json.loads(route.calls.last.request.content)
+        assert body["path"] == "messages:saveAssistantMessage"
+        assert body["args"]["conversationId"] == "c1"
+        assert body["args"]["content"] == "hello"
+        # Optional fields only set when provided.
+        assert "reasoning" not in body["args"]
+        assert "toolCalls" not in body["args"]
+
+    @respx.mock
+    async def test_includes_optional_fields_when_provided(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(
+                client, "c1", "x",
+                reasoning="thinking",
+                tool_calls=[{"name": "t"}],
+                parts=[{"type": "text"}],
+                usage={"cost": 0.01},
+                model="gpt-5.4",
+            )
+        body = json.loads(route.calls.last.request.content)
+        assert body["args"]["reasoning"] == "thinking"
+        assert body["args"]["toolCalls"] == [{"name": "t"}]
+        assert body["args"]["model"] == "gpt-5.4"
+
+    @respx.mock
+    async def test_includes_interrupted_fields_when_provided(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(
+                client, "c1", "partial",
+                interrupted=True,
+                interruption_reason="Service unavailable",
+            )
+        body = json.loads(route.calls.last.request.content)
+        assert body["args"]["interrupted"] is True
+        assert body["args"]["interruptionReason"] == "Service unavailable"
+
+    @respx.mock
+    async def test_omits_interrupted_fields_by_default(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(client, "c1", "ok")
+        body = json.loads(route.calls.last.request.content)
+        assert "interrupted" not in body["args"]
+        assert "interruptionReason" not in body["args"]
+
+    @respx.mock
+    async def test_swallows_http_status_errors(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(400, text="bad")
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(client, "c1", "x")
+
+    @respx.mock
+    async def test_swallows_network_errors(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            side_effect=httpx.ConnectError("down")
+        )
+        async with httpx.AsyncClient() as client:
+            await save_assistant_message(client, "c1", "x")
+
+
+class TestPatchMessageUsage:
+    async def test_noop_when_not_configured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            await patch_message_usage(client, "c1", {"cost": 0.01})
+
+    @respx.mock
+    async def test_posts_usage(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await patch_message_usage(client, "c1", {"cost": 0.01}, model="gpt-5.4")
+        body = json.loads(route.calls.last.request.content)
+        assert body["path"] == "messages:patchMessageUsage"
+        assert body["args"]["conversationId"] == "c1"
+        assert body["args"]["usage"] == {"cost": 0.01}
+        assert body["args"]["model"] == "gpt-5.4"
+
+    @respx.mock
+    async def test_swallows_errors(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(500, text="boom")
+        )
+        async with httpx.AsyncClient() as client:
+            await patch_message_usage(client, "c1", {"cost": 0.01})
+
+
+class TestVerifySandboxOwner:
+    async def test_unconfigured_grants_dev_access(self, no_convex_settings):
+        result = await verify_sandbox_owner("sbx_1", "u1")
+        assert result is True
+
+    async def test_partial_config_denies(self, monkeypatch):
+        from app.config import settings
+        monkeypatch.setattr(settings, "convex_url", CONVEX_URL)
+        monkeypatch.setattr(settings, "convex_deploy_key", "")
+        result = await verify_sandbox_owner("sbx_1", "u1")
+        assert result is False
+
+    @respx.mock
+    async def test_match_returns_true(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(200, json={"value": "u1"})
+        )
+        assert await verify_sandbox_owner("sbx_1", "u1") is True
+
+    @respx.mock
+    async def test_mismatch_returns_false(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(200, json={"value": "u2"})
+        )
+        assert await verify_sandbox_owner("sbx_1", "u1") is False
+
+    @respx.mock
+    async def test_missing_record_returns_false(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        assert await verify_sandbox_owner("sbx_1", "u1") is False
+
+    @respx.mock
+    async def test_network_error_returns_false(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            side_effect=httpx.ConnectError("down")
+        )
+        assert await verify_sandbox_owner("sbx_1", "u1") is False
+
+
+class TestCreateSandboxRecord:
+    async def test_returns_none_when_unconfigured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            result = await create_sandbox_record(
+                client, "u1", None, "dsbx_1", "sandbox", "python", True, {}
+            )
+        assert result is None
+
+    @respx.mock
+    async def test_returns_created_id(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": "sbx_doc_abc"})
+        )
+        async with httpx.AsyncClient() as client:
+            result = await create_sandbox_record(
+                client, "u1", "h1", "dsbx_1", "sandbox", "python", True, {"cpu": 1}
+            )
+        assert result == "sbx_doc_abc"
+
+    @respx.mock
+    async def test_includes_harness_when_provided(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": "x"})
+        )
+        async with httpx.AsyncClient() as client:
+            await create_sandbox_record(
+                client, "u1", "h1", "dsbx_1", "sandbox", "python", True, {}
+            )
+        body = json.loads(route.calls.last.request.content)
+        assert body["args"]["harnessId"] == "h1"
+        assert body["args"]["userId"] == "u1"
+        assert body["args"]["status"] == "running"
+
+    @respx.mock
+    async def test_omits_harness_when_none(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": "x"})
+        )
+        async with httpx.AsyncClient() as client:
+            await create_sandbox_record(
+                client, "u1", None, "dsbx_1", "sandbox", "python", True, {}
+            )
+        body = json.loads(route.calls.last.request.content)
+        assert "harnessId" not in body["args"]
+
+    @respx.mock
+    async def test_raises_on_http_error(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(500, text="boom")
+        )
+        async with httpx.AsyncClient() as client:
+            with pytest.raises(SandboxRecordError):
+                await create_sandbox_record(
+                    client, "u1", None, "dsbx_1", "sandbox", "python", True, {}
+                )
+
+    @respx.mock
+    async def test_raises_with_code_on_convex_error(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(
+                200,
+                json={
+                    "status": "error",
+                    "errorMessage": "Sandbox limit reached",
+                    "errorData": {
+                        "code": "sandbox_limit_reached",
+                        "message": "You've hit the cap of 5 sandboxes.",
+                    },
+                },
+            )
+        )
+        async with httpx.AsyncClient() as client:
+            with pytest.raises(SandboxRecordError) as exc_info:
+                await create_sandbox_record(
+                    client, "u1", None, "dsbx_1", "sandbox", "python", True, {}
+                )
+        assert exc_info.value.code == "sandbox_limit_reached"
+        assert "cap of 5 sandboxes" in str(exc_info.value)
diff --git a/packages/fastapi/tests/test_dependencies.py b/packages/fastapi/tests/test_dependencies.py
new file mode 100644
index 0000000..6edaf14
--- /dev/null
+++ b/packages/fastapi/tests/test_dependencies.py
@@ -0,0 +1,28 @@
+"""Dependency injection helpers — http client passthrough and user re-exposure."""
+import httpx
+
+from app.dependencies import get_current_user, get_http_client
+
+
+class _App:
+    class state:
+        pass
+
+
+def _fake_request_with_client(client):
+    from fastapi import Request
+    _App.state.http_client = client
+    return Request({"type": "http", "headers": [], "app": _App})
+
+
+async def test_get_http_client_returns_app_state_client():
+    async with httpx.AsyncClient() as client:
+        req = _fake_request_with_client(client)
+        assert await get_http_client(req) is client
+
+
+async def test_get_current_user_returns_token_payload_verbatim():
+    # Since get_current_user just returns the Depends(verify_token) result, we can
+    # call it directly by passing the resolved user dict.
+    user = {"sub": "user_abc", "iss": "test"}
+    assert await get_current_user(user=user) is user
diff --git a/packages/fastapi/tests/test_health.py b/packages/fastapi/tests/test_health.py
new file mode 100644
index 0000000..b831f8b
--- /dev/null
+++ b/packages/fastapi/tests/test_health.py
@@ -0,0 +1,11 @@
+"""Health endpoint — sanity check that the router is wired up."""
+from fastapi.testclient import TestClient
+
+from app.main import app
+
+
+def test_health_returns_ok():
+    with TestClient(app) as client:
+        resp = client.get("/health")
+    assert resp.status_code == 200
+    assert resp.json() == {"status": "ok"}
diff --git a/packages/fastapi/tests/test_models.py b/packages/fastapi/tests/test_models.py
new file mode 100644
index 0000000..175c687
--- /dev/null
+++ b/packages/fastapi/tests/test_models.py
@@ -0,0 +1,103 @@
+"""Pydantic model validation — boundary checks on validators."""
+import pytest
+from pydantic import ValidationError
+
+from app.models import (
+    ChatRequest,
+    HarnessConfig,
+    McpServer,
+    MessagePayload,
+    SandboxCommandRequest,
+    SandboxConfig,
+    SandboxExecuteRequest,
+    SkillRef,
+)
+
+
+class TestMcpServer:
+    def test_defaults_to_none_auth(self):
+        s = McpServer(name="gh", url="https://example.com/mcp")
+        assert s.auth_type == "none"
+        assert s.auth_token is None
+
+    def test_rejects_unknown_auth_type(self):
+        with pytest.raises(ValidationError):
+            McpServer(name="x", url="u", auth_type="magic")
+
+
+class TestSandboxConfig:
+    def test_defaults(self):
+        c = SandboxConfig()
+        assert c.persistent is False
+        assert c.auto_start is True
+        assert c.default_language == "python"
+        assert c.resource_tier == "basic"
+
+    def test_rejects_unknown_tier(self):
+        with pytest.raises(ValidationError):
+            SandboxConfig(resource_tier="xl")
+
+
+class TestHarnessConfig:
+    def test_minimal(self):
+        h = HarnessConfig(model="gpt-5.4", name="test")
+        assert h.mcp_servers == []
+        assert h.skills == []
+        assert h.system_prompt is None
+        assert h.sandbox_enabled is False
+
+    def test_system_prompt_at_limit(self):
+        h = HarnessConfig(model="gpt-5.4", name="t", system_prompt="x" * 4000)
+        assert h.system_prompt is not None
+        assert len(h.system_prompt) == 4000
+
+    def test_system_prompt_over_limit_rejected(self):
+        with pytest.raises(ValidationError):
+            HarnessConfig(model="gpt-5.4", name="t", system_prompt="x" * 4001)
+
+
+class TestChatRequest:
+    def test_requires_messages_and_harness(self):
+        req = ChatRequest(
+            messages=[MessagePayload(role="user", content="hi")],
+            harness=HarnessConfig(model="gpt-5.4", name="t"),
+            conversation_id="c1",
+        )
+        assert req.forced_tool is None
+        assert len(req.messages) == 1
+
+
+class TestSandboxExecuteRequest:
+    def test_default_timeout(self):
+        r = SandboxExecuteRequest(code="print('hi')")
+        assert r.timeout == 30
+        assert r.language == "python"
+
+    def test_timeout_lower_bound_exclusive(self):
+        with pytest.raises(ValidationError):
+            SandboxExecuteRequest(code="x", timeout=0)
+
+    def test_timeout_upper_bound_inclusive(self):
+        r = SandboxExecuteRequest(code="x", timeout=300)
+        assert r.timeout == 300
+
+    def test_timeout_above_limit_rejected(self):
+        with pytest.raises(ValidationError):
+            SandboxExecuteRequest(code="x", timeout=301)
+
+    def test_rejects_unknown_language(self):
+        with pytest.raises(ValidationError):
+            SandboxExecuteRequest(code="x", language="ruby")
+
+
+class TestSandboxCommandRequest:
+    def test_default_wd(self):
+        r = SandboxCommandRequest(command="ls")
+        assert r.working_directory == "/home/daytona"
+        assert r.timeout == 60
+
+
+class TestSkillRef:
+    def test_description_defaults_empty(self):
+        s = SkillRef(name="code-review")
+        assert s.description == ""
diff --git a/packages/fastapi/tests/test_usage_service.py b/packages/fastapi/tests/test_usage_service.py
new file mode 100644
index 0000000..d8bc602
--- /dev/null
+++ b/packages/fastapi/tests/test_usage_service.py
@@ -0,0 +1,241 @@
+"""Usage service — budget checking and recording via Convex HTTP."""
+from datetime import datetime, timezone
+from unittest.mock import patch
+
+import httpx
+import pytest
+import respx
+
+from app.services import usage
+from app.services.usage import (
+    _current_day,
+    _current_week,
+    _next_daily_reset,
+    _next_weekly_reset,
+    check_user_budget,
+    record_usage,
+)
+
+CONVEX_URL = "https://test.convex.cloud"
+
+
+class TestDateHelpers:
+    def test_current_day_format(self):
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 4, 21, 15, 30, tzinfo=timezone.utc)
+            assert _current_day() == "2026-04-21"
+
+    def test_current_week_iso_format(self):
+        # 2026-04-21 is a Tuesday — ISO week 17 of 2026.
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 4, 21, tzinfo=timezone.utc)
+            wk = _current_week()
+            assert wk.startswith("2026-W")
+            assert wk == "2026-W17"
+
+    def test_week_pads_single_digit(self):
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 1, 5, tzinfo=timezone.utc)  # Mon, ISO W2
+            assert _current_week() == "2026-W02"
+
+    def test_next_daily_reset_is_next_midnight(self):
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 4, 21, 15, 30, tzinfo=timezone.utc)
+            mock_dt.side_effect = lambda *a, **kw: datetime(*a, **kw)
+            result = _next_daily_reset()
+            assert result.startswith("2026-04-22T00:00:00")
+
+    def test_next_weekly_reset_from_midweek(self):
+        # 2026-04-21 Tue → next Mon is 2026-04-27
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 4, 21, 10, 0, tzinfo=timezone.utc)
+            mock_dt.side_effect = lambda *a, **kw: datetime(*a, **kw)
+            result = _next_weekly_reset()
+            assert result.startswith("2026-04-27T00:00:00")
+
+    def test_next_weekly_reset_from_monday_moves_seven_days(self):
+        # On Monday, next Monday is 7 days away, not today.
+        with patch.object(usage, "datetime") as mock_dt:
+            mock_dt.now.return_value = datetime(2026, 4, 20, 10, 0, tzinfo=timezone.utc)
+            mock_dt.side_effect = lambda *a, **kw: datetime(*a, **kw)
+            result = _next_weekly_reset()
+            assert result.startswith("2026-04-27T00:00:00")
+
+
+@pytest.fixture
+def convex_settings(monkeypatch):
+    from app.config import settings
+    monkeypatch.setattr(settings, "convex_url", CONVEX_URL)
+    monkeypatch.setattr(settings, "convex_deploy_key", "deploy-test")
+
+
+@pytest.fixture
+def no_convex_settings(monkeypatch):
+    from app.config import settings
+    monkeypatch.setattr(settings, "convex_url", "")
+    monkeypatch.setattr(settings, "convex_deploy_key", "")
+
+
+class TestCheckUserBudget:
+    async def test_fails_open_when_not_configured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is True
+        assert result.daily_pct == 0
+
+    @respx.mock
+    async def test_returns_allowed_from_convex(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(
+                200,
+                json={
+                    "value": {
+                        "allowed": True,
+                        "daily": {"pctUsed": 0.25},
+                        "weekly": {"pctUsed": 0.1},
+                    }
+                },
+            )
+        )
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is True
+        assert result.daily_pct == 0.25
+        assert result.weekly_pct == 0.1
+
+    @respx.mock
+    async def test_returns_denied_when_over_budget(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(
+                200,
+                json={
+                    "value": {
+                        "allowed": False,
+                        "daily": {"pctUsed": 1.2},
+                        "weekly": {"pctUsed": 0.5},
+                    }
+                },
+            )
+        )
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is False
+        assert result.daily_pct == 1.2
+
+    @respx.mock
+    async def test_fails_open_on_null_value(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is True
+
+    @respx.mock
+    async def test_fails_open_on_http_error(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(500, text="boom")
+        )
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is True
+
+    @respx.mock
+    async def test_fails_open_on_network_error(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/query").mock(
+            side_effect=httpx.ConnectError("down")
+        )
+        async with httpx.AsyncClient() as client:
+            result = await check_user_budget(client, "user_1")
+        assert result.allowed is True
+
+    @respx.mock
+    async def test_sends_correct_payload(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/query").mock(
+            return_value=httpx.Response(
+                200,
+                json={
+                    "value": {
+                        "allowed": True,
+                        "daily": {"pctUsed": 0},
+                        "weekly": {"pctUsed": 0},
+                    }
+                },
+            )
+        )
+        async with httpx.AsyncClient() as client:
+            await check_user_budget(client, "user_1")
+        import json as _json
+        body = _json.loads(route.calls.last.request.content)
+        assert body["path"] == "usage:checkBudget"
+        assert body["args"]["userId"] == "user_1"
+        assert "day" in body["args"] and "week" in body["args"]
+
+
+class TestRecordUsage:
+    async def test_skips_when_cost_missing(self, convex_settings):
+        async with httpx.AsyncClient() as client:
+            await record_usage(
+                client, "u1", "c1", None, None, "gpt-5.4",
+                {"prompt_tokens": 100, "completion_tokens": 50},
+            )
+        # no exception — cost absent means noop
+
+    async def test_skips_when_not_configured(self, no_convex_settings):
+        async with httpx.AsyncClient() as client:
+            await record_usage(
+                client, "u1", "c1", None, None, "gpt-5.4",
+                {"cost": 0.01},
+            )
+
+    @respx.mock
+    async def test_posts_usage_with_harness_metadata(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await record_usage(
+                client, "u1", "c1", "h1", "My Harness", "gpt-5.4",
+                {
+                    "cost": 0.0123,
+                    "prompt_tokens": 100,
+                    "completion_tokens": 50,
+                    "total_tokens": 150,
+                },
+            )
+        import json as _json
+        body = _json.loads(route.calls.last.request.content)
+        assert body["path"] == "usage:recordUsage"
+        assert body["args"]["userId"] == "u1"
+        assert body["args"]["conversationId"] == "c1"
+        assert body["args"]["harnessId"] == "h1"
+        assert body["args"]["harnessName"] == "My Harness"
+        assert body["args"]["cost"] == 0.0123
+        assert body["args"]["totalTokens"] == 150
+
+    @respx.mock
+    async def test_omits_harness_fields_when_none(self, convex_settings):
+        route = respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(200, json={"value": None})
+        )
+        async with httpx.AsyncClient() as client:
+            await record_usage(
+                client, "u1", "c1", None, None, "gpt-5.4",
+                {"cost": 0.001},
+            )
+        import json as _json
+        body = _json.loads(route.calls.last.request.content)
+        assert "harnessId" not in body["args"]
+        assert "harnessName" not in body["args"]
+
+    @respx.mock
+    async def test_swallows_http_errors(self, convex_settings):
+        respx.post(f"{CONVEX_URL}/api/mutation").mock(
+            return_value=httpx.Response(500, text="nope")
+        )
+        async with httpx.AsyncClient() as client:
+            await record_usage(
+                client, "u1", "c1", None, None, "gpt-5.4",
+                {"cost": 0.001},
+            )
+        # no exception propagates
diff --git a/packages/fastapi/uv.lock b/packages/fastapi/uv.lock
new file mode 100644
index 0000000..7518fc9
--- /dev/null
+++ b/packages/fastapi/uv.lock
@@ -0,0 +1,3 @@
+version = 1
+revision = 3
+requires-python = ">=3.12"
diff --git a/scripts/coverage-report.sh b/scripts/coverage-report.sh
new file mode 100755
index 0000000..97c8109
--- /dev/null
+++ b/scripts/coverage-report.sh
@@ -0,0 +1,144 @@
+#!/usr/bin/env bash
+# Run test coverage across all three testable layers and print a summary.
+#
+# Layers:
+#   - frontend  (apps/web)                — vitest  → apps/web/coverage
+#   - convex    (packages/convex-backend) — vitest  → packages/convex-backend/coverage
+#   - fastapi   (packages/fastapi)        — pytest  → packages/fastapi/htmlcov
+#
+# Usage:
+#   scripts/coverage-report.sh [frontend|convex|fastapi|all]   # default: all
+#
+# Each layer echoes the exact command it runs before running it, so the output
+# doubles as documentation for how to reproduce locally.
+
+set -uo pipefail
+
+ROOT="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
+TARGET="${1:-all}"
+
+COLOR_BLUE="\033[1;34m"
+COLOR_GREEN="\033[1;32m"
+COLOR_RED="\033[1;31m"
+COLOR_GRAY="\033[0;90m"
+COLOR_RESET="\033[0m"
+
+RESULTS=()  # each entry: "name|status|summary"
+
+section() {
+    printf "\n${COLOR_BLUE}━━━ %s ━━━${COLOR_RESET}\n" "$1"
+}
+
+echo_cmd() {
+    printf "${COLOR_GRAY}\$ %s${COLOR_RESET}\n" "$*"
+}
+
+record() {
+    RESULTS+=("$1|$2|$3")
+}
+
+_vitest_summary() {
+    local path="$1"
+    [[ -f "$path" ]] || { printf "(no summary at %s)" "$path"; return; }
+    node -e "
+      const s = require('$path').total;
+      const f = k => s[k].pct.toFixed(2) + '%';
+      console.log(\`lines \${f('lines')} · branches \${f('branches')} · funcs \${f('functions')} · stmts \${f('statements')}\`);
+    " 2>/dev/null || printf "(parse failed)"
+}
+
+_pytest_summary() {
+    local path="$1"
+    [[ -f "$path" ]] || { printf "(no coverage.xml)"; return; }
+    local rate branch
+    rate=$(grep -Eo 'line-rate="[0-9.]+"' "$path" | head -1 | grep -Eo '[0-9.]+')
+    branch=$(grep -Eo 'branch-rate="[0-9.]+"' "$path" | head -1 | grep -Eo '[0-9.]+')
+    if [[ -z "$rate" ]]; then
+        printf "(parse failed)"
+        return
+    fi
+    local pct
+    pct=$(awk "BEGIN { printf \"%.2f\", $rate * 100 }")
+    if [[ -n "$branch" && "$branch" != "0" ]]; then
+        local bpct
+        bpct=$(awk "BEGIN { printf \"%.2f\", $branch * 100 }")
+        printf "lines %s%% · branches %s%%" "$pct" "$bpct"
+    else
+        printf "lines %s%%" "$pct"
+    fi
+}
+
+run_frontend() {
+    section "Frontend (apps/web) — vitest + v8 coverage"
+    local dir="$ROOT/apps/web"
+    echo_cmd "cd apps/web && bun run test:coverage"
+    if ( cd "$dir" && bun run test:coverage ); then
+        record "frontend" "PASS" "$(_vitest_summary "$dir/coverage/coverage-summary.json")"
+    else
+        record "frontend" "FAIL" "vitest exited non-zero"
+    fi
+}
+
+run_convex() {
+    section "Convex (packages/convex-backend) — vitest + v8 coverage"
+    local dir="$ROOT/packages/convex-backend"
+    echo_cmd "cd packages/convex-backend && bun run test:coverage"
+    if ( cd "$dir" && bun run test:coverage ); then
+        record "convex" "PASS" "$(_vitest_summary "$dir/coverage/coverage-summary.json")"
+    else
+        record "convex" "FAIL" "vitest exited non-zero"
+    fi
+}
+
+run_fastapi() {
+    section "FastAPI (packages/fastapi) — pytest + coverage.py"
+    local dir="$ROOT/packages/fastapi"
+    local py
+    if [[ -x "$dir/.venv/bin/pytest" ]]; then
+        py="$dir/.venv/bin/pytest"
+    elif command -v pytest >/dev/null 2>&1; then
+        py="pytest"
+    else
+        record "fastapi" "FAIL" "pytest not found — run: python -m venv packages/fastapi/.venv && packages/fastapi/.venv/bin/pip install -r packages/fastapi/requirements-dev.txt"
+        return 1
+    fi
+    echo_cmd "cd packages/fastapi && $py --cov --cov-report=term --cov-report=html --cov-report=xml"
+    if ( cd "$dir" && "$py" --cov --cov-report=term --cov-report=html --cov-report=xml ); then
+        record "fastapi" "PASS" "$(_pytest_summary "$dir/coverage.xml")"
+    else
+        record "fastapi" "FAIL" "pytest exited non-zero"
+    fi
+}
+
+case "$TARGET" in
+    frontend) run_frontend ;;
+    convex)   run_convex ;;
+    fastapi)  run_fastapi ;;
+    all)
+        run_frontend
+        run_convex
+        run_fastapi
+        ;;
+    *)
+        printf "unknown target: %s\n" "$TARGET" >&2
+        printf "usage: %s [frontend|convex|fastapi|all]\n" "$0" >&2
+        exit 2
+        ;;
+esac
+
+section "Summary"
+printf "%-10s %-6s %s\n" "layer" "status" "coverage"
+printf "%-10s %-6s %s\n" "----------" "------" "--------"
+overall_ok=0
+for row in "${RESULTS[@]}"; do
+    IFS='|' read -r name status summary <<<"$row"
+    if [[ "$status" == "PASS" ]]; then
+        color="$COLOR_GREEN"
+    else
+        color="$COLOR_RED"
+        overall_ok=1
+    fi
+    printf "${color}%-10s %-6s${COLOR_RESET} %s\n" "$name" "$status" "$summary"
+done
+
+exit "$overall_ok"
diff --git a/scripts/scrape-skills.ts b/scripts/scrape-skills.ts
index b4986fb..f99e09d 100644
--- a/scripts/scrape-skills.ts
+++ b/scripts/scrape-skills.ts
@@ -144,7 +144,7 @@ async function upsertToConvex(
 	for (let i = 0; i < skills.length; i += chunkSize) {
 		const chunk = skills.slice(i, i + chunkSize);
 		try {
-			const resp = await fetch(`${CONVEX_URL}/api/run`, {
+			const resp = await fetch(`${CONVEX_URL}/api/mutation`, {
 				method: "POST",
 				headers: {
 					"Content-Type": "application/json",